npm - @tt-a1i/hive - Versions diffs - 1.4.3 → 1.5.0 - Mend

@tt-a1i/hive 1.4.3 → 1.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (180) hide show

package/CHANGELOG.md +44 -0
package/README.en.md +5 -4
package/README.md +9 -1
package/assets/qq-group.jpg +0 -0
package/dist/bin/team.cmd +1 -0
package/dist/src/cli/hive-update.d.ts +57 -0
package/dist/src/cli/hive-update.js +92 -15
package/dist/src/cli/hive.d.ts +57 -0
package/dist/src/cli/hive.js +113 -20
package/dist/src/cli/team.d.ts +1 -0
package/dist/src/cli/team.js +215 -7
package/dist/src/server/agent-command-resolver.d.ts +10 -1
package/dist/src/server/agent-command-resolver.js +32 -4
package/dist/src/server/agent-launch-resolver.js +9 -3
package/dist/src/server/agent-manager-support.d.ts +28 -0
package/dist/src/server/agent-manager-support.js +138 -10
package/dist/src/server/agent-run-bootstrap.d.ts +17 -1
package/dist/src/server/agent-run-bootstrap.js +30 -2
package/dist/src/server/agent-run-starter.d.ts +7 -1
package/dist/src/server/agent-run-starter.js +9 -2
package/dist/src/server/agent-run-store.d.ts +1 -1
package/dist/src/server/agent-runtime-close.d.ts +1 -0
package/dist/src/server/agent-runtime-close.js +25 -1
package/dist/src/server/agent-runtime-contract.d.ts +2 -1
package/dist/src/server/agent-runtime.d.ts +1 -1
package/dist/src/server/agent-runtime.js +8 -2
package/dist/src/server/agent-startup-instructions.d.ts +8 -1
package/dist/src/server/agent-startup-instructions.js +15 -9
package/dist/src/server/agent-stdin-dispatcher.d.ts +12 -5
package/dist/src/server/agent-stdin-dispatcher.js +129 -40
package/dist/src/server/app.d.ts +1 -0
package/dist/src/server/app.js +12 -2
package/dist/src/server/cron-util.d.ts +7 -0
package/dist/src/server/cron-util.js +19 -0
package/dist/src/server/dispatch-ledger-store.d.ts +22 -0
package/dist/src/server/dispatch-ledger-store.js +51 -3
package/dist/src/server/env-sync-message.js +9 -9
package/dist/src/server/fs-browse.d.ts +14 -1
package/dist/src/server/fs-browse.js +48 -5
package/dist/src/server/fs-pick-folder.js +58 -11
package/dist/src/server/fs-sandbox.js +36 -7
package/dist/src/server/hive-team-guidance.d.ts +11 -6
package/dist/src/server/hive-team-guidance.js +252 -70
package/dist/src/server/live-run-registry.d.ts +1 -0
package/dist/src/server/live-run-registry.js +1 -1
package/dist/src/server/open-target-commands.js +29 -4
package/dist/src/server/orchestrator-autostart.d.ts +12 -0
package/dist/src/server/orchestrator-autostart.js +15 -13
package/dist/src/server/path-canonicalization.d.ts +3 -0
package/dist/src/server/path-canonicalization.js +29 -0
package/dist/src/server/platform-path.d.ts +3 -0
package/dist/src/server/platform-path.js +13 -0
package/dist/src/server/post-start-input-writer.d.ts +1 -1
package/dist/src/server/post-start-input-writer.js +116 -16
package/dist/src/server/preset-launch-support.d.ts +1 -1
package/dist/src/server/preset-launch-support.js +33 -2
package/dist/src/server/recovery-summary.d.ts +6 -1
package/dist/src/server/recovery-summary.js +17 -17
package/dist/src/server/restart-policy-support.d.ts +6 -1
package/dist/src/server/restart-policy-support.js +9 -1
package/dist/src/server/restart-policy.d.ts +2 -2
package/dist/src/server/restart-policy.js +3 -1
package/dist/src/server/role-template-store.d.ts +1 -0
package/dist/src/server/role-template-store.js +11 -1
package/dist/src/server/route-types.d.ts +43 -0
package/dist/src/server/routes-runtime.js +2 -1
package/dist/src/server/routes-settings.js +76 -0
package/dist/src/server/routes-team.js +221 -2
package/dist/src/server/routes-workflow-schedules.d.ts +2 -0
package/dist/src/server/routes-workflow-schedules.js +58 -0
package/dist/src/server/routes-workflows.d.ts +2 -0
package/dist/src/server/routes-workflows.js +83 -0
package/dist/src/server/routes.js +4 -0
package/dist/src/server/runtime-restart-policy.d.ts +3 -1
package/dist/src/server/runtime-restart-policy.js +3 -1
package/dist/src/server/runtime-store-contract.d.ts +122 -0
package/dist/src/server/runtime-store-contract.js +1 -0
package/dist/src/server/runtime-store-helpers.d.ts +9 -0
package/dist/src/server/runtime-store-helpers.js +101 -2
package/dist/src/server/runtime-store-workflows.d.ts +6 -0
package/dist/src/server/runtime-store-workflows.js +100 -0
package/dist/src/server/runtime-store.d.ts +3 -70
package/dist/src/server/runtime-store.js +70 -4
package/dist/src/server/session-capture-claude.d.ts +23 -0
package/dist/src/server/session-capture-claude.js +24 -1
package/dist/src/server/session-capture-codex.d.ts +3 -3
package/dist/src/server/session-capture-codex.js +9 -7
package/dist/src/server/session-capture-gemini.d.ts +1 -1
package/dist/src/server/session-capture-gemini.js +6 -3
package/dist/src/server/session-capture-opencode.d.ts +18 -0
package/dist/src/server/session-capture-opencode.js +27 -2
package/dist/src/server/settings-store.d.ts +3 -0
package/dist/src/server/settings-store.js +1 -0
package/dist/src/server/sqlite-schema-v19.d.ts +2 -0
package/dist/src/server/sqlite-schema-v19.js +17 -0
package/dist/src/server/sqlite-schema-v20.d.ts +2 -0
package/dist/src/server/sqlite-schema-v20.js +20 -0
package/dist/src/server/sqlite-schema-v21.d.ts +2 -0
package/dist/src/server/sqlite-schema-v21.js +20 -0
package/dist/src/server/sqlite-schema.d.ts +1 -1
package/dist/src/server/sqlite-schema.js +97 -1
package/dist/src/server/startup-command-parser.d.ts +15 -0
package/dist/src/server/startup-command-parser.js +33 -2
package/dist/src/server/system-message.d.ts +7 -0
package/dist/src/server/system-message.js +8 -1
package/dist/src/server/tasks-file-watcher.d.ts +39 -1
package/dist/src/server/tasks-file-watcher.js +155 -25
package/dist/src/server/tasks-file.d.ts +2 -1
package/dist/src/server/tasks-file.js +32 -9
package/dist/src/server/tasks-websocket-server.js +13 -14
package/dist/src/server/team-authz.d.ts +1 -1
package/dist/src/server/team-authz.js +9 -1
package/dist/src/server/team-autostaff.d.ts +16 -0
package/dist/src/server/team-autostaff.js +16 -0
package/dist/src/server/team-list-serializer.d.ts +1 -1
package/dist/src/server/team-list-serializer.js +3 -1
package/dist/src/server/team-operations.d.ts +20 -2
package/dist/src/server/team-operations.js +160 -14
package/dist/src/server/terminal-input-profile.js +2 -8
package/dist/src/server/terminal-protocol.js +9 -3
package/dist/src/server/terminal-stream-hub.js +16 -10
package/dist/src/server/terminal-ws-server.js +36 -16
package/dist/src/server/websocket-upgrade-safety.d.ts +10 -0
package/dist/src/server/websocket-upgrade-safety.js +35 -0
package/dist/src/server/windows-command-line.d.ts +3 -0
package/dist/src/server/windows-command-line.js +9 -0
package/dist/src/server/windows-filename.d.ts +2 -0
package/dist/src/server/windows-filename.js +33 -0
package/dist/src/server/workflow-cli-policy.d.ts +60 -0
package/dist/src/server/workflow-cli-policy.js +110 -0
package/dist/src/server/workflow-dispatch-awaiter.d.ts +12 -0
package/dist/src/server/workflow-dispatch-awaiter.js +80 -0
package/dist/src/server/workflow-feature.d.ts +15 -0
package/dist/src/server/workflow-feature.js +15 -0
package/dist/src/server/workflow-http-serializers.d.ts +64 -0
package/dist/src/server/workflow-http-serializers.js +58 -0
package/dist/src/server/workflow-run-log-store.d.ts +19 -0
package/dist/src/server/workflow-run-log-store.js +45 -0
package/dist/src/server/workflow-run-store.d.ts +50 -0
package/dist/src/server/workflow-run-store.js +103 -0
package/dist/src/server/workflow-runner.d.ts +147 -0
package/dist/src/server/workflow-runner.js +401 -0
package/dist/src/server/workflow-schedule-create.d.ts +14 -0
package/dist/src/server/workflow-schedule-create.js +41 -0
package/dist/src/server/workflow-schedule-store.d.ts +43 -0
package/dist/src/server/workflow-schedule-store.js +112 -0
package/dist/src/server/workflow-scheduler.d.ts +36 -0
package/dist/src/server/workflow-scheduler.js +97 -0
package/dist/src/server/workflow-script-loader.d.ts +34 -0
package/dist/src/server/workflow-script-loader.js +106 -0
package/dist/src/server/workspace-path-validation.js +16 -4
package/dist/src/server/workspace-shell-runtime.d.ts +5 -0
package/dist/src/server/workspace-shell-runtime.js +24 -2
package/dist/src/server/workspace-store-contract.d.ts +4 -1
package/dist/src/server/workspace-store-hydration.js +23 -7
package/dist/src/server/workspace-store-mutations.js +2 -5
package/dist/src/server/workspace-store-support.d.ts +4 -0
package/dist/src/server/workspace-store-support.js +13 -1
package/dist/src/server/workspace-store.js +38 -4
package/dist/src/shared/types.d.ts +16 -1
package/package.json +4 -2
package/web/dist/assets/{AddWorkerDialog-DmkDOdp6.js → AddWorkerDialog-CcC-7kgG.js} +2 -2
package/web/dist/assets/AddWorkspaceDialog-BDpOTfmt.js +1 -0
package/web/dist/assets/{FirstRunWizard-SAd1wsH4.js → FirstRunWizard-BYX_ocQn.js} +1 -1
package/web/dist/assets/{MarketplaceDrawer-B_8aG2uT.js → MarketplaceDrawer-DUxSk7db.js} +1 -1
package/web/dist/assets/WhatsNewDialog-B_RlCXcV.js +1 -0
package/web/dist/assets/WorkerModal-D9-7YfZZ.js +1 -0
package/web/dist/assets/WorkspaceTaskDrawer-BCKoF7qc.js +1 -0
package/web/dist/assets/{WorkspaceTerminalPanels-BReWh1YL.js → WorkspaceTerminalPanels-Dq8y91t2.js} +1 -1
package/web/dist/assets/index-BiOvKIVw.css +1 -0
package/web/dist/assets/index-DMRUklT3.js +73 -0
package/web/dist/assets/path-join-7MR1s7b1.js +1 -0
package/web/dist/index.html +2 -2
package/web/dist/sw.js +1 -1
package/web/dist/assets/AddWorkspaceDialog-BsVnH3Xe.js +0 -1
package/web/dist/assets/WorkerModal-CQmjiPme.js +0 -1
package/web/dist/assets/WorkspaceTaskDrawer-B0DmCWcV.js +0 -1
package/web/dist/assets/chevron-right-CtLjVEl7.js +0 -1
package/web/dist/assets/index-BEsTmfrO.css +0 -1
package/web/dist/assets/index-Cn8X3get.js +0 -76

package/dist/src/server/terminal-stream-hub.js CHANGED Viewed

@@ -1,6 +1,7 @@
 import { createTerminalOutputFlow } from './terminal-flow-control.js';
 import { parseTerminalControlMessage, serializeTerminalError, serializeTerminalExit, serializeTerminalRestore, } from './terminal-protocol.js';
 import { TerminalStateMirror } from './terminal-state-mirror.js';
+import { attachWebSocketErrorHandler, sendWebSocketMessage } from './websocket-upgrade-safety.js';
 const normalizeTerminalInput = (raw, isBinary) => {
     const bytes = Buffer.isBuffer(raw)
         ? raw
@@ -85,8 +86,8 @@ export const createTerminalStreamHub = (store) => {
                 const payload = serializeTerminalExit(run.exitCode);
                 for (const viewer of state.viewers.values()) {
                     const controlSocket = viewer.controlSocket;
-                    if (controlSocket && controlSocket.readyState === controlSocket.OPEN)
-                        controlSocket.send(payload);
+                    if (controlSocket)
+                        sendWebSocketMessage(controlSocket, payload, `terminal ${runId} exit`);
                 }
                 if (state.exitInterval)
                     clearInterval(state.exitInterval);
@@ -103,18 +104,17 @@ export const createTerminalStreamHub = (store) => {
     return {
         attachControl(runId, clientId, socket, initialSize) {
             const state = getOrCreateState(runId, initialSize);
+            attachWebSocketErrorHandler(socket, `terminal ${runId} control`);
             const viewer = getOrCreateViewer(state, clientId);
             viewer.controlSocket = socket;
             startExitWatcher(runId, state);
             void state.mirror
                 .getSnapshot()
                 .then((snapshot) => {
-                if (socket.readyState === socket.OPEN)
-                    socket.send(serializeTerminalRestore(snapshot));
+                sendWebSocketMessage(socket, serializeTerminalRestore(snapshot), `terminal ${runId} restore`);
             })
                 .catch(() => {
-                if (socket.readyState === socket.OPEN)
-                    socket.send(serializeTerminalRestore(''));
+                sendWebSocketMessage(socket, serializeTerminalRestore(''), `terminal ${runId} restore`);
             });
             socket.on('message', (raw) => {
                 try {
@@ -131,7 +131,7 @@ export const createTerminalStreamHub = (store) => {
                         return;
                 }
                 catch (error) {
-                    socket.send(serializeTerminalError(error instanceof Error ? error.message : 'Invalid control message'));
+                    sendWebSocketMessage(socket, serializeTerminalError(error instanceof Error ? error.message : 'Invalid control message'), `terminal ${runId} control error`);
                 }
             });
             socket.on('close', () => {
@@ -142,6 +142,7 @@ export const createTerminalStreamHub = (store) => {
         },
         attachIo(runId, clientId, socket, initialSize) {
             const state = getOrCreateState(runId, initialSize);
+            attachWebSocketErrorHandler(socket, `terminal ${runId} io`);
             const viewer = getOrCreateViewer(state, clientId);
             viewer.ioSocket = socket;
             viewer.flowState?.close();
@@ -158,7 +159,12 @@ export const createTerminalStreamHub = (store) => {
                 },
             });
             socket.on('message', (raw, isBinary) => {
-                store.writeRunInput(runId, normalizeTerminalInput(raw, isBinary));
+                try {
+                    store.writeRunInput(runId, normalizeTerminalInput(raw, isBinary));
+                }
+                catch (error) {
+                    sendWebSocketMessage(socket, serializeTerminalError(error instanceof Error ? error.message : 'Failed to write terminal input'), `terminal ${runId} input error`);
+                }
             });
             socket.on('close', () => {
                 if (viewer.ioSocket === socket)
@@ -176,8 +182,8 @@ export const createTerminalStreamHub = (store) => {
                 state.mirror.dispose();
                 for (const viewer of state.viewers.values()) {
                     viewer.flowState?.close();
-                    viewer.ioSocket?.close();
-                    viewer.controlSocket?.close();
+                    viewer.ioSocket?.terminate();
+                    viewer.controlSocket?.terminate();
                 }
                 runStates.delete(runId);
             }

package/dist/src/server/terminal-ws-server.js CHANGED Viewed

@@ -3,6 +3,7 @@ import { getLocalRequestRejection } from './local-request-guard.js';
 import { createTasksWebSocketServer } from './tasks-websocket-server.js';
 import { createTerminalStreamHub } from './terminal-stream-hub.js';
 import { readCookie } from './ui-auth-helpers.js';
+import { attachRawSocketErrorHandler, attachWebSocketServerErrorHandler, rejectWebSocketUpgrade, } from './websocket-upgrade-safety.js';
 const matchTerminalPath = (pathname) => {
     const match = /^\/ws\/terminal\/(?<runId>[^/]+)\/(?<channel>io|control)$/.exec(pathname);
     const groups = match?.groups;
@@ -24,13 +25,11 @@ const getInitialSize = (url) => {
     }
     return { cols, rows };
 };
-const rejectUpgrade = (socket, status) => {
-    socket.write(`HTTP/1.1 ${status}\r\n\r\n`);
-    socket.destroy();
-};
 export const createTerminalWebSocketServer = (server, store, tasksFileService) => {
     const ioWss = new WebSocketServer({ noServer: true });
     const controlWss = new WebSocketServer({ noServer: true });
+    attachWebSocketServerErrorHandler(ioWss, 'terminal io');
+    attachWebSocketServerErrorHandler(controlWss, 'terminal control');
     const tasksWss = createTasksWebSocketServer(server, store, tasksFileService);
     const hub = createTerminalStreamHub(store);
     const disposeTasksListener = store.registerTasksListener((workspaceId, content) => {
@@ -43,6 +42,26 @@ export const createTerminalWebSocketServer = (server, store, tasksFileService) =
         const token = readCookie(cookieHeader, 'hive_ui_token');
         return store.validateUiToken(token);
     };
+    let closed = false;
+    const closeAll = () => {
+        if (closed)
+            return;
+        closed = true;
+        // Order matters: dispose the publisher first so no new frames are
+        // queued onto sockets that are about to be torn down. Then forcibly
+        // terminate any open WS clients (terminate() skips the close
+        // handshake, which is what we need — a polite ws.close() would wait
+        // on the remote side and re-introduce the hang we're fixing).
+        disposeTasksListener();
+        for (const ws of ioWss.clients)
+            ws.terminate();
+        for (const ws of controlWss.clients)
+            ws.terminate();
+        tasksWss.close();
+        ioWss.close();
+        controlWss.close();
+        hub.close();
+    };
     server.on('upgrade', (request, socket, head) => {
         const url = new URL(request.url ?? '/', 'http://127.0.0.1');
         const pathname = url.pathname;
@@ -51,26 +70,29 @@ export const createTerminalWebSocketServer = (server, store, tasksFileService) =
             if (/^\/ws\/tasks\/.+/.test(pathname)) {
                 return;
             }
-            rejectUpgrade(socket, '404 Not Found');
+            attachRawSocketErrorHandler(socket, 'terminal upgrade');
+            rejectWebSocketUpgrade(socket, '404 Not Found');
             return;
         }
+        const detachRawSocketErrorHandler = attachRawSocketErrorHandler(socket, 'terminal upgrade');
         if (getLocalRequestRejection(request)) {
-            rejectUpgrade(socket, '403 Forbidden');
+            rejectWebSocketUpgrade(socket, '403 Forbidden');
             return;
         }
         if (!validateUpgradeSession(request)) {
-            rejectUpgrade(socket, '401 Unauthorized');
+            rejectWebSocketUpgrade(socket, '401 Unauthorized');
             return;
         }
         try {
             store.getLiveRun(match.runId);
         }
         catch {
-            rejectUpgrade(socket, '404 Not Found');
+            rejectWebSocketUpgrade(socket, '404 Not Found');
             return;
         }
         const wss = match.channel === 'io' ? ioWss : controlWss;
         wss.handleUpgrade(request, socket, head, (ws) => {
+            detachRawSocketErrorHandler();
             const clientId = getClientId(url);
             if (match.channel === 'io')
                 hub.attachIo(match.runId, clientId, ws, getInitialSize(url));
@@ -78,12 +100,10 @@ export const createTerminalWebSocketServer = (server, store, tasksFileService) =
                 hub.attachControl(match.runId, clientId, ws, getInitialSize(url));
         });
     });
-    server.on('close', () => {
-        disposeTasksListener();
-        hub.close();
-        ioWss.close();
-        controlWss.close();
-        tasksWss.close();
-    });
-    return { close: () => hub.close() };
+    // Kept as an idempotent fallback for callers that drive
+    // `app.server.close()` directly (e.g. unit tests in tests/server/*)
+    // and never see the runHiveCommand close path. closeAll() is guarded
+    // by `closed` so calling both is a no-op.
+    server.on('close', closeAll);
+    return { close: closeAll };
 };

package/dist/src/server/websocket-upgrade-safety.d.ts ADDED Viewed

@@ -0,0 +1,10 @@
+import type { Duplex } from 'node:stream';
+import type WebSocket from 'ws';
+import type { WebSocketServer } from 'ws';
+type UpgradeSocket = Duplex;
+export declare const attachRawSocketErrorHandler: (socket: UpgradeSocket, context: string) => () => Duplex;
+export declare const attachWebSocketServerErrorHandler: (wss: WebSocketServer, context: string) => void;
+export declare const attachWebSocketErrorHandler: (socket: WebSocket, context: string) => void;
+export declare const rejectWebSocketUpgrade: (socket: UpgradeSocket, status: string) => void;
+export declare const sendWebSocketMessage: (socket: WebSocket, payload: string, context: string) => boolean;
+export {};

package/dist/src/server/websocket-upgrade-safety.js ADDED Viewed

@@ -0,0 +1,35 @@
+const logSocketError = (context, error) => {
+    console.error(`[hive] ${context}`, error);
+};
+export const attachRawSocketErrorHandler = (socket, context) => {
+    const handler = (error) => logSocketError(`${context} socket error`, error);
+    socket.on('error', handler);
+    return () => socket.off('error', handler);
+};
+export const attachWebSocketServerErrorHandler = (wss, context) => {
+    wss.on('error', (error) => logSocketError(`${context} websocket server error`, error));
+};
+export const attachWebSocketErrorHandler = (socket, context) => {
+    socket.on('error', (error) => logSocketError(`${context} websocket error`, error));
+};
+export const rejectWebSocketUpgrade = (socket, status) => {
+    try {
+        socket.write(`HTTP/1.1 ${status}\r\nConnection: close\r\n\r\n`);
+    }
+    catch (error) {
+        logSocketError(`failed to reject websocket upgrade with ${status}`, error);
+    }
+    socket.destroy();
+};
+export const sendWebSocketMessage = (socket, payload, context) => {
+    if (socket.readyState !== socket.OPEN)
+        return false;
+    try {
+        socket.send(payload);
+        return true;
+    }
+    catch (error) {
+        logSocketError(`${context} send failed`, error);
+        return false;
+    }
+};

package/dist/src/server/windows-command-line.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+export declare const escapeCmdToken: (value: string) => string;
+export declare const buildCmdCommand: (command: string, args?: readonly string[]) => string;
+export declare const buildCmdCallCommand: (command: string, args?: readonly string[]) => string;

package/dist/src/server/windows-command-line.js ADDED Viewed

@@ -0,0 +1,9 @@
+const CMD_META_CHARS = /[\s"&<>|^()%]/u;
+export const escapeCmdToken = (value) => {
+    if (value.length === 0)
+        return '""';
+    const escaped = value.replace(/%/g, '%%').replace(/"/g, '""');
+    return CMD_META_CHARS.test(value) ? `"${escaped}"` : escaped;
+};
+export const buildCmdCommand = (command, args = []) => [command, ...args].map(escapeCmdToken).join(' ');
+export const buildCmdCallCommand = (command, args = []) => `call ${buildCmdCommand(command, args)}`;

package/dist/src/server/windows-filename.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export declare const getWindowsFilenameError: (filename: string) => string \| undefined;
2	+ export declare const assertWindowsSafeFilename: (filename: string) => void;

package/dist/src/server/windows-filename.js ADDED Viewed

@@ -0,0 +1,33 @@
+const WINDOWS_DEVICE_NAMES = /^(con|prn|aux|nul|com[1-9\u00b9\u00b2\u00b3]|lpt[1-9\u00b9\u00b2\u00b3])$/iu;
+const WINDOWS_INVALID_FILENAME_CHARS = new Set(['<', '>', ':', '"', '/', '\\', '|', '?', '*']);
+const hasWindowsInvalidFilenameChar = (filename) => {
+    for (const char of filename) {
+        if (WINDOWS_INVALID_FILENAME_CHARS.has(char))
+            return true;
+        const code = char.codePointAt(0) ?? 0;
+        if (code >= 0 && code <= 31)
+            return true;
+    }
+    return false;
+};
+export const getWindowsFilenameError = (filename) => {
+    if (!filename.trim())
+        return 'filename must not be empty';
+    if (filename === '.' || filename === '..')
+        return 'filename must not be a relative segment';
+    if (hasWindowsInvalidFilenameChar(filename)) {
+        return 'filename contains characters Windows cannot create';
+    }
+    if (/[. ]$/u.test(filename))
+        return 'filename must not end with a space or period';
+    const stem = filename.split('.')[0] ?? filename;
+    if (WINDOWS_DEVICE_NAMES.test(stem)) {
+        return `filename uses reserved Windows device name: ${stem}`;
+    }
+    return undefined;
+};
+export const assertWindowsSafeFilename = (filename) => {
+    const error = getWindowsFilenameError(filename);
+    if (error)
+        throw new Error(error);
+};

package/dist/src/server/workflow-cli-policy.d.ts ADDED Viewed

@@ -0,0 +1,60 @@
+/**
+ * Workflow CLI policy — controls which CLI a workflow's `agent()` spawns.
+ *
+ * Before this, the runner hard-coded `opts.cli ?? 'claude'`: a user who only
+ * had Codex set up would have every workflow agent that omitted `cli` spawn a
+ * `claude` it can't run. The policy makes the default configurable and lets
+ * the user constrain which CLIs workflow agents may use.
+ *
+ * Stored GLOBALLY in `app_state` (CLI availability is a machine-level fact, not
+ * per-workspace) under WORKFLOW_CLI_POLICY_KEY as a JSON `{default, allowed}`.
+ * An absent/malformed value reads back as DEFAULT_WORKFLOW_CLI_POLICY, which is
+ * unrestricted and defaults to `claude` — i.e. exactly the old behavior, so
+ * upgrading without configuring anything changes nothing.
+ */
+/** Canonical CLI set — mirrors the built-in command preset ids
+ *  (see command-preset-defaults.ts). The allowlist is a subset of these. */
+export declare const CANONICAL_WORKFLOW_CLIS: readonly ["claude", "codex", "opencode", "gemini"];
+export type WorkflowCli = (typeof CANONICAL_WORKFLOW_CLIS)[number];
+export declare const WORKFLOW_CLI_POLICY_KEY = "workflow.cli-policy";
+export interface WorkflowCliPolicy {
+    /** CLI used when an `agent()` call omits `cli` and isn't a custom template. */
+    default: string;
+    /** CLIs an explicit `opts.cli` (and the default fallback) may use. */
+    allowed: string[];
+}
+export declare const DEFAULT_WORKFLOW_CLI_POLICY: WorkflowCliPolicy;
+/**
+ * Lenient coercion used by the runtime reader: turn arbitrary stored data into
+ * a usable policy, never throwing. Junk in `allowed` is dropped; an empty
+ * result falls back to the full canonical default; a `default` outside the
+ * sanitized `allowed` is pulled back to the first allowed entry.
+ */
+export declare const normalizeWorkflowCliPolicy: (input: unknown) => WorkflowCliPolicy;
+/** Parse the raw `app_state` string. Absent / malformed → canonical default. */
+export declare const readWorkflowCliPolicy: (raw: string | null | undefined) => WorkflowCliPolicy;
+/**
+ * Strict validation for the settings API: reject bad input so a malformed
+ * policy can never be persisted (the reader tolerates junk, but we'd rather
+ * fail the write than silently store something the user didn't intend).
+ */
+export declare const assertValidWorkflowCliPolicy: (input: unknown) => WorkflowCliPolicy;
+export interface ResolveWorkflowCliInput {
+    /** `opts.cli` from the `agent()` call, if any. */
+    requestedCli?: string;
+    /** True when `agentType` resolved to a workspace custom role template. */
+    isCustomTemplate: boolean;
+    /** The custom template's `defaultCommand` (only consulted when custom). */
+    templateDefaultCommand?: string;
+    policy: WorkflowCliPolicy;
+}
+/**
+ * Resolve the CLI command a workflow agent should launch with.
+ *
+ * - An explicit `requestedCli` is ALWAYS validated against `allowed` (throws
+ *   if disallowed, so the orchestrator gets a clear, fixable error).
+ * - When omitted: a custom template keeps its own `defaultCommand` (the user
+ *   curated that role deliberately — exempt from the allowlist); a built-in
+ *   role falls back to `policy.default`.
+ */
+export declare const resolveWorkflowCli: ({ requestedCli, isCustomTemplate, templateDefaultCommand, policy, }: ResolveWorkflowCliInput) => string;

package/dist/src/server/workflow-cli-policy.js ADDED Viewed

@@ -0,0 +1,110 @@
+/**
+ * Workflow CLI policy — controls which CLI a workflow's `agent()` spawns.
+ *
+ * Before this, the runner hard-coded `opts.cli ?? 'claude'`: a user who only
+ * had Codex set up would have every workflow agent that omitted `cli` spawn a
+ * `claude` it can't run. The policy makes the default configurable and lets
+ * the user constrain which CLIs workflow agents may use.
+ *
+ * Stored GLOBALLY in `app_state` (CLI availability is a machine-level fact, not
+ * per-workspace) under WORKFLOW_CLI_POLICY_KEY as a JSON `{default, allowed}`.
+ * An absent/malformed value reads back as DEFAULT_WORKFLOW_CLI_POLICY, which is
+ * unrestricted and defaults to `claude` — i.e. exactly the old behavior, so
+ * upgrading without configuring anything changes nothing.
+ */
+/** Canonical CLI set — mirrors the built-in command preset ids
+ *  (see command-preset-defaults.ts). The allowlist is a subset of these. */
+export const CANONICAL_WORKFLOW_CLIS = ['claude', 'codex', 'opencode', 'gemini'];
+export const WORKFLOW_CLI_POLICY_KEY = 'workflow.cli-policy';
+export const DEFAULT_WORKFLOW_CLI_POLICY = {
+    default: 'claude',
+    allowed: [...CANONICAL_WORKFLOW_CLIS],
+};
+const isCanonical = (value) => typeof value === 'string' && CANONICAL_WORKFLOW_CLIS.includes(value);
+/** Canonical entries from `input`, deduped and in canonical order. */
+const sanitizeAllowed = (input) => {
+    if (!Array.isArray(input))
+        return [];
+    const set = new Set(input.filter(isCanonical));
+    return CANONICAL_WORKFLOW_CLIS.filter((cli) => set.has(cli));
+};
+/**
+ * Lenient coercion used by the runtime reader: turn arbitrary stored data into
+ * a usable policy, never throwing. Junk in `allowed` is dropped; an empty
+ * result falls back to the full canonical default; a `default` outside the
+ * sanitized `allowed` is pulled back to the first allowed entry.
+ */
+export const normalizeWorkflowCliPolicy = (input) => {
+    if (typeof input !== 'object' || input === null)
+        return DEFAULT_WORKFLOW_CLI_POLICY;
+    const record = input;
+    const allowed = sanitizeAllowed(record.allowed);
+    if (allowed.length === 0)
+        return DEFAULT_WORKFLOW_CLI_POLICY;
+    const requestedDefault = record.default;
+    const fallback = allowed[0];
+    const resolvedDefault = typeof requestedDefault === 'string' && allowed.includes(requestedDefault)
+        ? requestedDefault
+        : fallback;
+    return { default: resolvedDefault, allowed };
+};
+/** Parse the raw `app_state` string. Absent / malformed → canonical default. */
+export const readWorkflowCliPolicy = (raw) => {
+    if (raw === null || raw === undefined)
+        return DEFAULT_WORKFLOW_CLI_POLICY;
+    try {
+        return normalizeWorkflowCliPolicy(JSON.parse(raw));
+    }
+    catch {
+        return DEFAULT_WORKFLOW_CLI_POLICY;
+    }
+};
+/**
+ * Strict validation for the settings API: reject bad input so a malformed
+ * policy can never be persisted (the reader tolerates junk, but we'd rather
+ * fail the write than silently store something the user didn't intend).
+ */
+export const assertValidWorkflowCliPolicy = (input) => {
+    if (typeof input !== 'object' || input === null) {
+        throw new Error('workflow cli policy must be an object { default, allowed }');
+    }
+    const record = input;
+    if (!Array.isArray(record.allowed)) {
+        throw new Error('workflow cli policy `allowed` must be an array');
+    }
+    if (record.allowed.length === 0) {
+        throw new Error('workflow cli policy `allowed` must list at least one CLI');
+    }
+    const bad = record.allowed.find((entry) => !isCanonical(entry));
+    if (bad !== undefined) {
+        throw new Error(`workflow cli policy "allowed" has an unsupported CLI: ${JSON.stringify(bad)}. Supported: ${CANONICAL_WORKFLOW_CLIS.join(', ')}`);
+    }
+    if (typeof record.default !== 'string' || !record.allowed.includes(record.default)) {
+        throw new Error(`workflow cli policy "default" (${JSON.stringify(record.default)}) must be one of allowed: ${record.allowed.join(', ')}`);
+    }
+    // Dedupe + canonical order while preserving the (now-validated) selection.
+    return { default: record.default, allowed: sanitizeAllowed(record.allowed) };
+};
+/**
+ * Resolve the CLI command a workflow agent should launch with.
+ *
+ * - An explicit `requestedCli` is ALWAYS validated against `allowed` (throws
+ *   if disallowed, so the orchestrator gets a clear, fixable error).
+ * - When omitted: a custom template keeps its own `defaultCommand` (the user
+ *   curated that role deliberately — exempt from the allowlist); a built-in
+ *   role falls back to `policy.default`.
+ */
+export const resolveWorkflowCli = ({ requestedCli, isCustomTemplate, templateDefaultCommand, policy, }) => {
+    const explicit = requestedCli?.trim();
+    if (explicit) {
+        if (!policy.allowed.includes(explicit)) {
+            throw new Error(`Workflow agent cli '${explicit}' is not allowed in this workspace. ` +
+                `Allowed: ${policy.allowed.join(', ')}. ` +
+                `Pick an allowed cli, or change the workflow CLI policy in Settings.`);
+        }
+        return explicit;
+    }
+    if (isCustomTemplate && templateDefaultCommand)
+        return templateDefaultCommand;
+    return policy.default;
+};

package/dist/src/server/workflow-dispatch-awaiter.d.ts ADDED Viewed

@@ -0,0 +1,12 @@
+export interface ReportPayload {
+    text: string;
+    artifacts: string[];
+    status?: string;
+}
+export interface WorkflowDispatchAwaiter {
+    awaitReport(dispatchId: string, timeoutMs?: number): Promise<ReportPayload>;
+    notifyReport(dispatchId: string, payload: ReportPayload): void;
+    notifyCancel(dispatchId: string, reason: string): void;
+    cancelAll(reason: string): void;
+}
+export declare const createWorkflowDispatchAwaiter: () => WorkflowDispatchAwaiter;

package/dist/src/server/workflow-dispatch-awaiter.js ADDED Viewed

@@ -0,0 +1,80 @@
+// Default 10 minutes — workflows often run long. Callers may shorten via opts.
+const DEFAULT_TIMEOUT_MS = 10 * 60 * 1000;
+export const createWorkflowDispatchAwaiter = () => {
+    const pending = new Map();
+    // TIER 2 #10 — deferred-cancel state. The runner creates a dispatch
+    // and THEN calls awaitReport, with at least one microtask gap between
+    // the two. If notifyCancel(id) fires in that gap, it currently hits
+    // an empty `pending` map and no-ops; the subsequent awaitReport(id)
+    // then waits the full DEFAULT_TIMEOUT_MS (10 min) on a dispatch that
+    // is already cancelled. Remembering the cancel intent here lets
+    // awaitReport reject synchronously the instant it gets registered.
+    // We also remember any pre-arrived report payload for the same
+    // reason — defensive against a future ordering change.
+    const cancelledIds = new Map();
+    const reportedIds = new Map();
+    const take = (dispatchId) => {
+        const entry = pending.get(dispatchId);
+        if (entry) {
+            clearTimeout(entry.timer);
+            pending.delete(dispatchId);
+        }
+        return entry;
+    };
+    return {
+        awaitReport(dispatchId, timeoutMs = DEFAULT_TIMEOUT_MS) {
+            return new Promise((resolve, reject) => {
+                // Pre-arrived events: drain immediately, no timer / no entry.
+                const earlyReport = reportedIds.get(dispatchId);
+                if (earlyReport) {
+                    reportedIds.delete(dispatchId);
+                    resolve(earlyReport);
+                    return;
+                }
+                const earlyCancel = cancelledIds.get(dispatchId);
+                if (earlyCancel) {
+                    cancelledIds.delete(dispatchId);
+                    reject(new Error(`workflow dispatch ${dispatchId} cancelled: ${earlyCancel}`));
+                    return;
+                }
+                const timer = setTimeout(() => {
+                    pending.delete(dispatchId);
+                    reject(new Error(`workflow dispatch ${dispatchId} timeout after ${timeoutMs}ms`));
+                }, timeoutMs);
+                pending.set(dispatchId, { resolve, reject, timer });
+            });
+        },
+        notifyReport(dispatchId, payload) {
+            const entry = take(dispatchId);
+            if (entry) {
+                entry.resolve(payload);
+            }
+            else {
+                // Pre-arrival: stash for the eventual awaitReport call. Cap
+                // stash size implicitly by overwriting on duplicate id.
+                reportedIds.set(dispatchId, payload);
+            }
+        },
+        notifyCancel(dispatchId, reason) {
+            const entry = take(dispatchId);
+            if (entry) {
+                entry.reject(new Error(`workflow dispatch ${dispatchId} cancelled: ${reason}`));
+            }
+            else {
+                cancelledIds.set(dispatchId, reason);
+            }
+        },
+        cancelAll(reason) {
+            for (const [id, entry] of pending) {
+                clearTimeout(entry.timer);
+                entry.reject(new Error(`workflow dispatch ${id} cancelled: ${reason}`));
+            }
+            pending.clear();
+            // cancelAll happens at runtime close — anything waiting at that
+            // moment should fail loudly, but the deferred state can be
+            // safely dropped since no future awaitReport will run.
+            cancelledIds.clear();
+            reportedIds.clear();
+        },
+    };
+};

package/dist/src/server/workflow-feature.d.ts ADDED Viewed

@@ -0,0 +1,15 @@
+/**
+ * Workflow experimental feature gate.
+ *
+ * Workflows (`team workflow run`, the scheduler, the UI drawer, and the chunk
+ * of orchestrator guidance that teaches them) are a power feature with sharp
+ * edges — runaway fan-outs, authoring footguns, no run-resume yet. They ship
+ * OFF by default; a user opts in from Settings. While off, the orchestrator is
+ * not even taught about workflows, which also keeps its always-on prompt lean.
+ *
+ * Stored GLOBALLY in `app_state` under WORKFLOW_ENABLED_KEY. Absent / anything
+ * other than the exact string "true" reads back as DISABLED.
+ */
+export declare const WORKFLOW_ENABLED_KEY = "workflow.enabled";
+export declare const readWorkflowEnabled: (raw: string | null | undefined) => boolean;
+export declare const serializeWorkflowEnabled: (enabled: boolean) => string;

package/dist/src/server/workflow-feature.js ADDED Viewed

@@ -0,0 +1,15 @@
+/**
+ * Workflow experimental feature gate.
+ *
+ * Workflows (`team workflow run`, the scheduler, the UI drawer, and the chunk
+ * of orchestrator guidance that teaches them) are a power feature with sharp
+ * edges — runaway fan-outs, authoring footguns, no run-resume yet. They ship
+ * OFF by default; a user opts in from Settings. While off, the orchestrator is
+ * not even taught about workflows, which also keeps its always-on prompt lean.
+ *
+ * Stored GLOBALLY in `app_state` under WORKFLOW_ENABLED_KEY. Absent / anything
+ * other than the exact string "true" reads back as DISABLED.
+ */
+export const WORKFLOW_ENABLED_KEY = 'workflow.enabled';
+export const readWorkflowEnabled = (raw) => raw === 'true';
+export const serializeWorkflowEnabled = (enabled) => (enabled ? 'true' : 'false');

package/dist/src/server/workflow-http-serializers.d.ts ADDED Viewed

@@ -0,0 +1,64 @@
+import type { LiveAgentRun } from './agent-runtime-types.js';
+import type { DispatchRecord } from './dispatch-ledger-store.js';
+import type { WorkflowRunRecord } from './workflow-run-store.js';
+import type { WorkflowScheduleRecord } from './workflow-schedule-store.js';
+export declare const serializeLiveAgentRun: (run: LiveAgentRun) => {
+    agent_id: string;
+    exit_code: number | null;
+    output: string;
+    pid: number | null;
+    run_id: string;
+    started_at: number;
+    status: import("./agent-manager.js").RunStatus;
+};
+export declare const serializeWorkflowRun: (run: WorkflowRunRecord) => {
+    agent_count: number;
+    args: unknown;
+    created_at: number;
+    error: string | null;
+    finished_at: number | null;
+    id: string;
+    name: string;
+    parent_run_id: string | null;
+    phase: string | null;
+    result: unknown;
+    script_hash: string | null;
+    script_path: string;
+    started_at: number;
+    status: import("./workflow-run-store.js").WorkflowRunStatus;
+    workspace_id: string;
+};
+export declare const serializeWorkflowDispatch: (dispatch: DispatchRecord & {
+    lastPtyLine?: string;
+}) => {
+    artifacts: string[];
+    created_at: number;
+    delivered_at: number | null;
+    from_agent_id: string | null;
+    id: string;
+    label: string | null;
+    last_pty_line: string | null;
+    phase: string | null;
+    reported_at: number | null;
+    report_text: string | null;
+    sequence: number | null;
+    status: import("./dispatch-ledger-store.js").DispatchStatus;
+    step_index: number | null;
+    submitted_at: number | null;
+    text: string;
+    to_agent_id: string;
+    workflow_run_id: string | null;
+    workspace_id: string;
+};
+export declare const serializeWorkflowSchedule: (schedule: WorkflowScheduleRecord) => {
+    args: unknown;
+    created_at: number;
+    cron: string;
+    enabled: boolean;
+    id: string;
+    last_run_at: number | null;
+    next_run_at: number;
+    script_path: string;
+    updated_at: number;
+    workspace_id: string;
+};