npm - @rubytech/create-maxy - Versions diffs - 1.0.808 → 1.0.809 - Mend

@rubytech/create-maxy 1.0.808 → 1.0.809

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (39) hide show

package/payload/server/server.js CHANGED Viewed

@@ -619,15 +619,15 @@ var serveStatic = (options = { root: "" }) => {
 };
 // server/index.ts
-import { readFileSync as readFileSync18, existsSync as existsSync25, watchFile } from "fs";
-import { resolve as resolve24, join as join11, basename as basename7 } from "path";
+import { readFileSync as readFileSync19, existsSync as existsSync25, watchFile } from "fs";
+import { resolve as resolve25, join as join11, basename as basename7 } from "path";
 import { homedir as homedir2 } from "os";
 // app/lib/agent-slug-pattern.ts
 var AGENT_SLUG_PATTERN = /^\/([a-z][a-z0-9-]{2,49})$/;
 // server/routes/health.ts
-import { existsSync as existsSync6, readFileSync as readFileSync5 } from "fs";
+import { existsSync as existsSync6, readFileSync as readFileSync6 } from "fs";
 import { createConnection } from "net";
 // app/lib/network.ts
@@ -2836,7 +2836,7 @@ var credsSaveQueue = Promise.resolve();
 async function drainCredsSaveQueue(timeoutMs = 5e3) {
   console.error(`${TAG3} draining credential save queue\u2026`);
   const timer2 = new Promise(
-    (resolve25) => setTimeout(() => resolve25("timeout"), timeoutMs)
+    (resolve26) => setTimeout(() => resolve26("timeout"), timeoutMs)
   );
   const result = await Promise.race([
     credsSaveQueue.then(() => "drained"),
@@ -2964,11 +2964,11 @@ async function createWaSocket(opts) {
   return sock;
 }
 async function waitForConnection(sock) {
-  return new Promise((resolve25, reject) => {
+  return new Promise((resolve26, reject) => {
     const handler = (update) => {
       if (update.connection === "open") {
         sock.ev.off("connection.update", handler);
-        resolve25();
+        resolve26();
       }
       if (update.connection === "close") {
         sock.ev.off("connection.update", handler);
@@ -3082,14 +3082,14 @@ ${inspected}`;
   return inspect2(err, INSPECT_OPTS2);
 }
 function withTimeout(label, promise, timeoutMs) {
-  return new Promise((resolve25, reject) => {
+  return new Promise((resolve26, reject) => {
     const timer2 = setTimeout(() => {
       reject(new Error(`${label} timed out after ${timeoutMs}ms`));
     }, timeoutMs);
     promise.then(
       (value) => {
         clearTimeout(timer2);
-        resolve25(value);
+        resolve26(value);
       },
       (err) => {
         clearTimeout(timer2);
@@ -3610,8 +3610,8 @@ async function persistWhatsAppMessage(input) {
   const { givenName, familyName } = splitName(input.pushName);
   const prev = sessionWriteLocks.get(input.sessionKey);
   let release;
-  const mine = new Promise((resolve25) => {
-    release = resolve25;
+  const mine = new Promise((resolve26) => {
+    release = resolve26;
   });
   const chained = (prev ?? Promise.resolve()).then(() => mine);
   sessionWriteLocks.set(input.sessionKey, chained);
@@ -3629,7 +3629,7 @@ async function persistWhatsAppMessage(input) {
            existingM IS NOT NULL AS messageExisted
       MERGE (s:Person {telephone: $senderTelephone})
         ON CREATE SET
-          s.accountId        = $accountId,
+          s.accountId        = $platformAccountId,
           s.givenName        = $givenName,
           s.familyName       = $familyName,
           s.source           = 'whatsapp-live',
@@ -3641,7 +3641,7 @@ async function persistWhatsAppMessage(input) {
       MERGE (m:Message {messageId: $messageId})
         ON CREATE SET
           m:WhatsAppMessage,
-          m.accountId        = $accountId,
+          m.accountId        = $platformAccountId,
           m.conversationId   = c.conversationId,
           m.source           = 'whatsapp',
           m.createdByAgent   = 'whatsapp-live',
@@ -3687,7 +3687,7 @@ async function persistWhatsAppMessage(input) {
     const params = {
       sessionKey: input.sessionKey,
       messageId,
-      accountId: input.accountId,
+      platformAccountId: input.platformAccountId,
       senderTelephone,
       senderName: input.pushName ?? null,
       givenName,
@@ -3704,7 +3704,7 @@ async function persistWhatsAppMessage(input) {
     const result = await session.run(cypher, params);
     const ms = Date.now() - t0;
     if (result.records.length === 0) {
-      console.error(`${TAG7} skip reason=conversation-not-found accountId=${input.accountId} sessionKey=${input.sessionKey} messageId=${messageId}`);
+      console.error(`${TAG7} skip reason=conversation-not-found accountId=${input.platformAccountId} sessionKey=${input.sessionKey} messageId=${messageId}`);
       return null;
     }
     const rec = result.records[0];
@@ -3725,14 +3725,14 @@ async function persistWhatsAppMessage(input) {
       console.error(`${TAG7} next-skip reason=no-prior msgId=${messageId}`);
     }
     console.error(
-      `${TAG7} write messageId=${messageId} sessionKey=${input.sessionKey} fromMe=${input.fromMe} dateSent=${dateSentIso} bodyBytes=${Buffer.byteLength(input.body, "utf8")} ms=${ms}`
+      `${TAG7} write messageId=${messageId} accountId=${input.platformAccountId} sessionKey=${input.sessionKey} fromMe=${input.fromMe} dateSent=${dateSentIso} bodyBytes=${Buffer.byteLength(input.body, "utf8")} ms=${ms}`
     );
     return { messageId, created: true, senderElementId };
   } catch (err) {
     const ms = Date.now() - t0;
     const reason = sanitizeReason(err);
     console.error(
-      `${TAG7} FAIL accountId=${input.accountId} remoteJid=${input.remoteJid} msgKey=${input.msgKeyId} reason=${reason} ms=${ms}`
+      `${TAG7} FAIL accountId=${input.platformAccountId} waname=${input.accountId} remoteJid=${input.remoteJid} msgKey=${input.msgKeyId} reason=${reason} ms=${ms}`
     );
     return null;
   } finally {
@@ -3770,7 +3770,7 @@ async function ensureWhatsAppConversation(input) {
   const t0 = Date.now();
   try {
     const result = await ensureConversation(
-      input.accountId,
+      input.platformAccountId,
       input.agentType,
       input.sessionKey
     );
@@ -3795,6 +3795,52 @@ async function ensureWhatsAppConversation(input) {
   }
 }
+// app/lib/whatsapp/platform-account-id.ts
+import { readdirSync as readdirSync2, readFileSync as readFileSync5 } from "fs";
+import { resolve as resolve6 } from "path";
+var UUID_RE = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i;
+var cached = null;
+var cachedAccountsDir = null;
+function resolvePlatformAccountId(accountsDir = ACCOUNTS_DIR) {
+  if (cached !== null && cachedAccountsDir === accountsDir) return cached;
+  const valid = enumerateValidAccountIds(accountsDir);
+  if (valid.length === 0) {
+    throw new Error(
+      `[whatsapp-persist] resolvePlatformAccountId: no platform account found under ${accountsDir} \u2014 corrupt install? Cannot stamp n.accountId without a valid UUID.`
+    );
+  }
+  if (valid.length > 1) {
+    throw new Error(
+      `[whatsapp-persist] resolvePlatformAccountId: multiple platform accounts found under ${accountsDir} (${valid.join(", ")}) \u2014 Phase 0 invariant requires exactly one. Loud-fail rather than picking one silently.`
+    );
+  }
+  cached = valid[0];
+  cachedAccountsDir = accountsDir;
+  return cached;
+}
+function enumerateValidAccountIds(accountsDir) {
+  let names;
+  try {
+    names = readdirSync2(accountsDir);
+  } catch (err) {
+    if (err.code === "ENOENT") return [];
+    throw err;
+  }
+  const valid = [];
+  for (const name of names) {
+    if (!UUID_RE.test(name)) continue;
+    const configPath2 = resolve6(accountsDir, name, "account.json");
+    try {
+      JSON.parse(readFileSync5(configPath2, "utf-8"));
+      valid.push(name);
+    } catch (err) {
+      const code = err.code;
+      if (code === "ENOENT") continue;
+    }
+  }
+  return valid;
+}
 // app/lib/whatsapp/inbound/media.ts
 import { randomUUID as randomUUID3 } from "crypto";
 import { writeFile, mkdir } from "fs/promises";
@@ -4273,9 +4319,23 @@ async function startConnection(accountId) {
     console.error(`${TAG13} no credentials for account=${accountId}`);
     return;
   }
+  let platformAccountId;
+  try {
+    platformAccountId = resolvePlatformAccountId();
+    console.error(
+      `[whatsapp-persist] resolved-account-id waname=${accountId} uuid=${platformAccountId}`
+    );
+  } catch (err) {
+    const reason = err instanceof Error ? err.message : String(err);
+    console.error(
+      `[whatsapp-persist] resolved-account-id FAIL waname=${accountId} reason=${reason}`
+    );
+    throw err;
+  }
   await stopConnection(accountId);
   const conn = {
     accountId,
+    platformAccountId,
     accountName: whatsAppConfig.accounts?.[accountId]?.name,
     authDir,
     sock: null,
@@ -4330,11 +4390,25 @@ function getSocket(accountId) {
 }
 async function registerLoginSocket(accountId, sock, authDir) {
   if (!configDir) throw new Error("WhatsApp manager not initialized");
+  let platformAccountId;
+  try {
+    platformAccountId = resolvePlatformAccountId();
+    console.error(
+      `[whatsapp-persist] resolved-account-id waname=${accountId} uuid=${platformAccountId}`
+    );
+  } catch (err) {
+    const reason = err instanceof Error ? err.message : String(err);
+    console.error(
+      `[whatsapp-persist] resolved-account-id FAIL waname=${accountId} reason=${reason}`
+    );
+    throw err;
+  }
   await stopConnection(accountId);
   const selfId = readSelfId(authDir);
   const lidMapping = sock.signalRepository?.lidMapping ?? null;
   const conn = {
     accountId,
+    platformAccountId,
     accountName: whatsAppConfig.accounts?.[accountId]?.name,
     authDir,
     sock,
@@ -4500,11 +4574,11 @@ async function connectWithReconnect(conn) {
       console.error(
         `${TAG13} reconnecting account=${conn.accountId} in ${delay}ms (attempt ${decision.nextAttempts}/${maxAttempts})`
       );
-      await new Promise((resolve25) => {
-        const timer2 = setTimeout(resolve25, delay);
+      await new Promise((resolve26) => {
+        const timer2 = setTimeout(resolve26, delay);
         conn.abortController.signal.addEventListener("abort", () => {
           clearTimeout(timer2);
-          resolve25();
+          resolve26();
         }, { once: true });
       });
     }
@@ -4512,16 +4586,16 @@ async function connectWithReconnect(conn) {
   }
 }
 function waitForDisconnectEvent(conn) {
-  return new Promise((resolve25) => {
+  return new Promise((resolve26) => {
     if (!conn.sock) {
-      resolve25();
+      resolve26();
       return;
     }
     const sock = conn.sock;
     const handler = (update) => {
       if (update.connection === "close") {
         sock.ev.off("connection.update", handler);
-        resolve25();
+        resolve26();
       }
     };
     sock.ev.on("connection.update", handler);
@@ -4542,8 +4616,8 @@ function watchForDisconnect(conn) {
   });
 }
 async function getGroupMeta(conn, jid) {
-  const cached = conn.groupMetaCache.get(jid);
-  if (cached && cached.expires > Date.now()) return cached;
+  const cached2 = conn.groupMetaCache.get(jid);
+  if (cached2 && cached2.expires > Date.now()) return cached2;
   if (!conn.sock) return null;
   console.error(`${TAG13} group metadata cache miss for ${jid}, fetching from Baileys account=${conn.accountId}`);
   try {
@@ -4655,6 +4729,7 @@ function monitorInbound(conn) {
           if (msg.key.id) {
             const merged = await ensureWhatsAppConversation({
               accountId: conn.accountId,
+              platformAccountId: conn.platformAccountId,
               sessionKey,
               agentType: sessionKeyAgentType,
               groupJid: isGroup ? remoteJid : void 0
@@ -4662,6 +4737,7 @@ function monitorInbound(conn) {
             if (merged) {
               await persistWhatsAppMessage({
                 accountId: conn.accountId,
+                platformAccountId: conn.platformAccountId,
                 remoteJid,
                 sessionKey,
                 msgKeyId: msg.key.id,
@@ -4780,8 +4856,8 @@ async function handleInboundMessage(conn, msg) {
     const conversationKey = isGroup ? remoteJid : senderPhone;
     const debounceKey = `${conn.accountId}:${conversationKey}:${senderPhone}`;
     let resolvePending;
-    const sttPending = new Promise((resolve25) => {
-      resolvePending = resolve25;
+    const sttPending = new Promise((resolve26) => {
+      resolvePending = resolve26;
     });
     if (conn.debouncer) conn.debouncer.registerPending(debounceKey, sttPending);
     try {
@@ -4894,20 +4970,20 @@ async function probeApiKey() {
   return result.status;
 }
 function checkPort(port2, timeoutMs = 500) {
-  return new Promise((resolve25) => {
+  return new Promise((resolve26) => {
     const socket = createConnection(port2, "127.0.0.1");
     socket.setTimeout(timeoutMs);
     socket.once("connect", () => {
       socket.destroy();
-      resolve25(true);
+      resolve26(true);
     });
     socket.once("error", () => {
       socket.destroy();
-      resolve25(false);
+      resolve26(false);
     });
     socket.once("timeout", () => {
       socket.destroy();
-      resolve25(false);
+      resolve26(false);
     });
   });
 }
@@ -4917,7 +4993,7 @@ app.get("/", async (c) => {
   let pinConfigured = false;
   try {
     if (existsSync6(USERS_FILE)) {
-      const raw = readFileSync5(USERS_FILE, "utf-8").trim();
+      const raw = readFileSync6(USERS_FILE, "utf-8").trim();
       if (raw) {
         const users = JSON.parse(raw);
         pinConfigured = Array.isArray(users) && users.length > 0;
@@ -5002,14 +5078,14 @@ app.get("/", async (c) => {
 var health_default = app;
 // server/routes/session.ts
-import { resolve as resolve6 } from "path";
+import { resolve as resolve7 } from "path";
 import { existsSync as existsSync7, writeFileSync as writeFileSync5, mkdirSync as mkdirSync4 } from "fs";
-var UUID_RE = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i;
+var UUID_RE2 = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i;
 function writeBrandingCache(accountId, agentSlug, branding) {
   try {
-    const cacheDir = resolve6(MAXY_DIR, "branding-cache", accountId);
+    const cacheDir = resolve7(MAXY_DIR, "branding-cache", accountId);
     mkdirSync4(cacheDir, { recursive: true });
-    writeFileSync5(resolve6(cacheDir, `${agentSlug}.json`), JSON.stringify(branding), "utf-8");
+    writeFileSync5(resolve7(cacheDir, `${agentSlug}.json`), JSON.stringify(branding), "utf-8");
   } catch (err) {
     console.error(`[branding] cache write failed: ${err instanceof Error ? err.message : String(err)}`);
   }
@@ -5019,7 +5095,7 @@ function parseVisitorCookie(cookieHeader) {
   const match = cookieHeader.match(/(?:^|;\s*)maxy_visitor=([^;]*)/);
   if (!match) return null;
   const value = decodeURIComponent(match[1]).trim();
-  return UUID_RE.test(value) ? value : null;
+  return UUID_RE2.test(value) ? value : null;
 }
 function withVisitorCookie(response, visitorId) {
   if (!visitorId) return response;
@@ -5079,8 +5155,8 @@ app2.post("/", async (c) => {
   }
   let agentConfig = null;
   if (account) {
-    const agentDir = resolve6(account.accountDir, "agents", agentSlug);
-    const agentConfigPath = resolve6(agentDir, "config.json");
+    const agentDir = resolve7(account.accountDir, "agents", agentSlug);
+    const agentConfigPath = resolve7(agentDir, "config.json");
     if (!existsSync7(agentDir) || !existsSync7(agentConfigPath)) {
       return c.json({ error: "Agent not found" }, 404);
     }
@@ -5334,9 +5410,9 @@ ${raw}`;
 import { randomUUID as randomUUID4 } from "crypto";
 import { mkdir as mkdir2, readFile, stat as stat2, writeFile as writeFile2 } from "fs/promises";
 import { realpathSync } from "fs";
-import { resolve as resolve7, extname, basename as basename3 } from "path";
-var PLATFORM_ROOT2 = process.env.MAXY_PLATFORM_ROOT ?? resolve7(process.cwd(), "../platform");
-var ATTACHMENTS_ROOT = resolve7(PLATFORM_ROOT2, "..", "data/uploads");
+import { resolve as resolve8, extname, basename as basename3 } from "path";
+var PLATFORM_ROOT2 = process.env.MAXY_PLATFORM_ROOT ?? resolve8(process.cwd(), "../platform");
+var ATTACHMENTS_ROOT = resolve8(PLATFORM_ROOT2, "..", "data/uploads");
 var SUPPORTED_MIME_TYPES = /* @__PURE__ */ new Set([
   "image/jpeg",
   "image/png",
@@ -5363,11 +5439,11 @@ function assertSupportedMime(mimeType) {
 }
 async function writeAttachment(scope, filename, mimeType, sizeBytes, buffer) {
   const attachmentId = randomUUID4();
-  const dir = resolve7(ATTACHMENTS_ROOT, scope, attachmentId);
+  const dir = resolve8(ATTACHMENTS_ROOT, scope, attachmentId);
   await mkdir2(dir, { recursive: true });
   const ext = extname(filename) || "";
-  const storagePath = resolve7(dir, `${attachmentId}${ext}`);
-  const metaPath = resolve7(dir, `${attachmentId}.meta.json`);
+  const storagePath = resolve8(dir, `${attachmentId}${ext}`);
+  const metaPath = resolve8(dir, `${attachmentId}.meta.json`);
   const meta = {
     attachmentId,
     scope,
@@ -6045,16 +6121,16 @@ var group_default = app4;
 // app/lib/access-gate.ts
 import neo4j from "neo4j-driver";
-import { readFileSync as readFileSync6 } from "fs";
-import { resolve as resolve8 } from "path";
+import { readFileSync as readFileSync7 } from "fs";
+import { resolve as resolve9 } from "path";
 import { randomUUID as randomUUID5, randomInt } from "crypto";
-var PLATFORM_ROOT3 = process.env.MAXY_PLATFORM_ROOT ?? resolve8(process.cwd(), "..");
+var PLATFORM_ROOT3 = process.env.MAXY_PLATFORM_ROOT ?? resolve9(process.cwd(), "..");
 var driver = null;
 function readPassword() {
   if (process.env.NEO4J_PASSWORD) return process.env.NEO4J_PASSWORD;
-  const passwordFile = resolve8(PLATFORM_ROOT3, "config/.neo4j-password");
+  const passwordFile = resolve9(PLATFORM_ROOT3, "config/.neo4j-password");
   try {
-    return readFileSync6(passwordFile, "utf-8").trim();
+    return readFileSync7(passwordFile, "utf-8").trim();
   } catch {
     throw new Error(
       `Neo4j password not found. Expected at ${passwordFile} or in NEO4J_PASSWORD env var.`
@@ -6365,19 +6441,19 @@ async function findActiveGrantByContact(contactValue, agentSlug, accountId) {
 }
 // app/lib/brevo-sms.ts
-import { readFileSync as readFileSync7, writeFileSync as writeFileSync6, mkdirSync as mkdirSync5, existsSync as existsSync8, chmodSync } from "fs";
+import { readFileSync as readFileSync8, writeFileSync as writeFileSync6, mkdirSync as mkdirSync5, existsSync as existsSync8, chmodSync } from "fs";
 import { dirname as dirname4 } from "path";
-import { resolve as resolve9 } from "path";
-var BREVO_API_KEY_FILE = resolve9(MAXY_DIR, ".brevo-api-key");
+import { resolve as resolve10 } from "path";
+var BREVO_API_KEY_FILE = resolve10(MAXY_DIR, ".brevo-api-key");
 var BREVO_API_URL = "https://api.brevo.com/v3/transactionalSMS/sms";
 var BREVO_TIMEOUT_MS = 1e4;
 var BREVO_SENDER = "Maxy";
 var platformRoot = process.env.MAXY_PLATFORM_ROOT;
 if (platformRoot) {
   try {
-    const brandPath = resolve9(platformRoot, "config", "brand.json");
+    const brandPath = resolve10(platformRoot, "config", "brand.json");
     if (existsSync8(brandPath)) {
-      const brand = JSON.parse(readFileSync7(brandPath, "utf-8"));
+      const brand = JSON.parse(readFileSync8(brandPath, "utf-8"));
       if (brand.productName) BREVO_SENDER = brand.productName;
     }
   } catch {
@@ -6385,7 +6461,7 @@ if (platformRoot) {
 }
 function readBrevoApiKey() {
   try {
-    const key = readFileSync7(BREVO_API_KEY_FILE, "utf-8").trim();
+    const key = readFileSync8(BREVO_API_KEY_FILE, "utf-8").trim();
     if (!key) {
       throw new Error(`Brevo API key file is empty: ${BREVO_API_KEY_FILE}`);
     }
@@ -6816,7 +6892,7 @@ app5.post("/send-otp", async (c) => {
 var access_default = app5;
 // server/routes/telegram.ts
-import { existsSync as existsSync9, readFileSync as readFileSync8 } from "fs";
+import { existsSync as existsSync9, readFileSync as readFileSync9 } from "fs";
 import { timingSafeEqual } from "crypto";
 // app/lib/telegram/access-control.ts
@@ -6854,7 +6930,7 @@ function getWebhookSecret(botType) {
   const filePath = botType === "admin" ? TELEGRAM_ADMIN_WEBHOOK_SECRET_FILE : TELEGRAM_WEBHOOK_SECRET_FILE;
   try {
     if (!existsSync9(filePath)) return null;
-    const secret = readFileSync8(filePath, "utf-8").trim();
+    const secret = readFileSync9(filePath, "utf-8").trim();
     return secret || null;
   } catch {
     return null;
@@ -7012,9 +7088,9 @@ app6.post("/webhook", async (c) => {
 var telegram_default = app6;
 // server/routes/whatsapp.ts
-import { join as join6, resolve as resolve10, basename as basename4 } from "path";
+import { join as join6, resolve as resolve11, basename as basename4 } from "path";
 import { readFile as readFile2, stat as stat3 } from "fs/promises";
-import { realpathSync as realpathSync2, readdirSync as readdirSync2, readFileSync as readFileSync9, existsSync as existsSync10 } from "fs";
+import { realpathSync as realpathSync2, readdirSync as readdirSync3, readFileSync as readFileSync10, existsSync as existsSync10 } from "fs";
 // app/lib/whatsapp/login.ts
 import { randomUUID as randomUUID6 } from "crypto";
@@ -7120,8 +7196,8 @@ async function startLogin(opts) {
   resetActiveLogin(accountId);
   let resolveQr = null;
   let rejectQr = null;
-  const qrPromise = new Promise((resolve25, reject) => {
-    resolveQr = resolve25;
+  const qrPromise = new Promise((resolve26, reject) => {
+    resolveQr = resolve26;
     rejectQr = reject;
   });
   const qrTimer = setTimeout(
@@ -7515,17 +7591,17 @@ app7.post("/config", async (c) => {
         return c.json(result, result.ok ? 200 : 400);
       }
       case "list-public-agents": {
-        const agentsDir = resolve10(account.accountDir, "agents");
+        const agentsDir = resolve11(account.accountDir, "agents");
         const agents = [];
         if (existsSync10(agentsDir)) {
           try {
-            const entries = readdirSync2(agentsDir, { withFileTypes: true });
+            const entries = readdirSync3(agentsDir, { withFileTypes: true });
             for (const entry of entries.sort((a, b) => a.name.localeCompare(b.name))) {
               if (!entry.isDirectory() || entry.name === "admin") continue;
-              const configPath2 = resolve10(agentsDir, entry.name, "config.json");
+              const configPath2 = resolve11(agentsDir, entry.name, "config.json");
               if (!existsSync10(configPath2)) continue;
               try {
-                const config = JSON.parse(readFileSync9(configPath2, "utf-8"));
+                const config = JSON.parse(readFileSync10(configPath2, "utf-8"));
                 agents.push({ slug: entry.name, displayName: config.displayName ?? entry.name });
               } catch {
                 console.error(`${TAG18} config action=list-public-agents error="failed to parse config.json for agent ${entry.name}" \u2014 skipping`);
@@ -7600,7 +7676,7 @@ app7.post("/send-document", async (c) => {
     if (!maxyAccountId || !PLATFORM_ROOT4) {
       return c.json({ error: "Cannot validate file path: missing account or platform context" }, 400);
     }
-    const accountDir = resolve10(PLATFORM_ROOT4, "..", "data/accounts", maxyAccountId);
+    const accountDir = resolve11(PLATFORM_ROOT4, "..", "data/accounts", maxyAccountId);
     let resolvedPath;
     try {
       resolvedPath = realpathSync2(filePath);
@@ -7737,8 +7813,8 @@ var whatsapp_default = app7;
 // server/routes/onboarding.ts
 import { spawn, execFileSync } from "child_process";
-import { openSync as openSync2, closeSync as closeSync2, writeFileSync as writeFileSync7, writeSync, existsSync as existsSync11, mkdirSync as mkdirSync6, readFileSync as readFileSync10, unlinkSync } from "fs";
-import { resolve as resolve11, dirname as dirname5 } from "path";
+import { openSync as openSync2, closeSync as closeSync2, writeFileSync as writeFileSync7, writeSync, existsSync as existsSync11, mkdirSync as mkdirSync6, readFileSync as readFileSync11, unlinkSync } from "fs";
+import { resolve as resolve12, dirname as dirname5 } from "path";
 import { createHash, randomUUID as randomUUID7 } from "crypto";
 var PLATFORM_ROOT5 = process.env.MAXY_PLATFORM_ROOT || "";
 function hashPin(pin) {
@@ -7746,7 +7822,7 @@ function hashPin(pin) {
 }
 function readUsersFile() {
   if (!existsSync11(USERS_FILE)) return null;
-  const raw = readFileSync10(USERS_FILE, "utf-8").trim();
+  const raw = readFileSync11(USERS_FILE, "utf-8").trim();
   if (!raw) return [];
   return JSON.parse(raw);
 }
@@ -7867,7 +7943,7 @@ app8.post("/set-pin", async (c) => {
   console.log(`[set-pin] wrote users.json: userId=${userId.slice(0, 8)}\u2026 hash=${hash.slice(0, 8)}\u2026`);
   if (account) {
     try {
-      const config = JSON.parse(readFileSync10(`${account.accountDir}/account.json`, "utf-8"));
+      const config = JSON.parse(readFileSync11(`${account.accountDir}/account.json`, "utf-8"));
       if (!config.admins) config.admins = [];
       if (!config.admins.some((a) => a.userId === userId)) {
         config.admins.push({ userId, role: "owner" });
@@ -7943,16 +8019,16 @@ app8.post("/skip", async (c) => {
   }
   const { accountId, accountDir } = account;
   let agentName = "Maxy";
-  const brandPath = PLATFORM_ROOT5 ? resolve11(PLATFORM_ROOT5, "config", "brand.json") : "";
+  const brandPath = PLATFORM_ROOT5 ? resolve12(PLATFORM_ROOT5, "config", "brand.json") : "";
   if (brandPath && existsSync11(brandPath)) {
     try {
-      const brand = JSON.parse(readFileSync10(brandPath, "utf-8"));
+      const brand = JSON.parse(readFileSync11(brandPath, "utf-8"));
       if (brand.productName) agentName = brand.productName;
     } catch (err) {
       console.error(`[onboarding-skip] brand.json read failed: ${err instanceof Error ? err.message : String(err)}`);
     }
   }
-  const soulPath = resolve11(accountDir, "agents", "admin", "SOUL.md");
+  const soulPath = resolve12(accountDir, "agents", "admin", "SOUL.md");
   try {
     mkdirSync6(dirname5(soulPath), { recursive: true });
     writeFileSync7(soulPath, `You are ${agentName}, an AI operations manager.
@@ -8115,9 +8191,16 @@ app9.post("/", async (c) => {
       const safe = typeof v === "string" ? truncate(v, 200) : typeof v === "number" || typeof v === "boolean" ? String(v) : JSON.stringify(v).slice(0, 200);
       return `${k}=${safe}`;
     }).join(" ");
-    console.log(
-      `[client-event] ts=${ts} ip=${ip} source=${source} version=${version || "unknown"}${extra ? " " + extra : ""}`
-    );
+    const TAGGED_PREFIX_SOURCES = /* @__PURE__ */ new Set(["admin-chat-relay-poll"]);
+    if (TAGGED_PREFIX_SOURCES.has(source)) {
+      console.log(
+        `[${source}] ts=${ts} ip=${ip} version=${version || "unknown"}${extra ? " " + extra : ""}`
+      );
+    } else {
+      console.log(
+        `[client-event] ts=${ts} ip=${ip} source=${source} version=${version || "unknown"}${extra ? " " + extra : ""}`
+      );
+    }
   } else {
     console.error(
       `[client-error] ts=${ts} ip=${ip} kind=${kind} url=${JSON.stringify(url)} version=${version || "unknown"} ua=${JSON.stringify(ua)} msg=${JSON.stringify(msg)} stack-head=${JSON.stringify(head)} file-line-col=${JSON.stringify(fileLineCol)}`
@@ -8151,7 +8234,7 @@ app9.post("/", async (c) => {
 var client_error_default = app9;
 // server/routes/admin/session.ts
-import { readFileSync as readFileSync11, writeFileSync as writeFileSync8, existsSync as existsSync13 } from "fs";
+import { readFileSync as readFileSync12, writeFileSync as writeFileSync8, existsSync as existsSync13 } from "fs";
 import { createHash as createHash2 } from "crypto";
 var deprecationLogged = /* @__PURE__ */ new Set();
 function hashPin2(pin) {
@@ -8159,7 +8242,7 @@ function hashPin2(pin) {
 }
 function readUsersFile2() {
   if (!existsSync13(USERS_FILE)) return null;
-  const raw = readFileSync11(USERS_FILE, "utf-8").trim();
+  const raw = readFileSync12(USERS_FILE, "utf-8").trim();
   if (!raw) return [];
   return JSON.parse(raw);
 }
@@ -8333,7 +8416,7 @@ app10.post("/", async (c) => {
 var session_default2 = app10;
 // server/routes/admin/chat.ts
-import { resolve as resolve12 } from "path";
+import { resolve as resolve13 } from "path";
 import { appendFileSync as appendFileSync4 } from "fs";
 // app/lib/script-stream-tailer.ts
@@ -8788,7 +8871,7 @@ app11.post("/", requireAdminSession, async (c) => {
   function resolveTeeStreamLogPath() {
     const liveConvId = getConversationIdForSession(session_key);
     const key = liveConvId ?? preflushStreamLogKey(session_key);
-    return resolve12(account.accountDir, "logs", `claude-agent-stream-${key}.log`);
+    return resolve13(account.accountDir, "logs", `claude-agent-stream-${key}.log`);
   }
   try {
     appendFileSync4(resolveTeeStreamLogPath(), `[${(/* @__PURE__ */ new Date()).toISOString()}] [chat-route-version=task606-tee-path-resolve] sessionKey=${session_key.slice(0, 12)}\u2026
@@ -8890,7 +8973,7 @@ app11.post("/", requireAdminSession, async (c) => {
       try {
         registerAdminSSE(sseEntry);
         if (sseConvId) {
-          const streamLogPath = resolve12(account.accountDir, "logs", `claude-agent-stream-${sseConvId}.log`);
+          const streamLogPath = resolve13(account.accountDir, "logs", `claude-agent-stream-${sseConvId}.log`);
           tailer = startScriptStreamTailer({
             path: streamLogPath,
             onEvent: (event) => {
@@ -9019,8 +9102,8 @@ app12.post("/", requireAdminSession, async (c) => {
 var compact_default = app12;
 // server/routes/admin/logs.ts
-import { existsSync as existsSync15, readdirSync as readdirSync3, readFileSync as readFileSync12, statSync as statSync7 } from "fs";
-import { resolve as resolve13, basename as basename5 } from "path";
+import { existsSync as existsSync15, readdirSync as readdirSync4, readFileSync as readFileSync13, statSync as statSync7 } from "fs";
+import { resolve as resolve14, basename as basename5 } from "path";
 // app/lib/logs-read-resolve.ts
 import { existsSync as existsSync14 } from "fs";
@@ -9064,7 +9147,7 @@ app13.get("/", async (c) => {
   const sessionKeyParam = c.req.query("sessionKey");
   const download = c.req.query("download") === "1";
   const account = resolveAccount();
-  const accountLogDir2 = account ? resolve13(account.accountDir, "logs") : null;
+  const accountLogDir2 = account ? resolve14(account.accountDir, "logs") : null;
   const logDirs = [];
   if (accountLogDir2) logDirs.push(accountLogDir2);
   logDirs.push(LOG_DIR);
@@ -9072,10 +9155,10 @@ app13.get("/", async (c) => {
     const safe = basename5(fileParam);
     const searched = [];
     for (const dir of logDirs) {
-      const filePath = resolve13(dir, safe);
+      const filePath = resolve14(dir, safe);
       searched.push(filePath);
       try {
-        const buffer = readFileSync12(filePath);
+        const buffer = readFileSync13(filePath);
         const onDiskBytes = statSync7(filePath).size;
         const headers = {
           "Content-Type": "text/plain; charset=utf-8",
@@ -9150,7 +9233,7 @@ app13.get("/", async (c) => {
       try {
         const filename = basename5(hit.path);
         if (stalePreflushCount > 0 && !download) {
-          const content = readFileSync12(hit.path, "utf-8");
+          const content = readFileSync13(hit.path, "utf-8");
           return c.json({
             log: content,
             filename,
@@ -9158,7 +9241,7 @@ app13.get("/", async (c) => {
             warnings: stalePreflushPaths.map((path2) => ({ kind: "stale-preflush", path: path2 }))
           });
         }
-        const buffer = readFileSync12(hit.path);
+        const buffer = readFileSync13(hit.path);
         const onDiskBytes = statSync7(hit.path).size;
         const headers = {
           "Content-Type": "text/plain; charset=utf-8",
@@ -9195,16 +9278,16 @@ app13.get("/", async (c) => {
     if (!existsSync15(dir)) continue;
     let files;
     try {
-      files = readdirSync3(dir).filter((f) => f.endsWith(".log"));
+      files = readdirSync4(dir).filter((f) => f.endsWith(".log"));
     } catch (err) {
       const reason = err instanceof Error ? err.message : String(err);
       console.warn(`[admin/logs] readdir-fail dir=${dir} reason=${reason}`);
       continue;
     }
-    files.filter((f) => !seen.has(f)).map((f) => ({ name: f, mtime: statSync7(resolve13(dir, f)).mtimeMs })).sort((a, b) => b.mtime - a.mtime).forEach(({ name }) => {
+    files.filter((f) => !seen.has(f)).map((f) => ({ name: f, mtime: statSync7(resolve14(dir, f)).mtimeMs })).sort((a, b) => b.mtime - a.mtime).forEach(({ name }) => {
       seen.add(name);
       try {
-        const content = readFileSync12(resolve13(dir, name));
+        const content = readFileSync13(resolve14(dir, name));
         const tail = content.length > TAIL_BYTES ? content.subarray(content.length - TAIL_BYTES).toString("utf-8") : content.toString("utf-8");
         logs[name] = tail.trim() || "(empty)";
       } catch (err) {
@@ -9244,7 +9327,7 @@ var claude_info_default = app14;
 // server/routes/admin/attachment.ts
 import { readFile as readFile3, readdir } from "fs/promises";
 import { existsSync as existsSync16 } from "fs";
-import { resolve as resolve14 } from "path";
+import { resolve as resolve15 } from "path";
 var app15 = new Hono();
 app15.get("/:attachmentId", requireAdminSession, async (c) => {
   const attachmentId = c.req.param("attachmentId");
@@ -9256,11 +9339,11 @@ app15.get("/:attachmentId", requireAdminSession, async (c) => {
   if (!/^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/.test(attachmentId)) {
     return new Response("Not found", { status: 404 });
   }
-  const dir = resolve14(ATTACHMENTS_ROOT, accountId, attachmentId);
+  const dir = resolve15(ATTACHMENTS_ROOT, accountId, attachmentId);
   if (!existsSync16(dir)) {
     return new Response("Not found", { status: 404 });
   }
-  const metaPath = resolve14(dir, `${attachmentId}.meta.json`);
+  const metaPath = resolve15(dir, `${attachmentId}.meta.json`);
   if (!existsSync16(metaPath)) {
     return new Response("Not found", { status: 404 });
   }
@@ -9275,7 +9358,7 @@ app15.get("/:attachmentId", requireAdminSession, async (c) => {
   if (!dataFile) {
     return new Response("Not found", { status: 404 });
   }
-  const filePath = resolve14(dir, dataFile);
+  const filePath = resolve15(dir, dataFile);
   const buffer = await readFile3(filePath);
   return new Response(new Uint8Array(buffer), {
     headers: {
@@ -9288,24 +9371,24 @@ app15.get("/:attachmentId", requireAdminSession, async (c) => {
 var attachment_default = app15;
 // server/routes/admin/agents.ts
-import { resolve as resolve15 } from "path";
-import { readdirSync as readdirSync4, readFileSync as readFileSync13, existsSync as existsSync17, rmSync } from "fs";
+import { resolve as resolve16 } from "path";
+import { readdirSync as readdirSync5, readFileSync as readFileSync14, existsSync as existsSync17, rmSync } from "fs";
 var app16 = new Hono();
 app16.get("/", (c) => {
   const account = resolveAccount();
   if (!account) return c.json({ agents: [] });
-  const agentsDir = resolve15(account.accountDir, "agents");
+  const agentsDir = resolve16(account.accountDir, "agents");
   if (!existsSync17(agentsDir)) return c.json({ agents: [] });
   const agents = [];
   try {
-    const entries = readdirSync4(agentsDir, { withFileTypes: true });
+    const entries = readdirSync5(agentsDir, { withFileTypes: true });
     for (const entry of entries.sort((a, b) => a.name.localeCompare(b.name))) {
       if (!entry.isDirectory()) continue;
       if (entry.name === "admin") continue;
-      const configPath2 = resolve15(agentsDir, entry.name, "config.json");
+      const configPath2 = resolve16(agentsDir, entry.name, "config.json");
       if (!existsSync17(configPath2)) continue;
       try {
-        const config = JSON.parse(readFileSync13(configPath2, "utf-8"));
+        const config = JSON.parse(readFileSync14(configPath2, "utf-8"));
         agents.push({
           slug: entry.name,
           displayName: config.displayName ?? entry.name,
@@ -9331,7 +9414,7 @@ app16.delete("/:slug", async (c) => {
   if (slug.includes("/") || slug.includes("..") || slug.includes("\\")) {
     return c.json({ error: "Invalid agent slug" }, 400);
   }
-  const agentDir = resolve15(account.accountDir, "agents", slug);
+  const agentDir = resolve16(account.accountDir, "agents", slug);
   if (!existsSync17(agentDir)) {
     return c.json({ error: "Agent not found" }, 404);
   }
@@ -9361,7 +9444,7 @@ app16.post("/:slug/project", async (c) => {
   if (slug.includes("/") || slug.includes("..") || slug.includes("\\")) {
     return c.json({ error: "Invalid agent slug" }, 400);
   }
-  const agentDir = resolve15(account.accountDir, "agents", slug);
+  const agentDir = resolve16(account.accountDir, "agents", slug);
   if (!existsSync17(agentDir)) {
     return c.json({ error: "Agent not found on disk" }, 404);
   }
@@ -9918,8 +10001,8 @@ var events_default = app20;
 // server/routes/admin/cloudflare.ts
 import { homedir } from "os";
-import { resolve as resolve17 } from "path";
-import { readFileSync as readFileSync16 } from "fs";
+import { resolve as resolve18 } from "path";
+import { readFileSync as readFileSync17 } from "fs";
 // app/lib/dns-label.ts
 var VALID_LABEL = /^[a-z0-9]([a-z0-9-]{0,61}[a-z0-9])?$/;
@@ -9935,14 +10018,14 @@ function isValidDomain(value) {
 }
 // app/lib/alias-domains.ts
-import { existsSync as existsSync19, mkdirSync as mkdirSync8, readFileSync as readFileSync14, writeFileSync as writeFileSync9 } from "fs";
+import { existsSync as existsSync19, mkdirSync as mkdirSync8, readFileSync as readFileSync15, writeFileSync as writeFileSync9 } from "fs";
 import { dirname as dirname7 } from "path";
-import { resolve as resolve16 } from "path";
-var ALIAS_DOMAINS_PATH = resolve16(MAXY_DIR, "alias-domains.json");
+import { resolve as resolve17 } from "path";
+var ALIAS_DOMAINS_PATH = resolve17(MAXY_DIR, "alias-domains.json");
 function readExisting() {
   if (!existsSync19(ALIAS_DOMAINS_PATH)) return /* @__PURE__ */ new Set();
   try {
-    const parsed = JSON.parse(readFileSync14(ALIAS_DOMAINS_PATH, "utf-8"));
+    const parsed = JSON.parse(readFileSync15(ALIAS_DOMAINS_PATH, "utf-8"));
     if (!Array.isArray(parsed)) return /* @__PURE__ */ new Set();
     return new Set(parsed.filter((h) => typeof h === "string"));
   } catch {
@@ -9961,8 +10044,8 @@ function addAliasDomain(hostname2) {
 import {
   existsSync as existsSync20,
   mkdirSync as mkdirSync9,
-  readdirSync as readdirSync5,
-  readFileSync as readFileSync15,
+  readdirSync as readdirSync6,
+  readFileSync as readFileSync16,
   unlinkSync as unlinkSync2,
   writeFileSync as writeFileSync10
 } from "fs";
@@ -10008,7 +10091,7 @@ function consumeActionCompletionRelays(accountDir) {
   if (!existsSync20(dir)) return [];
   let entries;
   try {
-    entries = readdirSync5(dir);
+    entries = readdirSync6(dir);
   } catch (e) {
     console.error(
       `${TAG19} phase=readdir-failed dir=${dir} error=${e instanceof Error ? e.message : String(e)}`
@@ -10021,7 +10104,7 @@ function consumeActionCompletionRelays(accountDir) {
     const filePath = join9(dir, name);
     let raw;
     try {
-      raw = readFileSync15(filePath, "utf-8");
+      raw = readFileSync16(filePath, "utf-8");
     } catch (e) {
       console.error(
         `${TAG19} phase=read-failed file=${name} error=${e instanceof Error ? e.message : String(e)}`
@@ -10078,10 +10161,10 @@ import { existsSync as existsSyncFs, readFileSync as readFileSyncFs } from "fs";
 var SETUP_TIMEOUT_MS = 10 * 60 * 1e3;
 var DOMAINS_TIMEOUT_MS = 40 * 1e3;
 function loadBrandInfo() {
-  const platformRoot2 = process.env.MAXY_PLATFORM_ROOT ?? resolve17(process.cwd(), "..");
-  const brandPath = resolve17(platformRoot2, "config", "brand.json");
+  const platformRoot2 = process.env.MAXY_PLATFORM_ROOT ?? resolve18(process.cwd(), "..");
+  const brandPath = resolve18(platformRoot2, "config", "brand.json");
   try {
-    const parsed = JSON.parse(readFileSync16(brandPath, "utf-8"));
+    const parsed = JSON.parse(readFileSync17(brandPath, "utf-8"));
     const hostname2 = typeof parsed.hostname === "string" && parsed.hostname ? parsed.hostname : "maxy";
     const configDir2 = typeof parsed.configDir === "string" && parsed.configDir ? parsed.configDir : ".maxy";
     return { hostname: hostname2, configDir: configDir2 };
@@ -10184,7 +10267,7 @@ app21.get("/domains", requireAdminSession, async (c) => {
   streamLogPath = streamLogPathFor(accountId, correlationId).streamLogPath;
   log(`phase=stream-log-resolved path=${streamLogPath}`);
   const brand = loadBrandInfo();
-  const scriptPath = resolve17(homedir(), "list-cf-domains.sh");
+  const scriptPath = resolve18(homedir(), "list-cf-domains.sh");
   const result = await runFormSpawn({
     scriptPath,
     args: [brand.hostname],
@@ -10449,17 +10532,17 @@ var cloudflare_default = app21;
 import { createReadStream as createReadStream3 } from "fs";
 import { readdir as readdir2, readFile as readFile4, stat as stat4, mkdir as mkdir3, writeFile as writeFile4, unlink as unlink2 } from "fs/promises";
 import { realpathSync as realpathSync4 } from "fs";
-import { basename as basename6, dirname as dirname8, join as join10, resolve as resolve19, sep as sep2 } from "path";
+import { basename as basename6, dirname as dirname8, join as join10, resolve as resolve20, sep as sep2 } from "path";
 import { Readable as Readable2 } from "stream";
 // app/lib/data-path.ts
 import { realpathSync as realpathSync3 } from "fs";
-import { resolve as resolve18, normalize, sep, relative } from "path";
-var PLATFORM_ROOT6 = process.env.MAXY_PLATFORM_ROOT ?? resolve18(process.cwd(), "../platform");
-var DATA_ROOT = resolve18(PLATFORM_ROOT6, "..", "data");
+import { resolve as resolve19, normalize, sep, relative } from "path";
+var PLATFORM_ROOT6 = process.env.MAXY_PLATFORM_ROOT ?? resolve19(process.cwd(), "../platform");
+var DATA_ROOT = resolve19(PLATFORM_ROOT6, "..", "data");
 function resolveDataPath(raw) {
   const cleaned = normalize("/" + (raw ?? "").replace(/\\/g, "/")).replace(/^\/+/, "");
-  const absolute = resolve18(DATA_ROOT, cleaned);
+  const absolute = resolve19(DATA_ROOT, cleaned);
   let dataRootReal;
   try {
     dataRootReal = realpathSync3(DATA_ROOT);
@@ -10724,7 +10807,7 @@ async function restoreNode(params) {
 }
 // app/lib/file-delete-cascade.ts
-var UUID_RE2 = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i;
+var UUID_RE3 = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i;
 function parseAttachmentPath(relPath2) {
   const segments = relPath2.split("/").filter(Boolean);
   if (segments.length !== 4) return null;
@@ -10732,7 +10815,7 @@ function parseAttachmentPath(relPath2) {
   const accountId = segments[1];
   const attachmentId = segments[2];
   const filename = segments[3];
-  if (!UUID_RE2.test(accountId) || !UUID_RE2.test(attachmentId)) return null;
+  if (!UUID_RE3.test(accountId) || !UUID_RE3.test(attachmentId)) return null;
   const dot = filename.lastIndexOf(".");
   if (dot === -1) return null;
   const stem = filename.slice(0, dot);
@@ -10804,7 +10887,7 @@ async function cascadeDeleteDocument(params) {
 }
 // server/routes/admin/files.ts
-var UUID_RE3 = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i;
+var UUID_RE4 = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i;
 async function readMeta(absDir, baseName) {
   try {
     const raw = await readFile4(join10(absDir, `${baseName}.meta.json`), "utf8");
@@ -10818,7 +10901,7 @@ async function readMeta(absDir, baseName) {
 }
 async function readAccountNames() {
   const map = /* @__PURE__ */ new Map();
-  const accountsDir = resolve19(DATA_ROOT, "accounts");
+  const accountsDir = resolve20(DATA_ROOT, "accounts");
   let names;
   try {
     names = await readdir2(accountsDir);
@@ -10826,8 +10909,8 @@ async function readAccountNames() {
     return map;
   }
   for (const name of names) {
-    if (!UUID_RE3.test(name)) continue;
-    const configPath2 = resolve19(accountsDir, name, "account.json");
+    if (!UUID_RE4.test(name)) continue;
+    const configPath2 = resolve20(accountsDir, name, "account.json");
     try {
       const raw = await readFile4(configPath2, "utf8");
       const parsed = JSON.parse(raw);
@@ -10844,7 +10927,7 @@ async function readAccountNames() {
   return map;
 }
 async function enrich(absolute, entry, accountNames) {
-  if (entry.kind === "directory" && UUID_RE3.test(entry.name)) {
+  if (entry.kind === "directory" && UUID_RE4.test(entry.name)) {
     const meta = await readMeta(join10(absolute, entry.name), entry.name);
     if (meta?.filename) {
       entry.displayName = meta.filename;
@@ -10860,7 +10943,7 @@ async function enrich(absolute, entry, accountNames) {
   if (entry.kind === "file") {
     const dot = entry.name.lastIndexOf(".");
     const base = dot === -1 ? entry.name : entry.name.slice(0, dot);
-    if (UUID_RE3.test(base)) {
+    if (UUID_RE4.test(base)) {
       const meta = await readMeta(absolute, base);
       if (meta?.filename) {
         entry.displayName = meta.filename;
@@ -10872,7 +10955,7 @@ async function enrich(absolute, entry, accountNames) {
 function buildDisplayPath(relPath2, accountNames) {
   if (relPath2 === "." || relPath2 === "") return [];
   return relPath2.split("/").filter(Boolean).map((seg) => {
-    const dn = UUID_RE3.test(seg) ? accountNames.get(seg) : void 0;
+    const dn = UUID_RE4.test(seg) ? accountNames.get(seg) : void 0;
     return dn ? { name: seg, displayName: dn } : { name: seg };
   });
 }
@@ -10900,7 +10983,7 @@ app22.get("/", requireAdminSession, async (c) => {
     const names = await readdir2(absolute);
     const entries = [];
     for (const name of names) {
-      if (UUID_RE3.test(name.replace(/\.meta\.json$/, "")) && name.endsWith(".meta.json")) {
+      if (UUID_RE4.test(name.replace(/\.meta\.json$/, "")) && name.endsWith(".meta.json")) {
         continue;
       }
       try {
@@ -11018,8 +11101,8 @@ app22.post("/upload", requireAdminSession, async (c) => {
   }
   const safeName = basename6(file.name).replace(/[\0/\\]/g, "_");
   const finalName = `${Date.now()}-${safeName}`;
-  const destDir = resolve19(DATA_ROOT, "uploads", accountId);
-  const destPath = resolve19(destDir, finalName);
+  const destDir = resolve20(DATA_ROOT, "uploads", accountId);
+  const destPath = resolve20(destDir, finalName);
   try {
     await mkdir3(destDir, { recursive: true });
     const dataRootReal = realpathSync4(DATA_ROOT);
@@ -11077,7 +11160,7 @@ app22.delete("/", requireAdminSession, async (c) => {
     }
     const dot = base.lastIndexOf(".");
     const stem = dot === -1 ? base : base.slice(0, dot);
-    const sidecarPath = UUID_RE3.test(stem) && base !== `${stem}.meta.json` ? join10(dirname8(absolute), `${stem}.meta.json`) : null;
+    const sidecarPath = UUID_RE4.test(stem) && base !== `${stem}.meta.json` ? join10(dirname8(absolute), `${stem}.meta.json`) : null;
     await unlink2(absolute);
     if (sidecarPath) {
       try {
@@ -12534,7 +12617,7 @@ var adherence_default = app30;
 // server/routes/admin/sidebar-artefacts.ts
 import neo4j3 from "neo4j-driver";
 import { readFile as readFile5, readdir as readdir3, stat as stat5 } from "fs/promises";
-import { resolve as resolve20, relative as relative2, isAbsolute } from "path";
+import { resolve as resolve21, relative as relative2, isAbsolute } from "path";
 import { existsSync as existsSync21 } from "fs";
 var LIMIT = 50;
 var TEXT_MIME_PREFIXES = ["text/", "application/json", "application/markdown"];
@@ -12551,7 +12634,7 @@ app31.get("/", requireAdminSession, async (c) => {
   if (docs === null) {
     return c.json({ error: "Failed to load artefacts" }, 500);
   }
-  const accountDir = resolve20(ACCOUNTS_DIR, accountId);
+  const accountDir = resolve21(ACCOUNTS_DIR, accountId);
   const agents = await fetchAgentTemplateRows(accountDir);
   const artefacts = [...docs, ...agents].sort(
     (a, b) => (b.updatedAt ?? "").localeCompare(a.updatedAt ?? "")
@@ -12614,8 +12697,8 @@ async function readArtefactContent(accountId, attachmentId, mimeType, displayNam
     logSkip(displayName, "non-text-mime", mimeType);
     return { content: "", skipReason: "non-text-mime" };
   }
-  const accountDir = resolve20(ATTACHMENTS_ROOT, accountId);
-  const dir = resolve20(accountDir, attachmentId);
+  const accountDir = resolve21(ATTACHMENTS_ROOT, accountId);
+  const dir = resolve21(accountDir, attachmentId);
   try {
     validateFilePathInAccount(dir, accountDir);
   } catch {
@@ -12629,7 +12712,7 @@ async function readArtefactContent(accountId, attachmentId, mimeType, displayNam
       logSkip(displayName, "missing-on-disk", mimeType);
       return { content: "", skipReason: "missing-on-disk" };
     }
-    return { content: await readFile5(resolve20(dir, dataFile), "utf-8"), skipReason: null };
+    return { content: await readFile5(resolve21(dir, dataFile), "utf-8"), skipReason: null };
   } catch (err) {
     const message = err instanceof Error ? err.message : String(err);
     console.error(`[admin/sidebar-artefacts] read-failed attachmentId=${attachmentId.slice(0, 8)} error="${message}"`);
@@ -12645,8 +12728,8 @@ function logSkip(name, reason, mimeType) {
 async function fetchAgentTemplateRows(accountDir) {
   const rows = [];
   for (const filename of ADMIN_AGENT_FILES) {
-    const overridePath = resolve20(accountDir, "agents", "admin", filename);
-    const bundledPath = resolve20(PLATFORM_ROOT, "templates", "agents", "admin", filename);
+    const overridePath = resolve21(accountDir, "agents", "admin", filename);
+    const bundledPath = resolve21(PLATFORM_ROOT, "templates", "agents", "admin", filename);
     const labelStem = filename.replace(/\.md$/, "");
     const row = await readAgentTemplateRow({
       id: `agent-template:admin:${filename}`,
@@ -12660,12 +12743,12 @@ async function fetchAgentTemplateRows(accountDir) {
     });
     if (row) rows.push(row);
   }
-  const overrideDir = resolve20(accountDir, "specialists", "agents");
-  const bundledDir = resolve20(PLATFORM_ROOT, "templates", "specialists", "agents");
+  const overrideDir = resolve21(accountDir, "specialists", "agents");
+  const bundledDir = resolve21(PLATFORM_ROOT, "templates", "specialists", "agents");
   const specialistNames = await unionSpecialistFilenames(overrideDir, bundledDir);
   for (const filename of specialistNames) {
-    const overridePath = resolve20(overrideDir, filename);
-    const bundledPath = resolve20(bundledDir, filename);
+    const overridePath = resolve21(overrideDir, filename);
+    const bundledPath = resolve21(bundledDir, filename);
     const row = await readAgentTemplateRow({
       id: `agent-template:specialist:${filename}`,
       displayName: filename.replace(/\.md$/, ""),
@@ -12750,10 +12833,10 @@ var sidebar_artefacts_default = app31;
 // server/routes/admin/sidebar-artefact-save.ts
 import { mkdir as mkdir4, readdir as readdir4, stat as stat6, writeFile as writeFile5 } from "fs/promises";
-import { resolve as resolve21 } from "path";
+import { resolve as resolve22 } from "path";
 import { existsSync as existsSync22 } from "fs";
 var ADMIN_AGENT_FILES2 = /* @__PURE__ */ new Set(["IDENTITY.md", "SOUL.md", "KNOWLEDGE.md"]);
-var UUID_RE4 = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/;
+var UUID_RE5 = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/;
 var app32 = new Hono();
 app32.post("/", requireAdminSession, async (c) => {
   const sessionKey = c.var.sessionKey;
@@ -12763,7 +12846,7 @@ app32.post("/", requireAdminSession, async (c) => {
   if (!body || typeof body.id !== "string" || typeof body.content !== "string") {
     return c.json({ error: "id and content required" }, 400);
   }
-  const accountDir = resolve21(ACCOUNTS_DIR, accountId);
+  const accountDir = resolve22(ACCOUNTS_DIR, accountId);
   const resolved = await resolveSavePath(body.id, accountId, accountDir);
   if (resolved.kind === "reject") {
     console.error(
@@ -12804,22 +12887,22 @@ async function resolveSavePath(id, accountId, accountDir) {
     if (role !== "admin" || !ADMIN_AGENT_FILES2.has(filename)) {
       return { kind: "reject", status: 400, reason: "invalid-id" };
     }
-    const parent = resolve21(accountDir, "agents", "admin");
+    const parent = resolve22(accountDir, "agents", "admin");
     await mkdir4(parent, { recursive: true });
     try {
       validateFilePathInAccount(parent, accountDir);
     } catch {
       return { kind: "reject", status: 400, reason: "containment-rejected" };
     }
-    return { kind: "admin-template", path: resolve21(parent, filename) };
+    return { kind: "admin-template", path: resolve22(parent, filename) };
   }
-  if (UUID_RE4.test(id)) {
-    const dir = resolve21(ATTACHMENTS_ROOT, accountId, id);
+  if (UUID_RE5.test(id)) {
+    const dir = resolve22(ATTACHMENTS_ROOT, accountId, id);
     if (!existsSync22(dir)) {
       return { kind: "reject", status: 400, reason: "not-found" };
     }
     try {
-      validateFilePathInAccount(dir, resolve21(ATTACHMENTS_ROOT, accountId));
+      validateFilePathInAccount(dir, resolve22(ATTACHMENTS_ROOT, accountId));
     } catch {
       return { kind: "reject", status: 400, reason: "containment-rejected" };
     }
@@ -12828,7 +12911,7 @@ async function resolveSavePath(id, accountId, accountDir) {
     if (!dataFile) {
       return { kind: "reject", status: 400, reason: "not-found" };
     }
-    return { kind: "knowledge-doc", path: resolve21(dir, dataFile) };
+    return { kind: "knowledge-doc", path: resolve22(dir, dataFile) };
   }
   return { kind: "reject", status: 400, reason: "invalid-id" };
 }
@@ -12840,26 +12923,26 @@ var sidebar_artefact_save_default = app32;
 // server/routes/admin/sidebar-artefact-content.ts
 import { readFile as readFile6, readdir as readdir5 } from "fs/promises";
 import { existsSync as existsSync23 } from "fs";
-import { resolve as resolve22 } from "path";
-var UUID_RE5 = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/;
+import { resolve as resolve23 } from "path";
+var UUID_RE6 = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/;
 var app33 = new Hono();
 app33.get("/", requireAdminSession, async (c) => {
   const sessionKey = c.var.sessionKey;
   const accountId = getAccountIdForSession(sessionKey);
   if (!accountId) return new Response("Unauthorized", { status: 401 });
   const id = c.req.query("id") ?? "";
-  if (!UUID_RE5.test(id)) {
+  if (!UUID_RE6.test(id)) {
     console.error(`[admin/sidebar-artefact-content] not-found id=${id.slice(0, 8)}`);
     return new Response("Not found", { status: 404 });
   }
-  const dir = resolve22(ATTACHMENTS_ROOT, accountId, id);
+  const dir = resolve23(ATTACHMENTS_ROOT, accountId, id);
   if (!existsSync23(dir)) {
     console.error(`[admin/sidebar-artefact-content] not-found id=${id.slice(0, 8)}`);
     return new Response("Not found", { status: 404 });
   }
   let meta;
   try {
-    meta = JSON.parse(await readFile6(resolve22(dir, `${id}.meta.json`), "utf-8"));
+    meta = JSON.parse(await readFile6(resolve23(dir, `${id}.meta.json`), "utf-8"));
   } catch {
     console.error(`[admin/sidebar-artefact-content] not-found id=${id.slice(0, 8)}`);
     return new Response("Not found", { status: 404 });
@@ -12871,7 +12954,7 @@ app33.get("/", requireAdminSession, async (c) => {
     return new Response("Not found", { status: 404 });
   }
   const start = Date.now();
-  const buffer = await readFile6(resolve22(dir, dataFile));
+  const buffer = await readFile6(resolve23(dir, dataFile));
   const ms = Date.now() - start;
   console.log(
     `[admin/sidebar-artefact-content] account=${accountId} id=${id.slice(0, 8)} mime=${meta.mimeType} bytes=${buffer.length} ms=${ms}`
@@ -12915,8 +12998,8 @@ app34.route("/sidebar-artefact-content", sidebar_artefact_content_default);
 var admin_default = app34;
 // server/routes/sites.ts
-import { existsSync as existsSync24, readFileSync as readFileSync17, realpathSync as realpathSync5, statSync as statSync8 } from "fs";
-import { resolve as resolve23 } from "path";
+import { existsSync as existsSync24, readFileSync as readFileSync18, realpathSync as realpathSync5, statSync as statSync8 } from "fs";
+import { resolve as resolve24 } from "path";
 var SAFE_SEG_RE = /^[a-z0-9_][a-z0-9_.-]{0,99}$/i;
 var MIME = {
   ".html": "text/html; charset=utf-8",
@@ -12974,8 +13057,8 @@ app35.get("/:rel{.*}", (c) => {
     }
     segments.push(seg);
   }
-  const rootDir = resolve23(account.accountDir, "sites");
-  let filePath = segments.length === 0 ? rootDir : resolve23(rootDir, ...segments);
+  const rootDir = resolve24(account.accountDir, "sites");
+  let filePath = segments.length === 0 ? rootDir : resolve24(rootDir, ...segments);
   if (filePath !== rootDir && !filePath.startsWith(rootDir + "/")) {
     console.error(`[sites] path-traversal-rejected path=${reqPath} reason=escape status=403`);
     return c.text("Forbidden", 403);
@@ -12987,9 +13070,9 @@ app35.get("/:rel{.*}", (c) => {
     stat7 = null;
   }
   if (stat7?.isDirectory()) {
-    filePath = resolve23(filePath, "index.html");
+    filePath = resolve24(filePath, "index.html");
   } else if (stat7 === null && isDirRequest) {
-    filePath = resolve23(filePath, "index.html");
+    filePath = resolve24(filePath, "index.html");
   }
   if (!filePath.startsWith(rootDir + "/")) {
     console.error(`[sites] path-traversal-rejected path=${reqPath} reason=escape status=403`);
@@ -13014,7 +13097,7 @@ app35.get("/:rel{.*}", (c) => {
   }
   let body;
   try {
-    body = readFileSync17(realPath);
+    body = readFileSync18(realPath);
   } catch (err) {
     const code = err?.code;
     if (code === "EISDIR") {
@@ -13153,7 +13236,7 @@ if (BRAND_JSON_PATH && !existsSync25(BRAND_JSON_PATH)) {
 }
 if (BRAND_JSON_PATH && existsSync25(BRAND_JSON_PATH)) {
   try {
-    const parsed = JSON.parse(readFileSync18(BRAND_JSON_PATH, "utf-8"));
+    const parsed = JSON.parse(readFileSync19(BRAND_JSON_PATH, "utf-8"));
     BRAND = { ...BRAND, ...parsed };
   } catch (err) {
     console.error(`[brand] Failed to parse brand.json: ${err.message}`);
@@ -13176,7 +13259,7 @@ var ALIAS_DOMAINS_PATH2 = join11(homedir2(), BRAND.configDir, "alias-domains.jso
 function loadAliasDomains() {
   try {
     if (!existsSync25(ALIAS_DOMAINS_PATH2)) return null;
-    const parsed = JSON.parse(readFileSync18(ALIAS_DOMAINS_PATH2, "utf-8"));
+    const parsed = JSON.parse(readFileSync19(ALIAS_DOMAINS_PATH2, "utf-8"));
     if (!Array.isArray(parsed)) {
       console.error("[alias-domains] malformed alias-domains.json \u2014 expected array");
       return null;
@@ -13516,8 +13599,8 @@ app36.get("/agent-assets/:slug/:filename", (c) => {
     console.error(`[agent-assets] no-account slug=${slug} file=${filename}`);
     return c.text("Not found", 404);
   }
-  const filePath = resolve24(account.accountDir, "agents", slug, "assets", filename);
-  const expectedDir = resolve24(account.accountDir, "agents", slug, "assets");
+  const filePath = resolve25(account.accountDir, "agents", slug, "assets", filename);
+  const expectedDir = resolve25(account.accountDir, "agents", slug, "assets");
   if (!filePath.startsWith(expectedDir + "/")) {
     console.error(`[agent-assets] path-traversal-rejected slug=${slug} file=${filename}`);
     return c.text("Forbidden", 403);
@@ -13529,7 +13612,7 @@ app36.get("/agent-assets/:slug/:filename", (c) => {
   const ext = "." + filename.split(".").pop()?.toLowerCase();
   const contentType = IMAGE_MIME[ext] || "application/octet-stream";
   console.log(`[agent-assets] serve slug=${slug} file=${filename} status=200`);
-  const body = readFileSync18(filePath);
+  const body = readFileSync19(filePath);
   return c.body(body, 200, {
     "Content-Type": contentType,
     "Cache-Control": "public, max-age=3600"
@@ -13546,8 +13629,8 @@ app36.get("/generated/:filename", (c) => {
     console.error(`[generated] serve file=${filename} status=404`);
     return c.text("Not found", 404);
   }
-  const filePath = resolve24(account.accountDir, "generated", filename);
-  const expectedDir = resolve24(account.accountDir, "generated");
+  const filePath = resolve25(account.accountDir, "generated", filename);
+  const expectedDir = resolve25(account.accountDir, "generated");
   if (!filePath.startsWith(expectedDir + "/")) {
     console.error(`[generated] serve file=${filename} status=403`);
     return c.text("Forbidden", 403);
@@ -13559,7 +13642,7 @@ app36.get("/generated/:filename", (c) => {
   const ext = "." + filename.split(".").pop()?.toLowerCase();
   const contentType = IMAGE_MIME[ext] || "application/octet-stream";
   console.log(`[generated] serve file=${filename} status=200`);
-  const body = readFileSync18(filePath);
+  const body = readFileSync19(filePath);
   return c.body(body, 200, {
     "Content-Type": contentType,
     "Cache-Control": "public, max-age=86400"
@@ -13571,7 +13654,7 @@ var brandLogoPath = "/brand/maxy-monochrome.png";
 var brandIconPath = "/brand/maxy-monochrome.png";
 if (BRAND_JSON_PATH && existsSync25(BRAND_JSON_PATH)) {
   try {
-    const fullBrand = JSON.parse(readFileSync18(BRAND_JSON_PATH, "utf-8"));
+    const fullBrand = JSON.parse(readFileSync19(BRAND_JSON_PATH, "utf-8"));
     if (fullBrand.assets?.logo) brandLogoPath = `/brand/${fullBrand.assets.logo}`;
     brandIconPath = fullBrand.assets?.icon ? `/brand/${fullBrand.assets.icon}` : brandLogoPath;
   } catch {
@@ -13590,7 +13673,7 @@ function readInstalledVersion() {
     if (!PLATFORM_ROOT7) return "unknown";
     const versionFile = join11(PLATFORM_ROOT7, "config", `.${BRAND.hostname}-version`);
     if (!existsSync25(versionFile)) return "unknown";
-    const content = readFileSync18(versionFile, "utf-8").trim();
+    const content = readFileSync19(versionFile, "utf-8").trim();
     return content || "unknown";
   } catch {
     return "unknown";
@@ -13631,7 +13714,7 @@ var clientErrorReporterScript = `<script>
 function cachedHtml(file) {
   let html = htmlCache.get(file);
   if (!html) {
-    html = readFileSync18(resolve24(process.cwd(), "public", file), "utf-8");
+    html = readFileSync19(resolve25(process.cwd(), "public", file), "utf-8");
     const productNameEsc = escapeHtml(BRAND.productName);
     html = html.replace(/<title>([^<]*)<\/title>/, (_match, inner) => `<title>${escapeHtml(inner).replace(/Maxy/g, productNameEsc)}</title>`);
     html = html.replace('href="/favicon.ico"', `href="${escapeHtml(brandFaviconPath)}"`);
@@ -13651,12 +13734,12 @@ function loadBrandingCache(agentSlug) {
   try {
     const accountJsonPath = join11(configDir2, "account.json");
     if (!existsSync25(accountJsonPath)) return null;
-    const account = JSON.parse(readFileSync18(accountJsonPath, "utf-8"));
+    const account = JSON.parse(readFileSync19(accountJsonPath, "utf-8"));
     const accountId = account.accountId;
     if (!accountId) return null;
     const cachePath = join11(configDir2, "branding-cache", accountId, `${agentSlug}.json`);
     if (!existsSync25(cachePath)) return null;
-    return JSON.parse(readFileSync18(cachePath, "utf-8"));
+    return JSON.parse(readFileSync19(cachePath, "utf-8"));
   } catch {
     return null;
   }
@@ -13666,7 +13749,7 @@ function resolveDefaultSlug() {
     const configDir2 = join11(homedir2(), BRAND.configDir);
     const accountJsonPath = join11(configDir2, "account.json");
     if (!existsSync25(accountJsonPath)) return null;
-    const account = JSON.parse(readFileSync18(accountJsonPath, "utf-8"));
+    const account = JSON.parse(readFileSync19(accountJsonPath, "utf-8"));
     return account.defaultAgent || null;
   } catch {
     return null;
@@ -13675,11 +13758,11 @@ function resolveDefaultSlug() {
 function brandedPublicHtml(agentSlug) {
   const baseHtml = cachedHtml("public.html");
   if (!agentSlug) return baseHtml;
-  const cached = brandedHtmlCache.get(agentSlug);
+  const cached2 = brandedHtmlCache.get(agentSlug);
   const branding = loadBrandingCache(agentSlug);
   if (!branding) return baseHtml;
   const brandHash = JSON.stringify(branding).length;
-  if (cached && cached.mtime === brandHash) return cached.html;
+  if (cached2 && cached2.mtime === brandHash) return cached2.html;
   const title = escapeHtml(branding.name);
   const description = branding.tagline ? escapeHtml(branding.tagline) : "";
   const themeColor = branding.primaryColor || "";
@@ -13739,7 +13822,7 @@ app36.use("/vnc-popout.html", logViewerFetch);
 app36.get("/vnc-popout.html", (c) => {
   let html = htmlCache.get("vnc-popout.html");
   if (!html) {
-    html = readFileSync18(resolve24(process.cwd(), "public", "vnc-popout.html"), "utf-8");
+    html = readFileSync19(resolve25(process.cwd(), "public", "vnc-popout.html"), "utf-8");
     const name = escapeHtml(BRAND.productName);
     html = html.replace("<title>Browser \u2014 Maxy</title>", `<title>${name}</title>`);
     html = html.replace("</head>", `  ${brandScript}
@@ -13830,7 +13913,7 @@ try {
   try {
     let userId = "";
     if (existsSync25(USERS_FILE)) {
-      const users = JSON.parse(readFileSync18(USERS_FILE, "utf-8").trim() || "[]");
+      const users = JSON.parse(readFileSync19(USERS_FILE, "utf-8").trim() || "[]");
       userId = users[0]?.userId ?? "";
     }
     await backfillNullUserIdConversations(userId);
@@ -13939,7 +14022,7 @@ if (bootAccountConfig?.whatsapp) {
 }
 init({
   configDir: configDirForWhatsApp,
-  platformRoot: resolve24(process.env.MAXY_PLATFORM_ROOT ?? join11(__dirname, "..")),
+  platformRoot: resolve25(process.env.MAXY_PLATFORM_ROOT ?? join11(__dirname, "..")),
   accountConfig: bootAccountConfig,
   onMessage: async (msg) => {
     try {