npm - @poolzin/pool-bot - Versions diffs - 2026.2.23 → 2026.2.25 - Mend

@poolzin/pool-bot 2026.2.23 → 2026.2.25

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (235) hide show

package/CHANGELOG.md +29 -0
package/dist/acp/client.js +207 -18
package/dist/acp/secret-file.js +22 -0
package/dist/agents/agent-scope.js +10 -0
package/dist/agents/bash-process-registry.test-helpers.js +29 -0
package/dist/agents/bash-tools.exec-approval-request.js +20 -0
package/dist/agents/bash-tools.exec-host-gateway.js +230 -0
package/dist/agents/bash-tools.exec-host-node.js +235 -0
package/dist/agents/bash-tools.exec-types.js +1 -0
package/dist/agents/bash-tools.process.js +224 -218
package/dist/agents/content-blocks.js +16 -0
package/dist/agents/model-fallback.js +96 -101
package/dist/agents/models-config.providers.js +299 -182
package/dist/agents/pi-embedded-payloads.js +1 -0
package/dist/agents/pi-embedded-runner/run.overflow-compaction.fixture.js +34 -0
package/dist/agents/skills.test-helpers.js +13 -0
package/dist/agents/stable-stringify.js +12 -0
package/dist/agents/subagent-registry.mocks.shared.js +12 -0
package/dist/agents/test-helpers/assistant-message-fixtures.js +29 -0
package/dist/agents/test-helpers/pi-tools-sandbox-context.js +27 -0
package/dist/agents/tool-policy-shared.js +108 -0
package/dist/agents/tools/browser-tool.js +160 -54
package/dist/agents/tools/cron-tool.test-helpers.js +12 -0
package/dist/agents/tools/discord-actions-moderation-shared.js +27 -0
package/dist/agents/tools/image-tool.js +214 -99
package/dist/agents/tools/sessions-history-tool.js +140 -108
package/dist/agents/workspace.js +222 -46
package/dist/auto-reply/commands-registry.js +15 -18
package/dist/auto-reply/fallback-state.js +114 -0
package/dist/auto-reply/model-runtime.js +68 -0
package/dist/auto-reply/reply/agent-runner-execution.js +36 -4
package/dist/auto-reply/reply/agent-runner.js +165 -39
package/dist/auto-reply/reply/commands-setunset-standard.js +13 -0
package/dist/browser/config.js +26 -0
package/dist/browser/navigation-guard.js +31 -0
package/dist/browser/routes/agent.act.js +431 -424
package/dist/browser/routes/agent.shared.js +47 -3
package/dist/browser/routes/agent.snapshot.js +122 -116
package/dist/browser/routes/agent.storage.js +303 -297
package/dist/browser/routes/tabs.js +154 -100
package/dist/browser/server-lifecycle.js +37 -0
package/dist/build-info.json +3 -3
package/dist/channels/allow-from.js +25 -0
package/dist/channels/plugins/account-action-gate.js +13 -0
package/dist/channels/plugins/message-actions.js +10 -0
package/dist/channels/telegram/api.js +18 -0
package/dist/cli/argv.js +84 -21
package/dist/cli/banner.js +2 -1
package/dist/cli/exec-approvals-cli.js +92 -124
package/dist/cli/memory-cli.js +158 -61
package/dist/cli/nodes-cli/register.push.js +63 -0
package/dist/cli/nodes-media-utils.js +21 -0
package/dist/cli/plugins-cli.js +245 -61
package/dist/cli/program/build-program.js +3 -1
package/dist/cli/program/command-registry.js +223 -136
package/dist/cli/program/help.js +43 -12
package/dist/cli/route.js +1 -1
package/dist/cli/test-runtime-capture.js +24 -0
package/dist/commands/agent.js +163 -87
package/dist/commands/channels.mock-harness.js +23 -0
package/dist/commands/daemon-install-runtime-warning.js +11 -0
package/dist/commands/onboard-helpers.js +4 -4
package/dist/commands/sessions.test-helpers.js +61 -0
package/dist/compat/legacy-names.js +2 -2
package/dist/config/commands.js +3 -0
package/dist/config/config.js +1 -1
package/dist/config/env-substitution.js +62 -34
package/dist/config/env-vars.js +9 -0
package/dist/config/io.js +571 -171
package/dist/config/merge-patch.js +50 -4
package/dist/config/redact-snapshot.js +404 -76
package/dist/config/schema.js +58 -570
package/dist/config/validation.js +140 -85
package/dist/config/zod-schema.hooks.js +40 -11
package/dist/config/zod-schema.installs.js +20 -0
package/dist/config/zod-schema.js +8 -7
package/dist/control-ui/assets/{index-HRr1grwl.js → index-Dvkl4Xlx.js} +2 -1
package/dist/control-ui/assets/{index-HRr1grwl.js.map → index-Dvkl4Xlx.js.map} +1 -1
package/dist/control-ui/index.html +1 -1
package/dist/daemon/cmd-argv.js +21 -0
package/dist/daemon/cmd-set.js +58 -0
package/dist/daemon/service-types.js +1 -0
package/dist/discord/monitor/exec-approvals.js +357 -162
package/dist/gateway/auth.js +38 -3
package/dist/gateway/call.js +149 -68
package/dist/gateway/canvas-capability.js +75 -0
package/dist/gateway/control-plane-audit.js +28 -0
package/dist/gateway/control-plane-rate-limit.js +53 -0
package/dist/gateway/events.js +1 -0
package/dist/gateway/hooks.js +109 -54
package/dist/gateway/http-common.js +22 -0
package/dist/gateway/method-scopes.js +169 -0
package/dist/gateway/net.js +23 -0
package/dist/gateway/openresponses-http.js +120 -110
package/dist/gateway/probe-auth.js +2 -0
package/dist/gateway/protocol/index.js +3 -2
package/dist/gateway/protocol/schema/protocol-schemas.js +2 -0
package/dist/gateway/protocol/schema/push.js +18 -0
package/dist/gateway/protocol/schema.js +1 -0
package/dist/gateway/server-http.js +236 -52
package/dist/gateway/server-methods/agent.js +162 -24
package/dist/gateway/server-methods/chat.js +461 -130
package/dist/gateway/server-methods/config.js +193 -150
package/dist/gateway/server-methods/nodes.helpers.js +12 -0
package/dist/gateway/server-methods/nodes.js +251 -69
package/dist/gateway/server-methods/push.js +53 -0
package/dist/gateway/server-reload-handlers.js +2 -3
package/dist/gateway/server-runtime-config.js +5 -0
package/dist/gateway/server-runtime-state.js +2 -0
package/dist/gateway/server-ws-runtime.js +1 -0
package/dist/gateway/server.impl.js +296 -139
package/dist/gateway/session-preview.test-helpers.js +11 -0
package/dist/gateway/startup-auth.js +126 -0
package/dist/gateway/test-helpers.agent-results.js +15 -0
package/dist/gateway/test-helpers.mocks.js +37 -14
package/dist/gateway/test-helpers.server.js +161 -77
package/dist/hooks/bundled/session-memory/handler.js +165 -34
package/dist/hooks/gmail-watcher-lifecycle.js +23 -0
package/dist/infra/archive-path.js +49 -0
package/dist/infra/device-pairing.js +148 -167
package/dist/infra/exec-approvals-allowlist.js +19 -70
package/dist/infra/exec-approvals-analysis.js +44 -17
package/dist/infra/exec-safe-bin-policy.js +269 -0
package/dist/infra/fixed-window-rate-limit.js +33 -0
package/dist/infra/git-root.js +61 -0
package/dist/infra/heartbeat-active-hours.js +2 -2
package/dist/infra/heartbeat-reason.js +40 -0
package/dist/infra/heartbeat-runner.js +72 -32
package/dist/infra/install-source-utils.js +91 -7
package/dist/infra/node-pairing.js +50 -105
package/dist/infra/npm-integrity.js +45 -0
package/dist/infra/npm-pack-install.js +40 -0
package/dist/infra/outbound/channel-adapters.js +20 -7
package/dist/infra/outbound/message-action-runner.js +107 -327
package/dist/infra/outbound/message.js +59 -36
package/dist/infra/outbound/outbound-policy.js +52 -25
package/dist/infra/outbound/outbound-send-service.js +58 -71
package/dist/infra/pairing-files.js +10 -0
package/dist/infra/plain-object.js +9 -0
package/dist/infra/push-apns.js +365 -0
package/dist/infra/restart-sentinel.js +16 -1
package/dist/infra/restart.js +229 -26
package/dist/infra/scp-host.js +54 -0
package/dist/infra/update-startup.js +86 -9
package/dist/media/inbound-path-policy.js +114 -0
package/dist/media/input-files.js +16 -0
package/dist/memory/test-manager.js +8 -0
package/dist/plugin-sdk/temp-path.js +47 -0
package/dist/plugins/discovery.js +217 -23
package/dist/plugins/hook-runner-global.js +16 -0
package/dist/plugins/loader.js +192 -26
package/dist/plugins/logger.js +8 -0
package/dist/plugins/manifest-registry.js +3 -0
package/dist/plugins/path-safety.js +34 -0
package/dist/plugins/registry.js +5 -2
package/dist/plugins/runtime/index.js +271 -206
package/dist/providers/github-copilot-models.js +4 -1
package/dist/security/audit-channel.js +8 -19
package/dist/security/audit-extra.async.js +354 -182
package/dist/security/audit-extra.js +11 -1
package/dist/security/audit-extra.sync.js +340 -33
package/dist/security/audit-fs.js +31 -13
package/dist/security/audit.js +145 -371
package/dist/security/dm-policy-shared.js +24 -0
package/dist/security/external-content.js +20 -8
package/dist/security/fix.js +49 -85
package/dist/security/scan-paths.js +20 -0
package/dist/security/secret-equal.js +3 -7
package/dist/security/windows-acl.js +30 -15
package/dist/shared/node-list-parse.js +13 -0
package/dist/shared/operator-scope-compat.js +37 -0
package/dist/shared/text-chunking.js +29 -0
package/dist/slack/blocks.test-helpers.js +31 -0
package/dist/slack/monitor/mrkdwn.js +8 -0
package/dist/telegram/bot-message-dispatch.js +366 -164
package/dist/telegram/draft-stream.js +30 -7
package/dist/telegram/reasoning-lane-coordinator.js +128 -0
package/dist/terminal/prompt-select-styled.js +9 -0
package/dist/test-utils/command-runner.js +6 -0
package/dist/test-utils/internal-hook-event-payload.js +10 -0
package/dist/test-utils/model-auth-mock.js +12 -0
package/dist/test-utils/provider-usage-fetch.js +14 -0
package/dist/test-utils/temp-home.js +33 -0
package/dist/tui/components/chat-log.js +9 -0
package/dist/tui/tui-command-handlers.js +36 -27
package/dist/tui/tui-event-handlers.js +122 -32
package/dist/tui/tui.js +181 -45
package/dist/utils/mask-api-key.js +10 -0
package/dist/utils/run-with-concurrency.js +39 -0
package/dist/web/media.js +4 -0
package/docs/tools/slash-commands.md +5 -1
package/extensions/bluebubbles/package.json +1 -1
package/extensions/copilot-proxy/package.json +1 -1
package/extensions/diagnostics-otel/package.json +1 -1
package/extensions/discord/package.json +1 -1
package/extensions/feishu/package.json +1 -1
package/extensions/feishu/src/external-keys.ts +19 -0
package/extensions/google-antigravity-auth/package.json +1 -1
package/extensions/google-gemini-cli-auth/package.json +1 -1
package/extensions/googlechat/package.json +1 -1
package/extensions/imessage/package.json +1 -1
package/extensions/irc/package.json +1 -1
package/extensions/line/package.json +1 -1
package/extensions/llm-task/package.json +1 -1
package/extensions/lobster/package.json +1 -1
package/extensions/lobster/src/windows-spawn.ts +193 -0
package/extensions/matrix/CHANGELOG.md +5 -0
package/extensions/matrix/package.json +1 -1
package/extensions/matrix/src/matrix/actions/limits.ts +6 -0
package/extensions/mattermost/package.json +1 -1
package/extensions/mattermost/src/mattermost/reactions.test-helpers.ts +83 -0
package/extensions/memory-core/package.json +1 -1
package/extensions/memory-lancedb/package.json +1 -1
package/extensions/minimax-portal-auth/package.json +1 -1
package/extensions/msteams/CHANGELOG.md +5 -0
package/extensions/msteams/package.json +1 -1
package/extensions/nextcloud-talk/package.json +1 -1
package/extensions/nostr/CHANGELOG.md +5 -0
package/extensions/nostr/package.json +1 -1
package/extensions/open-prose/package.json +1 -1
package/extensions/openai-codex-auth/package.json +1 -1
package/extensions/signal/package.json +1 -1
package/extensions/slack/package.json +1 -1
package/extensions/telegram/package.json +1 -1
package/extensions/tlon/package.json +1 -1
package/extensions/twitch/CHANGELOG.md +5 -0
package/extensions/twitch/package.json +1 -1
package/extensions/voice-call/CHANGELOG.md +5 -0
package/extensions/voice-call/package.json +1 -1
package/extensions/whatsapp/package.json +1 -1
package/extensions/zalo/CHANGELOG.md +5 -0
package/extensions/zalo/package.json +1 -1
package/extensions/zalouser/CHANGELOG.md +5 -0
package/extensions/zalouser/package.json +1 -1
package/package.json +1 -1

package/dist/gateway/auth.js CHANGED Viewed

@@ -104,28 +104,60 @@ async function resolveVerifiedTailscaleUser(params) {
     };
 }
 export function resolveGatewayAuth(params) {
-    const authConfig = params.authConfig ?? {};
+    const baseAuthConfig = params.authConfig ?? {};
+    const authOverride = params.authOverride ?? undefined;
+    const authConfig = { ...baseAuthConfig };
+    if (authOverride) {
+        if (authOverride.mode !== undefined) {
+            authConfig.mode = authOverride.mode;
+        }
+        if (authOverride.token !== undefined) {
+            authConfig.token = authOverride.token;
+        }
+        if (authOverride.password !== undefined) {
+            authConfig.password = authOverride.password;
+        }
+        if (authOverride.allowTailscale !== undefined) {
+            authConfig.allowTailscale = authOverride.allowTailscale;
+        }
+        if (authOverride.rateLimit !== undefined) {
+            authConfig.rateLimit = authOverride.rateLimit;
+        }
+        if (authOverride.trustedProxy !== undefined) {
+            authConfig.trustedProxy = authOverride.trustedProxy;
+        }
+    }
     const env = params.env ?? process.env;
     const token = authConfig.token ?? env.POOLBOT_GATEWAY_TOKEN ?? undefined;
     const password = authConfig.password ?? env.POOLBOT_GATEWAY_PASSWORD ?? undefined;
     const trustedProxy = authConfig.trustedProxy;
     let mode;
-    if (authConfig.mode) {
+    let modeSource;
+    if (authOverride?.mode !== undefined) {
+        mode = authOverride.mode;
+        modeSource = "override";
+    }
+    else if (authConfig.mode) {
         mode = authConfig.mode;
+        modeSource = "config";
     }
     else if (password) {
         mode = "password";
+        modeSource = "password";
     }
     else if (token) {
         mode = "token";
+        modeSource = "token";
     }
     else {
-        mode = "none";
+        mode = "token";
+        modeSource = "default";
     }
     const allowTailscale = authConfig.allowTailscale ??
         (params.tailscaleMode === "serve" && mode !== "password" && mode !== "trusted-proxy");
     return {
         mode,
+        modeSource,
         token,
         password,
         allowTailscale,
@@ -203,6 +235,9 @@ export async function authorizeGatewayConnect(params) {
         }
         return { ok: false, reason: result.reason };
     }
+    if (auth.mode === "none") {
+        return { ok: true, method: "none" };
+    }
     const limiter = params.rateLimiter;
     const ip = params.clientIp ?? resolveRequestClientIp(req, trustedProxies) ?? req?.socket?.remoteAddress;
     const rateLimitScope = params.rateLimitScope ?? AUTH_RATE_LIMIT_SCOPE_SHARED_SECRET;

package/dist/gateway/call.js CHANGED Viewed

@@ -5,7 +5,8 @@ import { pickPrimaryTailnetIPv4 } from "../infra/tailnet.js";
 import { loadGatewayTlsRuntime } from "../infra/tls/gateway.js";
 import { GATEWAY_CLIENT_MODES, GATEWAY_CLIENT_NAMES, } from "../utils/message-channel.js";
 import { GatewayClient } from "./client.js";
-import { pickPrimaryLanIPv4 } from "./net.js";
+import { CLI_DEFAULT_OPERATOR_SCOPES, resolveLeastPrivilegeOperatorScopesForMethod, } from "./method-scopes.js";
+import { isSecureWebSocketUrl, pickPrimaryLanIPv4 } from "./net.js";
 import { PROTOCOL_VERSION } from "./protocol/index.js";
 export function resolveExplicitGatewayAuth(opts) {
     const token = typeof opts?.token === "string" && opts.token.trim().length > 0 ? opts.token.trim() : undefined;
@@ -69,6 +70,18 @@ export function buildGatewayConnectionDetails(options = {}) {
         ? "Warn: gateway.mode=remote but gateway.remote.url is missing; set gateway.remote.url or switch gateway.mode=local."
         : undefined;
     const bindDetail = !urlOverride && !remoteUrl ? `Bind: ${bindMode}` : undefined;
+    // Security check: block ALL insecure ws:// to non-loopback addresses (CWE-319, CVSS 9.8)
+    // This applies to the FINAL resolved URL, regardless of source (config, CLI override, etc).
+    // Both credentials and chat/conversation data must not be transmitted over plaintext to remote hosts.
+    if (!isSecureWebSocketUrl(url)) {
+        throw new Error([
+            `SECURITY ERROR: Gateway URL "${url}" uses plaintext ws:// to a non-loopback address.`,
+            "Both credentials and chat data would be exposed to network interception.",
+            `Source: ${urlSource}`,
+            `Config: ${configPath}`,
+            "Fix: Use wss:// for the gateway URL, or connect via SSH tunnel to localhost.",
+        ].join("\n"));
+    }
     const message = [
         `Gateway target: ${url}`,
         `Source: ${urlSource}`,
@@ -86,77 +99,89 @@ export function buildGatewayConnectionDetails(options = {}) {
         message,
     };
 }
-export async function callGateway(opts) {
-    const timeoutMs = typeof opts.timeoutMs === "number" && Number.isFinite(opts.timeoutMs) ? opts.timeoutMs : 10_000;
+function trimToUndefined(value) {
+    if (typeof value !== "string") {
+        return undefined;
+    }
+    const trimmed = value.trim();
+    return trimmed.length > 0 ? trimmed : undefined;
+}
+function resolveGatewayCallTimeout(timeoutValue) {
+    const timeoutMs = typeof timeoutValue === "number" && Number.isFinite(timeoutValue) ? timeoutValue : 10_000;
     const safeTimerTimeoutMs = Math.max(1, Math.min(Math.floor(timeoutMs), 2_147_483_647));
+    return { timeoutMs, safeTimerTimeoutMs };
+}
+function resolveGatewayCallContext(opts) {
     const config = opts.config ?? loadConfig();
+    const configPath = opts.configPath ?? resolveConfigPath(process.env, resolveStateDir(process.env));
     const isRemoteMode = config.gateway?.mode === "remote";
-    const remote = isRemoteMode ? config.gateway?.remote : undefined;
-    const urlOverride = typeof opts.url === "string" && opts.url.trim().length > 0 ? opts.url.trim() : undefined;
+    const remote = isRemoteMode
+        ? config.gateway?.remote
+        : undefined;
+    const urlOverride = trimToUndefined(opts.url);
+    const remoteUrl = trimToUndefined(remote?.url);
     const explicitAuth = resolveExplicitGatewayAuth({ token: opts.token, password: opts.password });
-    ensureExplicitGatewayAuth({
-        urlOverride,
-        auth: explicitAuth,
-        errorHint: "Fix: pass --token or --password (or gatewayToken in tools).",
-        configPath: opts.configPath ?? resolveConfigPath(process.env, resolveStateDir(process.env)),
-    });
-    const remoteUrl = typeof remote?.url === "string" && remote.url.trim().length > 0 ? remote.url.trim() : undefined;
-    if (isRemoteMode && !urlOverride && !remoteUrl) {
-        const configPath = opts.configPath ?? resolveConfigPath(process.env, resolveStateDir(process.env));
-        throw new Error([
-            "gateway remote mode misconfigured: gateway.remote.url missing",
-            `Config: ${configPath}`,
-            "Fix: set gateway.remote.url, or set gateway.mode=local.",
-        ].join("\n"));
+    return { config, configPath, isRemoteMode, remote, urlOverride, remoteUrl, explicitAuth };
+}
+function ensureRemoteModeUrlConfigured(context) {
+    if (!context.isRemoteMode || context.urlOverride || context.remoteUrl) {
+        return;
     }
-    const authToken = config.gateway?.auth?.token;
-    const authPassword = config.gateway?.auth?.password;
-    const connectionDetails = buildGatewayConnectionDetails({
-        config,
-        url: urlOverride,
-        ...(opts.configPath ? { configPath: opts.configPath } : {}),
-    });
-    const url = connectionDetails.url;
-    const useLocalTls = config.gateway?.tls?.enabled === true && !urlOverride && !remoteUrl && url.startsWith("wss://");
-    const tlsRuntime = useLocalTls ? await loadGatewayTlsRuntime(config.gateway?.tls) : undefined;
-    const remoteTlsFingerprint = isRemoteMode && !urlOverride && remoteUrl && typeof remote?.tlsFingerprint === "string"
-        ? remote.tlsFingerprint.trim()
-        : undefined;
-    const overrideTlsFingerprint = typeof opts.tlsFingerprint === "string" ? opts.tlsFingerprint.trim() : undefined;
-    const tlsFingerprint = overrideTlsFingerprint ||
-        remoteTlsFingerprint ||
-        (tlsRuntime?.enabled ? tlsRuntime.fingerprintSha256 : undefined);
-    const token = explicitAuth.token ||
-        (!urlOverride
-            ? isRemoteMode
-                ? typeof remote?.token === "string" && remote.token.trim().length > 0
-                    ? remote.token.trim()
-                    : undefined
-                : process.env.POOLBOT_GATEWAY_TOKEN?.trim() ||
-                    process.env.CLAWDBOT_GATEWAY_TOKEN?.trim() ||
-                    (typeof authToken === "string" && authToken.trim().length > 0
-                        ? authToken.trim()
-                        : undefined)
+    throw new Error([
+        "gateway remote mode misconfigured: gateway.remote.url missing",
+        `Config: ${context.configPath}`,
+        "Fix: set gateway.remote.url, or set gateway.mode=local.",
+    ].join("\n"));
+}
+function resolveGatewayCredentials(context) {
+    const authToken = context.config.gateway?.auth?.token;
+    const authPassword = context.config.gateway?.auth?.password;
+    const token = context.explicitAuth.token ||
+        (!context.urlOverride
+            ? context.isRemoteMode
+                ? trimToUndefined(context.remote?.token)
+                : trimToUndefined(process.env.POOLBOT_GATEWAY_TOKEN) ||
+                    trimToUndefined(process.env.CLAWDBOT_GATEWAY_TOKEN) ||
+                    trimToUndefined(authToken)
             : undefined);
-    const password = explicitAuth.password ||
-        (!urlOverride
-            ? process.env.POOLBOT_GATEWAY_PASSWORD?.trim() ||
-                process.env.CLAWDBOT_GATEWAY_PASSWORD?.trim() ||
-                (isRemoteMode
-                    ? typeof remote?.password === "string" && remote.password.trim().length > 0
-                        ? remote.password.trim()
-                        : undefined
-                    : typeof authPassword === "string" && authPassword.trim().length > 0
-                        ? authPassword.trim()
-                        : undefined)
+    const password = context.explicitAuth.password ||
+        (!context.urlOverride
+            ? trimToUndefined(process.env.POOLBOT_GATEWAY_PASSWORD) ||
+                trimToUndefined(process.env.CLAWDBOT_GATEWAY_PASSWORD) ||
+                (context.isRemoteMode
+                    ? trimToUndefined(context.remote?.password)
+                    : trimToUndefined(authPassword))
             : undefined);
-    const formatCloseError = (code, reason) => {
-        const reasonText = reason?.trim() || "no close reason";
-        const hint = code === 1006 ? "abnormal closure (no close frame)" : code === 1000 ? "normal closure" : "";
-        const suffix = hint ? ` ${hint}` : "";
-        return `gateway closed (${code}${suffix}): ${reasonText}\n${connectionDetails.message}`;
-    };
-    const formatTimeoutError = () => `gateway timeout after ${timeoutMs}ms\n${connectionDetails.message}`;
+    return { token, password };
+}
+async function resolveGatewayTlsFingerprint(params) {
+    const { opts, context, url } = params;
+    const useLocalTls = context.config.gateway?.tls?.enabled === true &&
+        !context.urlOverride &&
+        !context.remoteUrl &&
+        url.startsWith("wss://");
+    const tlsRuntime = useLocalTls
+        ? await loadGatewayTlsRuntime(context.config.gateway?.tls)
+        : undefined;
+    const overrideTlsFingerprint = trimToUndefined(opts.tlsFingerprint);
+    const remoteTlsFingerprint = context.isRemoteMode && !context.urlOverride && context.remoteUrl
+        ? trimToUndefined(context.remote?.tlsFingerprint)
+        : undefined;
+    return (overrideTlsFingerprint ||
+        remoteTlsFingerprint ||
+        (tlsRuntime?.enabled ? tlsRuntime.fingerprintSha256 : undefined));
+}
+function formatGatewayCloseError(code, reason, connectionDetails) {
+    const reasonText = reason?.trim() || "no close reason";
+    const hint = code === 1006 ? "abnormal closure (no close frame)" : code === 1000 ? "normal closure" : "";
+    const suffix = hint ? ` ${hint}` : "";
+    return `gateway closed (${code}${suffix}): ${reasonText}\n${connectionDetails.message}`;
+}
+function formatGatewayTimeoutError(timeoutMs, connectionDetails) {
+    return `gateway timeout after ${timeoutMs}ms\n${connectionDetails.message}`;
+}
+async function executeGatewayRequestWithScopes(params) {
+    const { opts, scopes, url, token, password, tlsFingerprint, timeoutMs, safeTimerTimeoutMs } = params;
     return await new Promise((resolve, reject) => {
         let settled = false;
         let ignoreClose = false;
@@ -185,7 +210,7 @@ export async function callGateway(opts) {
             platform: opts.platform,
             mode: opts.mode ?? GATEWAY_CLIENT_MODES.CLI,
             role: "operator",
-            scopes: ["operator.admin", "operator.approvals", "operator.pairing"],
+            scopes,
             deviceIdentity: loadOrCreateDeviceIdentity(),
             minProtocol: opts.minProtocol ?? PROTOCOL_VERSION,
             maxProtocol: opts.maxProtocol ?? PROTOCOL_VERSION,
@@ -210,17 +235,73 @@ export async function callGateway(opts) {
                 }
                 ignoreClose = true;
                 client.stop();
-                stop(new Error(formatCloseError(code, reason)));
+                stop(new Error(formatGatewayCloseError(code, reason, params.connectionDetails)));
             },
         });
         const timer = setTimeout(() => {
             ignoreClose = true;
             client.stop();
-            stop(new Error(formatTimeoutError()));
+            stop(new Error(formatGatewayTimeoutError(timeoutMs, params.connectionDetails)));
         }, safeTimerTimeoutMs);
         client.start();
     });
 }
+async function callGatewayWithScopes(opts, scopes) {
+    const { timeoutMs, safeTimerTimeoutMs } = resolveGatewayCallTimeout(opts.timeoutMs);
+    const context = resolveGatewayCallContext(opts);
+    ensureExplicitGatewayAuth({
+        urlOverride: context.urlOverride,
+        auth: context.explicitAuth,
+        errorHint: "Fix: pass --token or --password (or gatewayToken in tools).",
+        configPath: context.configPath,
+    });
+    ensureRemoteModeUrlConfigured(context);
+    const connectionDetails = buildGatewayConnectionDetails({
+        config: context.config,
+        url: context.urlOverride,
+        ...(opts.configPath ? { configPath: opts.configPath } : {}),
+    });
+    const url = connectionDetails.url;
+    const tlsFingerprint = await resolveGatewayTlsFingerprint({ opts, context, url });
+    const { token, password } = resolveGatewayCredentials(context);
+    return await executeGatewayRequestWithScopes({
+        opts,
+        scopes,
+        url,
+        token,
+        password,
+        tlsFingerprint,
+        timeoutMs,
+        safeTimerTimeoutMs,
+        connectionDetails,
+    });
+}
+export async function callGatewayScoped(opts) {
+    return await callGatewayWithScopes(opts, opts.scopes);
+}
+export async function callGatewayCli(opts) {
+    const scopes = Array.isArray(opts.scopes) ? opts.scopes : CLI_DEFAULT_OPERATOR_SCOPES;
+    return await callGatewayWithScopes(opts, scopes);
+}
+export async function callGatewayLeastPrivilege(opts) {
+    const scopes = resolveLeastPrivilegeOperatorScopesForMethod(opts.method);
+    return await callGatewayWithScopes(opts, scopes);
+}
+export async function callGateway(opts) {
+    if (Array.isArray(opts.scopes)) {
+        return await callGatewayWithScopes(opts, opts.scopes);
+    }
+    const callerMode = opts.mode ?? GATEWAY_CLIENT_MODES.BACKEND;
+    const callerName = opts.clientName ?? GATEWAY_CLIENT_NAMES.GATEWAY_CLIENT;
+    if (callerMode === GATEWAY_CLIENT_MODES.CLI || callerName === GATEWAY_CLIENT_NAMES.CLI) {
+        return await callGatewayCli(opts);
+    }
+    return await callGatewayLeastPrivilege({
+        ...opts,
+        mode: callerMode,
+        clientName: callerName,
+    });
+}
 export function randomIdempotencyKey() {
     return randomUUID();
 }

package/dist/gateway/canvas-capability.js ADDED Viewed

@@ -0,0 +1,75 @@
+import { randomBytes } from "node:crypto";
+export const CANVAS_CAPABILITY_PATH_PREFIX = "/__poolbot__/cap";
+export const CANVAS_CAPABILITY_QUERY_PARAM = "oc_cap";
+export const CANVAS_CAPABILITY_TTL_MS = 10 * 60_000;
+function normalizeCapability(raw) {
+    const trimmed = raw?.trim();
+    return trimmed ? trimmed : undefined;
+}
+export function mintCanvasCapabilityToken() {
+    return randomBytes(18).toString("base64url");
+}
+export function buildCanvasScopedHostUrl(baseUrl, capability) {
+    const normalizedCapability = normalizeCapability(capability);
+    if (!normalizedCapability) {
+        return undefined;
+    }
+    try {
+        const url = new URL(baseUrl);
+        const trimmedPath = url.pathname.replace(/\/+$/, "");
+        const prefix = `${CANVAS_CAPABILITY_PATH_PREFIX}/${encodeURIComponent(normalizedCapability)}`;
+        url.pathname = `${trimmedPath}${prefix}`;
+        url.search = "";
+        url.hash = "";
+        return url.toString().replace(/\/$/, "");
+    }
+    catch {
+        return undefined;
+    }
+}
+export function normalizeCanvasScopedUrl(rawUrl) {
+    const url = new URL(rawUrl, "http://localhost");
+    const prefix = `${CANVAS_CAPABILITY_PATH_PREFIX}/`;
+    let scopedPath = false;
+    let malformedScopedPath = false;
+    let capabilityFromPath;
+    let rewrittenUrl;
+    if (url.pathname.startsWith(prefix)) {
+        scopedPath = true;
+        const remainder = url.pathname.slice(prefix.length);
+        const slashIndex = remainder.indexOf("/");
+        if (slashIndex <= 0) {
+            malformedScopedPath = true;
+        }
+        else {
+            const encodedCapability = remainder.slice(0, slashIndex);
+            const canonicalPath = remainder.slice(slashIndex) || "/";
+            let decoded;
+            try {
+                decoded = decodeURIComponent(encodedCapability);
+            }
+            catch {
+                malformedScopedPath = true;
+            }
+            capabilityFromPath = normalizeCapability(decoded);
+            if (!capabilityFromPath || !canonicalPath.startsWith("/")) {
+                malformedScopedPath = true;
+            }
+            else {
+                url.pathname = canonicalPath;
+                if (!url.searchParams.has(CANVAS_CAPABILITY_QUERY_PARAM)) {
+                    url.searchParams.set(CANVAS_CAPABILITY_QUERY_PARAM, capabilityFromPath);
+                }
+                rewrittenUrl = `${url.pathname}${url.search}`;
+            }
+        }
+    }
+    const capability = capabilityFromPath ?? normalizeCapability(url.searchParams.get(CANVAS_CAPABILITY_QUERY_PARAM));
+    return {
+        pathname: url.pathname,
+        capability,
+        rewrittenUrl,
+        scopedPath,
+        malformedScopedPath,
+    };
+}

package/dist/gateway/control-plane-audit.js ADDED Viewed

@@ -0,0 +1,28 @@
+function normalizePart(value, fallback) {
+    if (typeof value !== "string") {
+        return fallback;
+    }
+    const normalized = value.trim();
+    return normalized.length > 0 ? normalized : fallback;
+}
+export function resolveControlPlaneActor(client) {
+    return {
+        actor: normalizePart(client?.connect?.client?.id, "unknown-actor"),
+        deviceId: normalizePart(client?.connect?.device?.id, "unknown-device"),
+        clientIp: normalizePart(client?.clientIp, "unknown-ip"),
+        connId: normalizePart(client?.connId, "unknown-conn"),
+    };
+}
+export function formatControlPlaneActor(actor) {
+    return `actor=${actor.actor} device=${actor.deviceId} ip=${actor.clientIp} conn=${actor.connId}`;
+}
+export function summarizeChangedPaths(paths, maxPaths = 8) {
+    if (paths.length === 0) {
+        return "<none>";
+    }
+    if (paths.length <= maxPaths) {
+        return paths.join(",");
+    }
+    const head = paths.slice(0, maxPaths).join(",");
+    return `${head},+${paths.length - maxPaths} more`;
+}

package/dist/gateway/control-plane-rate-limit.js ADDED Viewed

@@ -0,0 +1,53 @@
+const CONTROL_PLANE_RATE_LIMIT_MAX_REQUESTS = 3;
+const CONTROL_PLANE_RATE_LIMIT_WINDOW_MS = 60_000;
+const controlPlaneBuckets = new Map();
+function normalizePart(value, fallback) {
+    if (typeof value !== "string") {
+        return fallback;
+    }
+    const normalized = value.trim();
+    return normalized.length > 0 ? normalized : fallback;
+}
+export function resolveControlPlaneRateLimitKey(client) {
+    const deviceId = normalizePart(client?.connect?.device?.id, "unknown-device");
+    const clientIp = normalizePart(client?.clientIp, "unknown-ip");
+    return `${deviceId}|${clientIp}`;
+}
+export function consumeControlPlaneWriteBudget(params) {
+    const nowMs = params.nowMs ?? Date.now();
+    const key = resolveControlPlaneRateLimitKey(params.client);
+    const bucket = controlPlaneBuckets.get(key);
+    if (!bucket || nowMs - bucket.windowStartMs >= CONTROL_PLANE_RATE_LIMIT_WINDOW_MS) {
+        controlPlaneBuckets.set(key, {
+            count: 1,
+            windowStartMs: nowMs,
+        });
+        return {
+            allowed: true,
+            retryAfterMs: 0,
+            remaining: CONTROL_PLANE_RATE_LIMIT_MAX_REQUESTS - 1,
+            key,
+        };
+    }
+    if (bucket.count >= CONTROL_PLANE_RATE_LIMIT_MAX_REQUESTS) {
+        const retryAfterMs = Math.max(0, bucket.windowStartMs + CONTROL_PLANE_RATE_LIMIT_WINDOW_MS - nowMs);
+        return {
+            allowed: false,
+            retryAfterMs,
+            remaining: 0,
+            key,
+        };
+    }
+    bucket.count += 1;
+    return {
+        allowed: true,
+        retryAfterMs: 0,
+        remaining: Math.max(0, CONTROL_PLANE_RATE_LIMIT_MAX_REQUESTS - bucket.count),
+        key,
+    };
+}
+export const __testing = {
+    resetControlPlaneRateLimitState() {
+        controlPlaneBuckets.clear();
+    },
+};

package/dist/gateway/events.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export const GATEWAY_EVENT_UPDATE_AVAILABLE = "update.available";