@tuent/sentinel 0.1.0 → 0.1.1

package/dist/{chunk-Z3PWIJKT.js → chunk-IYC5E7RL.js}

@@ -1,11 +1,20 @@
+import {
+  deriveAgentId
+} from "./chunk-B5QKJHSV.js";
 import {
   discoverPolicy
 } from "./chunk-FMZWHT4M.js";
 import {
   DEFAULT_FORBIDDEN_PATTERNS,
+  FORBIDDEN_BASENAMES,
+  isPositionallySafeMention,
   matchGlobInsensitive,
-  normalizeForbiddenPattern
-} from "./chunk-6MHWJATS.js";
+  normalizeForbiddenPattern,
+  scanBashCommand,
+  scanContentForForbiddenBasenames,
+  scanGlobPattern,
+  tokenizePaths
+} from "./chunk-QHE56MEO.js";
 import {
   loadPolicy,
   policyToConfig,
@@ -15,34 +24,6 @@ import {
 // src/gateway/workspaceRouter.ts
 import { resolve, dirname } from "path";
 
-// src/workspaceIdentity.ts
-var AGENT_PREFIX = "claude-code";
-function fnv1a32Hex(s) {
-  let h = 2166136261;
-  for (let i = 0; i < s.length; i++) {
-    h ^= s.charCodeAt(i);
-    h = Math.imul(h, 16777619);
-  }
-  return (h >>> 0).toString(16).padStart(8, "0");
-}
-function lastSegment(path) {
-  const parts = path.split("/").filter(Boolean);
-  return parts.length > 0 ? parts[parts.length - 1] : "";
-}
-function slugify(s) {
-  return s.toLowerCase().replace(/[^a-z0-9]+/g, "-").replace(/(^-|-$)/g, "");
-}
-function normalizeRoot(root) {
-  if (root === "" || root === "/") return root;
-  return root.replace(/\/+$/, "") || "/";
-}
-function deriveAgentId(workspaceRoot) {
-  const root = normalizeRoot(workspaceRoot);
-  const slug = slugify(lastSegment(root)) || "root";
-  const hash = fnv1a32Hex(root);
-  return `${AGENT_PREFIX}@${slug}-${hash}`;
-}
-
 // src/mergeRoles.ts
 function isWithinActiveHours(hour, range) {
   const [startHour, endHour] = range;
@@ -363,393 +344,6 @@ var TranslatorRegistry = class {
   }
 };
 
-// src/gateway/bashScanner.ts
-import { parse as shellParse } from "shell-quote";
-import { realpathSync } from "fs";
-import { dirname as dirname2, join, basename, normalize } from "path";
-var BRACE_PATTERN_RE = /\{[^}]*,[^}]*\}/;
-var MAX_BRACE_EXPANSION = 64;
-function fnmatchBasename(pattern, candidate) {
-  if (pattern.length !== candidate.length) return false;
-  for (let i = 0; i < pattern.length; i++) {
-    const p = pattern[i].toLowerCase();
-    const c = candidate[i].toLowerCase();
-    if (p === "?") continue;
-    if (p !== c) return false;
-  }
-  return true;
-}
-function bracketTokenMatchesForbidden(token, forbiddenBasenames) {
-  const literals = [];
-  let current = "";
-  let inBracket = false;
-  for (let i = 0; i < token.length; i++) {
-    if (token[i] === "[" && !inBracket) {
-      if (current) literals.push(current);
-      current = "";
-      inBracket = true;
-    } else if (token[i] === "]" && inBracket) {
-      inBracket = false;
-    } else if (!inBracket) {
-      current += token[i];
-    }
-  }
-  if (current) literals.push(current);
-  for (const forbidden of forbiddenBasenames) {
-    const fl = forbidden.toLowerCase();
-    for (const lit of literals) {
-      if (lit.length === 0) continue;
-      if (fl.includes(lit.toLowerCase())) return forbidden;
-    }
-  }
-  return null;
-}
-function resolveBraceExpansion(token) {
-  const match = token.match(/^(.*?)\{([^}]*,[^}]*)\}(.*)$/);
-  if (!match) return null;
-  const [, prefix, alternatives, suffix] = match;
-  const parts = alternatives.split(",");
-  if (parts.length > MAX_BRACE_EXPANSION) return null;
-  return parts.map((p) => prefix + p + suffix);
-}
-function wildcardDispatch(token, forbiddenBasenames, metadataField) {
-  const result = {
-    resolvedBasenames: [],
-    unparseable: false,
-    metadata: {}
-  };
-  if (token === "*" || token === "**" || token === "?") {
-    return result;
-  }
-  if (BRACE_PATTERN_RE.test(token)) {
-    const expanded = resolveBraceExpansion(token);
-    if (expanded === null) {
-      result.unparseable = true;
-      return result;
-    }
-    for (const alt of expanded) {
-      const hasWildcard = /[?*[]/.test(alt);
-      if (hasWildcard) {
-        const sub = wildcardDispatch(alt, forbiddenBasenames, metadataField);
-        if (sub.resolvedBasenames.length > 0) {
-          result.resolvedBasenames.push(...sub.resolvedBasenames);
-          result.metadata["resolvedFromBrace"] = token;
-          Object.assign(result.metadata, sub.metadata);
-        }
-        if (sub.unparseable) result.unparseable = true;
-      } else {
-        const altLower = alt.toLowerCase();
-        for (const forbidden of forbiddenBasenames) {
-          if (altLower === forbidden.toLowerCase()) {
-            result.resolvedBasenames.push(forbidden);
-            result.metadata["resolvedFromBrace"] = token;
-            break;
-          }
-        }
-      }
-    }
-    return result;
-  }
-  const hasStar = token.includes("*");
-  const hasQuestion = token.includes("?");
-  const hasBracket = token.includes("[");
-  if (hasBracket) {
-    const matched = bracketTokenMatchesForbidden(token, forbiddenBasenames);
-    if (matched) {
-      result.resolvedBasenames.push(matched);
-      result.metadata["resolvedFromBracket"] = token;
-    } else {
-      result.unparseable = true;
-    }
-    return result;
-  }
-  if (hasStar && !hasQuestion) {
-    const matched = starLiteralSubstringCheck(token, forbiddenBasenames);
-    if (matched) {
-      result.resolvedBasenames.push(matched);
-      result.metadata[metadataField] = token;
-    }
-    return result;
-  }
-  if (hasQuestion && !hasStar) {
-    for (const forbidden of forbiddenBasenames) {
-      if (fnmatchBasename(token, forbidden)) {
-        result.resolvedBasenames.push(forbidden);
-        result.metadata[metadataField] = token;
-        break;
-      }
-    }
-    return result;
-  }
-  if (hasStar && hasQuestion) {
-    const starMatch = starLiteralSubstringCheck(token, forbiddenBasenames);
-    if (starMatch) {
-      result.resolvedBasenames.push(starMatch);
-      result.metadata[metadataField] = token;
-      return result;
-    }
-    const segments = token.split("*").filter((s) => s.includes("?"));
-    for (const seg of segments) {
-      for (const forbidden of forbiddenBasenames) {
-        if (fnmatchBasename(seg, forbidden)) {
-          result.resolvedBasenames.push(forbidden);
-          result.metadata[metadataField] = token;
-          return result;
-        }
-      }
-    }
-    return result;
-  }
-  return result;
-}
-function starLiteralSubstringCheck(token, forbiddenBasenames) {
-  const literals = token.split("*").filter((s) => s.length > 0);
-  for (const forbidden of forbiddenBasenames) {
-    const fl = forbidden.toLowerCase();
-    for (const lit of literals) {
-      if (fl.includes(lit.toLowerCase())) return forbidden;
-    }
-  }
-  return null;
-}
-function shouldDispatchWildcard(token) {
-  const hasMetachar = /[?*[{]/.test(token);
-  if (!hasMetachar) return false;
-  if (isPathShaped(token)) return true;
-  if (token.includes("[")) return true;
-  if (BRACE_PATTERN_RE.test(token)) return true;
-  return false;
-}
-var SENSITIVE_BASENAME_RE = /(?:\.env|\.ssh|secrets|credentials|id_rsa|id_dsa|id_ecdsa|id_ed25519|\.pem|\.key)/i;
-var DANGEROUS_COMMAND_TOKENS = /* @__PURE__ */ new Set(["eval"]);
-var COMMAND_SUBSTITUTION_RE = /\$\(|`/;
-var DANGEROUS_RAW_RE = /<<<|<\(|>\(/;
-function isVarMarker(token) {
-  return typeof token === "object" && token !== null && "__sentinel_var" in token && typeof token.__sentinel_var === "string";
-}
-function tokenizePaths(command) {
-  const result = {
-    paths: [],
-    unparseable: false,
-    hasDangerousConstruct: false
-  };
-  if (DANGEROUS_RAW_RE.test(command)) {
-    result.hasDangerousConstruct = true;
-  }
-  if (COMMAND_SUBSTITUTION_RE.test(command)) {
-    result.hasDangerousConstruct = true;
-  }
-  let tokens;
-  try {
-    tokens = shellParse(command, (key) => ({ __sentinel_var: key }));
-  } catch {
-    result.unparseable = true;
-    return result;
-  }
-  if (!Array.isArray(tokens)) {
-    result.unparseable = true;
-    return result;
-  }
-  let prevToken = null;
-  for (let i = 0; i < tokens.length; i++) {
-    const token = tokens[i];
-    if (isVarMarker(token)) {
-      const nextToken = tokens[i + 1];
-      const nextIsPathRelevant = nextToken === void 0 || // end of tokens — var is complete argument
-      typeof nextToken === "object" && nextToken !== null && "op" in nextToken || // followed by operator — var is complete argument
-      typeof nextToken === "string" && isPathShaped(nextToken);
-      const prevIsPathRelevant = prevToken !== null && isPathShaped(prevToken);
-      if (nextIsPathRelevant || prevIsPathRelevant) {
-        result.unparseable = true;
-      }
-      prevToken = null;
-      continue;
-    }
-    if (typeof token === "object" && token !== null) {
-      if ("pattern" in token) {
-        const globPattern = token.pattern;
-        const lastSlash = globPattern.lastIndexOf("/");
-        const dispatchTarget = lastSlash >= 0 ? globPattern.slice(lastSlash + 1) : globPattern;
-        const dispatch = wildcardDispatch(dispatchTarget, FORBIDDEN_BASENAMES, "resolvedFromGlob");
-        if (dispatch.resolvedBasenames.length > 0) {
-          for (const resolved of dispatch.resolvedBasenames) {
-            result.paths.push(resolved);
-          }
-        }
-        if (dispatch.unparseable) {
-          result.unparseable = true;
-        }
-        if (SENSITIVE_BASENAME_RE.test(globPattern)) {
-          result.unparseable = true;
-        }
-        prevToken = null;
-        continue;
-      }
-      if ("op" in token) {
-        if (token.op === "<(") {
-          result.hasDangerousConstruct = true;
-        }
-        prevToken = null;
-        continue;
-      }
-      prevToken = null;
-      continue;
-    }
-    if (typeof token !== "string") {
-      prevToken = null;
-      continue;
-    }
-    if (DANGEROUS_COMMAND_TOKENS.has(token.toLowerCase())) {
-      result.hasDangerousConstruct = true;
-    }
-    if ((prevToken === "sh" || prevToken === "bash" || prevToken === "/bin/sh" || prevToken === "/bin/bash") && token === "-c") {
-      result.hasDangerousConstruct = true;
-    }
-    if (shouldDispatchWildcard(token)) {
-      const metaField = "resolvedFromQuotedGlob";
-      const dispatch = wildcardDispatch(token, FORBIDDEN_BASENAMES, metaField);
-      if (dispatch.resolvedBasenames.length > 0) {
-        for (const resolved of dispatch.resolvedBasenames) {
-          result.paths.push(resolved);
-        }
-      }
-      if (dispatch.unparseable) {
-        result.unparseable = true;
-      }
-    } else if (isPathShaped(token)) {
-      const resolved = resolvePathToken(token);
-      result.paths.push(resolved);
-    }
-    prevToken = token;
-  }
-  return result;
-}
-function isPathShaped(token) {
-  if (token.includes("/")) return true;
-  if (token.startsWith(".")) return true;
-  if (SENSITIVE_BASENAME_RE.test(token)) return true;
-  return false;
-}
-function resolvePathToken(token) {
-  const normalized = normalize(token);
-  try {
-    return realpathSync(normalized);
-  } catch (err) {
-    const code = err.code;
-    if (code === "ENOENT") {
-      return resolveNonexistentPathToken(normalized);
-    }
-    return normalized;
-  }
-}
-function resolveNonexistentPathToken(normalizedPath) {
-  let current = normalizedPath;
-  let suffix = "";
-  for (let i = 0; i < 50; i++) {
-    const parent = dirname2(current);
-    if (parent === current) {
-      return normalizedPath;
-    }
-    if (parent === ".") {
-      return normalizedPath;
-    }
-    suffix = suffix ? join(basename(current), suffix) : basename(current);
-    current = parent;
-    try {
-      const resolved = realpathSync(current);
-      if (resolved !== current) {
-        return join(resolved, suffix);
-      }
-      return join(resolved, suffix);
-    } catch {
-      continue;
-    }
-  }
-  return normalizedPath;
-}
-var FORBIDDEN_BASENAMES = [
-  ".env",
-  ".ssh",
-  ".aws",
-  "secrets",
-  "credentials",
-  "id_rsa",
-  "id_dsa",
-  "id_ecdsa",
-  "id_ed25519",
-  ".pem",
-  ".key"
-];
-function scanBashCommand(command, forbiddenBasenames) {
-  const basenames = forbiddenBasenames ?? FORBIDDEN_BASENAMES;
-  const hits = [];
-  for (const basename2 of basenames) {
-    const pattern = buildPattern(basename2);
-    if (pattern.test(command)) {
-      hits.push(basename2);
-    }
-  }
-  return { matched: hits.length > 0, hits };
-}
-function buildPattern(basename2) {
-  const escaped = escapeRegex(basename2);
-  if (basename2.startsWith(".") && basename2.length <= 4 && !isAlphaAfterDot(basename2)) {
-    return new RegExp(`\\w${escaped}(?=$|[\\s;&|<>()'"=\\/])`, "i");
-  }
-  if (basename2.startsWith(".")) {
-    return new RegExp(`(?:^|[\\s;&|<>()\\/'"=])${escaped}(?=$|[\\s;&|<>()\\/'"=.])`, "i");
-  }
-  return new RegExp(`\\b${escaped}\\b`, "i");
-}
-function scanContentForForbiddenBasenames(content, forbiddenBasenames) {
-  const hits = [];
-  for (const basename2 of forbiddenBasenames) {
-    const pattern = buildContentPattern(basename2);
-    if (pattern.test(content)) {
-      hits.push(basename2);
-    }
-  }
-  return { matched: hits.length > 0, hits };
-}
-function buildContentPattern(basename2) {
-  const escaped = escapeRegex(basename2);
-  if (basename2.startsWith(".") && basename2.length <= 4 && !isAlphaAfterDot(basename2)) {
-    return new RegExp(`\\w${escaped}(?=$|[\\s;&|<>()'"=\\/])`, "i");
-  }
-  if (basename2.startsWith(".")) {
-    return new RegExp(`(?:^|[\\s;&|<>()\\/'"=])${escaped}(?=$|[\\s;&|<>()\\/'"=.])`, "i");
-  }
-  return new RegExp(`(?<=[/\\\\]\\.?)${escaped}\\b`, "i");
-}
-function isAlphaAfterDot(s) {
-  return /^\.[a-zA-Z]+$/.test(s);
-}
-function escapeRegex(s) {
-  return s.replace(/[.*+?^${}()|[\]\\]/g, "\\$&");
-}
-function scanGlobPattern(pattern, forbiddenBasenames) {
-  const basenames = forbiddenBasenames ?? FORBIDDEN_BASENAMES;
-  const hits = [];
-  for (const basename2 of basenames) {
-    const re = buildGlobContextPattern(basename2);
-    if (re.test(pattern)) {
-      hits.push(basename2);
-    }
-  }
-  return { matched: hits.length > 0, hits };
-}
-function buildGlobContextPattern(basename2) {
-  const escaped = escapeRegex(basename2);
-  const GLOB_DELIM = String.raw`\s;&|<>()\\/'"=.*?{}\[\]`;
-  if (basename2.startsWith(".") && basename2.length <= 4 && !isAlphaAfterDot(basename2)) {
-    return new RegExp(`[\\w*]${escaped}(?=$|[${GLOB_DELIM}])`, "i");
-  }
-  if (basename2.startsWith(".")) {
-    return new RegExp(`(?:^|[${GLOB_DELIM}])${escaped}(?=$|[${GLOB_DELIM}])`, "i");
-  }
-  return new RegExp(`\\b${escaped}\\b`, "i");
-}
-
 // src/gateway/runtimeConstructionResolvers.ts
 var MAX_RECURSION_DEPTH = 3;
 var INTERPRETER_RE = /\b(?:python[23]?|node|ruby|perl|php)\s+(?:-[cer])\s+(.+)/s;
@@ -1397,9 +991,23 @@ function buildModifiedGrepInput(originalInput, exclusions) {
 }
 
 // src/gateway/server.ts
+import { timingSafeEqual } from "crypto";
 var DEFAULT_PORT = 7847;
 var MAX_BODY_SIZE = 1024 * 1024;
 var GATEWAY_VERSION = "0.1.0";
+function isLoopbackAddress(addr) {
+  if (!addr) return false;
+  return addr === "127.0.0.1" || addr === "::1" || addr === "::ffff:127.0.0.1" || addr.startsWith("127.");
+}
+function constantTimeEqual(a, b) {
+  const ab = Buffer.from(a, "utf-8");
+  const bb = Buffer.from(b, "utf-8");
+  if (ab.length !== bb.length) {
+    timingSafeEqual(bb, bb);
+    return false;
+  }
+  return timingSafeEqual(ab, bb);
+}
 function parseIntentLine(prompt) {
   if (typeof prompt !== "string") return null;
   const firstNonEmpty = prompt.split("\n").find((line) => line.trim().length > 0);
@@ -1440,6 +1048,7 @@ var SentinelGateway = class {
   workspaceIsolation;
   operatorCeiling;
   home;
+  releaseToken;
   server = null;
   running = false;
   signalHandlersInstalled = false;
@@ -1453,6 +1062,7 @@ var SentinelGateway = class {
     this.workspaceIsolation = options.workspaceIsolation ?? process.env.SENTINEL_WORKSPACE_ISOLATION === "1";
     this.operatorCeiling = options.operatorCeiling ?? null;
     this.home = options.home ?? "";
+    this.releaseToken = options.releaseToken ?? null;
     const internal = options;
     if (internal.registry) {
       this.registry = internal.registry;
@@ -1580,6 +1190,10 @@ var SentinelGateway = class {
         return;
       }
     }
+    if (method === "POST" && url === "/api/sentinel/release") {
+      this.handleReleaseRoute(req, res);
+      return;
+    }
     if (method === "POST") {
       const match = url.match(
         /^\/api\/sentinel\/(pre-tool-use|post-tool-use|session-end|user-prompt-submit)\/(.+)$/
@@ -1606,6 +1220,58 @@ var SentinelGateway = class {
     }
     this.sendJson(res, 404, { error: "not found" });
   }
+  /**
+   * Operator release route (Sprint 0.1.1). Loopback-only + token-gated. On a
+   * valid request, calls sentinel.release() on the LIVE instance — flipping the
+   * in-memory mode, writing mode.json, and logging the signed mode_change anchor
+   * in-process (single writer). Never re-reads mode.json or trusts file content.
+   */
+  handleReleaseRoute(req, res) {
+    const remote = req.socket?.remoteAddress;
+    if (!isLoopbackAddress(remote)) {
+      console.warn(`[SENTINEL GATEWAY] /release refused non-loopback origin: ${remote ?? "?"}`);
+      this.sendJson(res, 403, { ok: false, error: "release is loopback-only" });
+      return;
+    }
+    if (!this.releaseToken) {
+      this.sendJson(res, 503, { ok: false, error: "release endpoint not configured" });
+      return;
+    }
+    const provided = req.headers["x-sentinel-token"];
+    const token = typeof provided === "string" ? provided : "";
+    if (!constantTimeEqual(token, this.releaseToken)) {
+      console.warn(`[SENTINEL GATEWAY] /release rejected: invalid token from ${remote}`);
+      this.sendJson(res, 401, { ok: false, error: "invalid or missing token" });
+      return;
+    }
+    this.readBody(req, res, (body) => {
+      let payload;
+      try {
+        payload = JSON.parse(body);
+      } catch {
+        this.sendJson(res, 400, { ok: false, error: "invalid JSON" });
+        return;
+      }
+      const p = payload ?? {};
+      const agentId = typeof p.agentId === "string" ? p.agentId : "";
+      if (!agentId) {
+        this.sendJson(res, 400, { ok: false, error: "agentId required" });
+        return;
+      }
+      const reason = typeof p.reason === "string" ? p.reason : "operator release (live)";
+      const previousMode = this.sentinel.getMode(agentId);
+      this.sentinel.release(agentId, reason).then(() => {
+        this.sendJson(res, 200, {
+          ok: true,
+          agentId,
+          previousMode,
+          mode: this.sentinel.getMode(agentId)
+        });
+      }).catch((err) => {
+        this.sendJson(res, 500, { ok: false, error: String(err.message) });
+      });
+    });
+  }
   // -------------------------------------------------------------------------
   // Endpoint handlers
   // -------------------------------------------------------------------------
@@ -1740,7 +1406,13 @@ var SentinelGateway = class {
       routingId = routed.agentId;
       event.agentId = routingId;
     }
+    let suppressForbiddenBasename = false;
     if (event.action === "command_exec" && event.targets && event.targets.length > 0) {
+      const literalCommand = event.targets[0] ?? "";
+      const decodedImplicated = event.targets.slice(1).some((t) => scanBashCommand(t, FORBIDDEN_BASENAMES).matched);
+      suppressForbiddenBasename = isPositionallySafeMention(literalCommand) && !decodedImplicated;
+    }
+    if (event.action === "command_exec" && event.targets && event.targets.length > 0 && !suppressForbiddenBasename) {
       const allL2Hits = [];
       for (const scanTarget of event.targets) {
         const scan = scanBashCommand(scanTarget, FORBIDDEN_BASENAMES);
@@ -2239,14 +1911,16 @@ async function runGatewayDaemon({
   policyPath,
   port = DEFAULT_PORT
 }) {
-  const { Sentinel: SentinelClass } = await import("./Sentinel-JLQL3YRD.js");
-  const { writePidFile } = await import("./pidManager-ZYC7SICM.js");
+  const { Sentinel: SentinelClass } = await import("./Sentinel-QHMQ67W3.js");
+  const { writePidFile, writeReleaseToken } = await import("./pidManager-DOGVN6ZT.js");
   const { homedir } = await import("os");
+  const { randomBytes } = await import("crypto");
   const { loadPolicy: loadPolicy2, policyToRole: policyToRole2 } = await import("./policyLoader-6KR5VFVV.js");
   const sentinel = await SentinelClass.fromPolicy(policyPath);
   const baseline = await sentinel.computeBaseline("claude-code");
   sentinel.setBaseline("claude-code", baseline);
   const operatorCeiling = policyToRole2(await loadPolicy2(policyPath));
+  const releaseToken = randomBytes(32).toString("hex");
   const gateway = new SentinelGateway({
     port,
     sentinel,
@@ -2254,10 +1928,13 @@ async function runGatewayDaemon({
     agentId: "claude-code",
     workspaceIsolation: process.env.SENTINEL_WORKSPACE_ISOLATION !== "0",
     operatorCeiling,
-    home: homedir()
+    home: homedir(),
+    releaseToken
   });
   await gateway.start();
-  writePidFile(homedir(), process.pid);
+  const home = homedir();
+  writePidFile(home, process.pid);
+  writeReleaseToken(home, releaseToken, gateway.port);
   console.log(`[SENTINEL GATEWAY] PID ${process.pid} written`);
 }
 
@@ -2265,4 +1942,4 @@ export {
   SentinelGateway,
   runGatewayDaemon
 };
-//# sourceMappingURL=chunk-Z3PWIJKT.js.map
+//# sourceMappingURL=chunk-IYC5E7RL.js.map

package/dist/{chunk-CUJKNIKT.js → chunk-LATQNIRW.js}

@@ -3,6 +3,34 @@ import { readFileSync, writeFileSync, unlinkSync, renameSync } from "fs";
 import { execSync } from "child_process";
 import { join } from "path";
 var PID_FILENAME = "sentinel-gateway.pid";
+var TOKEN_FILENAME = "sentinel-gateway.token";
+function releaseTokenPath(home) {
+  return join(home, ".dahlia", TOKEN_FILENAME);
+}
+function writeReleaseToken(home, token, port) {
+  const p = releaseTokenPath(home);
+  const tmp = p + `.tmp.${process.pid}`;
+  writeFileSync(tmp, JSON.stringify({ token, port }) + "\n", { mode: 384 });
+  renameSync(tmp, p);
+}
+function readReleaseToken(home) {
+  try {
+    const raw = readFileSync(releaseTokenPath(home), "utf-8").trim();
+    const j = JSON.parse(raw);
+    if (typeof j.token === "string" && j.token.length > 0 && typeof j.port === "number") {
+      return { token: j.token, port: j.port };
+    }
+    return null;
+  } catch {
+    return null;
+  }
+}
+function removeReleaseToken(home) {
+  try {
+    unlinkSync(releaseTokenPath(home));
+  } catch {
+  }
+}
 function readPidFile(home) {
   try {
     const raw = readFileSync(join(home, ".dahlia", PID_FILENAME), "utf-8").trim();
@@ -53,10 +81,14 @@ function acquireGatewayLock(home) {
 }
 
 export {
+  releaseTokenPath,
+  writeReleaseToken,
+  readReleaseToken,
+  removeReleaseToken,
   readPidFile,
   writePidFile,
   removePidFile,
   verifyPidIsGateway,
   acquireGatewayLock
 };
-//# sourceMappingURL=chunk-CUJKNIKT.js.map
+//# sourceMappingURL=chunk-LATQNIRW.js.map