@pixelzx/genesis 2026.5.5-1 → 2026.5.5-2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (2393) hide show
  1. package/CHANGELOG.md +2 -0
  2. package/dist/.buildstamp +1 -1
  3. package/dist/abort-BHSttDhY.js +201 -0
  4. package/dist/abort-cutoff.runtime-DCJWSVCk.js +20 -0
  5. package/dist/abort-cutoff.runtime.js +1 -1
  6. package/dist/abort.runtime-VJ9lFsZS.js +2 -0
  7. package/dist/abort.runtime.js +1 -1
  8. package/dist/accounts-BNvagEOQ.js +104 -0
  9. package/dist/accounts-CJJT0vS7.js +43 -0
  10. package/dist/accounts-CM2Ko2xl.js +365 -0
  11. package/dist/accounts-CPIuzenz.js +107 -0
  12. package/dist/accounts-Co4cbVCU.js +66 -0
  13. package/dist/accounts-r08DQWhZ.js +2 -0
  14. package/dist/accounts.runtime-V3yFS1uD.js +2 -0
  15. package/dist/accounts.runtime.js +1 -1
  16. package/dist/acp-cli-i0L-eRs9.js +2193 -0
  17. package/dist/acp-spawn-CHzVLe9q.js +1093 -0
  18. package/dist/acp-spawn-CqvxDuBq.js +2 -0
  19. package/dist/acp-stateful-target-driver-CWRLc_NP.js +89 -0
  20. package/dist/action-agents-SNCscX_-.js +67 -0
  21. package/dist/action-focus-B2s0PF2E.js +132 -0
  22. package/dist/action-help-CXKbyaZ7.js +7 -0
  23. package/dist/action-info-B3IDKxWu.js +101 -0
  24. package/dist/action-kill-idGvCNhT.js +33 -0
  25. package/dist/action-list-Di7gO3qL.js +21 -0
  26. package/dist/action-log-BCsz-gFi.js +30 -0
  27. package/dist/action-send-DLsdZnVc.js +39 -0
  28. package/dist/action-spawn-DhKEOdL0.js +47 -0
  29. package/dist/action-unfocus-Dh7ti5UP.js +29 -0
  30. package/dist/actions.runtime-BPf03SN3.js +18 -0
  31. package/dist/actions.runtime-CJg_lweh.js +5 -0
  32. package/dist/actions.runtime.js +1 -1
  33. package/dist/agent-C3PLvvws.js +2 -0
  34. package/dist/agent-command-UroeNrV4.js +874 -0
  35. package/dist/agent-harness-runtime-MXvI9FlJ.js +144 -0
  36. package/dist/agent-runner-utils-CaVgLZrf.js +239 -0
  37. package/dist/agent-runner.runtime-Csqm3m09.js +3455 -0
  38. package/dist/agent-runner.runtime.js +1 -1
  39. package/dist/agent-runtime-B9nUYDUz.js +18 -0
  40. package/dist/agents/auth-profiles.runtime.js +1 -1
  41. package/dist/agents/model-catalog.runtime.js +1 -1
  42. package/dist/agents/models-config.runtime.js +1 -1
  43. package/dist/agents/pi-model-discovery-runtime.js +1 -1
  44. package/dist/agents-BP4p-1q2.js +5 -0
  45. package/dist/agents-CDiXfrfc.js +953 -0
  46. package/dist/agents.command-shared-ZsmaTJk8.js +40 -0
  47. package/dist/aliases-BBCtCq2A.js +96 -0
  48. package/dist/aliases-DrFtFq1p.js +2 -0
  49. package/dist/api-2tC9XD4P.js +4 -0
  50. package/dist/api-BH0oEwR1.js +5 -0
  51. package/dist/api-BHhDAMrX.js +2 -0
  52. package/dist/api-CGlGNVyu2.js +2 -0
  53. package/dist/api-CK3xj--e.js +48 -0
  54. package/dist/api-CQ1kMo4j.js +3 -0
  55. package/dist/api-D-4gHdrl.js +139 -0
  56. package/dist/api-DE6RYTxv.js +3 -0
  57. package/dist/api-DEwetAD22.js +2 -0
  58. package/dist/apply-CKkto_0W.js +508 -0
  59. package/dist/apply.runtime-Bby76mns.js +166 -0
  60. package/dist/apply.runtime-xFS-XMxA.js +2 -0
  61. package/dist/apply.runtime.js +1 -1
  62. package/dist/approval-client-helpers-Dn1zaJjB.js +82 -0
  63. package/dist/approval-handler-runtime-BEl3ua8-.js +439 -0
  64. package/dist/approval-native-helpers-SV1NXo3R.js +33 -0
  65. package/dist/approval-native-runtime-ghjYGufu.js +729 -0
  66. package/dist/approval-renderers-BFN4GCN1.js +64 -0
  67. package/dist/attempt-execution.runtime-PCTFYqLh.js +509 -0
  68. package/dist/attempt-execution.runtime.js +1 -1
  69. package/dist/attempt-execution.shared-BVGg4jtm.js +22 -0
  70. package/dist/attempt.prompt-helpers-CkWEozQ2.js +221 -0
  71. package/dist/attempt.tool-run-context-DbqVgXFk.js +933 -0
  72. package/dist/audit-Lb1yNEwg.js +939 -0
  73. package/dist/audit-extra.async-CxQj_A5s.js +971 -0
  74. package/dist/audit-membership-runtime-Fh49slzK.js +550 -0
  75. package/dist/audit.deep.runtime-COBioB9E.js +2 -0
  76. package/dist/audit.deep.runtime.js +1 -1
  77. package/dist/audit.nondeep.runtime-Bk_5xOjT.js +880 -0
  78. package/dist/audit.nondeep.runtime.js +1 -1
  79. package/dist/audit.runtime-DOnixKE_.js +7 -0
  80. package/dist/audit.runtime.js +1 -1
  81. package/dist/auth-BrlJ7NM9.js +2 -0
  82. package/dist/auth-C7wPgZbo.js +56 -0
  83. package/dist/auth-CJoP7Yst.js +383 -0
  84. package/dist/auth-DLWZd54x.js +177 -0
  85. package/dist/auth-choice-DZdnIn4M.js +3 -0
  86. package/dist/auth-choice-DtSIi1lM.js +354 -0
  87. package/dist/auth-choice-dBaHPiBQ.js +88 -0
  88. package/dist/auth-choice-options-C0mgcUc9.js +97 -0
  89. package/dist/auth-choice-prompt-Crln8JIf.js +2 -0
  90. package/dist/auth-choice-prompt-DhSxj7wM.js +37 -0
  91. package/dist/auth-choice.apply.api-providers-DBPXmiaM.js +2 -0
  92. package/dist/auth-choice.apply.api-providers-TO_ZIWX7.js +34 -0
  93. package/dist/auth-choice.plugin-providers.runtime-CRMLXING.js +11 -0
  94. package/dist/auth-choice.plugin-providers.runtime.js +1 -1
  95. package/dist/auth-health-DvPWpSkl.js +183 -0
  96. package/dist/auth-install-policy-BpHrj1L-.js +195 -0
  97. package/dist/auth-order-D0KFgBib.js +96 -0
  98. package/dist/auth-order-_xlUHzCg.js +2 -0
  99. package/dist/auth-profiles-qkJp8etH.js +679 -0
  100. package/dist/backup-create-DgVJHnfc.js +395 -0
  101. package/dist/banner-0afXR3gC.js +2 -0
  102. package/dist/banner-D-k2EM3C.js +336 -0
  103. package/dist/base-url-N7e93gGu.js +15 -0
  104. package/dist/bash-tools-BEVEHCl9.js +2824 -0
  105. package/dist/bash-tools-DJ0D8Wr5.js +3 -0
  106. package/dist/binding-routing-IfKqPcfO.js +85 -0
  107. package/dist/binding-targets-2huR0hTX.js +121 -0
  108. package/dist/bluebubbles-C4fAEm2A.js +77 -0
  109. package/dist/brave-web-search-provider-DkkbSBBP.js +111 -0
  110. package/dist/brave-web-search-provider.runtime-AjyyvF6E.js +229 -0
  111. package/dist/brave-web-search-provider.runtime.js +1 -1
  112. package/dist/brave-web-search-provider.shared-Bk59J40Z.js +174 -0
  113. package/dist/bridge-auth-registry-j9Nf_eKW.js +23 -0
  114. package/dist/bridge-server-D8Y8Fzdz.js +113 -0
  115. package/dist/browser-config-runtime-DYHwPrae.js +7 -0
  116. package/dist/browser-control-auth-Q6UpVLEj.js +2 -0
  117. package/dist/browser-node-runtime-C9KvsOyx.js +12 -0
  118. package/dist/browser-profiles-DFcwiMEf.js +2 -0
  119. package/dist/browser-runtime-sbZ3hKg6.js +387 -0
  120. package/dist/browser-setup-tools-CP4BkZ9z.js +13 -0
  121. package/dist/build-DzHX2LrH.js +550 -0
  122. package/dist/build-info.json +3 -3
  123. package/dist/bundled/boot-md/handler.js +5 -5
  124. package/dist/bundled/session-memory/handler.js +1 -1
  125. package/dist/call-ORivR4Db.js +331 -0
  126. package/dist/call-qzfm6lro.js +3 -0
  127. package/dist/call-status-DMAmF1AO.js +33 -0
  128. package/dist/call.runtime-BkzJe07B.js +2 -0
  129. package/dist/call.runtime.js +1 -1
  130. package/dist/capability-cli-BDCvm93o.js +1401 -0
  131. package/dist/card-command-VrZ5VEMb.js +241 -0
  132. package/dist/catalog-provider-iymLG3Kz.js +40 -0
  133. package/dist/catchup-CjZa2PrP.js +300 -0
  134. package/dist/channel-B3UAL9Pk.js +840 -0
  135. package/dist/channel-B5L9LJBF.js +453 -0
  136. package/dist/channel-BGXl6A-E.js +297 -0
  137. package/dist/channel-BNUblayu.js +1320 -0
  138. package/dist/channel-Bej-TN7f.js +491 -0
  139. package/dist/channel-BzOKSC4e.js +350 -0
  140. package/dist/channel-CY2xEOzR.js +1802 -0
  141. package/dist/channel-D2kKLWUA.js +226 -0
  142. package/dist/channel-DcjCe46M.js +1100 -0
  143. package/dist/channel-GqA96nmt.js +595 -0
  144. package/dist/channel-YI2aIJFQ.js +1174 -0
  145. package/dist/channel-add-wizard-CTUaSVvE.js +125 -0
  146. package/dist/channel-add-wizard-DeODDpiD.js +2 -0
  147. package/dist/channel-core-DqPUhmTt.js +5 -0
  148. package/dist/channel-inbound-CzgMd2Xi.js +31 -0
  149. package/dist/channel-plugin-runtime-DI5uUbxx.js +771 -0
  150. package/dist/channel-runtime-BJqKQitD.js +425 -0
  151. package/dist/channel-summary-BMmi0p_s.js +2 -0
  152. package/dist/channel-summary-BvSCERUz.js +129 -0
  153. package/dist/channel.runtime-BBn9mgbB.js +89 -0
  154. package/dist/channel.runtime-Bhj1b9gQ.js +34702 -0
  155. package/dist/channel.runtime-BozvCkMo.js +26 -0
  156. package/dist/channel.runtime-BzOVx90Z.js +576 -0
  157. package/dist/channel.runtime-CQkLKWlq.js +109 -0
  158. package/dist/channel.runtime-D8qT4A1x.js +4 -0
  159. package/dist/channel.runtime-DjK9Re1w.js +2364 -0
  160. package/dist/channel.runtime-tWwM8hFw.js +430 -0
  161. package/dist/channel.runtime-xIH29E7O.js +67 -0
  162. package/dist/channel.runtime.js +1 -1
  163. package/dist/channel.setup-gaiRZ-r8.js +10 -0
  164. package/dist/channels-BXIl3hBo.js +733 -0
  165. package/dist/channels-cli-CrmBqaul.js +268 -0
  166. package/dist/chat-C42usv-F.js +2758 -0
  167. package/dist/chrome-CgLTMlX5.js +1181 -0
  168. package/dist/chrome-mcp-0zQTzU3A.js +2 -0
  169. package/dist/chrome-mcp-BjiLGZmi.js +600 -0
  170. package/dist/chrome.executables-CoZsfQLC.js +541 -0
  171. package/dist/clawbot-cli-BGYO_ymZ.js +9 -0
  172. package/dist/clawhub-Dz5KDje-.js +400 -0
  173. package/dist/clawhub-LPw6cLUe.js +300 -0
  174. package/dist/cli/daemon-cli.js +4 -4
  175. package/dist/cli-BbD25CFK.js +2 -0
  176. package/dist/cli-CUAjdQ7v.js +683 -0
  177. package/dist/cli-CYD4Wfcq.js +219 -0
  178. package/dist/cli-Cp2qY3Xp.js +154 -0
  179. package/dist/cli-D-6ycHAw.js +72 -0
  180. package/dist/cli-D8SnjKKR.js +3726 -0
  181. package/dist/cli-DX4CK-bw.js +2 -0
  182. package/dist/cli-Dyu4jU8j.js +2 -0
  183. package/dist/cli-runner-C5_PBTxm.js +286 -0
  184. package/dist/cli-runner.runtime-DE7RpQ27.js +3 -0
  185. package/dist/cli-runner.runtime-ueVMICzY.js +4 -0
  186. package/dist/cli-runner.runtime.js +1 -1
  187. package/dist/cli-startup-metadata.json +2 -2
  188. package/dist/cli.runtime-DSO8Vfrh.js +1261 -0
  189. package/dist/cli.runtime.js +1 -1
  190. package/dist/client-BKro32pr.js +138 -0
  191. package/dist/codex-native-web-search-Bu1J52-W.js +113 -0
  192. package/dist/codex-native-web-search-Deyt8mj0.js +3 -0
  193. package/dist/combined-store-gateway-DT2C-8GW.js +163 -0
  194. package/dist/command-auth-CvFUTCCJ.js +76 -0
  195. package/dist/command-config-resolution-BnW1XGnW.js +23 -0
  196. package/dist/command-config-resolution-BrlfYyiN.js +2 -0
  197. package/dist/command-config-resolution.runtime-DYMr8J0t.js +2 -0
  198. package/dist/command-config-resolution.runtime.js +1 -1
  199. package/dist/command-execution-startup-BlHlyCgU.js +305 -0
  200. package/dist/command-registry-Bi9thw1b.js +9 -0
  201. package/dist/command-registry-D__zH4Fg.js +4 -0
  202. package/dist/command-registry-core-DQoNFQZT.js +101 -0
  203. package/dist/command-secret-gateway-B27Zpgo9.js +528 -0
  204. package/dist/command-status.runtime-fERQMzeI.js +87 -0
  205. package/dist/command-status.runtime.js +1 -1
  206. package/dist/commands-acp-BmORmf3-.js +77 -0
  207. package/dist/commands-compact.runtime-BUaXIw-I.js +10 -0
  208. package/dist/commands-compact.runtime.js +1 -1
  209. package/dist/commands-core.runtime-2OrgNeAA.js +2 -0
  210. package/dist/commands-core.runtime.js +1 -1
  211. package/dist/commands-handlers.runtime-BxbkeuTc.js +4597 -0
  212. package/dist/commands-handlers.runtime.js +1 -1
  213. package/dist/commands-models-BAneNjrI.js +327 -0
  214. package/dist/commands-reset-hooks-BkEMNl84.js +133 -0
  215. package/dist/commands-status-4OW5sqmg.js +16 -0
  216. package/dist/commands-status.runtime-Cl7nJp_7.js +3 -0
  217. package/dist/commands-status.runtime.js +1 -1
  218. package/dist/commands-subagents-control.runtime-BR4qBGkk.js +2 -0
  219. package/dist/commands-subagents-control.runtime-C8ufgKPI.js +3 -0
  220. package/dist/commands-subagents-control.runtime.js +1 -1
  221. package/dist/commands-system-prompt-BsimvjJt.js +158 -0
  222. package/dist/commands-system-prompt-CKrY0h7P.js +2 -0
  223. package/dist/commands.runtime-BHsDdaEU.js +166 -0
  224. package/dist/commands.runtime.js +1 -1
  225. package/dist/compact-BHYLQst3.js +1118 -0
  226. package/dist/compact.runtime-7-tZRdgw.js +12 -0
  227. package/dist/compact.runtime.js +1 -1
  228. package/dist/completion-cli-1sAiSIYc.js +328 -0
  229. package/dist/config-3He3LWHw.js +5 -0
  230. package/dist/config-BZ3FuFjH.js +251 -0
  231. package/dist/config-DDoTcXdn.js +9 -0
  232. package/dist/config-api-q218x1pm.js +2 -0
  233. package/dist/config-cli-B_dNq5hD.js +1078 -0
  234. package/dist/config-compat-2ov7ryzQ.js +126 -0
  235. package/dist/config-compat-k8n8hPxr.js +130 -0
  236. package/dist/config-guard-8hQGGUl4.js +96 -0
  237. package/dist/config-runtime-CiIsBMuo.js +32 -0
  238. package/dist/config-validation-BeKCV2p-.js +30 -0
  239. package/dist/configure-BOvmX2NJ.js +2 -0
  240. package/dist/configure-DR9NYN9e.js +1245 -0
  241. package/dist/connect-options-DlmPTyhG.js +699 -0
  242. package/dist/context-D3NokKLx.js +2 -0
  243. package/dist/context-rtkuRtGt.js +278 -0
  244. package/dist/control-auth-C_zNiV10.js +125 -0
  245. package/dist/control-service-B1TL51jf.js +156 -0
  246. package/dist/control-ui-CIhsZ2Nb.js +688 -0
  247. package/dist/conversation-id-B3lLiTfF.js +235 -0
  248. package/dist/conversation-id-DORmTZm_.js +38 -0
  249. package/dist/conversation-label-generator-CNvvC18B.js +56 -0
  250. package/dist/conversation-runtime-DDxZZZXE.js +31 -0
  251. package/dist/core-DbPzffGG.js +275 -0
  252. package/dist/create-5kvABMhw.js +80 -0
  253. package/dist/cron-cli-AoH4jhFt.js +713 -0
  254. package/dist/daemon-cli-BOJdM3wT.js +12 -0
  255. package/dist/daemon-install-D8HPES4u.js +64 -0
  256. package/dist/daemon-install-auth-profiles-store.runtime-DWg8FeUH.js +2 -0
  257. package/dist/daemon-install-auth-profiles-store.runtime.js +1 -1
  258. package/dist/daemon-install-plan.shared-WG_DYWei.js +287 -0
  259. package/dist/ddg-client-BnD8tAM2.js +147 -0
  260. package/dist/ddg-search-provider-CNeCrvl0.js +54 -0
  261. package/dist/delegate-Dmdda3kT.js +64 -0
  262. package/dist/deliver-CEuqmKKH.js +747 -0
  263. package/dist/deliver-Cndvxi9P.js +3 -0
  264. package/dist/deliver-runtime-BvDWmZrW.js +2 -0
  265. package/dist/delivery-outbound.runtime-BQeyIAOJ.js +6 -0
  266. package/dist/delivery-outbound.runtime.js +1 -1
  267. package/dist/delivery.runtime-Ci0ToUzj.js +253 -0
  268. package/dist/delivery.runtime.js +1 -1
  269. package/dist/deps-CFCIpuzV.js +2 -0
  270. package/dist/deps-D3gqpOra.js +73 -0
  271. package/dist/detached-task-runtime-BB5az34R.js +73 -0
  272. package/dist/devices-cli-Cy9DF-DP.js +496 -0
  273. package/dist/diagnostic-CC9CPVio.js +400 -0
  274. package/dist/diagnostic-support-export-CufM12zj.js +533 -0
  275. package/dist/diagnostics-CTE0TWR1.js +154 -0
  276. package/dist/direct-dm-9jzadx9u.js +64 -0
  277. package/dist/directive-handling.fast-lane-C6uvW96M.js +66 -0
  278. package/dist/directive-handling.impl-BTuNitCK.js +2 -0
  279. package/dist/directive-handling.impl-DIeSI-ux.js +703 -0
  280. package/dist/directive-handling.model-selection-Cq8JhQdI.js +114 -0
  281. package/dist/directive-handling.persist.runtime-DrUu8zaW.js +215 -0
  282. package/dist/directive-handling.persist.runtime.js +1 -1
  283. package/dist/directory-cli-DNMdDpqd.js +240 -0
  284. package/dist/dispatch-DU7cqfv6.js +1131 -0
  285. package/dist/dispatch-acp-Cu_nUtKg.js +981 -0
  286. package/dist/dispatch-acp-manager.runtime-8MOQ5BRn.js +3 -0
  287. package/dist/dispatch-acp-manager.runtime.js +1 -1
  288. package/dist/dispatch-acp-media.runtime-DqSdScnW.js +4 -0
  289. package/dist/dispatch-acp-media.runtime.js +1 -1
  290. package/dist/dispatch-acp-session.runtime-B-AG2-VC.js +2 -0
  291. package/dist/dispatch-acp-session.runtime.js +1 -1
  292. package/dist/dispatch-acp.runtime-DatcHNJq.js +19 -0
  293. package/dist/dispatch-acp.runtime.js +1 -1
  294. package/dist/dns-cli-z20808Yz.js +192 -0
  295. package/dist/doctor-auth-CqdmPgiK.js +172 -0
  296. package/dist/doctor-auth-legacy-oauth-C2ojfRvc.js +2 -0
  297. package/dist/doctor-auth-legacy-oauth-CcveIbUh.js +48 -0
  298. package/dist/doctor-claude-cli-B6pnkFEn.js +147 -0
  299. package/dist/doctor-config-analysis-B_xkK9eg.js +94 -0
  300. package/dist/doctor-config-flow-D9W_glLc.js +417 -0
  301. package/dist/doctor-config-preflight-BAZTh5MZ.js +2 -0
  302. package/dist/doctor-config-preflight-Bui2U29x.js +63 -0
  303. package/dist/doctor-contract-DgJ867-C.js +26 -0
  304. package/dist/doctor-device-pairing-Qm-r7mwu.js +307 -0
  305. package/dist/doctor-gateway-daemon-flow-BN2uGhFJ.js +250 -0
  306. package/dist/doctor-gateway-health-CD7Vzth9.js +60 -0
  307. package/dist/doctor-gateway-services-CIypZgv_.js +316 -0
  308. package/dist/doctor-health-ByjG3620.js +59 -0
  309. package/dist/doctor-health-contributions-CxNByg_i.js +486 -0
  310. package/dist/doctor-memory-search-C25cUVoI.js +371 -0
  311. package/dist/doctor-sandbox-CNi6l2wR.js +194 -0
  312. package/dist/doctor-session-locks-CYaHscyv.js +52 -0
  313. package/dist/doctor-state-integrity-jbbt8OVU.js +609 -0
  314. package/dist/doctor-state-migrations-DgYUKVNF.js +2 -0
  315. package/dist/doctor-update-r4fBiE_r.js +58 -0
  316. package/dist/doctor-workspace-status-DL2fRPoT.js +75 -0
  317. package/dist/dreaming-CCctNgkQ.js +1574 -0
  318. package/dist/dreaming-narrative-BPtXKc2-.js +595 -0
  319. package/dist/dreaming-shared-B7vlQ1yu.js +21 -0
  320. package/dist/embedded-gateway-stub.runtime-Hi36BeCq.js +9 -0
  321. package/dist/embedded-gateway-stub.runtime.js +1 -1
  322. package/dist/embedding-batch-BU4JjG1y.js +161 -0
  323. package/dist/embedding-batch-DOZ1gHYu.js +191 -0
  324. package/dist/embedding-provider-BI2BRW8e.js +64 -0
  325. package/dist/embedding-provider-Bb3l6tny.js +33 -0
  326. package/dist/embedding-provider-Cjyi9qRs.js +118 -0
  327. package/dist/embedding-provider-D-IE5LZN.js +38 -0
  328. package/dist/embeddings-eOJvLToU.js +215 -0
  329. package/dist/embeddings-http-BDz5OXZk.js +205 -0
  330. package/dist/engine-embeddings-CxNSH_in.js +458 -0
  331. package/dist/engine-qmd-BSGZVwOC.js +551 -0
  332. package/dist/entry.js +2 -2
  333. package/dist/exa-web-search-provider-DMHM6_vZ.js +80 -0
  334. package/dist/exa-web-search-provider.runtime-5amTdDMt.js +2 -0
  335. package/dist/exa-web-search-provider.runtime-DOeJpDGm.js +302 -0
  336. package/dist/exa-web-search-provider.runtime.js +1 -1
  337. package/dist/exec-approval-forwarder.runtime-ToZ9QUrR.js +3 -0
  338. package/dist/exec-approval-forwarder.runtime.js +1 -1
  339. package/dist/exec-approval-reply-CErKkY_w.js +2 -0
  340. package/dist/exec-approval-reply-CwnSisXg.js +296 -0
  341. package/dist/exec-approval-session-target-BcyDQz_G.js +176 -0
  342. package/dist/exec-approvals-cli-DyslUWtQ.js +498 -0
  343. package/dist/exec-policy-cli-F3L_mLPh.js +298 -0
  344. package/dist/extensionAPI.js +4 -4
  345. package/dist/extensions/active-memory/index.js +3 -3
  346. package/dist/extensions/alibaba/index.js +1 -1
  347. package/dist/extensions/alibaba/video-generation-provider.js +1 -1
  348. package/dist/extensions/arcee/index.js +2 -2
  349. package/dist/extensions/bluebubbles/api.js +3 -3
  350. package/dist/extensions/bluebubbles/channel-plugin-api.js +1 -1
  351. package/dist/extensions/brave/index.js +1 -1
  352. package/dist/extensions/brave/test-api.js +1 -1
  353. package/dist/extensions/brave/web-search-provider.js +1 -1
  354. package/dist/extensions/browser/browser-bridge.js +1 -1
  355. package/dist/extensions/browser/browser-config.js +4 -4
  356. package/dist/extensions/browser/browser-control-auth.js +2 -2
  357. package/dist/extensions/browser/browser-doctor.js +5 -5
  358. package/dist/extensions/browser/browser-host-inspection.js +1 -1
  359. package/dist/extensions/browser/browser-maintenance.js +2 -2
  360. package/dist/extensions/browser/browser-profiles.js +2 -2
  361. package/dist/extensions/browser/browser-runtime-api.js +14 -14
  362. package/dist/extensions/browser/index.js +1 -1
  363. package/dist/extensions/browser/plugin-registration.js +1 -1
  364. package/dist/extensions/browser/register.runtime.js +3 -3
  365. package/dist/extensions/browser/runtime-api.js +15 -15
  366. package/dist/extensions/browser/setup-api.js +2 -2
  367. package/dist/extensions/browser/test-support.js +1 -1
  368. package/dist/extensions/byteplus/index.js +3 -3
  369. package/dist/extensions/byteplus/video-generation-provider.js +1 -1
  370. package/dist/extensions/chutes/api.js +3 -3
  371. package/dist/extensions/chutes/index.js +7 -7
  372. package/dist/extensions/chutes/models.js +1 -1
  373. package/dist/extensions/chutes/onboard.js +2 -2
  374. package/dist/extensions/chutes/provider-catalog.js +1 -1
  375. package/dist/extensions/cloudflare-ai-gateway/api.js +1 -1
  376. package/dist/extensions/cloudflare-ai-gateway/catalog-provider.js +1 -1
  377. package/dist/extensions/cloudflare-ai-gateway/index.js +7 -7
  378. package/dist/extensions/comfy/image-generation-provider.js +2 -2
  379. package/dist/extensions/comfy/index.js +5 -5
  380. package/dist/extensions/comfy/music-generation-provider.js +1 -1
  381. package/dist/extensions/comfy/test-helpers.js +1 -1
  382. package/dist/extensions/comfy/video-generation-provider.js +2 -2
  383. package/dist/extensions/comfy/workflow-runtime.js +1 -1
  384. package/dist/extensions/deepgram/index.js +1 -1
  385. package/dist/extensions/deepgram/realtime-transcription-provider.js +1 -1
  386. package/dist/extensions/deepgram/test-api.js +1 -1
  387. package/dist/extensions/deepseek/index.js +1 -1
  388. package/dist/extensions/device-pair/api.js +2 -2
  389. package/dist/extensions/device-pair/index.js +5 -5
  390. package/dist/extensions/device-pair/notify.js +1 -1
  391. package/dist/extensions/device-pair/pair-command-approve.js +1 -1
  392. package/dist/extensions/device-pair/qr-image.js +2 -2
  393. package/dist/extensions/duckduckgo/index.js +1 -1
  394. package/dist/extensions/duckduckgo/web-search-provider.js +1 -1
  395. package/dist/extensions/elevenlabs/config-compat.js +1 -1
  396. package/dist/extensions/elevenlabs/contract-api.js +2 -2
  397. package/dist/extensions/elevenlabs/doctor-contract.js +2 -2
  398. package/dist/extensions/elevenlabs/index.js +2 -2
  399. package/dist/extensions/elevenlabs/realtime-transcription-provider.js +1 -1
  400. package/dist/extensions/elevenlabs/setup-api.js +1 -1
  401. package/dist/extensions/elevenlabs/speech-provider.js +1 -1
  402. package/dist/extensions/elevenlabs/test-api.js +2 -2
  403. package/dist/extensions/exa/index.js +1 -1
  404. package/dist/extensions/exa/test-api.js +1 -1
  405. package/dist/extensions/exa/web-search-provider.js +1 -1
  406. package/dist/extensions/fal/image-generation-provider.js +1 -1
  407. package/dist/extensions/fal/index.js +3 -3
  408. package/dist/extensions/fal/provider-registration.js +1 -1
  409. package/dist/extensions/fal/test-api.js +2 -2
  410. package/dist/extensions/fal/video-generation-provider.js +1 -1
  411. package/dist/extensions/firecrawl/api.js +1 -1
  412. package/dist/extensions/fireworks/index.js +1 -1
  413. package/dist/extensions/github-copilot/api.js +1 -1
  414. package/dist/extensions/github-copilot/auth.js +1 -1
  415. package/dist/extensions/github-copilot/embeddings.js +1 -1
  416. package/dist/extensions/github-copilot/index.js +8 -8
  417. package/dist/extensions/github-copilot/login.js +1 -1
  418. package/dist/extensions/github-copilot/models-defaults.js +1 -1
  419. package/dist/extensions/github-copilot/models.js +1 -1
  420. package/dist/extensions/github-copilot/register.runtime.js +3 -3
  421. package/dist/extensions/github-copilot/replay-policy.js +1 -1
  422. package/dist/extensions/google-meet/index.js +5 -5
  423. package/dist/extensions/groq/index.js +1 -1
  424. package/dist/extensions/groq/media-understanding-provider.js +1 -1
  425. package/dist/extensions/groq/test-api.js +1 -1
  426. package/dist/extensions/huggingface/api.js +3 -3
  427. package/dist/extensions/huggingface/index.js +3 -3
  428. package/dist/extensions/huggingface/models.js +1 -1
  429. package/dist/extensions/huggingface/onboard.js +1 -1
  430. package/dist/extensions/huggingface/provider-catalog.js +2 -2
  431. package/dist/extensions/image-generation-core/api.js +3 -3
  432. package/dist/extensions/image-generation-core/runtime-api.js +2 -2
  433. package/dist/extensions/imessage/api.js +5 -5
  434. package/dist/extensions/imessage/channel-plugin-api.js +1 -1
  435. package/dist/extensions/imessage/contract-api.js +2 -2
  436. package/dist/extensions/imessage/media-contract-api.js +2 -2
  437. package/dist/extensions/imessage/runtime-api.js +5 -5
  438. package/dist/extensions/imessage/test-api.js +2 -2
  439. package/dist/extensions/irc/api.js +2 -2
  440. package/dist/extensions/irc/channel-plugin-api.js +1 -1
  441. package/dist/extensions/kilocode/api.js +2 -2
  442. package/dist/extensions/kilocode/index.js +6 -6
  443. package/dist/extensions/kilocode/onboard.js +2 -2
  444. package/dist/extensions/kilocode/provider-catalog.js +1 -1
  445. package/dist/extensions/kilocode/provider-models.js +1 -1
  446. package/dist/extensions/kilocode/shared.js +1 -1
  447. package/dist/extensions/kimi-coding/index.js +4 -4
  448. package/dist/extensions/kimi-coding/stream.js +1 -1
  449. package/dist/extensions/line/api.js +2 -2
  450. package/dist/extensions/line/channel-plugin-api.js +1 -1
  451. package/dist/extensions/line/contract-api.js +1 -1
  452. package/dist/extensions/line/index.js +1 -1
  453. package/dist/extensions/line/runtime-api.js +7 -7
  454. package/dist/extensions/line/setup-api.js +1 -1
  455. package/dist/extensions/litellm/index.js +1 -1
  456. package/dist/extensions/llm-task/index.js +1 -1
  457. package/dist/extensions/lmstudio/api.js +7 -7
  458. package/dist/extensions/lmstudio/index.js +3 -3
  459. package/dist/extensions/lmstudio/memory-embedding-adapter.js +1 -1
  460. package/dist/extensions/lmstudio/runtime-api.js +1 -1
  461. package/dist/extensions/lobster/runtime-api.js +1 -1
  462. package/dist/extensions/mattermost/api.js +1 -1
  463. package/dist/extensions/mattermost/channel-plugin-api.js +1 -1
  464. package/dist/extensions/mattermost/channel-plugin-runtime.js +1 -1
  465. package/dist/extensions/mattermost/policy-api.js +1 -1
  466. package/dist/extensions/mattermost/runtime-api.js +8 -8
  467. package/dist/extensions/mattermost/slash-route-api.js +1 -1
  468. package/dist/extensions/media-understanding-core/runtime-api.js +2 -2
  469. package/dist/extensions/memory-core/api.js +1 -1
  470. package/dist/extensions/memory-core/cli-metadata.js +2 -2
  471. package/dist/extensions/memory-core/index.js +12 -12
  472. package/dist/extensions/memory-core/manager-runtime.js +1 -1
  473. package/dist/extensions/memory-core/runtime-api.js +7 -7
  474. package/dist/extensions/memory-lancedb/cli-metadata.js +1 -1
  475. package/dist/extensions/memory-lancedb/index.js +2 -2
  476. package/dist/extensions/memory-wiki/cli-metadata.js +1 -1
  477. package/dist/extensions/memory-wiki/index.js +1 -1
  478. package/dist/extensions/microsoft/index.js +1 -1
  479. package/dist/extensions/microsoft/speech-provider.js +1 -1
  480. package/dist/extensions/microsoft/test-api.js +1 -1
  481. package/dist/extensions/microsoft/tts.js +1 -1
  482. package/dist/extensions/microsoft-foundry/auth.js +1 -1
  483. package/dist/extensions/microsoft-foundry/cli.js +1 -1
  484. package/dist/extensions/microsoft-foundry/index.js +1 -1
  485. package/dist/extensions/microsoft-foundry/onboard.js +2 -2
  486. package/dist/extensions/microsoft-foundry/provider.js +1 -1
  487. package/dist/extensions/microsoft-foundry/runtime.js +1 -1
  488. package/dist/extensions/microsoft-foundry/shared-runtime.js +2 -2
  489. package/dist/extensions/microsoft-foundry/shared.js +1 -1
  490. package/dist/extensions/minimax/image-generation-provider.js +1 -1
  491. package/dist/extensions/minimax/index.js +7 -7
  492. package/dist/extensions/minimax/media-understanding-provider.js +1 -1
  493. package/dist/extensions/minimax/music-generation-provider.js +1 -1
  494. package/dist/extensions/minimax/oauth.js +1 -1
  495. package/dist/extensions/minimax/oauth.runtime.js +1 -1
  496. package/dist/extensions/minimax/provider-registration.js +1 -1
  497. package/dist/extensions/minimax/speech-provider.js +1 -1
  498. package/dist/extensions/minimax/test-api.js +5 -5
  499. package/dist/extensions/minimax/video-generation-provider.js +1 -1
  500. package/dist/extensions/minimax/web-search-provider.js +1 -1
  501. package/dist/extensions/mistral/embedding-provider.js +1 -1
  502. package/dist/extensions/mistral/index.js +5 -5
  503. package/dist/extensions/mistral/media-understanding-provider.js +1 -1
  504. package/dist/extensions/mistral/memory-embedding-adapter.js +1 -1
  505. package/dist/extensions/mistral/provider-compat.js +1 -1
  506. package/dist/extensions/mistral/realtime-transcription-provider.js +1 -1
  507. package/dist/extensions/mistral/test-api.js +2 -2
  508. package/dist/extensions/moonshot/index.js +5 -5
  509. package/dist/extensions/moonshot/media-understanding-provider.js +1 -1
  510. package/dist/extensions/moonshot/test-api.js +2 -2
  511. package/dist/extensions/moonshot/web-search-provider.js +1 -1
  512. package/dist/extensions/msteams/api.js +1 -1
  513. package/dist/extensions/msteams/channel-plugin-api.js +1 -1
  514. package/dist/extensions/msteams/runtime-api.js +4 -4
  515. package/dist/extensions/msteams/test-api.js +1 -1
  516. package/dist/extensions/nextcloud-talk/api.js +1 -1
  517. package/dist/extensions/nextcloud-talk/channel-plugin-api.js +1 -1
  518. package/dist/extensions/nextcloud-talk/runtime-api.js +2 -2
  519. package/dist/extensions/nvidia/index.js +1 -1
  520. package/dist/extensions/ollama/api.js +3 -3
  521. package/dist/extensions/ollama/index.js +10 -10
  522. package/dist/extensions/ollama/runtime-api.js +2 -2
  523. package/dist/extensions/ollama/web-search-provider.js +1 -1
  524. package/dist/extensions/openai/api.js +4 -4
  525. package/dist/extensions/openai/base-url.js +1 -1
  526. package/dist/extensions/openai/embedding-batch.js +1 -1
  527. package/dist/extensions/openai/embedding-provider.js +1 -1
  528. package/dist/extensions/openai/image-generation-provider.js +1 -1
  529. package/dist/extensions/openai/index.js +10 -10
  530. package/dist/extensions/openai/media-understanding-provider.js +1 -1
  531. package/dist/extensions/openai/memory-embedding-adapter.js +1 -1
  532. package/dist/extensions/openai/native-web-search.js +1 -1
  533. package/dist/extensions/openai/openai-codex-auth-identity.js +1 -1
  534. package/dist/extensions/openai/openai-codex-device-code.js +1 -1
  535. package/dist/extensions/openai/openai-codex-provider.js +1 -1
  536. package/dist/extensions/openai/openai-codex-shared.js +1 -1
  537. package/dist/extensions/openai/openai-provider.js +1 -1
  538. package/dist/extensions/openai/realtime-provider-shared.js +1 -1
  539. package/dist/extensions/openai/realtime-transcription-provider.js +1 -1
  540. package/dist/extensions/openai/realtime-voice-provider.js +1 -1
  541. package/dist/extensions/openai/register.runtime.js +7 -7
  542. package/dist/extensions/openai/shared.js +1 -1
  543. package/dist/extensions/openai/speech-provider.js +1 -1
  544. package/dist/extensions/openai/test-api.js +6 -6
  545. package/dist/extensions/openai/transport-policy.js +1 -1
  546. package/dist/extensions/openai/video-generation-provider.js +1 -1
  547. package/dist/extensions/opencode/index.js +3 -3
  548. package/dist/extensions/opencode/media-understanding-provider.js +1 -1
  549. package/dist/extensions/opencode-go/index.js +2 -2
  550. package/dist/extensions/opencode-go/media-understanding-provider.js +1 -1
  551. package/dist/extensions/openrouter/api.js +2 -2
  552. package/dist/extensions/openrouter/image-generation-provider.js +1 -1
  553. package/dist/extensions/openrouter/index.js +8 -8
  554. package/dist/extensions/openrouter/media-understanding-provider.js +1 -1
  555. package/dist/extensions/openrouter/register.runtime.js +7 -7
  556. package/dist/extensions/openrouter/speech-provider.js +1 -1
  557. package/dist/extensions/openrouter/stream.js +1 -1
  558. package/dist/extensions/openrouter/test-api.js +3 -3
  559. package/dist/extensions/openshell/index.js +4 -4
  560. package/dist/extensions/perplexity/index.js +1 -1
  561. package/dist/extensions/perplexity/test-api.js +1 -1
  562. package/dist/extensions/perplexity/web-search-provider.js +1 -1
  563. package/dist/extensions/phone-control/index.js +1 -1
  564. package/dist/extensions/qianfan/index.js +1 -1
  565. package/dist/extensions/qwen/index.js +3 -3
  566. package/dist/extensions/qwen/media-understanding-provider.js +1 -1
  567. package/dist/extensions/qwen/test-api.js +2 -2
  568. package/dist/extensions/qwen/video-generation-provider.js +1 -1
  569. package/dist/extensions/runway/index.js +1 -1
  570. package/dist/extensions/runway/video-generation-provider.js +1 -1
  571. package/dist/extensions/sglang/api.js +2 -2
  572. package/dist/extensions/sglang/index.js +2 -2
  573. package/dist/extensions/sglang/models.js +1 -1
  574. package/dist/extensions/signal/api.js +11 -11
  575. package/dist/extensions/signal/channel-plugin-api.js +1 -1
  576. package/dist/extensions/signal/contract-api.js +2 -2
  577. package/dist/extensions/signal/reaction-runtime-api.js +1 -1
  578. package/dist/extensions/signal/runtime-api.js +13 -13
  579. package/dist/extensions/skill-workshop/api.js +1 -1
  580. package/dist/extensions/skill-workshop/index.js +2 -2
  581. package/dist/extensions/speech-core/api.js +2 -2
  582. package/dist/extensions/speech-core/runtime-api.js +4 -4
  583. package/dist/extensions/stepfun/index.js +3 -3
  584. package/dist/extensions/synology-chat/api.js +1 -1
  585. package/dist/extensions/synology-chat/channel-plugin-api.js +1 -1
  586. package/dist/extensions/synthetic/index.js +1 -1
  587. package/dist/extensions/talk-voice/index.js +3 -3
  588. package/dist/extensions/tavily/index.js +2 -2
  589. package/dist/extensions/tavily/web-search-provider.js +1 -1
  590. package/dist/extensions/tencent/index.js +2 -2
  591. package/dist/extensions/thread-ownership/index.js +2 -2
  592. package/dist/extensions/tlon/api.js +2 -2
  593. package/dist/extensions/tlon/channel-plugin-api.js +1 -1
  594. package/dist/extensions/tlon/runtime-api.js +1 -1
  595. package/dist/extensions/tlon/setup-api.js +2 -2
  596. package/dist/extensions/tlon/test-api.js +1 -1
  597. package/dist/extensions/together/index.js +2 -2
  598. package/dist/extensions/together/video-generation-provider.js +1 -1
  599. package/dist/extensions/twitch/api.js +1 -1
  600. package/dist/extensions/twitch/channel-plugin-api.js +1 -1
  601. package/dist/extensions/twitch/setup-plugin-api.js +1 -1
  602. package/dist/extensions/venice/api.js +3 -3
  603. package/dist/extensions/venice/index.js +5 -5
  604. package/dist/extensions/venice/models.js +1 -1
  605. package/dist/extensions/venice/onboard.js +2 -2
  606. package/dist/extensions/venice/provider-catalog.js +1 -1
  607. package/dist/extensions/vercel-ai-gateway/index.js +1 -1
  608. package/dist/extensions/video-generation-core/api.js +2 -2
  609. package/dist/extensions/video-generation-core/runtime-api.js +2 -2
  610. package/dist/extensions/vllm/api.js +2 -2
  611. package/dist/extensions/vllm/index.js +2 -2
  612. package/dist/extensions/vllm/models.js +1 -1
  613. package/dist/extensions/vllm/register.runtime.js +2 -2
  614. package/dist/extensions/voice-call/index.js +3 -3
  615. package/dist/extensions/voice-call/runtime-entry.js +1 -1
  616. package/dist/extensions/voice-call/setup-api.js +2 -2
  617. package/dist/extensions/volcengine/index.js +2 -2
  618. package/dist/extensions/voyage/embedding-batch.js +1 -1
  619. package/dist/extensions/voyage/embedding-provider.js +1 -1
  620. package/dist/extensions/voyage/index.js +1 -1
  621. package/dist/extensions/voyage/memory-embedding-adapter.js +1 -1
  622. package/dist/extensions/vydra/image-generation-provider.js +1 -1
  623. package/dist/extensions/vydra/index.js +5 -5
  624. package/dist/extensions/vydra/shared.js +1 -1
  625. package/dist/extensions/vydra/speech-provider.js +1 -1
  626. package/dist/extensions/vydra/video-generation-provider.js +1 -1
  627. package/dist/extensions/xai/api.js +6 -6
  628. package/dist/extensions/xai/code-execution.js +3 -3
  629. package/dist/extensions/xai/image-generation-provider.js +1 -1
  630. package/dist/extensions/xai/index.js +13 -13
  631. package/dist/extensions/xai/model-definitions.js +1 -1
  632. package/dist/extensions/xai/onboard.js +1 -1
  633. package/dist/extensions/xai/provider-catalog.js +1 -1
  634. package/dist/extensions/xai/provider-models.js +1 -1
  635. package/dist/extensions/xai/realtime-transcription-provider.js +1 -1
  636. package/dist/extensions/xai/setup-api.js +1 -1
  637. package/dist/extensions/xai/speech-provider.js +1 -1
  638. package/dist/extensions/xai/stt.js +1 -1
  639. package/dist/extensions/xai/test-api.js +1 -1
  640. package/dist/extensions/xai/tts.js +2 -2
  641. package/dist/extensions/xai/video-generation-provider.js +1 -1
  642. package/dist/extensions/xai/web-search.js +1 -1
  643. package/dist/extensions/xai/x-search.js +4 -4
  644. package/dist/extensions/xiaomi/index.js +1 -1
  645. package/dist/extensions/zai/api.js +1 -1
  646. package/dist/extensions/zai/index.js +9 -9
  647. package/dist/extensions/zai/media-understanding-provider.js +1 -1
  648. package/dist/extensions/zai/onboard.js +1 -1
  649. package/dist/extensions/zai/test-api.js +1 -1
  650. package/dist/extensions/zalo/api.js +3 -3
  651. package/dist/extensions/zalo/channel-plugin-api.js +1 -1
  652. package/dist/extensions/zalo/runtime-api.js +2 -2
  653. package/dist/extensions/zalo/setup-api.js +2 -2
  654. package/dist/extensions/zalouser/api.js +4 -4
  655. package/dist/extensions/zalouser/channel-plugin-api.js +1 -1
  656. package/dist/extensions/zalouser/runtime-api.js +9 -9
  657. package/dist/extensions/zalouser/setup-plugin-api.js +1 -1
  658. package/dist/extensions/zalouser/test-api.js +4 -4
  659. package/dist/extra-params-DXOULv19.js +388 -0
  660. package/dist/fallbacks-B3xZC-ms.js +2 -0
  661. package/dist/fallbacks-CWDz-tSa.js +31 -0
  662. package/dist/fallbacks-shared-BlZBjxHL.js +111 -0
  663. package/dist/format-DQi1munp.js +245 -0
  664. package/dist/format-Dv6HmuyW.js +176 -0
  665. package/dist/gateway-NYBkUx5r.js +115 -0
  666. package/dist/gateway-cli-E5gYA0U1.js +1325 -0
  667. package/dist/gateway-install-token-CBRkr0l1.js +141 -0
  668. package/dist/gateway-rpc-BrG5Lkfm.js +14 -0
  669. package/dist/gateway-rpc.runtime-BrTGchr9.js +23 -0
  670. package/dist/gateway-rpc.runtime.js +1 -1
  671. package/dist/gateway-status-B6ol1agz.js +584 -0
  672. package/dist/genesis-tools-D_ah3Zek.js +8999 -0
  673. package/dist/genesis-tools.runtime-Cy7aTWEN.js +2 -0
  674. package/dist/genesis-tools.runtime.js +1 -1
  675. package/dist/get-reply-BvVkxYum.js +3879 -0
  676. package/dist/get-reply-from-config.runtime-DR3yiK1R.js +2 -0
  677. package/dist/get-reply-from-config.runtime.js +1 -1
  678. package/dist/gmail-setup-utils-CViEwpXs.js +430 -0
  679. package/dist/gmail-watcher-lifecycle-5JNDL-Qn.js +2 -0
  680. package/dist/gmail-watcher-lifecycle-CbLbP5wf.js +191 -0
  681. package/dist/graph-users-yBNugoFz.js +1337 -0
  682. package/dist/guarded-json-api-BGsPLvM1.js +594 -0
  683. package/dist/health-D_wk2s7j.js +3 -0
  684. package/dist/health-MRnjOx-_.js +469 -0
  685. package/dist/heartbeat-runner-NuhhYnxs.js +5 -0
  686. package/dist/heartbeat-runner-Y4NeUV3L.js +1292 -0
  687. package/dist/heartbeat-runner.runtime-eGfKtcpP.js +4 -0
  688. package/dist/heartbeat-runner.runtime.js +1 -1
  689. package/dist/help-B-jwXS97.js +81 -0
  690. package/dist/hooks-cli-CtfN2vc-.js +433 -0
  691. package/dist/http-endpoint-helpers-CY0P-_y2.js +41 -0
  692. package/dist/http-headers-BQgW7fC2.js +11 -0
  693. package/dist/http-utils-Da8hOLty.js +924 -0
  694. package/dist/identity-PVMitPyT.js +140 -0
  695. package/dist/image-fallbacks-CgeDMYZo.js +2 -0
  696. package/dist/image-fallbacks-CzQ85Eo8.js +31 -0
  697. package/dist/image-flYicC8O.js +272 -0
  698. package/dist/image-generation-core-ByCwGM7N.js +18 -0
  699. package/dist/image-generation-core.auth.runtime-BoHVcjuF.js +2 -0
  700. package/dist/image-generation-core.auth.runtime.js +1 -1
  701. package/dist/image-generation-provider-AZDQCts4.js +228 -0
  702. package/dist/image-generation-provider-BWIWrjvD.js +137 -0
  703. package/dist/image-generation-provider-Bq7iOzlf.js +529 -0
  704. package/dist/image-generation-provider-Bv5-fwPX.js +95 -0
  705. package/dist/image-generation-provider-CGSTJ4hP.js +63 -0
  706. package/dist/image-generation-provider-Cllhe0AP.js +274 -0
  707. package/dist/image-generation-provider-Cs4wRp50.js +157 -0
  708. package/dist/image-generation-runtime-xstqpFrd.js +2 -0
  709. package/dist/image-runtime-CaiLu4CB.js +9 -0
  710. package/dist/inbound-reply-dispatch-jVlLaSqn.js +73 -0
  711. package/dist/inbound.runtime-B-GWbA14.js +4 -0
  712. package/dist/inbound.runtime-ZW0e3dff.js +3 -0
  713. package/dist/inbound.runtime.js +1 -1
  714. package/dist/index.js +2 -2
  715. package/dist/infra-runtime-D2Pqjk-r.js +39 -0
  716. package/dist/init-D_MTYqrw.js +59 -0
  717. package/dist/install-X7wgrwQ1.js +190 -0
  718. package/dist/install-signal-cli-BGP-9Zvn.js +202 -0
  719. package/dist/install.runtime-C4wO4Nr9.js +2 -0
  720. package/dist/install.runtime.js +1 -1
  721. package/dist/io-C8-NJ1hW.js +5 -0
  722. package/dist/io-DNd8mbjy.js +19290 -0
  723. package/dist/jobs-tgmPyzoA.js +734 -0
  724. package/dist/kimi-web-search-provider-BP8Sm_zW.js +80 -0
  725. package/dist/kimi-web-search-provider.runtime-BiS2hZd_.js +2 -0
  726. package/dist/kimi-web-search-provider.runtime-hPogdlIf.js +261 -0
  727. package/dist/kimi-web-search-provider.runtime.js +1 -1
  728. package/dist/legacy-tools-by-sender-C2fBnMkv.js +2 -0
  729. package/dist/legacy-tools-by-sender-PrWN1Kpn.js +95 -0
  730. package/dist/library-DIykYIWD.js +45 -0
  731. package/dist/lifecycle-BNuFzffC.js +571 -0
  732. package/dist/lifecycle-IWN9qlwo.js +229 -0
  733. package/dist/lifecycle-core-CFv5qkS8.js +422 -0
  734. package/dist/lifecycle.runtime-9oo2JCI2.js +2 -0
  735. package/dist/lifecycle.runtime.js +1 -1
  736. package/dist/list-BZ3mMSpA.js +2 -0
  737. package/dist/list-CzQs_k0U.js +131 -0
  738. package/dist/list-CzTJTFOH.js +1201 -0
  739. package/dist/list-qDXsgKhB.js +2 -0
  740. package/dist/list.probe-EOZR6ueo.js +419 -0
  741. package/dist/list.runtime-Cx-ix6ts.js +11 -0
  742. package/dist/list.runtime-zIkM6USX.js +159 -0
  743. package/dist/list.runtime.js +1 -1
  744. package/dist/live-model-switch-CgHU4tVW.js +336 -0
  745. package/dist/llm-slug-generator-DzWIx0nh.js +79 -0
  746. package/dist/llm-slug-generator.js +1 -1
  747. package/dist/load-config-C_8uUnXU.js +35 -0
  748. package/dist/load-context-Bzz0kkeb.js +56 -0
  749. package/dist/local-dispatch.runtime-DLd10Xb1.js +8 -0
  750. package/dist/local-dispatch.runtime.js +1 -1
  751. package/dist/logging-CZpl4hS4.js +2 -0
  752. package/dist/logging-ct4GyQVj.js +13 -0
  753. package/dist/login-DyL8eVfP.js +108 -0
  754. package/dist/logs-cli-mnOTmC9R.js +265 -0
  755. package/dist/logs-cli.runtime-BvP3aise.js +2 -0
  756. package/dist/logs-cli.runtime.js +1 -1
  757. package/dist/main-session-restart-recovery-D7Vxmu7e.js +206 -0
  758. package/dist/managed-image-attachments-BB5u0Zq8.js +2 -0
  759. package/dist/managed-image-attachments-BeRGNdL9.js +635 -0
  760. package/dist/manager-BhNWV4EC.js +2 -0
  761. package/dist/manager-CbZ9ncZs.js +2057 -0
  762. package/dist/manager-ChyGVMLU.js +3114 -0
  763. package/dist/markdown-to-line-DyB8w7ef.js +790 -0
  764. package/dist/mcp/plugin-tools-serve.js +4 -4
  765. package/dist/mcp-cli-CWzLBrDF.js +725 -0
  766. package/dist/mcp-config-CDKA6_LY.js +115 -0
  767. package/dist/mcp-http-1jD7LE0a.js +529 -0
  768. package/dist/media-contract-BLCEEI6I.js +49 -0
  769. package/dist/media-contract-api-CosBQX2V.js +2 -0
  770. package/dist/media-runtime-D2xH8y9Y.js +329 -0
  771. package/dist/media-understanding-B2qGioD4.js +85 -0
  772. package/dist/media-understanding-provider-BKieNTVy.js +13 -0
  773. package/dist/media-understanding-provider-Bp_FPuBe.js +12 -0
  774. package/dist/media-understanding-provider-BpxYGf2K.js +21 -0
  775. package/dist/media-understanding-provider-CGjB0jWY.js +69 -0
  776. package/dist/media-understanding-provider-CSCR1DOo.js +12 -0
  777. package/dist/media-understanding-provider-Cdopdt7A.js +85 -0
  778. package/dist/media-understanding-provider-Cv77beub.js +37 -0
  779. package/dist/media-understanding-provider-Cvr1QElU.js +18 -0
  780. package/dist/media-understanding-provider-DRMnI7Om.js +28 -0
  781. package/dist/media-understanding-provider-DorcYzVO.js +18 -0
  782. package/dist/media-understanding-runtime-CtocCbLl.js +2 -0
  783. package/dist/memory-24Kp99di.js +342 -0
  784. package/dist/memory-core-host-engine-embeddings-j3l9VHMa.js +2 -0
  785. package/dist/memory-core-host-engine-foundation-C5L_o_kv.js +11 -0
  786. package/dist/memory-core-host-engine-qmd-BjRQxINV.js +2 -0
  787. package/dist/memory-core-host-runtime-cli-P80xoEfr.js +9 -0
  788. package/dist/memory-core-host-runtime-core-CCiyGJ4d.js +8 -0
  789. package/dist/memory-embedding-adapter-DHCNhMQQ.js +32 -0
  790. package/dist/memory-embedding-adapter-DPMNJ50b.js +123 -0
  791. package/dist/memory-embedding-adapter-PANdmah2.js +50 -0
  792. package/dist/memory-embedding-adapter-gyNKuuJg.js +55 -0
  793. package/dist/memory-host-core-BLJfQ7tv.js +2 -0
  794. package/dist/memory-host-search-CXYoKllg.js +12 -0
  795. package/dist/memory-host-search.runtime-BlSP4tRs.js +2 -0
  796. package/dist/memory-host-search.runtime.js +1 -1
  797. package/dist/memory-runtime-BR50X7bD.js +2 -0
  798. package/dist/memory-runtime-CsD3VOEo.js +26 -0
  799. package/dist/message-BAhd_1ud.js +232 -0
  800. package/dist/message-action-runner-CH2jjT21.js +1407 -0
  801. package/dist/message-action-runner-DW7z_bMx.js +2 -0
  802. package/dist/message-actions-BjBGSsJB.js +143 -0
  803. package/dist/message.config.runtime-sOiwk5jH.js +2 -0
  804. package/dist/message.config.runtime.js +1 -1
  805. package/dist/message.gateway.runtime-sUc85g7X.js +2 -0
  806. package/dist/message.gateway.runtime.js +1 -1
  807. package/dist/metadata-registry-loader-BO5ga4BG.js +2 -0
  808. package/dist/metadata-registry-loader-DXWKbRU1.js +16 -0
  809. package/dist/minimax-vlm-M6jWEPQW.js +233 -0
  810. package/dist/minimax-web-search-provider-D2OTaFur.js +53 -0
  811. package/dist/minimax-web-search-provider.runtime-DC6wIpv_.js +2 -0
  812. package/dist/minimax-web-search-provider.runtime-Drj1xU_u.js +140 -0
  813. package/dist/minimax-web-search-provider.runtime.js +1 -1
  814. package/dist/mock-yKTkxAIg.js +136 -0
  815. package/dist/model-Dox-u3UD.js +666 -0
  816. package/dist/model-DqVVHjXR.js +3 -0
  817. package/dist/model-auth-CDl8OFEJ.js +456 -0
  818. package/dist/model-auth-env-BawHgU1x.js +68 -0
  819. package/dist/model-auth-label-BM5SET4I.js +46 -0
  820. package/dist/model-catalog-1XlBrFEV.js +159 -0
  821. package/dist/model-catalog-S5TqfK9t.js +2 -0
  822. package/dist/model-definitions-epX5XXUF.js +260 -0
  823. package/dist/model-fallback-CmX4SjzE.js +827 -0
  824. package/dist/model-fallback-auth.runtime-Dz9zpmf4.js +4 -0
  825. package/dist/model-fallback-auth.runtime.js +1 -1
  826. package/dist/model-picker-B9B-lkWH.js +3 -0
  827. package/dist/model-picker-DbWIvwfd.js +554 -0
  828. package/dist/model-picker-visibility-DTdSdobf.js +13 -0
  829. package/dist/model-picker.runtime-fnHv9FZI.js +15 -0
  830. package/dist/model-picker.runtime.js +1 -1
  831. package/dist/model-selection-DBvbuIS-.js +213 -0
  832. package/dist/model-suppression-DuBnrvXK.js +28 -0
  833. package/dist/model-suppression.runtime-_96p7psP.js +7 -0
  834. package/dist/model-suppression.runtime.js +1 -1
  835. package/dist/models-BStOaoOP.js +18 -0
  836. package/dist/models-BtIpPCk2.js +760 -0
  837. package/dist/models-CAqi2TQ-.js +47 -0
  838. package/dist/models-CVuV0GE0.js +157 -0
  839. package/dist/models-DFRkfhsN.js +569 -0
  840. package/dist/models-auth-status-D6lrM56M.js +201 -0
  841. package/dist/models-cli-CmnbAk2M.js +219 -0
  842. package/dist/models-config-DDM74chF.js +2 -0
  843. package/dist/models-config-DnicdxyQ.js +933 -0
  844. package/dist/models-config.providers.secrets-DIfmfODH.js +304 -0
  845. package/dist/models-http-n4zWGd1p.js +92 -0
  846. package/dist/models-nU-69lrH.js +18 -0
  847. package/dist/models.fetch-BANynh-l.js +518 -0
  848. package/dist/monitor-AyGe8vyk.js +1237 -0
  849. package/dist/monitor-DQuy2kx-.js +671 -0
  850. package/dist/monitor-DmtJiX5o.js +788 -0
  851. package/dist/monitor-GB8lcnal.js +1459 -0
  852. package/dist/monitor-IuVjATac.js +1661 -0
  853. package/dist/monitor-auth-rF7mr3Cm.js +207 -0
  854. package/dist/monitor-bnOvJyLN.js +2 -0
  855. package/dist/monitor-oHi8GwXc.js +295 -0
  856. package/dist/monitor-processing-B1ewr2qF.js +1974 -0
  857. package/dist/monitor.runtime-BrUD5_VN.js +2 -0
  858. package/dist/monitor.runtime.js +1 -1
  859. package/dist/monitor.webhook-BvJG6Xbh.js +180 -0
  860. package/dist/msteams-DUDRy3xt.js +35 -0
  861. package/dist/music-generation-provider-6ru_5Xe9.js +170 -0
  862. package/dist/music-generation-provider-CfDrN0vg.js +63 -0
  863. package/dist/mutate-atVXfhNp.js +116 -0
  864. package/dist/native-hook-relay-CTpTLgCA.js +519 -0
  865. package/dist/native-web-search-C6deWq6V.js +64 -0
  866. package/dist/nextcloud-talk-BH2uWRZ2.js +17 -0
  867. package/dist/node-cli-AWE1ZFfV.js +2506 -0
  868. package/dist/nodes-cli-B7IWCrYq.js +1046 -0
  869. package/dist/nodes-utils-Dg2hrC3z.js +84 -0
  870. package/dist/notify-bsxfkOWp.js +315 -0
  871. package/dist/oauth-BKY3WmDu.js +75 -0
  872. package/dist/oauth-BKZJiY9a.js +152 -0
  873. package/dist/oauth-D4AUTZ6P.js +2 -0
  874. package/dist/oauth-N3WLEMX0.js +139 -0
  875. package/dist/oauth.flow-C0eia8-I.js +45 -0
  876. package/dist/oauth.flow-DfN3z9Nf.js +3 -0
  877. package/dist/onboard-B2eZziXs.js +49 -0
  878. package/dist/onboard-BQaZtwIU.js +632 -0
  879. package/dist/onboard-CGOeDj-J.js +58 -0
  880. package/dist/onboard-DTP_mB9k.js +25 -0
  881. package/dist/onboard-DY6XCMjI.js +29 -0
  882. package/dist/onboard-YitR883F.js +25 -0
  883. package/dist/onboard-custom-BQtg1wQW.js +271 -0
  884. package/dist/onboard-custom-Bz-MYvTm.js +3 -0
  885. package/dist/onboard-ffMqs4Bf.js +316 -0
  886. package/dist/onboard-gP5XFNCO.js +25 -0
  887. package/dist/onboard-search-Hz02JQSQ.js +323 -0
  888. package/dist/openai-codex-auth-identity-H1dPXVzb.js +45 -0
  889. package/dist/openai-codex-device-code-DNVug9Q3.js +164 -0
  890. package/dist/openai-codex-provider-HYYOGyC5.js +464 -0
  891. package/dist/openai-codex-shared-C4b7n1WS.js +6 -0
  892. package/dist/openai-http-D_7Nk3iN.js +500 -0
  893. package/dist/openai-provider-C6QMbZeL.js +313 -0
  894. package/dist/opencode-DGmHIBEa.js +35 -0
  895. package/dist/openresponses-http-BITxvD4V.js +1128 -0
  896. package/dist/order-DZPHX4Ka.js +109 -0
  897. package/dist/outbound-media-B2QJEeDc.js +57 -0
  898. package/dist/outbound-runtime-DZyO1T_R.js +5 -0
  899. package/dist/outbound.runtime-C8_lBQcx.js +2 -0
  900. package/dist/outbound.runtime.js +1 -1
  901. package/dist/pair-command-approve-D3s1W5go.js +44 -0
  902. package/dist/pairing-cli-kZkl_DC7.js +117 -0
  903. package/dist/perplexity-web-search-provider-CzCigaqV.js +92 -0
  904. package/dist/perplexity-web-search-provider.runtime-B86YHY5f.js +324 -0
  905. package/dist/perplexity-web-search-provider.runtime-U6g1JO38.js +2 -0
  906. package/dist/perplexity-web-search-provider.runtime.js +1 -1
  907. package/dist/persistent-bindings.lifecycle-CCR6khHJ.js +85 -0
  908. package/dist/persistent-bindings.lifecycle-Dgoo5bpE.js +2 -0
  909. package/dist/pi-bundle-mcp-runtime-BYDTyW-h.js +2 -0
  910. package/dist/pi-bundle-mcp-runtime-DaIHhxDu.js +829 -0
  911. package/dist/pi-bundle-mcp-tools-Biz_skfK.js +108 -0
  912. package/dist/pi-embedded-C2l80M7j.js +4 -0
  913. package/dist/pi-embedded-DMHGJgoQ.js +2905 -0
  914. package/dist/pi-embedded-subscribe.handlers.compaction.runtime-BRiX-RqX.js +23 -0
  915. package/dist/pi-embedded-subscribe.handlers.compaction.runtime.js +1 -1
  916. package/dist/pi-embedded.runtime-fA0EsIue.js +4 -0
  917. package/dist/pi-embedded.runtime.js +1 -1
  918. package/dist/pi-model-discovery-k8VUE5Tp.js +237 -0
  919. package/dist/pi-tool-definition-adapter-B4hSYdYX.js +217 -0
  920. package/dist/pi-tools-YCHBvJG0.js +1057 -0
  921. package/dist/pi-tools.before-tool-call-BsyruRs4.js +433 -0
  922. package/dist/pi-tools.before-tool-call-D1maRTbl.js +2 -0
  923. package/dist/pi-tools.before-tool-call.runtime-1acRmC9A.js +13 -0
  924. package/dist/pi-tools.before-tool-call.runtime.js +1 -1
  925. package/dist/plivo-D4do6QU0.js +394 -0
  926. package/dist/plugin-DmBZwzWQ.js +12195 -0
  927. package/dist/plugin-enabled-rr_Y1Kwh.js +140 -0
  928. package/dist/plugin-install-config-policy-ZN1F58XF.js +137 -0
  929. package/dist/plugin-registration-J1JWqMZg.js +23 -0
  930. package/dist/plugin-registry-7OvG7Tu6.js +3 -0
  931. package/dist/plugin-registry-BcYuO-i5.js +2 -0
  932. package/dist/plugin-sdk/.boundary-entry-shims.stamp +1 -1
  933. package/dist/plugin-sdk/acp-binding-runtime.js +1 -1
  934. package/dist/plugin-sdk/acp-runtime.js +3 -3
  935. package/dist/plugin-sdk/agent-harness-runtime.js +9 -9
  936. package/dist/plugin-sdk/agent-harness.js +10 -10
  937. package/dist/plugin-sdk/agent-runtime.js +11 -11
  938. package/dist/plugin-sdk/approval-client-runtime.js +2 -2
  939. package/dist/plugin-sdk/approval-handler-runtime.js +1 -1
  940. package/dist/plugin-sdk/approval-native-runtime.js +2 -2
  941. package/dist/plugin-sdk/approval-reply-runtime.js +2 -2
  942. package/dist/plugin-sdk/approval-runtime.js +6 -6
  943. package/dist/plugin-sdk/bluebubbles.js +2 -2
  944. package/dist/plugin-sdk/browser-config-runtime.js +2 -2
  945. package/dist/plugin-sdk/browser-node-runtime.js +3 -3
  946. package/dist/plugin-sdk/browser-setup-tools.js +3 -3
  947. package/dist/plugin-sdk/browser-support.js +8 -8
  948. package/dist/plugin-sdk/channel-core.js +2 -2
  949. package/dist/plugin-sdk/channel-inbound.js +3 -3
  950. package/dist/plugin-sdk/command-auth.js +2 -2
  951. package/dist/plugin-sdk/command-status-runtime.js +1 -1
  952. package/dist/plugin-sdk/compat.js +3 -3
  953. package/dist/plugin-sdk/config-runtime.js +7 -7
  954. package/dist/plugin-sdk/conversation-binding-runtime.js +1 -1
  955. package/dist/plugin-sdk/conversation-runtime.js +4 -4
  956. package/dist/plugin-sdk/core.js +2 -2
  957. package/dist/plugin-sdk/direct-dm.js +1 -1
  958. package/dist/plugin-sdk/image-generation-core.js +3 -3
  959. package/dist/plugin-sdk/image-generation-runtime.js +2 -2
  960. package/dist/plugin-sdk/inbound-reply-dispatch.js +1 -1
  961. package/dist/plugin-sdk/index.js +1 -1
  962. package/dist/plugin-sdk/infra-runtime.js +4 -4
  963. package/dist/plugin-sdk/irc.js +2 -2
  964. package/dist/plugin-sdk/matrix.js +1 -1
  965. package/dist/plugin-sdk/mattermost.js +3 -3
  966. package/dist/plugin-sdk/media-generation-runtime-shared.js +1 -1
  967. package/dist/plugin-sdk/media-generation-runtime.js +1 -1
  968. package/dist/plugin-sdk/media-runtime.js +5 -5
  969. package/dist/plugin-sdk/media-understanding-runtime.js +2 -2
  970. package/dist/plugin-sdk/media-understanding.js +2 -2
  971. package/dist/plugin-sdk/memory-core-host-engine-embeddings.js +2 -2
  972. package/dist/plugin-sdk/memory-core-host-engine-foundation.js +2 -2
  973. package/dist/plugin-sdk/memory-core-host-engine-qmd.js +2 -2
  974. package/dist/plugin-sdk/memory-core-host-runtime-cli.js +2 -2
  975. package/dist/plugin-sdk/memory-core-host-runtime-core.js +2 -2
  976. package/dist/plugin-sdk/memory-core.js +4 -4
  977. package/dist/plugin-sdk/memory-host-core.js +2 -2
  978. package/dist/plugin-sdk/memory-host-search.js +1 -1
  979. package/dist/plugin-sdk/models-provider-runtime.js +1 -1
  980. package/dist/plugin-sdk/msteams.js +3 -3
  981. package/dist/plugin-sdk/nextcloud-talk.js +2 -2
  982. package/dist/plugin-sdk/nostr.js +1 -1
  983. package/dist/plugin-sdk/opencode.js +1 -1
  984. package/dist/plugin-sdk/outbound-runtime.js +2 -2
  985. package/dist/plugin-sdk/provider-auth-api-key.js +5 -5
  986. package/dist/plugin-sdk/provider-auth-runtime.js +2 -2
  987. package/dist/plugin-sdk/provider-auth.js +8 -8
  988. package/dist/plugin-sdk/provider-entry.js +1 -1
  989. package/dist/plugin-sdk/provider-setup.js +2 -2
  990. package/dist/plugin-sdk/provider-stream-family.js +3 -3
  991. package/dist/plugin-sdk/provider-stream.js +2 -2
  992. package/dist/plugin-sdk/reply-dispatch-runtime.js +2 -2
  993. package/dist/plugin-sdk/reply-runtime.js +5 -5
  994. package/dist/plugin-sdk/runtime-secret-resolution.js +1 -1
  995. package/dist/plugin-sdk/runtime.js +3 -3
  996. package/dist/plugin-sdk/sandbox.js +1 -1
  997. package/dist/plugin-sdk/self-hosted-provider-setup.js +1 -1
  998. package/dist/plugin-sdk/session-store-runtime.js +2 -2
  999. package/dist/plugin-sdk/session-transcript-hit.js +2 -2
  1000. package/dist/plugin-sdk/session-visibility.js +1 -1
  1001. package/dist/plugin-sdk/simple-completion-runtime.js +1 -1
  1002. package/dist/plugin-sdk/speech-core.js +1 -1
  1003. package/dist/plugin-sdk/src/infra/semver-compare.d.ts +1 -0
  1004. package/dist/plugin-sdk/testing.js +5 -5
  1005. package/dist/plugin-sdk/text-runtime.js +2 -2
  1006. package/dist/plugin-sdk/tlon.js +1 -1
  1007. package/dist/plugin-sdk/video-generation-core.js +2 -2
  1008. package/dist/plugin-sdk/video-generation-runtime.js +2 -2
  1009. package/dist/plugin-sdk/zalo.js +1 -1
  1010. package/dist/plugin-sdk/zalouser.js +1 -1
  1011. package/dist/plugin-service-CPY8FSW2.js +2890 -0
  1012. package/dist/plugins/provider-discovery.runtime.js +1 -1
  1013. package/dist/plugins/provider-runtime.runtime.js +1 -1
  1014. package/dist/plugins/runtime/index.js +1 -1
  1015. package/dist/plugins-cli-xVUY8V-3.js +584 -0
  1016. package/dist/plugins-command-helpers-oZG-T69i.js +107 -0
  1017. package/dist/plugins-install-persist-Ccyj_thC.js +133 -0
  1018. package/dist/plugins-update-command-D_q-p0ED.js +1057 -0
  1019. package/dist/policy-DDUw681i.js +328 -0
  1020. package/dist/postinstall-inventory.json +933 -933
  1021. package/dist/prepare.runtime-BfnpyhHB.js +815 -0
  1022. package/dist/prepare.runtime.js +1 -1
  1023. package/dist/preview-warnings-Cb65Drvj.js +120 -0
  1024. package/dist/probe-B78ZATWo.js +243 -0
  1025. package/dist/probe-CCdD6_vN.js +1443 -0
  1026. package/dist/probe-Ctrcd_Q7.js +2205 -0
  1027. package/dist/probe-D9IFIte1.js +2 -0
  1028. package/dist/probe-DXMI0QlZ.js +74 -0
  1029. package/dist/probe-Dy-moN-J.js +32 -0
  1030. package/dist/probe-KtX2HjXM.js +45 -0
  1031. package/dist/probe.runtime-CNJWHyTn.js +2 -0
  1032. package/dist/probe.runtime.js +1 -1
  1033. package/dist/profiles-C0gEr4Vt.js +111 -0
  1034. package/dist/program-DxZA1yAX.js +111 -0
  1035. package/dist/prompt-select-styled-CATG4Xp5.js +20 -0
  1036. package/dist/provider-C7oJz1U0.js +70 -0
  1037. package/dist/provider-api-key-auth-Dp8hp-Ml.js +114 -0
  1038. package/dist/provider-api-key-auth.runtime-nb7eC5vo.js +14 -0
  1039. package/dist/provider-api-key-auth.runtime.js +1 -1
  1040. package/dist/provider-auth-Df3lSzr_.js +46 -0
  1041. package/dist/provider-auth-api-key-CZA78Uou.js +5 -0
  1042. package/dist/provider-auth-choice-DzrRJAic.js +228 -0
  1043. package/dist/provider-auth-choice-preference-BDTIHERa.js +26 -0
  1044. package/dist/provider-auth-choice.runtime-CVrNfUP0.js +14 -0
  1045. package/dist/provider-auth-choice.runtime-DOC3zhP2.js +2 -0
  1046. package/dist/provider-auth-choice.runtime.js +1 -1
  1047. package/dist/provider-auth-guidance-CVpgabZ6.js +2 -0
  1048. package/dist/provider-auth-guidance-CZ-VI4e5.js +34 -0
  1049. package/dist/provider-auth-helpers-rNcrL2rf.js +173 -0
  1050. package/dist/provider-auth-input-zpegYxxe.js +119 -0
  1051. package/dist/provider-auth-runtime-spGhqq1R.js +149 -0
  1052. package/dist/provider-catalog-B_612t69.js +26 -0
  1053. package/dist/provider-catalog-Bo9KagTv.js +11 -0
  1054. package/dist/provider-catalog-C4IkuJHX.js +12 -0
  1055. package/dist/provider-catalog-CEHPmBtG.js +24 -0
  1056. package/dist/provider-catalog-UJ8mWU0J.js +11 -0
  1057. package/dist/provider-compat-CqDox4I4.js +37 -0
  1058. package/dist/provider-discovery.runtime--0zGwmtf.js +118 -0
  1059. package/dist/provider-discovery.runtime.js +1 -1
  1060. package/dist/provider-dispatcher-BZp3Stzr.js +2 -0
  1061. package/dist/provider-dispatcher-JJxN7BDL.js +22 -0
  1062. package/dist/provider-entry-BzH2PNpN.js +106 -0
  1063. package/dist/provider-flow-B_VNl-lk.js +147 -0
  1064. package/dist/provider-model-defaults-PMGtjcr2.js +6 -0
  1065. package/dist/provider-models-DBv9Enx4.js +119 -0
  1066. package/dist/provider-models-Du3smcTu.js +35 -0
  1067. package/dist/provider-registration-B3sbIgIZ.js +218 -0
  1068. package/dist/provider-registration-B9ECEmSg.js +37 -0
  1069. package/dist/provider-runtime-CE8zqYv8.js +472 -0
  1070. package/dist/provider-runtime-CV5mC70X.js +2 -0
  1071. package/dist/provider-runtime.runtime-B4Idxtd0.js +26 -0
  1072. package/dist/provider-runtime.runtime.js +1 -1
  1073. package/dist/provider-self-hosted-setup-Comuw-z3.js +251 -0
  1074. package/dist/provider-setup-DnUcdtJq.js +2 -0
  1075. package/dist/provider-stream-B8nU1r79.js +290 -0
  1076. package/dist/provider-stream-DQRHM0a1.js +2174 -0
  1077. package/dist/provider-stream-family-C4XL1sCH.js +2 -0
  1078. package/dist/provider-usage-CNNFTSFt.js +4 -0
  1079. package/dist/provider-usage-DkdPMGc6.js +71 -0
  1080. package/dist/provider-usage.load-Ckz1tFpH.js +334 -0
  1081. package/dist/provider-utils-BR35tIjk.js +49 -0
  1082. package/dist/provider-wizard-_jfjTfSM.js +166 -0
  1083. package/dist/providers.runtime-DHetxgM5.js +2 -0
  1084. package/dist/providers.runtime-PiYTktu_.js +164 -0
  1085. package/dist/providers.runtime.js +1 -1
  1086. package/dist/proxy-stream-wrappers-CSbzc-1F.js +394 -0
  1087. package/dist/prune-DlDJX10W.js +83 -0
  1088. package/dist/pw-ai-CCPJq-CT.js +2511 -0
  1089. package/dist/pw-role-snapshot-D65unjCD.js +380 -0
  1090. package/dist/qmd-manager-BVXvoOqt.js +1921 -0
  1091. package/dist/qr-cli-IMKzycXh.js +349 -0
  1092. package/dist/qr-cli-W8X3Ha5T.js +2 -0
  1093. package/dist/qr-image-BAPDnfbt.js +2 -0
  1094. package/dist/queue-Rq1mceUG.js +409 -0
  1095. package/dist/reaction-runtime-api-D7i4oMn9.js +116 -0
  1096. package/dist/reactions-D9eRHeXM.js +998 -0
  1097. package/dist/read-best-effort-config.runtime-CsH29elm.js +2 -0
  1098. package/dist/read-best-effort-config.runtime.js +1 -1
  1099. package/dist/read-capability-7xOdYqOo.js +412 -0
  1100. package/dist/realtime-provider-shared-C2fZT5O_.js +37 -0
  1101. package/dist/realtime-transcription-provider-CCX9jOLy.js +120 -0
  1102. package/dist/realtime-transcription-provider-CqIc1zwy.js +184 -0
  1103. package/dist/realtime-transcription-provider-CyI79CyM.js +183 -0
  1104. package/dist/realtime-transcription-provider-CydzsmVb.js +172 -0
  1105. package/dist/realtime-transcription-provider-D4PaV840.js +184 -0
  1106. package/dist/realtime-voice-provider-DgL6WxN7.js +489 -0
  1107. package/dist/record-shared-DxabpimX.js +10 -0
  1108. package/dist/register-service-commands-D37K4_BJ.js +71 -0
  1109. package/dist/register.agent-p1q6ZWSs.js +248 -0
  1110. package/dist/register.backup-Bxvo3j_q.js +64 -0
  1111. package/dist/register.configure-tgXCoIHv.js +15 -0
  1112. package/dist/register.maintenance-BtBgu8zC.js +438 -0
  1113. package/dist/register.message-B5msOUKt.js +329 -0
  1114. package/dist/register.onboard-BO11PDUs.js +81 -0
  1115. package/dist/register.runtime-D8XvwfoZ.js +81 -0
  1116. package/dist/register.runtime.js +1 -1
  1117. package/dist/register.setup-Ba19XSJi.js +150 -0
  1118. package/dist/register.status-health-sessions-Bne0mmgw.js +1215 -0
  1119. package/dist/register.subclis--mdYCZZM.js +3 -0
  1120. package/dist/register.subclis-_kuyreQm.js +29 -0
  1121. package/dist/register.subclis-core-UkVTqwB1.js +249 -0
  1122. package/dist/register.wallet-aTazgPYX.js +159 -0
  1123. package/dist/repair-sequencing-CjiQXU4z.js +145 -0
  1124. package/dist/replay-policy-XaA2Foet.js +8 -0
  1125. package/dist/reply-dispatch-runtime-DcxOLr7n.js +13 -0
  1126. package/dist/reply-media-paths.runtime-CmS_Bnnf.js +2 -0
  1127. package/dist/reply-media-paths.runtime-DCj1JhDR.js +146 -0
  1128. package/dist/reply-media-paths.runtime.js +1 -1
  1129. package/dist/reply-payload-transform-DmArXXXO.js +720 -0
  1130. package/dist/reply-runtime-B4VQJnqi.js +11 -0
  1131. package/dist/reply.runtime-B990ty9C.js +2 -0
  1132. package/dist/reply.runtime.js +1 -1
  1133. package/dist/resolve-IXqG_vKU.js +259 -0
  1134. package/dist/response-generator-DCxui-Yb.js +175 -0
  1135. package/dist/restart-C-4J0cf2.js +490 -0
  1136. package/dist/root-help-D9aeVXNr.js +44 -0
  1137. package/dist/route-reply-q5jc2Nv9.js +162 -0
  1138. package/dist/route-reply.runtime-Co8TnDf9.js +2 -0
  1139. package/dist/route-reply.runtime.js +1 -1
  1140. package/dist/routes-BSmEgP46.js +2 -0
  1141. package/dist/routes-Z67chkN5.js +3341 -0
  1142. package/dist/rpc-CBQZvJME.js +61 -0
  1143. package/dist/rpc-context-e__2PCau.js +17 -0
  1144. package/dist/rpc.runtime-ClhNVRer.js +21 -0
  1145. package/dist/rpc.runtime.js +1 -1
  1146. package/dist/run-auth-profile.runtime-CMkCqc7k.js +2 -0
  1147. package/dist/run-auth-profile.runtime.js +1 -1
  1148. package/dist/run-context.runtime-DCgb3ETM.js +2 -0
  1149. package/dist/run-context.runtime.js +1 -1
  1150. package/dist/run-delivery.runtime-Bj566BTH.js +530 -0
  1151. package/dist/run-delivery.runtime.js +1 -1
  1152. package/dist/run-embedded.runtime-DuB-mQh2.js +4 -0
  1153. package/dist/run-embedded.runtime.js +1 -1
  1154. package/dist/run-execution-cli.runtime-Oy4FGfj5.js +4 -0
  1155. package/dist/run-execution-cli.runtime.js +1 -1
  1156. package/dist/run-executor.runtime-B7-lfFh3.js +277 -0
  1157. package/dist/run-executor.runtime.js +1 -1
  1158. package/dist/run-main-1Fvwazhp.js +516 -0
  1159. package/dist/run-model-catalog.runtime-B7wlXnDF.js +2 -0
  1160. package/dist/run-model-catalog.runtime.js +1 -1
  1161. package/dist/run-subagent-registry.runtime-Bx9Wga3d.js +2 -0
  1162. package/dist/run-subagent-registry.runtime.js +1 -1
  1163. package/dist/run-wait-C-VgbefQ.js +135 -0
  1164. package/dist/runner-BKhQg4av.js +966 -0
  1165. package/dist/runner.entries-Dbp1RZd9.js +604 -0
  1166. package/dist/runs-DUTtPgDm.js +496 -0
  1167. package/dist/runs-DWOm31T_.js +2 -0
  1168. package/dist/runtime-B3upjFki.js +475 -0
  1169. package/dist/runtime-B6k9iJRB.js +187 -0
  1170. package/dist/runtime-BV7JmOaE.js +9 -0
  1171. package/dist/runtime-BuEvshdw.js +94 -0
  1172. package/dist/runtime-Bu_cc482.js +107 -0
  1173. package/dist/runtime-CsaTxb99.js +187 -0
  1174. package/dist/runtime-D7npxl4G.js +973 -0
  1175. package/dist/runtime-DB1WNkhW.js +262 -0
  1176. package/dist/runtime-Db_oJ87Z.js +2 -0
  1177. package/dist/runtime-Dlvh7_uU.js +116 -0
  1178. package/dist/runtime-DvzcF4-r.js +2 -0
  1179. package/dist/runtime-NlpdlX79.js +72 -0
  1180. package/dist/runtime-_-L5ftbu.js +269 -0
  1181. package/dist/runtime-api-BkVIoPU9.js +4 -0
  1182. package/dist/runtime-api-CdhgyHMB.js +9 -0
  1183. package/dist/runtime-api-CmlBBCCY.js +9 -0
  1184. package/dist/runtime-api-DnhXPE_z.js +14 -0
  1185. package/dist/runtime-embedded-pi.runtime-DpKqDUrl.js +2 -0
  1186. package/dist/runtime-embedded-pi.runtime.js +1 -1
  1187. package/dist/runtime-entry-CWugm0Uj.js +2769 -0
  1188. package/dist/runtime-internal-Bu1n9i4P.js +2 -0
  1189. package/dist/runtime-model-auth.runtime-B0HsFXG7.js +2 -0
  1190. package/dist/runtime-model-auth.runtime-CwdDdKqY.js +45 -0
  1191. package/dist/runtime-model-auth.runtime.js +1 -1
  1192. package/dist/runtime-options-CN4g8VJE.js +275 -0
  1193. package/dist/runtime-prepare.runtime-B3oyafQ4.js +80 -0
  1194. package/dist/runtime-prepare.runtime.js +1 -1
  1195. package/dist/runtime-provider-Dcc5OeVJ.js +21 -0
  1196. package/dist/runtime-registry-loader-B5mIkwhZ.js +85 -0
  1197. package/dist/runtime-registry-loader-CGNT5-qz.js +2 -0
  1198. package/dist/runtime-schema-Jjsquqvq.js +27780 -0
  1199. package/dist/runtime-shared-BC82_Fzc.js +267 -0
  1200. package/dist/runtime-web-channel-plugin-DQoEo6bK.js +203 -0
  1201. package/dist/runtime-web-tools-BizCqA0v.js +1477 -0
  1202. package/dist/runtime-web-tools-fallback.runtime-CYAGzwsD.js +9 -0
  1203. package/dist/runtime-web-tools-fallback.runtime.js +1 -1
  1204. package/dist/sandbox-C95gEa17.js +3 -0
  1205. package/dist/sandbox-DAnx9TYc.js +1156 -0
  1206. package/dist/sandbox-cli-CPs_gL72.js +450 -0
  1207. package/dist/scan-C8jthyct.js +523 -0
  1208. package/dist/scan-DEd4q4aN.js +2 -0
  1209. package/dist/secrets-cli-iBL8NBAq.js +2101 -0
  1210. package/dist/security-cli-CzYBRa4n.js +486 -0
  1211. package/dist/selection-BOalx5uy.js +2 -0
  1212. package/dist/selection-BZFVKdFz.js +7736 -0
  1213. package/dist/semver-compare-tPC_r5LW.js +64 -0
  1214. package/dist/send-C4mKkkWW.js +156 -0
  1215. package/dist/send-CMqcsAS2.js +534 -0
  1216. package/dist/send-C_36w3lb.js +102 -0
  1217. package/dist/send.runtime-vJT5TzDj.js +2 -0
  1218. package/dist/send.runtime.js +1 -1
  1219. package/dist/server-BTmWWR_9.js +13 -0
  1220. package/dist/server-CBQVrNY0.js +77 -0
  1221. package/dist/server-context-Dq2VA7I4.js +2 -0
  1222. package/dist/server-context-O_WUP8OV.js +847 -0
  1223. package/dist/server-middleware-BTovsGYd.js +120 -0
  1224. package/dist/server-node-events-B8PLg0eQ.js +481 -0
  1225. package/dist/server-plugin-bootstrap-ChIvqLMw.js +2 -0
  1226. package/dist/server-plugin-bootstrap-Rbxd2g6a.js +11333 -0
  1227. package/dist/server-restart-sentinel-BCd6AqrQ.js +697 -0
  1228. package/dist/server-startup-memory-ClzqrFwF.js +32 -0
  1229. package/dist/server.impl-CEOWGKN5.js +12735 -0
  1230. package/dist/service-Dw-BzupJ.js +940 -0
  1231. package/dist/session-DF38Qk5T.js +48 -0
  1232. package/dist/session-cost-usage-CbaKFiYP.js +651 -0
  1233. package/dist/session-envelope-SoEaHn7u.js +18 -0
  1234. package/dist/session-key-BpQtNboQ.js +65 -0
  1235. package/dist/session-kill-http-ChCr5CQ3.js +110 -0
  1236. package/dist/session-meta-DHOj7FVp.js +109 -0
  1237. package/dist/session-override-Cra7WfkP.js +106 -0
  1238. package/dist/session-reset-model.runtime-CITOeORk.js +133 -0
  1239. package/dist/session-reset-model.runtime.js +1 -1
  1240. package/dist/session-reset-service-DsYIDYdh.js +471 -0
  1241. package/dist/session-route-rem428sJ.js +93 -0
  1242. package/dist/session-status.runtime-CFmGwoCm.js +2 -0
  1243. package/dist/session-status.runtime.js +1 -1
  1244. package/dist/session-store-DfVF72xW.js +126 -0
  1245. package/dist/session-store.runtime-jJK2KnR6.js +2 -0
  1246. package/dist/session-store.runtime.js +1 -1
  1247. package/dist/session-subagent-reactivation.runtime-DLkpnURC.js +2 -0
  1248. package/dist/session-subagent-reactivation.runtime.js +1 -1
  1249. package/dist/session-system-events-BS6g-vqa.js +63 -0
  1250. package/dist/session-tab-registry-DWyzIez5.js +491 -0
  1251. package/dist/session-transcript-hit-Mxv1sZGp.js +41 -0
  1252. package/dist/session-updates-BdB1lGXz.js +236 -0
  1253. package/dist/session-updates.runtime-6GlaYt-B.js +2 -0
  1254. package/dist/session-updates.runtime.js +1 -1
  1255. package/dist/session-utils-BPYVECh0.js +926 -0
  1256. package/dist/session-visibility-CJocpWP0.js +147 -0
  1257. package/dist/sessions--xDkaJeX.js +48 -0
  1258. package/dist/sessions-D3RqoN9N.js +2 -0
  1259. package/dist/sessions-DrFkAEV2.js +281 -0
  1260. package/dist/sessions-c-R_ynJR.js +16 -0
  1261. package/dist/sessions-helpers-CMf9gVTZ.js +304 -0
  1262. package/dist/sessions-history-http-C5iZkW8x.js +383 -0
  1263. package/dist/sessions-resolve-D1hmolC-.js +174 -0
  1264. package/dist/sessions.runtime-DMPmzLE0.js +2 -0
  1265. package/dist/sessions.runtime.js +1 -1
  1266. package/dist/set-BraQD5KU.js +17 -0
  1267. package/dist/set-DZUigywb.js +2 -0
  1268. package/dist/set-image-C08k8cVg.js +2 -0
  1269. package/dist/set-image-CsCPBHZC.js +17 -0
  1270. package/dist/setup-D1ekkhVk.js +495 -0
  1271. package/dist/setup-FPfOBbYL.js +421 -0
  1272. package/dist/setup-api-DilgjV01.js +29 -0
  1273. package/dist/setup-core-CAFnyY_a.js +393 -0
  1274. package/dist/setup-core-CFAiauCt.js +171 -0
  1275. package/dist/setup-core-RgJfQc-C.js +176 -0
  1276. package/dist/setup-core-dF4To6Jd.js +184 -0
  1277. package/dist/setup-surface-BpSH7F_m.js +351 -0
  1278. package/dist/setup-surface-C0l9bHY3.js +286 -0
  1279. package/dist/setup-surface-CfcFHZln.js +403 -0
  1280. package/dist/setup-surface-CyDRXq_1.js +219 -0
  1281. package/dist/setup-surface-DGJUq-2P.js +72 -0
  1282. package/dist/setup-surface-DiYEprKG.js +3 -0
  1283. package/dist/setup.finalize-JPqhcPh5.js +539 -0
  1284. package/dist/shared-3gP_6DZV.js +76 -0
  1285. package/dist/shared-C9fN-WCy.js +198 -0
  1286. package/dist/shared-CZOgyBro.js +60 -0
  1287. package/dist/shared-Cz9c46Aj.js +121 -0
  1288. package/dist/shared-D7BxFCKU.js +217 -0
  1289. package/dist/shared-DrgQbH3q.js +186 -0
  1290. package/dist/shared-runtime-xz83dsyA.js +7 -0
  1291. package/dist/shared-u-3RmeL1.js +135 -0
  1292. package/dist/short-term-promotion-DCHcaW2F.js +1543 -0
  1293. package/dist/simple-completion-runtime-CfFpRl7j.js +158 -0
  1294. package/dist/simple-completion-transport-C1ooKj9X.js +33 -0
  1295. package/dist/skills-clawhub-DxVmnVrv.js +275 -0
  1296. package/dist/skills-cli-DCr7N_Sq.js +370 -0
  1297. package/dist/slash-state-C7nXXf23.js +1911 -0
  1298. package/dist/speech-core-CmPRP1zB.js +94 -0
  1299. package/dist/speech-provider-CNOimJB2.js +209 -0
  1300. package/dist/speech-provider-D9i0DEZ1.js +216 -0
  1301. package/dist/speech-provider-DGbn1IrA.js +209 -0
  1302. package/dist/speech-provider-DKyYgpwf.js +103 -0
  1303. package/dist/speech-provider-eDG83bBp.js +184 -0
  1304. package/dist/speech-provider-mKY_GAkS.js +170 -0
  1305. package/dist/speech-provider-zoWs7x7l.js +395 -0
  1306. package/dist/src-LnF0REtW.js +3974 -0
  1307. package/dist/stage-sandbox-media.runtime-CErRBxI5.js +232 -0
  1308. package/dist/stage-sandbox-media.runtime.js +1 -1
  1309. package/dist/startup-auth-8XVCRzQi.js +180 -0
  1310. package/dist/startup-context-CxTy7OzN.js +312 -0
  1311. package/dist/state-migrations-CHc2Y8Pl.js +820 -0
  1312. package/dist/status-4n9xL7HY.js +2 -0
  1313. package/dist/status-B4kD5cCF.js +2 -0
  1314. package/dist/status-CARBoVql.js +209 -0
  1315. package/dist/status-COK71LP_.js +3 -0
  1316. package/dist/status-ChOxNWSb.js +62 -0
  1317. package/dist/status-DagNCfVv.js +323 -0
  1318. package/dist/status-DxcqzXtf.js +397 -0
  1319. package/dist/status-all-r7zyk41X.js +498 -0
  1320. package/dist/status-f2DLmjOF.js +190 -0
  1321. package/dist/status-json-C_wESP21.js +14 -0
  1322. package/dist/status-json-command-C6w9ZAHp.js +84 -0
  1323. package/dist/status-message-tZJ_0MsI.js +466 -0
  1324. package/dist/status-message.runtime-KeyKW26h.js +6 -0
  1325. package/dist/status-message.runtime.js +1 -1
  1326. package/dist/status-queue.runtime-R5ZlyNdK.js +2 -0
  1327. package/dist/status-queue.runtime.js +1 -1
  1328. package/dist/status-runtime-shared-Bq_SUJpC.js +257 -0
  1329. package/dist/status-subagents.runtime-03fp3eBE.js +18 -0
  1330. package/dist/status-subagents.runtime.js +1 -1
  1331. package/dist/status-text-CNvz374U.js +237 -0
  1332. package/dist/status.command.text-runtime-C4-j2lqa.js +15 -0
  1333. package/dist/status.gateway-connection.runtime-zjQmormq.js +2 -0
  1334. package/dist/status.gateway-connection.runtime.js +1 -1
  1335. package/dist/status.gather-BhjoJVEs.js +2 -0
  1336. package/dist/status.gather-zdywRvBb.js +292 -0
  1337. package/dist/status.runtime-CKd1Qzxg.js +2 -0
  1338. package/dist/status.runtime-DB31ZRnK.js +2 -0
  1339. package/dist/status.runtime.js +1 -1
  1340. package/dist/status.scan-DjhdTOWP.js +65 -0
  1341. package/dist/status.scan-overview-BYxTBsOw.js +379 -0
  1342. package/dist/status.scan.deps.runtime-B7f3inzh.js +18 -0
  1343. package/dist/status.scan.deps.runtime.js +1 -1
  1344. package/dist/status.scan.fast-json-Dz0JcORG.js +2 -0
  1345. package/dist/status.scan.fast-json-FroEIZ9d.js +132 -0
  1346. package/dist/status.scan.runtime-CtXWwjb8.js +409 -0
  1347. package/dist/status.scan.runtime.js +1 -1
  1348. package/dist/status.summary-3UVa_X5B.js +214 -0
  1349. package/dist/status.summary-BGzGsyZB.js +2 -0
  1350. package/dist/status.update-CxsGc95A.js +79 -0
  1351. package/dist/status.update-Czi5MNWC.js +2 -0
  1352. package/dist/store-BdedeUHG.js +4 -0
  1353. package/dist/store-CUSu4-Qr.js +910 -0
  1354. package/dist/store-load-CUqchamJ.js +370 -0
  1355. package/dist/store-zVJHt5-N.js +1235 -0
  1356. package/dist/store.runtime-DEIs4Pal.js +2 -0
  1357. package/dist/store.runtime.js +1 -1
  1358. package/dist/stream-BLThzHaS.js +134 -0
  1359. package/dist/stream-BbTa3Gk4.js +27 -0
  1360. package/dist/stream-CKjYSBQh.js +664 -0
  1361. package/dist/stt-DM1vajYf.js +66 -0
  1362. package/dist/subagent-announce-BvRFZ87M.js +351 -0
  1363. package/dist/subagent-announce-delivery-QvuOM46S.js +726 -0
  1364. package/dist/subagent-announce-output-fOtzkOiP.js +364 -0
  1365. package/dist/subagent-capabilities-1ZqaiPST.js +251 -0
  1366. package/dist/subagent-control-DwnzmG6T.js +506 -0
  1367. package/dist/subagent-control.runtime-BNoZSftx.js +3 -0
  1368. package/dist/subagent-control.runtime.js +1 -1
  1369. package/dist/subagent-followup.runtime-DxR1eP_x.js +68 -0
  1370. package/dist/subagent-followup.runtime.js +1 -1
  1371. package/dist/subagent-list-w3yWfW9R.js +172 -0
  1372. package/dist/subagent-orphan-recovery-CiBbDxX3.js +305 -0
  1373. package/dist/subagent-registry-D5FrT_tn.js +3 -0
  1374. package/dist/subagent-registry-DbPekx8d.js +1753 -0
  1375. package/dist/subagent-registry.runtime.js +1 -1
  1376. package/dist/subagent-spawn-W-bTaU9l.js +1005 -0
  1377. package/dist/system-cli-B443uVHG.js +59 -0
  1378. package/dist/target-id-0_iIeBLg.js +107 -0
  1379. package/dist/targets-3Lcm8HoL.js +67 -0
  1380. package/dist/task-executor-B5e9_Hmt.js +360 -0
  1381. package/dist/task-owner-access-CIEssJ78.js +74 -0
  1382. package/dist/task-registry-M1bHrFvP.js +2366 -0
  1383. package/dist/task-registry-delivery-runtime-CiHBC7sJ.js +3 -0
  1384. package/dist/task-registry-delivery-runtime-M4O7ffju.js +2 -0
  1385. package/dist/task-registry.maintenance-BURvMU0r.js +2 -0
  1386. package/dist/task-registry.maintenance-CgrLoBqi.js +416 -0
  1387. package/dist/tavily-client--ZxuZ8JY.js +193 -0
  1388. package/dist/tavily-client-D3L2LtMF.js +2 -0
  1389. package/dist/tavily-search-provider-gMJgCeVS.js +62 -0
  1390. package/dist/telegram/audit.js +2 -2
  1391. package/dist/telegram/token.js +2 -2
  1392. package/dist/telnyx-UQXrfg_e.js +260 -0
  1393. package/dist/testing-CRy_6-wt.js +575 -0
  1394. package/dist/text-report-B3-4Dvfb.js +587 -0
  1395. package/dist/text-runtime-B4pK_Jpd.js +290 -0
  1396. package/dist/tool-auth-shared-B9CrADMc.js +90 -0
  1397. package/dist/tool-config-shared-DrS6NohH.js +19 -0
  1398. package/dist/tool-policy-pipeline-CC9_1Ta1.js +109 -0
  1399. package/dist/tool-resolution-C52y5Qtc.js +90 -0
  1400. package/dist/tool-schema-runtime-BCx7p6Ey.js +167 -0
  1401. package/dist/tools-F4mE-OU0.js +113 -0
  1402. package/dist/tools-effective-inventory-WlIlqM7G.js +152 -0
  1403. package/dist/tools-invoke-http-B04Rc8tG.js +206 -0
  1404. package/dist/tools.runtime-DV_PUXuD.js +4 -0
  1405. package/dist/tools.runtime.js +1 -1
  1406. package/dist/transcript-Bu-SsK2V.js +312 -0
  1407. package/dist/transcript-resolve.runtime-CnnOwtyU.js +2 -0
  1408. package/dist/transcript-resolve.runtime.js +1 -1
  1409. package/dist/transcript.runtime-DBVz9-zl.js +2 -0
  1410. package/dist/transcript.runtime.js +1 -1
  1411. package/dist/transport-policy-Byy3HifG.js +75 -0
  1412. package/dist/trash-BV5Gcx3a.js +24 -0
  1413. package/dist/tts-BmCzLLJ_.js +183 -0
  1414. package/dist/tts-D4vxwDtE.js +64 -0
  1415. package/dist/tui-cli-DMZ07qRK.js +4575 -0
  1416. package/dist/twilio-CZsjakcE.js +609 -0
  1417. package/dist/update-DSox1dVQ.js +1282 -0
  1418. package/dist/update-check-CaPWrLU-.js +438 -0
  1419. package/dist/update-cli-DeBm7b4g.js +1759 -0
  1420. package/dist/update-runner-eQrUTjUC.js +1892 -0
  1421. package/dist/update-startup-DgWKoqop.js +331 -0
  1422. package/dist/update-startup-XA38a9KV.js +2 -0
  1423. package/dist/upgrade-C9ke1SCc.js +1226 -0
  1424. package/dist/usage-CLnhtd59.js +606 -0
  1425. package/dist/usage-format-CaxDNPPm.js +2 -0
  1426. package/dist/usage-format-CeDc5if9.js +703 -0
  1427. package/dist/video-generation-core-CuFcXCvE.js +6 -0
  1428. package/dist/video-generation-provider-B5_G-r4P.js +64 -0
  1429. package/dist/video-generation-provider-BD7G-8X5.js +118 -0
  1430. package/dist/video-generation-provider-CIIRQd3c.js +254 -0
  1431. package/dist/video-generation-provider-CLCLvtWm.js +264 -0
  1432. package/dist/video-generation-provider-CpPkkFNc.js +187 -0
  1433. package/dist/video-generation-provider-CvmPMAXP.js +271 -0
  1434. package/dist/video-generation-provider-D4l7Q8t7.js +78 -0
  1435. package/dist/video-generation-provider-DNe73dVv.js +221 -0
  1436. package/dist/video-generation-provider-M281XkUx.js +281 -0
  1437. package/dist/video-generation-provider-Y9urhhT4.js +287 -0
  1438. package/dist/video-generation-provider-iA6Vaqc_2.js +77 -0
  1439. package/dist/video-generation-runtime-BfNI4qH8.js +2 -0
  1440. package/dist/video-generation-task-status-I3jvAjUL.js +163 -0
  1441. package/dist/voice-mapping-FtCIKOHQ.js +41 -0
  1442. package/dist/wait-for-idle-before-flush-BZhF2ejZ.js +5986 -0
  1443. package/dist/web-fetch-providers.runtime-DN6FBm7n.js +34 -0
  1444. package/dist/web-fetch-providers.runtime.js +1 -1
  1445. package/dist/web-provider-runtime-shared-C1Sy3sQI.js +180 -0
  1446. package/dist/web-search-CgZ8TUj8.js +61 -0
  1447. package/dist/web-search-provider-DL2LLOsz.js +163 -0
  1448. package/dist/web-search-provider.runtime-B01EY78s.js +2 -0
  1449. package/dist/web-search-provider.runtime-Bgwk3KBe.js +185 -0
  1450. package/dist/web-search-provider.runtime.js +1 -1
  1451. package/dist/web-search-providers.runtime-BFtJCprz.js +42 -0
  1452. package/dist/web-search-providers.runtime.js +1 -1
  1453. package/dist/webhook-shared-DMbP4pF5.js +12 -0
  1454. package/dist/webhooks-cli-lrEfJsYQ.js +321 -0
  1455. package/dist/wizard-models-CMKeAr_M.js +161 -0
  1456. package/dist/workflow-runtime-hF0PG5ky.js +485 -0
  1457. package/dist/x-search-config-CqjeeiPu.js +36 -0
  1458. package/dist/x-search-shared-DomcrGQ_.js +75 -0
  1459. package/dist/zalo-js-B0dhviG7.js +1157 -0
  1460. package/package.json +1 -1
  1461. package/dist/abort-ca8hDmJr.js +0 -201
  1462. package/dist/abort-cutoff.runtime-vuCUcBP6.js +0 -20
  1463. package/dist/abort.runtime-BrChEuUS.js +0 -2
  1464. package/dist/accounts-B8y7HaWy.js +0 -66
  1465. package/dist/accounts-BM62Jgez.js +0 -43
  1466. package/dist/accounts-C1ECKXaw.js +0 -107
  1467. package/dist/accounts-CNMAC2Vo.js +0 -365
  1468. package/dist/accounts-DH8HU_Fu.js +0 -104
  1469. package/dist/accounts-DWQpG06j.js +0 -2
  1470. package/dist/accounts.runtime-DkGk9q3U.js +0 -2
  1471. package/dist/acp-cli-BLpWVnc7.js +0 -2193
  1472. package/dist/acp-spawn-D1p6b1gk.js +0 -2
  1473. package/dist/acp-spawn-qoyl9NiU.js +0 -1093
  1474. package/dist/acp-stateful-target-driver-NL9txhIM.js +0 -89
  1475. package/dist/action-agents-C729fJ_P.js +0 -67
  1476. package/dist/action-focus-53k9XP4K.js +0 -132
  1477. package/dist/action-help-bIJZBYLz.js +0 -7
  1478. package/dist/action-info-BBzvYFX_.js +0 -101
  1479. package/dist/action-kill-C4fa3E9I.js +0 -33
  1480. package/dist/action-list-BEiIbwP1.js +0 -21
  1481. package/dist/action-log-Cq7RLW2T.js +0 -30
  1482. package/dist/action-send-DyiHgRwh.js +0 -39
  1483. package/dist/action-spawn-CEZfDvXU.js +0 -47
  1484. package/dist/action-unfocus-CpAw3JOi.js +0 -29
  1485. package/dist/actions.runtime-BKEwPyo7.js +0 -18
  1486. package/dist/actions.runtime-Bp0UusIf.js +0 -5
  1487. package/dist/agent-C2hwJefQ.js +0 -2
  1488. package/dist/agent-command-BAAeGRql.js +0 -874
  1489. package/dist/agent-harness-runtime-Czrx53YL.js +0 -144
  1490. package/dist/agent-runner-utils-DzShckNa.js +0 -239
  1491. package/dist/agent-runner.runtime-d_EtNxBK.js +0 -3455
  1492. package/dist/agent-runtime-DNgz7AOP.js +0 -18
  1493. package/dist/agents-DSV7R_Ys.js +0 -953
  1494. package/dist/agents-DZP5tYDr.js +0 -5
  1495. package/dist/agents.command-shared-CX0AI2SJ.js +0 -40
  1496. package/dist/aliases-CZemdpTj.js +0 -2
  1497. package/dist/aliases-KefnmoaT.js +0 -96
  1498. package/dist/api-B87UL3DC.js +0 -2
  1499. package/dist/api-BWN4PIiM.js +0 -4
  1500. package/dist/api-CO05iXNH.js +0 -139
  1501. package/dist/api-CVXzxdCp.js +0 -48
  1502. package/dist/api-CyjlApHT.js +0 -3
  1503. package/dist/api-D3Y0Edm_.js +0 -3
  1504. package/dist/api-DArm1ECd.js +0 -5
  1505. package/dist/api-DgHFv6c12.js +0 -2
  1506. package/dist/api-qoDs2ceF2.js +0 -2
  1507. package/dist/apply-DmW0sOwq.js +0 -508
  1508. package/dist/apply.runtime-DR3dLbbu.js +0 -166
  1509. package/dist/apply.runtime-DiBS7O9R.js +0 -2
  1510. package/dist/approval-client-helpers-CLYckHzb.js +0 -82
  1511. package/dist/approval-handler-runtime-BgRQnG4g.js +0 -439
  1512. package/dist/approval-native-helpers-XhNhwe4W.js +0 -33
  1513. package/dist/approval-native-runtime-DAsraihr.js +0 -729
  1514. package/dist/approval-renderers-bwrFaldo.js +0 -64
  1515. package/dist/attempt-execution.runtime-D_FGkDQz.js +0 -509
  1516. package/dist/attempt-execution.shared-WN2pMInT.js +0 -22
  1517. package/dist/attempt.prompt-helpers-CDzDUi1C.js +0 -221
  1518. package/dist/attempt.tool-run-context-DitxaTPJ.js +0 -933
  1519. package/dist/audit-extra.async-BCum5o_S.js +0 -971
  1520. package/dist/audit-k5sVbkP5.js +0 -939
  1521. package/dist/audit-membership-runtime-CF94r_hx.js +0 -550
  1522. package/dist/audit.deep.runtime-De20ia-s.js +0 -2
  1523. package/dist/audit.nondeep.runtime-D2m0GAmG.js +0 -880
  1524. package/dist/audit.runtime-BVZs63pn.js +0 -7
  1525. package/dist/auth-B6TDtKdZ.js +0 -177
  1526. package/dist/auth-CfUOZJWq.js +0 -2
  1527. package/dist/auth-DtQv6fQz.js +0 -56
  1528. package/dist/auth-_9zCNYrQ.js +0 -383
  1529. package/dist/auth-choice-B4-IWttU.js +0 -354
  1530. package/dist/auth-choice-CqMHwtjq.js +0 -3
  1531. package/dist/auth-choice-D1VRwrad.js +0 -88
  1532. package/dist/auth-choice-options-CvEDY7-R.js +0 -97
  1533. package/dist/auth-choice-prompt-1EriFNA8.js +0 -2
  1534. package/dist/auth-choice-prompt-XcsSlY4m.js +0 -37
  1535. package/dist/auth-choice.apply.api-providers-DA5zxSX2.js +0 -34
  1536. package/dist/auth-choice.apply.api-providers-DoVm22Ln.js +0 -2
  1537. package/dist/auth-choice.plugin-providers.runtime-R7dET-rk.js +0 -11
  1538. package/dist/auth-health-DGNHS1hv.js +0 -183
  1539. package/dist/auth-install-policy-kR4_sljC.js +0 -195
  1540. package/dist/auth-order-C3zGI0s9.js +0 -96
  1541. package/dist/auth-order-XQ9ZGPd9.js +0 -2
  1542. package/dist/auth-profiles-Bn8y2hqR.js +0 -679
  1543. package/dist/backup-create-ChqA8nu7.js +0 -395
  1544. package/dist/banner-BwacLUaf.js +0 -2
  1545. package/dist/banner-CFADygMU.js +0 -336
  1546. package/dist/base-url-l_nyPQC0.js +0 -15
  1547. package/dist/bash-tools-BBRtIa6j.js +0 -2824
  1548. package/dist/bash-tools-BI0d1TdC.js +0 -3
  1549. package/dist/binding-routing-Cvm5c1IV.js +0 -85
  1550. package/dist/binding-targets-DSs4NXbd.js +0 -121
  1551. package/dist/bluebubbles-5jDMT0b0.js +0 -77
  1552. package/dist/brave-web-search-provider-BuSp_bii.js +0 -111
  1553. package/dist/brave-web-search-provider.runtime-Dts_65-F.js +0 -229
  1554. package/dist/brave-web-search-provider.shared-BSh8nzHC.js +0 -174
  1555. package/dist/bridge-auth-registry-C5sNQKcj.js +0 -23
  1556. package/dist/bridge-server-B6Hfjg1u.js +0 -113
  1557. package/dist/browser-config-runtime-BKzd6AyE.js +0 -7
  1558. package/dist/browser-control-auth-BbzwesFd.js +0 -2
  1559. package/dist/browser-node-runtime-BDVW4WBK.js +0 -12
  1560. package/dist/browser-profiles-BFgCMoPL.js +0 -2
  1561. package/dist/browser-runtime-PsMSIYQ7.js +0 -387
  1562. package/dist/browser-setup-tools-CFB52yQc.js +0 -13
  1563. package/dist/build-TlobwpQW.js +0 -550
  1564. package/dist/call-Bx8lENb2.js +0 -3
  1565. package/dist/call-jYRpeAWm.js +0 -331
  1566. package/dist/call-status-DB7m5q5K.js +0 -33
  1567. package/dist/call.runtime-BRluUZbD.js +0 -2
  1568. package/dist/capability-cli-B3u_GAig.js +0 -1401
  1569. package/dist/card-command-Db-58QX1.js +0 -241
  1570. package/dist/catalog-provider-DLdEsRxZ.js +0 -40
  1571. package/dist/catchup-CtxTwzY8.js +0 -300
  1572. package/dist/channel-BJKHBfnq.js +0 -491
  1573. package/dist/channel-BNNnYzwK.js +0 -1100
  1574. package/dist/channel-BXS-Hd8p.js +0 -226
  1575. package/dist/channel-C4XWpowe.js +0 -1174
  1576. package/dist/channel-CJQdQgPr.js +0 -840
  1577. package/dist/channel-C_zWAu4D.js +0 -595
  1578. package/dist/channel-CtGzrF-K.js +0 -1802
  1579. package/dist/channel-O9DE4IIq.js +0 -350
  1580. package/dist/channel-WHUOtJme.js +0 -297
  1581. package/dist/channel-WoDWDxqx.js +0 -1320
  1582. package/dist/channel-add-wizard-CW2kMHCQ.js +0 -2
  1583. package/dist/channel-add-wizard-MPlDWR78.js +0 -125
  1584. package/dist/channel-core-BJjq9SOq.js +0 -5
  1585. package/dist/channel-inbound-DLs-YfUs.js +0 -31
  1586. package/dist/channel-plugin-runtime-D5jtM0YK.js +0 -771
  1587. package/dist/channel-runtime-4UjeDmDI.js +0 -425
  1588. package/dist/channel-summary-D34JTfKA.js +0 -129
  1589. package/dist/channel-summary-DN_PekkS.js +0 -2
  1590. package/dist/channel-ys2FFqi1.js +0 -453
  1591. package/dist/channel.runtime-B38Ky3R9.js +0 -109
  1592. package/dist/channel.runtime-BMhrGM1i.js +0 -26
  1593. package/dist/channel.runtime-Bl8WYZvF.js +0 -576
  1594. package/dist/channel.runtime-CX2p8xgN.js +0 -67
  1595. package/dist/channel.runtime-CrN1mC1m.js +0 -2364
  1596. package/dist/channel.runtime-D3kAsCsR.js +0 -89
  1597. package/dist/channel.runtime-DG-EUnSC.js +0 -4
  1598. package/dist/channel.runtime-IfV1Md6p.js +0 -430
  1599. package/dist/channel.runtime-w1tHjTOa.js +0 -34702
  1600. package/dist/channel.setup-dXwiMlyi.js +0 -10
  1601. package/dist/channels-DJZu0HEX.js +0 -733
  1602. package/dist/channels-cli-DJMgmakk.js +0 -268
  1603. package/dist/chat-DdKbu8CA.js +0 -2758
  1604. package/dist/chrome-Cs0ME7FH.js +0 -1181
  1605. package/dist/chrome-mcp-DkIFJETj.js +0 -2
  1606. package/dist/chrome-mcp-DxhdLTiR.js +0 -600
  1607. package/dist/chrome.executables-CfWpFyzT.js +0 -541
  1608. package/dist/clawbot-cli-CnHERFYk.js +0 -9
  1609. package/dist/clawhub-BtR3rMxw.js +0 -300
  1610. package/dist/clawhub-oHDXDom4.js +0 -400
  1611. package/dist/cli-Bt8TEQTY.js +0 -3726
  1612. package/dist/cli-C0Ib5uEO.js +0 -683
  1613. package/dist/cli-CN0o_7BK.js +0 -2
  1614. package/dist/cli-CSNAd6Sz.js +0 -72
  1615. package/dist/cli-DMPwqYqc.js +0 -219
  1616. package/dist/cli-DaXzOAcN.js +0 -154
  1617. package/dist/cli-O9WMyUsH.js +0 -2
  1618. package/dist/cli-ctyAqh0j.js +0 -2
  1619. package/dist/cli-runner-CNlk7xmx.js +0 -286
  1620. package/dist/cli-runner.runtime-BK4sQk1m.js +0 -3
  1621. package/dist/cli-runner.runtime-BT8ZZn-R.js +0 -4
  1622. package/dist/cli.runtime-DU7swpBI.js +0 -1261
  1623. package/dist/client-CQdcTPUf.js +0 -138
  1624. package/dist/codex-native-web-search-BB3PWg7n.js +0 -3
  1625. package/dist/codex-native-web-search-BLevwOtN.js +0 -113
  1626. package/dist/combined-store-gateway-Cp7gSMlV.js +0 -163
  1627. package/dist/command-auth-DkJWb2HE.js +0 -76
  1628. package/dist/command-config-resolution-CIRWRfR8.js +0 -23
  1629. package/dist/command-config-resolution-DYZWj6Zm.js +0 -2
  1630. package/dist/command-config-resolution.runtime-CUtVJOf0.js +0 -2
  1631. package/dist/command-execution-startup-DEsPsZEU.js +0 -305
  1632. package/dist/command-registry-5QcI0D66.js +0 -4
  1633. package/dist/command-registry-6nNAhDaE.js +0 -9
  1634. package/dist/command-registry-core-B-Tfqu1R.js +0 -101
  1635. package/dist/command-secret-gateway-BNnWdAlq.js +0 -528
  1636. package/dist/command-status.runtime-CKgimR6Y.js +0 -87
  1637. package/dist/commands-acp-DSm97O5v.js +0 -77
  1638. package/dist/commands-compact.runtime-BXhP6WJ6.js +0 -10
  1639. package/dist/commands-core.runtime-6efmBjL5.js +0 -2
  1640. package/dist/commands-handlers.runtime-FzK-n0L8.js +0 -4597
  1641. package/dist/commands-models-CYEA4oks.js +0 -327
  1642. package/dist/commands-reset-hooks-BuIPeOLT.js +0 -133
  1643. package/dist/commands-status-BQnB5OSX.js +0 -16
  1644. package/dist/commands-status.runtime-B6GcfEDm.js +0 -3
  1645. package/dist/commands-subagents-control.runtime-CByd528A.js +0 -2
  1646. package/dist/commands-subagents-control.runtime-CqI4LMYa.js +0 -3
  1647. package/dist/commands-system-prompt-BD_LeeZk.js +0 -2
  1648. package/dist/commands-system-prompt-C2Md_Ia1.js +0 -158
  1649. package/dist/commands.runtime-CwiPf7Cc.js +0 -166
  1650. package/dist/compact-B_4bMVpw.js +0 -1118
  1651. package/dist/compact.runtime-BhRqiBXG.js +0 -12
  1652. package/dist/completion-cli-DPAWxu_A.js +0 -328
  1653. package/dist/config-B3ZoZd5V.js +0 -5
  1654. package/dist/config-D1ooXKCx.js +0 -9
  1655. package/dist/config-DidVsRqm.js +0 -251
  1656. package/dist/config-api-BRmW2LUx.js +0 -2
  1657. package/dist/config-cli-Ibsfa8Bm.js +0 -1078
  1658. package/dist/config-compat-B57zq89q.js +0 -130
  1659. package/dist/config-compat-ixP32ZwJ.js +0 -126
  1660. package/dist/config-guard-DnIVuR5d.js +0 -96
  1661. package/dist/config-runtime-Dr1JoMKQ.js +0 -32
  1662. package/dist/config-validation-COw3JcuF.js +0 -30
  1663. package/dist/configure-BfQlIIk0.js +0 -1245
  1664. package/dist/configure-DQ-DTcOJ.js +0 -2
  1665. package/dist/connect-options-zqTIEl6K.js +0 -699
  1666. package/dist/context-D5Ro5yCf.js +0 -278
  1667. package/dist/context-g9ANkVhl.js +0 -2
  1668. package/dist/control-auth-Bi8COEXI.js +0 -125
  1669. package/dist/control-service-DkYQV-Tl.js +0 -156
  1670. package/dist/control-ui-BA0iGAG9.js +0 -688
  1671. package/dist/conversation-id-BLY9ffjm.js +0 -38
  1672. package/dist/conversation-id-DVeOM5Jh.js +0 -235
  1673. package/dist/conversation-label-generator-Cc-S8z9Q.js +0 -56
  1674. package/dist/conversation-runtime-gJt7AAg2.js +0 -31
  1675. package/dist/core-BtmNtOpS.js +0 -275
  1676. package/dist/create-an7bnQv1.js +0 -80
  1677. package/dist/cron-cli-CPG4lnt5.js +0 -713
  1678. package/dist/daemon-cli-BXuqNS-3.js +0 -12
  1679. package/dist/daemon-install-BHDgo9qp.js +0 -64
  1680. package/dist/daemon-install-auth-profiles-store.runtime-DuRtWxoP.js +0 -2
  1681. package/dist/daemon-install-plan.shared-BQxPrU7X.js +0 -266
  1682. package/dist/ddg-client-CntWAh8N.js +0 -147
  1683. package/dist/ddg-search-provider-BeZ9HYXK.js +0 -54
  1684. package/dist/delegate-DyITI93V.js +0 -64
  1685. package/dist/deliver-BUbBF0P-.js +0 -3
  1686. package/dist/deliver-VYqGta5q.js +0 -747
  1687. package/dist/deliver-runtime-LEUVCSBV.js +0 -2
  1688. package/dist/delivery-outbound.runtime-DmSpBsJ2.js +0 -6
  1689. package/dist/delivery.runtime-Dwii5usm.js +0 -253
  1690. package/dist/deps-BMuC_6j0.js +0 -73
  1691. package/dist/deps-CIN4SVhK.js +0 -2
  1692. package/dist/detached-task-runtime-CTUQj84i.js +0 -73
  1693. package/dist/devices-cli-B_M2eMJ1.js +0 -496
  1694. package/dist/diagnostic-Ca7xQ_sl.js +0 -400
  1695. package/dist/diagnostic-support-export-uKXdbhuH.js +0 -533
  1696. package/dist/diagnostics-waSemGnZ.js +0 -154
  1697. package/dist/direct-dm-CiSjkmkL.js +0 -64
  1698. package/dist/directive-handling.fast-lane-BXAeEY49.js +0 -66
  1699. package/dist/directive-handling.impl-Bz01SejL.js +0 -703
  1700. package/dist/directive-handling.impl-CiFN7Cu1.js +0 -2
  1701. package/dist/directive-handling.model-selection-DZzMOtyl.js +0 -114
  1702. package/dist/directive-handling.persist.runtime-BzIB50Uy.js +0 -215
  1703. package/dist/directory-cli-17h5XIsS.js +0 -240
  1704. package/dist/dispatch-BnQSIx2G.js +0 -1131
  1705. package/dist/dispatch-acp-CaNQyl2L.js +0 -981
  1706. package/dist/dispatch-acp-manager.runtime-DJK1eHYX.js +0 -3
  1707. package/dist/dispatch-acp-media.runtime-FDZi3hhw.js +0 -4
  1708. package/dist/dispatch-acp-session.runtime-tA9m4L7t.js +0 -2
  1709. package/dist/dispatch-acp.runtime-Bl5cvtX4.js +0 -19
  1710. package/dist/dns-cli-QNL0F2Ri.js +0 -192
  1711. package/dist/doctor-auth-BzeKJols.js +0 -172
  1712. package/dist/doctor-auth-legacy-oauth-aZ9YjnlK.js +0 -2
  1713. package/dist/doctor-auth-legacy-oauth-zNlHTB4O.js +0 -48
  1714. package/dist/doctor-claude-cli-CxK8Pfom.js +0 -147
  1715. package/dist/doctor-config-analysis-CT6ojUa2.js +0 -94
  1716. package/dist/doctor-config-flow-DUCx5yjH.js +0 -417
  1717. package/dist/doctor-config-preflight-C-cFOcPn.js +0 -63
  1718. package/dist/doctor-config-preflight-Fm2wkSwd.js +0 -2
  1719. package/dist/doctor-contract-DxFV42-h.js +0 -26
  1720. package/dist/doctor-device-pairing-DBhEA-8G.js +0 -307
  1721. package/dist/doctor-gateway-daemon-flow-Ds47Er3Y.js +0 -250
  1722. package/dist/doctor-gateway-health-EWwTw5JR.js +0 -60
  1723. package/dist/doctor-gateway-services-Cibvf3nR.js +0 -316
  1724. package/dist/doctor-health-COiArVwj.js +0 -59
  1725. package/dist/doctor-health-contributions-D58LIVdN.js +0 -486
  1726. package/dist/doctor-memory-search-C-GTYsnB.js +0 -371
  1727. package/dist/doctor-sandbox-D0hdfdpJ.js +0 -194
  1728. package/dist/doctor-session-locks-CvM6ubaI.js +0 -56
  1729. package/dist/doctor-state-integrity-CxrVC_nh.js +0 -589
  1730. package/dist/doctor-state-migrations-DWChkFtX.js +0 -2
  1731. package/dist/doctor-update-leN3aPnU.js +0 -58
  1732. package/dist/doctor-workspace-status-CiEWZXrx.js +0 -75
  1733. package/dist/dreaming-DFPenC85.js +0 -1574
  1734. package/dist/dreaming-narrative-6A27_Gft.js +0 -595
  1735. package/dist/dreaming-shared-BDD2oWhL.js +0 -21
  1736. package/dist/embedded-gateway-stub.runtime-UVgfXZzk.js +0 -9
  1737. package/dist/embedding-batch-7hvzwHHl.js +0 -191
  1738. package/dist/embedding-batch-WKVjg_Bk.js +0 -161
  1739. package/dist/embedding-provider-BJee-X_b.js +0 -64
  1740. package/dist/embedding-provider-CTEUDSG2.js +0 -38
  1741. package/dist/embedding-provider-CiLu78QS.js +0 -118
  1742. package/dist/embedding-provider-ixUayU0N.js +0 -33
  1743. package/dist/embeddings-http-C0fpcL_-.js +0 -205
  1744. package/dist/embeddings-qvqBLfrg.js +0 -215
  1745. package/dist/engine-embeddings-9_Ztlm7g.js +0 -458
  1746. package/dist/engine-qmd-CceSLwoI.js +0 -551
  1747. package/dist/exa-web-search-provider-BEY5IeZV.js +0 -80
  1748. package/dist/exa-web-search-provider.runtime-BP0Bqh27.js +0 -302
  1749. package/dist/exa-web-search-provider.runtime-CE2dSkq8.js +0 -2
  1750. package/dist/exec-approval-forwarder.runtime-oBiamxIz.js +0 -3
  1751. package/dist/exec-approval-reply-DEujRvhz.js +0 -2
  1752. package/dist/exec-approval-reply-DJBZZafd.js +0 -296
  1753. package/dist/exec-approval-session-target-C08JaU9I.js +0 -176
  1754. package/dist/exec-approvals-cli-BIz6EjFc.js +0 -498
  1755. package/dist/exec-policy-cli-CPwfn4OX.js +0 -298
  1756. package/dist/extra-params--o3Bs_ba.js +0 -388
  1757. package/dist/fallbacks-DX4YcmAx.js +0 -2
  1758. package/dist/fallbacks-inTaaG-m.js +0 -31
  1759. package/dist/fallbacks-shared-ow1la-U2.js +0 -111
  1760. package/dist/format-CDtdyx29.js +0 -245
  1761. package/dist/format-CNZYdk0T.js +0 -176
  1762. package/dist/gateway-D4iWwu3_.js +0 -115
  1763. package/dist/gateway-cli-8Nrhyv3_.js +0 -1325
  1764. package/dist/gateway-install-token-Cvm6VMoq.js +0 -119
  1765. package/dist/gateway-rpc-DnaZL20f.js +0 -14
  1766. package/dist/gateway-rpc.runtime-CkhcOPe0.js +0 -23
  1767. package/dist/gateway-status-B6eKLX3H.js +0 -584
  1768. package/dist/genesis-tools-CvMcpUvH.js +0 -8999
  1769. package/dist/genesis-tools.runtime-Ch3NDEDq.js +0 -2
  1770. package/dist/get-reply-Cm39MCyU.js +0 -3879
  1771. package/dist/get-reply-from-config.runtime-CSqCYatb.js +0 -2
  1772. package/dist/gmail-setup-utils-D2pDgLCA.js +0 -430
  1773. package/dist/gmail-watcher-lifecycle-BZgPito0.js +0 -2
  1774. package/dist/gmail-watcher-lifecycle-dFjMERa7.js +0 -191
  1775. package/dist/graph-users-BJxYqA3A.js +0 -1337
  1776. package/dist/guarded-json-api-BhJR7l-7.js +0 -594
  1777. package/dist/health-C14jIilQ.js +0 -469
  1778. package/dist/health-C6yJSCMc.js +0 -3
  1779. package/dist/heartbeat-runner-C6-gFnyC.js +0 -5
  1780. package/dist/heartbeat-runner-yUYjgzIM.js +0 -1292
  1781. package/dist/heartbeat-runner.runtime-DZzyrUNB.js +0 -4
  1782. package/dist/help-DyqSh8kc.js +0 -81
  1783. package/dist/hooks-cli-JdkXCE5M.js +0 -433
  1784. package/dist/http-endpoint-helpers-TtZT-T3I.js +0 -41
  1785. package/dist/http-headers-BRWJRzAN.js +0 -11
  1786. package/dist/http-utils-C2hu7rtC.js +0 -924
  1787. package/dist/identity-BQK1BAp-.js +0 -140
  1788. package/dist/image-CQJOF-Zg.js +0 -272
  1789. package/dist/image-fallbacks-BH9qLbBG.js +0 -31
  1790. package/dist/image-fallbacks-DUOPO1ic.js +0 -2
  1791. package/dist/image-generation-core-Dk3jOqwq.js +0 -18
  1792. package/dist/image-generation-core.auth.runtime-BkPCNk6g.js +0 -2
  1793. package/dist/image-generation-provider-B2Sotuek.js +0 -157
  1794. package/dist/image-generation-provider-BjItC1ZB.js +0 -137
  1795. package/dist/image-generation-provider-CAuX-Q7r.js +0 -63
  1796. package/dist/image-generation-provider-CNnNFca5.js +0 -274
  1797. package/dist/image-generation-provider-CW39t66x.js +0 -95
  1798. package/dist/image-generation-provider-Cr8PAjS0.js +0 -529
  1799. package/dist/image-generation-provider-fPdPfoPR.js +0 -228
  1800. package/dist/image-generation-runtime-BjkgbLs7.js +0 -2
  1801. package/dist/image-runtime-ZHzWcqxM.js +0 -9
  1802. package/dist/inbound-reply-dispatch-DPf_IrbV.js +0 -73
  1803. package/dist/inbound.runtime-DVqg8xZi.js +0 -4
  1804. package/dist/inbound.runtime-DWu8LMdN.js +0 -3
  1805. package/dist/infra-runtime-CLND6LJ0.js +0 -39
  1806. package/dist/init-CzWob-9v.js +0 -59
  1807. package/dist/install-BZaQGsDZ.js +0 -159
  1808. package/dist/install-signal-cli-CE1vqFDm.js +0 -202
  1809. package/dist/install.runtime-DOhM77gf.js +0 -2
  1810. package/dist/io-h8M_Z0Lj.js +0 -19290
  1811. package/dist/io-z2jIOtLk.js +0 -5
  1812. package/dist/jobs-CNJYQgEn.js +0 -734
  1813. package/dist/kimi-web-search-provider-B2uRzMJ7.js +0 -80
  1814. package/dist/kimi-web-search-provider.runtime-2xk5W9Cs.js +0 -2
  1815. package/dist/kimi-web-search-provider.runtime-RTe_38UX.js +0 -261
  1816. package/dist/legacy-tools-by-sender-B04NdZPf.js +0 -95
  1817. package/dist/legacy-tools-by-sender-CHP1JLBt.js +0 -2
  1818. package/dist/library-C0a9Bz2M.js +0 -45
  1819. package/dist/lifecycle-B_B_jt3r.js +0 -571
  1820. package/dist/lifecycle-DuqKKZop.js +0 -229
  1821. package/dist/lifecycle-core-BpdZi2zv.js +0 -422
  1822. package/dist/lifecycle.runtime-CgDdABk8.js +0 -2
  1823. package/dist/list-Bly8XeOF.js +0 -2
  1824. package/dist/list-CHIiamt1.js +0 -131
  1825. package/dist/list-u1v9z9iN.js +0 -1201
  1826. package/dist/list-w7tUjpdY.js +0 -2
  1827. package/dist/list.probe-kmHRFlrP.js +0 -419
  1828. package/dist/list.runtime-CjSnff-c.js +0 -159
  1829. package/dist/list.runtime-D1dElDsx.js +0 -11
  1830. package/dist/live-model-switch-Dd-0E2l_.js +0 -336
  1831. package/dist/llm-slug-generator-C3u6Ptgq.js +0 -79
  1832. package/dist/load-config-CXvIGI7N.js +0 -35
  1833. package/dist/load-context-avthPPkW.js +0 -56
  1834. package/dist/local-dispatch.runtime-BUoo02tX.js +0 -8
  1835. package/dist/logging-D5LEBy37.js +0 -13
  1836. package/dist/logging-bfkJL7yT.js +0 -2
  1837. package/dist/login-BKS5WGkP.js +0 -108
  1838. package/dist/logs-cli-DBYJ2Aq-.js +0 -265
  1839. package/dist/logs-cli.runtime-DQJPG_eL.js +0 -2
  1840. package/dist/main-session-restart-recovery-CzfY6Cd8.js +0 -206
  1841. package/dist/managed-image-attachments-BGPKA7Mn.js +0 -2
  1842. package/dist/managed-image-attachments-CTrq9ym-.js +0 -635
  1843. package/dist/manager-BYhRnRfB.js +0 -3114
  1844. package/dist/manager-C_ZGa9x8.js +0 -2057
  1845. package/dist/manager-DIHLRzYF.js +0 -2
  1846. package/dist/markdown-to-line-CRbbXtJK.js +0 -790
  1847. package/dist/mcp-cli-m4DjBDez.js +0 -725
  1848. package/dist/mcp-config-CczNZytL.js +0 -115
  1849. package/dist/mcp-http-b6UMoE_J.js +0 -529
  1850. package/dist/media-contract-BgaJThuI.js +0 -49
  1851. package/dist/media-contract-api-DzHEkFJ4.js +0 -2
  1852. package/dist/media-runtime-B1GzwmDa.js +0 -329
  1853. package/dist/media-understanding-XlANOKVy.js +0 -85
  1854. package/dist/media-understanding-provider-BMR6G9bs.js +0 -13
  1855. package/dist/media-understanding-provider-BeOpYnTw.js +0 -28
  1856. package/dist/media-understanding-provider-BxHOSDHK.js +0 -18
  1857. package/dist/media-understanding-provider-D1uimEOF.js +0 -37
  1858. package/dist/media-understanding-provider-D2bhV5kG.js +0 -69
  1859. package/dist/media-understanding-provider-Df4f_jEZ.js +0 -18
  1860. package/dist/media-understanding-provider-DjTpl-f8.js +0 -85
  1861. package/dist/media-understanding-provider-DmAZ22X7.js +0 -21
  1862. package/dist/media-understanding-provider-DyfMlzNa.js +0 -12
  1863. package/dist/media-understanding-provider-qrkRrB9V.js +0 -12
  1864. package/dist/media-understanding-runtime-BHRvMVOL.js +0 -2
  1865. package/dist/memory-CIDuBmaR.js +0 -342
  1866. package/dist/memory-core-host-engine-embeddings-M-Gp1i52.js +0 -2
  1867. package/dist/memory-core-host-engine-foundation-DasxnV_N.js +0 -11
  1868. package/dist/memory-core-host-engine-qmd-Bf8cHYXG.js +0 -2
  1869. package/dist/memory-core-host-runtime-cli-CquxELNj.js +0 -9
  1870. package/dist/memory-core-host-runtime-core-CmuFU_k8.js +0 -8
  1871. package/dist/memory-embedding-adapter-BMd68BpZ.js +0 -55
  1872. package/dist/memory-embedding-adapter-CFbi6QHC.js +0 -50
  1873. package/dist/memory-embedding-adapter-DEciIC1g.js +0 -123
  1874. package/dist/memory-embedding-adapter-DnzOdoj-.js +0 -32
  1875. package/dist/memory-host-core-CepAYJOC.js +0 -2
  1876. package/dist/memory-host-search-ef4xiGhZ.js +0 -12
  1877. package/dist/memory-host-search.runtime-DFl3cUHn.js +0 -2
  1878. package/dist/memory-runtime-Bwq0Ofx-.js +0 -2
  1879. package/dist/memory-runtime-Cj0UGN2J.js +0 -26
  1880. package/dist/message-CmjuvIFf.js +0 -232
  1881. package/dist/message-action-runner-CiY3rhqt.js +0 -1407
  1882. package/dist/message-action-runner-Do4P0h5i.js +0 -2
  1883. package/dist/message-actions-BYREqFJA.js +0 -143
  1884. package/dist/message.config.runtime-8kkpPgDw.js +0 -2
  1885. package/dist/message.gateway.runtime-gkoWzaYV.js +0 -2
  1886. package/dist/metadata-registry-loader-DAu2cSL5.js +0 -16
  1887. package/dist/metadata-registry-loader-GRi5Rm2Z.js +0 -2
  1888. package/dist/minimax-vlm-DkZ09FrD.js +0 -233
  1889. package/dist/minimax-web-search-provider--mirSuQz.js +0 -53
  1890. package/dist/minimax-web-search-provider.runtime-BCJPoUln.js +0 -140
  1891. package/dist/minimax-web-search-provider.runtime-Bg9lBTAr.js +0 -2
  1892. package/dist/mock-BBELHoyy.js +0 -136
  1893. package/dist/model-BEm0xMnp.js +0 -666
  1894. package/dist/model-DDJPPR3F.js +0 -3
  1895. package/dist/model-auth-C1Z9RsQ5.js +0 -456
  1896. package/dist/model-auth-env-Dz5Pixvx.js +0 -68
  1897. package/dist/model-auth-label-BAtXJxa0.js +0 -46
  1898. package/dist/model-catalog-C3Ib1fYR.js +0 -2
  1899. package/dist/model-catalog-DXtA4U6p.js +0 -159
  1900. package/dist/model-definitions-B8q-8mef.js +0 -260
  1901. package/dist/model-fallback-BSj7JGyo.js +0 -827
  1902. package/dist/model-fallback-auth.runtime-Bb5Zkx_r.js +0 -4
  1903. package/dist/model-picker-BTHkN0l4.js +0 -554
  1904. package/dist/model-picker-C3HMFJxK.js +0 -3
  1905. package/dist/model-picker-visibility-BL8rbGSy.js +0 -13
  1906. package/dist/model-picker.runtime-DX0Lf0PG.js +0 -15
  1907. package/dist/model-selection-Cc1fswUI.js +0 -213
  1908. package/dist/model-suppression-DvaJBPSc.js +0 -28
  1909. package/dist/model-suppression.runtime-JuLFgwjM.js +0 -7
  1910. package/dist/models-BJgjZ5vN.js +0 -18
  1911. package/dist/models-BS1WkKuU.js +0 -569
  1912. package/dist/models-Bdl84ZEi.js +0 -760
  1913. package/dist/models-DAWoIDFQ.js +0 -18
  1914. package/dist/models-auth-status-B_Pcr0tl.js +0 -201
  1915. package/dist/models-cli-C7_XNkjs.js +0 -219
  1916. package/dist/models-config-CeSA-IsM.js +0 -2
  1917. package/dist/models-config-DzJzRLUs.js +0 -933
  1918. package/dist/models-config.providers.secrets-DACp_2kp.js +0 -304
  1919. package/dist/models-ezJkixUd.js +0 -47
  1920. package/dist/models-http-CtMnZc8I.js +0 -92
  1921. package/dist/models-iki4v2pw.js +0 -157
  1922. package/dist/models.fetch-DeidpNMb.js +0 -518
  1923. package/dist/monitor-22LY8y6z.js +0 -788
  1924. package/dist/monitor-BZdf_CEm.js +0 -1237
  1925. package/dist/monitor-CTVDlTs2.js +0 -671
  1926. package/dist/monitor-Cfv-KGAl.js +0 -1661
  1927. package/dist/monitor-D_5ywEdZ.js +0 -295
  1928. package/dist/monitor-DuA69-8E.js +0 -2
  1929. package/dist/monitor-auth-BNDlfcw7.js +0 -207
  1930. package/dist/monitor-cmWeDVxf.js +0 -1459
  1931. package/dist/monitor-processing-D9Xcsagt.js +0 -1974
  1932. package/dist/monitor.runtime-zWvcbNim.js +0 -2
  1933. package/dist/monitor.webhook-BYWQa5lY.js +0 -180
  1934. package/dist/msteams-n9HDT4O-.js +0 -35
  1935. package/dist/music-generation-provider-BOf8FxsI.js +0 -170
  1936. package/dist/music-generation-provider-DXjWrzeQ.js +0 -63
  1937. package/dist/mutate-DCm-o6et.js +0 -116
  1938. package/dist/native-hook-relay-CKyIfLOm.js +0 -519
  1939. package/dist/native-web-search-CVg_cqdB.js +0 -64
  1940. package/dist/nextcloud-talk-BuJVVP0J.js +0 -17
  1941. package/dist/node-cli-BaWSEysu.js +0 -2506
  1942. package/dist/nodes-cli-DZht7scn.js +0 -1046
  1943. package/dist/nodes-utils-C6IKaTjm.js +0 -84
  1944. package/dist/notify-v0zoiI-O.js +0 -315
  1945. package/dist/oauth-B8tWMfTJ.js +0 -139
  1946. package/dist/oauth-BmcwdgQf.js +0 -75
  1947. package/dist/oauth-DDT-kHNB.js +0 -152
  1948. package/dist/oauth-Gan0lup1.js +0 -2
  1949. package/dist/oauth.flow-CNEwf0O5.js +0 -45
  1950. package/dist/oauth.flow-CUZgJHCQ.js +0 -3
  1951. package/dist/onboard-BN0A1x-N.js +0 -632
  1952. package/dist/onboard-BxGE5zlS.js +0 -29
  1953. package/dist/onboard-C4pAjamt.js +0 -49
  1954. package/dist/onboard-Cu0Zb0tI.js +0 -25
  1955. package/dist/onboard-DSrD9d76.js +0 -58
  1956. package/dist/onboard-custom-D7-Whw_0.js +0 -271
  1957. package/dist/onboard-custom-Skp24tPF.js +0 -3
  1958. package/dist/onboard-g0Gns-rv.js +0 -25
  1959. package/dist/onboard-search-XCG-N-tW.js +0 -323
  1960. package/dist/onboard-uHe_WHnV.js +0 -25
  1961. package/dist/onboard-vfG-wMNV.js +0 -316
  1962. package/dist/openai-codex-auth-identity-BP8ajX50.js +0 -45
  1963. package/dist/openai-codex-device-code-Cr2cbEdd.js +0 -164
  1964. package/dist/openai-codex-provider-BehtHuQr.js +0 -464
  1965. package/dist/openai-codex-shared-HFAofBwf.js +0 -6
  1966. package/dist/openai-http-DwCqhEcX.js +0 -500
  1967. package/dist/openai-provider-DsET7IpX.js +0 -313
  1968. package/dist/opencode-Cb-WQKky.js +0 -35
  1969. package/dist/openresponses-http-tJr67vC1.js +0 -1128
  1970. package/dist/order-dgHk1PE1.js +0 -109
  1971. package/dist/outbound-media-FIxE0Dv0.js +0 -57
  1972. package/dist/outbound-runtime-UoL4JsL6.js +0 -5
  1973. package/dist/outbound.runtime-nXA4k1xA.js +0 -2
  1974. package/dist/pair-command-approve-G5y-rKn9.js +0 -44
  1975. package/dist/pairing-cli-Cj31Dv4N.js +0 -117
  1976. package/dist/perplexity-web-search-provider-B6x_ImjZ.js +0 -92
  1977. package/dist/perplexity-web-search-provider.runtime-CXeIZv1r.js +0 -2
  1978. package/dist/perplexity-web-search-provider.runtime-DnjYQskA.js +0 -324
  1979. package/dist/persistent-bindings.lifecycle-C56aKBVc.js +0 -2
  1980. package/dist/persistent-bindings.lifecycle-CfBqvz9L.js +0 -85
  1981. package/dist/pi-bundle-mcp-runtime--MTfBo4Z.js +0 -829
  1982. package/dist/pi-bundle-mcp-runtime-ean1aFxj.js +0 -2
  1983. package/dist/pi-bundle-mcp-tools-BqjE32FZ.js +0 -108
  1984. package/dist/pi-embedded-B1wvxHXL.js +0 -2905
  1985. package/dist/pi-embedded-DmDb-oUB.js +0 -4
  1986. package/dist/pi-embedded-subscribe.handlers.compaction.runtime-BoDN2GHw.js +0 -23
  1987. package/dist/pi-embedded.runtime-D5xqw9Ko.js +0 -4
  1988. package/dist/pi-model-discovery-CYZ5LuGU.js +0 -237
  1989. package/dist/pi-tool-definition-adapter-CAxlo-Va.js +0 -217
  1990. package/dist/pi-tools-C69yvznf.js +0 -1057
  1991. package/dist/pi-tools.before-tool-call-BDeCmoAy.js +0 -2
  1992. package/dist/pi-tools.before-tool-call-DG7VVNBn.js +0 -433
  1993. package/dist/pi-tools.before-tool-call.runtime-GbZhbLH3.js +0 -13
  1994. package/dist/plivo-DFM_olZN.js +0 -394
  1995. package/dist/plugin-B9Ld0CUs.js +0 -12195
  1996. package/dist/plugin-enabled-Cxce83s1.js +0 -140
  1997. package/dist/plugin-install-config-policy-BimGg0f2.js +0 -137
  1998. package/dist/plugin-registration-BxJi2XYk.js +0 -23
  1999. package/dist/plugin-registry-D66gpl7-.js +0 -2
  2000. package/dist/plugin-registry-dEPS2Zb9.js +0 -3
  2001. package/dist/plugin-service-Cu0uMqDN.js +0 -2890
  2002. package/dist/plugins-cli-UICpKNEZ.js +0 -584
  2003. package/dist/plugins-command-helpers-ny7AVRZJ.js +0 -107
  2004. package/dist/plugins-install-persist-CSPRiteo.js +0 -133
  2005. package/dist/plugins-update-command-4Jece913.js +0 -1057
  2006. package/dist/policy-DgfegT_Y.js +0 -328
  2007. package/dist/prepare.runtime-C_sRmuFC.js +0 -815
  2008. package/dist/preview-warnings-BSovEOvs.js +0 -120
  2009. package/dist/probe-8vb_Ssot.js +0 -45
  2010. package/dist/probe-B6zM3cMF.js +0 -74
  2011. package/dist/probe-BjmKFiz1.js +0 -2205
  2012. package/dist/probe-CbOoVumf.js +0 -2
  2013. package/dist/probe-D6yFcZpK.js +0 -1443
  2014. package/dist/probe-DtHuNHbp.js +0 -243
  2015. package/dist/probe-XYiCUrVW.js +0 -32
  2016. package/dist/probe.runtime-oasa8nRY.js +0 -2
  2017. package/dist/profiles-t-GpZimP.js +0 -111
  2018. package/dist/program-B7jIObA6.js +0 -111
  2019. package/dist/prompt-select-styled-DvkSxDCm.js +0 -20
  2020. package/dist/provider-DuH_nkk-.js +0 -70
  2021. package/dist/provider-api-key-auth-BCbqFek0.js +0 -114
  2022. package/dist/provider-api-key-auth.runtime-C0dB6QR5.js +0 -14
  2023. package/dist/provider-auth-DlJTw0-4.js +0 -46
  2024. package/dist/provider-auth-api-key-kFD2TSQI.js +0 -5
  2025. package/dist/provider-auth-choice-7C46Z7_L.js +0 -228
  2026. package/dist/provider-auth-choice-preference-g0W-1lIY.js +0 -26
  2027. package/dist/provider-auth-choice.runtime-BMstkDeF.js +0 -14
  2028. package/dist/provider-auth-choice.runtime-DBaJlbBQ.js +0 -2
  2029. package/dist/provider-auth-guidance-CLhKt9_y.js +0 -2
  2030. package/dist/provider-auth-guidance-DMjnCkYr.js +0 -34
  2031. package/dist/provider-auth-helpers-g5J1YN29.js +0 -173
  2032. package/dist/provider-auth-input-Cmt5ISWx.js +0 -119
  2033. package/dist/provider-auth-runtime-C_of8BP-.js +0 -149
  2034. package/dist/provider-catalog-Bva0AQ20.js +0 -24
  2035. package/dist/provider-catalog-CDF5UffZ.js +0 -12
  2036. package/dist/provider-catalog-CIZ7lwcD.js +0 -11
  2037. package/dist/provider-catalog-WRqmEzqK.js +0 -26
  2038. package/dist/provider-catalog-lrSBHdfM.js +0 -11
  2039. package/dist/provider-compat-ia849gPL.js +0 -37
  2040. package/dist/provider-discovery.runtime-CKPRNOu9.js +0 -118
  2041. package/dist/provider-dispatcher-BIOPYzb9.js +0 -2
  2042. package/dist/provider-dispatcher-CpwviX0O.js +0 -22
  2043. package/dist/provider-entry-BZGcYiV-.js +0 -106
  2044. package/dist/provider-flow-DNqq-LGA.js +0 -147
  2045. package/dist/provider-model-defaults-M93SupwY.js +0 -6
  2046. package/dist/provider-models-BvjP15o5.js +0 -35
  2047. package/dist/provider-models-DzsmORvl.js +0 -119
  2048. package/dist/provider-registration-BL1hjJNQ.js +0 -218
  2049. package/dist/provider-registration-CKaw8a6k.js +0 -37
  2050. package/dist/provider-runtime-C4mK2ZHM.js +0 -472
  2051. package/dist/provider-runtime-C9Y0fX9M.js +0 -2
  2052. package/dist/provider-runtime.runtime-C1zVPJ_2.js +0 -26
  2053. package/dist/provider-self-hosted-setup-B_01kPQV.js +0 -251
  2054. package/dist/provider-setup-BTm4FuW0.js +0 -2
  2055. package/dist/provider-stream-BZwCdDk2.js +0 -290
  2056. package/dist/provider-stream-D80mDtUQ.js +0 -2174
  2057. package/dist/provider-stream-family-tKIQwQoP.js +0 -2
  2058. package/dist/provider-usage-DZHssxuZ.js +0 -4
  2059. package/dist/provider-usage-DtCUHOBT.js +0 -71
  2060. package/dist/provider-usage.load-DfxOyIjr.js +0 -334
  2061. package/dist/provider-utils-CDXJKXaV.js +0 -49
  2062. package/dist/provider-wizard-FaPEKwkS.js +0 -166
  2063. package/dist/providers.runtime-CNRwqmqP.js +0 -164
  2064. package/dist/providers.runtime-D5WUUxG6.js +0 -2
  2065. package/dist/proxy-stream-wrappers-Bne4sxnC.js +0 -394
  2066. package/dist/prune-CObb_7Tm.js +0 -83
  2067. package/dist/pw-ai-BXxjh18R.js +0 -2511
  2068. package/dist/pw-role-snapshot-Bl3hTc-h.js +0 -380
  2069. package/dist/qmd-manager-BUsmbNH2.js +0 -1921
  2070. package/dist/qr-cli-CJXKCj0L.js +0 -2
  2071. package/dist/qr-cli-kSU9X-N0.js +0 -349
  2072. package/dist/qr-image-BGiWCT9D.js +0 -2
  2073. package/dist/queue-C2h8xD0q.js +0 -409
  2074. package/dist/reaction-runtime-api-3XFmruJA.js +0 -116
  2075. package/dist/reactions-By-nqZC6.js +0 -998
  2076. package/dist/read-best-effort-config.runtime-D8wqGyi-.js +0 -2
  2077. package/dist/read-capability-iNDCfA71.js +0 -412
  2078. package/dist/realtime-provider-shared-BUH18A9i.js +0 -37
  2079. package/dist/realtime-transcription-provider-C8U5iIPd.js +0 -184
  2080. package/dist/realtime-transcription-provider-Ct_urZH7.js +0 -172
  2081. package/dist/realtime-transcription-provider-DWWihiYW.js +0 -184
  2082. package/dist/realtime-transcription-provider-DixI6prO.js +0 -120
  2083. package/dist/realtime-transcription-provider-LPnmN5fC.js +0 -183
  2084. package/dist/realtime-voice-provider-CNHR_8Ip.js +0 -489
  2085. package/dist/record-shared-B-W3jnOg.js +0 -10
  2086. package/dist/register-service-commands-C4gdXE5G.js +0 -71
  2087. package/dist/register.agent-CT6bSshW.js +0 -248
  2088. package/dist/register.backup-DZZZkF5L.js +0 -64
  2089. package/dist/register.configure-CImVXV1T.js +0 -15
  2090. package/dist/register.maintenance-D5jC2Wav.js +0 -438
  2091. package/dist/register.message-CT0eXmu4.js +0 -329
  2092. package/dist/register.onboard-BiigO1vS.js +0 -81
  2093. package/dist/register.runtime-CGAA56n8.js +0 -81
  2094. package/dist/register.setup-BG-rXone.js +0 -150
  2095. package/dist/register.status-health-sessions-CYuXd-5V.js +0 -1215
  2096. package/dist/register.subclis-BaJ6m946.js +0 -29
  2097. package/dist/register.subclis-D2lhCIAR.js +0 -3
  2098. package/dist/register.subclis-core-BZs-HQ4k.js +0 -249
  2099. package/dist/register.wallet-IC7GFGSz.js +0 -159
  2100. package/dist/repair-sequencing-DAQWWg1Q.js +0 -145
  2101. package/dist/replay-policy-SzJMVnli.js +0 -8
  2102. package/dist/reply-dispatch-runtime-DjIuN_dr.js +0 -13
  2103. package/dist/reply-media-paths.runtime-BwHwrFo5.js +0 -146
  2104. package/dist/reply-media-paths.runtime-BzHN3Oug.js +0 -2
  2105. package/dist/reply-payload-transform-DZTvoDh6.js +0 -720
  2106. package/dist/reply-runtime-5TFidLR3.js +0 -11
  2107. package/dist/reply.runtime-6d1e0INl.js +0 -2
  2108. package/dist/resolve-CmlJ4Qe6.js +0 -259
  2109. package/dist/response-generator-Bkk91EcQ.js +0 -175
  2110. package/dist/restart-DXckXfpS.js +0 -490
  2111. package/dist/root-help-DsdvAmaO.js +0 -44
  2112. package/dist/route-reply-GewElVG6.js +0 -162
  2113. package/dist/route-reply.runtime-CkHKAVic.js +0 -2
  2114. package/dist/routes-BxtbmAAO.js +0 -2
  2115. package/dist/routes-Dm0_DobO.js +0 -3341
  2116. package/dist/rpc-2YP43H5U.js +0 -61
  2117. package/dist/rpc-context-Cz5ff-4T.js +0 -17
  2118. package/dist/rpc.runtime-CmH330Bk.js +0 -21
  2119. package/dist/run-auth-profile.runtime-BN1_tgCB.js +0 -2
  2120. package/dist/run-context.runtime-DiIMdE17.js +0 -2
  2121. package/dist/run-delivery.runtime-qZIB76oE.js +0 -530
  2122. package/dist/run-embedded.runtime-nHunVmCv.js +0 -4
  2123. package/dist/run-execution-cli.runtime-CMT7La6D.js +0 -4
  2124. package/dist/run-executor.runtime-BG6SDi3f.js +0 -277
  2125. package/dist/run-main-C4yxwXlS.js +0 -516
  2126. package/dist/run-model-catalog.runtime-BeDPla6j.js +0 -2
  2127. package/dist/run-subagent-registry.runtime-D0RcqcJr.js +0 -2
  2128. package/dist/run-wait--kou3jZ7.js +0 -135
  2129. package/dist/runner-CJNyVFAv.js +0 -966
  2130. package/dist/runner.entries-CDDEOL4i.js +0 -604
  2131. package/dist/runs-BeROanhp.js +0 -496
  2132. package/dist/runs-oFHUw3em.js +0 -2
  2133. package/dist/runtime-B99WdxAw.js +0 -262
  2134. package/dist/runtime-BBdZI0T9.js +0 -116
  2135. package/dist/runtime-BMTh1o_4.js +0 -187
  2136. package/dist/runtime-BuDSQWY3.js +0 -187
  2137. package/dist/runtime-BvxkGJm2.js +0 -9
  2138. package/dist/runtime-C7re7-b0.js +0 -2
  2139. package/dist/runtime-CVeRX_h2.js +0 -72
  2140. package/dist/runtime-DgQ5oUKq.js +0 -973
  2141. package/dist/runtime-DhFt71Dh.js +0 -94
  2142. package/dist/runtime-SBCw4GZx.js +0 -2
  2143. package/dist/runtime-UhEn3-g2.js +0 -107
  2144. package/dist/runtime-WH7zKxDh.js +0 -269
  2145. package/dist/runtime-api-6SzMK-FZ.js +0 -4
  2146. package/dist/runtime-api-BAMrcB-5.js +0 -9
  2147. package/dist/runtime-api-DLSrxS5O.js +0 -9
  2148. package/dist/runtime-api-DsPleWQg.js +0 -14
  2149. package/dist/runtime-embedded-pi.runtime-eyjaJfAz.js +0 -2
  2150. package/dist/runtime-entry-NIlaVaCh.js +0 -2769
  2151. package/dist/runtime-internal-BTfGDlHi.js +0 -2
  2152. package/dist/runtime-model-auth.runtime-BmCKx59j.js +0 -45
  2153. package/dist/runtime-model-auth.runtime-CtfEmiHD.js +0 -2
  2154. package/dist/runtime-options-B5_eZxMV.js +0 -275
  2155. package/dist/runtime-prepare.runtime-CYL2KuLu.js +0 -80
  2156. package/dist/runtime-provider-2DNb6s0A.js +0 -21
  2157. package/dist/runtime-registry-loader-DR-J9mYJ.js +0 -2
  2158. package/dist/runtime-registry-loader-oRtkux7P.js +0 -85
  2159. package/dist/runtime-schema--IHLExJA.js +0 -27780
  2160. package/dist/runtime-shared-ClxGZaGO.js +0 -267
  2161. package/dist/runtime-tx7lDmPU.js +0 -475
  2162. package/dist/runtime-web-channel-plugin-DSUY71Zm.js +0 -203
  2163. package/dist/runtime-web-tools-B5m4pFEj.js +0 -1477
  2164. package/dist/runtime-web-tools-fallback.runtime-CuzXsYDs.js +0 -9
  2165. package/dist/sandbox-Bjg0J6uZ.js +0 -1156
  2166. package/dist/sandbox-DyLgT2hb.js +0 -3
  2167. package/dist/sandbox-cli-BLLA3tnd.js +0 -450
  2168. package/dist/scan-D0fsxqed.js +0 -2
  2169. package/dist/scan-DrjjN66Z.js +0 -523
  2170. package/dist/secrets-cli-xKEQ4JhR.js +0 -2101
  2171. package/dist/security-cli-B2rQ7-9U.js +0 -486
  2172. package/dist/selection-DEAdLh1Q.js +0 -2
  2173. package/dist/selection-zPPyzfBX.js +0 -7736
  2174. package/dist/semver-compare-4WdZjB8E.js +0 -53
  2175. package/dist/send-Buu-OT-I.js +0 -534
  2176. package/dist/send-CYKfZTCJ.js +0 -156
  2177. package/dist/send-Di1tRwJD.js +0 -102
  2178. package/dist/send.runtime-Bw22DBkL.js +0 -2
  2179. package/dist/server-CkhWy2iz.js +0 -77
  2180. package/dist/server-DPbF4NLN.js +0 -13
  2181. package/dist/server-context-C3fozX-C.js +0 -2
  2182. package/dist/server-context-R_Yx4X7V.js +0 -847
  2183. package/dist/server-middleware-K0bO4D5s.js +0 -120
  2184. package/dist/server-node-events-CdZP3Kok.js +0 -481
  2185. package/dist/server-plugin-bootstrap-C1Su6th-.js +0 -2
  2186. package/dist/server-plugin-bootstrap-DV23MPGu.js +0 -11333
  2187. package/dist/server-restart-sentinel-BWiOzljY.js +0 -697
  2188. package/dist/server-startup-memory-DcY7vInd.js +0 -32
  2189. package/dist/server.impl-DVM9pR9C.js +0 -12735
  2190. package/dist/service-2moXf4Z3.js +0 -940
  2191. package/dist/session-DgdrHsUH.js +0 -48
  2192. package/dist/session-cost-usage-v7CmY-jl.js +0 -651
  2193. package/dist/session-envelope-DdJGLsph.js +0 -18
  2194. package/dist/session-key-CGM2lMjF.js +0 -65
  2195. package/dist/session-kill-http-B_J1fJ4-.js +0 -110
  2196. package/dist/session-meta-DNYXwb8Y.js +0 -109
  2197. package/dist/session-override-CvWOXFPt.js +0 -106
  2198. package/dist/session-reset-model.runtime-CSgYVD3U.js +0 -133
  2199. package/dist/session-reset-service-DPgw70iw.js +0 -471
  2200. package/dist/session-route-B0h6MEyB.js +0 -93
  2201. package/dist/session-status.runtime-DCvgI1pG.js +0 -2
  2202. package/dist/session-store-2T8PZlcn.js +0 -126
  2203. package/dist/session-store.runtime-BvnkL0Mw.js +0 -2
  2204. package/dist/session-subagent-reactivation.runtime-BgsCnI-h.js +0 -2
  2205. package/dist/session-system-events-Yvfgcmpd.js +0 -63
  2206. package/dist/session-tab-registry-BoZsI5I6.js +0 -491
  2207. package/dist/session-transcript-hit-CJ5Jj7sA.js +0 -41
  2208. package/dist/session-updates-CUUxKrNv.js +0 -236
  2209. package/dist/session-updates.runtime-Dl3SAkoT.js +0 -2
  2210. package/dist/session-utils-BrGPE9ed.js +0 -926
  2211. package/dist/session-visibility-CZjMA1SL.js +0 -147
  2212. package/dist/sessions-BsnttWP_.js +0 -48
  2213. package/dist/sessions-CZok7kda.js +0 -281
  2214. package/dist/sessions-DnGJeOcI.js +0 -2
  2215. package/dist/sessions-GSCHVTz5.js +0 -16
  2216. package/dist/sessions-helpers-B3W7MdIb.js +0 -304
  2217. package/dist/sessions-history-http-Bw5J6HQ-.js +0 -383
  2218. package/dist/sessions-resolve-C-VZh_56.js +0 -174
  2219. package/dist/sessions.runtime-cLuc67tJ.js +0 -2
  2220. package/dist/set-5DGVoB6Q.js +0 -2
  2221. package/dist/set-COJp56WQ.js +0 -17
  2222. package/dist/set-image-CLKXLt5l.js +0 -2
  2223. package/dist/set-image-Wy-bkC3Q.js +0 -17
  2224. package/dist/setup-BG2J2HR-.js +0 -495
  2225. package/dist/setup-CEO-WwxS.js +0 -421
  2226. package/dist/setup-api-Culp0Usf.js +0 -29
  2227. package/dist/setup-core-CaTBS6Tz.js +0 -171
  2228. package/dist/setup-core-Dhwqz5ni.js +0 -184
  2229. package/dist/setup-core-Zijy2DMv.js +0 -393
  2230. package/dist/setup-core-youmXvW_.js +0 -176
  2231. package/dist/setup-surface-BBqs2Jo2.js +0 -351
  2232. package/dist/setup-surface-BKIPq1vY.js +0 -72
  2233. package/dist/setup-surface-BeMn-9hU.js +0 -403
  2234. package/dist/setup-surface-CUd-s0wh.js +0 -286
  2235. package/dist/setup-surface-Czri_ht7.js +0 -3
  2236. package/dist/setup-surface-DtscjAY3.js +0 -219
  2237. package/dist/setup.finalize-BSCjEqxV.js +0 -539
  2238. package/dist/shared-B3Pz1Xcr.js +0 -121
  2239. package/dist/shared-Bc3x3THS.js +0 -76
  2240. package/dist/shared-C2qh8ugk.js +0 -217
  2241. package/dist/shared-CciCGYbs.js +0 -135
  2242. package/dist/shared-CsIxMVr_.js +0 -186
  2243. package/dist/shared-CxbLx0Ww.js +0 -198
  2244. package/dist/shared-DicCIRvK.js +0 -60
  2245. package/dist/shared-runtime-6_MnYe7Q.js +0 -7
  2246. package/dist/short-term-promotion-BIzj922a.js +0 -1543
  2247. package/dist/simple-completion-runtime-CGhlf0hZ.js +0 -158
  2248. package/dist/simple-completion-transport-DewSxAwJ.js +0 -33
  2249. package/dist/skills-clawhub-Dlv_j_Jg.js +0 -275
  2250. package/dist/skills-cli-D0EdapwV.js +0 -370
  2251. package/dist/slash-state-XfeMEeuI.js +0 -1911
  2252. package/dist/speech-core-DvaF8h0I.js +0 -94
  2253. package/dist/speech-provider-BQ98DhrM.js +0 -184
  2254. package/dist/speech-provider-BrwlxrtZ.js +0 -395
  2255. package/dist/speech-provider-CQLk4cH9.js +0 -170
  2256. package/dist/speech-provider-CUinmhV6.js +0 -103
  2257. package/dist/speech-provider-Cu9Q9-q6.js +0 -216
  2258. package/dist/speech-provider-Dr8g2Zbc.js +0 -209
  2259. package/dist/speech-provider-xHvRvcVe.js +0 -209
  2260. package/dist/src-BiDxQvtV.js +0 -3974
  2261. package/dist/stage-sandbox-media.runtime-UP-7985c.js +0 -232
  2262. package/dist/startup-auth-DVAg6R78.js +0 -180
  2263. package/dist/startup-context-CXQi-7YB.js +0 -312
  2264. package/dist/state-migrations-Aoorw4v_.js +0 -820
  2265. package/dist/status--hkh9cCZ.js +0 -209
  2266. package/dist/status-B880ja1s.js +0 -3
  2267. package/dist/status-BwSnS_wh.js +0 -397
  2268. package/dist/status-Cra01dC_.js +0 -62
  2269. package/dist/status-CuYSeMym.js +0 -2
  2270. package/dist/status-DY0DlWlw.js +0 -190
  2271. package/dist/status-DuZdkulz.js +0 -323
  2272. package/dist/status-MT62_Jgw.js +0 -2
  2273. package/dist/status-all-Dr3a4BAf.js +0 -498
  2274. package/dist/status-json-CXeZPfDL.js +0 -14
  2275. package/dist/status-json-command-JBCAP3wk.js +0 -84
  2276. package/dist/status-message-D8KTfWqp.js +0 -466
  2277. package/dist/status-message.runtime-i6HSwq0C.js +0 -6
  2278. package/dist/status-queue.runtime-Dpqj1jlp.js +0 -2
  2279. package/dist/status-runtime-shared-BeB5Gpc6.js +0 -257
  2280. package/dist/status-subagents.runtime-B4UXD0lL.js +0 -18
  2281. package/dist/status-text-myqmk4OL.js +0 -237
  2282. package/dist/status.command.text-runtime-DxXvRSSp.js +0 -15
  2283. package/dist/status.gateway-connection.runtime-B0Iwl2iZ.js +0 -2
  2284. package/dist/status.gather-CRbfrtwi.js +0 -292
  2285. package/dist/status.gather-DgGJqGIO.js +0 -2
  2286. package/dist/status.runtime-B1fTpY0S.js +0 -2
  2287. package/dist/status.runtime-Cbw0CFuM.js +0 -2
  2288. package/dist/status.scan-C1aqDsy2.js +0 -65
  2289. package/dist/status.scan-overview-BerlJz2l.js +0 -379
  2290. package/dist/status.scan.deps.runtime-vyKPba81.js +0 -18
  2291. package/dist/status.scan.fast-json-BXY82vu2.js +0 -2
  2292. package/dist/status.scan.fast-json-DJqgEbzZ.js +0 -132
  2293. package/dist/status.scan.runtime-nuf4UXm_.js +0 -409
  2294. package/dist/status.summary-CCdLUph8.js +0 -214
  2295. package/dist/status.summary-CHAn0_FS.js +0 -2
  2296. package/dist/status.update-Brj2S4WO.js +0 -2
  2297. package/dist/status.update-wHbH0vtL.js +0 -79
  2298. package/dist/store-DPPUFKL4.js +0 -1235
  2299. package/dist/store-DVf_1KBR.js +0 -4
  2300. package/dist/store-DsNJP7a2.js +0 -910
  2301. package/dist/store-load-DevCJoMp.js +0 -370
  2302. package/dist/store.runtime-DXcFo-7e.js +0 -2
  2303. package/dist/stream-CpdM0BB4.js +0 -27
  2304. package/dist/stream-QnfgL1uu.js +0 -664
  2305. package/dist/stream-Yw9oI1N9.js +0 -134
  2306. package/dist/stt-BKJ7-W_H.js +0 -66
  2307. package/dist/subagent-announce-D4jG75Ub.js +0 -351
  2308. package/dist/subagent-announce-delivery-BkQYzDcy.js +0 -726
  2309. package/dist/subagent-announce-output-C3pkuu-t.js +0 -364
  2310. package/dist/subagent-capabilities-Dr9kqRXv.js +0 -251
  2311. package/dist/subagent-control-DVVK8du2.js +0 -506
  2312. package/dist/subagent-control.runtime-D20i92a8.js +0 -3
  2313. package/dist/subagent-followup.runtime-CdeweG-S.js +0 -68
  2314. package/dist/subagent-list-CPGmzGIr.js +0 -172
  2315. package/dist/subagent-orphan-recovery-ZQanOHb4.js +0 -305
  2316. package/dist/subagent-registry-BcPa3ho0.js +0 -3
  2317. package/dist/subagent-registry-hJUso5eL.js +0 -1753
  2318. package/dist/subagent-spawn-DTaeQc9q.js +0 -1005
  2319. package/dist/system-cli-MQUV1Kt2.js +0 -59
  2320. package/dist/target-id-DwGFlj0w.js +0 -107
  2321. package/dist/targets-BPdSjnQH.js +0 -67
  2322. package/dist/task-executor-B62Qzfi-.js +0 -360
  2323. package/dist/task-owner-access-BBMrMOlN.js +0 -74
  2324. package/dist/task-registry-BD-ew2bT.js +0 -2366
  2325. package/dist/task-registry-delivery-runtime-B2WyGY0d.js +0 -3
  2326. package/dist/task-registry-delivery-runtime-MFJszOHI.js +0 -2
  2327. package/dist/task-registry.maintenance-0D2Yxl49.js +0 -416
  2328. package/dist/task-registry.maintenance-OPlfB5W9.js +0 -2
  2329. package/dist/tavily-client-C3xytQRs.js +0 -193
  2330. package/dist/tavily-client-CZGbAgS5.js +0 -2
  2331. package/dist/tavily-search-provider-D6KPby-f.js +0 -62
  2332. package/dist/telnyx-dl-FWSZ7.js +0 -260
  2333. package/dist/testing-DmxZ16UC.js +0 -575
  2334. package/dist/text-report-DbwOAt-s.js +0 -587
  2335. package/dist/text-runtime-7KpTTpVi.js +0 -290
  2336. package/dist/tool-auth-shared-Bv6BKCi8.js +0 -90
  2337. package/dist/tool-config-shared-DzQUOIuD.js +0 -19
  2338. package/dist/tool-policy-pipeline-v9XxD-ex.js +0 -109
  2339. package/dist/tool-resolution-vn72hwMo.js +0 -90
  2340. package/dist/tool-schema-runtime-jV8YdQ9e.js +0 -167
  2341. package/dist/tools-CqCuGTXf.js +0 -113
  2342. package/dist/tools-effective-inventory-DII_pOSr.js +0 -152
  2343. package/dist/tools-invoke-http-DdthGR52.js +0 -206
  2344. package/dist/tools.runtime-B8up1LNG.js +0 -4
  2345. package/dist/transcript-BEG6GDFF.js +0 -312
  2346. package/dist/transcript-resolve.runtime-BiYkACEe.js +0 -2
  2347. package/dist/transcript.runtime-MFREl0oG.js +0 -2
  2348. package/dist/transport-policy-B0VagXph.js +0 -75
  2349. package/dist/trash-Cngl97iU.js +0 -24
  2350. package/dist/tts-Bp81AGLz.js +0 -183
  2351. package/dist/tts-O3Lo0LND.js +0 -64
  2352. package/dist/tui-cli-Bz51WCAi.js +0 -4575
  2353. package/dist/twilio-CFtxsLCP.js +0 -609
  2354. package/dist/update-CgkXd2kv.js +0 -1282
  2355. package/dist/update-check-HnA0I2Da.js +0 -438
  2356. package/dist/update-cli-BYxOEE8h.js +0 -1759
  2357. package/dist/update-runner-Dghmpf13.js +0 -1892
  2358. package/dist/update-startup-BbGRP2fd.js +0 -331
  2359. package/dist/update-startup-CvNOEuOg.js +0 -2
  2360. package/dist/upgrade-Dvj8K4WB.js +0 -1226
  2361. package/dist/usage-format-B8I_58zr.js +0 -2
  2362. package/dist/usage-format-Hc-FyvzW.js +0 -703
  2363. package/dist/usage-q0pe5lMT.js +0 -606
  2364. package/dist/video-generation-core-BlmpVj-F.js +0 -6
  2365. package/dist/video-generation-provider-BTKjUEr6.js +0 -264
  2366. package/dist/video-generation-provider-BsJaGSdY.js +0 -271
  2367. package/dist/video-generation-provider-CRd5mS15.js +0 -187
  2368. package/dist/video-generation-provider-D5Dt3o8N.js +0 -221
  2369. package/dist/video-generation-provider-DAadtfjT2.js +0 -77
  2370. package/dist/video-generation-provider-DEuIYj4Q.js +0 -118
  2371. package/dist/video-generation-provider-I00zAw5a.js +0 -281
  2372. package/dist/video-generation-provider-LsvxSeCH.js +0 -78
  2373. package/dist/video-generation-provider-PjRFUZuF.js +0 -254
  2374. package/dist/video-generation-provider-_lpEJ0sZ.js +0 -287
  2375. package/dist/video-generation-provider-rYLsBGcx.js +0 -64
  2376. package/dist/video-generation-runtime-C0HgCTTM.js +0 -2
  2377. package/dist/video-generation-task-status-CHYB_IeZ.js +0 -163
  2378. package/dist/voice-mapping-CqBur95r.js +0 -41
  2379. package/dist/wait-for-idle-before-flush-DJMxeE2X.js +0 -5986
  2380. package/dist/web-fetch-providers.runtime-DV5-20bl.js +0 -34
  2381. package/dist/web-provider-runtime-shared-GwramnJ6.js +0 -180
  2382. package/dist/web-search-DInuHnh4.js +0 -61
  2383. package/dist/web-search-provider-BshM5HnM.js +0 -163
  2384. package/dist/web-search-provider.runtime-BKjABarO.js +0 -2
  2385. package/dist/web-search-provider.runtime-DcC48-4y.js +0 -185
  2386. package/dist/web-search-providers.runtime-Ct-fiRLn.js +0 -42
  2387. package/dist/webhook-shared-C5lP_giw.js +0 -12
  2388. package/dist/webhooks-cli-VV9ptfcF.js +0 -321
  2389. package/dist/wizard-models-BxP-rnuO.js +0 -161
  2390. package/dist/workflow-runtime-BZbnyBLJ.js +0 -485
  2391. package/dist/x-search-config-B5seJHNk.js +0 -36
  2392. package/dist/x-search-shared-B3VKBF82.js +0 -75
  2393. package/dist/zalo-js-XocMxKUr.js +0 -1157
@@ -0,0 +1,2101 @@
1
+ import { i as formatErrorMessage } from "./errors-Jbvi20TW.js";
2
+ import { a as normalizeLowercaseStringOrEmpty, c as normalizeOptionalString, d as normalizeStringifiedOptionalString, s as normalizeOptionalLowercaseString } from "./string-coerce-C1IzJjqi.js";
3
+ import { f as resolveConfigDir, l as isRecord, m as resolveUserPath } from "./utils-DaGfogP-.js";
4
+ import { n as defaultRuntime } from "./runtime-CQ7eH0le.js";
5
+ import { t as formatDocsLink } from "./links-DmsJCU7L.js";
6
+ import { r as theme } from "./theme-BrRleVfL.js";
7
+ import { _ as resolveStateDir } from "./paths-DmR9mjUX.js";
8
+ import { a as coerceSecretRef, p as resolveSecretInputRef } from "./types.secrets-ews2W8BF.js";
9
+ import { a as formatExecSecretRefIdValidationMessage, c as isValidSecretProviderAlias, l as resolveDefaultSecretProviderAlias, o as isValidExecSecretRefId, u as secretRefKey } from "./ref-contract-GkHI8jyU.js";
10
+ import { t as danger } from "./globals-C5IxqXPj.js";
11
+ import { t as runTasksWithConcurrency } from "./run-with-concurrency-jYHyKOXI.js";
12
+ import { a as parseEnvValue, i as parseDotPath, l as writeTextFileAtomic, n as isNonEmptyString, s as toDotPath } from "./shared-DqD6V-gu.js";
13
+ import { a as resolveSecretRefValue, o as resolveSecretRefValues, r as isProviderScopedSecretResolutionError } from "./resolve-DeAojonS.js";
14
+ import { t as isSafeExecutableValue } from "./exec-safety-DmOD5trD.js";
15
+ import { w as SecretProviderSchema } from "./zod-schema.core--iz7S8Y4.js";
16
+ import { r as createConfigIO } from "./io-DNd8mbjy.js";
17
+ import { c as normalizeAgentId } from "./session-key-EpIbK3Oz.js";
18
+ import { r as normalizeProviderId } from "./provider-id-BLh32HP1.js";
19
+ import { r as listKnownSecretEnvVarNames, t as getProviderEnvVars } from "./provider-env-vars-CEaBLk-N.js";
20
+ import { _ as resolveAgentConfig, g as listAgentIds, x as resolveDefaultAgentId, y as resolveAgentDir } from "./agent-scope-CDjZLqNk.js";
21
+ import { n as getPath, r as setPathCreateStrict, t as deletePathStrict } from "./path-utils-DPIN5oO-.js";
22
+ import { a as listAuthProfileSecretTargetEntries, c as resolvePlanTargetAgainstRegistry, n as discoverConfigSecretTargets, t as discoverAuthProfileSecretTargets } from "./target-registry-C7n9-LgM.js";
23
+ import "./config-3He3LWHw.js";
24
+ import { l as resolveAuthStorePath } from "./source-check-DseWz2_m.js";
25
+ import { c as loadAuthProfileStoreForSecretsRuntime, m as loadPersistedAuthProfileStore, p as coercePersistedAuthProfileStore } from "./store-zVJHt5-N.js";
26
+ import { f as isSecretRefHeaderValueMarker, u as isNonSecretApiKeyMarker } from "./model-auth-markers-fwjZQJ4n.js";
27
+ import "./model-selection-BRmopwFB.js";
28
+ import "./auth-profiles-qkJp8etH.js";
29
+ import { a as prepareSecretsRuntimeSnapshot } from "./runtime-DB1WNkhW.js";
30
+ import { n as hasConfiguredPlaintextSecretValue, r as isExpectedResolvedSecretValue, t as assertExpectedResolvedSecretValue } from "./secret-value-DfrF4A9C.js";
31
+ import { n as callGatewayFromCli, t as addGatewayClientOptions } from "./gateway-rpc-BrG5Lkfm.js";
32
+ import fs from "node:fs";
33
+ import path from "node:path";
34
+ import os from "node:os";
35
+ import { isDeepStrictEqual } from "node:util";
36
+ import { confirm, select, text } from "@clack/prompts";
37
+ //#region src/secrets/auth-profiles-scan.ts
38
+ function getAuthProfileFieldName(pathPattern) {
39
+ const segments = pathPattern.split(".").filter(Boolean);
40
+ return segments[segments.length - 1] ?? "";
41
+ }
42
+ const AUTH_PROFILE_FIELD_SPEC_BY_TYPE = (() => {
43
+ const defaults = {
44
+ api_key: {
45
+ valueField: "key",
46
+ refField: "keyRef"
47
+ },
48
+ token: {
49
+ valueField: "token",
50
+ refField: "tokenRef"
51
+ }
52
+ };
53
+ for (const target of listAuthProfileSecretTargetEntries()) {
54
+ if (!target.authProfileType) continue;
55
+ defaults[target.authProfileType] = {
56
+ valueField: getAuthProfileFieldName(target.pathPattern),
57
+ refField: target.refPathPattern !== void 0 ? getAuthProfileFieldName(target.refPathPattern) : defaults[target.authProfileType].refField
58
+ };
59
+ }
60
+ return defaults;
61
+ })();
62
+ function getAuthProfileFieldSpec(type) {
63
+ return AUTH_PROFILE_FIELD_SPEC_BY_TYPE[type];
64
+ }
65
+ function toSecretCredentialVisit(params) {
66
+ const spec = getAuthProfileFieldSpec(params.kind);
67
+ return {
68
+ kind: params.kind,
69
+ profileId: params.profileId,
70
+ provider: params.provider,
71
+ profile: params.profile,
72
+ valueField: spec.valueField,
73
+ refField: spec.refField,
74
+ value: params.profile[spec.valueField],
75
+ refValue: params.profile[spec.refField]
76
+ };
77
+ }
78
+ function* iterateAuthProfileCredentials(profiles) {
79
+ for (const [profileId, value] of Object.entries(profiles)) {
80
+ if (!isRecord(value) || !isNonEmptyString(value.provider)) continue;
81
+ const provider = value.provider;
82
+ if (value.type === "api_key" || value.type === "token") {
83
+ yield toSecretCredentialVisit({
84
+ kind: value.type,
85
+ profileId,
86
+ provider,
87
+ profile: value
88
+ });
89
+ continue;
90
+ }
91
+ if (value.type === "oauth") yield {
92
+ kind: "oauth",
93
+ profileId,
94
+ provider,
95
+ profile: value,
96
+ hasAccess: isNonEmptyString(value.access),
97
+ hasRefresh: isNonEmptyString(value.refresh)
98
+ };
99
+ }
100
+ }
101
+ //#endregion
102
+ //#region src/secrets/config-io.ts
103
+ const silentConfigIoLogger = {
104
+ error: () => {},
105
+ warn: () => {}
106
+ };
107
+ function createSecretsConfigIO(params) {
108
+ return createConfigIO({
109
+ env: params.env,
110
+ logger: silentConfigIoLogger
111
+ });
112
+ }
113
+ //#endregion
114
+ //#region src/secrets/exec-resolution-policy.ts
115
+ function selectRefsForExecPolicy(params) {
116
+ const refsToResolve = [];
117
+ const skippedExecRefs = [];
118
+ for (const ref of params.refs) {
119
+ if (ref.source === "exec" && !params.allowExec) {
120
+ skippedExecRefs.push(ref);
121
+ continue;
122
+ }
123
+ refsToResolve.push(ref);
124
+ }
125
+ return {
126
+ refsToResolve,
127
+ skippedExecRefs
128
+ };
129
+ }
130
+ function getSkippedExecRefStaticError(params) {
131
+ const id = params.ref.id.trim();
132
+ const refLabel = `${params.ref.source}:${params.ref.provider}:${id}`;
133
+ if (!id) return "Error: Secret reference id is empty.";
134
+ if (!isValidExecSecretRefId(id)) return `Error: ${formatExecSecretRefIdValidationMessage()} (ref: ${refLabel}).`;
135
+ const providerConfig = params.config.secrets?.providers?.[params.ref.provider];
136
+ if (!providerConfig) return `Error: Secret provider "${params.ref.provider}" is not configured (ref: ${refLabel}).`;
137
+ if (providerConfig.source !== params.ref.source) return `Error: Secret provider "${params.ref.provider}" has source "${providerConfig.source}" but ref requests "${params.ref.source}".`;
138
+ return null;
139
+ }
140
+ //#endregion
141
+ //#region src/secrets/plan.ts
142
+ const FORBIDDEN_PATH_SEGMENTS = new Set([
143
+ "__proto__",
144
+ "prototype",
145
+ "constructor"
146
+ ]);
147
+ function isObjectRecord(value) {
148
+ return Boolean(value) && typeof value === "object" && !Array.isArray(value);
149
+ }
150
+ function isSecretProviderConfigShape(value) {
151
+ return SecretProviderSchema.safeParse(value).success;
152
+ }
153
+ function hasForbiddenPathSegment(segments) {
154
+ return segments.some((segment) => FORBIDDEN_PATH_SEGMENTS.has(segment));
155
+ }
156
+ function resolveValidatedPlanTarget(candidate) {
157
+ if (typeof candidate.type !== "string" || !candidate.type.trim()) return null;
158
+ const path = typeof candidate.path === "string" ? candidate.path.trim() : "";
159
+ if (!path) return null;
160
+ const segments = Array.isArray(candidate.pathSegments) && candidate.pathSegments.length > 0 ? candidate.pathSegments.map((segment) => segment.trim()).filter(Boolean) : parseDotPath(path);
161
+ if (segments.length === 0 || hasForbiddenPathSegment(segments) || path !== toDotPath(segments)) return null;
162
+ return resolvePlanTargetAgainstRegistry({
163
+ type: candidate.type,
164
+ pathSegments: segments,
165
+ providerId: candidate.providerId,
166
+ accountId: candidate.accountId
167
+ });
168
+ }
169
+ function isSecretsApplyPlan(value) {
170
+ if (!value || typeof value !== "object" || Array.isArray(value)) return false;
171
+ const typed = value;
172
+ if (typed.version !== 1 || typed.protocolVersion !== 1 || !Array.isArray(typed.targets)) return false;
173
+ for (const target of typed.targets) {
174
+ if (!target || typeof target !== "object") return false;
175
+ const candidate = target;
176
+ const ref = candidate.ref;
177
+ const resolved = resolveValidatedPlanTarget({
178
+ type: candidate.type,
179
+ path: candidate.path,
180
+ pathSegments: candidate.pathSegments,
181
+ agentId: candidate.agentId,
182
+ providerId: candidate.providerId,
183
+ accountId: candidate.accountId,
184
+ authProfileProvider: candidate.authProfileProvider
185
+ });
186
+ if (typeof candidate.path !== "string" || !candidate.path.trim() || candidate.pathSegments !== void 0 && !Array.isArray(candidate.pathSegments) || !resolved || !ref || typeof ref !== "object" || ref.source !== "env" && ref.source !== "file" && ref.source !== "exec" || typeof ref.provider !== "string" || ref.provider.trim().length === 0 || typeof ref.id !== "string" || ref.id.trim().length === 0 || ref.source === "exec" && !isValidExecSecretRefId(ref.id)) return false;
187
+ if (resolved.entry.configFile === "auth-profiles.json") {
188
+ if (typeof candidate.agentId !== "string" || candidate.agentId.trim().length === 0) return false;
189
+ if (candidate.authProfileProvider !== void 0 && (typeof candidate.authProfileProvider !== "string" || candidate.authProfileProvider.trim().length === 0)) return false;
190
+ }
191
+ }
192
+ if (typed.providerUpserts !== void 0) {
193
+ if (!isObjectRecord(typed.providerUpserts)) return false;
194
+ for (const [providerAlias, providerValue] of Object.entries(typed.providerUpserts)) {
195
+ if (!isValidSecretProviderAlias(providerAlias)) return false;
196
+ if (!isSecretProviderConfigShape(providerValue)) return false;
197
+ }
198
+ }
199
+ if (typed.providerDeletes !== void 0) {
200
+ if (!Array.isArray(typed.providerDeletes) || typed.providerDeletes.some((providerAlias) => typeof providerAlias !== "string" || !isValidSecretProviderAlias(providerAlias))) return false;
201
+ }
202
+ return true;
203
+ }
204
+ function normalizeSecretsPlanOptions(options) {
205
+ return {
206
+ scrubEnv: options?.scrubEnv ?? true,
207
+ scrubAuthProfilesForProviderTargets: options?.scrubAuthProfilesForProviderTargets ?? true,
208
+ scrubLegacyAuthJson: options?.scrubLegacyAuthJson ?? true
209
+ };
210
+ }
211
+ //#endregion
212
+ //#region src/secrets/auth-store-paths.ts
213
+ function listAuthProfileStorePaths$1(config, stateDir) {
214
+ const paths = /* @__PURE__ */ new Set();
215
+ paths.add(path.join(resolveUserPath(stateDir), "agents", "main", "agent", "auth-profiles.json"));
216
+ const agentsRoot = path.join(resolveUserPath(stateDir), "agents");
217
+ if (fs.existsSync(agentsRoot)) for (const entry of fs.readdirSync(agentsRoot, { withFileTypes: true })) {
218
+ if (!entry.isDirectory()) continue;
219
+ paths.add(path.join(agentsRoot, entry.name, "agent", "auth-profiles.json"));
220
+ }
221
+ for (const agentId of listAgentIds(config)) {
222
+ if (agentId === "main") {
223
+ paths.add(path.join(resolveUserPath(stateDir), "agents", "main", "agent", "auth-profiles.json"));
224
+ continue;
225
+ }
226
+ const agentDir = resolveAgentDir(config, agentId);
227
+ paths.add(resolveUserPath(resolveAuthStorePath(agentDir)));
228
+ }
229
+ return [...paths];
230
+ }
231
+ //#endregion
232
+ //#region src/secrets/storage-scan.ts
233
+ function isJsonObject(value) {
234
+ return typeof value === "object" && value !== null && !Array.isArray(value);
235
+ }
236
+ function parseEnvAssignmentValue(raw) {
237
+ return parseEnvValue(raw);
238
+ }
239
+ function listAuthProfileStorePaths(config, stateDir) {
240
+ return listAuthProfileStorePaths$1(config, stateDir);
241
+ }
242
+ function listLegacyAuthJsonPaths(stateDir) {
243
+ const out = [];
244
+ const agentsRoot = path.join(resolveUserPath(stateDir), "agents");
245
+ if (!fs.existsSync(agentsRoot)) return out;
246
+ for (const entry of fs.readdirSync(agentsRoot, { withFileTypes: true })) {
247
+ if (!entry.isDirectory()) continue;
248
+ const candidate = path.join(agentsRoot, entry.name, "agent", "auth.json");
249
+ if (fs.existsSync(candidate)) out.push(candidate);
250
+ }
251
+ return out;
252
+ }
253
+ function resolveActiveAgentDir(stateDir, env = process.env) {
254
+ const override = env.GENESIS_AGENT_DIR?.trim() || env.PI_CODING_AGENT_DIR?.trim();
255
+ if (override) return resolveUserPath(override);
256
+ return path.join(resolveUserPath(stateDir), "agents", "main", "agent");
257
+ }
258
+ function listAgentModelsJsonPaths(config, stateDir, env = process.env) {
259
+ const resolvedStateDir = resolveUserPath(stateDir);
260
+ const paths = /* @__PURE__ */ new Set();
261
+ paths.add(path.join(resolvedStateDir, "agents", "main", "agent", "models.json"));
262
+ paths.add(path.join(resolveActiveAgentDir(stateDir, env), "models.json"));
263
+ const agentsRoot = path.join(resolvedStateDir, "agents");
264
+ if (fs.existsSync(agentsRoot)) for (const entry of fs.readdirSync(agentsRoot, { withFileTypes: true })) {
265
+ if (!entry.isDirectory()) continue;
266
+ paths.add(path.join(agentsRoot, entry.name, "agent", "models.json"));
267
+ }
268
+ for (const agentId of listAgentIds(config)) {
269
+ if (agentId === "main") {
270
+ paths.add(path.join(resolvedStateDir, "agents", "main", "agent", "models.json"));
271
+ continue;
272
+ }
273
+ const agentDir = resolveAgentDir(config, agentId);
274
+ paths.add(path.join(resolveUserPath(agentDir), "models.json"));
275
+ }
276
+ return [...paths];
277
+ }
278
+ function readJsonObjectIfExists(filePath, options = {}) {
279
+ if (!fs.existsSync(filePath)) return { value: null };
280
+ try {
281
+ const stats = fs.statSync(filePath);
282
+ if (options.requireRegularFile && !stats.isFile()) return {
283
+ value: null,
284
+ error: `Refusing to read non-regular file: ${filePath}`
285
+ };
286
+ if (typeof options.maxBytes === "number" && Number.isFinite(options.maxBytes) && options.maxBytes >= 0 && stats.size > options.maxBytes) return {
287
+ value: null,
288
+ error: `Refusing to read oversized JSON (${stats.size} bytes): ${filePath}`
289
+ };
290
+ const raw = fs.readFileSync(filePath, "utf8");
291
+ const parsed = JSON.parse(raw);
292
+ if (!isJsonObject(parsed)) return { value: null };
293
+ return { value: parsed };
294
+ } catch (err) {
295
+ return {
296
+ value: null,
297
+ error: formatErrorMessage(err)
298
+ };
299
+ }
300
+ }
301
+ //#endregion
302
+ //#region src/secrets/apply.ts
303
+ function planContainsExecReferences(plan) {
304
+ if (plan.targets.some((target) => target.ref.source === "exec")) return true;
305
+ return Object.values(plan.providerUpserts ?? {}).some((provider) => provider.source === "exec");
306
+ }
307
+ function resolveTarget(target) {
308
+ const resolved = resolveValidatedPlanTarget(target);
309
+ if (!resolved) throw new Error(`Invalid plan target path for ${target.type}: ${target.path}`);
310
+ return resolved;
311
+ }
312
+ function scrubEnvRaw(raw, migratedValues, allowedEnvKeys) {
313
+ if (migratedValues.size === 0 || allowedEnvKeys.size === 0) return {
314
+ nextRaw: raw,
315
+ removed: 0
316
+ };
317
+ const lines = raw.split(/\r?\n/);
318
+ const nextLines = [];
319
+ let removed = 0;
320
+ for (const line of lines) {
321
+ const match = line.match(/^\s*(?:export\s+)?([A-Za-z_][A-Za-z0-9_]*)\s*=\s*(.*)$/);
322
+ if (!match) {
323
+ nextLines.push(line);
324
+ continue;
325
+ }
326
+ const envKey = match[1] ?? "";
327
+ if (!allowedEnvKeys.has(envKey)) {
328
+ nextLines.push(line);
329
+ continue;
330
+ }
331
+ const parsedValue = parseEnvAssignmentValue(match[2] ?? "");
332
+ if (migratedValues.has(parsedValue)) {
333
+ removed += 1;
334
+ continue;
335
+ }
336
+ nextLines.push(line);
337
+ }
338
+ const hadTrailingNewline = raw.endsWith("\n");
339
+ const joined = nextLines.join("\n");
340
+ return {
341
+ nextRaw: hadTrailingNewline || joined.length === 0 ? `${joined}${joined.endsWith("\n") ? "" : "\n"}` : joined,
342
+ removed
343
+ };
344
+ }
345
+ function applyProviderPlanMutations(params) {
346
+ const currentProviders = isRecord(params.config.secrets?.providers) ? structuredClone(params.config.secrets?.providers) : {};
347
+ let changed = false;
348
+ for (const providerAlias of params.deletes ?? []) {
349
+ if (!Object.prototype.hasOwnProperty.call(currentProviders, providerAlias)) continue;
350
+ delete currentProviders[providerAlias];
351
+ changed = true;
352
+ }
353
+ for (const [providerAlias, providerConfig] of Object.entries(params.upserts ?? {})) {
354
+ const previous = currentProviders[providerAlias];
355
+ if (isDeepStrictEqual(previous, providerConfig)) continue;
356
+ currentProviders[providerAlias] = structuredClone(providerConfig);
357
+ changed = true;
358
+ }
359
+ if (!changed) return false;
360
+ params.config.secrets ??= {};
361
+ if (Object.keys(currentProviders).length === 0) {
362
+ if ("providers" in params.config.secrets) delete params.config.secrets.providers;
363
+ return true;
364
+ }
365
+ params.config.secrets.providers = currentProviders;
366
+ return true;
367
+ }
368
+ async function projectPlanState(params) {
369
+ const { snapshot, writeOptions } = await createSecretsConfigIO({ env: params.env }).readConfigFileSnapshotForWrite();
370
+ if (!snapshot.valid) throw new Error("Cannot apply secrets plan: config is invalid.");
371
+ const options = normalizeSecretsPlanOptions(params.plan.options);
372
+ const nextConfig = structuredClone(snapshot.config);
373
+ const stateDir = resolveStateDir(params.env, os.homedir);
374
+ const changedFiles = /* @__PURE__ */ new Set();
375
+ const warnings = [];
376
+ const configPath = resolveUserPath(snapshot.path);
377
+ if (applyProviderPlanMutations({
378
+ config: nextConfig,
379
+ upserts: params.plan.providerUpserts,
380
+ deletes: params.plan.providerDeletes
381
+ })) changedFiles.add(configPath);
382
+ const targetMutations = applyConfigTargetMutations({
383
+ planTargets: params.plan.targets,
384
+ nextConfig,
385
+ stateDir,
386
+ authStoreByPath: /* @__PURE__ */ new Map(),
387
+ changedFiles
388
+ });
389
+ if (targetMutations.configChanged) changedFiles.add(configPath);
390
+ const authStoreByPath = scrubAuthStoresForProviderTargets({
391
+ nextConfig,
392
+ stateDir,
393
+ providerTargets: targetMutations.providerTargets,
394
+ scrubbedValues: targetMutations.scrubbedValues,
395
+ authStoreByPath: targetMutations.authStoreByPath,
396
+ changedFiles,
397
+ warnings,
398
+ enabled: options.scrubAuthProfilesForProviderTargets
399
+ });
400
+ const authJsonByPath = scrubLegacyAuthJsonStores({
401
+ stateDir,
402
+ changedFiles,
403
+ enabled: options.scrubLegacyAuthJson
404
+ });
405
+ const envRawByPath = scrubEnvFiles({
406
+ env: params.env,
407
+ scrubbedValues: targetMutations.scrubbedValues,
408
+ changedFiles,
409
+ enabled: options.scrubEnv
410
+ });
411
+ const checkFullRuntime = params.write ? changedFiles.size > 0 : params.allowExecInDryRun;
412
+ const validation = await validateProjectedSecretsState({
413
+ env: params.env,
414
+ nextConfig,
415
+ resolvedTargets: targetMutations.resolvedTargets,
416
+ authStoreByPath,
417
+ write: params.write,
418
+ allowExecInDryRun: params.allowExecInDryRun,
419
+ checkFullRuntime
420
+ });
421
+ return {
422
+ nextConfig,
423
+ configPath,
424
+ configWriteOptions: writeOptions,
425
+ authStoreByPath,
426
+ authJsonByPath,
427
+ envRawByPath,
428
+ changedFiles,
429
+ warnings,
430
+ refsChecked: validation.refsChecked,
431
+ skippedExecRefs: validation.skippedExecRefs,
432
+ resolvabilityComplete: validation.resolvabilityComplete
433
+ };
434
+ }
435
+ function applyConfigTargetMutations(params) {
436
+ const resolvedTargets = params.planTargets.map((target) => ({
437
+ target,
438
+ resolved: resolveTarget(target)
439
+ }));
440
+ const scrubbedValues = /* @__PURE__ */ new Set();
441
+ const providerTargets = /* @__PURE__ */ new Set();
442
+ let configChanged = false;
443
+ for (const { target, resolved } of resolvedTargets) {
444
+ if (resolved.entry.configFile === "auth-profiles.json") {
445
+ if (applyAuthProfileTargetMutation({
446
+ target,
447
+ resolved,
448
+ nextConfig: params.nextConfig,
449
+ stateDir: params.stateDir,
450
+ authStoreByPath: params.authStoreByPath,
451
+ scrubbedValues
452
+ })) {
453
+ const agentId = (target.agentId ?? "").trim();
454
+ if (!agentId) throw new Error(`Missing required agentId for auth-profiles target ${target.path}.`);
455
+ params.changedFiles.add(resolveAuthStorePathForAgent({
456
+ nextConfig: params.nextConfig,
457
+ stateDir: params.stateDir,
458
+ agentId
459
+ }));
460
+ }
461
+ continue;
462
+ }
463
+ const targetPathSegments = resolved.pathSegments;
464
+ if (resolved.entry.secretShape === "sibling_ref") {
465
+ const previous = getPath(params.nextConfig, targetPathSegments);
466
+ if (isNonEmptyString(previous)) scrubbedValues.add(previous.trim());
467
+ const refPathSegments = resolved.refPathSegments;
468
+ if (!refPathSegments) throw new Error(`Missing sibling ref path for target ${target.type}.`);
469
+ const wroteRef = setPathCreateStrict(params.nextConfig, refPathSegments, target.ref);
470
+ const deletedLegacy = deletePathStrict(params.nextConfig, targetPathSegments);
471
+ if (wroteRef || deletedLegacy) configChanged = true;
472
+ continue;
473
+ }
474
+ const previous = getPath(params.nextConfig, targetPathSegments);
475
+ if (isNonEmptyString(previous)) scrubbedValues.add(previous.trim());
476
+ if (setPathCreateStrict(params.nextConfig, targetPathSegments, target.ref)) configChanged = true;
477
+ if (resolved.entry.trackProviderShadowing && resolved.providerId) providerTargets.add(normalizeProviderId(resolved.providerId));
478
+ }
479
+ return {
480
+ resolvedTargets,
481
+ scrubbedValues,
482
+ providerTargets,
483
+ configChanged,
484
+ authStoreByPath: params.authStoreByPath
485
+ };
486
+ }
487
+ function scrubAuthStoresForProviderTargets(params) {
488
+ if (!params.enabled || params.providerTargets.size === 0) return params.authStoreByPath;
489
+ for (const authStorePath of listAuthProfileStorePaths(params.nextConfig, params.stateDir)) {
490
+ const parsed = params.authStoreByPath.get(authStorePath) ?? readJsonObjectIfExists(authStorePath).value;
491
+ if (!parsed || !isRecord(parsed.profiles)) continue;
492
+ const nextStore = structuredClone(parsed);
493
+ const profiles = nextStore.profiles;
494
+ if (!isRecord(profiles)) continue;
495
+ let mutated = false;
496
+ for (const profile of iterateAuthProfileCredentials(profiles)) {
497
+ const provider = normalizeProviderId(profile.provider);
498
+ if (!params.providerTargets.has(provider)) continue;
499
+ if (profile.kind === "api_key" || profile.kind === "token") {
500
+ if (isNonEmptyString(profile.value)) params.scrubbedValues.add(profile.value.trim());
501
+ if (profile.valueField in profile.profile) {
502
+ delete profile.profile[profile.valueField];
503
+ mutated = true;
504
+ }
505
+ if (profile.refField in profile.profile) {
506
+ delete profile.profile[profile.refField];
507
+ mutated = true;
508
+ }
509
+ continue;
510
+ }
511
+ if (profile.kind === "oauth" && (profile.hasAccess || profile.hasRefresh)) params.warnings.push(`Provider "${provider}" has OAuth credentials in ${authStorePath}; those still take precedence and are out of scope for static SecretRef migration.`);
512
+ }
513
+ if (mutated) {
514
+ params.authStoreByPath.set(authStorePath, nextStore);
515
+ params.changedFiles.add(authStorePath);
516
+ }
517
+ }
518
+ return params.authStoreByPath;
519
+ }
520
+ function ensureMutableAuthStore(store) {
521
+ const next = store ? structuredClone(store) : {};
522
+ const profiles = isRecord(next.profiles) ? next.profiles : {};
523
+ if (typeof next.version !== "number" || !Number.isFinite(next.version)) next.version = 1;
524
+ return {
525
+ ...next,
526
+ profiles
527
+ };
528
+ }
529
+ function resolveAuthStoreForTarget(params) {
530
+ const agentId = (params.target.agentId ?? "").trim();
531
+ if (!agentId) throw new Error(`Missing required agentId for auth-profiles target ${params.target.path}.`);
532
+ const authStorePath = resolveAuthStorePathForAgent({
533
+ nextConfig: params.nextConfig,
534
+ stateDir: params.stateDir,
535
+ agentId
536
+ });
537
+ const loaded = params.authStoreByPath.get(authStorePath) ?? readJsonObjectIfExists(authStorePath).value;
538
+ const store = ensureMutableAuthStore(isRecord(loaded) ? loaded : void 0);
539
+ params.authStoreByPath.set(authStorePath, store);
540
+ return {
541
+ path: authStorePath,
542
+ store
543
+ };
544
+ }
545
+ function resolveAuthStorePathForAgent(params) {
546
+ const normalizedAgentId = normalizeAgentId(params.agentId);
547
+ const configuredAgentDir = resolveAgentConfig(params.nextConfig, normalizedAgentId)?.agentDir?.trim();
548
+ if (configuredAgentDir) return resolveUserPath(resolveAuthStorePath(configuredAgentDir));
549
+ return path.join(resolveUserPath(params.stateDir), "agents", normalizedAgentId, "agent", "auth-profiles.json");
550
+ }
551
+ function ensureAuthProfileContainer(params) {
552
+ let changed = false;
553
+ const profilePathSegments = params.resolved.pathSegments.slice(0, 2);
554
+ const profileId = profilePathSegments[1];
555
+ if (!profileId) throw new Error(`Invalid auth profile target path: ${params.target.path}`);
556
+ const current = getPath(params.store, profilePathSegments);
557
+ const expectedType = params.resolved.entry.authProfileType;
558
+ if (isRecord(current)) {
559
+ if (expectedType && typeof current.type === "string" && current.type !== expectedType) throw new Error(`Auth profile "${profileId}" type mismatch for ${params.target.path}: expected "${expectedType}", got "${current.type}".`);
560
+ if (!isNonEmptyString(current.provider) && isNonEmptyString(params.target.authProfileProvider)) {
561
+ const wroteProvider = setPathCreateStrict(params.store, [...profilePathSegments, "provider"], params.target.authProfileProvider);
562
+ changed = changed || wroteProvider;
563
+ }
564
+ return changed;
565
+ }
566
+ if (!expectedType) throw new Error(`Auth profile target ${params.target.path} is missing auth profile type metadata.`);
567
+ const provider = (params.target.authProfileProvider ?? "").trim();
568
+ if (!provider) throw new Error(`Cannot create auth profile "${profileId}" for ${params.target.path} without authProfileProvider.`);
569
+ const wroteProfile = setPathCreateStrict(params.store, profilePathSegments, {
570
+ type: expectedType,
571
+ provider
572
+ });
573
+ changed = changed || wroteProfile;
574
+ return changed;
575
+ }
576
+ function applyAuthProfileTargetMutation(params) {
577
+ if (params.resolved.entry.configFile !== "auth-profiles.json") return false;
578
+ const { store } = resolveAuthStoreForTarget({
579
+ target: params.target,
580
+ nextConfig: params.nextConfig,
581
+ stateDir: params.stateDir,
582
+ authStoreByPath: params.authStoreByPath
583
+ });
584
+ let changed = ensureAuthProfileContainer({
585
+ target: params.target,
586
+ resolved: params.resolved,
587
+ store
588
+ });
589
+ const targetPathSegments = params.resolved.pathSegments;
590
+ if (params.resolved.entry.secretShape === "sibling_ref") {
591
+ const previous = getPath(store, targetPathSegments);
592
+ if (isNonEmptyString(previous)) params.scrubbedValues.add(previous.trim());
593
+ const refPathSegments = params.resolved.refPathSegments;
594
+ if (!refPathSegments) throw new Error(`Missing sibling ref path for auth-profiles target ${params.target.path}.`);
595
+ const wroteRef = setPathCreateStrict(store, refPathSegments, params.target.ref);
596
+ const deletedPlaintext = deletePathStrict(store, targetPathSegments);
597
+ changed = changed || wroteRef || deletedPlaintext;
598
+ return changed;
599
+ }
600
+ const previous = getPath(store, targetPathSegments);
601
+ if (isNonEmptyString(previous)) params.scrubbedValues.add(previous.trim());
602
+ const wroteRef = setPathCreateStrict(store, targetPathSegments, params.target.ref);
603
+ changed = changed || wroteRef;
604
+ return changed;
605
+ }
606
+ function scrubLegacyAuthJsonStores(params) {
607
+ const authJsonByPath = /* @__PURE__ */ new Map();
608
+ if (!params.enabled) return authJsonByPath;
609
+ for (const authJsonPath of listLegacyAuthJsonPaths(params.stateDir)) {
610
+ const parsed = readJsonObjectIfExists(authJsonPath).value;
611
+ if (!parsed) continue;
612
+ let mutated = false;
613
+ const nextParsed = structuredClone(parsed);
614
+ for (const [providerId, value] of Object.entries(nextParsed)) {
615
+ if (!isRecord(value)) continue;
616
+ if (value.type === "api_key" && isNonEmptyString(value.key)) {
617
+ delete nextParsed[providerId];
618
+ mutated = true;
619
+ }
620
+ }
621
+ if (mutated) {
622
+ authJsonByPath.set(authJsonPath, nextParsed);
623
+ params.changedFiles.add(authJsonPath);
624
+ }
625
+ }
626
+ return authJsonByPath;
627
+ }
628
+ function scrubEnvFiles(params) {
629
+ const envRawByPath = /* @__PURE__ */ new Map();
630
+ if (!params.enabled || params.scrubbedValues.size === 0) return envRawByPath;
631
+ const envPath = path.join(resolveConfigDir(params.env, os.homedir), ".env");
632
+ if (!fs.existsSync(envPath)) return envRawByPath;
633
+ const current = fs.readFileSync(envPath, "utf8");
634
+ const scrubbed = scrubEnvRaw(current, params.scrubbedValues, new Set(listKnownSecretEnvVarNames()));
635
+ if (scrubbed.removed > 0 && scrubbed.nextRaw !== current) {
636
+ envRawByPath.set(envPath, scrubbed.nextRaw);
637
+ params.changedFiles.add(envPath);
638
+ }
639
+ return envRawByPath;
640
+ }
641
+ async function validateProjectedSecretsState(params) {
642
+ const cache = {};
643
+ let refsChecked = 0;
644
+ let skippedExecRefs = 0;
645
+ for (const { target, resolved: resolvedTarget } of params.resolvedTargets) {
646
+ if (!params.write && target.ref.source === "exec" && !params.allowExecInDryRun) {
647
+ skippedExecRefs += 1;
648
+ const staticError = getSkippedExecRefStaticError({
649
+ ref: target.ref,
650
+ config: params.nextConfig
651
+ });
652
+ if (staticError) throw new Error(staticError);
653
+ continue;
654
+ }
655
+ const resolved = await resolveSecretRefValue(target.ref, {
656
+ config: params.nextConfig,
657
+ env: params.env,
658
+ cache
659
+ });
660
+ refsChecked += 1;
661
+ assertExpectedResolvedSecretValue({
662
+ value: resolved,
663
+ expected: resolvedTarget.entry.expectedResolvedValue,
664
+ errorMessage: resolvedTarget.entry.expectedResolvedValue === "string" ? `Ref ${target.ref.source}:${target.ref.provider}:${target.ref.id} is not a non-empty string.` : `Ref ${target.ref.source}:${target.ref.provider}:${target.ref.id} is not string/object.`
665
+ });
666
+ }
667
+ const authStoreLookup = /* @__PURE__ */ new Map();
668
+ for (const [authStorePath, store] of params.authStoreByPath.entries()) authStoreLookup.set(resolveUserPath(authStorePath), store);
669
+ if (params.checkFullRuntime) await prepareSecretsRuntimeSnapshot({
670
+ config: params.nextConfig,
671
+ env: params.env,
672
+ includeAuthStoreRefs: params.write || params.authStoreByPath.size > 0,
673
+ loadAuthStore: (agentDir) => {
674
+ const storePath = resolveUserPath(resolveAuthStorePath(agentDir));
675
+ const override = authStoreLookup.get(storePath);
676
+ if (override) return coercePersistedAuthProfileStore(structuredClone(override)) ?? {
677
+ version: 1,
678
+ profiles: {}
679
+ };
680
+ return loadAuthProfileStoreForSecretsRuntime(agentDir);
681
+ }
682
+ });
683
+ return {
684
+ refsChecked,
685
+ skippedExecRefs,
686
+ resolvabilityComplete: params.write || params.allowExecInDryRun || skippedExecRefs === 0
687
+ };
688
+ }
689
+ function captureFileSnapshot(pathname) {
690
+ if (!fs.existsSync(pathname)) return {
691
+ existed: false,
692
+ content: "",
693
+ mode: 384
694
+ };
695
+ const stat = fs.statSync(pathname);
696
+ return {
697
+ existed: true,
698
+ content: fs.readFileSync(pathname, "utf8"),
699
+ mode: stat.mode & 511
700
+ };
701
+ }
702
+ function restoreFileSnapshot(pathname, snapshot) {
703
+ if (!snapshot.existed) {
704
+ if (fs.existsSync(pathname)) fs.rmSync(pathname, { force: true });
705
+ return;
706
+ }
707
+ writeTextFileAtomic(pathname, snapshot.content, snapshot.mode || 384);
708
+ }
709
+ function toJsonWrite(pathname, value) {
710
+ return {
711
+ path: pathname,
712
+ content: `${JSON.stringify(value, null, 2)}\n`,
713
+ mode: 384
714
+ };
715
+ }
716
+ async function runSecretsApply(params) {
717
+ const env = params.env ?? process.env;
718
+ const write = params.write === true;
719
+ const allowExec = Boolean(params.allowExec);
720
+ if (write && planContainsExecReferences(params.plan) && !allowExec) throw new Error("Plan contains exec SecretRefs/providers. Re-run with --allow-exec.");
721
+ const allowExecInDryRun = write ? true : allowExec;
722
+ const projected = await projectPlanState({
723
+ plan: params.plan,
724
+ env,
725
+ write,
726
+ allowExecInDryRun
727
+ });
728
+ const changedFiles = [...projected.changedFiles].toSorted();
729
+ if (!write) return {
730
+ mode: "dry-run",
731
+ changed: changedFiles.length > 0,
732
+ changedFiles,
733
+ checks: {
734
+ resolvability: true,
735
+ resolvabilityComplete: projected.resolvabilityComplete
736
+ },
737
+ refsChecked: projected.refsChecked,
738
+ skippedExecRefs: projected.skippedExecRefs,
739
+ warningCount: projected.warnings.length,
740
+ warnings: projected.warnings
741
+ };
742
+ if (changedFiles.length === 0) return {
743
+ mode: "write",
744
+ changed: false,
745
+ changedFiles: [],
746
+ checks: {
747
+ resolvability: true,
748
+ resolvabilityComplete: true
749
+ },
750
+ refsChecked: projected.refsChecked,
751
+ skippedExecRefs: 0,
752
+ warningCount: projected.warnings.length,
753
+ warnings: projected.warnings
754
+ };
755
+ const io = createSecretsConfigIO({ env });
756
+ const snapshots = /* @__PURE__ */ new Map();
757
+ const capture = (pathname) => {
758
+ if (!snapshots.has(pathname)) snapshots.set(pathname, captureFileSnapshot(pathname));
759
+ };
760
+ capture(projected.configPath);
761
+ const writes = [];
762
+ for (const [pathname, value] of projected.authStoreByPath.entries()) {
763
+ capture(pathname);
764
+ writes.push(toJsonWrite(pathname, value));
765
+ }
766
+ for (const [pathname, value] of projected.authJsonByPath.entries()) {
767
+ capture(pathname);
768
+ writes.push(toJsonWrite(pathname, value));
769
+ }
770
+ for (const [pathname, raw] of projected.envRawByPath.entries()) {
771
+ capture(pathname);
772
+ writes.push({
773
+ path: pathname,
774
+ content: raw,
775
+ mode: 384
776
+ });
777
+ }
778
+ try {
779
+ await io.writeConfigFile(projected.nextConfig, projected.configWriteOptions);
780
+ for (const write of writes) writeTextFileAtomic(write.path, write.content, write.mode);
781
+ } catch (err) {
782
+ for (const [pathname, snapshot] of snapshots.entries()) try {
783
+ restoreFileSnapshot(pathname, snapshot);
784
+ } catch {}
785
+ throw new Error(`Secrets apply failed: ${String(err)}`, { cause: err });
786
+ }
787
+ return {
788
+ mode: "write",
789
+ changed: changedFiles.length > 0,
790
+ changedFiles,
791
+ checks: {
792
+ resolvability: true,
793
+ resolvabilityComplete: true
794
+ },
795
+ refsChecked: projected.refsChecked,
796
+ skippedExecRefs: 0,
797
+ warningCount: projected.warnings.length,
798
+ warnings: projected.warnings
799
+ };
800
+ }
801
+ //#endregion
802
+ //#region src/secrets/audit.ts
803
+ const REF_RESOLVE_FALLBACK_CONCURRENCY = 8;
804
+ const MAX_AUDIT_MODELS_JSON_BYTES = 5 * 1024 * 1024;
805
+ const ALWAYS_SENSITIVE_MODEL_PROVIDER_HEADER_NAMES = new Set([
806
+ "authorization",
807
+ "proxy-authorization",
808
+ "x-api-key",
809
+ "api-key",
810
+ "apikey",
811
+ "x-auth-token",
812
+ "auth-token",
813
+ "x-access-token",
814
+ "access-token",
815
+ "x-secret-key",
816
+ "secret-key"
817
+ ]);
818
+ const SENSITIVE_MODEL_PROVIDER_HEADER_NAME_FRAGMENTS = [
819
+ "api-key",
820
+ "apikey",
821
+ "token",
822
+ "secret",
823
+ "password",
824
+ "credential"
825
+ ];
826
+ function isLikelySensitiveModelProviderHeaderName(value) {
827
+ const normalized = normalizeLowercaseStringOrEmpty(value);
828
+ if (!normalized) return false;
829
+ if (ALWAYS_SENSITIVE_MODEL_PROVIDER_HEADER_NAMES.has(normalized)) return true;
830
+ return SENSITIVE_MODEL_PROVIDER_HEADER_NAME_FRAGMENTS.some((fragment) => normalized.includes(fragment));
831
+ }
832
+ function addFinding(collector, finding) {
833
+ collector.findings.push(finding);
834
+ }
835
+ function collectProviderRefPath(collector, providerId, configPath) {
836
+ const key = normalizeProviderId(providerId);
837
+ const existing = collector.configProviderRefPaths.get(key);
838
+ if (existing) {
839
+ existing.push(configPath);
840
+ return;
841
+ }
842
+ collector.configProviderRefPaths.set(key, [configPath]);
843
+ }
844
+ function trackAuthProviderState(collector, provider, mode) {
845
+ const key = normalizeProviderId(provider);
846
+ const existing = collector.authProviderState.get(key);
847
+ if (existing) {
848
+ existing.hasUsableStaticOrOAuth = true;
849
+ existing.modes.add(mode);
850
+ return;
851
+ }
852
+ collector.authProviderState.set(key, {
853
+ hasUsableStaticOrOAuth: true,
854
+ modes: new Set([mode])
855
+ });
856
+ }
857
+ function collectEnvPlaintext(params) {
858
+ if (!fs.existsSync(params.envPath)) return;
859
+ params.collector.filesScanned.add(params.envPath);
860
+ const knownKeys = new Set(listKnownSecretEnvVarNames());
861
+ const lines = fs.readFileSync(params.envPath, "utf8").split(/\r?\n/);
862
+ for (const line of lines) {
863
+ const match = line.match(/^\s*(?:export\s+)?([A-Za-z_][A-Za-z0-9_]*)\s*=\s*(.*)$/);
864
+ if (!match) continue;
865
+ const key = match[1] ?? "";
866
+ if (!knownKeys.has(key)) continue;
867
+ if (!parseEnvAssignmentValue(match[2] ?? "")) continue;
868
+ addFinding(params.collector, {
869
+ code: "PLAINTEXT_FOUND",
870
+ severity: "warn",
871
+ file: params.envPath,
872
+ jsonPath: `$env.${key}`,
873
+ message: `Potential secret found in .env (${key}).`
874
+ });
875
+ }
876
+ }
877
+ function collectConfigSecrets(params) {
878
+ const defaults = params.config.secrets?.defaults;
879
+ for (const target of discoverConfigSecretTargets(params.config)) {
880
+ if (!target.entry.includeInAudit) continue;
881
+ const { ref } = resolveSecretInputRef({
882
+ value: target.value,
883
+ refValue: target.refValue,
884
+ defaults
885
+ });
886
+ if (ref) {
887
+ params.collector.refAssignments.push({
888
+ file: params.configPath,
889
+ path: target.path,
890
+ ref,
891
+ expected: target.entry.expectedResolvedValue,
892
+ provider: target.providerId
893
+ });
894
+ if (target.entry.trackProviderShadowing && target.providerId) collectProviderRefPath(params.collector, target.providerId, target.path);
895
+ continue;
896
+ }
897
+ const hasPlaintext = hasConfiguredPlaintextSecretValue(target.value, target.entry.expectedResolvedValue);
898
+ if (target.entry.id === "models.providers.*.headers.*" && !isLikelySensitiveModelProviderHeaderName(target.pathSegments.at(-1) ?? "")) continue;
899
+ if (!hasPlaintext) continue;
900
+ addFinding(params.collector, {
901
+ code: "PLAINTEXT_FOUND",
902
+ severity: "warn",
903
+ file: params.configPath,
904
+ jsonPath: target.path,
905
+ message: `${target.path} is stored as plaintext.`,
906
+ provider: target.providerId
907
+ });
908
+ }
909
+ }
910
+ function collectAuthStoreSecrets(params) {
911
+ if (!fs.existsSync(params.authStorePath)) return;
912
+ params.collector.filesScanned.add(params.authStorePath);
913
+ const parsedResult = readJsonObjectIfExists(params.authStorePath);
914
+ if (parsedResult.error) {
915
+ addFinding(params.collector, {
916
+ code: "REF_UNRESOLVED",
917
+ severity: "error",
918
+ file: params.authStorePath,
919
+ jsonPath: "<root>",
920
+ message: `Invalid JSON in auth-profiles store: ${parsedResult.error}`
921
+ });
922
+ return;
923
+ }
924
+ const parsed = parsedResult.value;
925
+ if (!parsed || !isRecord(parsed.profiles)) return;
926
+ for (const entry of iterateAuthProfileCredentials(parsed.profiles)) {
927
+ if (entry.kind === "api_key" || entry.kind === "token") {
928
+ const { ref } = resolveSecretInputRef({
929
+ value: entry.value,
930
+ refValue: entry.refValue,
931
+ defaults: params.defaults
932
+ });
933
+ if (ref) {
934
+ params.collector.refAssignments.push({
935
+ file: params.authStorePath,
936
+ path: `profiles.${entry.profileId}.${entry.valueField}`,
937
+ ref,
938
+ expected: "string",
939
+ provider: entry.provider
940
+ });
941
+ trackAuthProviderState(params.collector, entry.provider, entry.kind);
942
+ }
943
+ if (isNonEmptyString(entry.value)) {
944
+ addFinding(params.collector, {
945
+ code: "PLAINTEXT_FOUND",
946
+ severity: "warn",
947
+ file: params.authStorePath,
948
+ jsonPath: `profiles.${entry.profileId}.${entry.valueField}`,
949
+ message: entry.kind === "api_key" ? "Auth profile API key is stored as plaintext." : "Auth profile token is stored as plaintext.",
950
+ provider: entry.provider,
951
+ profileId: entry.profileId
952
+ });
953
+ trackAuthProviderState(params.collector, entry.provider, entry.kind);
954
+ }
955
+ continue;
956
+ }
957
+ if (entry.hasAccess || entry.hasRefresh) {
958
+ addFinding(params.collector, {
959
+ code: "LEGACY_RESIDUE",
960
+ severity: "info",
961
+ file: params.authStorePath,
962
+ jsonPath: `profiles.${entry.profileId}`,
963
+ message: "OAuth credentials are present (out of scope for static SecretRef migration).",
964
+ provider: entry.provider,
965
+ profileId: entry.profileId
966
+ });
967
+ trackAuthProviderState(params.collector, entry.provider, "oauth");
968
+ }
969
+ }
970
+ }
971
+ function collectAuthJsonResidue(params) {
972
+ for (const authJsonPath of listLegacyAuthJsonPaths(params.stateDir)) {
973
+ params.collector.filesScanned.add(authJsonPath);
974
+ const parsedResult = readJsonObjectIfExists(authJsonPath);
975
+ if (parsedResult.error) {
976
+ addFinding(params.collector, {
977
+ code: "REF_UNRESOLVED",
978
+ severity: "error",
979
+ file: authJsonPath,
980
+ jsonPath: "<root>",
981
+ message: `Invalid JSON in legacy auth.json: ${parsedResult.error}`
982
+ });
983
+ continue;
984
+ }
985
+ const parsed = parsedResult.value;
986
+ if (!parsed) continue;
987
+ for (const [providerId, value] of Object.entries(parsed)) {
988
+ if (!isRecord(value)) continue;
989
+ if (value.type === "api_key" && isNonEmptyString(value.key)) addFinding(params.collector, {
990
+ code: "LEGACY_RESIDUE",
991
+ severity: "warn",
992
+ file: authJsonPath,
993
+ jsonPath: providerId,
994
+ message: "Legacy auth.json contains static api_key credentials.",
995
+ provider: providerId
996
+ });
997
+ }
998
+ }
999
+ }
1000
+ function collectModelsJsonSecrets(params) {
1001
+ if (!fs.existsSync(params.modelsJsonPath)) return;
1002
+ params.collector.filesScanned.add(params.modelsJsonPath);
1003
+ const parsedResult = readJsonObjectIfExists(params.modelsJsonPath, {
1004
+ requireRegularFile: true,
1005
+ maxBytes: MAX_AUDIT_MODELS_JSON_BYTES
1006
+ });
1007
+ if (parsedResult.error) {
1008
+ addFinding(params.collector, {
1009
+ code: "REF_UNRESOLVED",
1010
+ severity: "error",
1011
+ file: params.modelsJsonPath,
1012
+ jsonPath: "<root>",
1013
+ message: `Invalid JSON in models.json: ${parsedResult.error}`
1014
+ });
1015
+ return;
1016
+ }
1017
+ const parsed = parsedResult.value;
1018
+ if (!parsed || !isRecord(parsed.providers)) return;
1019
+ for (const [providerId, providerValue] of Object.entries(parsed.providers)) {
1020
+ if (!isRecord(providerValue)) continue;
1021
+ const apiKey = providerValue.apiKey;
1022
+ if (coerceSecretRef(apiKey)) addFinding(params.collector, {
1023
+ code: "REF_UNRESOLVED",
1024
+ severity: "error",
1025
+ file: params.modelsJsonPath,
1026
+ jsonPath: `providers.${providerId}.apiKey`,
1027
+ message: "models.json contains an unresolved SecretRef object; regenerate models.json.",
1028
+ provider: providerId
1029
+ });
1030
+ else if (isNonEmptyString(apiKey) && !isNonSecretApiKeyMarker(apiKey)) addFinding(params.collector, {
1031
+ code: "PLAINTEXT_FOUND",
1032
+ severity: "warn",
1033
+ file: params.modelsJsonPath,
1034
+ jsonPath: `providers.${providerId}.apiKey`,
1035
+ message: "models.json provider apiKey is stored as plaintext.",
1036
+ provider: providerId
1037
+ });
1038
+ const headers = isRecord(providerValue.headers) ? providerValue.headers : void 0;
1039
+ if (!headers) continue;
1040
+ for (const [headerKey, headerValue] of Object.entries(headers)) {
1041
+ const headerPath = `providers.${providerId}.headers.${headerKey}`;
1042
+ if (coerceSecretRef(headerValue)) {
1043
+ addFinding(params.collector, {
1044
+ code: "REF_UNRESOLVED",
1045
+ severity: "error",
1046
+ file: params.modelsJsonPath,
1047
+ jsonPath: headerPath,
1048
+ message: "models.json contains an unresolved SecretRef object for provider headers; regenerate models.json.",
1049
+ provider: providerId
1050
+ });
1051
+ continue;
1052
+ }
1053
+ if (!isNonEmptyString(headerValue)) continue;
1054
+ if (isSecretRefHeaderValueMarker(headerValue)) continue;
1055
+ if (!isLikelySensitiveModelProviderHeaderName(headerKey)) continue;
1056
+ addFinding(params.collector, {
1057
+ code: "PLAINTEXT_FOUND",
1058
+ severity: "warn",
1059
+ file: params.modelsJsonPath,
1060
+ jsonPath: headerPath,
1061
+ message: "models.json provider header value is stored as plaintext.",
1062
+ provider: providerId
1063
+ });
1064
+ }
1065
+ }
1066
+ }
1067
+ async function collectUnresolvedRefFindings(params) {
1068
+ const cache = {};
1069
+ const refsByProvider = /* @__PURE__ */ new Map();
1070
+ const skippedRefKeys = /* @__PURE__ */ new Set();
1071
+ let refsChecked = 0;
1072
+ let skippedExecRefs = 0;
1073
+ for (const assignment of params.collector.refAssignments) {
1074
+ const providerKey = `${assignment.ref.source}:${assignment.ref.provider}`;
1075
+ let refsForProvider = refsByProvider.get(providerKey);
1076
+ if (!refsForProvider) {
1077
+ refsForProvider = /* @__PURE__ */ new Map();
1078
+ refsByProvider.set(providerKey, refsForProvider);
1079
+ }
1080
+ refsForProvider.set(secretRefKey(assignment.ref), assignment.ref);
1081
+ }
1082
+ const resolvedByRefKey = /* @__PURE__ */ new Map();
1083
+ const errorsByRefKey = /* @__PURE__ */ new Map();
1084
+ for (const refsForProvider of refsByProvider.values()) {
1085
+ const refs = [...refsForProvider.values()];
1086
+ const selectedRefs = selectRefsForExecPolicy({
1087
+ refs,
1088
+ allowExec: params.allowExec
1089
+ });
1090
+ if (selectedRefs.skippedExecRefs.length > 0) {
1091
+ skippedExecRefs += selectedRefs.skippedExecRefs.length;
1092
+ for (const ref of selectedRefs.skippedExecRefs) {
1093
+ skippedRefKeys.add(secretRefKey(ref));
1094
+ const staticError = getSkippedExecRefStaticError({
1095
+ ref,
1096
+ config: params.config
1097
+ });
1098
+ if (staticError) errorsByRefKey.set(secretRefKey(ref), new Error(staticError));
1099
+ }
1100
+ }
1101
+ if (selectedRefs.refsToResolve.length === 0) continue;
1102
+ refsChecked += selectedRefs.refsToResolve.length;
1103
+ const provider = refs[0]?.provider;
1104
+ try {
1105
+ const resolved = await resolveSecretRefValues(selectedRefs.refsToResolve, {
1106
+ config: params.config,
1107
+ env: params.env,
1108
+ cache
1109
+ });
1110
+ for (const [key, value] of resolved.entries()) resolvedByRefKey.set(key, value);
1111
+ continue;
1112
+ } catch (err) {
1113
+ if (provider && isProviderScopedSecretResolutionError(err)) {
1114
+ for (const ref of selectedRefs.refsToResolve) errorsByRefKey.set(secretRefKey(ref), err);
1115
+ continue;
1116
+ }
1117
+ }
1118
+ const fallback = await runTasksWithConcurrency({
1119
+ tasks: selectedRefs.refsToResolve.map((ref) => async () => ({
1120
+ key: secretRefKey(ref),
1121
+ resolved: await resolveSecretRefValue(ref, {
1122
+ config: params.config,
1123
+ env: params.env,
1124
+ cache
1125
+ })
1126
+ })),
1127
+ limit: Math.min(REF_RESOLVE_FALLBACK_CONCURRENCY, selectedRefs.refsToResolve.length),
1128
+ errorMode: "continue",
1129
+ onTaskError: (error, index) => {
1130
+ const ref = selectedRefs.refsToResolve[index];
1131
+ if (!ref) return;
1132
+ errorsByRefKey.set(secretRefKey(ref), error);
1133
+ }
1134
+ });
1135
+ for (const result of fallback.results) {
1136
+ if (!result) continue;
1137
+ resolvedByRefKey.set(result.key, result.resolved);
1138
+ }
1139
+ }
1140
+ for (const assignment of params.collector.refAssignments) {
1141
+ const key = secretRefKey(assignment.ref);
1142
+ if (skippedRefKeys.has(key) && !errorsByRefKey.has(key)) continue;
1143
+ const resolveErr = errorsByRefKey.get(key);
1144
+ if (resolveErr) {
1145
+ addFinding(params.collector, {
1146
+ code: "REF_UNRESOLVED",
1147
+ severity: "error",
1148
+ file: assignment.file,
1149
+ jsonPath: assignment.path,
1150
+ message: `Failed to resolve ${assignment.ref.source}:${assignment.ref.provider}:${assignment.ref.id} (${formatErrorMessage(resolveErr)}).`,
1151
+ provider: assignment.provider
1152
+ });
1153
+ continue;
1154
+ }
1155
+ if (!resolvedByRefKey.has(key)) {
1156
+ addFinding(params.collector, {
1157
+ code: "REF_UNRESOLVED",
1158
+ severity: "error",
1159
+ file: assignment.file,
1160
+ jsonPath: assignment.path,
1161
+ message: `Failed to resolve ${assignment.ref.source}:${assignment.ref.provider}:${assignment.ref.id} (resolved value is missing).`,
1162
+ provider: assignment.provider
1163
+ });
1164
+ continue;
1165
+ }
1166
+ if (!isExpectedResolvedSecretValue(resolvedByRefKey.get(key), assignment.expected)) addFinding(params.collector, {
1167
+ code: "REF_UNRESOLVED",
1168
+ severity: "error",
1169
+ file: assignment.file,
1170
+ jsonPath: assignment.path,
1171
+ message: assignment.expected === "string" ? `Failed to resolve ${assignment.ref.source}:${assignment.ref.provider}:${assignment.ref.id} (resolved value is not a non-empty string).` : `Failed to resolve ${assignment.ref.source}:${assignment.ref.provider}:${assignment.ref.id} (resolved value is not a string/object).`,
1172
+ provider: assignment.provider
1173
+ });
1174
+ }
1175
+ return {
1176
+ refsChecked,
1177
+ skippedExecRefs
1178
+ };
1179
+ }
1180
+ function collectShadowingFindings(collector) {
1181
+ for (const [provider, paths] of collector.configProviderRefPaths.entries()) {
1182
+ const authState = collector.authProviderState.get(provider);
1183
+ if (!authState?.hasUsableStaticOrOAuth) continue;
1184
+ const modeText = [...authState.modes].join("/");
1185
+ for (const configPath of paths) addFinding(collector, {
1186
+ code: "REF_SHADOWED",
1187
+ severity: "warn",
1188
+ file: "genesis.json",
1189
+ jsonPath: configPath,
1190
+ message: `Auth profile credentials (${modeText}) take precedence for provider "${provider}", so this config ref may never be used.`,
1191
+ provider
1192
+ });
1193
+ }
1194
+ }
1195
+ function summarizeFindings(findings) {
1196
+ return {
1197
+ plaintextCount: findings.filter((entry) => entry.code === "PLAINTEXT_FOUND").length,
1198
+ unresolvedRefCount: findings.filter((entry) => entry.code === "REF_UNRESOLVED").length,
1199
+ shadowedRefCount: findings.filter((entry) => entry.code === "REF_SHADOWED").length,
1200
+ legacyResidueCount: findings.filter((entry) => entry.code === "LEGACY_RESIDUE").length
1201
+ };
1202
+ }
1203
+ async function runSecretsAudit(params = {}) {
1204
+ const env = params.env ?? process.env;
1205
+ const allowExec = Boolean(params.allowExec);
1206
+ const snapshot = await createSecretsConfigIO({ env }).readConfigFileSnapshot();
1207
+ const configPath = resolveUserPath(snapshot.path);
1208
+ const defaults = snapshot.valid ? snapshot.config.secrets?.defaults : void 0;
1209
+ const collector = {
1210
+ findings: [],
1211
+ refAssignments: [],
1212
+ configProviderRefPaths: /* @__PURE__ */ new Map(),
1213
+ authProviderState: /* @__PURE__ */ new Map(),
1214
+ filesScanned: new Set([configPath])
1215
+ };
1216
+ const stateDir = resolveStateDir(env, os.homedir);
1217
+ const envPath = path.join(resolveConfigDir(env, os.homedir), ".env");
1218
+ const config = snapshot.valid ? snapshot.config : {};
1219
+ let resolution = {
1220
+ refsChecked: 0,
1221
+ skippedExecRefs: 0,
1222
+ resolvabilityComplete: true
1223
+ };
1224
+ if (snapshot.valid) {
1225
+ collectConfigSecrets({
1226
+ config,
1227
+ configPath,
1228
+ collector
1229
+ });
1230
+ for (const authStorePath of listAuthProfileStorePaths(config, stateDir)) collectAuthStoreSecrets({
1231
+ authStorePath,
1232
+ collector,
1233
+ defaults
1234
+ });
1235
+ for (const modelsJsonPath of listAgentModelsJsonPaths(config, stateDir, env)) collectModelsJsonSecrets({
1236
+ modelsJsonPath,
1237
+ collector
1238
+ });
1239
+ const unresolvedRefResult = await collectUnresolvedRefFindings({
1240
+ collector,
1241
+ config,
1242
+ env,
1243
+ allowExec
1244
+ });
1245
+ resolution = {
1246
+ refsChecked: unresolvedRefResult.refsChecked,
1247
+ skippedExecRefs: unresolvedRefResult.skippedExecRefs,
1248
+ resolvabilityComplete: unresolvedRefResult.skippedExecRefs === 0
1249
+ };
1250
+ collectShadowingFindings(collector);
1251
+ } else addFinding(collector, {
1252
+ code: "REF_UNRESOLVED",
1253
+ severity: "error",
1254
+ file: configPath,
1255
+ jsonPath: "<root>",
1256
+ message: "Config is invalid; cannot validate secret references reliably."
1257
+ });
1258
+ collectEnvPlaintext({
1259
+ envPath,
1260
+ collector
1261
+ });
1262
+ collectAuthJsonResidue({
1263
+ stateDir,
1264
+ collector
1265
+ });
1266
+ const summary = summarizeFindings(collector.findings);
1267
+ return {
1268
+ version: 1,
1269
+ status: summary.unresolvedRefCount > 0 ? "unresolved" : collector.findings.length > 0 ? "findings" : "clean",
1270
+ resolution,
1271
+ filesScanned: [...collector.filesScanned].toSorted(),
1272
+ summary,
1273
+ findings: collector.findings
1274
+ };
1275
+ }
1276
+ function resolveSecretsAuditExitCode(report, check) {
1277
+ if (report.summary.unresolvedRefCount > 0) return 2;
1278
+ if (check && report.findings.length > 0) return 1;
1279
+ return 0;
1280
+ }
1281
+ //#endregion
1282
+ //#region src/secrets/configure-plan.ts
1283
+ function getSecretProviders$1(config) {
1284
+ if (!isRecord(config.secrets?.providers)) return {};
1285
+ return config.secrets.providers;
1286
+ }
1287
+ function configureCandidateSortKey(candidate) {
1288
+ if (candidate.configFile === "auth-profiles.json") return `auth-profiles:${candidate.agentId ?? ""}:${candidate.path}`;
1289
+ return `genesis:${candidate.path}`;
1290
+ }
1291
+ function resolveAuthProfileProvider(store, pathSegments) {
1292
+ const profileId = pathSegments[1];
1293
+ if (!profileId) return;
1294
+ const profile = store.profiles?.[profileId];
1295
+ if (!isRecord(profile) || typeof profile.provider !== "string") return;
1296
+ const provider = profile.provider.trim();
1297
+ return provider.length > 0 ? provider : void 0;
1298
+ }
1299
+ function buildConfigureCandidatesForScope(params) {
1300
+ const authoredConfig = params.authoredGenesisConfig ?? params.config;
1301
+ const hasPathInAuthoredConfig = (pathSegments) => hasPath(authoredConfig, pathSegments);
1302
+ const genesisCandidates = discoverConfigSecretTargets(params.config).filter((entry) => entry.entry.includeInConfigure).map((entry) => {
1303
+ const resolved = resolveSecretInputRef({
1304
+ value: entry.value,
1305
+ refValue: entry.refValue,
1306
+ defaults: params.config.secrets?.defaults
1307
+ });
1308
+ const pathExists = hasPathInAuthoredConfig(entry.pathSegments);
1309
+ const refPathExists = entry.refPathSegments ? hasPathInAuthoredConfig(entry.refPathSegments) : false;
1310
+ return Object.assign({
1311
+ type: entry.entry.targetType,
1312
+ path: entry.path,
1313
+ pathSegments: [...entry.pathSegments],
1314
+ label: entry.path,
1315
+ configFile: `genesis.json`,
1316
+ expectedResolvedValue: entry.entry.expectedResolvedValue
1317
+ }, resolved.ref ? { existingRef: resolved.ref } : {}, pathExists || refPathExists ? {} : { isDerived: true }, entry.providerId ? { providerId: entry.providerId } : {}, entry.accountId ? { accountId: entry.accountId } : {});
1318
+ });
1319
+ const authCandidates = params.authProfiles === void 0 ? [] : discoverAuthProfileSecretTargets(params.authProfiles.store).filter((entry) => entry.entry.includeInConfigure).map((entry) => {
1320
+ const authProfiles = params.authProfiles;
1321
+ if (!authProfiles) throw new Error("Missing auth profile scope for configure candidate discovery.");
1322
+ const authProfileProvider = resolveAuthProfileProvider(authProfiles.store, entry.pathSegments);
1323
+ const resolved = resolveSecretInputRef({
1324
+ value: entry.value,
1325
+ refValue: entry.refValue,
1326
+ defaults: params.config.secrets?.defaults
1327
+ });
1328
+ return Object.assign({
1329
+ type: entry.entry.targetType,
1330
+ path: entry.path,
1331
+ pathSegments: [...entry.pathSegments],
1332
+ label: `${entry.path} (auth profile, agent ${authProfiles.agentId})`,
1333
+ configFile: `auth-profiles.json`,
1334
+ expectedResolvedValue: entry.entry.expectedResolvedValue
1335
+ }, resolved.ref ? { existingRef: resolved.ref } : {}, { agentId: authProfiles.agentId }, authProfileProvider ? { authProfileProvider } : {});
1336
+ });
1337
+ return [...genesisCandidates, ...authCandidates].toSorted((a, b) => configureCandidateSortKey(a).localeCompare(configureCandidateSortKey(b)));
1338
+ }
1339
+ function hasPath(root, segments) {
1340
+ if (segments.length === 0) return false;
1341
+ let cursor = root;
1342
+ for (let index = 0; index < segments.length; index += 1) {
1343
+ const segment = segments[index] ?? "";
1344
+ if (Array.isArray(cursor)) {
1345
+ if (!/^\d+$/.test(segment)) return false;
1346
+ const parsedIndex = Number.parseInt(segment, 10);
1347
+ if (!Number.isFinite(parsedIndex) || parsedIndex < 0 || parsedIndex >= cursor.length) return false;
1348
+ if (index === segments.length - 1) return true;
1349
+ cursor = cursor[parsedIndex];
1350
+ continue;
1351
+ }
1352
+ if (!isRecord(cursor)) return false;
1353
+ if (!Object.prototype.hasOwnProperty.call(cursor, segment)) return false;
1354
+ if (index === segments.length - 1) return true;
1355
+ cursor = cursor[segment];
1356
+ }
1357
+ return false;
1358
+ }
1359
+ function collectConfigureProviderChanges(params) {
1360
+ const originalProviders = getSecretProviders$1(params.original);
1361
+ const nextProviders = getSecretProviders$1(params.next);
1362
+ const upserts = {};
1363
+ const deletes = [];
1364
+ for (const [providerAlias, nextProviderConfig] of Object.entries(nextProviders)) {
1365
+ const current = originalProviders[providerAlias];
1366
+ if (isDeepStrictEqual(current, nextProviderConfig)) continue;
1367
+ upserts[providerAlias] = structuredClone(nextProviderConfig);
1368
+ }
1369
+ for (const providerAlias of Object.keys(originalProviders)) if (!Object.prototype.hasOwnProperty.call(nextProviders, providerAlias)) deletes.push(providerAlias);
1370
+ return {
1371
+ upserts,
1372
+ deletes: deletes.toSorted()
1373
+ };
1374
+ }
1375
+ function hasConfigurePlanChanges(params) {
1376
+ return params.selectedTargets.size > 0 || Object.keys(params.providerChanges.upserts).length > 0 || params.providerChanges.deletes.length > 0;
1377
+ }
1378
+ function buildSecretsConfigurePlan(params) {
1379
+ return {
1380
+ version: 1,
1381
+ protocolVersion: 1,
1382
+ generatedAt: params.generatedAt ?? (/* @__PURE__ */ new Date()).toISOString(),
1383
+ generatedBy: "genesis secrets configure",
1384
+ targets: [...params.selectedTargets.values()].map((entry) => Object.assign({
1385
+ type: entry.type,
1386
+ path: entry.path,
1387
+ pathSegments: [...entry.pathSegments],
1388
+ ref: entry.ref
1389
+ }, entry.agentId ? { agentId: entry.agentId } : {}, entry.providerId ? { providerId: entry.providerId } : {}, entry.accountId ? { accountId: entry.accountId } : {}, entry.authProfileProvider ? { authProfileProvider: entry.authProfileProvider } : {})),
1390
+ ...Object.keys(params.providerChanges.upserts).length > 0 ? { providerUpserts: params.providerChanges.upserts } : {},
1391
+ ...params.providerChanges.deletes.length > 0 ? { providerDeletes: params.providerChanges.deletes } : {},
1392
+ options: {
1393
+ scrubEnv: true,
1394
+ scrubAuthProfilesForProviderTargets: true,
1395
+ scrubLegacyAuthJson: true
1396
+ }
1397
+ };
1398
+ }
1399
+ //#endregion
1400
+ //#region src/secrets/configure.ts
1401
+ const ENV_NAME_PATTERN = /^[A-Z][A-Z0-9_]{0,127}$/;
1402
+ const WINDOWS_ABS_PATH_PATTERN = /^[A-Za-z]:[\\/]/;
1403
+ const WINDOWS_UNC_PATH_PATTERN = /^\\\\[^\\]+\\[^\\]+/;
1404
+ function isAbsolutePathValue(value) {
1405
+ return path.isAbsolute(value) || WINDOWS_ABS_PATH_PATTERN.test(value) || WINDOWS_UNC_PATH_PATTERN.test(value);
1406
+ }
1407
+ function parseCsv(value) {
1408
+ return value.split(",").map((entry) => entry.trim()).filter((entry) => entry.length > 0);
1409
+ }
1410
+ function parseOptionalPositiveInt(value, max) {
1411
+ const trimmed = value.trim();
1412
+ if (!trimmed) return;
1413
+ if (!/^\d+$/.test(trimmed)) return;
1414
+ const parsed = Number.parseInt(trimmed, 10);
1415
+ if (!Number.isFinite(parsed) || parsed <= 0 || parsed > max) return;
1416
+ return parsed;
1417
+ }
1418
+ function getSecretProviders(config) {
1419
+ if (!isRecord(config.secrets?.providers)) return {};
1420
+ return config.secrets.providers;
1421
+ }
1422
+ function setSecretProvider(config, providerAlias, providerConfig) {
1423
+ config.secrets ??= {};
1424
+ if (!isRecord(config.secrets.providers)) config.secrets.providers = {};
1425
+ config.secrets.providers[providerAlias] = providerConfig;
1426
+ }
1427
+ function removeSecretProvider(config, providerAlias) {
1428
+ if (!isRecord(config.secrets?.providers)) return false;
1429
+ const providers = config.secrets.providers;
1430
+ if (!Object.prototype.hasOwnProperty.call(providers, providerAlias)) return false;
1431
+ delete providers[providerAlias];
1432
+ if (Object.keys(providers).length === 0) delete config.secrets?.providers;
1433
+ if (isRecord(config.secrets?.defaults)) {
1434
+ const defaults = config.secrets.defaults;
1435
+ if (defaults?.env === providerAlias) delete defaults.env;
1436
+ if (defaults?.file === providerAlias) delete defaults.file;
1437
+ if (defaults?.exec === providerAlias) delete defaults.exec;
1438
+ if (defaults && defaults.env === void 0 && defaults.file === void 0 && defaults.exec === void 0) delete config.secrets?.defaults;
1439
+ }
1440
+ return true;
1441
+ }
1442
+ function providerHint(provider) {
1443
+ if (provider.source === "env") return provider.allowlist?.length ? `env (${provider.allowlist.length} allowlisted)` : "env";
1444
+ if (provider.source === "file") return `file (${provider.mode ?? "json"})`;
1445
+ return `exec (${provider.jsonOnly === false ? "json+text" : "json"})`;
1446
+ }
1447
+ function toSourceChoices(config) {
1448
+ const hasSource = (source) => Object.values(config.secrets?.providers ?? {}).some((provider) => provider?.source === source);
1449
+ const choices = [{
1450
+ value: "env",
1451
+ label: "env"
1452
+ }];
1453
+ if (hasSource("file")) choices.push({
1454
+ value: "file",
1455
+ label: "file"
1456
+ });
1457
+ if (hasSource("exec")) choices.push({
1458
+ value: "exec",
1459
+ label: "exec"
1460
+ });
1461
+ return choices;
1462
+ }
1463
+ function assertNoCancel(value, message) {
1464
+ if (typeof value === "symbol") throw new Error(message);
1465
+ return value;
1466
+ }
1467
+ const AUTH_PROFILE_ID_PATTERN = /^[A-Za-z0-9:_-]{1,128}$/;
1468
+ function validateEnvNameCsv(value) {
1469
+ const entries = parseCsv(value);
1470
+ for (const entry of entries) if (!ENV_NAME_PATTERN.test(entry)) return `Invalid env name: ${entry}`;
1471
+ }
1472
+ async function promptEnvNameCsv(params) {
1473
+ return parseCsv(assertNoCancel(await text({
1474
+ message: params.message,
1475
+ initialValue: params.initialValue,
1476
+ validate: (value) => validateEnvNameCsv(value ?? "")
1477
+ }), "Secrets configure cancelled.") ?? "");
1478
+ }
1479
+ async function promptOptionalPositiveInt(params) {
1480
+ return parseOptionalPositiveInt(normalizeStringifiedOptionalString(assertNoCancel(await text({
1481
+ message: params.message,
1482
+ initialValue: params.initialValue === void 0 ? "" : String(params.initialValue),
1483
+ validate: (value) => {
1484
+ const trimmed = normalizeStringifiedOptionalString(value) ?? "";
1485
+ if (!trimmed) return;
1486
+ if (parseOptionalPositiveInt(trimmed, params.max) === void 0) return `Must be an integer between 1 and ${params.max}`;
1487
+ }
1488
+ }), "Secrets configure cancelled.")) ?? "", params.max);
1489
+ }
1490
+ function configureCandidateKey(candidate) {
1491
+ if (candidate.configFile === "auth-profiles.json") return `auth-profiles:${normalizeOptionalString(candidate.agentId) ?? ""}:${candidate.path}`;
1492
+ return `genesis:${candidate.path}`;
1493
+ }
1494
+ function hasSourceChoice(sourceChoices, source) {
1495
+ return sourceChoices.some((entry) => entry.value === source);
1496
+ }
1497
+ function resolveCandidateProviderHint(candidate) {
1498
+ return normalizeOptionalLowercaseString(candidate.authProfileProvider) ?? normalizeOptionalLowercaseString(candidate.providerId);
1499
+ }
1500
+ function resolveSuggestedEnvSecretId(candidate) {
1501
+ const hintedProvider = resolveCandidateProviderHint(candidate);
1502
+ if (!hintedProvider) return;
1503
+ const envCandidates = getProviderEnvVars(hintedProvider);
1504
+ if (!Array.isArray(envCandidates) || envCandidates.length === 0) return;
1505
+ return envCandidates[0];
1506
+ }
1507
+ function resolveConfigureAgentId(config, explicitAgentId) {
1508
+ const knownAgentIds = new Set(listAgentIds(config));
1509
+ if (!explicitAgentId) return resolveDefaultAgentId(config);
1510
+ const normalized = normalizeAgentId(explicitAgentId);
1511
+ if (knownAgentIds.has(normalized)) return normalized;
1512
+ const known = [...knownAgentIds].toSorted().join(", ");
1513
+ throw new Error(`Unknown agent id "${explicitAgentId}". Known agents: ${known || "none configured"}.`);
1514
+ }
1515
+ function loadAuthProfileStoreForConfigure(params) {
1516
+ return loadPersistedAuthProfileStore(resolveAgentDir(params.config, params.agentId)) ?? {
1517
+ version: 1,
1518
+ profiles: {}
1519
+ };
1520
+ }
1521
+ async function promptNewAuthProfileCandidate(agentId) {
1522
+ const profileId = assertNoCancel(await text({
1523
+ message: "Auth profile id",
1524
+ validate: (value) => {
1525
+ const trimmed = normalizeStringifiedOptionalString(value) ?? "";
1526
+ if (!trimmed) return "Required";
1527
+ if (!AUTH_PROFILE_ID_PATTERN.test(trimmed)) return "Use letters/numbers/\":\"/\"_\"/\"-\" only.";
1528
+ }
1529
+ }), "Secrets configure cancelled.");
1530
+ const credentialType = assertNoCancel(await select({
1531
+ message: "Auth profile credential type",
1532
+ options: [{
1533
+ value: "api_key",
1534
+ label: "api_key (key/keyRef)"
1535
+ }, {
1536
+ value: "token",
1537
+ label: "token (token/tokenRef)"
1538
+ }]
1539
+ }), "Secrets configure cancelled.");
1540
+ const provider = assertNoCancel(await text({
1541
+ message: "Provider id",
1542
+ validate: (value) => normalizeStringifiedOptionalString(value) ? void 0 : "Required"
1543
+ }), "Secrets configure cancelled.");
1544
+ const profileIdTrimmed = normalizeStringifiedOptionalString(profileId) ?? "";
1545
+ const providerTrimmed = normalizeStringifiedOptionalString(provider) ?? "";
1546
+ if (credentialType === "token") return {
1547
+ type: "auth-profiles.token.token",
1548
+ path: `profiles.${profileIdTrimmed}.token`,
1549
+ pathSegments: [
1550
+ "profiles",
1551
+ profileIdTrimmed,
1552
+ "token"
1553
+ ],
1554
+ label: `profiles.${profileIdTrimmed}.token (auth profile, agent ${agentId})`,
1555
+ configFile: "auth-profiles.json",
1556
+ agentId,
1557
+ authProfileProvider: providerTrimmed,
1558
+ expectedResolvedValue: "string"
1559
+ };
1560
+ return {
1561
+ type: "auth-profiles.api_key.key",
1562
+ path: `profiles.${profileIdTrimmed}.key`,
1563
+ pathSegments: [
1564
+ "profiles",
1565
+ profileIdTrimmed,
1566
+ "key"
1567
+ ],
1568
+ label: `profiles.${profileIdTrimmed}.key (auth profile, agent ${agentId})`,
1569
+ configFile: "auth-profiles.json",
1570
+ agentId,
1571
+ authProfileProvider: providerTrimmed,
1572
+ expectedResolvedValue: "string"
1573
+ };
1574
+ }
1575
+ async function promptProviderAlias(params) {
1576
+ return normalizeStringifiedOptionalString(assertNoCancel(await text({
1577
+ message: "Provider alias",
1578
+ initialValue: "default",
1579
+ validate: (value) => {
1580
+ const trimmed = normalizeStringifiedOptionalString(value) ?? "";
1581
+ if (!trimmed) return "Required";
1582
+ if (!isValidSecretProviderAlias(trimmed)) return "Must match /^[a-z][a-z0-9_-]{0,63}$/";
1583
+ if (params.existingAliases.has(trimmed)) return "Alias already exists";
1584
+ }
1585
+ }), "Secrets configure cancelled.")) ?? "";
1586
+ }
1587
+ async function promptProviderSource(initial) {
1588
+ return assertNoCancel(await select({
1589
+ message: "Provider source",
1590
+ options: [
1591
+ {
1592
+ value: "env",
1593
+ label: "env"
1594
+ },
1595
+ {
1596
+ value: "file",
1597
+ label: "file"
1598
+ },
1599
+ {
1600
+ value: "exec",
1601
+ label: "exec"
1602
+ }
1603
+ ],
1604
+ initialValue: initial
1605
+ }), "Secrets configure cancelled.");
1606
+ }
1607
+ async function promptEnvProvider(base) {
1608
+ const allowlist = await promptEnvNameCsv({
1609
+ message: "Env allowlist (comma-separated, blank for unrestricted)",
1610
+ initialValue: base?.allowlist?.join(",") ?? ""
1611
+ });
1612
+ return {
1613
+ source: "env",
1614
+ ...allowlist.length > 0 ? { allowlist } : {}
1615
+ };
1616
+ }
1617
+ async function promptFileProvider(base) {
1618
+ const filePath = assertNoCancel(await text({
1619
+ message: "File path (absolute)",
1620
+ initialValue: base?.path ?? "",
1621
+ validate: (value) => {
1622
+ const trimmed = normalizeStringifiedOptionalString(value) ?? "";
1623
+ if (!trimmed) return "Required";
1624
+ if (!isAbsolutePathValue(trimmed)) return "Must be an absolute path";
1625
+ }
1626
+ }), "Secrets configure cancelled.");
1627
+ const mode = assertNoCancel(await select({
1628
+ message: "File mode",
1629
+ options: [{
1630
+ value: "json",
1631
+ label: "json"
1632
+ }, {
1633
+ value: "singleValue",
1634
+ label: "singleValue"
1635
+ }],
1636
+ initialValue: base?.mode ?? "json"
1637
+ }), "Secrets configure cancelled.");
1638
+ const timeoutMs = await promptOptionalPositiveInt({
1639
+ message: "Timeout ms (blank for default)",
1640
+ initialValue: base?.timeoutMs,
1641
+ max: 12e4
1642
+ });
1643
+ const maxBytes = await promptOptionalPositiveInt({
1644
+ message: "Max bytes (blank for default)",
1645
+ initialValue: base?.maxBytes,
1646
+ max: 20 * 1024 * 1024
1647
+ });
1648
+ const allowInsecurePath = assertNoCancel(await confirm({
1649
+ message: "Allow insecure file path checks?",
1650
+ initialValue: base?.allowInsecurePath ?? false
1651
+ }), "Secrets configure cancelled.");
1652
+ return {
1653
+ source: "file",
1654
+ path: normalizeStringifiedOptionalString(filePath) ?? "",
1655
+ mode,
1656
+ ...timeoutMs ? { timeoutMs } : {},
1657
+ ...maxBytes ? { maxBytes } : {},
1658
+ ...allowInsecurePath ? { allowInsecurePath: true } : {}
1659
+ };
1660
+ }
1661
+ async function parseArgsInput(rawValue) {
1662
+ const trimmed = rawValue.trim();
1663
+ if (!trimmed) return;
1664
+ const parsed = JSON.parse(trimmed);
1665
+ if (!Array.isArray(parsed) || !parsed.every((entry) => typeof entry === "string")) throw new Error("args must be a JSON array of strings");
1666
+ return parsed;
1667
+ }
1668
+ async function promptExecProvider(base) {
1669
+ const command = assertNoCancel(await text({
1670
+ message: "Command path (absolute)",
1671
+ initialValue: base?.command ?? "",
1672
+ validate: (value) => {
1673
+ const trimmed = normalizeStringifiedOptionalString(value) ?? "";
1674
+ if (!trimmed) return "Required";
1675
+ if (!isAbsolutePathValue(trimmed)) return "Must be an absolute path";
1676
+ if (!isSafeExecutableValue(trimmed)) return "Command value is not allowed";
1677
+ }
1678
+ }), "Secrets configure cancelled.");
1679
+ const argsRaw = assertNoCancel(await text({
1680
+ message: "Args JSON array (blank for none)",
1681
+ initialValue: JSON.stringify(base?.args ?? []),
1682
+ validate: (value) => {
1683
+ const trimmed = normalizeStringifiedOptionalString(value) ?? "";
1684
+ if (!trimmed) return;
1685
+ try {
1686
+ const parsed = JSON.parse(trimmed);
1687
+ if (!Array.isArray(parsed) || !parsed.every((entry) => typeof entry === "string")) return "Must be a JSON array of strings";
1688
+ return;
1689
+ } catch {
1690
+ return "Must be valid JSON";
1691
+ }
1692
+ }
1693
+ }), "Secrets configure cancelled.");
1694
+ const timeoutMs = await promptOptionalPositiveInt({
1695
+ message: "Timeout ms (blank for default)",
1696
+ initialValue: base?.timeoutMs,
1697
+ max: 12e4
1698
+ });
1699
+ const noOutputTimeoutMs = await promptOptionalPositiveInt({
1700
+ message: "No-output timeout ms (blank for default)",
1701
+ initialValue: base?.noOutputTimeoutMs,
1702
+ max: 12e4
1703
+ });
1704
+ const maxOutputBytes = await promptOptionalPositiveInt({
1705
+ message: "Max output bytes (blank for default)",
1706
+ initialValue: base?.maxOutputBytes,
1707
+ max: 20 * 1024 * 1024
1708
+ });
1709
+ const jsonOnly = assertNoCancel(await confirm({
1710
+ message: "Require JSON-only response?",
1711
+ initialValue: base?.jsonOnly ?? true
1712
+ }), "Secrets configure cancelled.");
1713
+ const passEnv = await promptEnvNameCsv({
1714
+ message: "Pass-through env vars (comma-separated, blank for none)",
1715
+ initialValue: base?.passEnv?.join(",") ?? ""
1716
+ });
1717
+ const trustedDirsRaw = assertNoCancel(await text({
1718
+ message: "Trusted dirs (comma-separated absolute paths, blank for none)",
1719
+ initialValue: base?.trustedDirs?.join(",") ?? "",
1720
+ validate: (value) => {
1721
+ const entries = parseCsv(value ?? "");
1722
+ for (const entry of entries) if (!isAbsolutePathValue(entry)) return `Trusted dir must be absolute: ${entry}`;
1723
+ }
1724
+ }), "Secrets configure cancelled.");
1725
+ const allowInsecurePath = assertNoCancel(await confirm({
1726
+ message: "Allow insecure command path checks?",
1727
+ initialValue: base?.allowInsecurePath ?? false
1728
+ }), "Secrets configure cancelled.");
1729
+ const allowSymlinkCommand = assertNoCancel(await confirm({
1730
+ message: "Allow symlink command path?",
1731
+ initialValue: base?.allowSymlinkCommand ?? false
1732
+ }), "Secrets configure cancelled.");
1733
+ const args = await parseArgsInput(normalizeStringifiedOptionalString(argsRaw) ?? "");
1734
+ const trustedDirs = parseCsv(trustedDirsRaw ?? "");
1735
+ return {
1736
+ source: "exec",
1737
+ command: normalizeStringifiedOptionalString(command) ?? "",
1738
+ ...args && args.length > 0 ? { args } : {},
1739
+ ...timeoutMs ? { timeoutMs } : {},
1740
+ ...noOutputTimeoutMs ? { noOutputTimeoutMs } : {},
1741
+ ...maxOutputBytes ? { maxOutputBytes } : {},
1742
+ ...jsonOnly ? { jsonOnly } : { jsonOnly: false },
1743
+ ...passEnv.length > 0 ? { passEnv } : {},
1744
+ ...trustedDirs.length > 0 ? { trustedDirs } : {},
1745
+ ...allowInsecurePath ? { allowInsecurePath: true } : {},
1746
+ ...allowSymlinkCommand ? { allowSymlinkCommand: true } : {},
1747
+ ...isRecord(base?.env) ? { env: base.env } : {}
1748
+ };
1749
+ }
1750
+ async function promptProviderConfig(source, current) {
1751
+ if (source === "env") return await promptEnvProvider(current?.source === "env" ? current : void 0);
1752
+ if (source === "file") return await promptFileProvider(current?.source === "file" ? current : void 0);
1753
+ return await promptExecProvider(current?.source === "exec" ? current : void 0);
1754
+ }
1755
+ async function configureProvidersInteractive(config) {
1756
+ while (true) {
1757
+ const providers = getSecretProviders(config);
1758
+ const providerEntries = Object.entries(providers).toSorted(([left], [right]) => left.localeCompare(right));
1759
+ const actionOptions = [{
1760
+ value: "add",
1761
+ label: "Add provider",
1762
+ hint: "Define a new env/file/exec provider"
1763
+ }];
1764
+ if (providerEntries.length > 0) {
1765
+ actionOptions.push({
1766
+ value: "edit",
1767
+ label: "Edit provider",
1768
+ hint: "Update an existing provider"
1769
+ });
1770
+ actionOptions.push({
1771
+ value: "remove",
1772
+ label: "Remove provider",
1773
+ hint: "Delete a provider alias"
1774
+ });
1775
+ }
1776
+ actionOptions.push({
1777
+ value: "continue",
1778
+ label: "Continue",
1779
+ hint: "Move to credential mapping"
1780
+ });
1781
+ const action = assertNoCancel(await select({
1782
+ message: providerEntries.length > 0 ? "Configure secret providers" : "Configure secret providers (only env refs are available until file/exec providers are added)",
1783
+ options: actionOptions
1784
+ }), "Secrets configure cancelled.");
1785
+ if (action === "continue") return;
1786
+ if (action === "add") {
1787
+ const source = await promptProviderSource();
1788
+ setSecretProvider(config, await promptProviderAlias({ existingAliases: new Set(providerEntries.map(([providerAlias]) => providerAlias)) }), await promptProviderConfig(source));
1789
+ continue;
1790
+ }
1791
+ if (action === "edit") {
1792
+ const alias = assertNoCancel(await select({
1793
+ message: "Select provider to edit",
1794
+ options: providerEntries.map(([providerAlias, providerConfig]) => ({
1795
+ value: providerAlias,
1796
+ label: providerAlias,
1797
+ hint: providerHint(providerConfig)
1798
+ }))
1799
+ }), "Secrets configure cancelled.");
1800
+ const current = providers[alias];
1801
+ if (!current) continue;
1802
+ const nextProviderConfig = await promptProviderConfig(await promptProviderSource(current.source), current);
1803
+ if (!isDeepStrictEqual(current, nextProviderConfig)) setSecretProvider(config, alias, nextProviderConfig);
1804
+ continue;
1805
+ }
1806
+ if (action === "remove") {
1807
+ const alias = assertNoCancel(await select({
1808
+ message: "Select provider to remove",
1809
+ options: providerEntries.map(([providerAlias, providerConfig]) => ({
1810
+ value: providerAlias,
1811
+ label: providerAlias,
1812
+ hint: providerHint(providerConfig)
1813
+ }))
1814
+ }), "Secrets configure cancelled.");
1815
+ if (assertNoCancel(await confirm({
1816
+ message: `Remove provider "${alias}"?`,
1817
+ initialValue: false
1818
+ }), "Secrets configure cancelled.")) removeSecretProvider(config, alias);
1819
+ }
1820
+ }
1821
+ }
1822
+ async function runSecretsConfigureInteractive(params = {}) {
1823
+ if (!process.stdin.isTTY) throw new Error("secrets configure requires an interactive TTY.");
1824
+ if (params.providersOnly && params.skipProviderSetup) throw new Error("Cannot combine --providers-only with --skip-provider-setup.");
1825
+ const env = params.env ?? process.env;
1826
+ const allowExecInPreflight = Boolean(params.allowExecInPreflight);
1827
+ const { snapshot } = await createSecretsConfigIO({ env }).readConfigFileSnapshotForWrite();
1828
+ if (!snapshot.valid) throw new Error("Cannot run interactive secrets configure because config is invalid.");
1829
+ const stagedConfig = structuredClone(snapshot.config);
1830
+ if (!params.skipProviderSetup) await configureProvidersInteractive(stagedConfig);
1831
+ const providerChanges = collectConfigureProviderChanges({
1832
+ original: snapshot.config,
1833
+ next: stagedConfig
1834
+ });
1835
+ const selectedByPath = /* @__PURE__ */ new Map();
1836
+ if (!params.providersOnly) {
1837
+ const configureAgentId = resolveConfigureAgentId(snapshot.config, params.agentId);
1838
+ const authStore = loadAuthProfileStoreForConfigure({
1839
+ config: snapshot.config,
1840
+ agentId: configureAgentId
1841
+ });
1842
+ const candidates = buildConfigureCandidatesForScope({
1843
+ config: stagedConfig,
1844
+ authoredGenesisConfig: snapshot.resolved,
1845
+ authProfiles: {
1846
+ agentId: configureAgentId,
1847
+ store: authStore
1848
+ }
1849
+ });
1850
+ if (candidates.length === 0) throw new Error("No configurable secret-bearing fields found for this agent scope.");
1851
+ const sourceChoices = toSourceChoices(stagedConfig);
1852
+ const hasDerivedCandidates = candidates.some((candidate) => candidate.isDerived === true);
1853
+ let showDerivedCandidates = false;
1854
+ while (true) {
1855
+ const visibleCandidates = showDerivedCandidates ? candidates : candidates.filter((candidate) => candidate.isDerived !== true);
1856
+ const options = visibleCandidates.map((candidate) => ({
1857
+ value: configureCandidateKey(candidate),
1858
+ label: candidate.label,
1859
+ hint: [candidate.configFile === "auth-profiles.json" ? "auth-profiles.json" : "genesis.json", candidate.isDerived === true ? "derived" : void 0].filter(Boolean).join(" | ")
1860
+ }));
1861
+ options.push({
1862
+ value: "__create_auth_profile__",
1863
+ label: "Create auth profile mapping",
1864
+ hint: `Add a new auth-profiles target for agent ${configureAgentId}`
1865
+ });
1866
+ if (hasDerivedCandidates) options.push({
1867
+ value: "__toggle_derived__",
1868
+ label: showDerivedCandidates ? "Hide derived targets" : "Show derived targets",
1869
+ hint: showDerivedCandidates ? "Show only fields authored directly in config" : "Include normalized/derived aliases"
1870
+ });
1871
+ if (selectedByPath.size > 0) options.unshift({
1872
+ value: "__done__",
1873
+ label: "Done",
1874
+ hint: "Finish and run preflight"
1875
+ });
1876
+ const selectedPath = assertNoCancel(await select({
1877
+ message: "Select credential field",
1878
+ options
1879
+ }), "Secrets configure cancelled.");
1880
+ if (selectedPath === "__done__") break;
1881
+ if (selectedPath === "__create_auth_profile__") {
1882
+ const createdCandidate = await promptNewAuthProfileCandidate(configureAgentId);
1883
+ const key = configureCandidateKey(createdCandidate);
1884
+ const existingIndex = candidates.findIndex((entry) => configureCandidateKey(entry) === key);
1885
+ if (existingIndex >= 0) candidates[existingIndex] = createdCandidate;
1886
+ else candidates.push(createdCandidate);
1887
+ continue;
1888
+ }
1889
+ if (selectedPath === "__toggle_derived__") {
1890
+ showDerivedCandidates = !showDerivedCandidates;
1891
+ continue;
1892
+ }
1893
+ const candidate = visibleCandidates.find((entry) => configureCandidateKey(entry) === selectedPath);
1894
+ if (!candidate) throw new Error(`Unknown configure target: ${selectedPath}`);
1895
+ const candidateKey = configureCandidateKey(candidate);
1896
+ const existingRef = selectedByPath.get(candidateKey)?.ref ?? candidate.existingRef;
1897
+ const source = assertNoCancel(await select({
1898
+ message: "Secret source",
1899
+ options: sourceChoices,
1900
+ initialValue: existingRef && hasSourceChoice(sourceChoices, existingRef.source) ? existingRef.source : void 0
1901
+ }), "Secrets configure cancelled.");
1902
+ const defaultAlias = resolveDefaultSecretProviderAlias(stagedConfig, source, { preferFirstProviderForSource: true });
1903
+ const providerAlias = normalizeStringifiedOptionalString(assertNoCancel(await text({
1904
+ message: "Provider alias",
1905
+ initialValue: existingRef?.source === source ? existingRef.provider : defaultAlias,
1906
+ validate: (value) => {
1907
+ const trimmed = normalizeStringifiedOptionalString(value) ?? "";
1908
+ if (!trimmed) return "Required";
1909
+ if (!isValidSecretProviderAlias(trimmed)) return "Must match /^[a-z][a-z0-9_-]{0,63}$/";
1910
+ }
1911
+ }), "Secrets configure cancelled.")) ?? "";
1912
+ let suggestedId = existingRef?.source === source ? existingRef.id : void 0;
1913
+ if (!suggestedId && source === "env") suggestedId = resolveSuggestedEnvSecretId(candidate);
1914
+ if (!suggestedId && source === "file") {
1915
+ const configuredProvider = stagedConfig.secrets?.providers?.[providerAlias];
1916
+ if (configuredProvider?.source === "file" && configuredProvider.mode === "singleValue") suggestedId = "value";
1917
+ }
1918
+ const ref = {
1919
+ source,
1920
+ provider: providerAlias,
1921
+ id: normalizeStringifiedOptionalString(assertNoCancel(await text({
1922
+ message: "Secret id",
1923
+ initialValue: suggestedId,
1924
+ validate: (value) => {
1925
+ const trimmed = normalizeStringifiedOptionalString(value) ?? "";
1926
+ if (!trimmed) return "Required";
1927
+ if (source === "exec" && !isValidExecSecretRefId(trimmed)) return formatExecSecretRefIdValidationMessage();
1928
+ }
1929
+ }), "Secrets configure cancelled.")) ?? ""
1930
+ };
1931
+ if (ref.source === "exec" && !allowExecInPreflight) {
1932
+ const staticError = getSkippedExecRefStaticError({
1933
+ ref,
1934
+ config: stagedConfig
1935
+ });
1936
+ if (staticError) throw new Error(staticError);
1937
+ } else assertExpectedResolvedSecretValue({
1938
+ value: await resolveSecretRefValue(ref, {
1939
+ config: stagedConfig,
1940
+ env
1941
+ }),
1942
+ expected: candidate.expectedResolvedValue,
1943
+ errorMessage: candidate.expectedResolvedValue === "string" ? `Ref ${ref.source}:${ref.provider}:${ref.id} did not resolve to a non-empty string.` : `Ref ${ref.source}:${ref.provider}:${ref.id} did not resolve to a supported value type.`
1944
+ });
1945
+ const next = {
1946
+ ...candidate,
1947
+ ref
1948
+ };
1949
+ selectedByPath.set(candidateKey, next);
1950
+ if (!assertNoCancel(await confirm({
1951
+ message: "Configure another credential?",
1952
+ initialValue: true
1953
+ }), "Secrets configure cancelled.")) break;
1954
+ }
1955
+ }
1956
+ if (!hasConfigurePlanChanges({
1957
+ selectedTargets: selectedByPath,
1958
+ providerChanges
1959
+ })) throw new Error("No secrets changes were selected.");
1960
+ const plan = buildSecretsConfigurePlan({
1961
+ selectedTargets: selectedByPath,
1962
+ providerChanges
1963
+ });
1964
+ return {
1965
+ plan,
1966
+ preflight: await runSecretsApply({
1967
+ plan,
1968
+ env,
1969
+ write: false,
1970
+ allowExec: allowExecInPreflight
1971
+ })
1972
+ };
1973
+ }
1974
+ //#endregion
1975
+ //#region src/cli/secrets-cli.ts
1976
+ function readPlanFile(pathname) {
1977
+ const raw = fs.readFileSync(pathname, "utf8");
1978
+ const parsed = JSON.parse(raw);
1979
+ if (!isSecretsApplyPlan(parsed)) throw new Error(`Invalid secrets plan file: ${pathname}`);
1980
+ return parsed;
1981
+ }
1982
+ function registerSecretsCli(program) {
1983
+ const secrets = program.command("secrets").description("Secrets runtime controls").addHelpText("after", () => `\n${theme.muted("Docs:")} ${formatDocsLink("/gateway/security", "docs.genesis.ai/gateway/security")}\n`);
1984
+ addGatewayClientOptions(secrets.command("reload").description("Re-resolve secret references and atomically swap runtime snapshot").option("--json", "Output JSON", false)).action(async (opts) => {
1985
+ try {
1986
+ const result = await callGatewayFromCli("secrets.reload", opts, void 0, { expectFinal: false });
1987
+ if (opts.json) {
1988
+ defaultRuntime.writeJson(result);
1989
+ return;
1990
+ }
1991
+ const warningCount = Number(result?.warningCount ?? 0);
1992
+ if (Number.isFinite(warningCount) && warningCount > 0) {
1993
+ defaultRuntime.log(`Secrets reloaded with ${warningCount} warning(s).`);
1994
+ return;
1995
+ }
1996
+ defaultRuntime.log("Secrets reloaded.");
1997
+ } catch (err) {
1998
+ defaultRuntime.error(danger(String(err)));
1999
+ defaultRuntime.exit(1);
2000
+ }
2001
+ });
2002
+ secrets.command("audit").description("Audit plaintext secrets, unresolved refs, and precedence drift").option("--check", "Exit non-zero when findings are present", false).option("--allow-exec", "Allow exec SecretRef resolution during audit (may execute provider commands)", false).option("--json", "Output JSON", false).action(async (opts) => {
2003
+ try {
2004
+ const report = await runSecretsAudit({ allowExec: Boolean(opts.allowExec) });
2005
+ if (opts.json) defaultRuntime.writeJson(report);
2006
+ else {
2007
+ defaultRuntime.log(`Secrets audit: ${report.status}. plaintext=${report.summary.plaintextCount}, unresolved=${report.summary.unresolvedRefCount}, shadowed=${report.summary.shadowedRefCount}, legacy=${report.summary.legacyResidueCount}.`);
2008
+ if (report.findings.length > 0) {
2009
+ for (const finding of report.findings.slice(0, 20)) defaultRuntime.log(`- [${finding.code}] ${finding.file}:${finding.jsonPath} ${finding.message}`);
2010
+ if (report.findings.length > 20) defaultRuntime.log(`... ${report.findings.length - 20} more finding(s).`);
2011
+ }
2012
+ if (report.resolution.skippedExecRefs > 0) defaultRuntime.log(`Audit note: skipped ${report.resolution.skippedExecRefs} exec SecretRef resolvability check(s). Re-run with --allow-exec to execute exec providers during audit.`);
2013
+ }
2014
+ const exitCode = resolveSecretsAuditExitCode(report, Boolean(opts.check));
2015
+ if (exitCode !== 0) defaultRuntime.exit(exitCode);
2016
+ } catch (err) {
2017
+ defaultRuntime.error(danger(String(err)));
2018
+ defaultRuntime.exit(2);
2019
+ }
2020
+ });
2021
+ secrets.command("configure").description("Interactive secrets helper (provider setup + SecretRef mapping + preflight)").option("--apply", "Apply changes immediately after preflight", false).option("--yes", "Skip apply confirmation prompt", false).option("--providers-only", "Configure secrets.providers only, skip credential mapping", false).option("--skip-provider-setup", "Skip provider setup and only map credential fields to existing providers", false).option("--agent <id>", "Agent id for auth-profiles targets (default: configured default agent)").option("--allow-exec", "Allow exec SecretRef preflight checks (may execute provider commands)", false).option("--plan-out <path>", "Write generated plan JSON to a file").option("--json", "Output JSON", false).action(async (opts) => {
2022
+ try {
2023
+ const configured = await runSecretsConfigureInteractive({
2024
+ providersOnly: Boolean(opts.providersOnly),
2025
+ skipProviderSetup: Boolean(opts.skipProviderSetup),
2026
+ agentId: typeof opts.agent === "string" ? opts.agent : void 0,
2027
+ allowExecInPreflight: Boolean(opts.allowExec)
2028
+ });
2029
+ if (opts.planOut) fs.writeFileSync(opts.planOut, `${JSON.stringify(configured.plan, null, 2)}\n`, "utf8");
2030
+ if (opts.json) defaultRuntime.writeJson({
2031
+ plan: configured.plan,
2032
+ preflight: configured.preflight
2033
+ });
2034
+ else {
2035
+ defaultRuntime.log(`Preflight: changed=${configured.preflight.changed}, files=${configured.preflight.changedFiles.length}, warnings=${configured.preflight.warningCount}.`);
2036
+ if (configured.preflight.warningCount > 0) for (const warning of configured.preflight.warnings) defaultRuntime.log(`- warning: ${warning}`);
2037
+ if (!configured.preflight.checks.resolvabilityComplete && configured.preflight.skippedExecRefs > 0) defaultRuntime.log(`Preflight note: skipped ${configured.preflight.skippedExecRefs} exec SecretRef resolvability check(s). Re-run with --allow-exec to execute exec providers during preflight.`);
2038
+ const providerUpserts = Object.keys(configured.plan.providerUpserts ?? {}).length;
2039
+ const providerDeletes = configured.plan.providerDeletes?.length ?? 0;
2040
+ defaultRuntime.log(`Plan: targets=${configured.plan.targets.length}, providerUpserts=${providerUpserts}, providerDeletes=${providerDeletes}.`);
2041
+ if (opts.planOut) defaultRuntime.log(`Plan written to ${opts.planOut}`);
2042
+ }
2043
+ let shouldApply = Boolean(opts.apply);
2044
+ if (!shouldApply && !opts.json) {
2045
+ const approved = await confirm({
2046
+ message: "Apply this plan now?",
2047
+ initialValue: true
2048
+ });
2049
+ if (typeof approved === "boolean") shouldApply = approved;
2050
+ }
2051
+ if (shouldApply) {
2052
+ if (Boolean(opts.apply) && !opts.yes && !opts.json) {
2053
+ if (await confirm({
2054
+ message: "This migration is one-way for migrated plaintext values. Continue with apply?",
2055
+ initialValue: true
2056
+ }) !== true) {
2057
+ defaultRuntime.log("Apply cancelled.");
2058
+ return;
2059
+ }
2060
+ }
2061
+ const result = await runSecretsApply({
2062
+ plan: configured.plan,
2063
+ write: true,
2064
+ allowExec: Boolean(opts.allowExec)
2065
+ });
2066
+ if (opts.json) {
2067
+ defaultRuntime.writeJson(result);
2068
+ return;
2069
+ }
2070
+ defaultRuntime.log(result.changed ? `Secrets applied. Updated ${result.changedFiles.length} file(s).` : "Secrets apply: no changes.");
2071
+ }
2072
+ } catch (err) {
2073
+ defaultRuntime.error(danger(String(err)));
2074
+ defaultRuntime.exit(1);
2075
+ }
2076
+ });
2077
+ secrets.command("apply").description("Apply a previously generated secrets plan").requiredOption("--from <path>", "Path to plan JSON").option("--dry-run", "Validate/preflight only", false).option("--allow-exec", "Allow exec SecretRef checks (may execute provider commands)", false).option("--json", "Output JSON", false).action(async (opts) => {
2078
+ try {
2079
+ const result = await runSecretsApply({
2080
+ plan: readPlanFile(opts.from),
2081
+ write: !opts.dryRun,
2082
+ allowExec: Boolean(opts.allowExec)
2083
+ });
2084
+ if (opts.json) {
2085
+ defaultRuntime.writeJson(result);
2086
+ return;
2087
+ }
2088
+ if (opts.dryRun) {
2089
+ defaultRuntime.log(result.changed ? `Secrets apply dry run: ${result.changedFiles.length} file(s) would change.` : "Secrets apply dry run: no changes.");
2090
+ if (!result.checks.resolvabilityComplete && result.skippedExecRefs > 0) defaultRuntime.log(`Secrets apply dry-run note: skipped ${result.skippedExecRefs} exec SecretRef resolvability check(s). Re-run with --allow-exec to execute exec providers during dry-run.`);
2091
+ return;
2092
+ }
2093
+ defaultRuntime.log(result.changed ? `Secrets applied. Updated ${result.changedFiles.length} file(s).` : "Secrets apply: no changes.");
2094
+ } catch (err) {
2095
+ defaultRuntime.error(danger(String(err)));
2096
+ defaultRuntime.exit(1);
2097
+ }
2098
+ });
2099
+ }
2100
+ //#endregion
2101
+ export { registerSecretsCli };