npm - @poolzin/pool-bot - Versions diffs - 2026.1.39 → 2026.2.1 - Mend

@poolzin/pool-bot 2026.1.39 → 2026.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (511) hide show

package/assets/chrome-extension/README.md +3 -3
package/assets/chrome-extension/background.js +5 -5
package/assets/chrome-extension/manifest.json +3 -3
package/assets/chrome-extension/options.html +4 -4
package/assets/chrome-extension/options.js +1 -1
package/dist/acp/client.js +3 -3
package/dist/acp/types.js +1 -1
package/dist/agents/agent-paths.js +3 -3
package/dist/agents/auth-profiles/paths.js +3 -3
package/dist/agents/bash-tools.exec.js +76 -25
package/dist/agents/cli-runner/helpers.js +10 -12
package/dist/agents/cli-runner.js +2 -2
package/dist/agents/cloudflare-ai-gateway.js +31 -0
package/dist/agents/compaction.js +16 -2
package/dist/agents/context-window-guard.js +13 -10
package/dist/agents/context.js +4 -4
package/dist/agents/docs-path.js +1 -1
package/dist/agents/identity.js +47 -7
package/dist/agents/memory-search.js +25 -8
package/dist/agents/minimax-vlm.js +1 -1
package/dist/agents/model-auth.js +12 -1
package/dist/agents/model-catalog.js +4 -4
package/dist/agents/model-selection.js +31 -4
package/dist/agents/models-config.js +3 -3
package/dist/agents/models-config.providers.js +147 -39
package/dist/agents/pi-embedded-block-chunker.js +117 -42
package/dist/agents/pi-embedded-helpers/errors.js +183 -78
package/dist/agents/pi-embedded-helpers/openai.js +1 -1
package/dist/agents/pi-embedded-helpers.js +1 -1
package/dist/agents/pi-embedded-runner/compact.js +9 -8
package/dist/agents/pi-embedded-runner/model.js +63 -4
package/dist/agents/pi-embedded-runner/run/attempt.js +27 -17
package/dist/agents/pi-embedded-runner/run.js +203 -50
package/dist/agents/pi-embedded-runner/system-prompt.js +10 -2
package/dist/agents/pi-embedded-runner/tool-result-truncation.js +275 -0
package/dist/agents/pi-embedded-runner/utils.js +1 -1
package/dist/agents/pi-embedded-subscribe.js +118 -29
package/dist/agents/pi-model-discovery.js +10 -0
package/dist/agents/pi-tool-definition-adapter.js +50 -9
package/dist/agents/pi-tools.before-tool-call.js +67 -0
package/dist/agents/pi-tools.js +20 -10
package/dist/agents/pi-tools.read.js +2 -2
package/dist/agents/poolbot-tools.js +15 -10
package/dist/agents/sandbox-paths.js +31 -0
package/dist/agents/session-file-repair.js +83 -0
package/dist/agents/session-tool-result-guard.js +94 -15
package/dist/agents/session-transcript-repair.js +68 -0
package/dist/agents/shell-utils.js +51 -0
package/dist/agents/skills/bundled-context.js +23 -0
package/dist/agents/skills/bundled-dir.js +41 -7
package/dist/agents/skills/frontmatter.js +1 -1
package/dist/agents/skills/workspace.js +2 -2
package/dist/agents/skills-install.js +60 -23
package/dist/agents/subagent-announce.js +79 -34
package/dist/agents/system-prompt.js +28 -4
package/dist/agents/together-models.js +127 -0
package/dist/agents/tool-images.js +1 -1
package/dist/agents/tool-policy.conformance.js +14 -0
package/dist/agents/tool-policy.js +25 -1
package/dist/agents/tools/browser-tool.js +3 -3
package/dist/agents/tools/cron-tool.js +166 -19
package/dist/agents/tools/discord-actions-presence.js +78 -0
package/dist/agents/tools/image-tool.js +2 -2
package/dist/agents/tools/memory-tool.js +93 -5
package/dist/agents/tools/message-tool.js +56 -2
package/dist/agents/tools/sessions-history-tool.js +69 -1
package/dist/agents/tools/web-search.js +211 -42
package/dist/agents/usage.js +23 -1
package/dist/agents/workspace-run.js +67 -0
package/dist/agents/workspace-templates.js +44 -0
package/dist/auto-reply/command-auth.js +121 -6
package/dist/auto-reply/commands-registry.data.js +1 -1
package/dist/auto-reply/envelope.js +50 -72
package/dist/auto-reply/reply/commands-compact.js +1 -0
package/dist/auto-reply/reply/commands-context-report.js +3 -2
package/dist/auto-reply/reply/commands-context.js +1 -0
package/dist/auto-reply/reply/commands-models.js +107 -60
package/dist/auto-reply/reply/commands-ptt.js +171 -0
package/dist/auto-reply/reply/commands-session.js +2 -2
package/dist/auto-reply/reply/get-reply-run.js +16 -5
package/dist/auto-reply/reply/groups.js +1 -1
package/dist/auto-reply/reply/inbound-context.js +9 -1
package/dist/auto-reply/reply/inbound-meta.js +130 -0
package/dist/auto-reply/reply/model-selection.js +3 -3
package/dist/auto-reply/reply/untrusted-context.js +15 -0
package/dist/auto-reply/status.js +1 -1
package/dist/auto-reply/thinking.js +88 -43
package/dist/browser/bridge-server.js +13 -0
package/dist/browser/cdp.helpers.js +38 -24
package/dist/browser/client-fetch.js +51 -8
package/dist/browser/config.js +2 -11
package/dist/browser/extension-relay.js +104 -43
package/dist/browser/pw-ai.js +1 -1
package/dist/browser/pw-session.js +143 -8
package/dist/browser/pw-tools-core.interactions.js +125 -27
package/dist/browser/pw-tools-core.responses.js +1 -1
package/dist/browser/pw-tools-core.state.js +1 -1
package/dist/browser/routes/agent.act.js +86 -41
package/dist/browser/routes/dispatcher.js +4 -4
package/dist/browser/screenshot.js +1 -1
package/dist/browser/server-context.js +2 -2
package/dist/browser/server.js +13 -0
package/dist/build-info.json +3 -3
package/dist/canvas-host/a2ui.js +3 -3
package/dist/channels/plugins/catalog.js +2 -2
package/dist/channels/plugins/onboarding/imessage.js +1 -1
package/dist/channels/plugins/onboarding/signal.js +1 -1
package/dist/channels/plugins/onboarding/slack.js +4 -4
package/dist/channels/plugins/onboarding/whatsapp.js +3 -3
package/dist/channels/plugins/pairing-message.js +1 -1
package/dist/channels/reply-prefix.js +8 -1
package/dist/cli/browser-cli-extension.js +2 -2
package/dist/cli/cron-cli/register.cron-add.js +61 -40
package/dist/cli/cron-cli/register.cron-edit.js +60 -34
package/dist/cli/cron-cli/shared.js +56 -41
package/dist/cli/dns-cli.js +26 -14
package/dist/cli/docs-cli.js +1 -1
package/dist/cli/gateway-cli/dev.js +1 -1
package/dist/cli/gateway-cli/register.js +37 -19
package/dist/cli/memory-cli.js +30 -20
package/dist/cli/nodes-cli/register.canvas.js +1 -1
package/dist/cli/parse-bytes.js +37 -0
package/dist/cli/plugins-cli.js +1 -1
package/dist/cli/run-main.js +2 -2
package/dist/cli/security-cli.js +1 -1
package/dist/cli/tagline.js +1 -1
package/dist/cli/update-cli.js +173 -52
package/dist/cli/webhooks-cli.js +5 -5
package/dist/commands/agent.js +1 -0
package/dist/commands/agents.commands.add.js +1 -1
package/dist/commands/auth-choice.apply.api-providers.js +305 -17
package/dist/commands/auth-choice.apply.js +4 -1
package/dist/commands/auth-choice.apply.plugin-provider.js +2 -2
package/dist/commands/auth-choice.apply.xai.js +63 -0
package/dist/commands/auth-choice.preferred-provider.js +7 -1
package/dist/commands/configure.wizard.js +1 -1
package/dist/commands/dashboard.js +1 -1
package/dist/commands/docs.js +1 -1
package/dist/commands/doctor-config-flow.js +61 -5
package/dist/commands/doctor-gateway-services.js +3 -3
package/dist/commands/doctor-state-migrations.js +1 -1
package/dist/commands/doctor-update.js +3 -3
package/dist/commands/doctor.js +1 -1
package/dist/commands/health.js +1 -1
package/dist/commands/model-allowlist.js +29 -0
package/dist/commands/model-picker.js +2 -1
package/dist/commands/models/list.probe.js +2 -2
package/dist/commands/models/list.registry.js +4 -4
package/dist/commands/models/list.status-command.js +44 -24
package/dist/commands/models/shared.js +15 -0
package/dist/commands/onboard-auth.config-core.js +366 -28
package/dist/commands/onboard-auth.credentials.js +71 -9
package/dist/commands/onboard-auth.js +3 -3
package/dist/commands/onboard-auth.models.js +26 -24
package/dist/commands/onboard-custom.js +384 -0
package/dist/commands/onboard-non-interactive/local/auth-choice-inference.js +35 -0
package/dist/commands/onboard-non-interactive/local/auth-choice.js +146 -9
package/dist/commands/onboard-skills.js +63 -38
package/dist/commands/openai-model-default.js +41 -0
package/dist/commands/status-all/report-lines.js +1 -1
package/dist/commands/status.command.js +1 -1
package/dist/commands/uninstall.js +3 -3
package/dist/compat/legacy-names.js +1 -1
package/dist/config/defaults.js +3 -2
package/dist/config/io.js +3 -3
package/dist/config/paths.js +136 -35
package/dist/config/plugin-auto-enable.js +21 -5
package/dist/config/redact-snapshot.js +153 -0
package/dist/config/schema.field-metadata.js +590 -0
package/dist/config/schema.js +3 -3
package/dist/config/sessions/store.js +291 -23
package/dist/config/types.memory.js +1 -0
package/dist/config/version.js +4 -4
package/dist/config/zod-schema.agent-defaults.js +3 -0
package/dist/config/zod-schema.agent-runtime.js +13 -2
package/dist/config/zod-schema.providers-core.js +142 -0
package/dist/config/zod-schema.session.js +3 -0
package/dist/cron/delivery.js +57 -0
package/dist/cron/isolated-agent/delivery-target.js +18 -3
package/dist/cron/isolated-agent/helpers.js +22 -5
package/dist/cron/isolated-agent/run.js +171 -63
package/dist/cron/isolated-agent/session.js +2 -0
package/dist/cron/normalize.js +356 -28
package/dist/cron/parse.js +10 -5
package/dist/cron/run-log.js +35 -10
package/dist/cron/schedule.js +41 -6
package/dist/cron/service/jobs.js +208 -35
package/dist/cron/service/ops.js +72 -16
package/dist/cron/service/state.js +2 -0
package/dist/cron/service/store.js +386 -14
package/dist/cron/service/timer.js +390 -147
package/dist/cron/session-reaper.js +86 -0
package/dist/cron/store.js +23 -8
package/dist/cron/validate-timestamp.js +43 -0
package/dist/daemon/constants.js +7 -7
package/dist/daemon/inspect.js +6 -6
package/dist/daemon/systemd-unit.js +1 -1
package/dist/discord/monitor/agent-components.js +438 -0
package/dist/discord/monitor/allow-list.js +28 -5
package/dist/discord/monitor/gateway-registry.js +29 -0
package/dist/discord/monitor/native-command.js +44 -23
package/dist/discord/monitor/sender-identity.js +45 -0
package/dist/discord/pluralkit.js +27 -0
package/dist/discord/send.outbound.js +92 -5
package/dist/discord/send.shared.js +60 -23
package/dist/discord/targets.js +84 -1
package/dist/entry.js +15 -9
package/dist/extensionAPI.js +8 -0
package/dist/gateway/control-ui.js +8 -1
package/dist/gateway/hooks-mapping.js +3 -0
package/dist/gateway/hooks.js +65 -0
package/dist/gateway/live-image-probe.js +1 -66
package/dist/gateway/net.js +96 -31
package/dist/gateway/node-command-policy.js +50 -15
package/dist/gateway/openai-http.js +2 -2
package/dist/gateway/openresponses-http.js +4 -4
package/dist/gateway/origin-check.js +56 -0
package/dist/gateway/protocol/client-info.js +9 -0
package/dist/gateway/protocol/index.js +9 -2
package/dist/gateway/protocol/schema/agents-models-skills.js +71 -1
package/dist/gateway/protocol/schema/cron.js +22 -10
package/dist/gateway/protocol/schema/protocol-schemas.js +16 -2
package/dist/gateway/protocol/schema/sessions.js +12 -0
package/dist/gateway/server/hooks.js +1 -1
package/dist/gateway/server-broadcast.js +26 -9
package/dist/gateway/server-chat.js +112 -23
package/dist/gateway/server-discovery-runtime.js +10 -2
package/dist/gateway/server-discovery.js +2 -2
package/dist/gateway/server-http.js +110 -12
package/dist/gateway/server-methods/agent-timestamp.js +60 -0
package/dist/gateway/server-methods/agents.js +321 -2
package/dist/gateway/server-methods/usage.js +559 -16
package/dist/gateway/server-runtime-state.js +22 -8
package/dist/gateway/server-startup-memory.js +16 -0
package/dist/gateway/server.impl.js +7 -3
package/dist/gateway/session-utils.fs.js +23 -25
package/dist/gateway/session-utils.js +20 -10
package/dist/gateway/sessions-patch.js +7 -22
package/dist/gateway/test-helpers.server.js +35 -2
package/dist/hooks/frontmatter.js +1 -1
package/dist/hooks/hooks-status.js +1 -1
package/dist/hooks/install.js +2 -2
package/dist/hooks/loader.js +1 -1
package/dist/hooks/workspace.js +3 -3
package/dist/imessage/constants.js +2 -0
package/dist/imessage/monitor/deliver.js +4 -1
package/dist/imessage/monitor/monitor-provider.js +51 -1
package/dist/index.js +2 -2
package/dist/infra/bonjour-discovery.js +131 -70
package/dist/infra/bonjour.js +3 -3
package/dist/infra/control-ui-assets.js +134 -12
package/dist/infra/errors.js +12 -0
package/dist/infra/exec-approvals.js +266 -57
package/dist/infra/format-time/format-datetime.js +79 -0
package/dist/infra/format-time/format-duration.js +81 -0
package/dist/infra/format-time/format-relative.js +80 -0
package/dist/infra/heartbeat-runner.js +140 -49
package/dist/infra/home-dir.js +54 -0
package/dist/infra/net/fetch-guard.js +122 -0
package/dist/infra/net/ssrf.js +65 -29
package/dist/infra/outbound/abort.js +14 -0
package/dist/infra/outbound/message-action-runner.js +77 -13
package/dist/infra/outbound/outbound-session.js +143 -37
package/dist/infra/path-env.js +3 -3
package/dist/infra/poolbot-root.js +43 -1
package/dist/infra/provider-usage.fetch.minimax.js +1 -1
package/dist/infra/restart.js +1 -1
package/dist/infra/session-cost-usage.js +631 -41
package/dist/infra/state-migrations.js +317 -47
package/dist/infra/tailscale.js +1 -1
package/dist/infra/update-global.js +35 -0
package/dist/infra/update-runner.js +149 -43
package/dist/infra/warning-filter.js +65 -0
package/dist/infra/widearea-dns.js +30 -9
package/dist/logging/redact-identifier.js +12 -0
package/dist/macos/relay.js +2 -2
package/dist/media/fetch.js +81 -58
package/dist/media/input-files.js +1 -1
package/dist/media/mime.js +4 -0
package/dist/media/png-encode.js +74 -0
package/dist/media-understanding/apply.js +403 -3
package/dist/media-understanding/attachments.js +38 -27
package/dist/media-understanding/defaults.js +16 -0
package/dist/media-understanding/providers/deepgram/audio.js +22 -14
package/dist/media-understanding/providers/google/audio.js +24 -17
package/dist/media-understanding/providers/google/video.js +24 -17
package/dist/media-understanding/providers/image.js +4 -4
package/dist/media-understanding/providers/index.js +4 -1
package/dist/media-understanding/providers/openai/audio.js +22 -14
package/dist/media-understanding/providers/shared.js +16 -11
package/dist/media-understanding/providers/zai/index.js +6 -0
package/dist/media-understanding/runner.js +158 -90
package/dist/memory/backend-config.js +207 -0
package/dist/memory/batch-voyage.js +277 -0
package/dist/memory/embeddings-voyage.js +75 -0
package/dist/memory/embeddings.js +29 -17
package/dist/memory/internal.js +101 -18
package/dist/memory/manager.js +155 -48
package/dist/memory/search-manager.js +173 -0
package/dist/memory/session-files.js +9 -3
package/dist/memory/types.js +1 -0
package/dist/node-host/runner.js +36 -26
package/dist/node-host/with-timeout.js +27 -0
package/dist/pairing/pairing-messages.js +1 -1
package/dist/plugins/commands.js +5 -1
package/dist/plugins/config-state.js +86 -7
package/dist/plugins/discovery.js +1 -1
package/dist/plugins/install.js +2 -2
package/dist/plugins/source-display.js +51 -0
package/dist/plugins/update.js +1 -1
package/dist/process/exec.js +20 -2
package/dist/routing/resolve-route.js +12 -0
package/dist/routing/session-key.js +15 -0
package/dist/runtime.js +2 -0
package/dist/security/audit-extra.async.js +601 -0
package/dist/security/audit-extra.js +2 -830
package/dist/security/audit-extra.sync.js +505 -0
package/dist/security/audit.js +2 -2
package/dist/security/channel-metadata.js +34 -0
package/dist/security/external-content.js +88 -6
package/dist/security/skill-scanner.js +330 -0
package/dist/sessions/session-key-utils.js +7 -0
package/dist/shared/text/reasoning-tags.js +52 -7
package/dist/signal/monitor/event-handler.js +80 -1
package/dist/slack/monitor/media.js +85 -15
package/dist/tailscale/detect.js +145 -0
package/dist/telegram/bot/helpers.js +109 -28
package/dist/telegram/bot-handlers.js +144 -3
package/dist/telegram/bot-message-context.js +38 -11
package/dist/telegram/bot-message-dispatch.js +48 -15
package/dist/telegram/bot-native-commands.js +86 -29
package/dist/telegram/bot.js +30 -29
package/dist/telegram/model-buttons.js +163 -0
package/dist/telegram/monitor.js +110 -85
package/dist/telegram/send.js +129 -47
package/dist/terminal/restore.js +45 -0
package/dist/test-helpers/state-dir-env.js +16 -0
package/dist/test-helpers/workspace.js +11 -0
package/dist/test-utils/channel-plugins.js +82 -0
package/dist/test-utils/ports.js +73 -0
package/dist/tts/tts.js +12 -6
package/dist/tui/tui-session-actions.js +166 -54
package/dist/utils/fetch-timeout.js +20 -0
package/dist/utils/normalize-secret-input.js +19 -0
package/dist/utils/shell-argv.js +61 -0
package/dist/utils/transcript-tools.js +58 -0
package/dist/utils.js +55 -14
package/dist/version.js +42 -5
package/dist/web/qr-image.js +1 -61
package/dist/wizard/onboarding.finalize.js +7 -7
package/dist/wizard/onboarding.js +3 -3
package/docs/RELEASE_WORKFOTS_COMPARISON.md +3 -3
package/docs/_config.yml +2 -2
package/docs/_layouts/default.html +9 -9
package/docs/concepts/typebox.md +1 -1
package/docs/docs.json +1 -1
package/docs/northflank.mdx +7 -7
package/docs/railway.mdx +3 -3
package/docs/render.mdx +5 -5
package/docs/start/lore.md +2 -2
package/extensions/bluebubbles/index.ts +2 -2
package/extensions/bluebubbles/package.json +1 -1
package/extensions/bluebubbles/src/accounts.ts +8 -8
package/extensions/bluebubbles/src/actions.test.ts +22 -22
package/extensions/bluebubbles/src/actions.ts +5 -5
package/extensions/bluebubbles/src/attachments.ts +2 -2
package/extensions/bluebubbles/src/channel.ts +16 -16
package/extensions/bluebubbles/src/chat.ts +2 -2
package/extensions/bluebubbles/src/media-send.ts +2 -2
package/extensions/bluebubbles/src/monitor.test.ts +46 -46
package/extensions/bluebubbles/src/monitor.ts +5 -5
package/extensions/bluebubbles/src/onboarding.ts +7 -7
package/extensions/bluebubbles/src/reactions.ts +2 -2
package/extensions/bluebubbles/src/send.ts +2 -2
package/extensions/copilot-proxy/README.md +1 -1
package/extensions/copilot-proxy/package.json +1 -1
package/extensions/diagnostics-otel/index.ts +2 -2
package/extensions/diagnostics-otel/package.json +1 -1
package/extensions/diagnostics-otel/src/service.ts +3 -3
package/extensions/discord/index.ts +2 -2
package/extensions/discord/package.json +1 -1
package/extensions/google-antigravity-auth/README.md +1 -1
package/extensions/google-antigravity-auth/index.ts +1 -1
package/extensions/google-antigravity-auth/package.json +1 -1
package/extensions/google-gemini-cli-auth/README.md +1 -1
package/extensions/google-gemini-cli-auth/oauth.ts +1 -1
package/extensions/google-gemini-cli-auth/package.json +1 -1
package/extensions/googlechat/index.ts +3 -3
package/extensions/googlechat/package.json +1 -1
package/extensions/googlechat/src/accounts.ts +8 -8
package/extensions/googlechat/src/actions.ts +6 -6
package/extensions/googlechat/src/channel.ts +21 -21
package/extensions/googlechat/src/monitor.ts +8 -8
package/extensions/googlechat/src/onboarding.ts +10 -10
package/extensions/imessage/index.ts +2 -2
package/extensions/imessage/package.json +1 -1
package/extensions/line/index.ts +2 -2
package/extensions/line/package.json +1 -1
package/extensions/line/src/card-command.ts +2 -2
package/extensions/line/src/channel.logout.test.ts +4 -4
package/extensions/line/src/channel.sendPayload.test.ts +8 -8
package/extensions/line/src/channel.ts +3 -3
package/extensions/llm-task/README.md +3 -3
package/extensions/llm-task/index.ts +2 -2
package/extensions/llm-task/package.json +1 -1
package/extensions/llm-task/src/llm-task-tool.ts +4 -4
package/extensions/lobster/README.md +6 -6
package/extensions/lobster/index.ts +2 -2
package/extensions/lobster/src/lobster-tool.test.ts +4 -4
package/extensions/lobster/src/lobster-tool.ts +2 -2
package/extensions/matrix/index.ts +2 -2
package/extensions/matrix/package.json +1 -1
package/extensions/matrix/src/matrix/client/config.ts +1 -1
package/extensions/matrix/src/matrix/monitor/handler.ts +1 -1
package/extensions/matrix/src/onboarding.ts +1 -1
package/extensions/mattermost/index.ts +2 -2
package/extensions/mattermost/package.json +1 -1
package/extensions/mattermost/src/mattermost/accounts.ts +8 -8
package/extensions/mattermost/src/mattermost/monitor-helpers.ts +5 -5
package/extensions/mattermost/src/mattermost/monitor.ts +2 -2
package/extensions/mattermost/src/onboarding-helpers.ts +3 -3
package/extensions/mattermost/src/onboarding.ts +2 -2
package/extensions/memory-core/index.ts +2 -2
package/extensions/memory-core/package.json +1 -1
package/extensions/memory-lancedb/index.ts +3 -3
package/extensions/memory-lancedb/package.json +1 -1
package/extensions/msteams/index.ts +2 -2
package/extensions/msteams/package.json +1 -1
package/extensions/msteams/src/channel.directory.test.ts +2 -2
package/extensions/msteams/src/channel.ts +2 -2
package/extensions/msteams/src/graph-upload.ts +4 -4
package/extensions/msteams/src/monitor-handler.ts +2 -2
package/extensions/msteams/src/monitor.ts +2 -2
package/extensions/msteams/src/onboarding.ts +9 -9
package/extensions/msteams/src/reply-dispatcher.ts +2 -2
package/extensions/msteams/src/send-context.ts +2 -2
package/extensions/msteams/src/send.ts +4 -4
package/extensions/nextcloud-talk/index.ts +2 -2
package/extensions/nextcloud-talk/package.json +1 -1
package/extensions/nextcloud-talk/src/channel.ts +7 -7
package/extensions/nextcloud-talk/src/inbound.ts +7 -7
package/extensions/nextcloud-talk/src/onboarding.ts +1 -1
package/extensions/nostr/README.md +2 -2
package/extensions/nostr/index.ts +5 -5
package/extensions/nostr/package.json +1 -1
package/extensions/nostr/src/types.ts +4 -4
package/extensions/open-prose/index.ts +2 -2
package/extensions/qwen-portal-auth/README.md +1 -1
package/extensions/signal/index.ts +2 -2
package/extensions/signal/package.json +1 -1
package/extensions/slack/index.ts +2 -2
package/extensions/slack/package.json +1 -1
package/extensions/telegram/index.ts +2 -2
package/extensions/telegram/package.json +1 -1
package/extensions/telegram/src/channel.ts +2 -2
package/extensions/tlon/README.md +2 -2
package/extensions/tlon/index.ts +2 -2
package/extensions/tlon/package.json +1 -1
package/extensions/tlon/src/channel.ts +13 -13
package/extensions/tlon/src/monitor/index.ts +3 -3
package/extensions/tlon/src/onboarding.ts +3 -3
package/extensions/tlon/src/types.ts +3 -3
package/extensions/twitch/README.md +1 -1
package/extensions/twitch/index.ts +2 -2
package/extensions/twitch/package.json +1 -1
package/extensions/twitch/src/config.ts +3 -3
package/extensions/twitch/src/monitor.ts +3 -3
package/extensions/twitch/src/onboarding.ts +9 -9
package/extensions/twitch/src/outbound.test.ts +2 -2
package/extensions/twitch/src/plugin.test.ts +2 -2
package/extensions/twitch/src/plugin.ts +8 -8
package/extensions/twitch/src/send.test.ts +2 -2
package/extensions/twitch/src/send.ts +4 -4
package/extensions/twitch/src/token.test.ts +8 -8
package/extensions/twitch/src/token.ts +3 -3
package/extensions/twitch/src/twitch-client.ts +3 -3
package/extensions/twitch/src/types.ts +3 -3
package/extensions/twitch/src/utils/markdown.ts +1 -1
package/extensions/voice-call/README.md +3 -3
package/extensions/voice-call/package.json +1 -1
package/extensions/voice-call/src/core-bridge.ts +2 -2
package/extensions/voice-call/src/response-generator.ts +1 -1
package/extensions/whatsapp/index.ts +2 -2
package/extensions/whatsapp/package.json +1 -1
package/extensions/zalo/README.md +1 -1
package/extensions/zalo/index.ts +2 -2
package/extensions/zalo/package.json +1 -1
package/extensions/zalo/src/accounts.ts +8 -8
package/extensions/zalo/src/actions.ts +4 -4
package/extensions/zalo/src/channel.directory.test.ts +2 -2
package/extensions/zalo/src/channel.ts +18 -18
package/extensions/zalo/src/monitor.ts +9 -9
package/extensions/zalo/src/monitor.webhook.test.ts +2 -2
package/extensions/zalo/src/onboarding.ts +24 -24
package/extensions/zalo/src/send.ts +2 -2
package/extensions/zalouser/README.md +2 -2
package/extensions/zalouser/index.ts +2 -2
package/extensions/zalouser/package.json +1 -1
package/extensions/zalouser/src/accounts.ts +9 -9
package/extensions/zalouser/src/channel.ts +24 -24
package/extensions/zalouser/src/monitor.ts +4 -4
package/extensions/zalouser/src/onboarding.ts +28 -28
package/package.json +13 -251
package/skills/nano-banana-pro/scripts/generate_image.py +1 -1
package/skills/tmux/scripts/find-sessions.sh +1 -1
package/CHANGELOG.md +0 -102
package/README-header.png +0 -0
package/git-hooks/pre-commit +0 -4
package/scripts/format-staged.js +0 -148
package/scripts/postinstall.js +0 -300
package/scripts/setup-git-hooks.js +0 -96

package/dist/gateway/server-chat.js CHANGED Viewed

@@ -10,8 +10,9 @@ import { formatForLog } from "./ws-log.js";
  */
 function shouldSuppressHeartbeatBroadcast(runId) {
     const runContext = getAgentRunContext(runId);
-    if (!runContext?.isHeartbeat)
+    if (!runContext?.isHeartbeat) {
         return false;
+    }
     try {
         const cfg = loadConfig();
         const visibility = resolveHeartbeatVisibility({ cfg, channel: "webchat" });
@@ -36,23 +37,28 @@ export function createChatRunRegistry() {
     const peek = (sessionId) => chatRunSessions.get(sessionId)?.[0];
     const shift = (sessionId) => {
         const queue = chatRunSessions.get(sessionId);
-        if (!queue || queue.length === 0)
+        if (!queue || queue.length === 0) {
             return undefined;
+        }
         const entry = queue.shift();
-        if (!queue.length)
+        if (!queue.length) {
             chatRunSessions.delete(sessionId);
+        }
         return entry;
     };
     const remove = (sessionId, clientRunId, sessionKey) => {
         const queue = chatRunSessions.get(sessionId);
-        if (!queue || queue.length === 0)
+        if (!queue || queue.length === 0) {
             return undefined;
+        }
         const idx = queue.findIndex((entry) => entry.clientRunId === clientRunId && (sessionKey ? entry.sessionKey === sessionKey : true));
-        if (idx < 0)
+        if (idx < 0) {
             return undefined;
+        }
         const [entry] = queue.splice(idx, 1);
-        if (!queue.length)
+        if (!queue.length) {
             chatRunSessions.delete(sessionId);
+        }
         return entry;
     };
     const clear = () => {
@@ -79,13 +85,69 @@ export function createChatRunState() {
         clear,
     };
 }
-export function createAgentEventHandler({ broadcast, nodeSendToSession, agentRunSeq, chatRunState, resolveSessionKeyForRun, clearAgentRunContext, }) {
+const TOOL_EVENT_RECIPIENT_TTL_MS = 10 * 60 * 1000;
+const TOOL_EVENT_RECIPIENT_FINAL_GRACE_MS = 30 * 1000;
+export function createToolEventRecipientRegistry() {
+    const recipients = new Map();
+    const prune = () => {
+        if (recipients.size === 0) {
+            return;
+        }
+        const now = Date.now();
+        for (const [runId, entry] of recipients) {
+            const cutoff = entry.finalizedAt
+                ? entry.finalizedAt + TOOL_EVENT_RECIPIENT_FINAL_GRACE_MS
+                : entry.updatedAt + TOOL_EVENT_RECIPIENT_TTL_MS;
+            if (now >= cutoff) {
+                recipients.delete(runId);
+            }
+        }
+    };
+    const add = (runId, connId) => {
+        if (!runId || !connId) {
+            return;
+        }
+        const now = Date.now();
+        const existing = recipients.get(runId);
+        if (existing) {
+            existing.connIds.add(connId);
+            existing.updatedAt = now;
+        }
+        else {
+            recipients.set(runId, {
+                connIds: new Set([connId]),
+                updatedAt: now,
+            });
+        }
+        prune();
+    };
+    const get = (runId) => {
+        const entry = recipients.get(runId);
+        if (!entry) {
+            return undefined;
+        }
+        entry.updatedAt = Date.now();
+        prune();
+        return entry.connIds;
+    };
+    const markFinal = (runId) => {
+        const entry = recipients.get(runId);
+        if (!entry) {
+            return;
+        }
+        entry.finalizedAt = Date.now();
+        prune();
+    };
+    return { add, get, markFinal };
+}
+export function createAgentEventHandler({ broadcast, broadcastToConnIds, nodeSendToSession, agentRunSeq, chatRunState, resolveSessionKeyForRun, clearAgentRunContext, toolEventRecipients, }) {
     const emitChatDelta = (sessionKey, clientRunId, seq, text) => {
         chatRunState.buffers.set(clientRunId, text);
         const now = Date.now();
         const last = chatRunState.deltaSentAt.get(clientRunId) ?? 0;
-        if (now - last < 150)
+        if (now - last < 150) {
             return;
+        }
         chatRunState.deltaSentAt.set(clientRunId, now);
         const payload = {
             runId: clientRunId,
@@ -139,23 +201,26 @@ export function createAgentEventHandler({ broadcast, nodeSendToSession, agentRun
         broadcast("chat", payload);
         nodeSendToSession(sessionKey, "chat", payload);
     };
-    const shouldEmitToolEvents = (runId, sessionKey) => {
+    const resolveToolVerboseLevel = (runId, sessionKey) => {
         const runContext = getAgentRunContext(runId);
         const runVerbose = normalizeVerboseLevel(runContext?.verboseLevel);
-        if (runVerbose)
-            return runVerbose === "on";
-        if (!sessionKey)
-            return false;
+        if (runVerbose) {
+            return runVerbose;
+        }
+        if (!sessionKey) {
+            return "off";
+        }
         try {
             const { cfg, entry } = loadSessionEntry(sessionKey);
             const sessionVerbose = normalizeVerboseLevel(entry?.verboseLevel);
-            if (sessionVerbose)
-                return sessionVerbose === "on";
+            if (sessionVerbose) {
+                return sessionVerbose;
+            }
             const defaultVerbose = normalizeVerboseLevel(cfg.agents?.defaults?.verboseDefault);
-            return defaultVerbose === "on";
+            return defaultVerbose ?? "off";
         }
         catch {
-            return false;
+            return "off";
         }
     };
     return (evt) => {
@@ -166,10 +231,17 @@ export function createAgentEventHandler({ broadcast, nodeSendToSession, agentRun
         // Include sessionKey so Control UI can filter tool streams per session.
         const agentPayload = sessionKey ? { ...evt, sessionKey } : evt;
         const last = agentRunSeq.get(evt.runId) ?? 0;
-        if (evt.stream === "tool" && !shouldEmitToolEvents(evt.runId, sessionKey)) {
-            agentRunSeq.set(evt.runId, evt.seq);
-            return;
-        }
+        const isToolEvent = evt.stream === "tool";
+        const toolVerbose = isToolEvent ? resolveToolVerboseLevel(evt.runId, sessionKey) : "off";
+        // Build tool payload: strip result/partialResult unless verbose=full
+        const toolPayload = isToolEvent && toolVerbose !== "full"
+            ? (() => {
+                const data = evt.data ? { ...evt.data } : {};
+                delete data.result;
+                delete data.partialResult;
+                return sessionKey ? { ...evt, sessionKey, data } : { ...evt, data };
+            })()
+            : agentPayload;
         if (evt.seq !== last + 1) {
             broadcast("agent", {
                 runId: evt.runId,
@@ -184,10 +256,26 @@ export function createAgentEventHandler({ broadcast, nodeSendToSession, agentRun
             });
         }
         agentRunSeq.set(evt.runId, evt.seq);
-        broadcast("agent", agentPayload);
+        if (isToolEvent) {
+            // Always broadcast tool events to registered WS recipients with
+            // tool-events capability, regardless of verboseLevel. The verbose
+            // setting only controls whether tool details are sent as channel
+            // messages to messaging surfaces (Telegram, Discord, etc.).
+            const recipients = toolEventRecipients.get(evt.runId);
+            if (recipients && recipients.size > 0) {
+                broadcastToConnIds("agent", toolPayload, recipients);
+            }
+        }
+        else {
+            broadcast("agent", agentPayload);
+        }
         const lifecyclePhase = evt.stream === "lifecycle" && typeof evt.data?.phase === "string" ? evt.data.phase : null;
         if (sessionKey) {
-            nodeSendToSession(sessionKey, "agent", agentPayload);
+            // Send tool events to node/channel subscribers only when verbose is enabled;
+            // WS clients already received the event above via broadcastToConnIds.
+            if (!isToolEvent || toolVerbose !== "off") {
+                nodeSendToSession(sessionKey, "agent", isToolEvent ? toolPayload : agentPayload);
+            }
             if (!isAborted && evt.stream === "assistant" && typeof evt.data?.text === "string") {
                 emitChatDelta(sessionKey, clientRunId, evt.seq, evt.data.text);
             }
@@ -215,6 +303,7 @@ export function createAgentEventHandler({ broadcast, nodeSendToSession, agentRun
             }
         }
         if (lifecyclePhase === "end" || lifecyclePhase === "error") {
+            toolEventRecipients.markFinal(evt.runId);
             clearAgentRunContext(evt.runId);
         }
     };

package/dist/gateway/server-discovery-runtime.js CHANGED Viewed

@@ -1,6 +1,6 @@
 import { startGatewayBonjourAdvertiser } from "../infra/bonjour.js";
 import { pickPrimaryTailnetIPv4, pickPrimaryTailnetIPv6 } from "../infra/tailnet.js";
-import { WIDE_AREA_DISCOVERY_DOMAIN, writeWideAreaGatewayZone } from "../infra/widearea-dns.js";
+import { resolveWideAreaDiscoveryDomain, writeWideAreaGatewayZone } from "../infra/widearea-dns.js";
 import { formatBonjourInstanceName, resolveBonjourCliPath, resolveTailnetDnsHint, } from "./server-discovery.js";
 export async function startGatewayDiscovery(params) {
     let bonjourStop = null;
@@ -40,6 +40,13 @@ export async function startGatewayDiscovery(params) {
         }
     }
     if (params.wideAreaDiscoveryEnabled) {
+        const wideAreaDomain = resolveWideAreaDiscoveryDomain({
+            configDomain: params.wideAreaDiscoveryDomain ?? undefined,
+        });
+        if (!wideAreaDomain) {
+            params.logDiscovery.warn("discovery.wideArea.enabled is true, but no domain was configured; set discovery.wideArea.domain to enable unicast DNS-SD");
+            return { bonjourStop };
+        }
         const tailnetIPv4 = pickPrimaryTailnetIPv4();
         if (!tailnetIPv4) {
             params.logDiscovery.warn("discovery.wideArea.enabled is true, but no Tailscale IPv4 address was found; skipping unicast DNS-SD zone update");
@@ -48,6 +55,7 @@ export async function startGatewayDiscovery(params) {
             try {
                 const tailnetIPv6 = pickPrimaryTailnetIPv6();
                 const result = await writeWideAreaGatewayZone({
+                    domain: wideAreaDomain,
                     gatewayPort: params.port,
                     displayName: formatBonjourInstanceName(params.machineDisplayName),
                     tailnetIPv4,
@@ -58,7 +66,7 @@ export async function startGatewayDiscovery(params) {
                     sshPort,
                     cliPath: resolveBonjourCliPath(),
                 });
-                params.logDiscovery.info(`wide-area DNS-SD ${result.changed ? "updated" : "unchanged"} (${WIDE_AREA_DISCOVERY_DOMAIN} → ${result.zonePath})`);
+                params.logDiscovery.info(`wide-area DNS-SD ${result.changed ? "updated" : "unchanged"} (${wideAreaDomain} → ${result.zonePath})`);
             }
             catch (err) {
                 params.logDiscovery.warn(`wide-area discovery update failed: ${String(err)}`);

package/dist/gateway/server-discovery.js CHANGED Viewed

@@ -5,10 +5,10 @@ import { runExec } from "../process/exec.js";
 export function formatBonjourInstanceName(displayName) {
     const trimmed = displayName.trim();
     if (!trimmed)
-        return "Moltbot";
+        return "Poolbot";
     if (/poolbot/i.test(trimmed))
         return trimmed;
-    return `${trimmed} (Moltbot)`;
+    return `${trimmed} (Poolbot)`;
 }
 export function resolveBonjourCliPath(opts = {}) {
     const env = opts.env ?? process.env;

package/dist/gateway/server-http.js CHANGED Viewed

@@ -1,12 +1,16 @@
 import { createServer as createHttpServer, } from "node:http";
 import { createServer as createHttpsServer } from "node:https";
-import { handleA2uiHttpRequest } from "../canvas-host/a2ui.js";
+import { A2UI_PATH, CANVAS_HOST_PATH, CANVAS_WS_PATH, handleA2uiHttpRequest, } from "../canvas-host/a2ui.js";
 import { loadConfig } from "../config/config.js";
-import { handleSlackHttpRequest } from "../slack/http/index.js";
 import { resolveAgentAvatar } from "../agents/identity-avatar.js";
-import { handleControlUiAvatarRequest, handleControlUiHttpRequest } from "./control-ui.js";
-import { extractHookToken, getHookChannelError, normalizeAgentPayload, normalizeHookHeaders, normalizeWakePayload, readJsonBody, resolveHookChannel, resolveHookDeliver, } from "./hooks.js";
+import { handleSlackHttpRequest } from "../slack/http/index.js";
+import { authorizeGatewayConnect, isLocalDirectRequest } from "./auth.js";
+import { handleControlUiAvatarRequest, handleControlUiHttpRequest, } from "./control-ui.js";
+import { extractHookToken, getHookAgentPolicyError, getHookChannelError, isHookAgentAllowed, normalizeAgentPayload, normalizeHookHeaders, normalizeWakePayload, readJsonBody, resolveHookTargetAgentId, resolveHookChannel, resolveHookDeliver, } from "./hooks.js";
 import { applyHookMappings } from "./hooks-mapping.js";
+import { sendUnauthorized } from "./http-common.js";
+import { getBearerToken, getHeader } from "./http-utils.js";
+import { resolveGatewayClientIp } from "./net.js";
 import { handleOpenAiHttpRequest } from "./openai-http.js";
 import { handleOpenResponsesHttpRequest } from "./openresponses-http.js";
 import { handleToolsInvokeHttpRequest } from "./tools-invoke-http.js";
@@ -15,6 +19,49 @@ function sendJson(res, status, body) {
     res.setHeader("Content-Type", "application/json; charset=utf-8");
     res.end(JSON.stringify(body));
 }
+function isCanvasPath(pathname) {
+    return (pathname === A2UI_PATH ||
+        pathname.startsWith(`${A2UI_PATH}/`) ||
+        pathname === CANVAS_HOST_PATH ||
+        pathname.startsWith(`${CANVAS_HOST_PATH}/`) ||
+        pathname === CANVAS_WS_PATH);
+}
+function hasAuthorizedWsClientForIp(clients, clientIp) {
+    for (const client of clients) {
+        if (client.clientIp && client.clientIp === clientIp) {
+            return true;
+        }
+    }
+    return false;
+}
+async function authorizeCanvasRequest(params) {
+    const { req, auth, trustedProxies, clients } = params;
+    if (isLocalDirectRequest(req, trustedProxies)) {
+        return true;
+    }
+    const token = getBearerToken(req);
+    if (token) {
+        const authResult = await authorizeGatewayConnect({
+            auth: { ...auth, allowTailscale: false },
+            connectAuth: { token, password: token },
+            req,
+            trustedProxies,
+        });
+        if (authResult.ok) {
+            return true;
+        }
+    }
+    const clientIp = resolveGatewayClientIp({
+        remoteAddr: req.socket?.remoteAddress ?? "",
+        forwardedFor: getHeader(req, "x-forwarded-for"),
+        realIp: getHeader(req, "x-real-ip"),
+        trustedProxies,
+    });
+    if (!clientIp) {
+        return false;
+    }
+    return hasAuthorizedWsClientForIp(clients, clientIp);
+}
 export function createHooksRequestHandler(opts) {
     const { getHooksConfig, bindHost, port, logHooks, dispatchAgentHook, dispatchWakeHook } = opts;
     return async (req, res) => {
@@ -26,6 +73,8 @@ export function createHooksRequestHandler(opts) {
         if (url.pathname !== basePath && !url.pathname.startsWith(`${basePath}/`)) {
             return false;
         }
+        // pool-bot keeps the deprecation-warning approach for query-param tokens
+        // (upstream hard-rejects; we warn and allow for now)
         const { token, fromQuery } = extractHookToken(req, url);
         if (!token || token !== hooksConfig.token) {
             res.statusCode = 401;
@@ -36,7 +85,7 @@ export function createHooksRequestHandler(opts) {
         if (fromQuery) {
             logHooks.warn("Hook token provided via query parameter is deprecated for security reasons. " +
                 "Tokens in URLs appear in logs, browser history, and referrer headers. " +
-                "Use Authorization: Bearer <token> or X-Moltbot-Token header instead.");
+                "Use Authorization: Bearer <token> or X-Poolbot-Token header instead.");
         }
         if (req.method !== "POST") {
             res.statusCode = 405;
@@ -76,7 +125,14 @@ export function createHooksRequestHandler(opts) {
                 sendJson(res, 400, { ok: false, error: normalized.error });
                 return true;
             }
-            const runId = dispatchAgentHook(normalized.value);
+            if (!isHookAgentAllowed(hooksConfig, normalized.value.agentId)) {
+                sendJson(res, 400, { ok: false, error: getHookAgentPolicyError() });
+                return true;
+            }
+            const runId = dispatchAgentHook({
+                ...normalized.value,
+                agentId: resolveHookTargetAgentId(hooksConfig, normalized.value.agentId),
+            });
             sendJson(res, 202, { ok: true, runId });
             return true;
         }
@@ -111,9 +167,14 @@ export function createHooksRequestHandler(opts) {
                         sendJson(res, 400, { ok: false, error: getHookChannelError() });
                         return true;
                     }
+                    if (!isHookAgentAllowed(hooksConfig, mapped.action.agentId)) {
+                        sendJson(res, 400, { ok: false, error: getHookAgentPolicyError() });
+                        return true;
+                    }
                     const runId = dispatchAgentHook({
                         message: mapped.action.message,
                         name: mapped.action.name ?? "Hook",
+                        agentId: resolveHookTargetAgentId(hooksConfig, mapped.action.agentId),
                         wakeMode: mapped.action.wakeMode,
                         sessionKey: mapped.action.sessionKey ?? "",
                         deliver: resolveHookDeliver(mapped.action.deliver),
@@ -141,7 +202,7 @@ export function createHooksRequestHandler(opts) {
     };
 }
 export function createGatewayHttpServer(opts) {
-    const { canvasHost, controlUiEnabled, controlUiBasePath, openAiChatCompletionsEnabled, openResponsesEnabled, openResponsesConfig, handleHooksRequest, handlePluginRequest, resolvedAuth, } = opts;
+    const { canvasHost, clients, controlUiEnabled, controlUiBasePath, controlUiRoot, openAiChatCompletionsEnabled, openResponsesEnabled, openResponsesConfig, handleHooksRequest, handlePluginRequest, resolvedAuth, } = opts;
     const httpServer = opts.tlsOptions
         ? createHttpsServer(opts.tlsOptions, (req, res) => {
             void handleRequest(req, res);
@@ -183,6 +244,19 @@ export function createGatewayHttpServer(opts) {
                     return;
             }
             if (canvasHost) {
+                const url = new URL(req.url ?? "/", "http://localhost");
+                if (isCanvasPath(url.pathname)) {
+                    const ok = await authorizeCanvasRequest({
+                        req,
+                        auth: resolvedAuth,
+                        trustedProxies,
+                        clients,
+                    });
+                    if (!ok) {
+                        sendUnauthorized(res);
+                        return;
+                    }
+                }
                 if (await handleA2uiHttpRequest(req, res))
                     return;
                 if (await canvasHost.handleHttpRequest(req, res))
@@ -197,6 +271,7 @@ export function createGatewayHttpServer(opts) {
                 if (handleControlUiHttpRequest(req, res, {
                     basePath: controlUiBasePath,
                     config: configSnapshot,
+                    root: controlUiRoot,
                 }))
                     return;
             }
@@ -213,12 +288,35 @@ export function createGatewayHttpServer(opts) {
     return httpServer;
 }
 export function attachGatewayUpgradeHandler(opts) {
-    const { httpServer, wss, canvasHost } = opts;
+    const { httpServer, wss, canvasHost, clients, resolvedAuth } = opts;
     httpServer.on("upgrade", (req, socket, head) => {
-        if (canvasHost?.handleUpgrade(req, socket, head))
-            return;
-        wss.handleUpgrade(req, socket, head, (ws) => {
-            wss.emit("connection", ws, req);
+        void (async () => {
+            if (canvasHost) {
+                const url = new URL(req.url ?? "/", "http://localhost");
+                if (url.pathname === CANVAS_WS_PATH) {
+                    const configSnapshot = loadConfig();
+                    const trustedProxies = configSnapshot.gateway?.trustedProxies ?? [];
+                    const ok = await authorizeCanvasRequest({
+                        req,
+                        auth: resolvedAuth,
+                        trustedProxies,
+                        clients,
+                    });
+                    if (!ok) {
+                        socket.write("HTTP/1.1 401 Unauthorized\r\nConnection: close\r\n\r\n");
+                        socket.destroy();
+                        return;
+                    }
+                }
+                if (canvasHost.handleUpgrade(req, socket, head)) {
+                    return;
+                }
+            }
+            wss.handleUpgrade(req, socket, head, (ws) => {
+                wss.emit("connection", ws, req);
+            });
+        })().catch(() => {
+            socket.destroy();
         });
     });
 }

package/dist/gateway/server-methods/agent-timestamp.js ADDED Viewed

@@ -0,0 +1,60 @@
+import { resolveUserTimezone } from "../../agents/date-time.js";
+import { formatZonedTimestamp } from "../../infra/format-time/format-datetime.js";
+/**
+ * Cron jobs inject "Current time: ..." into their messages.
+ * Skip injection for those.
+ */
+const CRON_TIME_PATTERN = /Current time: /;
+/**
+ * Matches a leading `[... YYYY-MM-DD HH:MM ...]` envelope -- either from
+ * channel plugins or from a previous injection. Uses the same YYYY-MM-DD
+ * HH:MM format as {@link formatZonedTimestamp}, so detection stays in sync
+ * with the formatting.
+ */
+const TIMESTAMP_ENVELOPE_PATTERN = /^\[.*\d{4}-\d{2}-\d{2} \d{2}:\d{2}/;
+/**
+ * Injects a compact timestamp prefix into a message if one isn't already
+ * present. Uses the same `YYYY-MM-DD HH:MM TZ` format as channel envelope
+ * timestamps ({@link formatZonedTimestamp}), keeping token cost low (~7
+ * tokens) and format consistent across all agent contexts.
+ *
+ * Used by the gateway `agent` and `chat.send` handlers to give TUI, web,
+ * spawned subagents, `sessions_send`, and heartbeat wake events date/time
+ * awareness -- without modifying the system prompt (which is cached).
+ *
+ * Channel messages (Discord, Telegram, etc.) already have timestamps via
+ * envelope formatting and take a separate code path -- they never reach
+ * these handlers, so there is no double-stamping risk. The detection
+ * pattern is a safety net for edge cases.
+ */
+export function injectTimestamp(message, opts) {
+    if (!message.trim()) {
+        return message;
+    }
+    // Already has an envelope or injected timestamp
+    if (TIMESTAMP_ENVELOPE_PATTERN.test(message)) {
+        return message;
+    }
+    // Already has a cron-injected timestamp
+    if (CRON_TIME_PATTERN.test(message)) {
+        return message;
+    }
+    const now = opts?.now ?? new Date();
+    const timezone = opts?.timezone ?? "UTC";
+    const formatted = formatZonedTimestamp(now, { timeZone: timezone });
+    if (!formatted) {
+        return message;
+    }
+    // 3-letter DOW: small models (8B) can't reliably derive day-of-week from
+    // a date, and may treat a bare "Wed" as a typo. Costs ~1 token.
+    const dow = new Intl.DateTimeFormat("en-US", { timeZone: timezone, weekday: "short" }).format(now);
+    return `[${dow} ${formatted}] ${message}`;
+}
+/**
+ * Build TimestampInjectionOptions from a PoolBotConfig.
+ */
+export function timestampOptsFromConfig(cfg) {
+    return {
+        timezone: resolveUserTimezone(cfg.agents?.defaults?.userTimezone),
+    };
+}