@rozek/nanoclaw 1.2.17

package/dist/mount-security.js

@@ -0,0 +1,325 @@
+/**
+ * Mount Security Module for NanoClaw
+ *
+ * Validates additional mounts against an allowlist stored OUTSIDE the project root.
+ * This prevents container agents from modifying security configuration.
+ *
+ * Allowlist location: ~/.config/nanoclaw/mount-allowlist.json
+ */
+import fs from 'fs';
+import os from 'os';
+import path from 'path';
+import pino from 'pino';
+import { MOUNT_ALLOWLIST_PATH } from './config.js';
+const logger = pino({
+    level: process.env.LOG_LEVEL || 'info',
+    transport: { target: 'pino-pretty', options: { colorize: true } },
+});
+// Cache the allowlist in memory - only reloads on process restart
+let cachedAllowlist = null;
+let allowlistLoadError = null;
+/**
+ * Default blocked patterns - paths that should never be mounted
+ */
+const DEFAULT_BLOCKED_PATTERNS = [
+    '.ssh',
+    '.gnupg',
+    '.gpg',
+    '.aws',
+    '.azure',
+    '.gcloud',
+    '.kube',
+    '.docker',
+    'credentials',
+    '.env',
+    '.netrc',
+    '.npmrc',
+    '.pypirc',
+    'id_rsa',
+    'id_ed25519',
+    'private_key',
+    '.secret',
+];
+/**
+ * Load the mount allowlist from the external config location.
+ * Returns null if the file doesn't exist or is invalid.
+ * Result is cached in memory for the lifetime of the process.
+ */
+export function loadMountAllowlist() {
+    if (cachedAllowlist !== null) {
+        return cachedAllowlist;
+    }
+    if (allowlistLoadError !== null) {
+        // Already tried and failed, don't spam logs
+        return null;
+    }
+    try {
+        if (!fs.existsSync(MOUNT_ALLOWLIST_PATH)) {
+            allowlistLoadError = `Mount allowlist not found at ${MOUNT_ALLOWLIST_PATH}`;
+            logger.warn({ path: MOUNT_ALLOWLIST_PATH }, 'Mount allowlist not found - additional mounts will be BLOCKED. ' +
+                'Create the file to enable additional mounts.');
+            return null;
+        }
+        const content = fs.readFileSync(MOUNT_ALLOWLIST_PATH, 'utf-8');
+        const allowlist = JSON.parse(content);
+        // Validate structure
+        if (!Array.isArray(allowlist.allowedRoots)) {
+            throw new Error('allowedRoots must be an array');
+        }
+        if (!Array.isArray(allowlist.blockedPatterns)) {
+            throw new Error('blockedPatterns must be an array');
+        }
+        if (typeof allowlist.nonMainReadOnly !== 'boolean') {
+            throw new Error('nonMainReadOnly must be a boolean');
+        }
+        // Merge with default blocked patterns
+        const mergedBlockedPatterns = [
+            ...new Set([...DEFAULT_BLOCKED_PATTERNS, ...allowlist.blockedPatterns]),
+        ];
+        allowlist.blockedPatterns = mergedBlockedPatterns;
+        cachedAllowlist = allowlist;
+        logger.info({
+            path: MOUNT_ALLOWLIST_PATH,
+            allowedRoots: allowlist.allowedRoots.length,
+            blockedPatterns: allowlist.blockedPatterns.length,
+        }, 'Mount allowlist loaded successfully');
+        return cachedAllowlist;
+    }
+    catch (err) {
+        allowlistLoadError = err instanceof Error ? err.message : String(err);
+        logger.error({
+            path: MOUNT_ALLOWLIST_PATH,
+            error: allowlistLoadError,
+        }, 'Failed to load mount allowlist - additional mounts will be BLOCKED');
+        return null;
+    }
+}
+/**
+ * Expand ~ to home directory and resolve to absolute path
+ */
+function expandPath(p) {
+    const homeDir = process.env.HOME || os.homedir();
+    if (p.startsWith('~/')) {
+        return path.join(homeDir, p.slice(2));
+    }
+    if (p === '~') {
+        return homeDir;
+    }
+    return path.resolve(p);
+}
+/**
+ * Get the real path, resolving symlinks.
+ * Returns null if the path doesn't exist.
+ */
+function getRealPath(p) {
+    try {
+        return fs.realpathSync(p);
+    }
+    catch {
+        return null;
+    }
+}
+/**
+ * Check if a path matches any blocked pattern
+ */
+function matchesBlockedPattern(realPath, blockedPatterns) {
+    const pathParts = realPath.split(path.sep);
+    for (const pattern of blockedPatterns) {
+        // Check if any path component matches the pattern
+        for (const part of pathParts) {
+            if (part === pattern || part.includes(pattern)) {
+                return pattern;
+            }
+        }
+        // Also check if the full path contains the pattern
+        if (realPath.includes(pattern)) {
+            return pattern;
+        }
+    }
+    return null;
+}
+/**
+ * Check if a real path is under an allowed root
+ */
+function findAllowedRoot(realPath, allowedRoots) {
+    for (const root of allowedRoots) {
+        const expandedRoot = expandPath(root.path);
+        const realRoot = getRealPath(expandedRoot);
+        if (realRoot === null) {
+            // Allowed root doesn't exist, skip it
+            continue;
+        }
+        // Check if realPath is under realRoot
+        const relative = path.relative(realRoot, realPath);
+        if (!relative.startsWith('..') && !path.isAbsolute(relative)) {
+            return root;
+        }
+    }
+    return null;
+}
+/**
+ * Validate the container path to prevent escaping /workspace/extra/
+ */
+function isValidContainerPath(containerPath) {
+    // Must not contain .. to prevent path traversal
+    if (containerPath.includes('..')) {
+        return false;
+    }
+    // Must not be absolute (it will be prefixed with /workspace/extra/)
+    if (containerPath.startsWith('/')) {
+        return false;
+    }
+    // Must not be empty
+    if (!containerPath || containerPath.trim() === '') {
+        return false;
+    }
+    return true;
+}
+/**
+ * Validate a single additional mount against the allowlist.
+ * Returns validation result with reason.
+ */
+export function validateMount(mount, isMain) {
+    const allowlist = loadMountAllowlist();
+    // If no allowlist, block all additional mounts
+    if (allowlist === null) {
+        return {
+            allowed: false,
+            reason: `No mount allowlist configured at ${MOUNT_ALLOWLIST_PATH}`,
+        };
+    }
+    // Derive containerPath from hostPath basename if not specified
+    const containerPath = mount.containerPath || path.basename(mount.hostPath);
+    // Validate container path (cheap check)
+    if (!isValidContainerPath(containerPath)) {
+        return {
+            allowed: false,
+            reason: `Invalid container path: "${containerPath}" - must be relative, non-empty, and not contain ".."`,
+        };
+    }
+    // Expand and resolve the host path
+    const expandedPath = expandPath(mount.hostPath);
+    const realPath = getRealPath(expandedPath);
+    if (realPath === null) {
+        return {
+            allowed: false,
+            reason: `Host path does not exist: "${mount.hostPath}" (expanded: "${expandedPath}")`,
+        };
+    }
+    // Check against blocked patterns
+    const blockedMatch = matchesBlockedPattern(realPath, allowlist.blockedPatterns);
+    if (blockedMatch !== null) {
+        return {
+            allowed: false,
+            reason: `Path matches blocked pattern "${blockedMatch}": "${realPath}"`,
+        };
+    }
+    // Check if under an allowed root
+    const allowedRoot = findAllowedRoot(realPath, allowlist.allowedRoots);
+    if (allowedRoot === null) {
+        return {
+            allowed: false,
+            reason: `Path "${realPath}" is not under any allowed root. Allowed roots: ${allowlist.allowedRoots
+                .map((r) => expandPath(r.path))
+                .join(', ')}`,
+        };
+    }
+    // Determine effective readonly status
+    const requestedReadWrite = mount.readonly === false;
+    let effectiveReadonly = true; // Default to readonly
+    if (requestedReadWrite) {
+        if (!isMain && allowlist.nonMainReadOnly) {
+            // Non-main groups forced to read-only
+            effectiveReadonly = true;
+            logger.info({
+                mount: mount.hostPath,
+            }, 'Mount forced to read-only for non-main group');
+        }
+        else if (!allowedRoot.allowReadWrite) {
+            // Root doesn't allow read-write
+            effectiveReadonly = true;
+            logger.info({
+                mount: mount.hostPath,
+                root: allowedRoot.path,
+            }, 'Mount forced to read-only - root does not allow read-write');
+        }
+        else {
+            // Read-write allowed
+            effectiveReadonly = false;
+        }
+    }
+    return {
+        allowed: true,
+        reason: `Allowed under root "${allowedRoot.path}"${allowedRoot.description ? ` (${allowedRoot.description})` : ''}`,
+        realHostPath: realPath,
+        resolvedContainerPath: containerPath,
+        effectiveReadonly,
+    };
+}
+/**
+ * Validate all additional mounts for a group.
+ * Returns array of validated mounts (only those that passed validation).
+ * Logs warnings for rejected mounts.
+ */
+export function validateAdditionalMounts(mounts, groupName, isMain) {
+    const validatedMounts = [];
+    for (const mount of mounts) {
+        const result = validateMount(mount, isMain);
+        if (result.allowed) {
+            validatedMounts.push({
+                hostPath: result.realHostPath,
+                containerPath: `/workspace/extra/${result.resolvedContainerPath}`,
+                readonly: result.effectiveReadonly,
+            });
+            logger.debug({
+                group: groupName,
+                hostPath: result.realHostPath,
+                containerPath: result.resolvedContainerPath,
+                readonly: result.effectiveReadonly,
+                reason: result.reason,
+            }, 'Mount validated successfully');
+        }
+        else {
+            logger.warn({
+                group: groupName,
+                requestedPath: mount.hostPath,
+                containerPath: mount.containerPath,
+                reason: result.reason,
+            }, 'Additional mount REJECTED');
+        }
+    }
+    return validatedMounts;
+}
+/**
+ * Generate a template allowlist file for users to customize
+ */
+export function generateAllowlistTemplate() {
+    const template = {
+        allowedRoots: [
+            {
+                path: '~/projects',
+                allowReadWrite: true,
+                description: 'Development projects',
+            },
+            {
+                path: '~/repos',
+                allowReadWrite: true,
+                description: 'Git repositories',
+            },
+            {
+                path: '~/Documents/work',
+                allowReadWrite: false,
+                description: 'Work documents (read-only)',
+            },
+        ],
+        blockedPatterns: [
+            // Additional patterns beyond defaults
+            'password',
+            'secret',
+            'token',
+        ],
+        nonMainReadOnly: true,
+    };
+    return JSON.stringify(template, null, 2);
+}
+//# sourceMappingURL=mount-security.js.map

package/dist/mount-security.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mount-security.js","sourceRoot":"","sources":["../src/mount-security.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AACH,OAAO,EAAE,MAAM,IAAI,CAAC;AACpB,OAAO,EAAE,MAAM,IAAI,CAAC;AACpB,OAAO,IAAI,MAAM,MAAM,CAAC;AACxB,OAAO,IAAI,MAAM,MAAM,CAAC;AAExB,OAAO,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAGnD,MAAM,MAAM,GAAG,IAAI,CAAC;IAClB,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,MAAM;IACtC,SAAS,EAAE,EAAE,MAAM,EAAE,aAAa,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE;CAClE,CAAC,CAAC;AAEH,kEAAkE;AAClE,IAAI,eAAe,GAA0B,IAAI,CAAC;AAClD,IAAI,kBAAkB,GAAkB,IAAI,CAAC;AAE7C;;GAEG;AACH,MAAM,wBAAwB,GAAG;IAC/B,MAAM;IACN,QAAQ;IACR,MAAM;IACN,MAAM;IACN,QAAQ;IACR,SAAS;IACT,OAAO;IACP,SAAS;IACT,aAAa;IACb,MAAM;IACN,QAAQ;IACR,QAAQ;IACR,SAAS;IACT,QAAQ;IACR,YAAY;IACZ,aAAa;IACb,SAAS;CACV,CAAC;AAEF;;;;GAIG;AACH,MAAM,UAAU,kBAAkB;IAChC,IAAI,eAAe,KAAK,IAAI,EAAE,CAAC;QAC7B,OAAO,eAAe,CAAC;IACzB,CAAC;IAED,IAAI,kBAAkB,KAAK,IAAI,EAAE,CAAC;QAChC,4CAA4C;QAC5C,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,CAAC;QACH,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,oBAAoB,CAAC,EAAE,CAAC;YACzC,kBAAkB,GAAG,gCAAgC,oBAAoB,EAAE,CAAC;YAC5E,MAAM,CAAC,IAAI,CACT,EAAE,IAAI,EAAE,oBAAoB,EAAE,EAC9B,iEAAiE;gBAC/D,8CAA8C,CACjD,CAAC;YACF,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,oBAAoB,EAAE,OAAO,CAAC,CAAC;QAC/D,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAmB,CAAC;QAExD,qBAAqB;QACrB,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,YAAY,CAAC,EAAE,CAAC;YAC3C,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;QACnD,CAAC;QAED,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,eAAe,CAAC,EAAE,CAAC;YAC9C,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;QACtD,CAAC;QAED,IAAI,OAAO,SAAS,CAAC,eAAe,KAAK,SAAS,EAAE,CAAC;YACnD,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;QACvD,CAAC;QAED,sCAAsC;QACtC,MAAM,qBAAqB,GAAG;YAC5B,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,wBAAwB,EAAE,GAAG,SAAS,CAAC,eAAe,CAAC,CAAC;SACxE,CAAC;QACF,SAAS,CAAC,eAAe,GAAG,qBAAqB,CAAC;QAElD,eAAe,GAAG,SAAS,CAAC;QAC5B,MAAM,CAAC,IAAI,CACT;YACE,IAAI,EAAE,oBAAoB;YAC1B,YAAY,EAAE,SAAS,CAAC,YAAY,CAAC,MAAM;YAC3C,eAAe,EAAE,SAAS,CAAC,eAAe,CAAC,MAAM;SAClD,EACD,qCAAqC,CACtC,CAAC;QAEF,OAAO,eAAe,CAAC;IACzB,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,kBAAkB,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACtE,MAAM,CAAC,KAAK,CACV;YACE,IAAI,EAAE,oBAAoB;YAC1B,KAAK,EAAE,kBAAkB;SAC1B,EACD,oEAAoE,CACrE,CAAC;QACF,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,UAAU,CAAC,CAAS;IAC3B,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC,OAAO,EAAE,CAAC;IACjD,IAAI,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QACvB,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;IACxC,CAAC;IACD,IAAI,CAAC,KAAK,GAAG,EAAE,CAAC;QACd,OAAO,OAAO,CAAC;IACjB,CAAC;IACD,OAAO,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;AACzB,CAAC;AAED;;;GAGG;AACH,SAAS,WAAW,CAAC,CAAS;IAC5B,IAAI,CAAC;QACH,OAAO,EAAE,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;IAC5B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,qBAAqB,CAC5B,QAAgB,EAChB,eAAyB;IAEzB,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAE3C,KAAK,MAAM,OAAO,IAAI,eAAe,EAAE,CAAC;QACtC,kDAAkD;QAClD,KAAK,MAAM,IAAI,IAAI,SAAS,EAAE,CAAC;YAC7B,IAAI,IAAI,KAAK,OAAO,IAAI,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC/C,OAAO,OAAO,CAAC;YACjB,CAAC;QACH,CAAC;QAED,mDAAmD;QACnD,IAAI,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC/B,OAAO,OAAO,CAAC;QACjB,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CACtB,QAAgB,EAChB,YAA2B;IAE3B,KAAK,MAAM,IAAI,IAAI,YAAY,EAAE,CAAC;QAChC,MAAM,YAAY,GAAG,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC3C,MAAM,QAAQ,GAAG,WAAW,CAAC,YAAY,CAAC,CAAC;QAE3C,IAAI,QAAQ,KAAK,IAAI,EAAE,CAAC;YACtB,sCAAsC;YACtC,SAAS;QACX,CAAC;QAED,sCAAsC;QACtC,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;QACnD,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC7D,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;GAEG;AACH,SAAS,oBAAoB,CAAC,aAAqB;IACjD,gDAAgD;IAChD,IAAI,aAAa,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACjC,OAAO,KAAK,CAAC;IACf,CAAC;IAED,oEAAoE;IACpE,IAAI,aAAa,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QAClC,OAAO,KAAK,CAAC;IACf,CAAC;IAED,oBAAoB;IACpB,IAAI,CAAC,aAAa,IAAI,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;QAClD,OAAO,KAAK,CAAC;IACf,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAUD;;;GAGG;AACH,MAAM,UAAU,aAAa,CAC3B,KAAsB,EACtB,MAAe;IAEf,MAAM,SAAS,GAAG,kBAAkB,EAAE,CAAC;IAEvC,+CAA+C;IAC/C,IAAI,SAAS,KAAK,IAAI,EAAE,CAAC;QACvB,OAAO;YACL,OAAO,EAAE,KAAK;YACd,MAAM,EAAE,oCAAoC,oBAAoB,EAAE;SACnE,CAAC;IACJ,CAAC;IAED,+DAA+D;IAC/D,MAAM,aAAa,GAAG,KAAK,CAAC,aAAa,IAAI,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;IAE3E,wCAAwC;IACxC,IAAI,CAAC,oBAAoB,CAAC,aAAa,CAAC,EAAE,CAAC;QACzC,OAAO;YACL,OAAO,EAAE,KAAK;YACd,MAAM,EAAE,4BAA4B,aAAa,uDAAuD;SACzG,CAAC;IACJ,CAAC;IAED,mCAAmC;IACnC,MAAM,YAAY,GAAG,UAAU,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;IAChD,MAAM,QAAQ,GAAG,WAAW,CAAC,YAAY,CAAC,CAAC;IAE3C,IAAI,QAAQ,KAAK,IAAI,EAAE,CAAC;QACtB,OAAO;YACL,OAAO,EAAE,KAAK;YACd,MAAM,EAAE,8BAA8B,KAAK,CAAC,QAAQ,iBAAiB,YAAY,IAAI;SACtF,CAAC;IACJ,CAAC;IAED,iCAAiC;IACjC,MAAM,YAAY,GAAG,qBAAqB,CACxC,QAAQ,EACR,SAAS,CAAC,eAAe,CAC1B,CAAC;IACF,IAAI,YAAY,KAAK,IAAI,EAAE,CAAC;QAC1B,OAAO;YACL,OAAO,EAAE,KAAK;YACd,MAAM,EAAE,iCAAiC,YAAY,OAAO,QAAQ,GAAG;SACxE,CAAC;IACJ,CAAC;IAED,iCAAiC;IACjC,MAAM,WAAW,GAAG,eAAe,CAAC,QAAQ,EAAE,SAAS,CAAC,YAAY,CAAC,CAAC;IACtE,IAAI,WAAW,KAAK,IAAI,EAAE,CAAC;QACzB,OAAO;YACL,OAAO,EAAE,KAAK;YACd,MAAM,EAAE,SAAS,QAAQ,mDAAmD,SAAS,CAAC,YAAY;iBAC/F,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;iBAC9B,IAAI,CAAC,IAAI,CAAC,EAAE;SAChB,CAAC;IACJ,CAAC;IAED,sCAAsC;IACtC,MAAM,kBAAkB,GAAG,KAAK,CAAC,QAAQ,KAAK,KAAK,CAAC;IACpD,IAAI,iBAAiB,GAAG,IAAI,CAAC,CAAC,sBAAsB;IAEpD,IAAI,kBAAkB,EAAE,CAAC;QACvB,IAAI,CAAC,MAAM,IAAI,SAAS,CAAC,eAAe,EAAE,CAAC;YACzC,sCAAsC;YACtC,iBAAiB,GAAG,IAAI,CAAC;YACzB,MAAM,CAAC,IAAI,CACT;gBACE,KAAK,EAAE,KAAK,CAAC,QAAQ;aACtB,EACD,8CAA8C,CAC/C,CAAC;QACJ,CAAC;aAAM,IAAI,CAAC,WAAW,CAAC,cAAc,EAAE,CAAC;YACvC,gCAAgC;YAChC,iBAAiB,GAAG,IAAI,CAAC;YACzB,MAAM,CAAC,IAAI,CACT;gBACE,KAAK,EAAE,KAAK,CAAC,QAAQ;gBACrB,IAAI,EAAE,WAAW,CAAC,IAAI;aACvB,EACD,4DAA4D,CAC7D,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,qBAAqB;YACrB,iBAAiB,GAAG,KAAK,CAAC;QAC5B,CAAC;IACH,CAAC;IAED,OAAO;QACL,OAAO,EAAE,IAAI;QACb,MAAM,EAAE,uBAAuB,WAAW,CAAC,IAAI,IAAI,WAAW,CAAC,WAAW,CAAC,CAAC,CAAC,KAAK,WAAW,CAAC,WAAW,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QACnH,YAAY,EAAE,QAAQ;QACtB,qBAAqB,EAAE,aAAa;QACpC,iBAAiB;KAClB,CAAC;AACJ,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,wBAAwB,CACtC,MAAyB,EACzB,SAAiB,EACjB,MAAe;IAMf,MAAM,eAAe,GAIhB,EAAE,CAAC;IAER,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,MAAM,MAAM,GAAG,aAAa,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;QAE5C,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;YACnB,eAAe,CAAC,IAAI,CAAC;gBACnB,QAAQ,EAAE,MAAM,CAAC,YAAa;gBAC9B,aAAa,EAAE,oBAAoB,MAAM,CAAC,qBAAqB,EAAE;gBACjE,QAAQ,EAAE,MAAM,CAAC,iBAAkB;aACpC,CAAC,CAAC;YAEH,MAAM,CAAC,KAAK,CACV;gBACE,KAAK,EAAE,SAAS;gBAChB,QAAQ,EAAE,MAAM,CAAC,YAAY;gBAC7B,aAAa,EAAE,MAAM,CAAC,qBAAqB;gBAC3C,QAAQ,EAAE,MAAM,CAAC,iBAAiB;gBAClC,MAAM,EAAE,MAAM,CAAC,MAAM;aACtB,EACD,8BAA8B,CAC/B,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CACT;gBACE,KAAK,EAAE,SAAS;gBAChB,aAAa,EAAE,KAAK,CAAC,QAAQ;gBAC7B,aAAa,EAAE,KAAK,CAAC,aAAa;gBAClC,MAAM,EAAE,MAAM,CAAC,MAAM;aACtB,EACD,2BAA2B,CAC5B,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO,eAAe,CAAC;AACzB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,yBAAyB;IACvC,MAAM,QAAQ,GAAmB;QAC/B,YAAY,EAAE;YACZ;gBACE,IAAI,EAAE,YAAY;gBAClB,cAAc,EAAE,IAAI;gBACpB,WAAW,EAAE,sBAAsB;aACpC;YACD;gBACE,IAAI,EAAE,SAAS;gBACf,cAAc,EAAE,IAAI;gBACpB,WAAW,EAAE,kBAAkB;aAChC;YACD;gBACE,IAAI,EAAE,kBAAkB;gBACxB,cAAc,EAAE,KAAK;gBACrB,WAAW,EAAE,4BAA4B;aAC1C;SACF;QACD,eAAe,EAAE;YACf,sCAAsC;YACtC,UAAU;YACV,QAAQ;YACR,OAAO;SACR;QACD,eAAe,EAAE,IAAI;KACtB,CAAC;IAEF,OAAO,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;AAC3C,CAAC"}

package/dist/remote-control.d.ts

@@ -0,0 +1,32 @@
+interface RemoteControlSession {
+    pid: number;
+    url: string;
+    startedBy: string;
+    startedInChat: string;
+    startedAt: string;
+}
+/**
+ * Restore session from disk on startup.
+ * If the process is still alive, adopt it. Otherwise, clean up.
+ */
+export declare function restoreRemoteControl(): void;
+export declare function getActiveSession(): RemoteControlSession | null;
+/** @internal — exported for testing only */
+export declare function _resetForTesting(): void;
+/** @internal — exported for testing only */
+export declare function _getStateFilePath(): string;
+export declare function startRemoteControl(sender: string, chatJid: string, cwd: string): Promise<{
+    ok: true;
+    url: string;
+} | {
+    ok: false;
+    error: string;
+}>;
+export declare function stopRemoteControl(): {
+    ok: true;
+} | {
+    ok: false;
+    error: string;
+};
+export {};
+//# sourceMappingURL=remote-control.d.ts.map

package/dist/remote-control.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"remote-control.d.ts","sourceRoot":"","sources":["../src/remote-control.ts"],"names":[],"mappings":"AAOA,UAAU,oBAAoB;IAC5B,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;CACnB;AAiCD;;;GAGG;AACH,wBAAgB,oBAAoB,IAAI,IAAI,CAsB3C;AAED,wBAAgB,gBAAgB,IAAI,oBAAoB,GAAG,IAAI,CAE9D;AAED,4CAA4C;AAC5C,wBAAgB,gBAAgB,IAAI,IAAI,CAEvC;AAED,4CAA4C;AAC5C,wBAAgB,iBAAiB,IAAI,MAAM,CAE1C;AAED,wBAAsB,kBAAkB,CACtC,MAAM,EAAE,MAAM,EACd,OAAO,EAAE,MAAM,EACf,GAAG,EAAE,MAAM,GACV,OAAO,CAAC;IAAE,EAAE,EAAE,IAAI,CAAC;IAAC,GAAG,EAAE,MAAM,CAAA;CAAE,GAAG;IAAE,EAAE,EAAE,KAAK,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAAC,CA8GnE;AAED,wBAAgB,iBAAiB,IAC7B;IACE,EAAE,EAAE,IAAI,CAAC;CACV,GACD;IAAE,EAAE,EAAE,KAAK,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CAe/B"}

package/dist/remote-control.js

@@ -0,0 +1,185 @@
+import { spawn } from 'child_process';
+import fs from 'fs';
+import path from 'path';
+import { DATA_DIR } from './config.js';
+import { logger } from './logger.js';
+let activeSession = null;
+const URL_REGEX = /https:\/\/claude\.ai\/code\S+/;
+const URL_TIMEOUT_MS = 30_000;
+const URL_POLL_MS = 200;
+const STATE_FILE = path.join(DATA_DIR, 'remote-control.json');
+const STDOUT_FILE = path.join(DATA_DIR, 'remote-control.stdout');
+const STDERR_FILE = path.join(DATA_DIR, 'remote-control.stderr');
+function saveState(session) {
+    fs.mkdirSync(path.dirname(STATE_FILE), { recursive: true });
+    fs.writeFileSync(STATE_FILE, JSON.stringify(session));
+}
+function clearState() {
+    try {
+        fs.unlinkSync(STATE_FILE);
+    }
+    catch {
+        // ignore
+    }
+}
+function isProcessAlive(pid) {
+    try {
+        process.kill(pid, 0);
+        return true;
+    }
+    catch {
+        return false;
+    }
+}
+/**
+ * Restore session from disk on startup.
+ * If the process is still alive, adopt it. Otherwise, clean up.
+ */
+export function restoreRemoteControl() {
+    let data;
+    try {
+        data = fs.readFileSync(STATE_FILE, 'utf-8');
+    }
+    catch {
+        return;
+    }
+    try {
+        const session = JSON.parse(data);
+        if (session.pid && isProcessAlive(session.pid)) {
+            activeSession = session;
+            logger.info({ pid: session.pid, url: session.url }, 'Restored Remote Control session from previous run');
+        }
+        else {
+            clearState();
+        }
+    }
+    catch {
+        clearState();
+    }
+}
+export function getActiveSession() {
+    return activeSession;
+}
+/** @internal — exported for testing only */
+export function _resetForTesting() {
+    activeSession = null;
+}
+/** @internal — exported for testing only */
+export function _getStateFilePath() {
+    return STATE_FILE;
+}
+export async function startRemoteControl(sender, chatJid, cwd) {
+    if (activeSession) {
+        // Verify the process is still alive
+        if (isProcessAlive(activeSession.pid)) {
+            return { ok: true, url: activeSession.url };
+        }
+        // Process died — clean up and start a new one
+        activeSession = null;
+        clearState();
+    }
+    // Redirect stdout/stderr to files so the process has no pipes to the parent.
+    // This prevents SIGPIPE when NanoClaw restarts.
+    fs.mkdirSync(DATA_DIR, { recursive: true });
+    const stdoutFd = fs.openSync(STDOUT_FILE, 'w');
+    const stderrFd = fs.openSync(STDERR_FILE, 'w');
+    let proc;
+    try {
+        proc = spawn('claude', ['remote-control', '--name', 'NanoClaw Remote'], {
+            cwd,
+            stdio: ['pipe', stdoutFd, stderrFd],
+            detached: true,
+        });
+    }
+    catch (err) {
+        fs.closeSync(stdoutFd);
+        fs.closeSync(stderrFd);
+        return { ok: false, error: `Failed to start: ${err.message}` };
+    }
+    // Auto-accept the "Enable Remote Control?" prompt
+    if (proc.stdin) {
+        proc.stdin.write('y\n');
+        proc.stdin.end();
+    }
+    // Close FDs in the parent — the child inherited copies
+    fs.closeSync(stdoutFd);
+    fs.closeSync(stderrFd);
+    // Fully detach from parent
+    proc.unref();
+    const pid = proc.pid;
+    if (!pid) {
+        return { ok: false, error: 'Failed to get process PID' };
+    }
+    // Poll the stdout file for the URL
+    return new Promise((resolve) => {
+        const startTime = Date.now();
+        const poll = () => {
+            // Check if process died
+            if (!isProcessAlive(pid)) {
+                resolve({ ok: false, error: 'Process exited before producing URL' });
+                return;
+            }
+            // Check for URL in stdout file
+            let content = '';
+            try {
+                content = fs.readFileSync(STDOUT_FILE, 'utf-8');
+            }
+            catch {
+                // File might not have content yet
+            }
+            const match = content.match(URL_REGEX);
+            if (match) {
+                const session = {
+                    pid,
+                    url: match[0],
+                    startedBy: sender,
+                    startedInChat: chatJid,
+                    startedAt: new Date().toISOString(),
+                };
+                activeSession = session;
+                saveState(session);
+                logger.info({ url: match[0], pid, sender, chatJid }, 'Remote Control session started');
+                resolve({ ok: true, url: match[0] });
+                return;
+            }
+            // Timeout check
+            if (Date.now() - startTime >= URL_TIMEOUT_MS) {
+                try {
+                    process.kill(-pid, 'SIGTERM');
+                }
+                catch {
+                    try {
+                        process.kill(pid, 'SIGTERM');
+                    }
+                    catch {
+                        // already dead
+                    }
+                }
+                resolve({
+                    ok: false,
+                    error: 'Timed out waiting for Remote Control URL',
+                });
+                return;
+            }
+            setTimeout(poll, URL_POLL_MS);
+        };
+        poll();
+    });
+}
+export function stopRemoteControl() {
+    if (!activeSession) {
+        return { ok: false, error: 'No active Remote Control session' };
+    }
+    const { pid } = activeSession;
+    try {
+        process.kill(pid, 'SIGTERM');
+    }
+    catch {
+        // already dead
+    }
+    activeSession = null;
+    clearState();
+    logger.info({ pid }, 'Remote Control session stopped');
+    return { ok: true };
+}
+//# sourceMappingURL=remote-control.js.map

package/dist/remote-control.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"remote-control.js","sourceRoot":"","sources":["../src/remote-control.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,eAAe,CAAC;AACtC,OAAO,EAAE,MAAM,IAAI,CAAC;AACpB,OAAO,IAAI,MAAM,MAAM,CAAC;AAExB,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACvC,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAUrC,IAAI,aAAa,GAAgC,IAAI,CAAC;AAEtD,MAAM,SAAS,GAAG,+BAA+B,CAAC;AAClD,MAAM,cAAc,GAAG,MAAM,CAAC;AAC9B,MAAM,WAAW,GAAG,GAAG,CAAC;AACxB,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,qBAAqB,CAAC,CAAC;AAC9D,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,uBAAuB,CAAC,CAAC;AACjE,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,uBAAuB,CAAC,CAAC;AAEjE,SAAS,SAAS,CAAC,OAA6B;IAC9C,EAAE,CAAC,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC5D,EAAE,CAAC,aAAa,CAAC,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC;AACxD,CAAC;AAED,SAAS,UAAU;IACjB,IAAI,CAAC;QACH,EAAE,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC;IAC5B,CAAC;IAAC,MAAM,CAAC;QACP,SAAS;IACX,CAAC;AACH,CAAC;AAED,SAAS,cAAc,CAAC,GAAW;IACjC,IAAI,CAAC;QACH,OAAO,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;QACrB,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,oBAAoB;IAClC,IAAI,IAAY,CAAC;IACjB,IAAI,CAAC;QACH,IAAI,GAAG,EAAE,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;IAC9C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO;IACT,CAAC;IAED,IAAI,CAAC;QACH,MAAM,OAAO,GAAyB,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACvD,IAAI,OAAO,CAAC,GAAG,IAAI,cAAc,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;YAC/C,aAAa,GAAG,OAAO,CAAC;YACxB,MAAM,CAAC,IAAI,CACT,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE,EACtC,mDAAmD,CACpD,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,UAAU,EAAE,CAAC;QACf,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,UAAU,EAAE,CAAC;IACf,CAAC;AACH,CAAC;AAED,MAAM,UAAU,gBAAgB;IAC9B,OAAO,aAAa,CAAC;AACvB,CAAC;AAED,4CAA4C;AAC5C,MAAM,UAAU,gBAAgB;IAC9B,aAAa,GAAG,IAAI,CAAC;AACvB,CAAC;AAED,4CAA4C;AAC5C,MAAM,UAAU,iBAAiB;IAC/B,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,MAAc,EACd,OAAe,EACf,GAAW;IAEX,IAAI,aAAa,EAAE,CAAC;QAClB,oCAAoC;QACpC,IAAI,cAAc,CAAC,aAAa,CAAC,GAAG,CAAC,EAAE,CAAC;YACtC,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,aAAa,CAAC,GAAG,EAAE,CAAC;QAC9C,CAAC;QACD,8CAA8C;QAC9C,aAAa,GAAG,IAAI,CAAC;QACrB,UAAU,EAAE,CAAC;IACf,CAAC;IAED,6EAA6E;IAC7E,gDAAgD;IAChD,EAAE,CAAC,SAAS,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC5C,MAAM,QAAQ,GAAG,EAAE,CAAC,QAAQ,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC;IAC/C,MAAM,QAAQ,GAAG,EAAE,CAAC,QAAQ,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC;IAE/C,IAAI,IAAI,CAAC;IACT,IAAI,CAAC;QACH,IAAI,GAAG,KAAK,CAAC,QAAQ,EAAE,CAAC,gBAAgB,EAAE,QAAQ,EAAE,iBAAiB,CAAC,EAAE;YACtE,GAAG;YACH,KAAK,EAAE,CAAC,MAAM,EAAE,QAAQ,EAAE,QAAQ,CAAC;YACnC,QAAQ,EAAE,IAAI;SACf,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,EAAE,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QACvB,EAAE,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QACvB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,oBAAoB,GAAG,CAAC,OAAO,EAAE,EAAE,CAAC;IACjE,CAAC;IAED,kDAAkD;IAClD,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;QACf,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QACxB,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC;IACnB,CAAC;IAED,uDAAuD;IACvD,EAAE,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;IACvB,EAAE,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;IAEvB,2BAA2B;IAC3B,IAAI,CAAC,KAAK,EAAE,CAAC;IAEb,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC;IACrB,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,2BAA2B,EAAE,CAAC;IAC3D,CAAC;IAED,mCAAmC;IACnC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;QAC7B,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,MAAM,IAAI,GAAG,GAAG,EAAE;YAChB,wBAAwB;YACxB,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,EAAE,CAAC;gBACzB,OAAO,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,qCAAqC,EAAE,CAAC,CAAC;gBACrE,OAAO;YACT,CAAC;YAED,+BAA+B;YAC/B,IAAI,OAAO,GAAG,EAAE,CAAC;YACjB,IAAI,CAAC;gBACH,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;YAClD,CAAC;YAAC,MAAM,CAAC;gBACP,kCAAkC;YACpC,CAAC;YAED,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;YACvC,IAAI,KAAK,EAAE,CAAC;gBACV,MAAM,OAAO,GAAyB;oBACpC,GAAG;oBACH,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC;oBACb,SAAS,EAAE,MAAM;oBACjB,aAAa,EAAE,OAAO;oBACtB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;iBACpC,CAAC;gBACF,aAAa,GAAG,OAAO,CAAC;gBACxB,SAAS,CAAC,OAAO,CAAC,CAAC;gBAEnB,MAAM,CAAC,IAAI,CACT,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,EAAE,OAAO,EAAE,EACvC,gCAAgC,CACjC,CAAC;gBACF,OAAO,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBACrC,OAAO;YACT,CAAC;YAED,gBAAgB;YAChB,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,IAAI,cAAc,EAAE,CAAC;gBAC7C,IAAI,CAAC;oBACH,OAAO,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;gBAChC,CAAC;gBAAC,MAAM,CAAC;oBACP,IAAI,CAAC;wBACH,OAAO,CAAC,IAAI,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;oBAC/B,CAAC;oBAAC,MAAM,CAAC;wBACP,eAAe;oBACjB,CAAC;gBACH,CAAC;gBACD,OAAO,CAAC;oBACN,EAAE,EAAE,KAAK;oBACT,KAAK,EAAE,0CAA0C;iBAClD,CAAC,CAAC;gBACH,OAAO;YACT,CAAC;YAED,UAAU,CAAC,IAAI,EAAE,WAAW,CAAC,CAAC;QAChC,CAAC,CAAC;QAEF,IAAI,EAAE,CAAC;IACT,CAAC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,UAAU,iBAAiB;IAK/B,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,kCAAkC,EAAE,CAAC;IAClE,CAAC;IAED,MAAM,EAAE,GAAG,EAAE,GAAG,aAAa,CAAC;IAC9B,IAAI,CAAC;QACH,OAAO,CAAC,IAAI,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;IAC/B,CAAC;IAAC,MAAM,CAAC;QACP,eAAe;IACjB,CAAC;IACD,aAAa,GAAG,IAAI,CAAC;IACrB,UAAU,EAAE,CAAC;IACb,MAAM,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,EAAE,gCAAgC,CAAC,CAAC;IACvD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;AACtB,CAAC"}

package/dist/remote-control.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=remote-control.test.d.ts.map

package/dist/remote-control.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"remote-control.test.d.ts","sourceRoot":"","sources":["../src/remote-control.test.ts"],"names":[],"mappings":""}