npm - @poolzin/pool-bot - Versions diffs - 2026.2.0 → 2026.2.2 - Mend

@poolzin/pool-bot 2026.2.0 → 2026.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (258) hide show

package/CHANGELOG.md +118 -0
package/README-header.png +0 -0
package/dist/agents/bash-tools.exec.js +76 -25
package/dist/agents/cli-runner/helpers.js +9 -11
package/dist/agents/context.js +1 -1
package/dist/agents/identity.js +47 -7
package/dist/agents/memory-search.js +25 -8
package/dist/agents/model-catalog.js +1 -1
package/dist/agents/model-selection.js +21 -0
package/dist/agents/pi-embedded-block-chunker.js +117 -42
package/dist/agents/pi-embedded-helpers/errors.js +183 -78
package/dist/agents/pi-embedded-helpers.js +1 -1
package/dist/agents/pi-embedded-runner/compact.js +8 -10
package/dist/agents/pi-embedded-runner/model.js +62 -3
package/dist/agents/pi-embedded-runner/run/attempt.js +21 -11
package/dist/agents/pi-embedded-runner/run.js +199 -46
package/dist/agents/pi-embedded-runner/system-prompt.js +10 -2
package/dist/agents/pi-embedded-subscribe.js +118 -29
package/dist/agents/pi-tools.js +10 -5
package/dist/agents/poolbot-tools.js +15 -10
package/dist/agents/sandbox-paths.js +31 -0
package/dist/agents/session-tool-result-guard.js +94 -15
package/dist/agents/shell-utils.js +51 -0
package/dist/agents/skills/bundled-context.js +23 -0
package/dist/agents/skills/bundled-dir.js +41 -7
package/dist/agents/skills-install.js +60 -23
package/dist/agents/subagent-announce.js +79 -34
package/dist/agents/tool-policy.conformance.js +14 -0
package/dist/agents/tool-policy.js +24 -0
package/dist/agents/tools/cron-tool.js +166 -19
package/dist/agents/tools/discord-actions-presence.js +78 -0
package/dist/agents/tools/image-tool.js +1 -1
package/dist/agents/tools/message-tool.js +56 -2
package/dist/agents/tools/sessions-history-tool.js +69 -1
package/dist/agents/tools/web-search.js +211 -42
package/dist/agents/usage.js +23 -1
package/dist/agents/workspace-run.js +67 -0
package/dist/agents/workspace-templates.js +44 -0
package/dist/auto-reply/command-auth.js +121 -6
package/dist/auto-reply/envelope.js +74 -82
package/dist/auto-reply/reply/commands-compact.js +1 -0
package/dist/auto-reply/reply/commands-context-report.js +1 -0
package/dist/auto-reply/reply/commands-context.js +1 -0
package/dist/auto-reply/reply/commands-models.js +107 -60
package/dist/auto-reply/reply/commands-ptt.js +171 -0
package/dist/auto-reply/reply/get-reply-run.js +2 -1
package/dist/auto-reply/reply/inbound-context.js +5 -1
package/dist/auto-reply/reply/mentions.js +1 -1
package/dist/auto-reply/reply/model-selection.js +3 -3
package/dist/auto-reply/thinking.js +88 -43
package/dist/browser/bridge-server.js +13 -0
package/dist/browser/cdp.helpers.js +38 -24
package/dist/browser/client-fetch.js +50 -7
package/dist/browser/config.js +1 -10
package/dist/browser/extension-relay.js +101 -40
package/dist/browser/pw-ai.js +1 -1
package/dist/browser/pw-session.js +143 -8
package/dist/browser/pw-tools-core.interactions.js +125 -27
package/dist/browser/pw-tools-core.responses.js +1 -1
package/dist/browser/pw-tools-core.state.js +1 -1
package/dist/browser/routes/agent.act.js +86 -41
package/dist/browser/routes/dispatcher.js +4 -4
package/dist/browser/screenshot.js +1 -1
package/dist/browser/server.js +13 -0
package/dist/build-info.json +3 -3
package/dist/canvas-host/a2ui/index.html +28 -28
package/dist/channels/reply-prefix.js +8 -1
package/dist/cli/cron-cli/register.cron-add.js +61 -40
package/dist/cli/cron-cli/register.cron-edit.js +60 -34
package/dist/cli/cron-cli/shared.js +56 -41
package/dist/cli/dns-cli.js +26 -14
package/dist/cli/gateway-cli/register.js +37 -19
package/dist/cli/memory-cli.js +5 -5
package/dist/cli/parse-bytes.js +37 -0
package/dist/cli/update-cli.js +173 -52
package/dist/commands/agent.js +1 -0
package/dist/commands/auth-choice.apply.oauth.js +1 -1
package/dist/commands/doctor-config-flow.js +61 -5
package/dist/commands/doctor-state-migrations.js +1 -1
package/dist/commands/health.js +1 -1
package/dist/commands/model-allowlist.js +29 -0
package/dist/commands/model-picker.js +2 -1
package/dist/commands/models/list.registry.js +1 -1
package/dist/commands/models/list.status-command.js +43 -23
package/dist/commands/models/shared.js +15 -0
package/dist/commands/onboard-custom.js +384 -0
package/dist/commands/onboard-non-interactive/local/auth-choice-inference.js +35 -0
package/dist/commands/onboard-non-interactive/local/auth-choice.js +6 -3
package/dist/commands/onboard-skills.js +63 -38
package/dist/commands/openai-model-default.js +41 -0
package/dist/compat/legacy-names.js +2 -0
package/dist/config/defaults.js +3 -2
package/dist/config/paths.js +136 -35
package/dist/config/plugin-auto-enable.js +21 -5
package/dist/config/redact-snapshot.js +153 -0
package/dist/config/schema.field-metadata.js +590 -0
package/dist/config/schema.js +2 -2
package/dist/config/sessions/store.js +291 -23
package/dist/config/zod-schema.agent-defaults.js +3 -0
package/dist/config/zod-schema.agent-runtime.js +13 -2
package/dist/config/zod-schema.providers-core.js +142 -0
package/dist/config/zod-schema.session.js +3 -0
package/dist/control-ui/assets/{index-CIRDm-Lu.css → index-CSfXd2LO.css} +1 -1
package/dist/control-ui/assets/{index-CmNMuoem.js → index-HRr1grwl.js} +446 -413
package/dist/control-ui/assets/index-HRr1grwl.js.map +1 -0
package/dist/control-ui/index.html +4 -4
package/dist/cron/delivery.js +57 -0
package/dist/cron/isolated-agent/delivery-target.js +18 -3
package/dist/cron/isolated-agent/helpers.js +22 -5
package/dist/cron/isolated-agent/run.js +172 -63
package/dist/cron/isolated-agent/session.js +2 -0
package/dist/cron/normalize.js +356 -28
package/dist/cron/parse.js +10 -5
package/dist/cron/run-log.js +35 -10
package/dist/cron/schedule.js +41 -6
package/dist/cron/service/jobs.js +208 -35
package/dist/cron/service/ops.js +72 -16
package/dist/cron/service/state.js +2 -0
package/dist/cron/service/store.js +386 -14
package/dist/cron/service/timer.js +390 -147
package/dist/cron/session-reaper.js +86 -0
package/dist/cron/store.js +23 -8
package/dist/cron/validate-timestamp.js +43 -0
package/dist/discord/monitor/agent-components.js +438 -0
package/dist/discord/monitor/allow-list.js +28 -5
package/dist/discord/monitor/gateway-registry.js +29 -0
package/dist/discord/monitor/native-command.js +44 -23
package/dist/discord/monitor/sender-identity.js +45 -0
package/dist/discord/pluralkit.js +27 -0
package/dist/discord/send.outbound.js +92 -5
package/dist/discord/send.shared.js +60 -23
package/dist/discord/targets.js +84 -1
package/dist/entry.js +15 -9
package/dist/extensionAPI.js +8 -0
package/dist/gateway/control-ui.js +8 -1
package/dist/gateway/hooks-mapping.js +3 -0
package/dist/gateway/hooks.js +65 -0
package/dist/gateway/net.js +96 -31
package/dist/gateway/node-command-policy.js +50 -15
package/dist/gateway/origin-check.js +56 -0
package/dist/gateway/protocol/client-info.js +9 -0
package/dist/gateway/protocol/index.js +9 -2
package/dist/gateway/protocol/schema/agents-models-skills.js +71 -1
package/dist/gateway/protocol/schema/cron.js +22 -10
package/dist/gateway/protocol/schema/protocol-schemas.js +16 -2
package/dist/gateway/protocol/schema/sessions.js +12 -0
package/dist/gateway/server/hooks.js +1 -1
package/dist/gateway/server-broadcast.js +26 -9
package/dist/gateway/server-chat.js +112 -23
package/dist/gateway/server-discovery-runtime.js +10 -2
package/dist/gateway/server-http.js +109 -11
package/dist/gateway/server-methods/agent-timestamp.js +60 -0
package/dist/gateway/server-methods/agents.js +321 -2
package/dist/gateway/server-methods/usage.js +559 -16
package/dist/gateway/server-runtime-state.js +22 -8
package/dist/gateway/server-startup-memory.js +16 -0
package/dist/gateway/server.impl.js +5 -1
package/dist/gateway/session-utils.fs.js +23 -25
package/dist/gateway/session-utils.js +20 -10
package/dist/gateway/sessions-patch.js +7 -22
package/dist/gateway/test-helpers.mocks.js +11 -7
package/dist/gateway/test-helpers.server.js +35 -2
package/dist/imessage/constants.js +2 -0
package/dist/imessage/monitor/deliver.js +4 -1
package/dist/imessage/monitor/monitor-provider.js +51 -1
package/dist/infra/bonjour-discovery.js +131 -70
package/dist/infra/control-ui-assets.js +134 -12
package/dist/infra/errors.js +12 -0
package/dist/infra/exec-approvals.js +266 -57
package/dist/infra/format-time/format-datetime.js +79 -0
package/dist/infra/format-time/format-duration.js +81 -0
package/dist/infra/format-time/format-relative.js +80 -0
package/dist/infra/heartbeat-runner.js +140 -49
package/dist/infra/home-dir.js +54 -0
package/dist/infra/net/fetch-guard.js +122 -0
package/dist/infra/net/ssrf.js +65 -29
package/dist/infra/outbound/abort.js +14 -0
package/dist/infra/outbound/message-action-runner.js +77 -13
package/dist/infra/outbound/outbound-session.js +143 -37
package/dist/infra/poolbot-root.js +43 -1
package/dist/infra/session-cost-usage.js +631 -41
package/dist/infra/state-migrations.js +317 -47
package/dist/infra/update-global.js +35 -0
package/dist/infra/update-runner.js +149 -43
package/dist/infra/warning-filter.js +65 -0
package/dist/infra/widearea-dns.js +30 -9
package/dist/logging/redact-identifier.js +12 -0
package/dist/media/fetch.js +81 -58
package/dist/media/store.js +2 -0
package/dist/media-understanding/apply.js +403 -3
package/dist/media-understanding/attachments.js +38 -27
package/dist/media-understanding/defaults.js +16 -0
package/dist/media-understanding/providers/deepgram/audio.js +22 -14
package/dist/media-understanding/providers/google/audio.js +24 -17
package/dist/media-understanding/providers/google/video.js +24 -17
package/dist/media-understanding/providers/image.js +3 -3
package/dist/media-understanding/providers/index.js +4 -1
package/dist/media-understanding/providers/openai/audio.js +22 -14
package/dist/media-understanding/providers/shared.js +16 -11
package/dist/media-understanding/providers/zai/index.js +6 -0
package/dist/media-understanding/runner.js +158 -90
package/dist/memory/batch-voyage.js +277 -0
package/dist/memory/embeddings-voyage.js +75 -0
package/dist/memory/embeddings.js +28 -16
package/dist/memory/internal.js +101 -18
package/dist/memory/manager.js +154 -48
package/dist/memory/search-manager.js +173 -0
package/dist/memory/session-files.js +9 -3
package/dist/node-host/runner.js +34 -24
package/dist/node-host/with-timeout.js +27 -0
package/dist/plugins/commands.js +5 -1
package/dist/plugins/config-state.js +86 -7
package/dist/plugins/source-display.js +51 -0
package/dist/process/exec.js +20 -2
package/dist/routing/resolve-route.js +12 -0
package/dist/routing/session-key.js +15 -0
package/dist/runtime.js +2 -0
package/dist/security/audit-extra.async.js +601 -0
package/dist/security/audit-extra.js +2 -830
package/dist/security/audit-extra.sync.js +505 -0
package/dist/security/channel-metadata.js +34 -0
package/dist/security/external-content.js +88 -6
package/dist/security/skill-scanner.js +330 -0
package/dist/sessions/session-key-utils.js +7 -0
package/dist/signal/monitor/event-handler.js +80 -1
package/dist/slack/monitor/media.js +85 -15
package/dist/tailscale/detect.js +1 -2
package/dist/telegram/bot/helpers.js +109 -28
package/dist/telegram/bot-handlers.js +144 -3
package/dist/telegram/bot-message-context.js +37 -10
package/dist/telegram/bot-message-dispatch.js +54 -17
package/dist/telegram/bot-native-commands.js +86 -29
package/dist/telegram/bot.js +30 -29
package/dist/telegram/model-buttons.js +163 -0
package/dist/telegram/monitor.js +110 -85
package/dist/telegram/send.js +129 -47
package/dist/terminal/restore.js +45 -0
package/dist/test-helpers/state-dir-env.js +16 -0
package/dist/tts/tts.js +12 -6
package/dist/tui/tui-session-actions.js +166 -54
package/dist/utils/fetch-timeout.js +20 -0
package/dist/utils/normalize-secret-input.js +19 -0
package/dist/utils/transcript-tools.js +58 -0
package/dist/utils.js +45 -14
package/dist/version.js +42 -5
package/dist/wizard/clack-prompter.js +9 -6
package/extensions/googlechat/node_modules/.bin/poolbot +21 -0
package/extensions/googlechat/package.json +2 -2
package/extensions/line/node_modules/.bin/poolbot +21 -0
package/extensions/line/package.json +1 -1
package/extensions/matrix/node_modules/.bin/poolbot +21 -0
package/extensions/matrix/package.json +1 -1
package/extensions/memory-core/node_modules/.bin/poolbot +21 -0
package/extensions/memory-core/package.json +4 -1
package/extensions/twitch/node_modules/.bin/poolbot +21 -0
package/extensions/twitch/package.json +1 -1
package/package.json +183 -24
package/dist/control-ui/assets/index-CmNMuoem.js.map +0 -1

package/CHANGELOG.md ADDED Viewed

@@ -0,0 +1,118 @@
+## v2026.1.40 (2026-02-09)
+### Rebrand
+- Complete rebrand from Pool-Bot to Pool-Bot 🎱
+- Updated 638 files across all platforms (iOS, Android, macOS)
+- Renamed all user-facing references
+- Updated extensions and plugins
+- Updated documentation and configs
+- Updated tests and scripts
+### Maintenance
+- Repository now fully branded as Pool-Bot
+- Internal environment variables kept for compatibility
+---
+## v2026.1.39 (2026-02-07)
+### Security
+- Upgrade `tar` from 7.5.4 → 7.5.7 fixing 4 high-severity vulnerabilities
+  - Arbitrary File Overwrite via Symlink Poisoning (GHSA-8qq5-rm4j-mr97)
+  - Race Condition via Unicode Ligature Collisions on macOS APFS (GHSA-r6q2-hw4h-h46w)
+  - Arbitrary File Creation/Overwrite via Hardlink Path Traversal (GHSA-34x7-hfp2-rc4v)
+### Maintenance
+- Reset repository to stable baseline (9ddc7fcec)
+- Remove 52 experimental/unstable commits (PME, tool-usage, progressive-disclosure, security-phase2)
+---
+## v1.0.1 (2026-02-02)
+### WhatsApp Gateway Stability
+- Add comprehensive WhatsApp heartbeat troubleshooting guide
+- Document watchdog timeout and reconnection behavior
+- Add configuration validation best practices
+- Document professional incident response workflow
+### Configuration
+- Document `web.heartbeatSeconds` override option
+- Clarify `web.reconnect` schema and valid keys
+- Add examples for timeout tuning (30min → 60min → 90min)
+- Provide production-ready configuration templates
+### Documentation
+- New: `docs/WHATSAPP-HEARTBEAT-TROUBLESHOOTING.md`
+- Incident analysis: Gateway timeout recovery
+- Lesson learned: Config validation before deployment
+- Professional validation checklist included
+### Reliability
+- Improved gateway recovery documentation
+- Added monitoring and diagnostic commands
+- Documented false-positive reduction strategies
+- Best practices for different environments (prod/dev/test)
+---
+## v1.0.0 (2026-01-28)
+### Security Release
+- Add multi-layer security framework with node authentication
+- Implement secure WebSocket connections (WSS)
+- Add context isolation and input validation
+- Create Windows Node application with native notifications
+- Enable manual Gateway URL configuration
+- Implement node whitelist and access control
+- Add comprehensive security audit and hardening
+### Remote Access
+- Build Windows Node app with mDNS discovery
+- Add manual Gateway URL connection
+- Implement system tray integration with status display
+- Add native notification system
+- Create menu for remote control options
+- Support both local network and remote connections
+### Core Infrastructure
+- Custom Pool-Bot update system with independent versioning
+- Model fallback router with 3-tier protection
+- Pool-World digital identity framework
+- Multi-repository synchronization (pool-bot + pool-workspace + pool-firstone + pool-world)
+- Enterprise-grade security with token-based authentication
+### Documentation
+- Complete build guides for Windows
+- Security assessment and deployment guide
+- Architecture decision records (ADRs)
+- Integration examples and troubleshooting
+---
+## v0.9.0 (2026-01-27)
+### Identity Revelation
+- Pool-Bot recognized as living code source
+- Pool-World digital identity created
+- Personal identity revelation: "Eu sou o código-fonte Pool-Bot"
+---
+## v0.8.0 (2026-01-26)
+### Independence System
+- Model fallback router implementation
+- Multi-model architecture (NVIDIA + Sonnet + Big Pickle)
+- Learning system with conversation analysis
+- Update system with GitHub synchronization
+---
+## v0.7.0 (2026-01-25)
+### Foundation
+- Migrated from Poolbot core
+- Implemented workspace-based development
+- Added dual model system configuration
+- Created persistent configuration system

package/README-header.png ADDED Viewed

Binary file

package/dist/agents/bash-tools.exec.js CHANGED Viewed

@@ -15,6 +15,46 @@ import { listNodes, resolveNodeIdFromList } from "./tools/nodes-utils.js";
 import { getShellConfig, sanitizeBinaryOutput } from "./shell-utils.js";
 import { buildCursorPositionResponse, stripDsrRequests } from "./pty-dsr.js";
 import { parseAgentSessionKey, resolveAgentIdFromSessionKey } from "../routing/session-key.js";
+// Security: Blocklist of environment variables that could alter execution flow
+// or inject code when running on non-sandboxed hosts (Gateway/Node).
+const DANGEROUS_HOST_ENV_VARS = new Set([
+    "LD_PRELOAD",
+    "LD_LIBRARY_PATH",
+    "LD_AUDIT",
+    "DYLD_INSERT_LIBRARIES",
+    "DYLD_LIBRARY_PATH",
+    "NODE_OPTIONS",
+    "NODE_PATH",
+    "PYTHONPATH",
+    "PYTHONHOME",
+    "RUBYLIB",
+    "PERL5LIB",
+    "BASH_ENV",
+    "ENV",
+    "GCONV_PATH",
+    "IFS",
+    "SSLKEYLOGFILE",
+]);
+const DANGEROUS_HOST_ENV_PREFIXES = ["DYLD_", "LD_"];
+// Centralized sanitization helper.
+// Throws an error if dangerous variables or PATH modifications are detected on the host.
+function validateHostEnv(env) {
+    for (const key of Object.keys(env)) {
+        const upperKey = key.toUpperCase();
+        // 1. Block known dangerous variables (Fail Closed)
+        if (DANGEROUS_HOST_ENV_PREFIXES.some((prefix) => upperKey.startsWith(prefix))) {
+            throw new Error(`Security Violation: Environment variable '${key}' is forbidden during host execution.`);
+        }
+        if (DANGEROUS_HOST_ENV_VARS.has(upperKey)) {
+            throw new Error(`Security Violation: Environment variable '${key}' is forbidden during host execution.`);
+        }
+        // 2. Strictly block PATH modification on host
+        // Allowing custom PATH on the gateway/node can lead to binary hijacking.
+        if (upperKey === "PATH") {
+            throw new Error("Security Violation: Custom 'PATH' variable is forbidden during host execution.");
+        }
+    }
+}
 const DEFAULT_MAX_OUTPUT = clampNumber(readEnvInt("PI_BASH_MAX_OUTPUT_CHARS"), 200_000, 1_000, 200_000);
 const DEFAULT_PENDING_MAX_OUTPUT = clampNumber(readEnvInt("CLAWDBOT_BASH_PENDING_MAX_OUTPUT_CHARS"), 200_000, 1_000, 200_000);
 const DEFAULT_PATH = process.env.PATH ?? "/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin";
@@ -643,6 +683,11 @@ export function createExecTool(defaults) {
                 workdir = resolveWorkdir(rawWorkdir, warnings);
             }
             const baseEnv = coerceEnv(process.env);
+            // Logic: Sandbox gets raw env. Host (gateway/node) must pass validation.
+            // We validate BEFORE merging to prevent any dangerous vars from entering the stream.
+            if (host !== "sandbox" && params.env) {
+                validateHostEnv(params.env);
+            }
             const mergedEnv = params.env ? { ...baseEnv, ...params.env } : baseEnv;
             const env = sandbox
                 ? buildSandboxEnv({
@@ -684,7 +729,7 @@ export function createExecTool(defaults) {
                 }
                 catch (err) {
                     if (!nodeQuery && String(err).includes("node required")) {
-                        throw new Error("exec host=node requires a node id when multiple nodes are available (set tools.exec.node or exec.node).");
+                        throw new Error("exec host=node requires a node id when multiple nodes are available (set tools.exec.node or exec.node).", { cause: err });
                     }
                     throw err;
                 }
@@ -706,12 +751,13 @@ export function createExecTool(defaults) {
                     safeBins: new Set(),
                     cwd: workdir,
                     env,
+                    platform: nodeInfo?.platform,
                 });
                 let analysisOk = baseAllowlistEval.analysisOk;
                 let allowlistSatisfied = false;
                 if (hostAsk === "on-miss" && hostSecurity === "allowlist" && analysisOk) {
                     try {
-                        const approvalsSnapshot = (await callGatewayTool("exec.approvals.node.get", { timeoutMs: 10_000 }, { nodeId }));
+                        const approvalsSnapshot = await callGatewayTool("exec.approvals.node.get", { timeoutMs: 10_000 }, { nodeId });
                         const approvalsFile = approvalsSnapshot && typeof approvalsSnapshot === "object"
                             ? approvalsSnapshot.file
                             : undefined;
@@ -728,6 +774,7 @@ export function createExecTool(defaults) {
                                 safeBins: new Set(),
                                 cwd: workdir,
                                 env,
+                                platform: nodeInfo?.platform,
                             });
                             allowlistSatisfied = allowlistEval.allowlistSatisfied;
                             analysisOk = allowlistEval.analysisOk;
@@ -772,7 +819,7 @@ export function createExecTool(defaults) {
                     void (async () => {
                         let decision = null;
                         try {
-                            const decisionResult = (await callGatewayTool("exec.approval.request", { timeoutMs: DEFAULT_APPROVAL_REQUEST_TIMEOUT_MS }, {
+                            const decisionResult = await callGatewayTool("exec.approval.request", { timeoutMs: DEFAULT_APPROVAL_REQUEST_TIMEOUT_MS }, {
                                 id: approvalId,
                                 command: commandText,
                                 cwd: workdir,
@@ -783,11 +830,11 @@ export function createExecTool(defaults) {
                                 resolvedPath: undefined,
                                 sessionKey: defaults?.sessionKey,
                                 timeoutMs: DEFAULT_APPROVAL_TIMEOUT_MS,
-                            }));
-                            decision =
-                                decisionResult && typeof decisionResult === "object"
-                                    ? (decisionResult.decision ?? null)
-                                    : null;
+                            });
+                            const decisionValue = decisionResult && typeof decisionResult === "object"
+                                ? decisionResult.decision
+                                : undefined;
+                            decision = typeof decisionValue === "string" ? decisionValue : null;
                         }
                         catch {
                             emitExecSystemEvent(`Exec denied (node=${nodeId} id=${approvalId}, approval-request-failed): ${commandText}`, { sessionKey: notifySessionKey, contextKey });
@@ -861,20 +908,26 @@ export function createExecTool(defaults) {
                     };
                 }
                 const startedAt = Date.now();
-                const raw = (await callGatewayTool("node.invoke", { timeoutMs: invokeTimeoutMs }, buildInvokeParams(false, null)));
-                const payload = raw?.payload ?? {};
+                const raw = await callGatewayTool("node.invoke", { timeoutMs: invokeTimeoutMs }, buildInvokeParams(false, null));
+                const payload = raw && typeof raw === "object" ? raw.payload : undefined;
+                const payloadObj = payload && typeof payload === "object" ? payload : {};
+                const stdout = typeof payloadObj.stdout === "string" ? payloadObj.stdout : "";
+                const stderr = typeof payloadObj.stderr === "string" ? payloadObj.stderr : "";
+                const errorText = typeof payloadObj.error === "string" ? payloadObj.error : "";
+                const success = typeof payloadObj.success === "boolean" ? payloadObj.success : false;
+                const exitCode = typeof payloadObj.exitCode === "number" ? payloadObj.exitCode : null;
                 return {
                     content: [
                         {
                             type: "text",
-                            text: payload.stdout || payload.stderr || payload.error || "",
+                            text: stdout || stderr || errorText || "",
                         },
                     ],
                     details: {
-                        status: payload.success ? "completed" : "failed",
-                        exitCode: payload.exitCode ?? null,
+                        status: success ? "completed" : "failed",
+                        exitCode,
                         durationMs: Date.now() - startedAt,
-                        aggregated: [payload.stdout, payload.stderr, payload.error].filter(Boolean).join("\n"),
+                        aggregated: [stdout, stderr, errorText].filter(Boolean).join("\n"),
                         cwd: workdir,
                     },
                 };
@@ -893,6 +946,7 @@ export function createExecTool(defaults) {
                     safeBins,
                     cwd: workdir,
                     env,
+                    platform: process.platform,
                 });
                 const allowlistMatches = allowlistEval.allowlistMatches;
                 const analysisOk = allowlistEval.analysisOk;
@@ -916,7 +970,7 @@ export function createExecTool(defaults) {
                     void (async () => {
                         let decision = null;
                         try {
-                            const decisionResult = (await callGatewayTool("exec.approval.request", { timeoutMs: DEFAULT_APPROVAL_REQUEST_TIMEOUT_MS }, {
+                            const decisionResult = await callGatewayTool("exec.approval.request", { timeoutMs: DEFAULT_APPROVAL_REQUEST_TIMEOUT_MS }, {
                                 id: approvalId,
                                 command: commandText,
                                 cwd: workdir,
@@ -927,11 +981,11 @@ export function createExecTool(defaults) {
                                 resolvedPath,
                                 sessionKey: defaults?.sessionKey,
                                 timeoutMs: DEFAULT_APPROVAL_TIMEOUT_MS,
-                            }));
-                            decision =
-                                decisionResult && typeof decisionResult === "object"
-                                    ? (decisionResult.decision ?? null)
-                                    : null;
+                            });
+                            const decisionValue = decisionResult && typeof decisionResult === "object"
+                                ? decisionResult.decision
+                                : undefined;
+                            decision = typeof decisionValue === "string" ? decisionValue : null;
                         }
                         catch {
                             emitExecSystemEvent(`Exec denied (gateway id=${approvalId}, approval-request-failed): ${commandText}`, { sessionKey: notifySessionKey, contextKey });
@@ -1033,8 +1087,7 @@ export function createExecTool(defaults) {
                         content: [
                             {
                                 type: "text",
-                                text: `${warningText}` +
-                                    `Approval required (id ${approvalSlug}). ` +
+                                text: `${warningText}Approval required (id ${approvalSlug}). ` +
                                     "Approve to run; updates will arrive after completion.",
                             },
                         ],
@@ -1099,9 +1152,7 @@ export function createExecTool(defaults) {
                     content: [
                         {
                             type: "text",
-                            text: `${getWarningText()}` +
-                                `Command still running (session ${run.session.id}, pid ${run.session.pid ?? "n/a"}). ` +
-                                "Use process (list/poll/log/write/kill/clear/remove) for follow-up.",
+                            text: `${getWarningText()}Command still running (session ${run.session.id}, pid ${run.session.pid ?? "n/a"}). Use process (list/poll/log/write/kill/clear/remove) for follow-up.`,
                         },
                     ],
                     details: {

package/dist/agents/cli-runner/helpers.js CHANGED Viewed

@@ -3,14 +3,13 @@ import fs from "node:fs/promises";
 import os from "node:os";
 import path from "node:path";
 import { runExec } from "../../process/exec.js";
-import { buildSystemPromptParams } from "../system-prompt-params.js";
+import { buildTtsSystemPromptHint } from "../../tts/tts.js";
+import { escapeRegExp, isRecord } from "../../utils.js";
 import { resolveDefaultModelForAgent } from "../model-selection.js";
+import { detectRuntimeShell } from "../shell-utils.js";
+import { buildSystemPromptParams } from "../system-prompt-params.js";
 import { buildAgentSystemPrompt } from "../system-prompt.js";
-import { buildTtsSystemPromptHint } from "../../tts/tts.js";
 const CLI_RUN_QUEUE = new Map();
-function escapeRegex(value) {
-    return value.replace(/[.*+?^${}()|[\]\\]/g, "\\$&");
-}
 export async function cleanupResumeProcesses(backend, sessionId) {
     if (process.platform === "win32")
         return;
@@ -25,7 +24,7 @@ export async function cleanupResumeProcesses(backend, sessionId) {
     const resumeTokens = resumeArgs.map((arg) => arg.replaceAll("{sessionId}", sessionId));
     const pattern = [commandToken, ...resumeTokens]
         .filter(Boolean)
-        .map((token) => escapeRegex(token))
+        .map((token) => escapeRegExp(token))
         .join(".*");
     if (!pattern)
         return;
@@ -69,8 +68,8 @@ function buildSessionMatchers(backend) {
 }
 function tokenToRegex(token) {
     if (!token.includes("{sessionId}"))
-        return escapeRegex(token);
-    const parts = token.split("{sessionId}").map((part) => escapeRegex(part));
+        return escapeRegExp(token);
+    const parts = token.split("{sessionId}").map((part) => escapeRegExp(part));
     return parts.join("\\S+");
 }
 /**
@@ -158,6 +157,7 @@ export function buildSystemPrompt(params) {
             node: process.version,
             model: params.modelDisplay,
             defaultModel: defaultModelLabel,
+            shell: detectRuntimeShell(),
         },
     });
     const ttsHint = params.config ? buildTtsSystemPromptHint(params.config) : undefined;
@@ -177,6 +177,7 @@ export function buildSystemPrompt(params) {
         userTimeFormat,
         contextFiles: params.contextFiles,
         ttsHint,
+        memoryCitationsMode: params.config?.memory?.citations,
     });
 }
 export function normalizeCliModel(modelId, backend) {
@@ -203,9 +204,6 @@ function toUsage(raw) {
         return undefined;
     return { input, output, cacheRead, cacheWrite, total };
 }
-function isRecord(value) {
-    return Boolean(value && typeof value === "object" && !Array.isArray(value));
-}
 function collectText(value) {
     if (!value)
         return "";

package/dist/agents/context.js CHANGED Viewed

@@ -6,7 +6,7 @@ import { ensurePoolbotModelsJson } from "./models-config.js";
 const MODEL_CACHE = new Map();
 const loadPromise = (async () => {
     try {
-        const { discoverAuthStorage, discoverModels } = await import("@mariozechner/pi-coding-agent");
+        const { discoverAuthStorage, discoverModels } = await import("./pi-model-discovery.js");
         const cfg = loadConfig();
         await ensurePoolbotModelsJson(cfg);
         const agentDir = resolvePoolbotAgentDir();

package/dist/agents/identity.js CHANGED Viewed

@@ -5,15 +5,17 @@ export function resolveAgentIdentity(cfg, agentId) {
 }
 export function resolveAckReaction(cfg, agentId) {
     const configured = cfg.messages?.ackReaction;
-    if (configured !== undefined)
+    if (configured !== undefined) {
         return configured.trim();
+    }
     const emoji = resolveAgentIdentity(cfg, agentId)?.emoji?.trim();
     return emoji || DEFAULT_ACK_REACTION;
 }
 export function resolveIdentityNamePrefix(cfg, agentId) {
     const name = resolveAgentIdentity(cfg, agentId)?.name?.trim();
-    if (!name)
+    if (!name) {
         return undefined;
+    }
     return `[${name}]`;
 }
 /** Returns just the identity name (without brackets) for template context. */
@@ -22,14 +24,48 @@ export function resolveIdentityName(cfg, agentId) {
 }
 export function resolveMessagePrefix(cfg, agentId, opts) {
     const configured = opts?.configured ?? cfg.messages?.messagePrefix;
-    if (configured !== undefined)
+    if (configured !== undefined) {
         return configured;
+    }
     const hasAllowFrom = opts?.hasAllowFrom === true;
-    if (hasAllowFrom)
+    if (hasAllowFrom) {
         return "";
+    }
     return resolveIdentityNamePrefix(cfg, agentId) ?? opts?.fallback ?? "[poolbot]";
 }
-export function resolveResponsePrefix(cfg, agentId) {
+/** Helper to extract a channel config value by dynamic key. */
+function getChannelConfig(cfg, channel) {
+    const channels = cfg.channels;
+    const value = channels?.[channel];
+    return typeof value === "object" && value !== null
+        ? value
+        : undefined;
+}
+export function resolveResponsePrefix(cfg, agentId, opts) {
+    // L1: Channel account level
+    if (opts?.channel && opts?.accountId) {
+        const channelCfg = getChannelConfig(cfg, opts.channel);
+        const accounts = channelCfg?.accounts;
+        const accountPrefix = accounts?.[opts.accountId]?.responsePrefix;
+        if (accountPrefix !== undefined) {
+            if (accountPrefix === "auto") {
+                return resolveIdentityNamePrefix(cfg, agentId);
+            }
+            return accountPrefix;
+        }
+    }
+    // L2: Channel level
+    if (opts?.channel) {
+        const channelCfg = getChannelConfig(cfg, opts.channel);
+        const channelPrefix = channelCfg?.responsePrefix;
+        if (channelPrefix !== undefined) {
+            if (channelPrefix === "auto") {
+                return resolveIdentityNamePrefix(cfg, agentId);
+            }
+            return channelPrefix;
+        }
+    }
+    // L4: Global level
     const configured = cfg.messages?.responsePrefix;
     if (configured !== undefined) {
         if (configured === "auto") {
@@ -45,14 +81,18 @@ export function resolveEffectiveMessagesConfig(cfg, agentId, opts) {
             hasAllowFrom: opts?.hasAllowFrom,
             fallback: opts?.fallbackMessagePrefix,
         }),
-        responsePrefix: resolveResponsePrefix(cfg, agentId),
+        responsePrefix: resolveResponsePrefix(cfg, agentId, {
+            channel: opts?.channel,
+            accountId: opts?.accountId,
+        }),
     };
 }
 export function resolveHumanDelayConfig(cfg, agentId) {
     const defaults = cfg.agents?.defaults?.humanDelay;
     const overrides = resolveAgentConfig(cfg, agentId)?.humanDelay;
-    if (!defaults && !overrides)
+    if (!defaults && !overrides) {
         return undefined;
+    }
     return {
         mode: overrides?.mode ?? defaults?.mode,
         minMs: overrides?.minMs ?? defaults?.minMs,

package/dist/agents/memory-search.js CHANGED Viewed

@@ -5,6 +5,7 @@ import { clampInt, clampNumber, resolveUserPath } from "../utils.js";
 import { resolveAgentConfig } from "./agent-scope.js";
 const DEFAULT_OPENAI_MODEL = "text-embedding-3-small";
 const DEFAULT_GEMINI_MODEL = "gemini-embedding-001";
+const DEFAULT_VOYAGE_MODEL = "voyage-4-large";
 const DEFAULT_CHUNK_TOKENS = 400;
 const DEFAULT_CHUNK_OVERLAP = 80;
 const DEFAULT_WATCH_DEBOUNCE_MS = 1500;
@@ -22,20 +23,24 @@ function normalizeSources(sources, sessionMemoryEnabled) {
     const normalized = new Set();
     const input = sources?.length ? sources : DEFAULT_SOURCES;
     for (const source of input) {
-        if (source === "memory")
+        if (source === "memory") {
             normalized.add("memory");
-        if (source === "sessions" && sessionMemoryEnabled)
+        }
+        if (source === "sessions" && sessionMemoryEnabled) {
             normalized.add("sessions");
+        }
     }
-    if (normalized.size === 0)
+    if (normalized.size === 0) {
         normalized.add("memory");
+    }
     return Array.from(normalized);
 }
 function resolveStorePath(agentId, raw) {
     const stateDir = resolveStateDir(process.env, os.homedir);
     const fallback = path.join(stateDir, "memory", `${agentId}.sqlite`);
-    if (!raw)
+    if (!raw) {
         return fallback;
+    }
     const withToken = raw.includes("{agentId}") ? raw.replaceAll("{agentId}", agentId) : raw;
     return resolveUserPath(withToken);
 }
@@ -51,9 +56,13 @@ function mergeConfig(defaults, overrides, agentId) {
         defaultRemote?.baseUrl ||
         defaultRemote?.apiKey ||
         defaultRemote?.headers);
-    const includeRemote = hasRemoteConfig || provider === "openai" || provider === "gemini" || provider === "auto";
+    const includeRemote = hasRemoteConfig ||
+        provider === "openai" ||
+        provider === "gemini" ||
+        provider === "voyage" ||
+        provider === "auto";
     const batch = {
-        enabled: overrideRemote?.batch?.enabled ?? defaultRemote?.batch?.enabled ?? true,
+        enabled: overrideRemote?.batch?.enabled ?? defaultRemote?.batch?.enabled ?? false,
         wait: overrideRemote?.batch?.wait ?? defaultRemote?.batch?.wait ?? true,
         concurrency: Math.max(1, overrideRemote?.batch?.concurrency ?? defaultRemote?.batch?.concurrency ?? 2),
         pollIntervalMs: overrideRemote?.batch?.pollIntervalMs ?? defaultRemote?.batch?.pollIntervalMs ?? 2000,
@@ -72,13 +81,19 @@ function mergeConfig(defaults, overrides, agentId) {
         ? DEFAULT_GEMINI_MODEL
         : provider === "openai"
             ? DEFAULT_OPENAI_MODEL
-            : undefined;
+            : provider === "voyage"
+                ? DEFAULT_VOYAGE_MODEL
+                : undefined;
     const model = overrides?.model ?? defaults?.model ?? modelDefault ?? "";
     const local = {
         modelPath: overrides?.local?.modelPath ?? defaults?.local?.modelPath,
         modelCacheDir: overrides?.local?.modelCacheDir ?? defaults?.local?.modelCacheDir,
     };
     const sources = normalizeSources(overrides?.sources ?? defaults?.sources, sessionMemory);
+    const rawPaths = [...(defaults?.extraPaths ?? []), ...(overrides?.extraPaths ?? [])]
+        .map((value) => value.trim())
+        .filter(Boolean);
+    const extraPaths = Array.from(new Set(rawPaths));
     const vector = {
         enabled: overrides?.store?.vector?.enabled ?? defaults?.store?.vector?.enabled ?? true,
         extensionPath: overrides?.store?.vector?.extensionPath ?? defaults?.store?.vector?.extensionPath,
@@ -144,6 +159,7 @@ function mergeConfig(defaults, overrides, agentId) {
     return {
         enabled,
         sources,
+        extraPaths,
         provider,
         remote,
         experimental: {
@@ -183,7 +199,8 @@ export function resolveMemorySearchConfig(cfg, agentId) {
     const defaults = cfg.agents?.defaults?.memorySearch;
     const overrides = resolveAgentConfig(cfg, agentId)?.memorySearch;
     const resolved = mergeConfig(defaults, overrides, agentId);
-    if (!resolved.enabled)
+    if (!resolved.enabled) {
         return null;
+    }
     return resolved;
 }

package/dist/agents/model-catalog.js CHANGED Viewed

@@ -3,7 +3,7 @@ import { resolvePoolbotAgentDir } from "./agent-paths.js";
 import { ensurePoolbotModelsJson } from "./models-config.js";
 let modelCatalogPromise = null;
 let hasLoggedModelCatalogError = false;
-const defaultImportPiSdk = () => import("@mariozechner/pi-coding-agent");
+const defaultImportPiSdk = () => import("./pi-model-discovery.js");
 let importPiSdk = defaultImportPiSdk;
 export function resetModelCatalogCacheForTest() {
     modelCatalogPromise = null;

package/dist/agents/model-selection.js CHANGED Viewed

@@ -68,6 +68,27 @@ export function parseModelRef(raw, defaultProvider) {
     const normalizedModel = normalizeProviderModelId(provider, model);
     return { provider, model: normalizedModel };
 }
+export function resolveAllowlistModelKey(raw, defaultProvider) {
+    const parsed = parseModelRef(raw, defaultProvider);
+    if (!parsed) {
+        return null;
+    }
+    return modelKey(parsed.provider, parsed.model);
+}
+export function buildConfiguredAllowlistKeys(params) {
+    const rawAllowlist = Object.keys(params.cfg?.agents?.defaults?.models ?? {});
+    if (rawAllowlist.length === 0) {
+        return null;
+    }
+    const keys = new Set();
+    for (const raw of rawAllowlist) {
+        const key = resolveAllowlistModelKey(String(raw ?? ""), params.defaultProvider);
+        if (key) {
+            keys.add(key);
+        }
+    }
+    return keys.size > 0 ? keys : null;
+}
 export function buildModelAliasIndex(params) {
     const byAlias = new Map();
     const byKey = new Map();