@prbe.ai/electron-sdk 0.1.18 → 0.1.21

package/dist/index.d.mts

@@ -1,8 +1,8 @@
-import { P as PRBEToolDeclaration, a as PRBEToolParameter, b as PRBEInteractionRequester, F as FlaggedFileIn, c as PRBEAgentState, d as PRBEAgentConfig, I as InvestigationSource, e as InteractionPayload, f as InteractionResponse, U as UserIdentifierType, g as PollResponse, A as AgentHistoryResponse } from './types-BeZ2nQ9x.mjs';
-export { h as API_URL, i as AgentHistoryRequest, j as AgentSessionOut, k as AgentTicketOut, l as AskQuestionPayload, m as AskQuestionResponse, C as ContextRequestOut, n as ConversationEntry, o as ConversationRole, D as DEFAULT_PRBE_STATE, E as ExternalRequestOut, p as InteractionType, q as InvestigationResult, M as MIDDLEWARE_URL, r as PRBEAgentConfigKey, s as PRBEAgentError, t as PRBEAgentErrorType, u as PRBEAgentStatus, v as PRBEAgentStatusType, w as PRBEBackgroundInvestigation, x as PRBECompletedInvestigation, y as PRBEInteractionHandler, z as PRBESerializedBackgroundInvestigation, B as PRBESerializedCompletedInvestigation, G as PRBESerializedState, H as PRBESerializedTicket, J as PRBEStateEvent, K as PRBEStatusEvent, L as PollRequest, R as RequestPathAccessPayload, N as RequestPathAccessResponse, O as RequestPermissionPayload, Q as RequestPermissionResponse, S as ResolvedInteraction, T as TicketInfoOut, V as ToolName, W as ToolParamType, X as WSMessage, Y as WSMessageType, Z as redactPII, _ as serializePRBEState } from './types-BeZ2nQ9x.mjs';
+import { P as PRBEToolDeclaration, a as PRBEToolParameter, b as PRBEInteractionRequester, F as FlaggedFileIn, c as PRBEAgentState, d as PRBEAgentConfig, I as InvestigationSource, C as ConversationRole, e as InteractionPayload, f as InteractionResponse, U as UserIdentifierType, g as PollResponse, A as AgentHistoryResponse, S as SanitizedFileResult } from './types-CtT5RMCX.mjs';
+export { h as API_URL, i as AgentHistoryRequest, j as AgentSessionOut, k as AgentTicketOut, l as AskQuestionPayload, m as AskQuestionResponse, n as ContextRequestOut, o as ConversationEntry, D as DEFAULT_PRBE_STATE, E as ExternalRequestOut, p as InteractionType, q as InvestigationResult, M as MIDDLEWARE_URL, r as PRBEAgentConfigKey, s as PRBEAgentError, t as PRBEAgentErrorType, u as PRBEAgentStatus, v as PRBEAgentStatusType, w as PRBEBackgroundInvestigation, x as PRBECompletedInvestigation, y as PRBEInteractionHandler, z as PRBESerializedBackgroundInvestigation, B as PRBESerializedCompletedInvestigation, G as PRBESerializedState, H as PRBESerializedTicket, J as PRBEStateEvent, K as PRBEStatusEvent, L as PollRequest, R as RequestPathAccessPayload, N as RequestPathAccessResponse, O as RequestPermissionPayload, Q as RequestPermissionResponse, T as ResolvedInteraction, V as ReviewSanitizedOutputPayload, W as ReviewSanitizedOutputResponse, X as SanitizationIssue, Y as SanitizedFileRef, Z as TicketInfoOut, _ as ToolName, $ as ToolParamType, a0 as WSMessage, a1 as WSMessageType, a2 as redactPII, a3 as serializePRBEState } from './types-CtT5RMCX.mjs';
 import 'events';
 
-var version = "0.1.18";
+var version = "0.1.21";
 
 /**
  * tools/index.ts — Tool interface, registry, and closure tool
@@ -159,7 +159,7 @@ declare class PRBEAgent implements PRBEInteractionRequester {
     private hookRendererLogs;
     private static mapElectronLogLevel;
     get investigationSource(): InvestigationSource;
-    sendConversationMessage(content: string): void;
+    sendConversationMessage(content: string, role?: ConversationRole, label?: string): void;
     requestUserInteraction(payload: InteractionPayload): Promise<InteractionResponse>;
     /**
      * Add an additional root directory to the runtime allowed roots.
@@ -209,6 +209,12 @@ declare class PRBEAgent implements PRBEInteractionRequester {
      * Fetch agent history (tickets + sessions) from the backend.
      */
     fetchHistory(): Promise<AgentHistoryResponse | null>;
+    fetchSanitizedFile(url: string): Promise<SanitizedFileResult>;
+    /**
+     * Detect whether a buffer contains text by checking for null bytes
+     * and verifying the content is valid UTF-8.
+     */
+    private static isTextContent;
     stopPolling(): void;
     resumePolling(): void;
     /**
@@ -354,4 +360,4 @@ declare class BashExecuteTool implements PRBETool {
  */
 declare const PROBE_MARK_SVG = "<svg width=\"256\" height=\"256\" viewBox=\"0 0 256 256\" fill=\"none\" xmlns=\"http://www.w3.org/2000/svg\">\n  <path d=\"M50 112 L114 148 L50 184 Z\" fill=\"#111111\" opacity=\"0.07\"/>\n  <path d=\"M70 86 L148 134 L70 182 Z\" fill=\"#111111\" opacity=\"0.18\"/>\n  <path d=\"M92 56 L192 118 L92 180 Z\" fill=\"#111111\"/>\n</svg>";
 
-export { AgentHistoryResponse, AskUserTool, BashExecuteTool, ClearAppLogsTool, FindFilesTool, FlagAppLogsTool, FlagFileTool, FlaggedFileIn, InteractionPayload, InteractionResponse, InvestigationSource, ListDirectoryTool, type LogEntry, PRBEAgent, PRBEAgentConfig, PRBEAgentState, PRBEClosureTool, PRBEInteractionRequester, PRBELogCapture, type PRBETool, PRBEToolDeclaration, PRBEToolParameter, PRBEToolRegistry, PROBE_MARK_SVG, PollResponse, ReadAppLogsTool, ReadFileTool, version as SDK_VERSION, SearchAppLogsTool, SearchContentTool, UserIdentifierType, humanReadableSize, resolveAndValidate, resolveWithAccessRequest };
+export { AgentHistoryResponse, AskUserTool, BashExecuteTool, ClearAppLogsTool, ConversationRole, FindFilesTool, FlagAppLogsTool, FlagFileTool, FlaggedFileIn, InteractionPayload, InteractionResponse, InvestigationSource, ListDirectoryTool, type LogEntry, PRBEAgent, PRBEAgentConfig, PRBEAgentState, PRBEClosureTool, PRBEInteractionRequester, PRBELogCapture, type PRBETool, PRBEToolDeclaration, PRBEToolParameter, PRBEToolRegistry, PROBE_MARK_SVG, PollResponse, ReadAppLogsTool, ReadFileTool, version as SDK_VERSION, SanitizedFileResult, SearchAppLogsTool, SearchContentTool, UserIdentifierType, humanReadableSize, resolveAndValidate, resolveWithAccessRequest };

package/dist/index.d.ts

@@ -1,8 +1,8 @@
-import { P as PRBEToolDeclaration, a as PRBEToolParameter, b as PRBEInteractionRequester, F as FlaggedFileIn, c as PRBEAgentState, d as PRBEAgentConfig, I as InvestigationSource, e as InteractionPayload, f as InteractionResponse, U as UserIdentifierType, g as PollResponse, A as AgentHistoryResponse } from './types-BeZ2nQ9x.js';
-export { h as API_URL, i as AgentHistoryRequest, j as AgentSessionOut, k as AgentTicketOut, l as AskQuestionPayload, m as AskQuestionResponse, C as ContextRequestOut, n as ConversationEntry, o as ConversationRole, D as DEFAULT_PRBE_STATE, E as ExternalRequestOut, p as InteractionType, q as InvestigationResult, M as MIDDLEWARE_URL, r as PRBEAgentConfigKey, s as PRBEAgentError, t as PRBEAgentErrorType, u as PRBEAgentStatus, v as PRBEAgentStatusType, w as PRBEBackgroundInvestigation, x as PRBECompletedInvestigation, y as PRBEInteractionHandler, z as PRBESerializedBackgroundInvestigation, B as PRBESerializedCompletedInvestigation, G as PRBESerializedState, H as PRBESerializedTicket, J as PRBEStateEvent, K as PRBEStatusEvent, L as PollRequest, R as RequestPathAccessPayload, N as RequestPathAccessResponse, O as RequestPermissionPayload, Q as RequestPermissionResponse, S as ResolvedInteraction, T as TicketInfoOut, V as ToolName, W as ToolParamType, X as WSMessage, Y as WSMessageType, Z as redactPII, _ as serializePRBEState } from './types-BeZ2nQ9x.js';
+import { P as PRBEToolDeclaration, a as PRBEToolParameter, b as PRBEInteractionRequester, F as FlaggedFileIn, c as PRBEAgentState, d as PRBEAgentConfig, I as InvestigationSource, C as ConversationRole, e as InteractionPayload, f as InteractionResponse, U as UserIdentifierType, g as PollResponse, A as AgentHistoryResponse, S as SanitizedFileResult } from './types-CtT5RMCX.js';
+export { h as API_URL, i as AgentHistoryRequest, j as AgentSessionOut, k as AgentTicketOut, l as AskQuestionPayload, m as AskQuestionResponse, n as ContextRequestOut, o as ConversationEntry, D as DEFAULT_PRBE_STATE, E as ExternalRequestOut, p as InteractionType, q as InvestigationResult, M as MIDDLEWARE_URL, r as PRBEAgentConfigKey, s as PRBEAgentError, t as PRBEAgentErrorType, u as PRBEAgentStatus, v as PRBEAgentStatusType, w as PRBEBackgroundInvestigation, x as PRBECompletedInvestigation, y as PRBEInteractionHandler, z as PRBESerializedBackgroundInvestigation, B as PRBESerializedCompletedInvestigation, G as PRBESerializedState, H as PRBESerializedTicket, J as PRBEStateEvent, K as PRBEStatusEvent, L as PollRequest, R as RequestPathAccessPayload, N as RequestPathAccessResponse, O as RequestPermissionPayload, Q as RequestPermissionResponse, T as ResolvedInteraction, V as ReviewSanitizedOutputPayload, W as ReviewSanitizedOutputResponse, X as SanitizationIssue, Y as SanitizedFileRef, Z as TicketInfoOut, _ as ToolName, $ as ToolParamType, a0 as WSMessage, a1 as WSMessageType, a2 as redactPII, a3 as serializePRBEState } from './types-CtT5RMCX.js';
 import 'events';
 
-var version = "0.1.18";
+var version = "0.1.21";
 
 /**
  * tools/index.ts — Tool interface, registry, and closure tool
@@ -159,7 +159,7 @@ declare class PRBEAgent implements PRBEInteractionRequester {
     private hookRendererLogs;
     private static mapElectronLogLevel;
     get investigationSource(): InvestigationSource;
-    sendConversationMessage(content: string): void;
+    sendConversationMessage(content: string, role?: ConversationRole, label?: string): void;
     requestUserInteraction(payload: InteractionPayload): Promise<InteractionResponse>;
     /**
      * Add an additional root directory to the runtime allowed roots.
@@ -209,6 +209,12 @@ declare class PRBEAgent implements PRBEInteractionRequester {
      * Fetch agent history (tickets + sessions) from the backend.
      */
     fetchHistory(): Promise<AgentHistoryResponse | null>;
+    fetchSanitizedFile(url: string): Promise<SanitizedFileResult>;
+    /**
+     * Detect whether a buffer contains text by checking for null bytes
+     * and verifying the content is valid UTF-8.
+     */
+    private static isTextContent;
     stopPolling(): void;
     resumePolling(): void;
     /**
@@ -354,4 +360,4 @@ declare class BashExecuteTool implements PRBETool {
  */
 declare const PROBE_MARK_SVG = "<svg width=\"256\" height=\"256\" viewBox=\"0 0 256 256\" fill=\"none\" xmlns=\"http://www.w3.org/2000/svg\">\n  <path d=\"M50 112 L114 148 L50 184 Z\" fill=\"#111111\" opacity=\"0.07\"/>\n  <path d=\"M70 86 L148 134 L70 182 Z\" fill=\"#111111\" opacity=\"0.18\"/>\n  <path d=\"M92 56 L192 118 L92 180 Z\" fill=\"#111111\"/>\n</svg>";
 
-export { AgentHistoryResponse, AskUserTool, BashExecuteTool, ClearAppLogsTool, FindFilesTool, FlagAppLogsTool, FlagFileTool, FlaggedFileIn, InteractionPayload, InteractionResponse, InvestigationSource, ListDirectoryTool, type LogEntry, PRBEAgent, PRBEAgentConfig, PRBEAgentState, PRBEClosureTool, PRBEInteractionRequester, PRBELogCapture, type PRBETool, PRBEToolDeclaration, PRBEToolParameter, PRBEToolRegistry, PROBE_MARK_SVG, PollResponse, ReadAppLogsTool, ReadFileTool, version as SDK_VERSION, SearchAppLogsTool, SearchContentTool, UserIdentifierType, humanReadableSize, resolveAndValidate, resolveWithAccessRequest };
+export { AgentHistoryResponse, AskUserTool, BashExecuteTool, ClearAppLogsTool, ConversationRole, FindFilesTool, FlagAppLogsTool, FlagFileTool, FlaggedFileIn, InteractionPayload, InteractionResponse, InvestigationSource, ListDirectoryTool, type LogEntry, PRBEAgent, PRBEAgentConfig, PRBEAgentState, PRBEClosureTool, PRBEInteractionRequester, PRBELogCapture, type PRBETool, PRBEToolDeclaration, PRBEToolParameter, PRBEToolRegistry, PROBE_MARK_SVG, PollResponse, ReadAppLogsTool, ReadFileTool, version as SDK_VERSION, SanitizedFileResult, SearchAppLogsTool, SearchContentTool, UserIdentifierType, humanReadableSize, resolveAndValidate, resolveWithAccessRequest };

package/dist/index.js

@@ -72,7 +72,7 @@ __export(src_exports, {
 module.exports = __toCommonJS(src_exports);
 
 // package.json
-var version = "0.1.18";
+var version = "0.1.21";
 
 // src/agent.ts
 var fs2 = __toESM(require("fs"));
@@ -98,6 +98,9 @@ var WSMessageType = /* @__PURE__ */ ((WSMessageType2) => {
   WSMessageType2["COMPLETE"] = "complete";
   WSMessageType2["ERROR"] = "error";
   WSMessageType2["PING"] = "ping";
+  WSMessageType2["PRIVACY_SANITIZING"] = "privacy_sanitizing";
+  WSMessageType2["PRIVACY_REVIEW"] = "privacy_review";
+  WSMessageType2["PRIVACY_REVIEW_RESPONSE"] = "privacy_review_response";
   return WSMessageType2;
 })(WSMessageType || {});
 var ConversationRole = /* @__PURE__ */ ((ConversationRole3) => {
@@ -124,6 +127,8 @@ var ToolName = /* @__PURE__ */ ((ToolName2) => {
   ToolName2["CLIENT_ASK_USER"] = "client_ask_user";
   ToolName2["CLIENT_BASH_EXECUTE"] = "client_bash_execute";
   ToolName2["CLIENT_MESSAGE_USER"] = "client_message_user";
+  ToolName2["SDK_MESSAGE_USER"] = "sdk_message_user";
+  ToolName2["SDK_ASK_USER"] = "sdk_ask_user";
   return ToolName2;
 })(ToolName || {});
 var UserIdentifierType = /* @__PURE__ */ ((UserIdentifierType2) => {
@@ -155,6 +160,7 @@ var PRBEAgentStatusType = /* @__PURE__ */ ((PRBEAgentStatusType2) => {
   PRBEAgentStatusType2["COMPLETED"] = "completed";
   PRBEAgentStatusType2["ERROR"] = "error";
   PRBEAgentStatusType2["AWAITING_INTERACTION"] = "awaiting_interaction";
+  PRBEAgentStatusType2["PRIVACY_SANITIZING"] = "privacy_sanitizing";
   return PRBEAgentStatusType2;
 })(PRBEAgentStatusType || {});
 var PRBEAgentErrorType = /* @__PURE__ */ ((PRBEAgentErrorType2) => {
@@ -194,7 +200,9 @@ var InvestigationConnection = class {
       if (!raw) return;
       try {
         const msg = JSON.parse(raw);
-        this.onMessage(msg);
+        Promise.resolve(this.onMessage(msg)).catch((err) => {
+          this.onError(`Message handler error: ${err instanceof Error ? err.message : String(err)}`);
+        });
       } catch {
       }
     };
@@ -220,10 +228,14 @@ var InvestigationConnection = class {
       return false;
     }
   }
-  sendConversationMessage(content) {
+  sendConversationMessage(content, role, label) {
+    const metadata = {};
+    if (role) metadata["role"] = role;
+    if (label) metadata["label"] = label;
     this.send({
       type: "conversation_message" /* CONVERSATION_MESSAGE */,
-      content
+      content,
+      ...Object.keys(metadata).length > 0 ? { metadata } : {}
     });
   }
   sendToolResult(callId, toolName, result, metadata) {
@@ -286,6 +298,7 @@ var PRBEAgentState = class extends import_events.EventEmitter {
   resolvedInteractions = [];
   agentMessage;
   conversationHistory = [];
+  isPrivacySanitizing = false;
   // Completed user investigations (history)
   completedInvestigations = [];
   // Background investigations (context requests, external requests, etc.)
@@ -383,6 +396,7 @@ var PRBEAgentState = class extends import_events.EventEmitter {
     });
     this.report = report;
     this.isInvestigating = false;
+    this.isPrivacySanitizing = false;
     this.emit("complete" /* COMPLETE */, { report });
     this.emit("status" /* STATUS */);
   }
@@ -390,9 +404,14 @@ var PRBEAgentState = class extends import_events.EventEmitter {
     this.appendEvent(`Error: ${message}`);
     this.investigationError = message;
     this.isInvestigating = false;
+    this.isPrivacySanitizing = false;
     this.emit("error" /* ERROR */, { message });
     this.emit("status" /* STATUS */);
   }
+  setPrivacySanitizing(value) {
+    this.isPrivacySanitizing = value;
+    this.emit("status" /* STATUS */);
+  }
   // ---------- Interaction state mutations ----------
   setPendingInteraction(payload) {
     this.pendingInteraction = payload;
@@ -573,6 +592,7 @@ var InteractionType = /* @__PURE__ */ ((InteractionType2) => {
   InteractionType2["ASK_QUESTION"] = "ask_question";
   InteractionType2["REQUEST_PERMISSION"] = "request_permission";
   InteractionType2["REQUEST_PATH_ACCESS"] = "request_path_access";
+  InteractionType2["REVIEW_SANITIZED_OUTPUT"] = "review_sanitized_output";
   return InteractionType2;
 })(InteractionType || {});
 var InvestigationSource = /* @__PURE__ */ ((InvestigationSource2) => {
@@ -1457,7 +1477,7 @@ var AskUserTool = class {
   }
   get declaration() {
     return {
-      name: "client_ask_user" /* CLIENT_ASK_USER */,
+      name: "sdk_ask_user" /* SDK_ASK_USER */,
       description: "Ask the user a question and wait for their response. Use this when you need clarification or additional information from the user to continue the investigation.",
       interactive: true,
       parameters: [
@@ -1486,7 +1506,8 @@ var AskUserTool = class {
     const response = await this.requester.requestUserInteraction({
       type: "ask_question" /* ASK_QUESTION */,
       interactionId: (0, import_crypto3.randomUUID)(),
-      question: reason
+      question,
+      context: reason
     });
     const askResponse = response;
     return askResponse.answer;
@@ -1696,6 +1717,10 @@ var BashExecuteTool = class {
         return `Error: working directory '${cwdArg}' is outside auto-approved directories`;
       }
       cwd = resolved;
+    } else if (this.autoApprovedDirs.length > 0) {
+      cwd = this.autoApprovedDirs[0];
+    } else {
+      return "Error: no approved directories configured and no working directory specified";
     }
     const isSafe = this.isCommandSafe(command);
     if (!isSafe) {
@@ -1891,7 +1916,7 @@ var PRBEAgent = class _PRBEAgent {
     }
     this.registry.register(
       new PRBEClosureTool(
-        "client_message_user",
+        "sdk_message_user" /* SDK_MESSAGE_USER */,
         "Send a message to the user.",
         [{ name: "message", type: "STRING" /* STRING */, description: "Message for the user", required: true }],
         async (args) => {
@@ -1959,8 +1984,8 @@ var PRBEAgent = class _PRBEAgent {
   get investigationSource() {
     return this.currentInvestigationSource;
   }
-  sendConversationMessage(content) {
-    this.activeConnection?.sendConversationMessage(content);
+  sendConversationMessage(content, role, label) {
+    this.activeConnection?.sendConversationMessage(content, role, label);
   }
   async requestUserInteraction(payload) {
     if (!this.interactionHandler) {
@@ -1969,6 +1994,19 @@ var PRBEAgent = class _PRBEAgent {
         "No interaction handler configured"
       );
     }
+    if (payload.type === "request_permission" /* REQUEST_PERMISSION */) {
+      const p = payload;
+      const content = p.reason ? `${p.command}
+
+${p.reason}` : p.command;
+      this.sendConversationMessage(content, "agent" /* Agent */, p.action);
+    } else if (payload.type === "request_path_access" /* REQUEST_PATH_ACCESS */) {
+      const p = payload;
+      const content = p.reason ? `${p.path}
+
+${p.reason}` : p.path;
+      this.sendConversationMessage(content, "agent" /* Agent */, "Request path access");
+    }
     if (this.currentInvestigationSource !== "user" /* USER */ && this.currentBackgroundId) {
       this.state.setBackgroundPendingInteraction(this.currentBackgroundId, payload);
     } else {
@@ -2114,6 +2152,14 @@ var PRBEAgent = class _PRBEAgent {
             this.state.failInvestigation(status.message);
           }
           break;
+        case "privacy_sanitizing" /* PRIVACY_SANITIZING */:
+          if (isBackground && opts.sourceId) {
+            this.state.appendBackgroundEvent(opts.sourceId, "Sanitizing data for privacy review...");
+          } else {
+            this.state.appendEvent("Sanitizing data for privacy review...");
+          }
+          this.state.setPrivacySanitizing(true);
+          break;
       }
     };
     const result = await this.connectToProxy(
@@ -2206,6 +2252,30 @@ var PRBEAgent = class _PRBEAgent {
       return null;
     }
   }
+  async fetchSanitizedFile(url) {
+    const res = await fetch(url, {
+      headers: { "X-API-Key": this.config.apiKey }
+    });
+    if (!res.ok) throw new Error(`Failed to fetch sanitized file: ${res.status}`);
+    const buffer = Buffer.from(await res.arrayBuffer());
+    if (!_PRBEAgent.isTextContent(buffer)) {
+      return { isText: false, url };
+    }
+    return { isText: true, content: buffer.toString("utf-8"), url };
+  }
+  /**
+   * Detect whether a buffer contains text by checking for null bytes
+   * and verifying the content is valid UTF-8.
+   */
+  static isTextContent(buffer) {
+    const checkLength = Math.min(buffer.length, 8192);
+    for (let i = 0; i < checkLength; i++) {
+      if (buffer[i] === 0) return false;
+    }
+    const decoded = buffer.toString("utf-8");
+    const reEncoded = Buffer.from(decoded, "utf-8");
+    return buffer.length === reEncoded.length;
+  }
   stopPolling() {
     if (this.pollingTimer !== null) {
       clearInterval(this.pollingTimer);
@@ -2295,8 +2365,8 @@ var PRBEAgent = class _PRBEAgent {
             uploadBaseUrl = url;
           }),
           (message) => {
-            if (!isCancelled()) emit({ type: "error" /* ERROR */, message });
-            finish(null);
+            if (!resolved && !isCancelled()) emit({ type: "error" /* ERROR */, message });
+            if (!resolved) finish(null);
           },
           () => {
             if (!resolved) {
@@ -2329,6 +2399,8 @@ var PRBEAgent = class _PRBEAgent {
         }));
         const startMetadata = {
           agent_id: this.agentID,
+          sdk_name: "electron",
+          supports_chat: true,
           custom_tools: toolDeclarations,
           platform: os.platform(),
           os_version: os.release(),
@@ -2377,7 +2449,12 @@ var PRBEAgent = class _PRBEAgent {
         const args = this.extractArgs(msg.metadata);
         emit({ type: "tool_call" /* TOOL_CALL */, name: toolName, label: msg.content ?? `Running ${toolName}` });
         this.pendingFlaggedFiles = [];
-        const toolResult = redactPII(await this.registry.execute(toolName, args));
+        let toolResult;
+        try {
+          toolResult = redactPII(await this.registry.execute(toolName, args));
+        } catch (err) {
+          toolResult = `Error: Tool execution failed: ${err instanceof Error ? err.message : String(err)}`;
+        }
         emit({ type: "observation" /* OBSERVATION */, text: toolResult.substring(0, 200) });
         let resultMetadata;
         const uploadBaseUrl = getUploadBaseUrl();
@@ -2439,6 +2516,41 @@ var PRBEAgent = class _PRBEAgent {
         }
         break;
       }
+      case "privacy_sanitizing" /* PRIVACY_SANITIZING */: {
+        emit({ type: "privacy_sanitizing" /* PRIVACY_SANITIZING */ });
+        break;
+      }
+      case "privacy_review" /* PRIVACY_REVIEW */: {
+        const sanitizedText = msg.content ?? "";
+        const issues = msg.metadata?.issues ?? [];
+        const files = msg.metadata?.files ?? [];
+        const summary = msg.metadata?.summary ?? "";
+        const payload = {
+          type: "review_sanitized_output" /* REVIEW_SANITIZED_OUTPUT */,
+          interactionId: (0, import_crypto5.randomUUID)(),
+          sanitizedAnalysis: sanitizedText,
+          files,
+          summary,
+          issues
+        };
+        try {
+          const response = await this.requestUserInteraction(payload);
+          const reviewResponse = response;
+          conn.send({
+            type: "privacy_review_response" /* PRIVACY_REVIEW_RESPONSE */,
+            metadata: {
+              approved: reviewResponse.approved,
+              ...reviewResponse.editedText ? { editedText: reviewResponse.editedText } : {}
+            }
+          });
+        } catch {
+          conn.send({
+            type: "privacy_review_response" /* PRIVACY_REVIEW_RESPONSE */,
+            metadata: { approved: false }
+          });
+        }
+        break;
+      }
       case "ping" /* PING */:
         conn.sendPong();
         break;
@@ -2541,6 +2653,7 @@ var PRBEAgent = class _PRBEAgent {
 // src/serialization.ts
 var DEFAULT_PRBE_STATE = {
   isInvestigating: false,
+  isPrivacySanitizing: false,
   events: [],
   report: "",
   summary: "",
@@ -2579,6 +2692,7 @@ function serializeBackgroundInvestigation(bg) {
 function serializePRBEState(state) {
   return {
     isInvestigating: state.isInvestigating,
+    isPrivacySanitizing: state.isPrivacySanitizing,
     events: state.events,
     report: state.report,
     summary: state.summary,