@poolzin/pool-bot 2026.2.11 → 2026.2.18
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +34 -0
- package/dist/agents/agent-scope.js +4 -0
- package/dist/agents/announce-idempotency.js +14 -0
- package/dist/agents/auth-profiles/usage.js +22 -0
- package/dist/agents/auth-profiles.js +1 -1
- package/dist/agents/auth-profiles.resolve-auth-profile-order.fixtures.js +23 -0
- package/dist/agents/bash-tools.exec-runtime.js +438 -0
- package/dist/agents/bash-tools.shared.js +6 -0
- package/dist/agents/cli-runner/reliability.js +61 -0
- package/dist/agents/cli-watchdog-defaults.js +11 -0
- package/dist/agents/command-poll-backoff.js +63 -0
- package/dist/agents/current-time.js +16 -0
- package/dist/agents/glob-pattern.js +42 -0
- package/dist/agents/memory-search.js +33 -0
- package/dist/agents/model-alias-lines.js +18 -0
- package/dist/agents/model-auth-label.js +61 -0
- package/dist/agents/model-fallback.js +59 -8
- package/dist/agents/models-config.e2e-harness.js +115 -0
- package/dist/agents/ollama-stream.js +11 -3
- package/dist/agents/openclaw-tools.js +135 -0
- package/dist/agents/pi-auth-json.js +118 -0
- package/dist/agents/pi-embedded-runner/run.overflow-compaction.mocks.shared.js +147 -0
- package/dist/agents/pi-embedded-subscribe.e2e-harness.js +90 -0
- package/dist/agents/pi-embedded-subscribe.handlers.compaction.js +63 -0
- package/dist/agents/pi-embedded-subscribe.handlers.tools.media.test-helpers.js +30 -0
- package/dist/agents/pi-extensions/session-manager-runtime-registry.js +23 -0
- package/dist/agents/pi-tools.before-tool-call.js +145 -4
- package/dist/agents/pi-tools.js +29 -9
- package/dist/agents/pi-tools.policy.js +85 -92
- package/dist/agents/pi-tools.schema.js +54 -27
- package/dist/agents/queued-file-writer.js +22 -0
- package/dist/agents/sandbox/docker.js +133 -40
- package/dist/agents/sandbox/fs-bridge.js +146 -0
- package/dist/agents/sandbox/fs-paths.js +205 -0
- package/dist/agents/sandbox/hash.js +4 -0
- package/dist/agents/sandbox/validate-sandbox-security.js +157 -0
- package/dist/agents/sandbox-paths.js +3 -0
- package/dist/agents/sandbox-tool-policy.js +26 -0
- package/dist/agents/sanitize-for-prompt.js +18 -0
- package/dist/agents/session-dirs.js +20 -0
- package/dist/agents/session-write-lock.js +203 -39
- package/dist/agents/skills/filter.js +24 -0
- package/dist/agents/skills/tools-dir.js +9 -0
- package/dist/agents/skills-install-download.js +290 -0
- package/dist/agents/skills-install-output.js +30 -0
- package/dist/agents/skills-install.download-test-utils.js +36 -0
- package/dist/agents/skills.e2e-test-helpers.js +13 -0
- package/dist/agents/subagent-announce-queue.js +59 -15
- package/dist/agents/subagent-depth.js +137 -0
- package/dist/agents/subagent-registry.js +448 -96
- package/dist/agents/subagent-spawn.js +262 -0
- package/dist/agents/system-prompt.js +52 -10
- package/dist/agents/test-helpers/fast-tool-stubs.js +18 -0
- package/dist/agents/test-helpers/host-sandbox-fs-bridge.js +74 -0
- package/dist/agents/tool-display-common.js +782 -0
- package/dist/agents/tool-loop-detection.js +466 -0
- package/dist/agents/tool-policy.js +6 -0
- package/dist/agents/tools/image-tool.js +1 -1
- package/dist/agents/tools/sessions-access.js +178 -0
- package/dist/agents/tools/sessions-resolution.js +206 -0
- package/dist/agents/tools/subagents-tool.js +616 -0
- package/dist/agents/workspace-dir.js +18 -0
- package/dist/agents/workspace-dirs.js +14 -0
- package/dist/agents/workspace.js +70 -0
- package/dist/auto-reply/heartbeat-reply-payload.js +18 -0
- package/dist/auto-reply/reply/commands-export-session.js +163 -0
- package/dist/auto-reply/reply/commands-mesh.js +245 -0
- package/dist/auto-reply/reply/commands-setunset.js +28 -0
- package/dist/auto-reply/reply/commands-slash-parse.js +31 -0
- package/dist/auto-reply/reply/commands-system-prompt.js +117 -0
- package/dist/auto-reply/reply/directive-handling.levels.js +17 -0
- package/dist/auto-reply/reply/directive-handling.params.js +1 -0
- package/dist/auto-reply/reply/directive-parsing.js +36 -0
- package/dist/auto-reply/reply/dispatcher-registry.js +43 -0
- package/dist/auto-reply/reply/elevated-unavailable.js +20 -0
- package/dist/auto-reply/reply/post-compaction-audit.js +96 -0
- package/dist/auto-reply/reply/post-compaction-context.js +98 -0
- package/dist/auto-reply/reply/reply-delivery.js +92 -0
- package/dist/auto-reply/reply/session-reset-prompt.js +1 -0
- package/dist/auto-reply/reply/session-run-accounting.js +33 -0
- package/dist/auto-reply/reply.directive.directive-behavior.e2e-harness.js +115 -0
- package/dist/auto-reply/reply.directive.directive-behavior.e2e-mocks.js +12 -0
- package/dist/browser/bridge-auth-registry.js +26 -0
- package/dist/browser/client-actions-url.js +10 -0
- package/dist/browser/control-auth.js +73 -0
- package/dist/browser/csrf.js +64 -0
- package/dist/browser/http-auth.js +52 -0
- package/dist/browser/paths.js +37 -0
- package/dist/browser/proxy-files.js +32 -0
- package/dist/browser/pw-ai-state.js +7 -0
- package/dist/browser/resolved-config-refresh.js +42 -0
- package/dist/browser/routes/path-output.js +1 -0
- package/dist/browser/server-context.chrome-test-harness.js +20 -0
- package/dist/browser/server-middleware.js +31 -0
- package/dist/browser/test-port.js +16 -0
- package/dist/build-info.json +3 -3
- package/dist/canvas-host/file-resolver.js +43 -0
- package/dist/channels/account-summary.js +19 -0
- package/dist/channels/draft-stream-loop.js +77 -0
- package/dist/channels/plugins/account-helpers.js +26 -0
- package/dist/channels/telegram/allow-from.js +10 -0
- package/dist/cli/browser-cli-resize.js +22 -0
- package/dist/cli/browser-cli-shared.js +8 -0
- package/dist/cli/clawbot-cli.js +5 -0
- package/dist/cli/completion-cli.js +566 -0
- package/dist/cli/config-cli.js +63 -5
- package/dist/cli/daemon-cli/lifecycle-core.js +256 -0
- package/dist/cli/daemon-cli/register-service-commands.js +60 -0
- package/dist/cli/daemon-cli-compat.js +80 -0
- package/dist/cli/nodes-cli/pairing-render.js +26 -0
- package/dist/cli/program/action-reparse.js +17 -0
- package/dist/cli/program/command-registry.js +17 -0
- package/dist/cli/program/program-context.js +8 -0
- package/dist/cli/program/register.subclis.js +7 -0
- package/dist/cli/program/routes.js +233 -0
- package/dist/cli/qr-cli.js +132 -0
- package/dist/cli/requirements-test-fixtures.js +17 -0
- package/dist/cli/respawn-policy.js +4 -0
- package/dist/cli/shared/parse-port.js +18 -0
- package/dist/cli/skills-cli.format.js +241 -0
- package/dist/cli/update-cli/progress.js +121 -0
- package/dist/cli/update-cli/restart-helper.js +108 -0
- package/dist/cli/update-cli/shared.js +196 -0
- package/dist/cli/update-cli/status.js +97 -0
- package/dist/cli/update-cli/suppress-deprecations.js +17 -0
- package/dist/cli/update-cli/update-command.js +506 -0
- package/dist/cli/update-cli/wizard.js +130 -0
- package/dist/cli/update-cli.js +3 -9
- package/dist/cli/windows-argv.js +69 -0
- package/dist/commands/auth-choice-legacy.js +20 -0
- package/dist/commands/auth-choice.apply-helpers.js +8 -0
- package/dist/commands/channel-test-helpers.js +19 -0
- package/dist/commands/cleanup-plan.js +10 -0
- package/dist/commands/cleanup-utils.js +7 -0
- package/dist/commands/config-validation.js +15 -0
- package/dist/commands/doctor-completion.js +112 -0
- package/dist/commands/doctor-memory-search.js +119 -0
- package/dist/commands/doctor-session-locks.js +73 -0
- package/dist/commands/doctor.e2e-harness.js +364 -0
- package/dist/commands/gateway-presence.js +19 -0
- package/dist/commands/model-default.js +35 -0
- package/dist/commands/models/fallbacks-shared.js +102 -0
- package/dist/commands/models/shared.js +24 -0
- package/dist/commands/onboard-auth.config-gateways.js +64 -0
- package/dist/commands/onboard-auth.config-litellm.js +45 -0
- package/dist/commands/onboard-auth.config-shared.js +116 -0
- package/dist/commands/onboard-config.js +16 -0
- package/dist/commands/onboard-non-interactive.test-helpers.js +31 -0
- package/dist/commands/onboard-provider-auth-flags.js +136 -0
- package/dist/commands/openai-codex-oauth.js +40 -0
- package/dist/commands/test-runtime-config-helpers.js +21 -0
- package/dist/commands/test-wizard-helpers.js +68 -0
- package/dist/commands/vllm-setup.js +66 -0
- package/dist/compat/legacy-names.js +2 -0
- package/dist/config/backup-rotation.js +19 -0
- package/dist/config/env-preserve.js +122 -0
- package/dist/config/includes-scan.js +78 -0
- package/dist/config/plugins-allowlist.js +13 -0
- package/dist/config/schema.help.js +256 -0
- package/dist/config/schema.hints.js +189 -0
- package/dist/config/schema.irc.js +20 -0
- package/dist/config/schema.labels.js +317 -0
- package/dist/config/sessions/delivery-info.js +40 -0
- package/dist/config/types.irc.js +1 -0
- package/dist/config/zod-schema.agent-defaults.js +14 -0
- package/dist/config/zod-schema.agent-model.js +10 -0
- package/dist/config/zod-schema.agent-runtime.js +14 -0
- package/dist/config/zod-schema.allowdeny.js +35 -0
- package/dist/config/zod-schema.sensitive.js +4 -0
- package/dist/control-ui/assets/index-HRr1grwl.js.map +1 -1
- package/dist/cron/isolated-agent/skills-snapshot.js +26 -0
- package/dist/cron/isolated-agent/subagent-followup.js +127 -0
- package/dist/cron/isolated-agent.mocks.js +12 -0
- package/dist/cron/isolated-agent.test-setup.js +22 -0
- package/dist/cron/legacy-delivery.js +43 -0
- package/dist/cron/webhook-url.js +22 -0
- package/dist/daemon/arg-split.js +40 -0
- package/dist/daemon/exec-file.js +23 -0
- package/dist/daemon/output.js +6 -0
- package/dist/daemon/runtime-format.js +31 -0
- package/dist/daemon/schtasks-exec.js +4 -0
- package/dist/daemon/service-audit.js +22 -0
- package/dist/discord/client.js +41 -0
- package/dist/discord/components-registry.js +57 -0
- package/dist/discord/components.js +816 -0
- package/dist/discord/guilds.js +12 -0
- package/dist/discord/monitor/gateway-plugin.js +48 -0
- package/dist/discord/monitor/presence.js +30 -0
- package/dist/discord/send.components.js +115 -0
- package/dist/discord/send.shared.js +4 -0
- package/dist/discord/ui.js +26 -0
- package/dist/discord/voice-message.js +254 -0
- package/dist/gateway/agent-event-assistant-text.js +5 -0
- package/dist/gateway/agent-prompt.js +33 -0
- package/dist/gateway/auth-rate-limit.js +136 -0
- package/dist/gateway/channel-health-monitor.js +114 -0
- package/dist/gateway/control-ui-contract.js +1 -0
- package/dist/gateway/control-ui-csp.js +15 -0
- package/dist/gateway/gateway-config-prompts.shared.js +25 -0
- package/dist/gateway/http-auth-helpers.js +18 -0
- package/dist/gateway/http-common.js +18 -0
- package/dist/gateway/http-endpoint-helpers.js +27 -0
- package/dist/gateway/node-invoke-sanitize.js +11 -0
- package/dist/gateway/node-invoke-system-run-approval.js +205 -0
- package/dist/gateway/probe-auth.js +21 -0
- package/dist/gateway/protocol/index.js +7 -2
- package/dist/gateway/protocol/schema/mesh.js +54 -0
- package/dist/gateway/protocol/schema/protocol-schemas.js +7 -0
- package/dist/gateway/protocol/schema.js +1 -0
- package/dist/gateway/server/ws-connection/auth-messages.js +54 -0
- package/dist/gateway/server-channels.js +11 -0
- package/dist/gateway/server-methods/attachment-normalize.js +16 -0
- package/dist/gateway/server-methods/base-hash.js +8 -0
- package/dist/gateway/server-methods/mesh.js +700 -0
- package/dist/gateway/server-methods/nodes.handlers.invoke-result.js +55 -0
- package/dist/gateway/server-methods/restart-request.js +13 -0
- package/dist/gateway/server-methods/validation.js +8 -0
- package/dist/gateway/server.agent.gateway-server-agent.mocks.js +35 -0
- package/dist/gateway/server.e2e-registry-helpers.js +1 -0
- package/dist/gateway/server.e2e-ws-harness.js +20 -0
- package/dist/gateway/test-helpers.js +2 -0
- package/dist/gateway/test-helpers.server.js +3 -1
- package/dist/gateway/test-http-response.js +12 -0
- package/dist/gateway/test-openai-responses-model.js +20 -0
- package/dist/gateway/test-temp-config.js +30 -0
- package/dist/gateway/test-with-server.js +32 -0
- package/dist/hooks/bundled/bootstrap-extra-files/handler.js +46 -0
- package/dist/imessage/monitor/abort-handler.js +23 -0
- package/dist/imessage/monitor/inbound-processing.js +346 -0
- package/dist/imessage/monitor/parse-notification.js +64 -0
- package/dist/imessage/target-parsing-helpers.js +92 -0
- package/dist/infra/archive.js +244 -20
- package/dist/infra/detect-package-manager.js +26 -0
- package/dist/infra/exec-approvals-allowlist.js +257 -0
- package/dist/infra/exec-approvals-analysis.js +770 -0
- package/dist/infra/exec-approvals.js +13 -0
- package/dist/infra/file-lock.js +1 -0
- package/dist/infra/gemini-auth.js +39 -0
- package/dist/infra/heartbeat-active-hours.js +85 -0
- package/dist/infra/heartbeat-events-filter.js +50 -0
- package/dist/infra/heartbeat-runner.test-utils.js +39 -0
- package/dist/infra/http-body.js +265 -0
- package/dist/infra/install-package-dir.js +50 -0
- package/dist/infra/install-safe-path.js +49 -0
- package/dist/infra/json-files.js +49 -0
- package/dist/infra/jsonl-socket.js +52 -0
- package/dist/infra/map-size.js +14 -0
- package/dist/infra/net/hostname.js +7 -0
- package/dist/infra/npm-registry-spec.js +39 -0
- package/dist/infra/openclaw-root.js +109 -0
- package/dist/infra/outbound/delivery-queue.js +214 -0
- package/dist/infra/outbound/identity.js +23 -0
- package/dist/infra/outbound/message-action-params.js +307 -0
- package/dist/infra/outbound/tool-payload.js +21 -0
- package/dist/infra/package-json.js +23 -0
- package/dist/infra/pairing-files.js +19 -0
- package/dist/infra/pairing-token.js +9 -0
- package/dist/infra/path-prepend.js +51 -0
- package/dist/infra/path-safety.js +16 -0
- package/dist/infra/process-respawn.js +49 -0
- package/dist/infra/runtime-status.js +16 -0
- package/dist/infra/session-cost-usage.types.js +1 -0
- package/dist/infra/session-maintenance-warning.js +89 -0
- package/dist/infra/system-run-command.js +78 -0
- package/dist/infra/tmp-openclaw-dir.js +81 -0
- package/dist/infra/tmp-poolbot-dir.js +2 -0
- package/dist/infra/update-channels.js +19 -0
- package/dist/line/actions.js +45 -0
- package/dist/line/channel-access-token.js +9 -0
- package/dist/line/flex-templates/basic-cards.js +332 -0
- package/dist/line/flex-templates/common.js +18 -0
- package/dist/line/flex-templates/media-control-cards.js +453 -0
- package/dist/line/flex-templates/message.js +10 -0
- package/dist/line/flex-templates/schedule-cards.js +399 -0
- package/dist/line/flex-templates/types.js +1 -0
- package/dist/line/webhook-node.js +100 -0
- package/dist/line/webhook-utils.js +11 -0
- package/dist/logging/diagnostic-session-state.js +73 -0
- package/dist/logging/diagnostic.js +22 -0
- package/dist/logging/timestamps.js +14 -0
- package/dist/markdown/whatsapp.js +62 -0
- package/dist/media/base64.js +34 -0
- package/dist/media/local-roots.js +32 -0
- package/dist/media/outbound-attachment.js +10 -0
- package/dist/media/read-response-with-limit.js +41 -0
- package/dist/media/sniff-mime-from-base64.js +19 -0
- package/dist/media-understanding/audio-preflight.js +67 -0
- package/dist/media-understanding/fs.js +13 -0
- package/dist/media-understanding/output-extract.js +26 -0
- package/dist/media-understanding/providers/audio.test-helpers.js +34 -0
- package/dist/media-understanding/providers/google/inline-data.js +64 -0
- package/dist/media-understanding/providers/shared.js +7 -0
- package/dist/media-understanding/runner.entries.js +459 -0
- package/dist/memory/batch-error-utils.js +11 -0
- package/dist/memory/batch-http.js +27 -0
- package/dist/memory/batch-output.js +29 -0
- package/dist/memory/batch-runner.js +22 -0
- package/dist/memory/batch-upload.js +23 -0
- package/dist/memory/batch-utils.js +26 -0
- package/dist/memory/embeddings-debug.js +11 -0
- package/dist/memory/embeddings-remote-client.js +22 -0
- package/dist/memory/embeddings-remote-fetch.js +14 -0
- package/dist/memory/embeddings.js +36 -9
- package/dist/memory/hybrid.js +24 -5
- package/dist/memory/manager-embedding-ops.js +616 -0
- package/dist/memory/manager-sync-ops.js +953 -0
- package/dist/memory/manager.js +76 -28
- package/dist/memory/mmr.js +164 -0
- package/dist/memory/qmd-manager.js +1061 -0
- package/dist/memory/qmd-query-parser.js +107 -0
- package/dist/memory/qmd-scope.js +93 -0
- package/dist/memory/query-expansion.js +331 -0
- package/dist/memory/search-manager.js +0 -1
- package/dist/memory/sync-index.js +21 -0
- package/dist/memory/sync-progress.js +22 -0
- package/dist/memory/sync-stale.js +30 -0
- package/dist/memory/temporal-decay.js +119 -0
- package/dist/memory/test-embeddings-mock.js +16 -0
- package/dist/memory/test-manager-helpers.js +14 -0
- package/dist/memory/test-runtime-mocks.js +11 -0
- package/dist/node-host/invoke-browser.js +177 -0
- package/dist/node-host/invoke.js +685 -0
- package/dist/pairing/setup-code.js +285 -0
- package/dist/plugin-sdk/account-id.js +1 -0
- package/dist/plugin-sdk/agent-media-payload.js +13 -0
- package/dist/plugin-sdk/allow-from.js +47 -0
- package/dist/plugin-sdk/command-auth.js +23 -0
- package/dist/plugin-sdk/config-paths.js +9 -0
- package/dist/plugin-sdk/file-lock.js +116 -0
- package/dist/plugin-sdk/json-store.js +31 -0
- package/dist/plugin-sdk/onboarding.js +28 -0
- package/dist/plugin-sdk/provider-auth-result.js +29 -0
- package/dist/plugin-sdk/slack-message-actions.js +133 -0
- package/dist/plugin-sdk/status-helpers.js +35 -0
- package/dist/plugin-sdk/text-chunking.js +31 -0
- package/dist/plugin-sdk/tool-send.js +12 -0
- package/dist/plugin-sdk/webhook-path.js +27 -0
- package/dist/plugin-sdk/webhook-targets.js +34 -0
- package/dist/plugins/hooks.test-helpers.js +21 -0
- package/dist/plugins/uninstall.js +171 -0
- package/dist/process/kill-tree.js +98 -0
- package/dist/process/supervisor/adapters/child.js +143 -0
- package/dist/process/supervisor/adapters/env.js +13 -0
- package/dist/process/supervisor/adapters/pty.js +148 -0
- package/dist/process/supervisor/index.js +10 -0
- package/dist/process/supervisor/registry.js +117 -0
- package/dist/process/supervisor/supervisor.js +244 -0
- package/dist/process/supervisor/types.js +1 -0
- package/dist/providers/google-shared.test-helpers.js +75 -0
- package/dist/security/audit-channel.js +419 -0
- package/dist/security/audit-tool-policy.js +1 -0
- package/dist/security/scan-paths.js +12 -0
- package/dist/sessions/input-provenance.js +55 -0
- package/dist/sessions/session-key-utils.js +7 -0
- package/dist/shared/chat-content.js +31 -0
- package/dist/shared/chat-envelope.js +45 -0
- package/dist/shared/config-eval.js +117 -0
- package/dist/shared/device-auth.js +16 -0
- package/dist/shared/entry-metadata.js +9 -0
- package/dist/shared/entry-status.js +25 -0
- package/dist/shared/frontmatter.js +98 -0
- package/dist/shared/model-param-b.js +19 -0
- package/dist/shared/net/ipv4.js +17 -0
- package/dist/shared/node-match.js +53 -0
- package/dist/shared/pid-alive.js +12 -0
- package/dist/shared/process-scoped-map.js +10 -0
- package/dist/shared/requirements.js +128 -0
- package/dist/shared/subagents-format.js +84 -0
- package/dist/shared/usage-aggregates.js +28 -0
- package/dist/signal/monitor/mentions.js +45 -0
- package/dist/signal/rpc-context.js +19 -0
- package/dist/slack/blocks-fallback.js +76 -0
- package/dist/slack/blocks-input.js +40 -0
- package/dist/slack/draft-stream.js +106 -0
- package/dist/slack/message-actions.js +51 -0
- package/dist/slack/modal-metadata.js +32 -0
- package/dist/slack/monitor/events/interactions.js +462 -0
- package/dist/slack/monitor/room-context.js +17 -0
- package/dist/slack/stream-mode.js +41 -0
- package/dist/telegram/bot-native-command-menu.js +64 -0
- package/dist/telegram/bot.media.e2e-harness.js +81 -0
- package/dist/telegram/button-types.js +1 -0
- package/dist/telegram/group-access.js +65 -0
- package/dist/telegram/outbound-params.js +21 -0
- package/dist/telegram/poll-vote-cache.js +21 -0
- package/dist/terminal/health-style.js +36 -0
- package/dist/test-utils/chunk-test-helpers.js +21 -0
- package/dist/test-utils/env.js +72 -0
- package/dist/test-utils/exec-assertions.js +12 -0
- package/dist/test-utils/imessage-test-plugin.js +54 -0
- package/dist/test-utils/mock-http-response.js +17 -0
- package/dist/test-utils/vitest-mock-fn.js +1 -0
- package/dist/tts/tts-core.js +550 -0
- package/dist/utils/chunk-items.js +10 -0
- package/dist/utils/reaction-level.js +52 -0
- package/dist/utils/safe-json.js +22 -0
- package/dist/utils/with-timeout.js +14 -0
- package/dist/web/media.js +17 -5
- package/dist/whatsapp/resolve-outbound-target.js +42 -0
- package/dist/wizard/onboarding.completion.js +74 -0
- package/extensions/bluebubbles/package.json +1 -1
- package/extensions/bluebubbles/src/account-resolve.ts +29 -0
- package/extensions/bluebubbles/src/monitor-normalize.ts +796 -0
- package/extensions/bluebubbles/src/monitor-processing.ts +1007 -0
- package/extensions/bluebubbles/src/monitor-reply-cache.ts +185 -0
- package/extensions/bluebubbles/src/monitor-shared.ts +51 -0
- package/extensions/bluebubbles/src/multipart.ts +32 -0
- package/extensions/bluebubbles/src/send-helpers.ts +53 -0
- package/extensions/bluebubbles/src/test-harness.ts +50 -0
- package/extensions/bluebubbles/src/test-mocks.ts +11 -0
- package/extensions/copilot-proxy/package.json +1 -1
- package/extensions/device-pair/index.ts +554 -0
- package/extensions/diagnostics-otel/package.json +1 -1
- package/extensions/discord/package.json +1 -1
- package/extensions/discord/src/channel.js +366 -0
- package/extensions/discord/src/runtime.js +10 -0
- package/extensions/feishu/index.ts +63 -0
- package/extensions/feishu/src/accounts.ts +114 -0
- package/extensions/feishu/src/bitable.ts +739 -0
- package/extensions/feishu/src/bot.ts +965 -0
- package/extensions/feishu/src/channel.ts +351 -0
- package/extensions/feishu/src/client.ts +118 -0
- package/extensions/feishu/src/config-schema.ts +206 -0
- package/extensions/feishu/src/dedup.ts +33 -0
- package/extensions/feishu/src/directory.ts +177 -0
- package/extensions/feishu/src/doc-schema.ts +47 -0
- package/extensions/feishu/src/docx.ts +536 -0
- package/extensions/feishu/src/drive-schema.ts +46 -0
- package/extensions/feishu/src/drive.ts +227 -0
- package/extensions/feishu/src/dynamic-agent.ts +131 -0
- package/extensions/feishu/src/media.ts +449 -0
- package/extensions/feishu/src/mention.ts +126 -0
- package/extensions/feishu/src/monitor.ts +330 -0
- package/extensions/feishu/src/onboarding.ts +359 -0
- package/extensions/feishu/src/outbound.ts +55 -0
- package/extensions/feishu/src/perm-schema.ts +52 -0
- package/extensions/feishu/src/perm.ts +173 -0
- package/extensions/feishu/src/policy.ts +84 -0
- package/extensions/feishu/src/probe.ts +44 -0
- package/extensions/feishu/src/reactions.ts +160 -0
- package/extensions/feishu/src/reply-dispatcher.ts +239 -0
- package/extensions/feishu/src/runtime.ts +14 -0
- package/extensions/feishu/src/send-result.ts +29 -0
- package/extensions/feishu/src/send.ts +335 -0
- package/extensions/feishu/src/streaming-card.ts +223 -0
- package/extensions/feishu/src/targets.ts +78 -0
- package/extensions/feishu/src/tools-config.ts +21 -0
- package/extensions/feishu/src/types.ts +81 -0
- package/extensions/feishu/src/typing.ts +80 -0
- package/extensions/feishu/src/wiki-schema.ts +55 -0
- package/extensions/feishu/src/wiki.ts +232 -0
- package/extensions/google-antigravity-auth/package.json +1 -1
- package/extensions/google-gemini-cli-auth/package.json +1 -1
- package/extensions/googlechat/package.json +1 -1
- package/extensions/imessage/package.json +1 -1
- package/extensions/imessage/src/channel.js +253 -0
- package/extensions/imessage/src/runtime.js +10 -0
- package/extensions/irc/index.ts +17 -0
- package/extensions/irc/src/accounts.ts +268 -0
- package/extensions/irc/src/channel.ts +367 -0
- package/extensions/irc/src/client.ts +439 -0
- package/extensions/irc/src/config-schema.ts +97 -0
- package/extensions/irc/src/connect-options.ts +30 -0
- package/extensions/irc/src/control-chars.ts +22 -0
- package/extensions/irc/src/inbound.ts +334 -0
- package/extensions/irc/src/monitor.ts +147 -0
- package/extensions/irc/src/normalize.ts +117 -0
- package/extensions/irc/src/onboarding.ts +479 -0
- package/extensions/irc/src/policy.ts +157 -0
- package/extensions/irc/src/probe.ts +53 -0
- package/extensions/irc/src/protocol.ts +169 -0
- package/extensions/irc/src/runtime.ts +14 -0
- package/extensions/irc/src/send.ts +88 -0
- package/extensions/irc/src/types.ts +93 -0
- package/extensions/line/package.json +1 -1
- package/extensions/llm-task/package.json +1 -1
- package/extensions/lobster/package.json +1 -1
- package/extensions/matrix/CHANGELOG.md +5 -0
- package/extensions/matrix/package.json +1 -1
- package/extensions/matrix/src/matrix/client-bootstrap.ts +39 -0
- package/extensions/mattermost/package.json +1 -1
- package/extensions/mattermost/src/mattermost/monitor-onchar.ts +25 -0
- package/extensions/mattermost/src/mattermost/monitor-websocket.ts +221 -0
- package/extensions/mattermost/src/mattermost/reactions.ts +130 -0
- package/extensions/mattermost/src/mattermost/reconnect.ts +103 -0
- package/extensions/memory-core/package.json +1 -1
- package/extensions/memory-lancedb/package.json +1 -1
- package/extensions/minimax-portal-auth/index.ts +161 -0
- package/extensions/minimax-portal-auth/oauth.ts +247 -0
- package/extensions/msteams/CHANGELOG.md +5 -0
- package/extensions/msteams/package.json +1 -1
- package/extensions/msteams/src/file-lock.ts +1 -0
- package/extensions/msteams/src/graph.ts +92 -0
- package/extensions/msteams/src/mentions.ts +114 -0
- package/extensions/msteams/src/test-runtime.ts +16 -0
- package/extensions/nextcloud-talk/package.json +1 -1
- package/extensions/nostr/CHANGELOG.md +5 -0
- package/extensions/nostr/package.json +1 -1
- package/extensions/open-prose/package.json +1 -1
- package/extensions/openai-codex-auth/index.ts +177 -0
- package/extensions/phone-control/index.ts +421 -0
- package/extensions/shared/resolve-target-test-helpers.ts +66 -0
- package/extensions/signal/package.json +1 -1
- package/extensions/signal/src/channel.js +273 -0
- package/extensions/signal/src/runtime.js +10 -0
- package/extensions/slack/package.json +1 -1
- package/extensions/slack/src/channel.js +489 -0
- package/extensions/slack/src/runtime.js +10 -0
- package/extensions/talk-voice/index.ts +150 -0
- package/extensions/telegram/package.json +1 -1
- package/extensions/telegram/src/channel.js +424 -0
- package/extensions/telegram/src/runtime.js +10 -0
- package/extensions/thread-ownership/index.ts +133 -0
- package/extensions/tlon/package.json +1 -1
- package/extensions/tlon/src/account-fields.ts +25 -0
- package/extensions/tlon/src/urbit/base-url.ts +57 -0
- package/extensions/tlon/src/urbit/channel-client.ts +157 -0
- package/extensions/tlon/src/urbit/channel-ops.ts +164 -0
- package/extensions/tlon/src/urbit/context.ts +47 -0
- package/extensions/tlon/src/urbit/errors.ts +51 -0
- package/extensions/tlon/src/urbit/fetch.ts +39 -0
- package/extensions/twitch/CHANGELOG.md +5 -0
- package/extensions/twitch/package.json +1 -1
- package/extensions/twitch/src/test-fixtures.ts +30 -0
- package/extensions/voice-call/CHANGELOG.md +5 -0
- package/extensions/voice-call/package.json +1 -1
- package/extensions/voice-call/src/allowlist.ts +19 -0
- package/extensions/whatsapp/package.json +1 -1
- package/extensions/whatsapp/src/channel.js +429 -0
- package/extensions/whatsapp/src/runtime.js +10 -0
- package/extensions/zalo/CHANGELOG.md +5 -0
- package/extensions/zalo/package.json +1 -1
- package/extensions/zalouser/CHANGELOG.md +5 -0
- package/extensions/zalouser/package.json +1 -1
- package/package.json +1 -1
|
@@ -0,0 +1,73 @@
|
|
|
1
|
+
import crypto from "node:crypto";
|
|
2
|
+
import { loadConfig, writeConfigFile } from "../config/config.js";
|
|
3
|
+
import { resolveGatewayAuth } from "../gateway/auth.js";
|
|
4
|
+
export function resolveBrowserControlAuth(cfg, env = process.env) {
|
|
5
|
+
const auth = resolveGatewayAuth({
|
|
6
|
+
authConfig: cfg?.gateway?.auth,
|
|
7
|
+
env,
|
|
8
|
+
tailscaleMode: cfg?.gateway?.tailscale?.mode,
|
|
9
|
+
});
|
|
10
|
+
const token = typeof auth.token === "string" ? auth.token.trim() : "";
|
|
11
|
+
const password = typeof auth.password === "string" ? auth.password.trim() : "";
|
|
12
|
+
return {
|
|
13
|
+
token: token || undefined,
|
|
14
|
+
password: password || undefined,
|
|
15
|
+
};
|
|
16
|
+
}
|
|
17
|
+
function shouldAutoGenerateBrowserAuth(env) {
|
|
18
|
+
const nodeEnv = (env.NODE_ENV ?? "").trim().toLowerCase();
|
|
19
|
+
if (nodeEnv === "test") {
|
|
20
|
+
return false;
|
|
21
|
+
}
|
|
22
|
+
const vitest = (env.VITEST ?? "").trim().toLowerCase();
|
|
23
|
+
if (vitest && vitest !== "0" && vitest !== "false" && vitest !== "off") {
|
|
24
|
+
return false;
|
|
25
|
+
}
|
|
26
|
+
return true;
|
|
27
|
+
}
|
|
28
|
+
export async function ensureBrowserControlAuth(params) {
|
|
29
|
+
const env = params.env ?? process.env;
|
|
30
|
+
const auth = resolveBrowserControlAuth(params.cfg, env);
|
|
31
|
+
if (auth.token || auth.password) {
|
|
32
|
+
return { auth };
|
|
33
|
+
}
|
|
34
|
+
if (!shouldAutoGenerateBrowserAuth(env)) {
|
|
35
|
+
return { auth };
|
|
36
|
+
}
|
|
37
|
+
// Respect explicit password mode even if currently unset.
|
|
38
|
+
if (params.cfg.gateway?.auth?.mode === "password") {
|
|
39
|
+
return { auth };
|
|
40
|
+
}
|
|
41
|
+
if (params.cfg.gateway?.auth?.mode === "trusted-proxy") {
|
|
42
|
+
return { auth };
|
|
43
|
+
}
|
|
44
|
+
// Re-read latest config to avoid racing with concurrent config writers.
|
|
45
|
+
const latestCfg = loadConfig();
|
|
46
|
+
const latestAuth = resolveBrowserControlAuth(latestCfg, env);
|
|
47
|
+
if (latestAuth.token || latestAuth.password) {
|
|
48
|
+
return { auth: latestAuth };
|
|
49
|
+
}
|
|
50
|
+
if (latestCfg.gateway?.auth?.mode === "password") {
|
|
51
|
+
return { auth: latestAuth };
|
|
52
|
+
}
|
|
53
|
+
if (latestCfg.gateway?.auth?.mode === "trusted-proxy") {
|
|
54
|
+
return { auth: latestAuth };
|
|
55
|
+
}
|
|
56
|
+
const generatedToken = crypto.randomBytes(24).toString("hex");
|
|
57
|
+
const nextCfg = {
|
|
58
|
+
...latestCfg,
|
|
59
|
+
gateway: {
|
|
60
|
+
...latestCfg.gateway,
|
|
61
|
+
auth: {
|
|
62
|
+
...latestCfg.gateway?.auth,
|
|
63
|
+
mode: "token",
|
|
64
|
+
token: generatedToken,
|
|
65
|
+
},
|
|
66
|
+
},
|
|
67
|
+
};
|
|
68
|
+
await writeConfigFile(nextCfg);
|
|
69
|
+
return {
|
|
70
|
+
auth: { token: generatedToken },
|
|
71
|
+
generatedToken,
|
|
72
|
+
};
|
|
73
|
+
}
|
|
@@ -0,0 +1,64 @@
|
|
|
1
|
+
import { isLoopbackHost } from "../gateway/net.js";
|
|
2
|
+
function firstHeader(value) {
|
|
3
|
+
return Array.isArray(value) ? (value[0] ?? "") : (value ?? "");
|
|
4
|
+
}
|
|
5
|
+
function isMutatingMethod(method) {
|
|
6
|
+
const m = (method || "").trim().toUpperCase();
|
|
7
|
+
return m === "POST" || m === "PUT" || m === "PATCH" || m === "DELETE";
|
|
8
|
+
}
|
|
9
|
+
function isLoopbackUrl(value) {
|
|
10
|
+
const v = value.trim();
|
|
11
|
+
if (!v || v === "null") {
|
|
12
|
+
return false;
|
|
13
|
+
}
|
|
14
|
+
try {
|
|
15
|
+
const parsed = new URL(v);
|
|
16
|
+
return isLoopbackHost(parsed.hostname);
|
|
17
|
+
}
|
|
18
|
+
catch {
|
|
19
|
+
return false;
|
|
20
|
+
}
|
|
21
|
+
}
|
|
22
|
+
export function shouldRejectBrowserMutation(params) {
|
|
23
|
+
if (!isMutatingMethod(params.method)) {
|
|
24
|
+
return false;
|
|
25
|
+
}
|
|
26
|
+
// Strong signal when present: browser says this is cross-site.
|
|
27
|
+
// Avoid being overly clever with "same-site" since localhost vs 127.0.0.1 may differ.
|
|
28
|
+
const secFetchSite = (params.secFetchSite ?? "").trim().toLowerCase();
|
|
29
|
+
if (secFetchSite === "cross-site") {
|
|
30
|
+
return true;
|
|
31
|
+
}
|
|
32
|
+
const origin = (params.origin ?? "").trim();
|
|
33
|
+
if (origin) {
|
|
34
|
+
return !isLoopbackUrl(origin);
|
|
35
|
+
}
|
|
36
|
+
const referer = (params.referer ?? "").trim();
|
|
37
|
+
if (referer) {
|
|
38
|
+
return !isLoopbackUrl(referer);
|
|
39
|
+
}
|
|
40
|
+
// Non-browser clients (curl/undici/Node) typically send no Origin/Referer.
|
|
41
|
+
return false;
|
|
42
|
+
}
|
|
43
|
+
export function browserMutationGuardMiddleware() {
|
|
44
|
+
return (req, res, next) => {
|
|
45
|
+
// OPTIONS is used for CORS preflight. Even if cross-origin, the preflight isn't mutating.
|
|
46
|
+
const method = (req.method || "").trim().toUpperCase();
|
|
47
|
+
if (method === "OPTIONS") {
|
|
48
|
+
return next();
|
|
49
|
+
}
|
|
50
|
+
const origin = firstHeader(req.headers.origin);
|
|
51
|
+
const referer = firstHeader(req.headers.referer);
|
|
52
|
+
const secFetchSite = firstHeader(req.headers["sec-fetch-site"]);
|
|
53
|
+
if (shouldRejectBrowserMutation({
|
|
54
|
+
method,
|
|
55
|
+
origin,
|
|
56
|
+
referer,
|
|
57
|
+
secFetchSite,
|
|
58
|
+
})) {
|
|
59
|
+
res.status(403).send("Forbidden");
|
|
60
|
+
return;
|
|
61
|
+
}
|
|
62
|
+
next();
|
|
63
|
+
};
|
|
64
|
+
}
|
|
@@ -0,0 +1,52 @@
|
|
|
1
|
+
import { safeEqualSecret } from "../security/secret-equal.js";
|
|
2
|
+
function firstHeaderValue(value) {
|
|
3
|
+
return Array.isArray(value) ? (value[0] ?? "") : (value ?? "");
|
|
4
|
+
}
|
|
5
|
+
function parseBearerToken(authorization) {
|
|
6
|
+
if (!authorization || !authorization.toLowerCase().startsWith("bearer ")) {
|
|
7
|
+
return undefined;
|
|
8
|
+
}
|
|
9
|
+
const token = authorization.slice(7).trim();
|
|
10
|
+
return token || undefined;
|
|
11
|
+
}
|
|
12
|
+
function parseBasicPassword(authorization) {
|
|
13
|
+
if (!authorization || !authorization.toLowerCase().startsWith("basic ")) {
|
|
14
|
+
return undefined;
|
|
15
|
+
}
|
|
16
|
+
const encoded = authorization.slice(6).trim();
|
|
17
|
+
if (!encoded) {
|
|
18
|
+
return undefined;
|
|
19
|
+
}
|
|
20
|
+
try {
|
|
21
|
+
const decoded = Buffer.from(encoded, "base64").toString("utf8");
|
|
22
|
+
const sep = decoded.indexOf(":");
|
|
23
|
+
if (sep < 0) {
|
|
24
|
+
return undefined;
|
|
25
|
+
}
|
|
26
|
+
const password = decoded.slice(sep + 1).trim();
|
|
27
|
+
return password || undefined;
|
|
28
|
+
}
|
|
29
|
+
catch {
|
|
30
|
+
return undefined;
|
|
31
|
+
}
|
|
32
|
+
}
|
|
33
|
+
export function isAuthorizedBrowserRequest(req, auth) {
|
|
34
|
+
const authorization = firstHeaderValue(req.headers.authorization).trim();
|
|
35
|
+
if (auth.token) {
|
|
36
|
+
const bearer = parseBearerToken(authorization);
|
|
37
|
+
if (bearer && safeEqualSecret(bearer, auth.token)) {
|
|
38
|
+
return true;
|
|
39
|
+
}
|
|
40
|
+
}
|
|
41
|
+
if (auth.password) {
|
|
42
|
+
const passwordHeader = firstHeaderValue(req.headers["x-openclaw-password"]).trim();
|
|
43
|
+
if (passwordHeader && safeEqualSecret(passwordHeader, auth.password)) {
|
|
44
|
+
return true;
|
|
45
|
+
}
|
|
46
|
+
const basicPassword = parseBasicPassword(authorization);
|
|
47
|
+
if (basicPassword && safeEqualSecret(basicPassword, auth.password)) {
|
|
48
|
+
return true;
|
|
49
|
+
}
|
|
50
|
+
}
|
|
51
|
+
return false;
|
|
52
|
+
}
|
|
@@ -0,0 +1,37 @@
|
|
|
1
|
+
import path from "node:path";
|
|
2
|
+
import { resolvePreferredOpenClawTmpDir } from "../infra/tmp-poolbot-dir.js";
|
|
3
|
+
export const DEFAULT_BROWSER_TMP_DIR = resolvePreferredOpenClawTmpDir();
|
|
4
|
+
export const DEFAULT_TRACE_DIR = DEFAULT_BROWSER_TMP_DIR;
|
|
5
|
+
export const DEFAULT_DOWNLOAD_DIR = path.join(DEFAULT_BROWSER_TMP_DIR, "downloads");
|
|
6
|
+
export const DEFAULT_UPLOAD_DIR = path.join(DEFAULT_BROWSER_TMP_DIR, "uploads");
|
|
7
|
+
export function resolvePathWithinRoot(params) {
|
|
8
|
+
const root = path.resolve(params.rootDir);
|
|
9
|
+
const raw = params.requestedPath.trim();
|
|
10
|
+
if (!raw) {
|
|
11
|
+
if (!params.defaultFileName) {
|
|
12
|
+
return { ok: false, error: "path is required" };
|
|
13
|
+
}
|
|
14
|
+
return { ok: true, path: path.join(root, params.defaultFileName) };
|
|
15
|
+
}
|
|
16
|
+
const resolved = path.resolve(root, raw);
|
|
17
|
+
const rel = path.relative(root, resolved);
|
|
18
|
+
if (!rel || rel.startsWith("..") || path.isAbsolute(rel)) {
|
|
19
|
+
return { ok: false, error: `Invalid path: must stay within ${params.scopeLabel}` };
|
|
20
|
+
}
|
|
21
|
+
return { ok: true, path: resolved };
|
|
22
|
+
}
|
|
23
|
+
export function resolvePathsWithinRoot(params) {
|
|
24
|
+
const resolvedPaths = [];
|
|
25
|
+
for (const raw of params.requestedPaths) {
|
|
26
|
+
const pathResult = resolvePathWithinRoot({
|
|
27
|
+
rootDir: params.rootDir,
|
|
28
|
+
requestedPath: raw,
|
|
29
|
+
scopeLabel: params.scopeLabel,
|
|
30
|
+
});
|
|
31
|
+
if (!pathResult.ok) {
|
|
32
|
+
return { ok: false, error: pathResult.error };
|
|
33
|
+
}
|
|
34
|
+
resolvedPaths.push(pathResult.path);
|
|
35
|
+
}
|
|
36
|
+
return { ok: true, paths: resolvedPaths };
|
|
37
|
+
}
|
|
@@ -0,0 +1,32 @@
|
|
|
1
|
+
import { saveMediaBuffer } from "../media/store.js";
|
|
2
|
+
export async function persistBrowserProxyFiles(files) {
|
|
3
|
+
if (!files || files.length === 0) {
|
|
4
|
+
return new Map();
|
|
5
|
+
}
|
|
6
|
+
const mapping = new Map();
|
|
7
|
+
for (const file of files) {
|
|
8
|
+
const buffer = Buffer.from(file.base64, "base64");
|
|
9
|
+
const saved = await saveMediaBuffer(buffer, file.mimeType, "browser", buffer.byteLength);
|
|
10
|
+
mapping.set(file.path, saved.path);
|
|
11
|
+
}
|
|
12
|
+
return mapping;
|
|
13
|
+
}
|
|
14
|
+
export function applyBrowserProxyPaths(result, mapping) {
|
|
15
|
+
if (!result || typeof result !== "object") {
|
|
16
|
+
return;
|
|
17
|
+
}
|
|
18
|
+
const obj = result;
|
|
19
|
+
if (typeof obj.path === "string" && mapping.has(obj.path)) {
|
|
20
|
+
obj.path = mapping.get(obj.path);
|
|
21
|
+
}
|
|
22
|
+
if (typeof obj.imagePath === "string" && mapping.has(obj.imagePath)) {
|
|
23
|
+
obj.imagePath = mapping.get(obj.imagePath);
|
|
24
|
+
}
|
|
25
|
+
const download = obj.download;
|
|
26
|
+
if (download && typeof download === "object") {
|
|
27
|
+
const d = download;
|
|
28
|
+
if (typeof d.path === "string" && mapping.has(d.path)) {
|
|
29
|
+
d.path = mapping.get(d.path);
|
|
30
|
+
}
|
|
31
|
+
}
|
|
32
|
+
}
|
|
@@ -0,0 +1,42 @@
|
|
|
1
|
+
import { createConfigIO, loadConfig } from "../config/config.js";
|
|
2
|
+
import { resolveBrowserConfig, resolveProfile } from "./config.js";
|
|
3
|
+
function applyResolvedConfig(current, freshResolved) {
|
|
4
|
+
current.resolved = freshResolved;
|
|
5
|
+
for (const [name, runtime] of current.profiles) {
|
|
6
|
+
const nextProfile = resolveProfile(freshResolved, name);
|
|
7
|
+
if (nextProfile) {
|
|
8
|
+
runtime.profile = nextProfile;
|
|
9
|
+
continue;
|
|
10
|
+
}
|
|
11
|
+
if (!runtime.running) {
|
|
12
|
+
current.profiles.delete(name);
|
|
13
|
+
}
|
|
14
|
+
}
|
|
15
|
+
}
|
|
16
|
+
export function refreshResolvedBrowserConfigFromDisk(params) {
|
|
17
|
+
if (!params.refreshConfigFromDisk) {
|
|
18
|
+
return;
|
|
19
|
+
}
|
|
20
|
+
const cfg = params.mode === "fresh" ? createConfigIO().loadConfig() : loadConfig();
|
|
21
|
+
const freshResolved = resolveBrowserConfig(cfg.browser, cfg);
|
|
22
|
+
applyResolvedConfig(params.current, freshResolved);
|
|
23
|
+
}
|
|
24
|
+
export function resolveBrowserProfileWithHotReload(params) {
|
|
25
|
+
refreshResolvedBrowserConfigFromDisk({
|
|
26
|
+
current: params.current,
|
|
27
|
+
refreshConfigFromDisk: params.refreshConfigFromDisk,
|
|
28
|
+
mode: "cached",
|
|
29
|
+
});
|
|
30
|
+
let profile = resolveProfile(params.current.resolved, params.name);
|
|
31
|
+
if (profile) {
|
|
32
|
+
return profile;
|
|
33
|
+
}
|
|
34
|
+
// Hot-reload: profile missing; retry with a fresh disk read without flushing the global cache.
|
|
35
|
+
refreshResolvedBrowserConfigFromDisk({
|
|
36
|
+
current: params.current,
|
|
37
|
+
refreshConfigFromDisk: params.refreshConfigFromDisk,
|
|
38
|
+
mode: "fresh",
|
|
39
|
+
});
|
|
40
|
+
profile = resolveProfile(params.current.resolved, params.name);
|
|
41
|
+
return profile;
|
|
42
|
+
}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
export * from "../paths.js";
|
|
@@ -0,0 +1,20 @@
|
|
|
1
|
+
import fs from "node:fs/promises";
|
|
2
|
+
import os from "node:os";
|
|
3
|
+
import path from "node:path";
|
|
4
|
+
import { afterAll, beforeAll, vi } from "vitest";
|
|
5
|
+
const chromeUserDataDir = { dir: "/tmp/openclaw" };
|
|
6
|
+
beforeAll(async () => {
|
|
7
|
+
chromeUserDataDir.dir = await fs.mkdtemp(path.join(os.tmpdir(), "openclaw-chrome-user-data-"));
|
|
8
|
+
});
|
|
9
|
+
afterAll(async () => {
|
|
10
|
+
await fs.rm(chromeUserDataDir.dir, { recursive: true, force: true });
|
|
11
|
+
});
|
|
12
|
+
vi.mock("./chrome.js", () => ({
|
|
13
|
+
isChromeCdpReady: vi.fn(async () => true),
|
|
14
|
+
isChromeReachable: vi.fn(async () => true),
|
|
15
|
+
launchOpenClawChrome: vi.fn(async () => {
|
|
16
|
+
throw new Error("unexpected launch");
|
|
17
|
+
}),
|
|
18
|
+
resolveOpenClawUserDataDir: vi.fn(() => chromeUserDataDir.dir),
|
|
19
|
+
stopOpenClawChrome: vi.fn(async () => { }),
|
|
20
|
+
}));
|
|
@@ -0,0 +1,31 @@
|
|
|
1
|
+
import express from "express";
|
|
2
|
+
import { browserMutationGuardMiddleware } from "./csrf.js";
|
|
3
|
+
import { isAuthorizedBrowserRequest } from "./http-auth.js";
|
|
4
|
+
export function installBrowserCommonMiddleware(app) {
|
|
5
|
+
app.use((req, res, next) => {
|
|
6
|
+
const ctrl = new AbortController();
|
|
7
|
+
const abort = () => ctrl.abort(new Error("request aborted"));
|
|
8
|
+
req.once("aborted", abort);
|
|
9
|
+
res.once("close", () => {
|
|
10
|
+
if (!res.writableEnded) {
|
|
11
|
+
abort();
|
|
12
|
+
}
|
|
13
|
+
});
|
|
14
|
+
// Make the signal available to browser route handlers (best-effort).
|
|
15
|
+
req.signal = ctrl.signal;
|
|
16
|
+
next();
|
|
17
|
+
});
|
|
18
|
+
app.use(express.json({ limit: "1mb" }));
|
|
19
|
+
app.use(browserMutationGuardMiddleware());
|
|
20
|
+
}
|
|
21
|
+
export function installBrowserAuthMiddleware(app, auth) {
|
|
22
|
+
if (!auth.token && !auth.password) {
|
|
23
|
+
return;
|
|
24
|
+
}
|
|
25
|
+
app.use((req, res, next) => {
|
|
26
|
+
if (isAuthorizedBrowserRequest(req, auth)) {
|
|
27
|
+
return next();
|
|
28
|
+
}
|
|
29
|
+
res.status(401).send("Unauthorized");
|
|
30
|
+
});
|
|
31
|
+
}
|
|
@@ -0,0 +1,16 @@
|
|
|
1
|
+
import { createServer } from "node:http";
|
|
2
|
+
export async function getFreePort() {
|
|
3
|
+
while (true) {
|
|
4
|
+
const port = await new Promise((resolve, reject) => {
|
|
5
|
+
const s = createServer();
|
|
6
|
+
s.once("error", reject);
|
|
7
|
+
s.listen(0, "127.0.0.1", () => {
|
|
8
|
+
const assigned = s.address().port;
|
|
9
|
+
s.close((err) => (err ? reject(err) : resolve(assigned)));
|
|
10
|
+
});
|
|
11
|
+
});
|
|
12
|
+
if (port < 65535) {
|
|
13
|
+
return port;
|
|
14
|
+
}
|
|
15
|
+
}
|
|
16
|
+
}
|
package/dist/build-info.json
CHANGED
|
@@ -0,0 +1,43 @@
|
|
|
1
|
+
import fs from "node:fs/promises";
|
|
2
|
+
import path from "node:path";
|
|
3
|
+
import { SafeOpenError, openFileWithinRoot } from "../infra/fs-safe.js";
|
|
4
|
+
export function normalizeUrlPath(rawPath) {
|
|
5
|
+
const decoded = decodeURIComponent(rawPath || "/");
|
|
6
|
+
const normalized = path.posix.normalize(decoded);
|
|
7
|
+
return normalized.startsWith("/") ? normalized : `/${normalized}`;
|
|
8
|
+
}
|
|
9
|
+
export async function resolveFileWithinRoot(rootReal, urlPath) {
|
|
10
|
+
const normalized = normalizeUrlPath(urlPath);
|
|
11
|
+
const rel = normalized.replace(/^\/+/, "");
|
|
12
|
+
if (rel.split("/").some((p) => p === "..")) {
|
|
13
|
+
return null;
|
|
14
|
+
}
|
|
15
|
+
const tryOpen = async (relative) => {
|
|
16
|
+
try {
|
|
17
|
+
return await openFileWithinRoot({ rootDir: rootReal, relativePath: relative });
|
|
18
|
+
}
|
|
19
|
+
catch (err) {
|
|
20
|
+
if (err instanceof SafeOpenError) {
|
|
21
|
+
return null;
|
|
22
|
+
}
|
|
23
|
+
throw err;
|
|
24
|
+
}
|
|
25
|
+
};
|
|
26
|
+
if (normalized.endsWith("/")) {
|
|
27
|
+
return await tryOpen(path.posix.join(rel, "index.html"));
|
|
28
|
+
}
|
|
29
|
+
const candidate = path.join(rootReal, rel);
|
|
30
|
+
try {
|
|
31
|
+
const st = await fs.lstat(candidate);
|
|
32
|
+
if (st.isSymbolicLink()) {
|
|
33
|
+
return null;
|
|
34
|
+
}
|
|
35
|
+
if (st.isDirectory()) {
|
|
36
|
+
return await tryOpen(path.posix.join(rel, "index.html"));
|
|
37
|
+
}
|
|
38
|
+
}
|
|
39
|
+
catch {
|
|
40
|
+
// ignore
|
|
41
|
+
}
|
|
42
|
+
return await tryOpen(rel);
|
|
43
|
+
}
|
|
@@ -0,0 +1,19 @@
|
|
|
1
|
+
export function buildChannelAccountSnapshot(params) {
|
|
2
|
+
const described = params.plugin.config.describeAccount?.(params.account, params.cfg);
|
|
3
|
+
return {
|
|
4
|
+
enabled: params.enabled,
|
|
5
|
+
configured: params.configured,
|
|
6
|
+
...described,
|
|
7
|
+
accountId: params.accountId,
|
|
8
|
+
};
|
|
9
|
+
}
|
|
10
|
+
export function formatChannelAllowFrom(params) {
|
|
11
|
+
if (params.plugin.config.formatAllowFrom) {
|
|
12
|
+
return params.plugin.config.formatAllowFrom({
|
|
13
|
+
cfg: params.cfg,
|
|
14
|
+
accountId: params.accountId,
|
|
15
|
+
allowFrom: params.allowFrom,
|
|
16
|
+
});
|
|
17
|
+
}
|
|
18
|
+
return params.allowFrom.map((entry) => String(entry).trim()).filter(Boolean);
|
|
19
|
+
}
|
|
@@ -0,0 +1,77 @@
|
|
|
1
|
+
export function createDraftStreamLoop(params) {
|
|
2
|
+
let lastSentAt = 0;
|
|
3
|
+
let pendingText = "";
|
|
4
|
+
let inFlightPromise;
|
|
5
|
+
let timer;
|
|
6
|
+
const flush = async () => {
|
|
7
|
+
if (timer) {
|
|
8
|
+
clearTimeout(timer);
|
|
9
|
+
timer = undefined;
|
|
10
|
+
}
|
|
11
|
+
while (!params.isStopped()) {
|
|
12
|
+
if (inFlightPromise) {
|
|
13
|
+
await inFlightPromise;
|
|
14
|
+
continue;
|
|
15
|
+
}
|
|
16
|
+
const text = pendingText;
|
|
17
|
+
if (!text.trim()) {
|
|
18
|
+
pendingText = "";
|
|
19
|
+
return;
|
|
20
|
+
}
|
|
21
|
+
pendingText = "";
|
|
22
|
+
lastSentAt = Date.now();
|
|
23
|
+
const current = params.sendOrEditStreamMessage(text).finally(() => {
|
|
24
|
+
if (inFlightPromise === current) {
|
|
25
|
+
inFlightPromise = undefined;
|
|
26
|
+
}
|
|
27
|
+
});
|
|
28
|
+
inFlightPromise = current;
|
|
29
|
+
await current;
|
|
30
|
+
if (!pendingText) {
|
|
31
|
+
return;
|
|
32
|
+
}
|
|
33
|
+
}
|
|
34
|
+
};
|
|
35
|
+
const schedule = () => {
|
|
36
|
+
if (timer) {
|
|
37
|
+
return;
|
|
38
|
+
}
|
|
39
|
+
const delay = Math.max(0, params.throttleMs - (Date.now() - lastSentAt));
|
|
40
|
+
timer = setTimeout(() => {
|
|
41
|
+
void flush();
|
|
42
|
+
}, delay);
|
|
43
|
+
};
|
|
44
|
+
return {
|
|
45
|
+
update: (text) => {
|
|
46
|
+
if (params.isStopped()) {
|
|
47
|
+
return;
|
|
48
|
+
}
|
|
49
|
+
pendingText = text;
|
|
50
|
+
if (inFlightPromise) {
|
|
51
|
+
schedule();
|
|
52
|
+
return;
|
|
53
|
+
}
|
|
54
|
+
if (!timer && Date.now() - lastSentAt >= params.throttleMs) {
|
|
55
|
+
void flush();
|
|
56
|
+
return;
|
|
57
|
+
}
|
|
58
|
+
schedule();
|
|
59
|
+
},
|
|
60
|
+
flush,
|
|
61
|
+
stop: () => {
|
|
62
|
+
pendingText = "";
|
|
63
|
+
if (timer) {
|
|
64
|
+
clearTimeout(timer);
|
|
65
|
+
timer = undefined;
|
|
66
|
+
}
|
|
67
|
+
},
|
|
68
|
+
resetPending: () => {
|
|
69
|
+
pendingText = "";
|
|
70
|
+
},
|
|
71
|
+
waitForInFlight: async () => {
|
|
72
|
+
if (inFlightPromise) {
|
|
73
|
+
await inFlightPromise;
|
|
74
|
+
}
|
|
75
|
+
},
|
|
76
|
+
};
|
|
77
|
+
}
|
|
@@ -0,0 +1,26 @@
|
|
|
1
|
+
import { DEFAULT_ACCOUNT_ID } from "../../routing/session-key.js";
|
|
2
|
+
export function createAccountListHelpers(channelKey) {
|
|
3
|
+
function listConfiguredAccountIds(cfg) {
|
|
4
|
+
const channel = cfg.channels?.[channelKey];
|
|
5
|
+
const accounts = channel?.accounts;
|
|
6
|
+
if (!accounts || typeof accounts !== "object") {
|
|
7
|
+
return [];
|
|
8
|
+
}
|
|
9
|
+
return Object.keys(accounts).filter(Boolean);
|
|
10
|
+
}
|
|
11
|
+
function listAccountIds(cfg) {
|
|
12
|
+
const ids = listConfiguredAccountIds(cfg);
|
|
13
|
+
if (ids.length === 0) {
|
|
14
|
+
return [DEFAULT_ACCOUNT_ID];
|
|
15
|
+
}
|
|
16
|
+
return ids.toSorted((a, b) => a.localeCompare(b));
|
|
17
|
+
}
|
|
18
|
+
function resolveDefaultAccountId(cfg) {
|
|
19
|
+
const ids = listAccountIds(cfg);
|
|
20
|
+
if (ids.includes(DEFAULT_ACCOUNT_ID)) {
|
|
21
|
+
return DEFAULT_ACCOUNT_ID;
|
|
22
|
+
}
|
|
23
|
+
return ids[0] ?? DEFAULT_ACCOUNT_ID;
|
|
24
|
+
}
|
|
25
|
+
return { listConfiguredAccountIds, listAccountIds, resolveDefaultAccountId };
|
|
26
|
+
}
|
|
@@ -0,0 +1,10 @@
|
|
|
1
|
+
export function normalizeTelegramAllowFromEntry(raw) {
|
|
2
|
+
const base = typeof raw === "string" ? raw : typeof raw === "number" ? String(raw) : "";
|
|
3
|
+
return base
|
|
4
|
+
.trim()
|
|
5
|
+
.replace(/^(telegram|tg):/i, "")
|
|
6
|
+
.trim();
|
|
7
|
+
}
|
|
8
|
+
export function isNumericTelegramUserId(raw) {
|
|
9
|
+
return /^\d+$/.test(raw);
|
|
10
|
+
}
|
|
@@ -0,0 +1,22 @@
|
|
|
1
|
+
import { danger } from "../globals.js";
|
|
2
|
+
import { defaultRuntime } from "../runtime.js";
|
|
3
|
+
import { callBrowserResize } from "./browser-cli-shared.js";
|
|
4
|
+
export async function runBrowserResizeWithOutput(params) {
|
|
5
|
+
const { width, height } = params;
|
|
6
|
+
if (!Number.isFinite(width) || !Number.isFinite(height)) {
|
|
7
|
+
defaultRuntime.error(danger("width and height must be numbers"));
|
|
8
|
+
defaultRuntime.exit(1);
|
|
9
|
+
return;
|
|
10
|
+
}
|
|
11
|
+
const result = await callBrowserResize(params.parent, {
|
|
12
|
+
profile: params.profile,
|
|
13
|
+
width,
|
|
14
|
+
height,
|
|
15
|
+
targetId: params.targetId,
|
|
16
|
+
}, { timeoutMs: params.timeoutMs ?? 20000 });
|
|
17
|
+
if (params.parent?.json) {
|
|
18
|
+
defaultRuntime.log(JSON.stringify(result, null, 2));
|
|
19
|
+
return;
|
|
20
|
+
}
|
|
21
|
+
defaultRuntime.log(params.successMessage);
|
|
22
|
+
}
|
|
@@ -32,3 +32,11 @@ export async function callBrowserRequest(opts, params, extra) {
|
|
|
32
32
|
}
|
|
33
33
|
return payload;
|
|
34
34
|
}
|
|
35
|
+
export async function callBrowserResize(opts, params, extra) {
|
|
36
|
+
return await callBrowserRequest(opts, {
|
|
37
|
+
method: "POST",
|
|
38
|
+
path: "/resize",
|
|
39
|
+
query: params.profile ? { profile: params.profile } : undefined,
|
|
40
|
+
body: { width: params.width, height: params.height, targetId: params.targetId },
|
|
41
|
+
}, extra);
|
|
42
|
+
}
|