npm - @poolzin/pool-bot - Versions diffs - 2026.2.0 → 2026.2.1 - Mend

@poolzin/pool-bot 2026.2.0 → 2026.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (230) hide show

package/dist/agents/bash-tools.exec.js +76 -25
package/dist/agents/cli-runner/helpers.js +9 -11
package/dist/agents/identity.js +47 -7
package/dist/agents/memory-search.js +25 -8
package/dist/agents/model-selection.js +21 -0
package/dist/agents/pi-embedded-block-chunker.js +117 -42
package/dist/agents/pi-embedded-helpers/errors.js +183 -78
package/dist/agents/pi-embedded-helpers.js +1 -1
package/dist/agents/pi-embedded-runner/compact.js +1 -0
package/dist/agents/pi-embedded-runner/model.js +61 -2
package/dist/agents/pi-embedded-runner/run/attempt.js +21 -11
package/dist/agents/pi-embedded-runner/run.js +199 -46
package/dist/agents/pi-embedded-runner/system-prompt.js +10 -2
package/dist/agents/pi-embedded-subscribe.js +118 -29
package/dist/agents/pi-tools.js +10 -5
package/dist/agents/poolbot-tools.js +15 -10
package/dist/agents/sandbox-paths.js +31 -0
package/dist/agents/session-tool-result-guard.js +94 -15
package/dist/agents/shell-utils.js +51 -0
package/dist/agents/skills/bundled-context.js +23 -0
package/dist/agents/skills/bundled-dir.js +41 -7
package/dist/agents/skills-install.js +60 -23
package/dist/agents/subagent-announce.js +79 -34
package/dist/agents/tool-policy.conformance.js +14 -0
package/dist/agents/tool-policy.js +24 -0
package/dist/agents/tools/cron-tool.js +166 -19
package/dist/agents/tools/discord-actions-presence.js +78 -0
package/dist/agents/tools/message-tool.js +56 -2
package/dist/agents/tools/sessions-history-tool.js +69 -1
package/dist/agents/tools/web-search.js +211 -42
package/dist/agents/usage.js +23 -1
package/dist/agents/workspace-run.js +67 -0
package/dist/agents/workspace-templates.js +44 -0
package/dist/auto-reply/command-auth.js +121 -6
package/dist/auto-reply/envelope.js +50 -72
package/dist/auto-reply/reply/commands-compact.js +1 -0
package/dist/auto-reply/reply/commands-context-report.js +1 -0
package/dist/auto-reply/reply/commands-context.js +1 -0
package/dist/auto-reply/reply/commands-models.js +107 -60
package/dist/auto-reply/reply/commands-ptt.js +171 -0
package/dist/auto-reply/reply/get-reply-run.js +2 -1
package/dist/auto-reply/reply/inbound-context.js +5 -1
package/dist/auto-reply/reply/model-selection.js +3 -3
package/dist/auto-reply/thinking.js +88 -43
package/dist/browser/bridge-server.js +13 -0
package/dist/browser/cdp.helpers.js +38 -24
package/dist/browser/client-fetch.js +50 -7
package/dist/browser/config.js +1 -10
package/dist/browser/extension-relay.js +101 -40
package/dist/browser/pw-ai.js +1 -1
package/dist/browser/pw-session.js +143 -8
package/dist/browser/pw-tools-core.interactions.js +125 -27
package/dist/browser/pw-tools-core.responses.js +1 -1
package/dist/browser/pw-tools-core.state.js +1 -1
package/dist/browser/routes/agent.act.js +86 -41
package/dist/browser/routes/dispatcher.js +4 -4
package/dist/browser/screenshot.js +1 -1
package/dist/browser/server.js +13 -0
package/dist/build-info.json +3 -3
package/dist/channels/reply-prefix.js +8 -1
package/dist/cli/cron-cli/register.cron-add.js +61 -40
package/dist/cli/cron-cli/register.cron-edit.js +60 -34
package/dist/cli/cron-cli/shared.js +56 -41
package/dist/cli/dns-cli.js +26 -14
package/dist/cli/gateway-cli/register.js +37 -19
package/dist/cli/memory-cli.js +5 -5
package/dist/cli/parse-bytes.js +37 -0
package/dist/cli/update-cli.js +173 -52
package/dist/commands/agent.js +1 -0
package/dist/commands/doctor-config-flow.js +61 -5
package/dist/commands/doctor-state-migrations.js +1 -1
package/dist/commands/health.js +1 -1
package/dist/commands/model-allowlist.js +29 -0
package/dist/commands/model-picker.js +2 -1
package/dist/commands/models/list.status-command.js +43 -23
package/dist/commands/models/shared.js +15 -0
package/dist/commands/onboard-custom.js +384 -0
package/dist/commands/onboard-non-interactive/local/auth-choice-inference.js +35 -0
package/dist/commands/onboard-non-interactive/local/auth-choice.js +6 -3
package/dist/commands/onboard-skills.js +63 -38
package/dist/commands/openai-model-default.js +41 -0
package/dist/config/defaults.js +3 -2
package/dist/config/paths.js +136 -35
package/dist/config/plugin-auto-enable.js +21 -5
package/dist/config/redact-snapshot.js +153 -0
package/dist/config/schema.field-metadata.js +590 -0
package/dist/config/schema.js +2 -2
package/dist/config/sessions/store.js +291 -23
package/dist/config/zod-schema.agent-defaults.js +3 -0
package/dist/config/zod-schema.agent-runtime.js +13 -2
package/dist/config/zod-schema.providers-core.js +142 -0
package/dist/config/zod-schema.session.js +3 -0
package/dist/cron/delivery.js +57 -0
package/dist/cron/isolated-agent/delivery-target.js +18 -3
package/dist/cron/isolated-agent/helpers.js +22 -5
package/dist/cron/isolated-agent/run.js +171 -63
package/dist/cron/isolated-agent/session.js +2 -0
package/dist/cron/normalize.js +356 -28
package/dist/cron/parse.js +10 -5
package/dist/cron/run-log.js +35 -10
package/dist/cron/schedule.js +41 -6
package/dist/cron/service/jobs.js +208 -35
package/dist/cron/service/ops.js +72 -16
package/dist/cron/service/state.js +2 -0
package/dist/cron/service/store.js +386 -14
package/dist/cron/service/timer.js +390 -147
package/dist/cron/session-reaper.js +86 -0
package/dist/cron/store.js +23 -8
package/dist/cron/validate-timestamp.js +43 -0
package/dist/discord/monitor/agent-components.js +438 -0
package/dist/discord/monitor/allow-list.js +28 -5
package/dist/discord/monitor/gateway-registry.js +29 -0
package/dist/discord/monitor/native-command.js +44 -23
package/dist/discord/monitor/sender-identity.js +45 -0
package/dist/discord/pluralkit.js +27 -0
package/dist/discord/send.outbound.js +92 -5
package/dist/discord/send.shared.js +60 -23
package/dist/discord/targets.js +84 -1
package/dist/entry.js +15 -9
package/dist/extensionAPI.js +8 -0
package/dist/gateway/control-ui.js +8 -1
package/dist/gateway/hooks-mapping.js +3 -0
package/dist/gateway/hooks.js +65 -0
package/dist/gateway/net.js +96 -31
package/dist/gateway/node-command-policy.js +50 -15
package/dist/gateway/origin-check.js +56 -0
package/dist/gateway/protocol/client-info.js +9 -0
package/dist/gateway/protocol/index.js +9 -2
package/dist/gateway/protocol/schema/agents-models-skills.js +71 -1
package/dist/gateway/protocol/schema/cron.js +22 -10
package/dist/gateway/protocol/schema/protocol-schemas.js +16 -2
package/dist/gateway/protocol/schema/sessions.js +12 -0
package/dist/gateway/server/hooks.js +1 -1
package/dist/gateway/server-broadcast.js +26 -9
package/dist/gateway/server-chat.js +112 -23
package/dist/gateway/server-discovery-runtime.js +10 -2
package/dist/gateway/server-http.js +109 -11
package/dist/gateway/server-methods/agent-timestamp.js +60 -0
package/dist/gateway/server-methods/agents.js +321 -2
package/dist/gateway/server-methods/usage.js +559 -16
package/dist/gateway/server-runtime-state.js +22 -8
package/dist/gateway/server-startup-memory.js +16 -0
package/dist/gateway/server.impl.js +5 -1
package/dist/gateway/session-utils.fs.js +23 -25
package/dist/gateway/session-utils.js +20 -10
package/dist/gateway/sessions-patch.js +7 -22
package/dist/gateway/test-helpers.server.js +35 -2
package/dist/imessage/constants.js +2 -0
package/dist/imessage/monitor/deliver.js +4 -1
package/dist/imessage/monitor/monitor-provider.js +51 -1
package/dist/infra/bonjour-discovery.js +131 -70
package/dist/infra/control-ui-assets.js +134 -12
package/dist/infra/errors.js +12 -0
package/dist/infra/exec-approvals.js +266 -57
package/dist/infra/format-time/format-datetime.js +79 -0
package/dist/infra/format-time/format-duration.js +81 -0
package/dist/infra/format-time/format-relative.js +80 -0
package/dist/infra/heartbeat-runner.js +140 -49
package/dist/infra/home-dir.js +54 -0
package/dist/infra/net/fetch-guard.js +122 -0
package/dist/infra/net/ssrf.js +65 -29
package/dist/infra/outbound/abort.js +14 -0
package/dist/infra/outbound/message-action-runner.js +77 -13
package/dist/infra/outbound/outbound-session.js +143 -37
package/dist/infra/poolbot-root.js +43 -1
package/dist/infra/session-cost-usage.js +631 -41
package/dist/infra/state-migrations.js +317 -47
package/dist/infra/update-global.js +35 -0
package/dist/infra/update-runner.js +149 -43
package/dist/infra/warning-filter.js +65 -0
package/dist/infra/widearea-dns.js +30 -9
package/dist/logging/redact-identifier.js +12 -0
package/dist/media/fetch.js +81 -58
package/dist/media-understanding/apply.js +403 -3
package/dist/media-understanding/attachments.js +38 -27
package/dist/media-understanding/defaults.js +16 -0
package/dist/media-understanding/providers/deepgram/audio.js +22 -14
package/dist/media-understanding/providers/google/audio.js +24 -17
package/dist/media-understanding/providers/google/video.js +24 -17
package/dist/media-understanding/providers/image.js +2 -2
package/dist/media-understanding/providers/index.js +4 -1
package/dist/media-understanding/providers/openai/audio.js +22 -14
package/dist/media-understanding/providers/shared.js +16 -11
package/dist/media-understanding/providers/zai/index.js +6 -0
package/dist/media-understanding/runner.js +158 -90
package/dist/memory/batch-voyage.js +277 -0
package/dist/memory/embeddings-voyage.js +75 -0
package/dist/memory/embeddings.js +28 -16
package/dist/memory/internal.js +101 -18
package/dist/memory/manager.js +154 -48
package/dist/memory/search-manager.js +173 -0
package/dist/memory/session-files.js +9 -3
package/dist/node-host/runner.js +34 -24
package/dist/node-host/with-timeout.js +27 -0
package/dist/plugins/commands.js +5 -1
package/dist/plugins/config-state.js +86 -7
package/dist/plugins/source-display.js +51 -0
package/dist/process/exec.js +20 -2
package/dist/routing/resolve-route.js +12 -0
package/dist/routing/session-key.js +15 -0
package/dist/runtime.js +2 -0
package/dist/security/audit-extra.async.js +601 -0
package/dist/security/audit-extra.js +2 -830
package/dist/security/audit-extra.sync.js +505 -0
package/dist/security/channel-metadata.js +34 -0
package/dist/security/external-content.js +88 -6
package/dist/security/skill-scanner.js +330 -0
package/dist/sessions/session-key-utils.js +7 -0
package/dist/signal/monitor/event-handler.js +80 -1
package/dist/slack/monitor/media.js +85 -15
package/dist/tailscale/detect.js +1 -2
package/dist/telegram/bot/helpers.js +109 -28
package/dist/telegram/bot-handlers.js +144 -3
package/dist/telegram/bot-message-context.js +37 -10
package/dist/telegram/bot-message-dispatch.js +48 -15
package/dist/telegram/bot-native-commands.js +86 -29
package/dist/telegram/bot.js +30 -29
package/dist/telegram/model-buttons.js +163 -0
package/dist/telegram/monitor.js +110 -85
package/dist/telegram/send.js +129 -47
package/dist/terminal/restore.js +45 -0
package/dist/test-helpers/state-dir-env.js +16 -0
package/dist/tts/tts.js +12 -6
package/dist/tui/tui-session-actions.js +166 -54
package/dist/utils/fetch-timeout.js +20 -0
package/dist/utils/normalize-secret-input.js +19 -0
package/dist/utils/transcript-tools.js +58 -0
package/dist/utils.js +45 -14
package/dist/version.js +42 -5
package/package.json +1 -1

package/dist/gateway/server-http.js CHANGED Viewed

@@ -1,12 +1,16 @@
 import { createServer as createHttpServer, } from "node:http";
 import { createServer as createHttpsServer } from "node:https";
-import { handleA2uiHttpRequest } from "../canvas-host/a2ui.js";
+import { A2UI_PATH, CANVAS_HOST_PATH, CANVAS_WS_PATH, handleA2uiHttpRequest, } from "../canvas-host/a2ui.js";
 import { loadConfig } from "../config/config.js";
-import { handleSlackHttpRequest } from "../slack/http/index.js";
 import { resolveAgentAvatar } from "../agents/identity-avatar.js";
-import { handleControlUiAvatarRequest, handleControlUiHttpRequest } from "./control-ui.js";
-import { extractHookToken, getHookChannelError, normalizeAgentPayload, normalizeHookHeaders, normalizeWakePayload, readJsonBody, resolveHookChannel, resolveHookDeliver, } from "./hooks.js";
+import { handleSlackHttpRequest } from "../slack/http/index.js";
+import { authorizeGatewayConnect, isLocalDirectRequest } from "./auth.js";
+import { handleControlUiAvatarRequest, handleControlUiHttpRequest, } from "./control-ui.js";
+import { extractHookToken, getHookAgentPolicyError, getHookChannelError, isHookAgentAllowed, normalizeAgentPayload, normalizeHookHeaders, normalizeWakePayload, readJsonBody, resolveHookTargetAgentId, resolveHookChannel, resolveHookDeliver, } from "./hooks.js";
 import { applyHookMappings } from "./hooks-mapping.js";
+import { sendUnauthorized } from "./http-common.js";
+import { getBearerToken, getHeader } from "./http-utils.js";
+import { resolveGatewayClientIp } from "./net.js";
 import { handleOpenAiHttpRequest } from "./openai-http.js";
 import { handleOpenResponsesHttpRequest } from "./openresponses-http.js";
 import { handleToolsInvokeHttpRequest } from "./tools-invoke-http.js";
@@ -15,6 +19,49 @@ function sendJson(res, status, body) {
     res.setHeader("Content-Type", "application/json; charset=utf-8");
     res.end(JSON.stringify(body));
 }
+function isCanvasPath(pathname) {
+    return (pathname === A2UI_PATH ||
+        pathname.startsWith(`${A2UI_PATH}/`) ||
+        pathname === CANVAS_HOST_PATH ||
+        pathname.startsWith(`${CANVAS_HOST_PATH}/`) ||
+        pathname === CANVAS_WS_PATH);
+}
+function hasAuthorizedWsClientForIp(clients, clientIp) {
+    for (const client of clients) {
+        if (client.clientIp && client.clientIp === clientIp) {
+            return true;
+        }
+    }
+    return false;
+}
+async function authorizeCanvasRequest(params) {
+    const { req, auth, trustedProxies, clients } = params;
+    if (isLocalDirectRequest(req, trustedProxies)) {
+        return true;
+    }
+    const token = getBearerToken(req);
+    if (token) {
+        const authResult = await authorizeGatewayConnect({
+            auth: { ...auth, allowTailscale: false },
+            connectAuth: { token, password: token },
+            req,
+            trustedProxies,
+        });
+        if (authResult.ok) {
+            return true;
+        }
+    }
+    const clientIp = resolveGatewayClientIp({
+        remoteAddr: req.socket?.remoteAddress ?? "",
+        forwardedFor: getHeader(req, "x-forwarded-for"),
+        realIp: getHeader(req, "x-real-ip"),
+        trustedProxies,
+    });
+    if (!clientIp) {
+        return false;
+    }
+    return hasAuthorizedWsClientForIp(clients, clientIp);
+}
 export function createHooksRequestHandler(opts) {
     const { getHooksConfig, bindHost, port, logHooks, dispatchAgentHook, dispatchWakeHook } = opts;
     return async (req, res) => {
@@ -26,6 +73,8 @@ export function createHooksRequestHandler(opts) {
         if (url.pathname !== basePath && !url.pathname.startsWith(`${basePath}/`)) {
             return false;
         }
+        // pool-bot keeps the deprecation-warning approach for query-param tokens
+        // (upstream hard-rejects; we warn and allow for now)
         const { token, fromQuery } = extractHookToken(req, url);
         if (!token || token !== hooksConfig.token) {
             res.statusCode = 401;
@@ -76,7 +125,14 @@ export function createHooksRequestHandler(opts) {
                 sendJson(res, 400, { ok: false, error: normalized.error });
                 return true;
             }
-            const runId = dispatchAgentHook(normalized.value);
+            if (!isHookAgentAllowed(hooksConfig, normalized.value.agentId)) {
+                sendJson(res, 400, { ok: false, error: getHookAgentPolicyError() });
+                return true;
+            }
+            const runId = dispatchAgentHook({
+                ...normalized.value,
+                agentId: resolveHookTargetAgentId(hooksConfig, normalized.value.agentId),
+            });
             sendJson(res, 202, { ok: true, runId });
             return true;
         }
@@ -111,9 +167,14 @@ export function createHooksRequestHandler(opts) {
                         sendJson(res, 400, { ok: false, error: getHookChannelError() });
                         return true;
                     }
+                    if (!isHookAgentAllowed(hooksConfig, mapped.action.agentId)) {
+                        sendJson(res, 400, { ok: false, error: getHookAgentPolicyError() });
+                        return true;
+                    }
                     const runId = dispatchAgentHook({
                         message: mapped.action.message,
                         name: mapped.action.name ?? "Hook",
+                        agentId: resolveHookTargetAgentId(hooksConfig, mapped.action.agentId),
                         wakeMode: mapped.action.wakeMode,
                         sessionKey: mapped.action.sessionKey ?? "",
                         deliver: resolveHookDeliver(mapped.action.deliver),
@@ -141,7 +202,7 @@ export function createHooksRequestHandler(opts) {
     };
 }
 export function createGatewayHttpServer(opts) {
-    const { canvasHost, controlUiEnabled, controlUiBasePath, openAiChatCompletionsEnabled, openResponsesEnabled, openResponsesConfig, handleHooksRequest, handlePluginRequest, resolvedAuth, } = opts;
+    const { canvasHost, clients, controlUiEnabled, controlUiBasePath, controlUiRoot, openAiChatCompletionsEnabled, openResponsesEnabled, openResponsesConfig, handleHooksRequest, handlePluginRequest, resolvedAuth, } = opts;
     const httpServer = opts.tlsOptions
         ? createHttpsServer(opts.tlsOptions, (req, res) => {
             void handleRequest(req, res);
@@ -183,6 +244,19 @@ export function createGatewayHttpServer(opts) {
                     return;
             }
             if (canvasHost) {
+                const url = new URL(req.url ?? "/", "http://localhost");
+                if (isCanvasPath(url.pathname)) {
+                    const ok = await authorizeCanvasRequest({
+                        req,
+                        auth: resolvedAuth,
+                        trustedProxies,
+                        clients,
+                    });
+                    if (!ok) {
+                        sendUnauthorized(res);
+                        return;
+                    }
+                }
                 if (await handleA2uiHttpRequest(req, res))
                     return;
                 if (await canvasHost.handleHttpRequest(req, res))
@@ -197,6 +271,7 @@ export function createGatewayHttpServer(opts) {
                 if (handleControlUiHttpRequest(req, res, {
                     basePath: controlUiBasePath,
                     config: configSnapshot,
+                    root: controlUiRoot,
                 }))
                     return;
             }
@@ -213,12 +288,35 @@ export function createGatewayHttpServer(opts) {
     return httpServer;
 }
 export function attachGatewayUpgradeHandler(opts) {
-    const { httpServer, wss, canvasHost } = opts;
+    const { httpServer, wss, canvasHost, clients, resolvedAuth } = opts;
     httpServer.on("upgrade", (req, socket, head) => {
-        if (canvasHost?.handleUpgrade(req, socket, head))
-            return;
-        wss.handleUpgrade(req, socket, head, (ws) => {
-            wss.emit("connection", ws, req);
+        void (async () => {
+            if (canvasHost) {
+                const url = new URL(req.url ?? "/", "http://localhost");
+                if (url.pathname === CANVAS_WS_PATH) {
+                    const configSnapshot = loadConfig();
+                    const trustedProxies = configSnapshot.gateway?.trustedProxies ?? [];
+                    const ok = await authorizeCanvasRequest({
+                        req,
+                        auth: resolvedAuth,
+                        trustedProxies,
+                        clients,
+                    });
+                    if (!ok) {
+                        socket.write("HTTP/1.1 401 Unauthorized\r\nConnection: close\r\n\r\n");
+                        socket.destroy();
+                        return;
+                    }
+                }
+                if (canvasHost.handleUpgrade(req, socket, head)) {
+                    return;
+                }
+            }
+            wss.handleUpgrade(req, socket, head, (ws) => {
+                wss.emit("connection", ws, req);
+            });
+        })().catch(() => {
+            socket.destroy();
         });
     });
 }

package/dist/gateway/server-methods/agent-timestamp.js ADDED Viewed

@@ -0,0 +1,60 @@
+import { resolveUserTimezone } from "../../agents/date-time.js";
+import { formatZonedTimestamp } from "../../infra/format-time/format-datetime.js";
+/**
+ * Cron jobs inject "Current time: ..." into their messages.
+ * Skip injection for those.
+ */
+const CRON_TIME_PATTERN = /Current time: /;
+/**
+ * Matches a leading `[... YYYY-MM-DD HH:MM ...]` envelope -- either from
+ * channel plugins or from a previous injection. Uses the same YYYY-MM-DD
+ * HH:MM format as {@link formatZonedTimestamp}, so detection stays in sync
+ * with the formatting.
+ */
+const TIMESTAMP_ENVELOPE_PATTERN = /^\[.*\d{4}-\d{2}-\d{2} \d{2}:\d{2}/;
+/**
+ * Injects a compact timestamp prefix into a message if one isn't already
+ * present. Uses the same `YYYY-MM-DD HH:MM TZ` format as channel envelope
+ * timestamps ({@link formatZonedTimestamp}), keeping token cost low (~7
+ * tokens) and format consistent across all agent contexts.
+ *
+ * Used by the gateway `agent` and `chat.send` handlers to give TUI, web,
+ * spawned subagents, `sessions_send`, and heartbeat wake events date/time
+ * awareness -- without modifying the system prompt (which is cached).
+ *
+ * Channel messages (Discord, Telegram, etc.) already have timestamps via
+ * envelope formatting and take a separate code path -- they never reach
+ * these handlers, so there is no double-stamping risk. The detection
+ * pattern is a safety net for edge cases.
+ */
+export function injectTimestamp(message, opts) {
+    if (!message.trim()) {
+        return message;
+    }
+    // Already has an envelope or injected timestamp
+    if (TIMESTAMP_ENVELOPE_PATTERN.test(message)) {
+        return message;
+    }
+    // Already has a cron-injected timestamp
+    if (CRON_TIME_PATTERN.test(message)) {
+        return message;
+    }
+    const now = opts?.now ?? new Date();
+    const timezone = opts?.timezone ?? "UTC";
+    const formatted = formatZonedTimestamp(now, { timeZone: timezone });
+    if (!formatted) {
+        return message;
+    }
+    // 3-letter DOW: small models (8B) can't reliably derive day-of-week from
+    // a date, and may treat a bare "Wed" as a typo. Costs ~1 token.
+    const dow = new Intl.DateTimeFormat("en-US", { timeZone: timezone, weekday: "short" }).format(now);
+    return `[${dow} ${formatted}] ${message}`;
+}
+/**
+ * Build TimestampInjectionOptions from a PoolBotConfig.
+ */
+export function timestampOptsFromConfig(cfg) {
+    return {
+        timezone: resolveUserTimezone(cfg.agents?.defaults?.userTimezone),
+    };
+}

package/dist/gateway/server-methods/agents.js CHANGED Viewed

@@ -1,6 +1,119 @@
-import { loadConfig } from "../../config/config.js";
-import { ErrorCodes, errorShape, formatValidationErrors, validateAgentsListParams, } from "../protocol/index.js";
+import fs from "node:fs/promises";
+import path from "node:path";
+import { listAgentIds, resolveAgentDir, resolveAgentWorkspaceDir, } from "../../agents/agent-scope.js";
+import { DEFAULT_AGENTS_FILENAME, DEFAULT_BOOTSTRAP_FILENAME, DEFAULT_HEARTBEAT_FILENAME, DEFAULT_IDENTITY_FILENAME, DEFAULT_MEMORY_ALT_FILENAME, DEFAULT_MEMORY_FILENAME, DEFAULT_SOUL_FILENAME, DEFAULT_TOOLS_FILENAME, DEFAULT_USER_FILENAME, ensureAgentWorkspace, } from "../../agents/workspace.js";
+import { movePathToTrash } from "../../browser/trash.js";
+import { applyAgentConfig, findAgentEntryIndex, listAgentEntries, pruneAgentConfig, } from "../../commands/agents.config.js";
+import { loadConfig, writeConfigFile } from "../../config/config.js";
+import { resolveSessionTranscriptsDirForAgent } from "../../config/sessions/paths.js";
+import { DEFAULT_AGENT_ID, normalizeAgentId } from "../../routing/session-key.js";
+import { resolveUserPath } from "../../utils.js";
+import { ErrorCodes, errorShape, formatValidationErrors, validateAgentsCreateParams, validateAgentsDeleteParams, validateAgentsFilesGetParams, validateAgentsFilesListParams, validateAgentsFilesSetParams, validateAgentsListParams, validateAgentsUpdateParams, } from "../protocol/index.js";
 import { listAgentsForGateway } from "../session-utils.js";
+const BOOTSTRAP_FILE_NAMES = [
+    DEFAULT_AGENTS_FILENAME,
+    DEFAULT_SOUL_FILENAME,
+    DEFAULT_TOOLS_FILENAME,
+    DEFAULT_IDENTITY_FILENAME,
+    DEFAULT_USER_FILENAME,
+    DEFAULT_HEARTBEAT_FILENAME,
+    DEFAULT_BOOTSTRAP_FILENAME,
+];
+const MEMORY_FILE_NAMES = [DEFAULT_MEMORY_FILENAME, DEFAULT_MEMORY_ALT_FILENAME];
+const ALLOWED_FILE_NAMES = new Set([...BOOTSTRAP_FILE_NAMES, ...MEMORY_FILE_NAMES]);
+async function statFile(filePath) {
+    try {
+        const stat = await fs.stat(filePath);
+        if (!stat.isFile()) {
+            return null;
+        }
+        return {
+            size: stat.size,
+            updatedAtMs: Math.floor(stat.mtimeMs),
+        };
+    }
+    catch {
+        return null;
+    }
+}
+async function listAgentFiles(workspaceDir) {
+    const files = [];
+    for (const name of BOOTSTRAP_FILE_NAMES) {
+        const filePath = path.join(workspaceDir, name);
+        const meta = await statFile(filePath);
+        if (meta) {
+            files.push({
+                name,
+                path: filePath,
+                missing: false,
+                size: meta.size,
+                updatedAtMs: meta.updatedAtMs,
+            });
+        }
+        else {
+            files.push({ name, path: filePath, missing: true });
+        }
+    }
+    const primaryMemoryPath = path.join(workspaceDir, DEFAULT_MEMORY_FILENAME);
+    const primaryMeta = await statFile(primaryMemoryPath);
+    if (primaryMeta) {
+        files.push({
+            name: DEFAULT_MEMORY_FILENAME,
+            path: primaryMemoryPath,
+            missing: false,
+            size: primaryMeta.size,
+            updatedAtMs: primaryMeta.updatedAtMs,
+        });
+    }
+    else {
+        const altMemoryPath = path.join(workspaceDir, DEFAULT_MEMORY_ALT_FILENAME);
+        const altMeta = await statFile(altMemoryPath);
+        if (altMeta) {
+            files.push({
+                name: DEFAULT_MEMORY_ALT_FILENAME,
+                path: altMemoryPath,
+                missing: false,
+                size: altMeta.size,
+                updatedAtMs: altMeta.updatedAtMs,
+            });
+        }
+        else {
+            files.push({ name: DEFAULT_MEMORY_FILENAME, path: primaryMemoryPath, missing: true });
+        }
+    }
+    return files;
+}
+function resolveAgentIdOrError(agentIdRaw, cfg) {
+    const agentId = normalizeAgentId(agentIdRaw);
+    const allowed = new Set(listAgentIds(cfg));
+    if (!allowed.has(agentId)) {
+        return null;
+    }
+    return agentId;
+}
+function sanitizeIdentityLine(value) {
+    return value.replace(/\s+/g, " ").trim();
+}
+function resolveOptionalStringParam(value) {
+    return typeof value === "string" && value.trim() ? value.trim() : undefined;
+}
+async function moveToTrashBestEffort(pathname) {
+    if (!pathname) {
+        return;
+    }
+    try {
+        await fs.access(pathname);
+    }
+    catch {
+        return;
+    }
+    try {
+        await movePathToTrash(pathname);
+    }
+    catch {
+        // Best-effort: path may already be gone or trash unavailable.
+    }
+}
 export const agentsHandlers = {
     "agents.list": ({ params, respond }) => {
         if (!validateAgentsListParams(params)) {
@@ -11,4 +124,210 @@ export const agentsHandlers = {
         const result = listAgentsForGateway(cfg);
         respond(true, result, undefined);
     },
+    "agents.create": async ({ params, respond }) => {
+        if (!validateAgentsCreateParams(params)) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `invalid agents.create params: ${formatValidationErrors(validateAgentsCreateParams.errors)}`));
+            return;
+        }
+        const cfg = loadConfig();
+        const rawName = String(params.name ?? "").trim();
+        const agentId = normalizeAgentId(rawName);
+        if (agentId === DEFAULT_AGENT_ID) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `"${DEFAULT_AGENT_ID}" is reserved`));
+            return;
+        }
+        if (findAgentEntryIndex(listAgentEntries(cfg), agentId) >= 0) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `agent "${agentId}" already exists`));
+            return;
+        }
+        const workspaceDir = resolveUserPath(String(params.workspace ?? "").trim());
+        // Resolve agentDir against the config we're about to persist (vs the pre-write config),
+        // so subsequent resolutions can't disagree about the agent's directory.
+        let nextConfig = applyAgentConfig(cfg, {
+            agentId,
+            name: rawName,
+            workspace: workspaceDir,
+        });
+        const agentDir = resolveAgentDir(nextConfig, agentId);
+        nextConfig = applyAgentConfig(nextConfig, { agentId, agentDir });
+        // Ensure workspace & transcripts exist BEFORE writing config so a failure
+        // here does not leave a broken config entry behind.
+        const skipBootstrap = Boolean(nextConfig.agents?.defaults?.skipBootstrap);
+        await ensureAgentWorkspace({ dir: workspaceDir, ensureBootstrapFiles: !skipBootstrap });
+        await fs.mkdir(resolveSessionTranscriptsDirForAgent(agentId), { recursive: true });
+        await writeConfigFile(nextConfig);
+        // Always write Name to IDENTITY.md; optionally include emoji/avatar.
+        const safeName = sanitizeIdentityLine(rawName);
+        const emoji = resolveOptionalStringParam(params.emoji);
+        const avatar = resolveOptionalStringParam(params.avatar);
+        const identityPath = path.join(workspaceDir, DEFAULT_IDENTITY_FILENAME);
+        const lines = [
+            "",
+            `- Name: ${safeName}`,
+            ...(emoji ? [`- Emoji: ${sanitizeIdentityLine(emoji)}`] : []),
+            ...(avatar ? [`- Avatar: ${sanitizeIdentityLine(avatar)}`] : []),
+            "",
+        ];
+        await fs.appendFile(identityPath, lines.join("\n"), "utf-8");
+        respond(true, { ok: true, agentId, name: rawName, workspace: workspaceDir }, undefined);
+    },
+    "agents.update": async ({ params, respond }) => {
+        if (!validateAgentsUpdateParams(params)) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `invalid agents.update params: ${formatValidationErrors(validateAgentsUpdateParams.errors)}`));
+            return;
+        }
+        const cfg = loadConfig();
+        const agentId = normalizeAgentId(String(params.agentId ?? ""));
+        if (findAgentEntryIndex(listAgentEntries(cfg), agentId) < 0) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `agent "${agentId}" not found`));
+            return;
+        }
+        const workspaceDir = typeof params.workspace === "string" && params.workspace.trim()
+            ? resolveUserPath(params.workspace.trim())
+            : undefined;
+        const model = resolveOptionalStringParam(params.model);
+        const avatar = resolveOptionalStringParam(params.avatar);
+        const nextConfig = applyAgentConfig(cfg, {
+            agentId,
+            ...(typeof params.name === "string" && params.name.trim()
+                ? { name: params.name.trim() }
+                : {}),
+            ...(workspaceDir ? { workspace: workspaceDir } : {}),
+            ...(model ? { model } : {}),
+        });
+        await writeConfigFile(nextConfig);
+        if (workspaceDir) {
+            const skipBootstrap = Boolean(nextConfig.agents?.defaults?.skipBootstrap);
+            await ensureAgentWorkspace({ dir: workspaceDir, ensureBootstrapFiles: !skipBootstrap });
+        }
+        if (avatar) {
+            const workspace = workspaceDir ?? resolveAgentWorkspaceDir(nextConfig, agentId);
+            await fs.mkdir(workspace, { recursive: true });
+            const identityPath = path.join(workspace, DEFAULT_IDENTITY_FILENAME);
+            await fs.appendFile(identityPath, `\n- Avatar: ${sanitizeIdentityLine(avatar)}\n`, "utf-8");
+        }
+        respond(true, { ok: true, agentId }, undefined);
+    },
+    "agents.delete": async ({ params, respond }) => {
+        if (!validateAgentsDeleteParams(params)) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `invalid agents.delete params: ${formatValidationErrors(validateAgentsDeleteParams.errors)}`));
+            return;
+        }
+        const cfg = loadConfig();
+        const agentId = normalizeAgentId(String(params.agentId ?? ""));
+        if (agentId === DEFAULT_AGENT_ID) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `"${DEFAULT_AGENT_ID}" cannot be deleted`));
+            return;
+        }
+        if (findAgentEntryIndex(listAgentEntries(cfg), agentId) < 0) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `agent "${agentId}" not found`));
+            return;
+        }
+        const deleteFiles = typeof params.deleteFiles === "boolean" ? params.deleteFiles : true;
+        const workspaceDir = resolveAgentWorkspaceDir(cfg, agentId);
+        const agentDir = resolveAgentDir(cfg, agentId);
+        const sessionsDir = resolveSessionTranscriptsDirForAgent(agentId);
+        const result = pruneAgentConfig(cfg, agentId);
+        await writeConfigFile(result.config);
+        if (deleteFiles) {
+            await Promise.all([
+                moveToTrashBestEffort(workspaceDir),
+                moveToTrashBestEffort(agentDir),
+                moveToTrashBestEffort(sessionsDir),
+            ]);
+        }
+        respond(true, { ok: true, agentId, removedBindings: result.removedBindings }, undefined);
+    },
+    "agents.files.list": async ({ params, respond }) => {
+        if (!validateAgentsFilesListParams(params)) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `invalid agents.files.list params: ${formatValidationErrors(validateAgentsFilesListParams.errors)}`));
+            return;
+        }
+        const cfg = loadConfig();
+        const agentId = resolveAgentIdOrError(String(params.agentId ?? ""), cfg);
+        if (!agentId) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, "unknown agent id"));
+            return;
+        }
+        const workspaceDir = resolveAgentWorkspaceDir(cfg, agentId);
+        const files = await listAgentFiles(workspaceDir);
+        respond(true, { agentId, workspace: workspaceDir, files }, undefined);
+    },
+    "agents.files.get": async ({ params, respond }) => {
+        if (!validateAgentsFilesGetParams(params)) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `invalid agents.files.get params: ${formatValidationErrors(validateAgentsFilesGetParams.errors)}`));
+            return;
+        }
+        const cfg = loadConfig();
+        const agentId = resolveAgentIdOrError(String(params.agentId ?? ""), cfg);
+        if (!agentId) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, "unknown agent id"));
+            return;
+        }
+        const name = String(params.name ?? "").trim();
+        if (!ALLOWED_FILE_NAMES.has(name)) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `unsupported file "${name}"`));
+            return;
+        }
+        const workspaceDir = resolveAgentWorkspaceDir(cfg, agentId);
+        const filePath = path.join(workspaceDir, name);
+        const meta = await statFile(filePath);
+        if (!meta) {
+            respond(true, {
+                agentId,
+                workspace: workspaceDir,
+                file: { name, path: filePath, missing: true },
+            }, undefined);
+            return;
+        }
+        const content = await fs.readFile(filePath, "utf-8");
+        respond(true, {
+            agentId,
+            workspace: workspaceDir,
+            file: {
+                name,
+                path: filePath,
+                missing: false,
+                size: meta.size,
+                updatedAtMs: meta.updatedAtMs,
+                content,
+            },
+        }, undefined);
+    },
+    "agents.files.set": async ({ params, respond }) => {
+        if (!validateAgentsFilesSetParams(params)) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `invalid agents.files.set params: ${formatValidationErrors(validateAgentsFilesSetParams.errors)}`));
+            return;
+        }
+        const cfg = loadConfig();
+        const agentId = resolveAgentIdOrError(String(params.agentId ?? ""), cfg);
+        if (!agentId) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, "unknown agent id"));
+            return;
+        }
+        const name = String(params.name ?? "").trim();
+        if (!ALLOWED_FILE_NAMES.has(name)) {
+            respond(false, undefined, errorShape(ErrorCodes.INVALID_REQUEST, `unsupported file "${name}"`));
+            return;
+        }
+        const workspaceDir = resolveAgentWorkspaceDir(cfg, agentId);
+        await fs.mkdir(workspaceDir, { recursive: true });
+        const filePath = path.join(workspaceDir, name);
+        const content = String(params.content ?? "");
+        await fs.writeFile(filePath, content, "utf-8");
+        const meta = await statFile(filePath);
+        respond(true, {
+            ok: true,
+            agentId,
+            workspace: workspaceDir,
+            file: {
+                name,
+                path: filePath,
+                missing: false,
+                size: meta?.size,
+                updatedAtMs: meta?.updatedAtMs,
+                content,
+            },
+        }, undefined);
+    },
 };