npm - @poolzin/pool-bot - Versions diffs - 2026.3.22 → 2026.3.23 - Mend

@poolzin/pool-bot 2026.3.22 → 2026.3.23

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (124) hide show

package/CHANGELOG.md +54 -0
package/dist/acp/bindings-store.js +209 -0
package/dist/acp/control-plane/runtime-cache.js +54 -0
package/dist/acp/control-plane/runtime-options.js +215 -0
package/dist/acp/control-plane/session-actor-queue.js +36 -0
package/dist/acp/runtime/errors.js +47 -0
package/dist/acp/runtime/registry.js +86 -0
package/dist/acp/runtime/types.js +1 -0
package/dist/acp/translator.js +97 -0
package/dist/agents/failover-error.js +145 -47
package/dist/browser/browser-profile-manager.js +319 -0
package/dist/browser/cdp-proxy-bypass.js +129 -0
package/dist/browser/cdp-timeouts.js +41 -0
package/dist/browser/chrome-extension-validator.js +406 -0
package/dist/browser/chrome-mcp-snapshot.js +222 -0
package/dist/browser/chrome-mcp.js +421 -0
package/dist/browser/chrome-mcp.snapshot.js +133 -0
package/dist/browser/errors.js +67 -0
package/dist/browser/form-fields.js +22 -0
package/dist/browser/output-atomic.js +44 -0
package/dist/browser/profile-capabilities.js +47 -0
package/dist/browser/safe-filename.js +25 -0
package/dist/browser/snapshot-roles.js +60 -0
package/dist/build-info.json +3 -3
package/dist/commands/security-owner-only.js +86 -0
package/dist/control-ui/assets/{index-Dvkl4Xlx.js → index-D7shnQwQ.js} +404 -388
package/dist/control-ui/assets/index-D7shnQwQ.js.map +1 -0
package/dist/control-ui/index.html +1 -1
package/dist/cron/cron-filters.js +150 -0
package/dist/gateway/device-pairing-security.js +197 -0
package/dist/gateway/event-deduplication.js +167 -0
package/dist/gateway/run-tracker.js +253 -0
package/dist/gateway/server-methods/nodes.js +14 -0
package/dist/gateway/websocket-preauth-security.js +188 -0
package/dist/infra/errors.js +53 -13
package/dist/infra/exec-approvals-security.js +217 -0
package/dist/infra/security/command-analyzer.js +257 -0
package/dist/plugins/loader.js +16 -8
package/dist/security/external-content.js +51 -1
package/dist/sessions/session-costs.js +228 -0
package/dist/shared/param-key.js +16 -0
package/dist/shared/poll-params.js +58 -0
package/dist/shared/polls.js +55 -0
package/docs/DASHBOARD-GAP-ANALYSIS-AND-PLAN.md +430 -0
package/docs/FEATURES.md +523 -0
package/docs/FINAL-IMPLEMENTATION-REVIEW.md +274 -0
package/docs/FINAL-IMPLEMENTATION-SUMMARY.md +356 -0
package/docs/FINAL-PROFESSIONAL-EVALUATION.md +312 -0
package/docs/IMPLEMENTATION-PRIORITY-EVALUATION.md +298 -0
package/docs/IMPLEMENTATION-PROGRESS.md +237 -0
package/docs/IMPLEMENTATION-REVIEW-PHASE1-2.md +381 -0
package/docs/IMPLEMENTATION-REVIEW-PHASE4.md +389 -0
package/docs/IMPLEMENTATION-REVIEW-PHASE5.md +420 -0
package/docs/IMPLEMENTATION-REVIEW-PHASE6.md +422 -0
package/docs/IMPLEMENTATION-REVIEW-PHASE7-FINAL.md +184 -0
package/docs/MIKRODASH-ANALYSIS.md +412 -0
package/docs/OPENCLAW-GAP-ANALYSIS-FINAL.md +431 -0
package/docs/OPENCLAW-VS-POOLBOT-ANALYSIS.md +351 -0
package/docs/PHASE-7-SUMMARY.md +144 -0
package/docs/POOLBOT-OFFICE-PLAN.md +697 -0
package/docs/PROJECT-FINAL-STATUS.md +237 -0
package/docs/README.md +116 -0
package/docs/REAL-IMPROVEMENTS-EVALUATION.md +477 -0
package/docs/SECURITY-HARDENING-IMPLEMENTATION.md +161 -0
package/docs/channels/googlechat.md +235 -206
package/docs/channels/irc.md +332 -0
package/docs/channels/nostr.md +255 -168
package/docs/components/command-palette.md +166 -0
package/docs/components/login-gate.md +219 -0
package/docs/getting-started/installation.md +191 -0
package/docs/getting-started/introduction.md +120 -0
package/docs/improvements/USAGE-GUIDE.md +359 -0
package/docs/plans/2026-03-15-openclaw-features-implementation.md +1632 -0
package/docs/reference/deadcode-detection.md +72 -0
package/extensions/acpx/node_modules/.bin/acpx +21 -0
package/extensions/agency-agents/node_modules/.bin/vite +4 -4
package/extensions/agency-agents/node_modules/.bin/vitest +2 -2
package/extensions/googlechat/node_modules/.bin/tsc +21 -0
package/extensions/googlechat/node_modules/.bin/tsserver +21 -0
package/extensions/googlechat/node_modules/.bin/vitest +21 -0
package/extensions/googlechat/package.json +11 -28
package/extensions/googlechat/src/googlechat-channel.test.ts +60 -0
package/extensions/googlechat/src/googlechat-channel.ts +120 -0
package/extensions/googlechat/src/index.ts +14 -0
package/extensions/irc/node_modules/.bin/tsc +21 -0
package/extensions/irc/node_modules/.bin/tsserver +21 -0
package/extensions/irc/node_modules/.bin/vitest +21 -0
package/extensions/irc/package.json +16 -8
package/extensions/irc/src/index.ts +14 -0
package/extensions/irc/src/irc-channel.test.ts +43 -0
package/extensions/irc/src/irc-channel.ts +191 -0
package/extensions/keyed-async-queue/node_modules/.bin/tsc +21 -0
package/extensions/keyed-async-queue/node_modules/.bin/tsserver +21 -0
package/extensions/keyed-async-queue/node_modules/.bin/vitest +21 -0
package/extensions/keyed-async-queue/package.json +20 -0
package/extensions/keyed-async-queue/src/index.ts +14 -0
package/extensions/keyed-async-queue/src/queue.test.ts +135 -0
package/extensions/keyed-async-queue/src/queue.ts +200 -0
package/extensions/memory-core/node_modules/.bin/tsc +21 -0
package/extensions/memory-core/node_modules/.bin/tsserver +21 -0
package/extensions/memory-core/node_modules/.bin/vitest +21 -0
package/extensions/memory-core/package.json +11 -8
package/extensions/memory-core/src/index.ts +14 -0
package/extensions/memory-core/src/memory-manager.test.ts +124 -0
package/extensions/memory-core/src/memory-manager.ts +186 -0
package/extensions/nostr/node_modules/.bin/tsc +2 -2
package/extensions/nostr/node_modules/.bin/tsserver +2 -2
package/extensions/nostr/node_modules/.bin/vitest +21 -0
package/extensions/nostr/package.json +15 -24
package/extensions/nostr/src/index.ts +14 -0
package/extensions/nostr/src/nostr-channel.test.ts +55 -0
package/extensions/nostr/src/nostr-channel.ts +228 -0
package/extensions/page-agent/node_modules/.bin/vitest +2 -2
package/extensions/test-utils/node_modules/.bin/jiti +21 -0
package/extensions/test-utils/node_modules/.bin/playwright +21 -0
package/extensions/test-utils/node_modules/.bin/tsx +21 -0
package/extensions/test-utils/node_modules/.bin/vite +21 -0
package/extensions/test-utils/node_modules/.bin/vitest +21 -0
package/extensions/test-utils/node_modules/.bin/yaml +21 -0
package/extensions/xyops/node_modules/.bin/vitest +2 -2
package/package.json +2 -1
package/dist/control-ui/assets/index-Dvkl4Xlx.js.map +0 -1
package/extensions/googlechat/node_modules/.bin/poolbot +0 -21
package/extensions/memory-core/node_modules/.bin/poolbot +0 -21

package/dist/acp/runtime/registry.js ADDED Viewed

@@ -0,0 +1,86 @@
+import { AcpRuntimeError } from "./errors.js";
+const ACP_RUNTIME_REGISTRY_STATE_KEY = Symbol.for("poolbot.acpRuntimeRegistryState");
+function createAcpRuntimeRegistryGlobalState() {
+    return {
+        backendsById: new Map(),
+    };
+}
+function resolveAcpRuntimeRegistryGlobalState() {
+    const runtimeGlobal = globalThis;
+    if (!runtimeGlobal[ACP_RUNTIME_REGISTRY_STATE_KEY]) {
+        runtimeGlobal[ACP_RUNTIME_REGISTRY_STATE_KEY] = createAcpRuntimeRegistryGlobalState();
+    }
+    return runtimeGlobal[ACP_RUNTIME_REGISTRY_STATE_KEY];
+}
+const ACP_BACKENDS_BY_ID = resolveAcpRuntimeRegistryGlobalState().backendsById;
+function normalizeBackendId(id) {
+    return id?.trim().toLowerCase() || "";
+}
+function isBackendHealthy(backend) {
+    if (!backend.healthy) {
+        return true;
+    }
+    try {
+        return backend.healthy();
+    }
+    catch {
+        return false;
+    }
+}
+export function registerAcpRuntimeBackend(backend) {
+    const id = normalizeBackendId(backend.id);
+    if (!id) {
+        throw new Error("ACP runtime backend id is required");
+    }
+    if (!backend.runtime) {
+        throw new Error(`ACP runtime backend "${id}" is missing runtime implementation`);
+    }
+    ACP_BACKENDS_BY_ID.set(id, {
+        ...backend,
+        id,
+    });
+}
+export function unregisterAcpRuntimeBackend(id) {
+    const normalized = normalizeBackendId(id);
+    if (!normalized) {
+        return;
+    }
+    ACP_BACKENDS_BY_ID.delete(normalized);
+}
+export function getAcpRuntimeBackend(id) {
+    const normalized = normalizeBackendId(id);
+    if (normalized) {
+        return ACP_BACKENDS_BY_ID.get(normalized) ?? null;
+    }
+    if (ACP_BACKENDS_BY_ID.size === 0) {
+        return null;
+    }
+    for (const backend of ACP_BACKENDS_BY_ID.values()) {
+        if (isBackendHealthy(backend)) {
+            return backend;
+        }
+    }
+    return ACP_BACKENDS_BY_ID.values().next().value ?? null;
+}
+export function requireAcpRuntimeBackend(id) {
+    const normalized = normalizeBackendId(id);
+    const backend = getAcpRuntimeBackend(normalized || undefined);
+    if (!backend) {
+        throw new AcpRuntimeError("ACP_BACKEND_MISSING", "ACP runtime backend is not configured. Install and enable the acpx runtime plugin.");
+    }
+    if (!isBackendHealthy(backend)) {
+        throw new AcpRuntimeError("ACP_BACKEND_UNAVAILABLE", "ACP runtime backend is currently unavailable. Try again in a moment.");
+    }
+    if (normalized && backend.id !== normalized) {
+        throw new AcpRuntimeError("ACP_BACKEND_MISSING", `ACP runtime backend "${normalized}" is not registered.`);
+    }
+    return backend;
+}
+export const __testing = {
+    resetAcpRuntimeBackendsForTests() {
+        ACP_BACKENDS_BY_ID.clear();
+    },
+    getAcpRuntimeRegistryGlobalStateForTests() {
+        return resolveAcpRuntimeRegistryGlobalState();
+    },
+};

package/dist/acp/runtime/types.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export {};

package/dist/acp/translator.js CHANGED Viewed

@@ -342,3 +342,100 @@ export class AcpGatewayAgent {
         });
     }
 }
+/**
+ * Apply prompt prefix to a prompt request
+ */
+export function applyPromptPrefix(request, config) {
+    if (!config.enabled || !config.prefix) {
+        return request;
+    }
+    // Check session filter
+    if (config.sessionIds && !config.sessionIds.includes(request.sessionId)) {
+        return request;
+    }
+    // Apply prefix to prompt text
+    const modified = { ...request };
+    if (modified.prompt) {
+        const promptText = typeof modified.prompt === "string" ? modified.prompt : JSON.stringify(modified.prompt);
+        modified.prompt = (config.prefix + "\n\n" + promptText);
+    }
+    return modified;
+}
+/**
+ * Cancel scoping manager to prevent cascade cancels
+ */
+export class CancelScopingManager {
+    cancelHistory = [];
+    config;
+    constructor(config = {}) {
+        this.config = {
+            enabled: config.enabled ?? true,
+            timeWindowMs: config.timeWindowMs ?? 5000, // 5 seconds default
+            maxCancelsInWindow: config.maxCancelsInWindow ?? 3,
+            sessionIds: config.sessionIds,
+        };
+    }
+    /**
+     * Check if a cancel request should be allowed
+     */
+    shouldAllowCancel(sessionId, reason) {
+        if (!this.config.enabled) {
+            return { allowed: true };
+        }
+        // Check session filter
+        if (this.config.sessionIds && !this.config.sessionIds.includes(sessionId)) {
+            return { allowed: true };
+        }
+        const now = Date.now();
+        const windowStart = now - (this.config.timeWindowMs ?? 5000);
+        // Clean old records
+        this.cancelHistory = this.cancelHistory.filter((r) => r.timestamp > windowStart);
+        // Count recent cancels for this session
+        const recentCancels = this.cancelHistory.filter((r) => r.sessionId === sessionId && r.timestamp > windowStart).length;
+        const maxAllowed = this.config.maxCancelsInWindow ?? 3;
+        if (recentCancels >= maxAllowed) {
+            return {
+                allowed: false,
+                reason: `Cancel rate limit exceeded: ${recentCancels}/${maxAllowed} cancels in the last ${this.config.timeWindowMs}ms`,
+            };
+        }
+        // Record this cancel
+        this.cancelHistory.push({
+            sessionId,
+            timestamp: now,
+            reason,
+        });
+        return { allowed: true };
+    }
+    /**
+     * Clear cancel history
+     */
+    clear() {
+        this.cancelHistory = [];
+    }
+    /**
+     * Get statistics about cancel activity
+     */
+    getStats() {
+        const now = Date.now();
+        const windowStart = now - (this.config.timeWindowMs ?? 5000);
+        const recentHistory = this.cancelHistory.filter((r) => r.timestamp > windowStart);
+        const cancelsBySession = recentHistory.reduce((acc, r) => {
+            acc[r.sessionId] = (acc[r.sessionId] || 0) + 1;
+            return acc;
+        }, {});
+        return {
+            totalCancels: recentHistory.length,
+            cancelsBySession,
+            oldestCancelInWindow: recentHistory.length > 0 ? Math.min(...recentHistory.map((r) => r.timestamp)) : undefined,
+        };
+    }
+}
+/**
+ * Process a cancel notification with scoping
+ */
+export function processCancelWithScoping(notification, manager) {
+    const sessionId = notification.sessionId || "unknown";
+    const reason = notification.reason || "user_requested";
+    return manager.shouldAllowCancel(sessionId, reason);
+}

package/dist/agents/failover-error.js CHANGED Viewed

@@ -1,5 +1,5 @@
-import { classifyFailoverReason } from "./pi-embedded-helpers.js";
-const TIMEOUT_HINT_RE = /timeout|timed out|deadline exceeded|context deadline exceeded/i;
+import { readErrorName } from "../infra/errors.js";
+import { classifyFailoverReason, isTimeoutErrorMessage, } from "./pi-embedded-helpers.js";
 const ABORT_TIMEOUT_RE = /request was aborted|request aborted/i;
 export class FailoverError extends Error {
     reason;
@@ -28,104 +28,200 @@ export function resolveFailoverStatus(reason) {
             return 402;
         case "rate_limit":
             return 429;
+        case "overloaded":
+            return 503;
         case "auth":
             return 401;
+        case "auth_permanent":
+            return 403;
         case "timeout":
             return 408;
         case "format":
             return 400;
         case "model_not_found":
             return 404;
+        case "session_expired":
+            return 410; // Gone - session no longer exists
         default:
             return undefined;
     }
 }
-function getStatusCode(err) {
-    if (!err || typeof err !== "object")
+function findErrorProperty(err, reader, seen = new Set()) {
+    const direct = reader(err);
+    if (direct !== undefined) {
+        return direct;
+    }
+    if (!err || typeof err !== "object") {
+        return undefined;
+    }
+    if (seen.has(err)) {
+        return undefined;
+    }
+    seen.add(err);
+    const candidate = err;
+    return (findErrorProperty(candidate.error, reader, seen) ??
+        findErrorProperty(candidate.cause, reader, seen));
+}
+function readDirectStatusCode(err) {
+    if (!err || typeof err !== "object") {
         return undefined;
+    }
     const candidate = err.status ??
         err.statusCode;
-    if (typeof candidate === "number")
+    if (typeof candidate === "number") {
         return candidate;
+    }
     if (typeof candidate === "string" && /^\d+$/.test(candidate)) {
         return Number(candidate);
     }
     return undefined;
 }
-function getErrorName(err) {
-    if (!err || typeof err !== "object")
-        return "";
-    return "name" in err ? String(err.name) : "";
+function getStatusCode(err) {
+    return findErrorProperty(err, readDirectStatusCode);
 }
-function getErrorCode(err) {
-    if (!err || typeof err !== "object")
+function readDirectErrorCode(err) {
+    if (!err || typeof err !== "object") {
         return undefined;
-    const candidate = err.code;
-    if (typeof candidate !== "string")
+    }
+    const directCode = err.code;
+    if (typeof directCode === "string") {
+        const trimmed = directCode.trim();
+        return trimmed ? trimmed : undefined;
+    }
+    const status = err.status;
+    if (typeof status !== "string" || /^\d+$/.test(status)) {
         return undefined;
-    const trimmed = candidate.trim();
+    }
+    const trimmed = status.trim();
     return trimmed ? trimmed : undefined;
 }
-function getErrorMessage(err) {
-    if (err instanceof Error)
-        return err.message;
-    if (typeof err === "string")
-        return err;
+function getErrorCode(err) {
+    return findErrorProperty(err, readDirectErrorCode);
+}
+function readDirectErrorMessage(err) {
+    if (err instanceof Error) {
+        return err.message || undefined;
+    }
+    if (typeof err === "string") {
+        return err || undefined;
+    }
     if (typeof err === "number" || typeof err === "boolean" || typeof err === "bigint") {
         return String(err);
     }
-    if (typeof err === "symbol")
-        return err.description ?? "";
+    if (typeof err === "symbol") {
+        return err.description ?? undefined;
+    }
     if (err && typeof err === "object") {
         const message = err.message;
-        if (typeof message === "string")
-            return message;
+        if (typeof message === "string") {
+            return message || undefined;
+        }
+    }
+    return undefined;
+}
+function getErrorMessage(err) {
+    return findErrorProperty(err, readDirectErrorMessage) ?? "";
+}
+function getErrorCause(err) {
+    if (!err || typeof err !== "object" || !("cause" in err)) {
+        return undefined;
+    }
+    return err.cause;
+}
+/** Classify rate-limit / overloaded from symbolic error codes like RESOURCE_EXHAUSTED. */
+function classifyFailoverReasonFromSymbolicCode(raw) {
+    const normalized = raw?.trim().toUpperCase();
+    if (!normalized) {
+        return null;
+    }
+    switch (normalized) {
+        case "RESOURCE_EXHAUSTED":
+        case "RATE_LIMIT":
+        case "RATE_LIMITED":
+        case "RATE_LIMIT_EXCEEDED":
+        case "TOO_MANY_REQUESTS":
+        case "THROTTLED":
+        case "THROTTLING":
+        case "THROTTLINGEXCEPTION":
+        case "THROTTLING_EXCEPTION":
+            return "rate_limit";
+        case "OVERLOADED":
+        case "OVERLOADED_ERROR":
+            return "overloaded";
+        default:
+            return null;
     }
-    return "";
 }
 function hasTimeoutHint(err) {
-    if (!err)
+    if (!err) {
         return false;
-    if (getErrorName(err) === "TimeoutError")
+    }
+    if (readErrorName(err) === "TimeoutError") {
         return true;
+    }
     const message = getErrorMessage(err);
-    return Boolean(message && TIMEOUT_HINT_RE.test(message));
+    return Boolean(message && isTimeoutErrorMessage(message));
 }
 export function isTimeoutError(err) {
-    if (hasTimeoutHint(err))
+    if (hasTimeoutHint(err)) {
         return true;
-    if (!err || typeof err !== "object")
+    }
+    if (!err || typeof err !== "object") {
         return false;
-    if (getErrorName(err) !== "AbortError")
+    }
+    if (readErrorName(err) !== "AbortError") {
         return false;
+    }
     const message = getErrorMessage(err);
-    if (message && ABORT_TIMEOUT_RE.test(message))
+    if (message && ABORT_TIMEOUT_RE.test(message)) {
         return true;
+    }
     const cause = "cause" in err ? err.cause : undefined;
     const reason = "reason" in err ? err.reason : undefined;
     return hasTimeoutHint(cause) || hasTimeoutHint(reason);
 }
 export function resolveFailoverReasonFromError(err) {
-    if (isFailoverError(err))
+    if (isFailoverError(err)) {
         return err.reason;
-    const status = getStatusCode(err);
-    if (status === 402)
-        return "billing";
-    if (status === 429)
-        return "rate_limit";
-    if (status === 401 || status === 403)
-        return "auth";
-    if (status === 408)
-        return "timeout";
+    }
+    const message = getErrorMessage(err);
+    // Check symbolic error codes (e.g. RESOURCE_EXHAUSTED from Google APIs)
+    const symbolicCodeReason = classifyFailoverReasonFromSymbolicCode(getErrorCode(err));
+    if (symbolicCodeReason) {
+        return symbolicCodeReason;
+    }
     const code = (getErrorCode(err) ?? "").toUpperCase();
-    if (["ETIMEDOUT", "ESOCKETTIMEDOUT", "ECONNRESET", "ECONNABORTED"].includes(code)) {
+    if ([
+        "ETIMEDOUT",
+        "ESOCKETTIMEDOUT",
+        "ECONNRESET",
+        "ECONNABORTED",
+        "ECONNREFUSED",
+        "ENETUNREACH",
+        "EHOSTUNREACH",
+        "EHOSTDOWN",
+        "ENETRESET",
+        "EPIPE",
+        "EAI_AGAIN",
+    ].includes(code)) {
         return "timeout";
     }
-    if (isTimeoutError(err))
+    // Walk into error cause chain *before* timeout heuristics so that a specific
+    // cause (e.g. RESOURCE_EXHAUSTED wrapped in AbortError) overrides a parent
+    // message-based "timeout" guess from isTimeoutError.
+    const cause = getErrorCause(err);
+    if (cause && cause !== err) {
+        const causeReason = resolveFailoverReasonFromError(cause);
+        if (causeReason) {
+            return causeReason;
+        }
+    }
+    if (isTimeoutError(err)) {
         return "timeout";
-    const message = getErrorMessage(err);
-    if (!message)
+    }
+    if (!message) {
         return null;
+    }
     return classifyFailoverReason(message);
 }
 export function describeFailoverError(err) {
@@ -146,11 +242,13 @@ export function describeFailoverError(err) {
     };
 }
 export function coerceToFailoverError(err, context) {
-    if (isFailoverError(err))
+    if (isFailoverError(err)) {
         return err;
+    }
     const reason = resolveFailoverReasonFromError(err);
-    if (!reason)
+    if (!reason) {
         return null;
+    }
     const message = getErrorMessage(err) || String(err);
     const status = getStatusCode(err) ?? resolveFailoverStatus(reason);
     const code = getErrorCode(err);