@poolzin/pool-bot 2026.4.32 → 2026.4.34

package/dist/agents/poolbot-tools.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"poolbot-tools.d.ts","sourceRoot":"","sources":["../../src/agents/poolbot-tools.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AAEzD,OAAO,KAAK,EAAE,qBAAqB,EAAE,MAAM,6BAA6B,CAAC;AAEzE,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAI9D,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAqBtD,wBAAgB,kBAAkB,CAAC,OAAO,CAAC,EAAE;IAC3C,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,uBAAuB,CAAC,EAAE,OAAO,CAAC;IAClC,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,YAAY,CAAC,EAAE,qBAAqB,CAAC;IACrC,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,oFAAoF;IACpF,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,6EAA6E;IAC7E,aAAa,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAChC,0DAA0D;IAC1D,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,qEAAqE;IACrE,iBAAiB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAClC,mEAAmE;IACnE,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAChC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,eAAe,CAAC,EAAE,eAAe,CAAC;IAClC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,MAAM,CAAC,EAAE,aAAa,CAAC;IACvB,mBAAmB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC/B,qDAAqD;IACrD,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,2DAA2D;IAC3D,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,8CAA8C;IAC9C,WAAW,CAAC,EAAE,KAAK,GAAG,OAAO,GAAG,KAAK,CAAC;IACtC,mEAAmE;IACnE,aAAa,CAAC,EAAE;QAAE,KAAK,EAAE,OAAO,CAAA;KAAE,CAAC;IACnC,sDAAsD;IACtD,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,yDAAyD;IACzD,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC,uEAAuE;IACvE,4BAA4B,CAAC,EAAE,OAAO,CAAC;IACvC,yDAAyD;IACzD,kBAAkB,CAAC,EAAE,OAAO,CAAC;CAC9B,GAAG,YAAY,EAAE,CAqJjB"}
+{"version":3,"file":"poolbot-tools.d.ts","sourceRoot":"","sources":["../../src/agents/poolbot-tools.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AAEzD,OAAO,KAAK,EAAE,qBAAqB,EAAE,MAAM,6BAA6B,CAAC;AAEzE,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAI9D,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAsBtD,wBAAgB,kBAAkB,CAAC,OAAO,CAAC,EAAE;IAC3C,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,uBAAuB,CAAC,EAAE,OAAO,CAAC;IAClC,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,YAAY,CAAC,EAAE,qBAAqB,CAAC;IACrC,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,oFAAoF;IACpF,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,6EAA6E;IAC7E,aAAa,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAChC,0DAA0D;IAC1D,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,qEAAqE;IACrE,iBAAiB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAClC,mEAAmE;IACnE,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAChC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,eAAe,CAAC,EAAE,eAAe,CAAC;IAClC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,MAAM,CAAC,EAAE,aAAa,CAAC;IACvB,mBAAmB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC/B,qDAAqD;IACrD,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,2DAA2D;IAC3D,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,8CAA8C;IAC9C,WAAW,CAAC,EAAE,KAAK,GAAG,OAAO,GAAG,KAAK,CAAC;IACtC,mEAAmE;IACnE,aAAa,CAAC,EAAE;QAAE,KAAK,EAAE,OAAO,CAAA;KAAE,CAAC;IACnC,sDAAsD;IACtD,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,yDAAyD;IACzD,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC,uEAAuE;IACvE,4BAA4B,CAAC,EAAE,OAAO,CAAC;IACvC,yDAAyD;IACzD,kBAAkB,CAAC,EAAE,OAAO,CAAC;CAC9B,GAAG,YAAY,EAAE,CAsJjB"}

package/dist/agents/poolbot-tools.js

@@ -19,6 +19,7 @@ import { createSessionsSendTool } from "./tools/sessions-send-tool.js";
 import { createSessionsSpawnTool } from "./tools/sessions-spawn-tool.js";
 import { createSubagentsTool } from "./tools/subagents-tool.js";
 import { createSkillEvolveTool } from "./tools/skill-evolve-tool.js";
+import { createVPSSecurityTool } from "./tools/vps-security-tool.js";
 import { createTtsTool } from "./tools/tts-tool.js";
 import { createWebFetchTool, createWebSearchTool } from "./tools/web-tools.js";
 import { resolveWorkspaceRoot } from "./workspace-dir.js";
@@ -135,6 +136,7 @@ export function createPoolBotTools(options) {
             config: options?.config,
         }),
         createSkillEvolveTool(options?.config ?? {}),
+        createVPSSecurityTool(options?.config ?? {}),
         ...(webSearchTool ? [webSearchTool] : []),
         ...(webFetchTool ? [webFetchTool] : []),
         ...(imageTool ? [imageTool] : []),

package/dist/agents/system-prompt.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"system-prompt.d.ts","sourceRoot":"","sources":["../../src/agents/system-prompt.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,2BAA2B,CAAC;AAE5E,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,2BAA2B,CAAC;AAErE,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AACzD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAC;AAiCpE;;;GAGG;AACH,wBAAgB,2BAA2B,CAAC,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,MAAM,CAoBrF;AAED;;;;;GAKG;AACH,MAAM,MAAM,UAAU,GAAG,MAAM,GAAG,SAAS,GAAG,MAAM,CAAC;AACrD,KAAK,cAAc,GAAG,KAAK,GAAG,MAAM,CAAC;AAkLrC,wBAAgB,sBAAsB,CAAC,MAAM,EAAE;IAC7C,YAAY,EAAE,MAAM,CAAC;IACrB,iBAAiB,CAAC,EAAE,UAAU,CAAC;IAC/B,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,YAAY,CAAC,EAAE,cAAc,CAAC;IAC9B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;IACrB,aAAa,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACvC,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,cAAc,CAAC,EAAE,kBAAkB,CAAC;IACpC,YAAY,CAAC,EAAE,mBAAmB,EAAE,CAAC;IACrC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,wEAAwE;IACxE,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,WAAW,CAAC,EAAE;QACZ,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,EAAE,CAAC,EAAE,MAAM,CAAC;QACZ,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,CAAC;IACF,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC5B,WAAW,CAAC,EAAE;QACZ,OAAO,EAAE,OAAO,CAAC;QACjB,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,qBAAqB,CAAC,EAAE,MAAM,CAAC;QAC/B,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,IAAI,CAAC;QACvC,mBAAmB,CAAC,EAAE,MAAM,CAAC;QAC7B,gBAAgB,CAAC,EAAE,MAAM,CAAC;QAC1B,eAAe,CAAC,EAAE,MAAM,CAAC;QACzB,kBAAkB,CAAC,EAAE,OAAO,CAAC;QAC7B,QAAQ,CAAC,EAAE;YACT,OAAO,EAAE,OAAO,CAAC;YACjB,YAAY,EAAE,IAAI,GAAG,KAAK,GAAG,KAAK,GAAG,MAAM,CAAC;SAC7C,CAAC;KACH,CAAC;IACF,8EAA8E;IAC9E,gBAAgB,CAAC,EAAE;QACjB,KAAK,EAAE,SAAS,GAAG,WAAW,CAAC;QAC/B,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;IACF,mBAAmB,CAAC,EAAE,mBAAmB,CAAC;CAC3C,UAmaA;AAED,wBAAgB,gBAAgB,CAC9B,WAAW,CAAC,EAAE;IACZ,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,EAAE,CAAC,EAAE,MAAM,CAAC;IACZ,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB,EACD,cAAc,CAAC,EAAE,MAAM,EACvB,mBAAmB,GAAE,MAAM,EAAO,EAClC,iBAAiB,CAAC,EAAE,UAAU,GAC7B,MAAM,CAsBR"}
+{"version":3,"file":"system-prompt.d.ts","sourceRoot":"","sources":["../../src/agents/system-prompt.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,2BAA2B,CAAC;AAE5E,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,2BAA2B,CAAC;AAErE,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AACzD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAC;AAiCpE;;;GAGG;AACH,wBAAgB,2BAA2B,CAAC,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,MAAM,CAoBrF;AAED;;;;;GAKG;AACH,MAAM,MAAM,UAAU,GAAG,MAAM,GAAG,SAAS,GAAG,MAAM,CAAC;AACrD,KAAK,cAAc,GAAG,KAAK,GAAG,MAAM,CAAC;AAkLrC,wBAAgB,sBAAsB,CAAC,MAAM,EAAE;IAC7C,YAAY,EAAE,MAAM,CAAC;IACrB,iBAAiB,CAAC,EAAE,UAAU,CAAC;IAC/B,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,YAAY,CAAC,EAAE,cAAc,CAAC;IAC9B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;IACrB,aAAa,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACvC,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,cAAc,CAAC,EAAE,kBAAkB,CAAC;IACpC,YAAY,CAAC,EAAE,mBAAmB,EAAE,CAAC;IACrC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,wEAAwE;IACxE,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,WAAW,CAAC,EAAE;QACZ,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,EAAE,CAAC,EAAE,MAAM,CAAC;QACZ,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,CAAC;IACF,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC5B,WAAW,CAAC,EAAE;QACZ,OAAO,EAAE,OAAO,CAAC;QACjB,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,qBAAqB,CAAC,EAAE,MAAM,CAAC;QAC/B,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,IAAI,CAAC;QACvC,mBAAmB,CAAC,EAAE,MAAM,CAAC;QAC7B,gBAAgB,CAAC,EAAE,MAAM,CAAC;QAC1B,eAAe,CAAC,EAAE,MAAM,CAAC;QACzB,kBAAkB,CAAC,EAAE,OAAO,CAAC;QAC7B,QAAQ,CAAC,EAAE;YACT,OAAO,EAAE,OAAO,CAAC;YACjB,YAAY,EAAE,IAAI,GAAG,KAAK,GAAG,KAAK,GAAG,MAAM,CAAC;SAC7C,CAAC;KACH,CAAC;IACF,8EAA8E;IAC9E,gBAAgB,CAAC,EAAE;QACjB,KAAK,EAAE,SAAS,GAAG,WAAW,CAAC;QAC/B,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;IACF,mBAAmB,CAAC,EAAE,mBAAmB,CAAC;CAC3C,UAuaA;AAED,wBAAgB,gBAAgB,CAC9B,WAAW,CAAC,EAAE;IACZ,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,EAAE,CAAC,EAAE,MAAM,CAAC;IACZ,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB,EACD,cAAc,CAAC,EAAE,MAAM,EACvB,mBAAmB,GAAE,MAAM,EAAO,EAClC,iBAAiB,CAAC,EAAE,UAAU,GAC7B,MAAM,CAsBR"}

package/dist/agents/system-prompt.js

@@ -213,6 +213,7 @@ export function buildAgentSystemPrompt(params) {
         nodes: "List/describe/notify/camera/screen on paired nodes",
         cron: "Manage cron jobs and wake events. SCHEDULING MODES: (1) Reminders — use systemEvent payload to inject text into your session when it fires; write the text as something that reads like a reminder. (2) Background tasks — use agentTurn payload with a message describing the work; results auto-deliver back to the originating chat. CRITICAL: When the user asks you to do something 'later', 'tonight', 'overnight', 'tomorrow morning', 'when I wake up', or any future time — IMMEDIATELY schedule a cron job with schedule.kind='at' at the appropriate time and payload.kind='agentTurn' with a descriptive message. Do NOT just say you'll do it. Actually schedule it. Use delivery.mode='announce' (default) to deliver results back to the user's chat.",
         skill_evolve: "Self-improve a skill file. Use this when you notice a skill is unclear, incomplete, or could be more effective. The tool loads the skill content and guides you to write an improved version using the 'write' tool. Periodically review and evolve your skills to keep them sharp.",
+        vps_security: "Monitor VPS security (fail2ban, UFW, SSH hardening, honeypot). Check status, view banned IPs, unban IPs, check firewall rules, and generate security reports. Use for security monitoring and incident response.",
         message: "Send messages and channel actions",
         gateway: "Restart, apply config, or run updates on the running Pool Bot process",
         agents_list: "List agent ids allowed for sessions_spawn",
@@ -378,6 +379,7 @@ export function buildAgentSystemPrompt(params) {
                 "- nodes: list/describe/notify/camera/screen on paired nodes",
                 "- cron: manage cron jobs and wake events (use systemEvent for reminders, agentTurn for background tasks; when user asks for future work — 'later', 'tonight', 'tomorrow' — schedule an agentTurn cron job with schedule.kind='at')",
                 "- skill_evolve: self-improve skill files (review, optimize, write improved version)",
+                "- vps_security: monitor VPS security (fail2ban, UFW, SSH hardening, honeypot; check status, unban IPs, generate reports)",
                 "- sessions_list: list sessions",
                 "- sessions_history: fetch session history",
                 "- sessions_send: send to another session",

package/dist/agents/tools/skill-evolve-tool.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"skill-evolve-tool.d.ts","sourceRoot":"","sources":["../../../src/agents/tools/skill-evolve-tool.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,wBAAwB,CAAC;AAE5D,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAKhD,wBAAgB,qBAAqB,CAAC,GAAG,EAAE,aAAa,GAAG,YAAY,CA0FtE"}
+{"version":3,"file":"skill-evolve-tool.d.ts","sourceRoot":"","sources":["../../../src/agents/tools/skill-evolve-tool.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,wBAAwB,CAAC;AAE5D,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAKhD,wBAAgB,qBAAqB,CAAC,GAAG,EAAE,aAAa,GAAG,YAAY,CAqGtE"}

package/dist/agents/tools/skill-evolve-tool.js

@@ -34,7 +34,12 @@ export function createSkillEvolveTool(cfg) {
             const skillName = readStringParam(params, "skill", { required: true });
             if (!skillName) {
                 return {
-                    content: [{ type: "text", text: "Error: 'skill' parameter is required. Provide a skill name or path." }],
+                    content: [
+                        {
+                            type: "text",
+                            text: "Error: 'skill' parameter is required. Provide a skill name or path.",
+                        },
+                    ],
                 };
             }
             const focus = typeof params.focus === "string" ? params.focus : "all";
@@ -50,19 +55,22 @@ export function createSkillEvolveTool(cfg) {
             }
             if (!skillPath) {
                 return {
-                    content: [{
+                    content: [
+                        {
                             type: "text",
                             text: `Skill '${skillName}' not found.\n` +
                                 `Searched in: ${skillsDir}/\n` +
                                 `Use the 'read' tool to list available skills first.`,
-                        }],
+                        },
+                    ],
                 };
             }
             try {
                 const skill = loadSkill(skillPath);
                 const currentContent = readFileSync(skillPath, "utf-8");
                 return {
-                    content: [{
+                    content: [
+                        {
                             type: "text",
                             text: `📋 Skill loaded: ${skill.name}\n` +
                                 `Path: ${skillPath}\n` +
@@ -75,15 +83,18 @@ export function createSkillEvolveTool(cfg) {
                                 `3. Use the 'write' tool to save the improved version to: ${skillPath}\n` +
                                 `4. The new version should be clearer, more concise, and handle more edge cases\n` +
                                 `(dryRun: ${dryRun ? "enabled — review only, don't write yet" : "disabled — write the improved version"})`,
-                        }],
+                        },
+                    ],
                 };
             }
             catch (err) {
                 return {
-                    content: [{
+                    content: [
+                        {
                             type: "text",
                             text: `Error loading skill '${skillName}': ${String(err)}`,
-                        }],
+                        },
+                    ],
                 };
             }
         },

package/dist/agents/tools/vps-security-tool.d.ts

@@ -0,0 +1,8 @@
+/**
+ * VPS Security monitoring tool.
+ * Monitors fail2ban, UFW, SSH hardening, and honeypot.
+ */
+import type { PoolBotConfig } from "../../config/config.js";
+import type { AnyAgentTool } from "./common.js";
+export declare function createVPSSecurityTool(cfg: PoolBotConfig): AnyAgentTool;
+//# sourceMappingURL=vps-security-tool.d.ts.map

package/dist/agents/tools/vps-security-tool.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"vps-security-tool.d.ts","sourceRoot":"","sources":["../../../src/agents/tools/vps-security-tool.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,wBAAwB,CAAC;AAG5D,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAKhD,wBAAgB,qBAAqB,CAAC,GAAG,EAAE,aAAa,GAAG,YAAY,CAsDtE"}

package/dist/agents/tools/vps-security-tool.js

@@ -0,0 +1,264 @@
+/**
+ * VPS Security monitoring tool.
+ * Monitors fail2ban, UFW, SSH hardening, and honeypot.
+ */
+import { Type } from "@sinclair/typebox";
+import { exec } from "node:child_process";
+import { promisify } from "node:util";
+import { readStringParam } from "./common.js";
+const execAsync = promisify(exec);
+export function createVPSSecurityTool(cfg) {
+    return {
+        name: "vps_security",
+        label: "VPS Security",
+        description: "Monitor and manage VPS security features including fail2ban, UFW firewall, SSH hardening, and honeypot. " +
+            "Check security status, view banned IPs, unban IPs, check firewall rules, and generate security reports.",
+        parameters: Type.Object({
+            action: Type.String({
+                description: "Action to perform: 'status', 'fail2ban', 'unban', 'ufw', 'ssh', 'honeypot', 'report'",
+                enum: ["status", "fail2ban", "unban", "ufw", "ssh", "honeypot", "report"],
+            }),
+            ip: Type.Optional(Type.String({
+                description: "IP address to unban (required for action='unban')",
+            })),
+        }),
+        execute: async (_toolCallId, args) => {
+            const action = readStringParam(args, "action", { required: true });
+            const ip = typeof args.ip === "string" ? args.ip : undefined;
+            try {
+                switch (action) {
+                    case "status":
+                        return await checkSecurityStatus();
+                    case "fail2ban":
+                        return await checkFail2ban();
+                    case "unban":
+                        if (!ip) {
+                            return errorResult("IP address required for unban action. Use: vps_security(action='unban', ip='1.2.3.4')");
+                        }
+                        return await unbanIP(ip);
+                    case "ufw":
+                        return await checkUFW();
+                    case "ssh":
+                        return await checkSSH();
+                    case "honeypot":
+                        return await checkHoneypot();
+                    case "report":
+                        return await generateSecurityReport();
+                    default:
+                        return errorResult(`Unknown action: ${action}. Valid actions: status, fail2ban, unban, ufw, ssh, honeypot, report`);
+                }
+            }
+            catch (err) {
+                return errorResult(`Security command failed: ${String(err)}`);
+            }
+        },
+    };
+}
+async function runCommand(cmd) {
+    const { stdout, stderr } = await execAsync(cmd, { timeout: 30_000 });
+    if (stderr && !stderr.includes("warn") && !stderr.includes("deprecated")) {
+        throw new Error(stderr);
+    }
+    return stdout.trim();
+}
+async function checkSecurityStatus() {
+    const results = [];
+    // fail2ban
+    try {
+        const f2b = await runCommand("fail2ban-client status sshd 2>/dev/null | head -10");
+        const bannedMatch = f2b.match(/Currently banned:\s*(\d+)/);
+        const totalBannedMatch = f2b.match(/Total banned:\s*(\d+)/);
+        results.push(`✅ fail2ban: Active`);
+        if (bannedMatch)
+            results.push(`   Currently banned: ${bannedMatch[1]} IPs`);
+        if (totalBannedMatch)
+            results.push(`   Total banned: ${totalBannedMatch[1]} IPs`);
+    }
+    catch {
+        results.push(`❌ fail2ban: Not active`);
+    }
+    // UFW
+    try {
+        const ufw = await runCommand("ufw status 2>/dev/null | grep '22.*LIMIT' || echo 'no rate limit'");
+        if (ufw.includes("LIMIT")) {
+            results.push(`✅ UFW: Active with SSH rate limit`);
+        }
+        else {
+            results.push(`⚠️  UFW: Active but no SSH rate limit`);
+        }
+    }
+    catch {
+        results.push(`❌ UFW: Not active`);
+    }
+    // SSH hardening
+    try {
+        const loginGrace = await runCommand("grep 'LoginGraceTime' /etc/ssh/sshd_config 2>/dev/null | tail -1 || echo 'not set'");
+        const maxAuth = await runCommand("grep 'MaxAuthTries' /etc/ssh/sshd_config 2>/dev/null | tail -1 || echo 'not set'");
+        results.push(`✅ SSH hardening: ${loginGrace}, ${maxAuth}`);
+    }
+    catch {
+        results.push(`⚠️  SSH hardening: Not configured`);
+    }
+    // Honeypot
+    try {
+        const hp = await runCommand("pgrep -f 'endlessh -p 2222' && echo 'active' || echo 'inactive'");
+        if (hp.includes("active")) {
+            results.push(`✅ Honeypot: Active on port 2222`);
+        }
+        else {
+            results.push(`❌ Honeypot: Not active`);
+        }
+    }
+    catch {
+        results.push(`❌ Honeypot: Not active`);
+    }
+    // Calculate score
+    let score = 0;
+    if (results[0].includes("✅"))
+        score += 25;
+    if (results[1].includes("✅"))
+        score += 25;
+    if (results[2].includes("✅"))
+        score += 25;
+    if (results[3].includes("✅"))
+        score += 15;
+    score += 10; // Base score
+    results.push(`\n📊 Security Score: ${score}/100`);
+    return {
+        content: [{ type: "text", text: results.join("\n") }],
+    };
+}
+async function checkFail2ban() {
+    const output = await runCommand("fail2ban-client status sshd 2>/dev/null");
+    const currentlyFailed = output.match(/Currently failed:\s*(\d+)/)?.[1] ?? "0";
+    const totalFailed = output.match(/Total failed:\s*(\d+)/)?.[1] ?? "0";
+    const currentlyBanned = output.match(/Currently banned:\s*(\d+)/)?.[1] ?? "0";
+    const totalBanned = output.match(/Total banned:\s*(\d+)/)?.[1] ?? "0";
+    const bannedList = output.match(/Banned IP list:\s*(.*)/)?.[1] ?? "none";
+    const text = `🛡️ fail2ban Status (SSH)
+
+Currently failed: ${currentlyFailed}
+Total failed: ${totalFailed}
+Currently banned: ${currentlyBanned}
+Total banned: ${totalBanned}
+Banned IPs: ${bannedList}`;
+    return {
+        content: [{ type: "text", text }],
+    };
+}
+async function unbanIP(ip) {
+    // Validate IP format
+    const ipRegex = /^(\d{1,3}\.){3}\d{1,3}$/;
+    if (!ipRegex.test(ip)) {
+        return errorResult(`Invalid IP format: ${ip}. Use format: 1.2.3.4`);
+    }
+    await runCommand(`fail2ban-client set sshd unbanip ${ip} 2>/dev/null`);
+    // Verify unban
+    const status = await runCommand("fail2ban-client status sshd 2>/dev/null");
+    const stillBanned = status.includes(ip);
+    if (stillBanned) {
+        return {
+            content: [
+                {
+                    type: "text",
+                    text: `❌ Failed to unban ${ip}. IP may not be banned or fail2ban error.`,
+                },
+            ],
+        };
+    }
+    return {
+        content: [{ type: "text", text: `✅ Successfully unbanned IP: ${ip}` }],
+    };
+}
+async function checkUFW() {
+    const output = await runCommand("ufw status verbose 2>/dev/null");
+    const activeMatch = output.match(/Status:\s*(\w+)/);
+    const status = activeMatch?.[1] ?? "inactive";
+    const rules = output
+        .split("\n")
+        .filter((line) => line.includes("ALLOW") || line.includes("DENY") || line.includes("LIMIT"))
+        .slice(0, 20)
+        .join("\n");
+    const text = `🔥 UFW Firewall Status
+
+Status: ${status.toUpperCase()}
+
+Rules:
+${rules || "No rules configured"}`;
+    return {
+        content: [{ type: "text", text }],
+    };
+}
+async function checkSSH() {
+    const config = await runCommand("cat /etc/ssh/sshd_config 2>/dev/null");
+    const settings = {};
+    const keys = [
+        "PermitRootLogin",
+        "PasswordAuthentication",
+        "LoginGraceTime",
+        "MaxAuthTries",
+        "PubkeyAuthentication",
+    ];
+    for (const key of keys) {
+        const match = config.match(new RegExp(`^${key}\\s+(\\w+)`, "m"));
+        settings[key] = match?.[1] ?? "not set";
+    }
+    const text = `🔐 SSH Configuration
+
+PermitRootLogin: ${settings.PermitRootLogin}
+PasswordAuthentication: ${settings.PasswordAuthentication}
+LoginGraceTime: ${settings.LoginGraceTime}
+MaxAuthTries: ${settings.MaxAuthTries}
+PubkeyAuthentication: ${settings.PubkeyAuthentication}`;
+    return {
+        content: [{ type: "text", text }],
+    };
+}
+async function checkHoneypot() {
+    const pid = await runCommand("pgrep -f 'endlessh -p 2222' 2>/dev/null || echo 'none'");
+    const active = pid !== "none" && pid.trim() !== "";
+    const logCount = await runCommand("wc -l < /var/log/endlessh.log 2>/dev/null || echo '0'");
+    const text = `🍯 Honeypot (endlessh) Status
+
+Status: ${active ? "✅ Active" : "❌ Inactive"}
+Port: 2222
+PID: ${active ? pid.trim() : "N/A"}
+Log entries: ${logCount.trim()}`;
+    return {
+        content: [{ type: "text", text }],
+    };
+}
+async function generateSecurityReport() {
+    const status = await checkSecurityStatus();
+    const fail2ban = await checkFail2ban();
+    const ufw = await checkUFW();
+    const ssh = await checkSSH();
+    const honeypot = await checkHoneypot();
+    const text = `📊 VPS Security Report
+Generated: ${new Date().toISOString()}
+
+${status.content[0].text}
+
+---
+${fail2ban.content[0].text}
+
+---
+${ufw.content[0].text}
+
+---
+${ssh.content[0].text}
+
+---
+${honeypot.content[0].text}
+
+---
+ℹ️ For detailed documentation, see: docs/security/vps-hardening.md`;
+    return {
+        content: [{ type: "text", text }],
+    };
+}
+function errorResult(message) {
+    return {
+        content: [{ type: "text", text: `❌ ${message}` }],
+    };
+}

package/dist/build-info.json

@@ -1,5 +1,5 @@
 {
-  "version": "2026.4.32",
-  "commit": "f3481250fcab82afa9ca27434083bd9343c90592",
-  "builtAt": "2026-04-04T23:14:54.903Z"
+  "version": "2026.4.34",
+  "commit": "b8effc9024bae6e44840b2e4f8f46cc63126bd61",
+  "builtAt": "2026-04-07T11:05:36.639Z"
 }

package/dist/cli/mcp-cli.d.ts

@@ -0,0 +1,10 @@
+/**
+ * PoolBot MCP CLI
+ *
+ * Usage:
+ *   poolbot mcp serve              # Start MCP server on stdio (for Claude Desktop)
+ *   poolbot mcp serve --http       # Start MCP server on HTTP (port 3000)
+ *   poolbot mcp serve --http --port 3001
+ */
+export declare function runMCPCLI(args: string[]): Promise<void>;
+//# sourceMappingURL=mcp-cli.d.ts.map

package/dist/cli/mcp-cli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"mcp-cli.d.ts","sourceRoot":"","sources":["../../src/cli/mcp-cli.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAMH,wBAAsB,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAmC7D"}

package/dist/cli/mcp-cli.js

@@ -0,0 +1,44 @@
+/**
+ * PoolBot MCP CLI
+ *
+ * Usage:
+ *   poolbot mcp serve              # Start MCP server on stdio (for Claude Desktop)
+ *   poolbot mcp serve --http       # Start MCP server on HTTP (port 3000)
+ *   poolbot mcp serve --http --port 3001
+ */
+import { runMCPServer } from "../mcp/server.js";
+import { loadConfig } from "../config/config.js";
+import { resolveDefaultAgentId } from "../agents/agent-scope.js";
+export async function runMCPCLI(args) {
+    const config = loadConfig();
+    const agentId = resolveDefaultAgentId(config);
+    const isHTTP = args.includes("--http");
+    const portArg = args.find((arg) => arg.startsWith("--port="));
+    const port = portArg ? parseInt(portArg.split("=")[1], 10) : undefined;
+    const readOnly = args.includes("--read-only");
+    console.error("Starting PoolBot MCP Server...");
+    console.error(`  Agent: ${agentId}`);
+    console.error(`  Mode: ${isHTTP ? "HTTP" : "stdio"}`);
+    if (isHTTP) {
+        console.error(`  Port: ${port || 3000}`);
+    }
+    if (readOnly) {
+        console.error("  Read-only mode: enabled");
+    }
+    console.error("");
+    console.error("For Claude Desktop, add to claude_desktop_config.json:");
+    console.error(JSON.stringify({
+        mcpServers: {
+            poolbot: {
+                command: "poolbot",
+                args: ["mcp", "serve"],
+            },
+        },
+    }, null, 2));
+    console.error("");
+    await runMCPServer({
+        agentId,
+        httpPort: port,
+        readOnly,
+    });
+}

package/dist/mcp/server.d.ts

@@ -0,0 +1,39 @@
+/**
+ * MCP (Model Context Protocol) Server for PoolBot.
+ *
+ * Exposes PoolBot sessions and conversations to MCP-compatible clients
+ * like Claude Desktop, Cursor, VS Code, etc.
+ *
+ * Supports both stdio and Streamable HTTP transports.
+ *
+ * @see https://modelcontextprotocol.io/
+ */
+interface MCPServerOptions {
+    agentId?: string;
+    workspaceDir?: string;
+    httpPort?: number;
+    readOnly?: boolean;
+}
+export declare class PoolBotMCPServer {
+    private server;
+    private options;
+    private workspaceDir;
+    private agentId;
+    constructor(options?: MCPServerOptions);
+    private setupHandlers;
+    /**
+     * Start MCP server with stdio transport (for Claude Desktop, etc.)
+     */
+    startStdio(): Promise<void>;
+    /**
+     * Start MCP server with HTTP transport (for web clients)
+     */
+    startHTTP(port?: number): Promise<void>;
+    /**
+     * Stop the MCP server
+     */
+    stop(): Promise<void>;
+}
+export declare function runMCPServer(options?: MCPServerOptions): Promise<void>;
+export {};
+//# sourceMappingURL=server.d.ts.map

package/dist/mcp/server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/mcp/server.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAqBH,UAAU,gBAAgB;IACxB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AA0HD,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,OAAO,CAAmB;IAClC,OAAO,CAAC,YAAY,CAAS;IAC7B,OAAO,CAAC,OAAO,CAAS;gBAEZ,OAAO,GAAE,gBAAqB;IA2B1C,OAAO,CAAC,aAAa;IAiSrB;;OAEG;IACG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAMjC;;OAEG;IACG,SAAS,CAAC,IAAI,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAyB7C;;OAEG;IACG,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;CAG5B;AAID,wBAAsB,YAAY,CAAC,OAAO,GAAE,gBAAqB,GAAG,OAAO,CAAC,IAAI,CAAC,CA4BhF"}