npm - @poolzin/pool-bot - Versions diffs - 2026.2.25 → 2026.2.26 - Mend

@poolzin/pool-bot 2026.2.25 → 2026.2.26

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (506) hide show

package/dist/acp/event-mapper.js +87 -22
package/dist/acp/meta.js +12 -6
package/dist/agents/agent-paths.js +8 -9
package/dist/agents/agent-scope.js +7 -5
package/dist/agents/auth-profiles/oauth.js +148 -64
package/dist/agents/auth-profiles/session-override.js +13 -7
package/dist/agents/bash-tools.exec-host-gateway.js +14 -4
package/dist/agents/bash-tools.exec-runtime.js +2 -25
package/dist/agents/bedrock-discovery.js +3 -1
package/dist/agents/byteplus-models.js +97 -0
package/dist/agents/chutes-oauth.js +1 -0
package/dist/agents/cli-runner/helpers.js +4 -0
package/dist/agents/compaction.js +41 -14
package/dist/agents/doubao-models.js +121 -0
package/dist/agents/failover-error.js +2 -0
package/dist/agents/huggingface-models.js +5 -3
package/dist/agents/live-model-filter.js +5 -0
package/dist/agents/minimax-vlm.js +10 -8
package/dist/agents/model-auth.js +6 -0
package/dist/agents/model-catalog.js +3 -1
package/dist/agents/model-selection.js +7 -1
package/dist/agents/models-config.providers.js +93 -11
package/dist/agents/ollama-stream.js +117 -4
package/dist/agents/opencode-zen-models.js +22 -11
package/dist/agents/pi-embedded-helpers/errors.js +55 -33
package/dist/agents/pi-embedded-helpers/messaging-dedupe.js +10 -5
package/dist/agents/pi-embedded-helpers/thinking.js +10 -5
package/dist/agents/pi-embedded-helpers.js +1 -1
package/dist/agents/pi-embedded-runner/compact.js +29 -7
package/dist/agents/pi-embedded-runner/extensions.js +28 -26
package/dist/agents/pi-embedded-runner/google.js +20 -8
package/dist/agents/pi-embedded-runner/run/attempt.js +95 -36
package/dist/agents/pi-embedded-runner/run.js +71 -12
package/dist/agents/pi-embedded-runner/run.overflow-compaction.mocks.shared.js +11 -2
package/dist/agents/pi-embedded-runner/session-manager-cache.js +11 -7
package/dist/agents/pi-embedded-runner/system-prompt.js +2 -0
package/dist/agents/pi-embedded-runner/thinking.js +42 -0
package/dist/agents/pi-embedded-runner/tool-name-allowlist.js +19 -0
package/dist/agents/pi-embedded-runner/utils.js +7 -10
package/dist/agents/pi-embedded-subscribe.handlers.lifecycle.js +45 -56
package/dist/agents/pi-embedded-subscribe.handlers.tools.js +2 -2
package/dist/agents/pi-embedded-subscribe.js +9 -4
package/dist/agents/pi-embedded-subscribe.tools.js +68 -14
package/dist/agents/pi-embedded-utils.js +3 -0
package/dist/agents/pi-extensions/compaction-safeguard-runtime.js +4 -20
package/dist/agents/pi-extensions/compaction-safeguard.js +75 -33
package/dist/agents/pi-settings.js +40 -0
package/dist/agents/pi-tools.policy.js +2 -1
package/dist/agents/provider/config-loader.js +1 -1
package/dist/agents/sandbox/browser.js +170 -33
package/dist/agents/sandbox/config-hash.js +14 -27
package/dist/agents/sandbox/config.js +21 -2
package/dist/agents/sandbox/constants.js +2 -0
package/dist/agents/sandbox/docker.js +16 -2
package/dist/agents/sandbox/novnc-auth.js +62 -0
package/dist/agents/sandbox/sanitize-env-vars.js +1 -1
package/dist/agents/sandbox/shared.js +10 -6
package/dist/agents/sandbox-paths.js +24 -11
package/dist/agents/schema/clean-for-gemini.js +132 -85
package/dist/agents/session-slug.js +10 -5
package/dist/agents/session-tool-result-guard-wrapper.js +1 -0
package/dist/agents/session-tool-result-guard.js +3 -1
package/dist/agents/session-transcript-repair.js +40 -6
package/dist/agents/skills/bundled-dir.js +19 -5
package/dist/agents/skills/env-overrides.js +124 -43
package/dist/agents/skills/frontmatter.js +6 -6
package/dist/agents/skills/plugin-skills.js +14 -7
package/dist/agents/skills/workspace.js +1 -0
package/dist/agents/subagent-announce.js +251 -49
package/dist/agents/subagent-lifecycle-events.js +19 -0
package/dist/agents/subagent-registry-cleanup.js +31 -0
package/dist/agents/subagent-registry-completion.js +68 -0
package/dist/agents/subagent-registry-queries.js +117 -0
package/dist/agents/subagent-registry-state.js +46 -0
package/dist/agents/subagent-registry.js +252 -221
package/dist/agents/subagent-registry.store.js +1 -0
package/dist/agents/subagent-registry.types.js +1 -0
package/dist/agents/subagent-spawn.js +195 -7
package/dist/agents/system-prompt.js +22 -6
package/dist/agents/test-helpers/fast-coding-tools.js +1 -18
package/dist/agents/test-helpers/fast-core-tools.js +1 -17
package/dist/agents/timeout.js +18 -6
package/dist/agents/tool-call-id.js +1 -1
package/dist/agents/tool-display-common.js +162 -29
package/dist/agents/tool-images.js +82 -9
package/dist/agents/tool-policy.js +51 -26
package/dist/agents/tools/browser-tool.js +2 -2
package/dist/agents/tools/canvas-tool.js +27 -1
package/dist/agents/tools/common.js +45 -0
package/dist/agents/tools/discord-actions-guild.js +4 -1
package/dist/agents/tools/gateway-tool.js +3 -1
package/dist/agents/tools/nodes-utils.js +1 -10
package/dist/agents/tools/sessions-send-helpers.js +12 -6
package/dist/agents/tools/sessions-spawn-tool.js +8 -2
package/dist/agents/tools/subagents-tool.js +2 -1
package/dist/agents/tools/whatsapp-actions.js +10 -2
package/dist/agents/tools/whatsapp-target-auth.js +18 -0
package/dist/agents/transcript-policy.js +22 -8
package/dist/agents/venice-models.js +11 -3
package/dist/auto-reply/commands-registry.data.js +51 -0
package/dist/auto-reply/commands-registry.js +4 -3
package/dist/auto-reply/group-activation.js +10 -5
package/dist/auto-reply/inbound-debounce.js +10 -5
package/dist/auto-reply/reply/abort.js +1 -1
package/dist/auto-reply/reply/agent-runner-execution.js +4 -1
package/dist/auto-reply/reply/bash-command.js +41 -39
package/dist/auto-reply/reply/command-gates.js +25 -0
package/dist/auto-reply/reply/commands-allowlist.js +111 -72
package/dist/auto-reply/reply/commands-bash.js +6 -5
package/dist/auto-reply/reply/commands-config.js +30 -28
package/dist/auto-reply/reply/commands-core.js +2 -1
package/dist/auto-reply/reply/commands-info.js +1 -0
package/dist/auto-reply/reply/commands-models.js +65 -14
package/dist/auto-reply/reply/commands-session.js +237 -82
package/dist/auto-reply/reply/commands-setunset.js +45 -0
package/dist/auto-reply/reply/commands-subagents/action-agents.js +44 -0
package/dist/auto-reply/reply/commands-subagents/action-focus.js +64 -0
package/dist/auto-reply/reply/commands-subagents/action-help.js +4 -0
package/dist/auto-reply/reply/commands-subagents/action-info.js +45 -0
package/dist/auto-reply/reply/commands-subagents/action-kill.js +60 -0
package/dist/auto-reply/reply/commands-subagents/action-list.js +44 -0
package/dist/auto-reply/reply/commands-subagents/action-log.js +29 -0
package/dist/auto-reply/reply/commands-subagents/action-send.js +119 -0
package/dist/auto-reply/reply/commands-subagents/action-spawn.js +52 -0
package/dist/auto-reply/reply/commands-subagents/action-unfocus.js +30 -0
package/dist/auto-reply/reply/commands-subagents/shared.js +303 -0
package/dist/auto-reply/reply/commands-subagents.js +51 -587
package/dist/auto-reply/reply/commands-tts.js +10 -5
package/dist/auto-reply/reply/config-value.js +10 -5
package/dist/auto-reply/reply/directive-handling.model-picker.js +12 -6
package/dist/auto-reply/reply/directive-handling.persist.js +9 -21
package/dist/auto-reply/reply/directive-handling.shared.js +24 -4
package/dist/auto-reply/reply/followup-runner.js +1 -0
package/dist/auto-reply/reply/get-reply-directives-utils.js +23 -14
package/dist/auto-reply/reply/get-reply-directives.js +17 -28
package/dist/auto-reply/reply/get-reply-inline-actions.js +1 -0
package/dist/auto-reply/reply/get-reply.js +71 -12
package/dist/auto-reply/reply/model-selection.js +80 -39
package/dist/auto-reply/reply/queue/enqueue.js +10 -5
package/dist/auto-reply/reply/queue/state.js +13 -12
package/dist/auto-reply/reply/reply-payloads.js +67 -36
package/dist/auto-reply/reply/reply-reference.js +9 -8
package/dist/auto-reply/reply/route-reply.js +15 -8
package/dist/auto-reply/reply/session-reset-prompt.js +1 -1
package/dist/auto-reply/reply/session.js +22 -6
package/dist/auto-reply/reply/strip-inbound-meta.js +147 -0
package/dist/auto-reply/reply/subagents-utils.js +56 -30
package/dist/auto-reply/reply/typing.js +46 -21
package/dist/auto-reply/send-policy.js +14 -7
package/dist/auto-reply/status.js +140 -16
package/dist/auto-reply/templating.js +10 -5
package/dist/auto-reply/thinking.js +7 -16
package/dist/auto-reply/tokens.js +21 -5
package/dist/browser/bridge-server.js +36 -20
package/dist/browser/cdp.helpers.js +7 -14
package/dist/browser/cdp.js +35 -15
package/dist/browser/chrome.profile-decoration.js +7 -4
package/dist/browser/config.js +4 -0
package/dist/browser/extension-relay-auth.js +55 -0
package/dist/browser/extension-relay.js +74 -29
package/dist/browser/navigation-guard.js +9 -1
package/dist/browser/paths.js +77 -0
package/dist/browser/profiles.js +13 -8
package/dist/browser/pw-ai-module.js +10 -5
package/dist/browser/pw-session.js +76 -39
package/dist/browser/pw-tools-core.interactions.js +14 -7
package/dist/browser/pw-tools-core.state.js +12 -6
package/dist/browser/routes/agent.act.js +2 -2
package/dist/browser/server-context.js +7 -0
package/dist/build-info.json +3 -3
package/dist/channels/allow-from.js +2 -1
package/dist/channels/allowlists/resolve-utils.js +43 -19
package/dist/channels/channel-config.js +14 -7
package/dist/channels/draft-stream-loop.js +7 -0
package/dist/channels/model-overrides.js +82 -0
package/dist/channels/plugins/normalize/imessage.js +14 -7
package/dist/channels/plugins/normalize/slack.js +10 -5
package/dist/channels/plugins/normalize/telegram.js +14 -7
package/dist/channels/plugins/outbound/discord.js +80 -8
package/dist/channels/plugins/outbound/signal.js +11 -11
package/dist/channels/plugins/setup-helpers.js +10 -5
package/dist/channels/sender-label.js +14 -7
package/dist/channels/session.js +4 -2
package/dist/channels/status-reactions.js +297 -0
package/dist/cli/banner.js +1 -1
package/dist/cli/browser-cli-actions-input/register.files-downloads.js +65 -56
package/dist/cli/cli-name.js +11 -11
package/dist/cli/cli-utils.js +13 -3
package/dist/cli/command-format.js +1 -1
package/dist/cli/config-cli.js +1 -1
package/dist/cli/daemon-cli/lifecycle-core.js +31 -19
package/dist/cli/daemon-cli/lifecycle.js +64 -2
package/dist/cli/daemon-cli/restart-health.js +126 -0
package/dist/cli/daemon-cli/status.gather.js +9 -13
package/dist/cli/daemon-cli/status.print.js +2 -10
package/dist/cli/deps.js +27 -22
package/dist/cli/gateway-cli/run-loop.js +23 -5
package/dist/cli/node-cli/register.js +14 -5
package/dist/cli/nodes-media-utils.js +7 -2
package/dist/cli/outbound-send-deps.js +2 -9
package/dist/cli/outbound-send-mapping.js +11 -0
package/dist/cli/pairing-cli.js +40 -14
package/dist/cli/plugins-cli.js +34 -41
package/dist/cli/ports.js +11 -10
package/dist/cli/program/command-registry.js +2 -11
package/dist/cli/program/command-tree.js +16 -0
package/dist/cli/program/preaction.js +13 -9
package/dist/cli/program/register.configure.js +3 -18
package/dist/cli/program/register.maintenance.js +2 -2
package/dist/cli/program/register.onboard.js +2 -0
package/dist/cli/program/register.status-health-sessions.js +16 -17
package/dist/cli/program/register.subclis.js +93 -52
package/dist/cli/route.js +11 -7
package/dist/cli/system-cli.js +36 -46
package/dist/cli/update-cli/shared.js +22 -9
package/dist/cli/update-cli/update-command.js +89 -14
package/dist/cli/update-cli/wizard.js +6 -12
package/dist/commands/agent/run-context.js +18 -5
package/dist/commands/agent/session-store.js +17 -4
package/dist/commands/agent.js +22 -2
package/dist/commands/agents.bindings.js +14 -7
package/dist/commands/agents.commands.add.js +13 -9
package/dist/commands/agents.commands.identity.js +12 -6
package/dist/commands/agents.commands.list.js +11 -6
package/dist/commands/agents.config.js +8 -10
package/dist/commands/agents.providers.js +12 -6
package/dist/commands/auth-choice-options.js +103 -75
package/dist/commands/auth-choice.apply.byteplus.js +55 -0
package/dist/commands/auth-choice.apply.js +4 -0
package/dist/commands/auth-choice.apply.minimax.js +61 -13
package/dist/commands/auth-choice.apply.openai.js +3 -1
package/dist/commands/auth-choice.apply.volcengine.js +55 -0
package/dist/commands/auth-choice.preferred-provider.js +2 -0
package/dist/commands/channels/remove.js +13 -6
package/dist/commands/channels/shared.js +4 -14
package/dist/commands/configure.commands.js +14 -0
package/dist/commands/configure.gateway.js +2 -4
package/dist/commands/configure.js +1 -1
package/dist/commands/configure.shared.js +11 -0
package/dist/commands/daemon-install-helpers.js +2 -2
package/dist/commands/dashboard.js +12 -10
package/dist/commands/docs.js +14 -8
package/dist/commands/doctor-config-flow.js +11 -9
package/dist/commands/doctor-legacy-config.js +281 -0
package/dist/commands/doctor-state-integrity.js +99 -23
package/dist/commands/doctor-update.js +12 -9
package/dist/commands/models/list.list-command.js +7 -5
package/dist/commands/models/set-image.js +2 -21
package/dist/commands/node-daemon-install-helpers.js +10 -8
package/dist/commands/onboard-auth.config-minimax.js +54 -80
package/dist/commands/onboard-auth.config-opencode.js +2 -18
package/dist/commands/onboard-auth.credentials.js +90 -13
package/dist/commands/onboard-auth.js +1 -1
package/dist/commands/onboard-auth.models.js +6 -5
package/dist/commands/onboard-hooks.js +1 -1
package/dist/commands/onboard-non-interactive/api-keys.js +14 -7
package/dist/commands/onboard-non-interactive/local/auth-choice.js +64 -49
package/dist/commands/onboard-provider-auth-flags.js +14 -0
package/dist/commands/onboard-remote.js +14 -7
package/dist/commands/onboard.js +11 -13
package/dist/commands/sandbox-display.js +6 -5
package/dist/commands/status-all/diagnosis.js +14 -10
package/dist/commands/status-all/format.js +1 -0
package/dist/commands/status.gateway-probe.js +1 -16
package/dist/commands/systemd-linger.js +12 -6
package/dist/config/agent-limits.js +2 -0
package/dist/config/commands.js +30 -16
package/dist/config/config-paths.js +9 -11
package/dist/config/defaults.js +22 -2
package/dist/config/discord-preview-streaming.js +104 -0
package/dist/config/env-vars.js +37 -8
package/dist/config/includes.js +4 -0
package/dist/config/io.js +97 -12
package/dist/config/legacy.migrations.part-1.js +189 -78
package/dist/config/legacy.shared.js +3 -1
package/dist/config/merge-patch.js +4 -0
package/dist/config/prototype-keys.js +4 -0
package/dist/config/schema.help.js +44 -7
package/dist/config/schema.labels.js +38 -6
package/dist/config/sessions/delivery-info.js +10 -3
package/dist/config/sessions/main-session.js +10 -5
package/dist/config/sessions/session-file.js +33 -0
package/dist/config/sessions/session-key.js +10 -5
package/dist/config/sessions/store.js +1 -1
package/dist/config/sessions.js +1 -0
package/dist/config/zod-schema.agent-runtime.js +11 -0
package/dist/config/zod-schema.js +148 -13
package/dist/config/zod-schema.providers-core.js +78 -4
package/dist/config/zod-schema.providers.js +6 -1
package/dist/config/zod-schema.session.js +41 -2
package/dist/cron/run-log.js +3 -0
package/dist/cron/schedule.js +21 -10
package/dist/cron/service/ops.js +35 -21
package/dist/cron/service/timer.js +116 -16
package/dist/cron/stagger.js +3 -1
package/dist/discord/api.js +12 -6
package/dist/discord/draft-chunking.js +22 -0
package/dist/discord/draft-stream.js +124 -0
package/dist/discord/monitor/agent-components.js +1 -1
package/dist/discord/monitor/commands.js +5 -0
package/dist/discord/monitor/gateway-plugin.js +2 -1
package/dist/discord/monitor/listeners.js +37 -27
package/dist/discord/monitor/message-handler.js +4 -1
package/dist/discord/monitor/message-handler.preflight.js +65 -8
package/dist/discord/monitor/message-handler.process.js +246 -217
package/dist/discord/monitor/message-utils.js +143 -6
package/dist/discord/monitor/model-picker-preferences.js +143 -0
package/dist/discord/monitor/model-picker.js +651 -0
package/dist/discord/monitor/native-command.js +573 -16
package/dist/discord/monitor/provider.allowlist.js +223 -0
package/dist/discord/monitor/provider.js +275 -347
package/dist/discord/monitor/provider.lifecycle.js +100 -0
package/dist/discord/monitor/reply-delivery.js +123 -16
package/dist/discord/monitor/thread-bindings.discord-api.js +215 -0
package/dist/discord/monitor/thread-bindings.js +4 -0
package/dist/discord/monitor/thread-bindings.lifecycle.js +177 -0
package/dist/discord/monitor/thread-bindings.manager.js +423 -0
package/dist/discord/monitor/thread-bindings.messages.js +55 -0
package/dist/discord/monitor/thread-bindings.state.js +358 -0
package/dist/discord/monitor/thread-bindings.types.js +6 -0
package/dist/discord/resolve-users.js +33 -21
package/dist/discord/send.channels.js +15 -0
package/dist/discord/send.js +3 -2
package/dist/discord/send.outbound.js +82 -26
package/dist/discord/send.permissions.js +83 -30
package/dist/discord/send.reactions.js +8 -4
package/dist/discord/token.js +10 -5
package/dist/discord/voice/command.js +263 -0
package/dist/discord/voice/manager.js +531 -0
package/dist/gateway/auth.js +34 -10
package/dist/gateway/call.js +4 -16
package/dist/gateway/client.js +28 -4
package/dist/gateway/config-reload.js +3 -4
package/dist/gateway/control-ui.js +219 -96
package/dist/gateway/hooks-mapping.js +88 -38
package/dist/gateway/http-auth-helpers.js +3 -2
package/dist/gateway/http-endpoint-helpers.js +1 -0
package/dist/gateway/net.js +54 -12
package/dist/gateway/node-invoke-system-run-approval.js +14 -35
package/dist/gateway/node-registry.js +10 -5
package/dist/gateway/openai-http.js +1 -0
package/dist/gateway/openresponses-http.js +1 -0
package/dist/gateway/origin-check.js +1 -18
package/dist/gateway/protocol/index.js +4 -3
package/dist/gateway/protocol/schema/cron.js +1 -0
package/dist/gateway/protocol/schema/devices.js +1 -0
package/dist/gateway/protocol/schema/protocol-schemas.js +2 -1
package/dist/gateway/protocol/schema/sessions.js +6 -0
package/dist/gateway/role-policy.js +17 -0
package/dist/gateway/server/ws-connection/connect-policy.js +37 -0
package/dist/gateway/server/ws-connection/message-handler.js +175 -148
package/dist/gateway/server-chat.js +83 -25
package/dist/gateway/server-constants.js +10 -9
package/dist/gateway/server-cron.js +1 -0
package/dist/gateway/server-http.js +16 -7
package/dist/gateway/server-maintenance.js +20 -5
package/dist/gateway/server-methods/chat.js +10 -6
package/dist/gateway/server-methods/config.js +12 -14
package/dist/gateway/server-methods/devices.js +17 -3
package/dist/gateway/server-methods/models.js +11 -1
package/dist/gateway/server-methods/sessions.js +64 -8
package/dist/gateway/server-methods/usage.js +162 -75
package/dist/gateway/server-node-events.js +29 -0
package/dist/gateway/server-runtime-config.js +34 -13
package/dist/gateway/server-startup-memory.js +17 -11
package/dist/gateway/session-utils.fs.js +32 -34
package/dist/gateway/sessions-resolve.js +17 -5
package/dist/gateway/test-helpers.openai-mock.js +14 -7
package/dist/gateway/tools-invoke-http.js +21 -10
package/dist/hooks/bundled/bootstrap-extra-files/handler.js +3 -1
package/dist/hooks/bundled/command-logger/handler.js +7 -2
package/dist/hooks/bundled/session-memory/handler.js +6 -5
package/dist/hooks/frontmatter.js +6 -6
package/dist/hooks/gmail-watcher.js +11 -6
package/dist/hooks/internal-hooks.js +11 -1
package/dist/hooks/llm-slug-generator.js +4 -1
package/dist/hooks/workspace.js +47 -17
package/dist/imessage/accounts.js +9 -20
package/dist/imessage/monitor/inbound-processing.js +2 -1
package/dist/infra/archive.js +174 -73
package/dist/infra/control-ui-assets.js +14 -6
package/dist/infra/device-pairing.js +108 -29
package/dist/infra/env.js +10 -5
package/dist/infra/exec-approvals-allowlist.js +122 -0
package/dist/infra/exec-approvals-analysis.js +34 -3
package/dist/infra/exec-approvals.js +5 -17
package/dist/infra/exec-safe-bin-policy.js +53 -45
package/dist/infra/fs-safe.js +71 -39
package/dist/infra/gateway-lock.js +6 -2
package/dist/infra/heartbeat-wake.js +6 -12
package/dist/infra/host-env-security-policy.json +19 -0
package/dist/infra/host-env-security.js +66 -0
package/dist/infra/net/ssrf.js +131 -38
package/dist/infra/outbound/bound-delivery-router.js +88 -0
package/dist/infra/outbound/channel-selection.js +12 -6
package/dist/infra/outbound/envelope.js +1 -1
package/dist/infra/outbound/format.js +12 -6
package/dist/infra/outbound/payloads.js +14 -7
package/dist/infra/outbound/session-binding-service.js +123 -0
package/dist/infra/path-guards.js +25 -0
package/dist/infra/provider-usage.fetch.codex.js +7 -15
package/dist/infra/provider-usage.fetch.gemini.js +14 -11
package/dist/infra/provider-usage.fetch.shared.js +30 -1
package/dist/infra/provider-usage.fetch.zai.js +10 -9
package/dist/infra/retry-policy.js +4 -2
package/dist/infra/retry.js +9 -5
package/dist/infra/session-cost-usage.js +107 -59
package/dist/infra/session-maintenance-warning.js +3 -1
package/dist/infra/shell-env.js +98 -34
package/dist/infra/ssh-config.js +12 -6
package/dist/infra/system-run-command.js +49 -4
package/dist/infra/update-channels.js +10 -5
package/dist/line/accounts.js +5 -7
package/dist/line/bot-access.js +8 -20
package/dist/line/bot-handlers.js +3 -1
package/dist/link-understanding/detect.js +15 -7
package/dist/media/constants.js +15 -6
package/dist/media/image-ops.js +7 -0
package/dist/media/local-roots.js +3 -2
package/dist/media-understanding/apply.js +4 -1
package/dist/media-understanding/concurrency.js +8 -20
package/dist/memory/backend-config.js +45 -6
package/dist/memory/embeddings.js +10 -4
package/dist/memory/fs-utils.js +23 -0
package/dist/memory/manager-search.js +12 -6
package/dist/memory/manager-sync-ops.js +12 -2
package/dist/memory/qmd-manager.js +466 -53
package/dist/memory/query-expansion.js +167 -3
package/dist/memory/status-format.js +10 -5
package/dist/memory/sync-memory-files.js +1 -1
package/dist/node-host/invoke-system-run.js +281 -0
package/dist/node-host/invoke.js +55 -337
package/dist/pairing/pairing-store.js +22 -0
package/dist/plugin-sdk/allow-from.js +1 -1
package/dist/plugin-sdk/command-auth.js +3 -1
package/dist/plugin-sdk/index.js +6 -3
package/dist/plugin-sdk/webhook-targets.js +32 -0
package/dist/plugins/bundled-dir.js +9 -6
package/dist/plugins/hooks.js +50 -0
package/dist/plugins/install.js +28 -16
package/dist/plugins/runtime.js +3 -17
package/dist/plugins/update.js +78 -12
package/dist/process/spawn-utils.js +14 -7
package/dist/providers/github-copilot-token.js +11 -6
package/dist/providers/qwen-portal-oauth.js +14 -6
package/dist/routing/account-id.js +30 -0
package/dist/routing/resolve-route.js +3 -7
package/dist/routing/session-key.js +2 -16
package/dist/security/audit-channel.js +93 -2
package/dist/security/audit-extra.async.js +159 -5
package/dist/security/audit-extra.js +1 -1
package/dist/security/audit-extra.sync.js +85 -6
package/dist/security/audit.js +40 -4
package/dist/security/dm-policy-shared.js +44 -0
package/dist/security/external-content.js +26 -6
package/dist/shared/entry-status.js +6 -0
package/dist/shared/frontmatter.js +5 -5
package/dist/shared/node-match.js +11 -4
package/dist/shared/operator-scope-compat.js +8 -3
package/dist/signal/accounts.js +7 -20
package/dist/signal/monitor/event-handler.js +3 -1
package/dist/slack/accounts.js +6 -19
package/dist/slack/actions.js +11 -3
package/dist/slack/monitor/auth.js +1 -1
package/dist/slack/monitor/message-handler/dispatch.js +50 -29
package/dist/slack/monitor/replies.js +15 -7
package/dist/slack/monitor/slash.js +22 -13
package/dist/slack/resolve-channels.js +10 -5
package/dist/slack/send.js +102 -12
package/dist/slack/stream-mode.js +10 -0
package/dist/slack/streaming.js +4 -2
package/dist/telegram/accounts.js +19 -14
package/dist/telegram/bot/helpers.js +3 -5
package/dist/telegram/bot-access.js +35 -36
package/dist/telegram/bot-handlers.js +120 -148
package/dist/telegram/bot-message-context.js +68 -9
package/dist/telegram/bot-message-dispatch.js +155 -90
package/dist/telegram/bot-native-commands.js +16 -0
package/dist/telegram/draft-stream.js +14 -1
package/dist/telegram/inline-buttons.js +5 -15
package/dist/telegram/monitor.js +11 -7
package/dist/telegram/network-config.js +19 -7
package/dist/telegram/send.js +3 -2
package/dist/telegram/sent-message-cache.js +5 -6
package/dist/telegram/status-reaction-variants.js +208 -0
package/dist/telegram/sticker-cache.js +11 -9
package/dist/terminal/theme.js +12 -12
package/dist/tts/tts.js +80 -567
package/dist/tui/components/chat-log.js +41 -8
package/dist/tui/theme/theme.js +10 -12
package/dist/tui/tui-local-shell.js +16 -6
package/dist/tui/tui.js +58 -6
package/dist/utils/account-id.js +2 -4
package/dist/utils/boolean.js +10 -5
package/dist/utils/directive-tags.js +11 -0
package/dist/utils/queue-helpers.js +67 -12
package/dist/web/auto-reply/deliver-reply.js +8 -4
package/dist/web/auto-reply/mentions.js +10 -5
package/dist/web/auto-reply/monitor/group-members.js +14 -7
package/dist/web/auto-reply/monitor/process-message.js +45 -24
package/dist/web/inbound/access-control.js +5 -2
package/dist/web/login-qr.js +12 -6
package/dist/web/media.js +123 -16
package/extensions/bluebubbles/src/monitor-processing.ts +580 -139
package/extensions/bluebubbles/src/monitor.ts +208 -1950
package/package.json +1 -1

package/dist/auto-reply/reply/commands-allowlist.js CHANGED Viewed

@@ -1,28 +1,30 @@
-import { readConfigFileSnapshot, validateConfigObjectWithPlugins, writeConfigFile, } from "../../config/config.js";
-import { resolveChannelConfigWrites } from "../../channels/plugins/config-writes.js";
 import { getChannelDock } from "../../channels/dock.js";
-import { normalizeChannelId } from "../../channels/registry.js";
+import { resolveChannelConfigWrites } from "../../channels/plugins/config-writes.js";
 import { listPairingChannels } from "../../channels/plugins/pairing.js";
-import { logVerbose } from "../../globals.js";
-import { DEFAULT_ACCOUNT_ID, normalizeAccountId } from "../../routing/session-key.js";
+import { normalizeChannelId } from "../../channels/registry.js";
+import { readConfigFileSnapshot, validateConfigObjectWithPlugins, writeConfigFile, } from "../../config/config.js";
 import { resolveDiscordAccount } from "../../discord/accounts.js";
+import { resolveDiscordUserAllowlist } from "../../discord/resolve-users.js";
 import { resolveIMessageAccount } from "../../imessage/accounts.js";
+import { addChannelAllowFromStoreEntry, readChannelAllowFromStore, removeChannelAllowFromStoreEntry, } from "../../pairing/pairing-store.js";
+import { DEFAULT_ACCOUNT_ID, normalizeAccountId } from "../../routing/session-key.js";
 import { resolveSignalAccount } from "../../signal/accounts.js";
 import { resolveSlackAccount } from "../../slack/accounts.js";
+import { resolveSlackUserAllowlist } from "../../slack/resolve-users.js";
 import { resolveTelegramAccount } from "../../telegram/accounts.js";
 import { resolveWhatsAppAccount } from "../../web/accounts.js";
-import { resolveSlackUserAllowlist } from "../../slack/resolve-users.js";
-import { resolveDiscordUserAllowlist } from "../../discord/resolve-users.js";
-import { addChannelAllowFromStoreEntry, readChannelAllowFromStore, removeChannelAllowFromStoreEntry, } from "../../pairing/pairing-store.js";
+import { rejectUnauthorizedCommand, requireCommandFlagEnabled } from "./command-gates.js";
 const ACTIONS = new Set(["list", "add", "remove"]);
 const SCOPES = new Set(["dm", "group", "all"]);
 function parseAllowlistCommand(raw) {
     const trimmed = raw.trim();
-    if (!trimmed.toLowerCase().startsWith("/allowlist"))
+    if (!trimmed.toLowerCase().startsWith("/allowlist")) {
         return null;
+    }
     const rest = trimmed.slice("/allowlist".length).trim();
-    if (!rest)
+    if (!rest) {
         return { action: "list", scope: "dm" };
+    }
     const tokens = rest.split(/\s+/);
     let action = "list";
     let scope = "dm";
@@ -70,13 +72,15 @@ function parseAllowlistCommand(raw) {
             const key = kv[0]?.trim().toLowerCase();
             const value = kv[1]?.trim();
             if (key === "channel") {
-                if (value)
+                if (value) {
                     channel = value;
+                }
                 continue;
             }
             if (key === "account") {
-                if (value)
+                if (value) {
                     account = value;
+                }
                 continue;
             }
             if (key === "scope" && value && SCOPES.has(value.toLowerCase())) {
@@ -107,8 +111,9 @@ function normalizeAllowFrom(params) {
     return params.values.map((entry) => String(entry).trim()).filter(Boolean);
 }
 function formatEntryList(entries, resolved) {
-    if (entries.length === 0)
+    if (entries.length === 0) {
         return "(none)";
+    }
     return entries
         .map((entry) => {
         const name = resolved?.get(entry);
@@ -136,8 +141,9 @@ function resolveAccountTarget(parsed, channelId, accountId) {
 function getNestedValue(root, path) {
     let current = root;
     for (const key of path) {
-        if (!current || typeof current !== "object")
+        if (!current || typeof current !== "object") {
             return undefined;
+        }
         current = current[key];
     }
     return current;
@@ -154,8 +160,9 @@ function ensureNestedObject(root, path) {
     return current;
 }
 function setNestedValue(root, path, value) {
-    if (path.length === 0)
+    if (path.length === 0) {
         return;
+    }
     if (path.length === 1) {
         root[path[0]] = value;
         return;
@@ -164,80 +171,86 @@ function setNestedValue(root, path, value) {
     parent[path[path.length - 1]] = value;
 }
 function deleteNestedValue(root, path) {
-    if (path.length === 0)
+    if (path.length === 0) {
         return;
+    }
     if (path.length === 1) {
         delete root[path[0]];
         return;
     }
     const parent = getNestedValue(root, path.slice(0, -1));
-    if (!parent || typeof parent !== "object")
+    if (!parent || typeof parent !== "object") {
         return;
+    }
     delete parent[path[path.length - 1]];
 }
 function resolveChannelAllowFromPaths(channelId, scope) {
-    if (scope === "all")
+    const supportsGroupAllowlist = channelId === "telegram" ||
+        channelId === "whatsapp" ||
+        channelId === "signal" ||
+        channelId === "imessage";
+    if (scope === "all") {
         return null;
+    }
     if (scope === "dm") {
-        if (channelId === "slack" || channelId === "discord")
-            return ["dm", "allowFrom"];
-        if (channelId === "telegram" ||
-            channelId === "whatsapp" ||
-            channelId === "signal" ||
-            channelId === "imessage") {
+        if (channelId === "slack" || channelId === "discord") {
+            // Canonical DM allowlist location for Slack/Discord. Legacy: dm.allowFrom.
+            return ["allowFrom"];
+        }
+        if (supportsGroupAllowlist) {
             return ["allowFrom"];
         }
         return null;
     }
     if (scope === "group") {
-        if (channelId === "telegram" ||
-            channelId === "whatsapp" ||
-            channelId === "signal" ||
-            channelId === "imessage") {
+        if (supportsGroupAllowlist) {
             return ["groupAllowFrom"];
         }
         return null;
     }
     return null;
 }
+function mapResolvedAllowlistNames(entries) {
+    const map = new Map();
+    for (const entry of entries) {
+        if (entry.resolved && entry.name) {
+            map.set(entry.input, entry.name);
+        }
+    }
+    return map;
+}
 async function resolveSlackNames(params) {
     const account = resolveSlackAccount({ cfg: params.cfg, accountId: params.accountId });
     const token = account.config.userToken?.trim() || account.botToken?.trim();
-    if (!token)
+    if (!token) {
         return new Map();
-    const resolved = await resolveSlackUserAllowlist({ token, entries: params.entries });
-    const map = new Map();
-    for (const entry of resolved) {
-        if (entry.resolved && entry.name)
-            map.set(entry.input, entry.name);
     }
-    return map;
+    const resolved = await resolveSlackUserAllowlist({ token, entries: params.entries });
+    return mapResolvedAllowlistNames(resolved);
 }
 async function resolveDiscordNames(params) {
     const account = resolveDiscordAccount({ cfg: params.cfg, accountId: params.accountId });
     const token = account.token?.trim();
-    if (!token)
+    if (!token) {
         return new Map();
-    const resolved = await resolveDiscordUserAllowlist({ token, entries: params.entries });
-    const map = new Map();
-    for (const entry of resolved) {
-        if (entry.resolved && entry.name)
-            map.set(entry.input, entry.name);
     }
-    return map;
+    const resolved = await resolveDiscordUserAllowlist({ token, entries: params.entries });
+    return mapResolvedAllowlistNames(resolved);
 }
 export const handleAllowlistCommand = async (params, allowTextCommands) => {
-    if (!allowTextCommands)
+    if (!allowTextCommands) {
         return null;
+    }
     const parsed = parseAllowlistCommand(params.command.commandBodyNormalized);
-    if (!parsed)
+    if (!parsed) {
         return null;
+    }
     if (parsed.action === "error") {
-        return { shouldContinue: false, reply: { text: `⚠️ ${parsed.message}` } };
+        return { shouldContinue: false, reply: { text: `\u26a0\ufe0f ${parsed.message}` } };
     }
-    if (!params.command.isAuthorizedSender) {
-        logVerbose(`Ignoring /allowlist from unauthorized sender: ${params.command.senderId || "<unknown>"}`);
-        return { shouldContinue: false };
+    const unauthorized = rejectUnauthorizedCommand(params, "/allowlist");
+    if (unauthorized) {
+        return unauthorized;
     }
     const channelId = normalizeChannelId(parsed.channel) ??
         params.command.channelId ??
@@ -245,7 +258,7 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
     if (!channelId) {
         return {
             shouldContinue: false,
-            reply: { text: "⚠️ Unknown channel. Add channel=<id> to the command." },
+            reply: { text: "\u26a0\ufe0f Unknown channel. Add channel=<id> to the command." },
         };
     }
     const accountId = normalizeAccountId(parsed.account ?? params.ctx.AccountId);
@@ -305,7 +318,7 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
         }
         else if (channelId === "slack") {
             const account = resolveSlackAccount({ cfg: params.cfg, accountId });
-            dmAllowFrom = (account.dm?.allowFrom ?? []).map(String);
+            dmAllowFrom = (account.config.allowFrom ?? account.config.dm?.allowFrom ?? []).map(String);
             groupPolicy = account.groupPolicy;
             const channels = account.channels ?? {};
             groupOverrides = Object.entries(channels)
@@ -317,7 +330,7 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
         }
         else if (channelId === "discord") {
             const account = resolveDiscordAccount({ cfg: params.cfg, accountId });
-            dmAllowFrom = (account.config.dm?.allowFrom ?? []).map(String);
+            dmAllowFrom = (account.config.allowFrom ?? account.config.dm?.allowFrom ?? []).map(String);
             groupPolicy = account.config.groupPolicy;
             const guilds = account.config.guilds ?? {};
             for (const [guildKey, guildCfg] of Object.entries(guilds)) {
@@ -374,12 +387,14 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
                     entries: groupOverrideDisplay,
                 })
                 : undefined;
-        const lines = ["🧾 Allowlist"];
+        const lines = ["\ud83e\uddf6 Allowlist"];
         lines.push(`Channel: ${channelId}${accountId ? ` (account ${accountId})` : ""}`);
-        if (dmPolicy)
+        if (dmPolicy) {
             lines.push(`DM policy: ${dmPolicy}`);
-        if (groupPolicy)
+        }
+        if (groupPolicy) {
             lines.push(`Group policy: ${groupPolicy}`);
+        }
         const showDm = scope === "dm" || scope === "all";
         const showGroup = scope === "group" || scope === "all";
         if (showDm) {
@@ -413,11 +428,13 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
         }
         return { shouldContinue: false, reply: { text: lines.join("\n") } };
     }
-    if (params.cfg.commands?.config !== true) {
-        return {
-            shouldContinue: false,
-            reply: { text: "⚠️ /allowlist edits are disabled. Set commands.config=true to enable." },
-        };
+    const disabled = requireCommandFlagEnabled(params.cfg, {
+        label: "/allowlist edits",
+        configKey: "config",
+        disabledVerb: "are",
+    });
+    if (disabled) {
+        return disabled;
     }
     const shouldUpdateConfig = parsed.target !== "store";
     const shouldTouchStore = parsed.target !== "config" && listPairingChannels().includes(channelId);
@@ -431,7 +448,9 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
             const hint = `channels.${channelId}.configWrites=true`;
             return {
                 shouldContinue: false,
-                reply: { text: `⚠️ Config writes are disabled for ${channelId}. Set ${hint} to enable.` },
+                reply: {
+                    text: `\u26a0\ufe0f Config writes are disabled for ${channelId}. Set ${hint} to enable.`,
+                },
             };
         }
         const allowlistPath = resolveChannelAllowFromPaths(channelId, scope);
@@ -439,7 +458,7 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
             return {
                 shouldContinue: false,
                 reply: {
-                    text: `⚠️ ${channelId} does not support ${scope} allowlist edits via /allowlist.`,
+                    text: `\u26a0\ufe0f ${channelId} does not support ${scope} allowlist edits via /allowlist.`,
                 },
             };
         }
@@ -447,15 +466,29 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
         if (!snapshot.valid || !snapshot.parsed || typeof snapshot.parsed !== "object") {
             return {
                 shouldContinue: false,
-                reply: { text: "⚠️ Config file is invalid; fix it before using /allowlist." },
+                reply: { text: "\u26a0\ufe0f Config file is invalid; fix it before using /allowlist." },
             };
         }
         const parsedConfig = structuredClone(snapshot.parsed);
         const { target, pathPrefix, accountId: normalizedAccountId, } = resolveAccountTarget(parsedConfig, channelId, accountId);
-        const existingRaw = getNestedValue(target, allowlistPath);
-        const existing = Array.isArray(existingRaw)
-            ? existingRaw.map((entry) => String(entry).trim()).filter(Boolean)
-            : [];
+        const existing = [];
+        const existingPaths = scope === "dm" && (channelId === "slack" || channelId === "discord")
+            ? // Read both while legacy alias may still exist; write canonical below.
+                [allowlistPath, ["dm", "allowFrom"]]
+            : [allowlistPath];
+        for (const path of existingPaths) {
+            const existingRaw = getNestedValue(target, path);
+            if (!Array.isArray(existingRaw)) {
+                continue;
+            }
+            for (const entry of existingRaw) {
+                const value = String(entry).trim();
+                if (!value || existing.includes(value)) {
+                    continue;
+                }
+                existing.push(value);
+            }
+        }
         const normalizedEntry = normalizeAllowFrom({
             cfg: params.cfg,
             channelId,
@@ -465,7 +498,7 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
         if (normalizedEntry.length === 0) {
             return {
                 shouldContinue: false,
-                reply: { text: "⚠️ Invalid allowlist entry." },
+                reply: { text: "\u26a0\ufe0f Invalid allowlist entry." },
             };
         }
         const existingNormalized = normalizeAllowFrom({
@@ -508,6 +541,10 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
             else {
                 setNestedValue(target, allowlistPath, next);
             }
+            if (scope === "dm" && (channelId === "slack" || channelId === "discord")) {
+                // Remove legacy DM allowlist alias to prevent drift.
+                deleteNestedValue(target, ["dm", "allowFrom"]);
+            }
         }
         if (configChanged) {
             const validated = validateConfigObjectWithPlugins(parsedConfig);
@@ -515,13 +552,15 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
                 const issue = validated.issues[0];
                 return {
                     shouldContinue: false,
-                    reply: { text: `⚠️ Config invalid after update (${issue.path}: ${issue.message}).` },
+                    reply: {
+                        text: `\u26a0\ufe0f Config invalid after update (${issue.path}: ${issue.message}).`,
+                    },
                 };
             }
             await writeConfigFile(validated.config);
         }
         if (!configChanged && !shouldTouchStore) {
-            const message = parsed.action === "add" ? "✅ Already allowlisted." : "⚠️ Entry not found.";
+            const message = parsed.action === "add" ? "\u2705 Already allowlisted." : "\u26a0\ufe0f Entry not found.";
             return { shouldContinue: false, reply: { text: message } };
         }
         if (shouldTouchStore) {
@@ -545,14 +584,14 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
         return {
             shouldContinue: false,
             reply: {
-                text: `✅ ${scopeLabel} allowlist ${actionLabel}: ${targetLabel}.`,
+                text: `\u2705 ${scopeLabel} allowlist ${actionLabel}: ${targetLabel}.`,
             },
         };
     }
     if (!shouldTouchStore) {
         return {
             shouldContinue: false,
-            reply: { text: "⚠️ This channel does not support allowlist storage." },
+            reply: { text: "\u26a0\ufe0f This channel does not support allowlist storage." },
         };
     }
     if (parsed.action === "add") {
@@ -565,6 +604,6 @@ export const handleAllowlistCommand = async (params, allowTextCommands) => {
     const scopeLabel = scope === "dm" ? "DM" : "group";
     return {
         shouldContinue: false,
-        reply: { text: `✅ ${scopeLabel} allowlist ${actionLabel} in pairing store.` },
+        reply: { text: `\u2705 ${scopeLabel} allowlist ${actionLabel} in pairing store.` },
     };
 };

package/dist/auto-reply/reply/commands-bash.js CHANGED Viewed

@@ -1,17 +1,18 @@
-import { logVerbose } from "../../globals.js";
 import { handleBashChatCommand } from "./bash-command.js";
+import { rejectUnauthorizedCommand } from "./command-gates.js";
 export const handleBashCommand = async (params, allowTextCommands) => {
-    if (!allowTextCommands)
+    if (!allowTextCommands) {
         return null;
+    }
     const { command } = params;
     const bashSlashRequested = command.commandBodyNormalized === "/bash" || command.commandBodyNormalized.startsWith("/bash ");
     const bashBangRequested = command.commandBodyNormalized.startsWith("!");
     if (!bashSlashRequested && !(bashBangRequested && command.isAuthorizedSender)) {
         return null;
     }
-    if (!command.isAuthorizedSender) {
-        logVerbose(`Ignoring /bash from unauthorized sender: ${command.senderId || "<unknown>"}`);
-        return { shouldContinue: false };
+    const unauthorized = rejectUnauthorizedCommand(params, "/bash");
+    if (unauthorized) {
+        return unauthorized;
     }
     const reply = await handleBashChatCommand({
         ctx: params.ctx,

package/dist/auto-reply/reply/commands-config.js CHANGED Viewed

@@ -1,28 +1,29 @@
-import { readConfigFileSnapshot, validateConfigObjectWithPlugins, writeConfigFile, } from "../../config/config.js";
-import { getConfigValueAtPath, parseConfigPath, setConfigValueAtPath, unsetConfigValueAtPath, } from "../../config/config-paths.js";
-import { getConfigOverrides, resetConfigOverrides, setConfigOverride, unsetConfigOverride, } from "../../config/runtime-overrides.js";
 import { resolveChannelConfigWrites } from "../../channels/plugins/config-writes.js";
 import { normalizeChannelId } from "../../channels/registry.js";
-import { logVerbose } from "../../globals.js";
+import { getConfigValueAtPath, parseConfigPath, setConfigValueAtPath, unsetConfigValueAtPath, } from "../../config/config-paths.js";
+import { readConfigFileSnapshot, validateConfigObjectWithPlugins, writeConfigFile, } from "../../config/config.js";
+import { getConfigOverrides, resetConfigOverrides, setConfigOverride, unsetConfigOverride, } from "../../config/runtime-overrides.js";
+import { rejectUnauthorizedCommand, requireCommandFlagEnabled } from "./command-gates.js";
 import { parseConfigCommand } from "./config-commands.js";
 import { parseDebugCommand } from "./debug-commands.js";
 export const handleConfigCommand = async (params, allowTextCommands) => {
-    if (!allowTextCommands)
+    if (!allowTextCommands) {
         return null;
+    }
     const configCommand = parseConfigCommand(params.command.commandBodyNormalized);
-    if (!configCommand)
+    if (!configCommand) {
         return null;
-    if (!params.command.isAuthorizedSender) {
-        logVerbose(`Ignoring /config from unauthorized sender: ${params.command.senderId || "<unknown>"}`);
-        return { shouldContinue: false };
     }
-    if (params.cfg.commands?.config !== true) {
-        return {
-            shouldContinue: false,
-            reply: {
-                text: "⚠️ /config is disabled. Set commands.config=true to enable.",
-            },
-        };
+    const unauthorized = rejectUnauthorizedCommand(params, "/config");
+    if (unauthorized) {
+        return unauthorized;
+    }
+    const disabled = requireCommandFlagEnabled(params.cfg, {
+        label: "/config",
+        configKey: "config",
+    });
+    if (disabled) {
+        return disabled;
     }
     if (configCommand.action === "error") {
         return {
@@ -149,22 +150,23 @@ export const handleConfigCommand = async (params, allowTextCommands) => {
     return null;
 };
 export const handleDebugCommand = async (params, allowTextCommands) => {
-    if (!allowTextCommands)
+    if (!allowTextCommands) {
         return null;
+    }
     const debugCommand = parseDebugCommand(params.command.commandBodyNormalized);
-    if (!debugCommand)
+    if (!debugCommand) {
         return null;
-    if (!params.command.isAuthorizedSender) {
-        logVerbose(`Ignoring /debug from unauthorized sender: ${params.command.senderId || "<unknown>"}`);
-        return { shouldContinue: false };
     }
-    if (params.cfg.commands?.debug !== true) {
-        return {
-            shouldContinue: false,
-            reply: {
-                text: "⚠️ /debug is disabled. Set commands.debug=true to enable.",
-            },
-        };
+    const unauthorized = rejectUnauthorizedCommand(params, "/debug");
+    if (unauthorized) {
+        return unauthorized;
+    }
+    const disabled = requireCommandFlagEnabled(params.cfg, {
+        label: "/debug",
+        configKey: "debug",
+    });
+    if (disabled) {
+        return disabled;
     }
     if (debugCommand.action === "error") {
         return {

package/dist/auto-reply/reply/commands-core.js CHANGED Viewed

@@ -12,7 +12,7 @@ import { handleConfigCommand, handleDebugCommand } from "./commands-config.js";
 import { handleCommandsListCommand, handleContextCommand, handleExportSessionCommand, handleHelpCommand, handleStatusCommand, handleWhoamiCommand, } from "./commands-info.js";
 import { handleModelsCommand } from "./commands-models.js";
 import { handlePluginCommand } from "./commands-plugin.js";
-import { handleAbortTrigger, handleActivationCommand, handleRestartCommand, handleSendPolicyCommand, handleStopCommand, handleUsageCommand, } from "./commands-session.js";
+import { handleAbortTrigger, handleActivationCommand, handleRestartCommand, handleSessionCommand, handleSendPolicyCommand, handleStopCommand, handleUsageCommand, } from "./commands-session.js";
 import { handleSubagentsCommand } from "./commands-subagents.js";
 import { handleTtsCommands } from "./commands-tts.js";
 import { routeReply } from "./route-reply.js";
@@ -26,6 +26,7 @@ export async function handleCommands(params) {
             handleActivationCommand,
             handleSendPolicyCommand,
             handleUsageCommand,
+            handleSessionCommand,
             handleRestartCommand,
             handleTtsCommands,
             handleHelpCommand,

package/dist/auto-reply/reply/commands-info.js CHANGED Viewed

@@ -103,6 +103,7 @@ export const handleStatusCommand = async (params, allowTextCommands) => {
         command: params.command,
         sessionEntry: params.sessionEntry,
         sessionKey: params.sessionKey,
+        parentSessionKey: params.ctx.ParentSessionKey,
         sessionScope: params.sessionScope,
         provider: params.provider,
         model: params.model,