@swarmclawai/swarmclaw 1.9.26 → 1.9.28

package/README.md

@@ -151,14 +151,15 @@ clawhub install swarmclaw
 
 [Browse on ClawHub](https://clawhub.ai/skills/swarmclaw)
 
-## v1.9.26 Highlights
+## v1.9.28 Highlights
 
-Output hygiene follow-up: empty successful LLM turns now stay silent instead of being rewritten as user-visible errors.
+Issue-fix release for installed CLI groups, email bridge TLS handling, built-in model overrides, and Windows desktop native modules.
 
-- **Silent empty completions.** Blank successful runs no longer become `Error: Run completed...` assistant messages.
-- **Connector-safe final text.** Slack and other connectors no longer receive synthetic error text for intentional silence or quiet no-op turns.
-- **Real errors preserved.** Explicit provider failures and streamed provider errors still surface as terminal errors.
-- **Regression coverage.** Chat-execution tests now lock the distinction between empty success and real failure.
+- **Installed CLI groups.** Global npm installs route legacy API-backed group commands through the bundled TS runtime when installed under `node_modules`, avoiding Node 22.6+/25 type-stripping failures.
+- **Email bridge TLS resilience.** The email connector logs IMAP socket errors without crashing the daemon and supports `tlsRejectUnauthorized=false` for local self-signed IMAP/SMTP servers.
+- **Provider model override persistence.** Built-in provider live model saves now reload array-valued overrides instead of falling back to catalog defaults.
+- **Windows desktop native modules.** Desktop packaging syncs rebuilt Electron-native modules into traced `.next/node_modules` aliases so packaged Windows installs start against the correct ABI.
+- **Regression coverage.** CLI, email, provider route, and Electron after-pack tests cover the reported failure modes.
 
 ## Hosted Deploys
 
@@ -410,6 +411,25 @@ Operational docs: https://swarmclaw.ai/docs/observability
 
 ## Releases
 
+### v1.9.28 Highlights
+
+Issue-fix release for installed CLI groups, email bridge TLS handling, built-in model overrides, and Windows desktop native modules.
+
+- **Installed CLI groups.** Global npm installs route legacy API-backed group commands through the bundled TS runtime when installed under `node_modules`, avoiding Node 22.6+/25 type-stripping failures.
+- **Email bridge TLS resilience.** The email connector logs IMAP socket errors without crashing the daemon and supports `tlsRejectUnauthorized=false` for local self-signed IMAP/SMTP servers.
+- **Provider model override persistence.** Built-in provider live model saves now reload array-valued overrides instead of falling back to catalog defaults.
+- **Windows desktop native modules.** Desktop packaging syncs rebuilt Electron-native modules into traced `.next/node_modules` aliases so packaged Windows installs start against the correct ABI.
+- **Regression coverage.** CLI, email, provider route, and Electron after-pack tests cover the reported failure modes.
+
+### v1.9.27 Highlights
+
+Desktop compatibility and provider-save repair for Intel Mac users and OpenRouter setup.
+
+- **Intel macOS native modules.** The desktop packaging hook now rebuilds Electron-loaded native modules with the target architecture and blocks a release if an x64 macOS bundle contains an arm64-only required addon.
+- **OpenRouter save repair.** Provider updates now tolerate UI metadata fields like `id`, `type`, `createdAt`, and `updatedAt` without persisting them, while still rejecting unrelated unknown fields.
+- **Downloads clarity.** The downloads page no longer guesses Apple Silicon when a browser hides the Mac architecture, so Intel users can choose the x64 DMG explicitly.
+- **Regression coverage.** Provider route and Electron after-pack tests cover the reported failure modes.
+
 ### v1.9.26 Highlights
 
 Output hygiene follow-up: empty successful LLM turns now stay silent instead of being rewritten as user-visible errors.

package/bin/swarmclaw.js

@@ -55,9 +55,19 @@ function hasTsxRuntime() {
   }
 }
 
+function pathIsInsideNodeModules(filePath) {
+  return path.resolve(filePath).split(path.sep).includes('node_modules')
+}
+
 function buildLegacyTsCliArgs(cliPath, argv, options = {}) {
+  const ext = path.extname(cliPath).toLowerCase()
+  if (ext === '.js' || ext === '.cjs' || ext === '.mjs') {
+    return [cliPath, ...argv]
+  }
+
+  const insideNodeModules = options.insideNodeModules ?? pathIsInsideNodeModules(cliPath)
   const stripTypesSupported = options.supportsStripTypes ?? supportsStripTypes()
-  if (stripTypesSupported) {
+  if (stripTypesSupported && !insideNodeModules) {
     return ['--no-warnings', '--experimental-strip-types', cliPath, ...argv]
   }
 
@@ -69,6 +79,10 @@ function buildLegacyTsCliArgs(cliPath, argv, options = {}) {
   return null
 }
 
+function resolveLegacyTsCliPath() {
+  return path.join(__dirname, '..', 'src', 'cli', 'index.ts')
+}
+
 function normalizeLegacyTsCliArgv(argv) {
   const normalized = []
 
@@ -98,7 +112,7 @@ function normalizeLegacyTsCliArgv(argv) {
 }
 
 function runLegacyTsCli(argv) {
-  const cliPath = path.join(__dirname, '..', 'src', 'cli', 'index.ts')
+  const cliPath = resolveLegacyTsCliPath()
   const args = buildLegacyTsCliArgs(cliPath, normalizeLegacyTsCliArgv(argv))
   const env = normalizeLegacyCliEnv(process.env)
   if (!args) {
@@ -358,6 +372,8 @@ module.exports = {
   buildLegacyTsCliArgs,
   hasTsxRuntime,
   normalizeLegacyTsCliArgv,
+  pathIsInsideNodeModules,
+  resolveLegacyTsCliPath,
   TS_CLI_ACTIONS,
   normalizeLegacyCliEnv,
   printPackageVersion,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@swarmclawai/swarmclaw",
-  "version": "1.9.26",
+  "version": "1.9.28",
   "description": "Build and run autonomous AI agents with OpenClaw, Hermes, multiple model providers, orchestration, delegation, memory, skills, schedules, and chat connectors.",
   "main": "electron-dist/main.js",
   "license": "MIT",

package/src/app/api/providers/[id]/models/route.test.ts

@@ -58,3 +58,39 @@ test('provider models route updates custom provider configs without creating mod
     hasOverride: false,
   })
 })
+
+test('provider model overrides preserve built-in provider array rows', () => {
+  const output = runWithTempDataDir<{
+    overrides: Record<string, string[]>
+    providerModels: string[]
+    getPayload: { models: string[]; hasOverride: boolean }
+  }>(`
+    const storageMod = await import('./src/lib/server/storage')
+    const providerMod = await import('./src/lib/providers')
+    const routeMod = await import('./src/app/api/providers/[id]/models/route')
+    const storage = storageMod.default || storageMod
+    const providers = providerMod.default || providerMod
+    const route = routeMod.default || routeMod
+
+    storage.saveModelOverrides({ lmstudio: ['qwen3.5-27b'] })
+
+    const getResponse = await route.GET(
+      new Request('http://local/api/providers/lmstudio/models'),
+      { params: Promise.resolve({ id: 'lmstudio' }) },
+    )
+    const provider = providers.getProviderList().find((entry) => entry.id === 'lmstudio')
+
+    console.log(JSON.stringify({
+      overrides: storage.loadModelOverrides(),
+      providerModels: provider?.models || [],
+      getPayload: await getResponse.json(),
+    }))
+  `, { prefix: 'swarmclaw-provider-model-override-test-' })
+
+  assert.deepEqual(output.overrides, { lmstudio: ['qwen3.5-27b'] })
+  assert.deepEqual(output.providerModels, ['qwen3.5-27b'])
+  assert.deepEqual(output.getPayload, {
+    models: ['qwen3.5-27b'],
+    hasOverride: true,
+  })
+})

package/src/app/api/providers/[id]/route.test.ts

@@ -48,7 +48,52 @@ test('provider route upserts builtin override records for enablement changes', (
   assert.equal(output.responsePayload.isEnabled, false)
 })
 
-test('provider route rejects unknown fields per ProviderUpdateSchema.strict()', () => {
+test('provider route ignores frontend metadata fields without persisting them', () => {
+  const output = runWithTempDataDir<{
+    status: number
+    providerConfig: {
+      id: string
+      type: string
+      name: string
+      isEnabled: boolean
+      updatedAt: number
+    }
+  }>(`
+    const storageMod = await import('./src/lib/server/storage')
+    const routeMod = await import('./src/app/api/providers/[id]/route')
+    const storage = storageMod.default || storageMod
+    const route = routeMod.default || routeMod
+
+    const response = await route.PUT(
+      new Request('http://local/api/providers/openai', {
+        method: 'PUT',
+        headers: { 'content-type': 'application/json' },
+        body: JSON.stringify({
+          id: 'wrong-id',
+          type: 'custom',
+          createdAt: '123',
+          updatedAt: '456',
+          isEnabled: false,
+        }),
+      }),
+      { params: Promise.resolve({ id: 'openai' }) },
+    )
+
+    console.log(JSON.stringify({
+      status: response.status,
+      providerConfig: storage.loadProviderConfigs().openai,
+    }))
+  `, { prefix: 'swarmclaw-provider-route-strict-test-' })
+
+  assert.equal(output.status, 200)
+  assert.equal(output.providerConfig.id, 'openai')
+  assert.equal(output.providerConfig.type, 'builtin')
+  assert.equal(output.providerConfig.name, 'OpenAI')
+  assert.equal(output.providerConfig.isEnabled, false)
+  assert.equal(typeof output.providerConfig.updatedAt, 'number')
+})
+
+test('provider route still rejects unknown non-metadata fields', () => {
   const output = runWithTempDataDir<{ status: number }>(`
     const routeMod = await import('./src/app/api/providers/[id]/route')
     const route = routeMod.default || routeMod
@@ -57,13 +102,13 @@ test('provider route rejects unknown fields per ProviderUpdateSchema.strict()',
       new Request('http://local/api/providers/openai', {
         method: 'PUT',
         headers: { 'content-type': 'application/json' },
-        body: JSON.stringify({ type: 'builtin', isEnabled: true }),
+        body: JSON.stringify({ unexpectedField: true, isEnabled: true }),
       }),
       { params: Promise.resolve({ id: 'openai' }) },
     )
 
     console.log(JSON.stringify({ status: response.status }))
-  `, { prefix: 'swarmclaw-provider-route-strict-test-' })
+  `, { prefix: 'swarmclaw-provider-route-unknown-field-test-' })
 
   assert.equal(output.status, 400)
 })

package/src/app/api/providers/[id]/route.ts

@@ -8,6 +8,7 @@ import { ProviderUpdateSchema, formatZodError } from '@/lib/validation/schemas'
 
 // eslint-disable-next-line @typescript-eslint/no-explicit-any
 const ops: CollectionOps<any> = { load: loadProviderConfigs, save: saveProviderConfigs, topic: 'providers' }
+const PROVIDER_UPDATE_WRITABLE_KEYS = new Set(['name', 'baseUrl', 'models', 'credentialId', 'isEnabled', 'requiresApiKey', 'notes'])
 
 export async function GET(_req: Request, { params }: { params: Promise<{ id: string }> }) {
   const { id } = await params
@@ -27,7 +28,7 @@ export async function PUT(req: Request, { params }: { params: Promise<{ id: stri
   const rawKeys = new Set(Object.keys(raw ?? {}))
   const body: Record<string, unknown> = {}
   for (const [key, value] of Object.entries(parsed.data)) {
-    if (rawKeys.has(key)) body[key] = value
+    if (rawKeys.has(key) && PROVIDER_UPDATE_WRITABLE_KEYS.has(key)) body[key] = value
   }
 
   if (!ops.load()[id]) {

package/src/cli/binary.test.js

@@ -7,7 +7,7 @@ const fs = require('node:fs')
 const os = require('node:os')
 const path = require('node:path')
 const { spawnSync } = require('node:child_process')
-const { buildLegacyTsCliArgs } = require('../../bin/swarmclaw.js')
+const { buildLegacyTsCliArgs, resolveLegacyTsCliPath } = require('../../bin/swarmclaw.js')
 
 const CLI_BIN = path.join(__dirname, '..', '..', 'bin', 'swarmclaw.js')
 const PACKAGE_JSON = require('../../package.json')
@@ -208,3 +208,14 @@ test('legacy TS launcher falls back to tsx import when strip-types is unavailabl
 
   assert.deepEqual(args, ['--no-warnings', '--import', 'tsx', cliPath, 'runs', 'list'])
 })
+
+test('legacy TS launcher uses tsx instead of strip-types inside node_modules', () => {
+  const cliPath = path.join(os.tmpdir(), 'node_modules', '@swarmclawai', 'swarmclaw', 'src', 'cli', 'index.ts')
+  const args = buildLegacyTsCliArgs(cliPath, ['agents', 'list'], {
+    supportsStripTypes: true,
+    hasTsxRuntime: true,
+  })
+
+  assert.deepEqual(args, ['--no-warnings', '--import', 'tsx', cliPath, 'agents', 'list'])
+  assert.equal(resolveLegacyTsCliPath(), path.join(APP_ROOT, 'src', 'cli', 'index.ts'))
+})

package/src/lib/server/connectors/email.test.ts

@@ -1,9 +1,15 @@
 import assert from 'node:assert/strict'
+import { EventEmitter } from 'node:events'
 import fs from 'node:fs'
 import os from 'node:os'
 import path from 'node:path'
 import { describe, it } from 'node:test'
-import { buildAttachments } from './email'
+import {
+  attachImapErrorHandler,
+  buildAttachments,
+  buildEmailTlsOptions,
+  parseTlsRejectUnauthorized,
+} from './email'
 import { connectorSupportsBinaryMedia } from './response-media'
 
 describe('connectorSupportsBinaryMedia — email', () => {
@@ -63,3 +69,30 @@ describe('email buildAttachments', () => {
     }
   })
 })
+
+describe('email TLS configuration', () => {
+  it('defaults to certificate verification', () => {
+    assert.equal(parseTlsRejectUnauthorized(undefined), true)
+    assert.equal(parseTlsRejectUnauthorized(''), true)
+    assert.deepEqual(buildEmailTlsOptions({ tlsRejectUnauthorized: true }), { rejectUnauthorized: true })
+  })
+
+  it('allows explicit self-signed certificate opt-out', () => {
+    assert.equal(parseTlsRejectUnauthorized(false), false)
+    assert.equal(parseTlsRejectUnauthorized('false'), false)
+    assert.equal(parseTlsRejectUnauthorized('0'), false)
+    assert.deepEqual(buildEmailTlsOptions({ tlsRejectUnauthorized: false }), { rejectUnauthorized: false })
+  })
+
+  it('handles IMAP socket errors without leaving the emitter unhandled', () => {
+    const imap = new EventEmitter()
+    let disconnected = false
+
+    attachImapErrorHandler(imap, () => {
+      disconnected = true
+    })
+
+    assert.doesNotThrow(() => imap.emit('error', new Error('DEPTH_ZERO_SELF_SIGNED_CERT')))
+    assert.equal(disconnected, true)
+  })
+})

package/src/lib/server/connectors/email.ts

@@ -21,6 +21,7 @@ interface EmailConfig {
   folder?: string
   pollIntervalSec?: number
   subjectPrefix?: string
+  tlsRejectUnauthorized: boolean
 }
 
 interface MailAttachment {
@@ -29,6 +30,10 @@ interface MailAttachment {
   contentType?: string
 }
 
+interface ImapErrorEmitter {
+  on(event: 'error', listener: (err: unknown) => void): unknown
+}
+
 export function buildAttachments(options?: OutboundSendOptions): MailAttachment[] {
   const source = options?.mediaPath
   if (!source) return []
@@ -43,6 +48,28 @@ export function buildAttachments(options?: OutboundSendOptions): MailAttachment[
   }]
 }
 
+export function parseTlsRejectUnauthorized(value: unknown): boolean {
+  if (typeof value === 'boolean') return value
+  if (typeof value !== 'string') return true
+
+  const normalized = value.trim().toLowerCase()
+  if (!normalized) return true
+  if (['false', '0', 'no', 'off', 'disabled'].includes(normalized)) return false
+  if (['true', '1', 'yes', 'on', 'enabled'].includes(normalized)) return true
+  return true
+}
+
+export function buildEmailTlsOptions(config: Pick<EmailConfig, 'tlsRejectUnauthorized'>): { rejectUnauthorized: boolean } {
+  return { rejectUnauthorized: config.tlsRejectUnauthorized !== false }
+}
+
+export function attachImapErrorHandler(imap: ImapErrorEmitter, onDisconnected: () => void): void {
+  imap.on('error', (err: unknown) => {
+    onDisconnected()
+    log.error(TAG, `IMAP socket error: ${errorMessage(err)}`)
+  })
+}
+
 function getConfig(connector: Connector): EmailConfig {
   const c = connector.config as Record<string, unknown>
   return {
@@ -55,6 +82,7 @@ function getConfig(connector: Connector): EmailConfig {
     folder: String(c.folder ?? 'INBOX'),
     pollIntervalSec: Number(c.pollIntervalSec ?? 60),
     subjectPrefix: c.subjectPrefix ? String(c.subjectPrefix) : undefined,
+    tlsRejectUnauthorized: parseTlsRejectUnauthorized(c.tlsRejectUnauthorized),
   }
 }
 
@@ -68,24 +96,31 @@ const email: PlatformConnector = {
 
     const folder = config.folder || 'INBOX'
     const pollMs = (config.pollIntervalSec || 60) * 1000
+    const tls = buildEmailTlsOptions(config)
+    let connected = false
 
     // IMAP client for inbound
     const imap = new ImapFlow({
       host: config.imapHost,
       port: config.imapPort || 993,
       secure: (config.imapPort || 993) === 993,
+      tls,
       auth: {
         user: config.user,
         pass: config.password,
       },
       logger: false,
     })
+    attachImapErrorHandler(imap, () => {
+      connected = false
+    })
 
     // SMTP transport for outbound
     const smtp: Transporter = createTransport({
       host: config.smtpHost,
       port: config.smtpPort || 587,
       secure: (config.smtpPort || 587) === 465,
+      tls,
       auth: {
         user: config.user,
         pass: config.password,
@@ -94,7 +129,6 @@ const email: PlatformConnector = {
 
     // Track last seen UID to only process new messages
     let highwaterUid = 0
-    let connected = false
     let pollTimer: ReturnType<typeof setInterval> | null = null
 
     // Map to track original sender per channelId (email address) for replies

package/src/lib/server/storage.ts

@@ -187,6 +187,10 @@ const COLLECTIONS = [
 
 export type StorageCollection = (typeof COLLECTIONS)[number]
 
+const ARRAY_VALUE_COLLECTIONS = new Set<StorageCollection>([
+  'model_overrides',
+])
+
 for (const table of COLLECTIONS) {
   db.exec(`CREATE TABLE IF NOT EXISTS ${table} (id TEXT PRIMARY KEY, data TEXT NOT NULL)`)
 }
@@ -246,18 +250,20 @@ function getCollectionRawCache(table: string): LRUMap<string, string> {
 }
 
 function loadCollectionWithNormalizationState(table: string): {
-  result: Record<string, StoredObject>
+  result: Record<string, StoredObject | unknown[]>
   normalizedCount: number
 } {
   const endPerf = perf.start('storage', 'loadCollection', { table })
   const raw = getCollectionRawCache(table)
-  const result: Record<string, StoredObject> = {}
+  const result: Record<string, StoredObject | unknown[]> = {}
+  const allowsArrayValues = ARRAY_VALUE_COLLECTIONS.has(table as StorageCollection)
   let normalizedCount = 0
   for (const [id, data] of raw.entries()) {
     try {
       const { value: normalized, changed } = normalize(table, JSON.parse(data))
-      if (!normalized || typeof normalized !== 'object' || Array.isArray(normalized)) continue
-      result[id] = normalized as StoredObject
+      if (!normalized || typeof normalized !== 'object') continue
+      if (Array.isArray(normalized) && !allowsArrayValues) continue
+      result[id] = normalized as StoredObject | unknown[]
       if (changed) normalizedCount += 1
     } catch (err) {
       const fingerprint = `${table}:${id}`
@@ -277,8 +283,8 @@ function loadCollectionWithNormalizationState(table: string): {
 
 export function loadCollection(table: string): Record<string, StoredObject> {
   const { result, normalizedCount } = loadCollectionWithNormalizationState(table)
-  if (normalizedCount > 0) saveCollection(table, result)
-  return result
+  if (normalizedCount > 0) saveCollection(table, result as Record<string, unknown>)
+  return result as Record<string, StoredObject>
 }
 
 function saveCollection(table: string, data: Record<string, unknown>) {
@@ -1001,7 +1007,7 @@ export function patchAgent(
 const schedulesStore = createCollectionStore('schedules', { ttlMs: 10_000 })
 export function loadSchedules(): Record<string, Schedule> {
   const { result, normalizedCount } = loadCollectionWithNormalizationState('schedules')
-  if (normalizedCount > 0) saveCollection('schedules', result)
+  if (normalizedCount > 0) saveCollection('schedules', result as Record<string, unknown>)
   return result as unknown as Record<string, Schedule>
 }
 export const saveSchedules = schedulesStore.save

package/src/lib/validation/schemas.ts

@@ -320,6 +320,10 @@ export const ProviderUpdateSchema = z.object({
   isEnabled: z.boolean().optional(),
   requiresApiKey: z.boolean().optional(),
   notes: z.string().max(4000).nullable().optional(),
+  id: z.unknown().optional(),
+  type: z.unknown().optional(),
+  createdAt: z.unknown().optional(),
+  updatedAt: z.unknown().optional(),
 }).strict()
 
 /** PUT /documents/:id — note: creating a new revision is a side-effect of

package/electron-dist/main.js

@@ -1,218 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const electron_1 = require("electron");
-const node_fs_1 = __importDefault(require("node:fs"));
-const node_path_1 = __importDefault(require("node:path"));
-const paths_1 = require("./paths");
-const server_lifecycle_1 = require("./server-lifecycle");
-const menu_1 = require("./menu");
-const DEV_URL_DEFAULT = 'http://127.0.0.1:3456';
-const LOG_TAIL_BYTES = 1500;
-let mainWindow = null;
-let serverHandle = null;
-let serverLogFile = null;
-let isQuitting = false;
-const gotLock = electron_1.app.requestSingleInstanceLock();
-if (!gotLock) {
-    electron_1.app.quit();
-}
-else {
-    electron_1.app.on('second-instance', () => {
-        if (mainWindow) {
-            if (mainWindow.isMinimized())
-                mainWindow.restore();
-            mainWindow.focus();
-        }
-    });
-    electron_1.app.on('ready', () => void onReady());
-    electron_1.app.on('window-all-closed', () => {
-        if (process.platform !== 'darwin')
-            electron_1.app.quit();
-    });
-    electron_1.app.on('activate', () => {
-        if (mainWindow !== null)
-            return;
-        if (serverHandle) {
-            createMainWindow(serverHandle.url);
-        }
-        else if (!electron_1.app.isPackaged) {
-            createMainWindow(process.env.SWARMCLAW_DEV_URL || DEV_URL_DEFAULT);
-        }
-    });
-    electron_1.app.on('before-quit', () => {
-        isQuitting = true;
-    });
-    electron_1.app.on('will-quit', async (event) => {
-        if (!serverHandle)
-            return;
-        event.preventDefault();
-        try {
-            await serverHandle.stop();
-        }
-        finally {
-            serverHandle = null;
-            electron_1.app.exit(0);
-        }
-    });
-}
-async function onReady() {
-    const paths = (0, paths_1.resolveRuntimePaths)();
-    (0, menu_1.buildAppMenu)(paths, () => mainWindow);
-    const iconPath = resolveIconPath();
-    if (process.platform === 'darwin' && iconPath && electron_1.app.dock) {
-        const img = electron_1.nativeImage.createFromPath(iconPath);
-        if (!img.isEmpty())
-            electron_1.app.dock.setIcon(img);
-    }
-    if (!electron_1.app.isPackaged) {
-        const devUrl = process.env.SWARMCLAW_DEV_URL || DEV_URL_DEFAULT;
-        console.log(`[swarmclaw] dev mode, loading ${devUrl}`);
-        createMainWindow(devUrl);
-        return;
-    }
-    serverLogFile = node_path_1.default.join(electron_1.app.getPath('userData'), 'logs', 'server.log');
-    node_fs_1.default.mkdirSync(node_path_1.default.dirname(serverLogFile), { recursive: true });
-    try {
-        serverHandle = await (0, server_lifecycle_1.startEmbeddedServer)({
-            paths,
-            logFile: serverLogFile,
-            onStdout: (c) => process.stdout.write(`[swarmclaw] ${c}`),
-            onStderr: (c) => process.stderr.write(`[swarmclaw] ${c}`),
-            onExit: (code, signal) => {
-                if (!isQuitting) {
-                    console.error(`[swarmclaw] server exited unexpectedly (code=${code}, signal=${signal ?? 'none'})`);
-                    void showServerCrashDialog(code, signal);
-                }
-            },
-        });
-    }
-    catch (err) {
-        await showStartupFailureDialog(err, paths);
-        electron_1.app.exit(1);
-        return;
-    }
-    createMainWindow(serverHandle.url);
-    void Promise.resolve().then(() => __importStar(require('./updater'))).then((m) => m.initAutoUpdater());
-}
-function resolveIconPath() {
-    const candidate = electron_1.app.isPackaged
-        ? node_path_1.default.join(process.resourcesPath, 'icon.png')
-        : node_path_1.default.join(__dirname, '..', 'resources', 'icon.png');
-    return node_fs_1.default.existsSync(candidate) ? candidate : undefined;
-}
-function createMainWindow(startUrl) {
-    const iconPath = resolveIconPath();
-    mainWindow = new electron_1.BrowserWindow({
-        width: 1440,
-        height: 900,
-        minWidth: 1024,
-        minHeight: 640,
-        backgroundColor: '#0b0b0f',
-        show: true,
-        ...(iconPath ? { icon: iconPath } : {}),
-        webPreferences: {
-            contextIsolation: true,
-            nodeIntegration: false,
-            sandbox: false,
-        },
-    });
-    const wc = mainWindow.webContents;
-    if (!electron_1.app.isPackaged)
-        wc.openDevTools({ mode: 'detach' });
-    wc.on('did-start-loading', () => console.log('[swarmclaw] did-start-loading'));
-    wc.on('did-finish-load', () => console.log('[swarmclaw] did-finish-load'));
-    wc.on('did-fail-load', (_e, code, desc, url) => console.error(`[swarmclaw] did-fail-load code=${code} desc=${desc} url=${url}`));
-    wc.on('render-process-gone', (_e, details) => console.error(`[swarmclaw] render-process-gone reason=${details.reason}`));
-    wc.on('unresponsive', () => console.error('[swarmclaw] webContents unresponsive'));
-    mainWindow.on('closed', () => {
-        mainWindow = null;
-    });
-    mainWindow.webContents.setWindowOpenHandler(({ url }) => {
-        if (url.startsWith(startUrl))
-            return { action: 'allow' };
-        void electron_1.shell.openExternal(url);
-        return { action: 'deny' };
-    });
-    void mainWindow.loadURL(startUrl).catch((err) => {
-        console.error('[swarmclaw] loadURL rejected:', err);
-    });
-}
-async function showServerCrashDialog(code, signal) {
-    const buttons = serverLogFile ? ['Open Logs Folder', 'Quit'] : ['Quit'];
-    const quitButtonId = buttons.length - 1;
-    const detail = buildLogDetail(`code=${code ?? 'null'} signal=${signal ?? 'none'}`);
-    const res = await electron_1.dialog.showMessageBox({
-        type: 'error',
-        buttons,
-        defaultId: quitButtonId,
-        cancelId: quitButtonId,
-        title: 'SwarmClaw stopped',
-        message: 'The SwarmClaw server exited unexpectedly.',
-        detail,
-    });
-    if (serverLogFile && res.response === 0)
-        electron_1.shell.showItemInFolder(serverLogFile);
-    electron_1.app.exit(1);
-}
-async function showStartupFailureDialog(err, paths) {
-    const message = err instanceof Error ? err.message : String(err);
-    const base = `${message}\n\nStandalone entry: ${paths.standaloneEntry}\nData dir: ${paths.dataDir}`;
-    const detail = buildLogDetail(base);
-    const buttons = serverLogFile ? ['Open Logs Folder', 'Quit'] : ['Quit'];
-    const quitButtonId = buttons.length - 1;
-    const res = await electron_1.dialog.showMessageBox({
-        type: 'error',
-        buttons,
-        defaultId: quitButtonId,
-        cancelId: quitButtonId,
-        title: 'SwarmClaw failed to start',
-        message: 'The embedded server did not start.',
-        detail,
-    });
-    if (serverLogFile && res.response === 0)
-        electron_1.shell.showItemInFolder(serverLogFile);
-}
-function buildLogDetail(base) {
-    if (!serverLogFile)
-        return base;
-    const tail = (0, server_lifecycle_1.tailLogFile)(serverLogFile, LOG_TAIL_BYTES).trim();
-    if (!tail)
-        return `${base}\n\nLog file: ${serverLogFile}\n(no output captured yet)`;
-    return `${base}\n\nLog tail (${serverLogFile}):\n${tail}`;
-}