npm - @vellumai/assistant - Versions diffs - 0.3.0 - Mend

@vellumai/assistant 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (1068) hide show

package/.dockerignore +27 -0
package/.env.example +22 -0
package/Dockerfile +99 -0
package/Dockerfile.sandbox +5 -0
package/README.md +248 -0
package/bun.lock +1723 -0
package/bunfig.toml +2 -0
package/docs/skills.md +158 -0
package/drizzle/0000_dizzy_maggott.sql +301 -0
package/drizzle/meta/0000_snapshot.json +1999 -0
package/drizzle/meta/_journal.json +13 -0
package/drizzle.config.ts +7 -0
package/eslint.config.mjs +17 -0
package/hook-templates/debug-prompt-logger/hook.json +7 -0
package/hook-templates/debug-prompt-logger/run.sh +68 -0
package/knip.json +9 -0
package/package.json +70 -0
package/scripts/capture-x-graphql.ts +545 -0
package/scripts/ipc/check-contract-inventory.ts +104 -0
package/scripts/ipc/check-swift-decoder-drift.ts +166 -0
package/scripts/ipc/generate-swift.ts +492 -0
package/scripts/test-filesystem-tools.sh +48 -0
package/scripts/test.sh +127 -0
package/src/__tests__/__snapshots__/ipc-snapshot.test.ts.snap +2485 -0
package/src/__tests__/account-registry.test.ts +245 -0
package/src/__tests__/active-skill-tools.test.ts +378 -0
package/src/__tests__/agent-heartbeat-service.test.ts +250 -0
package/src/__tests__/agent-loop-thinking.test.ts +81 -0
package/src/__tests__/agent-loop.test.ts +1135 -0
package/src/__tests__/anthropic-provider.test.ts +778 -0
package/src/__tests__/app-builder-tool-scripts.test.ts +290 -0
package/src/__tests__/app-bundler.test.ts +292 -0
package/src/__tests__/app-executors.test.ts +613 -0
package/src/__tests__/app-git-history.test.ts +176 -0
package/src/__tests__/app-git-service.test.ts +169 -0
package/src/__tests__/app-open-proxy.test.ts +62 -0
package/src/__tests__/asset-materialize-tool.test.ts +452 -0
package/src/__tests__/asset-search-tool.test.ts +477 -0
package/src/__tests__/assistant-attachment-directive.test.ts +401 -0
package/src/__tests__/assistant-attachments.test.ts +437 -0
package/src/__tests__/assistant-event-hub.test.ts +226 -0
package/src/__tests__/assistant-event.test.ts +123 -0
package/src/__tests__/assistant-events-sse-hardening.test.ts +315 -0
package/src/__tests__/attachments-store.test.ts +476 -0
package/src/__tests__/attachments.test.ts +134 -0
package/src/__tests__/audit-log-rotation.test.ts +154 -0
package/src/__tests__/browser-fill-credential.test.ts +309 -0
package/src/__tests__/browser-manager.test.ts +203 -0
package/src/__tests__/browser-runtime-check.test.ts +55 -0
package/src/__tests__/browser-skill-baseline-tool-payload.test.ts +68 -0
package/src/__tests__/browser-skill-endstate.test.ts +195 -0
package/src/__tests__/bundle-scanner.test.ts +313 -0
package/src/__tests__/call-bridge.test.ts +517 -0
package/src/__tests__/call-constants.test.ts +40 -0
package/src/__tests__/call-domain.test.ts +163 -0
package/src/__tests__/call-orchestrator.test.ts +625 -0
package/src/__tests__/call-recovery.test.ts +518 -0
package/src/__tests__/call-routes-http.test.ts +699 -0
package/src/__tests__/call-state-machine.test.ts +143 -0
package/src/__tests__/call-state.test.ts +174 -0
package/src/__tests__/call-store.test.ts +691 -0
package/src/__tests__/channel-approval-routes.test.ts +2356 -0
package/src/__tests__/channel-approval.test.ts +299 -0
package/src/__tests__/channel-approvals.test.ts +521 -0
package/src/__tests__/channel-delivery-store.test.ts +447 -0
package/src/__tests__/channel-guardian.test.ts +1005 -0
package/src/__tests__/checker.test.ts +3519 -0
package/src/__tests__/clarification-resolver.test.ts +159 -0
package/src/__tests__/classifier.test.ts +67 -0
package/src/__tests__/claude-code-skill-regression.test.ts +127 -0
package/src/__tests__/claude-code-tool-profiles.test.ts +88 -0
package/src/__tests__/cli-discover.test.ts +85 -0
package/src/__tests__/cli.test.ts +26 -0
package/src/__tests__/clipboard.test.ts +80 -0
package/src/__tests__/commit-guarantee.test.ts +335 -0
package/src/__tests__/commit-message-enrichment-service.test.ts +550 -0
package/src/__tests__/compaction.benchmark.test.ts +176 -0
package/src/__tests__/computer-use-session-compaction.test.ts +132 -0
package/src/__tests__/computer-use-session-lifecycle.test.ts +293 -0
package/src/__tests__/computer-use-session-working-dir.test.ts +117 -0
package/src/__tests__/computer-use-skill-baseline.test.ts +74 -0
package/src/__tests__/computer-use-skill-endstate.test.ts +89 -0
package/src/__tests__/computer-use-skill-lifecycle-cleanup.test.ts +217 -0
package/src/__tests__/computer-use-skill-manifest-regression.test.ts +107 -0
package/src/__tests__/computer-use-skill-proxy-bridge.test.ts +54 -0
package/src/__tests__/computer-use-tools.test.ts +250 -0
package/src/__tests__/config-schema.test.ts +1462 -0
package/src/__tests__/conflict-intent-tokenization.test.ts +141 -0
package/src/__tests__/conflict-policy.test.ts +121 -0
package/src/__tests__/conflict-store.test.ts +332 -0
package/src/__tests__/connection-policy.test.ts +102 -0
package/src/__tests__/contacts-tools.test.ts +331 -0
package/src/__tests__/context-memory-e2e.test.ts +434 -0
package/src/__tests__/context-token-estimator.test.ts +135 -0
package/src/__tests__/context-window-manager.test.ts +376 -0
package/src/__tests__/contradiction-checker.test.ts +314 -0
package/src/__tests__/conversation-store.test.ts +612 -0
package/src/__tests__/credential-broker-browser-fill.test.ts +517 -0
package/src/__tests__/credential-broker-server-use.test.ts +554 -0
package/src/__tests__/credential-broker.test.ts +167 -0
package/src/__tests__/credential-host-pattern-match.test.ts +104 -0
package/src/__tests__/credential-metadata-store.test.ts +779 -0
package/src/__tests__/credential-policy-validate.test.ts +121 -0
package/src/__tests__/credential-resolve.test.ts +328 -0
package/src/__tests__/credential-security-e2e.test.ts +352 -0
package/src/__tests__/credential-security-invariants.test.ts +583 -0
package/src/__tests__/credential-selection.test.ts +354 -0
package/src/__tests__/credential-vault-unit.test.ts +780 -0
package/src/__tests__/credential-vault.test.ts +852 -0
package/src/__tests__/daemon-assistant-events.test.ts +164 -0
package/src/__tests__/daemon-server-session-init.test.ts +522 -0
package/src/__tests__/date-context.test.ts +373 -0
package/src/__tests__/db-schedule-syntax-migration.test.ts +129 -0
package/src/__tests__/delete-managed-skill-tool.test.ts +97 -0
package/src/__tests__/diff.test.ts +121 -0
package/src/__tests__/domain-normalize.test.ts +112 -0
package/src/__tests__/domain-policy.test.ts +124 -0
package/src/__tests__/doordash-client.test.ts +186 -0
package/src/__tests__/doordash-session.test.ts +152 -0
package/src/__tests__/dynamic-page-surface.test.ts +91 -0
package/src/__tests__/dynamic-skill-workflow-prompt.test.ts +132 -0
package/src/__tests__/edit-engine.test.ts +180 -0
package/src/__tests__/elevenlabs-client.test.ts +271 -0
package/src/__tests__/email-cli.test.ts +283 -0
package/src/__tests__/encrypted-store.test.ts +332 -0
package/src/__tests__/entity-extractor.test.ts +190 -0
package/src/__tests__/ephemeral-permissions.test.ts +362 -0
package/src/__tests__/evaluate-typescript-tool.test.ts +286 -0
package/src/__tests__/event-bus.test.ts +222 -0
package/src/__tests__/file-edit-tool.test.ts +122 -0
package/src/__tests__/file-ops-service.test.ts +330 -0
package/src/__tests__/file-read-tool.test.ts +75 -0
package/src/__tests__/file-write-tool.test.ts +113 -0
package/src/__tests__/filesystem-tools.test.ts +579 -0
package/src/__tests__/fixtures/credential-security-fixtures.ts +181 -0
package/src/__tests__/fixtures/media-reuse-fixtures.ts +126 -0
package/src/__tests__/fixtures/mock-signup-server.ts +387 -0
package/src/__tests__/fixtures/proxy-fixtures.ts +147 -0
package/src/__tests__/followup-tools.test.ts +303 -0
package/src/__tests__/forbidden-legacy-symbols.test.ts +71 -0
package/src/__tests__/fuzzy-match-property.test.ts +216 -0
package/src/__tests__/fuzzy-match.test.ts +138 -0
package/src/__tests__/gateway-only-enforcement.test.ts +631 -0
package/src/__tests__/gemini-image-service.test.ts +261 -0
package/src/__tests__/gemini-provider.test.ts +651 -0
package/src/__tests__/get-weather.test.ts +318 -0
package/src/__tests__/gmail-integration.test.ts +73 -0
package/src/__tests__/handlers-add-trust-rule-metadata.test.ts +202 -0
package/src/__tests__/handlers-cu-observation-blob.test.ts +352 -0
package/src/__tests__/handlers-ipc-blob-probe.test.ts +191 -0
package/src/__tests__/handlers-slack-config.test.ts +200 -0
package/src/__tests__/handlers-task-submit-slash.test.ts +38 -0
package/src/__tests__/handlers-telegram-config.test.ts +968 -0
package/src/__tests__/handlers-twilio-config.test.ts +659 -0
package/src/__tests__/handlers-twitter-config.test.ts +858 -0
package/src/__tests__/headless-browser-interactions.test.ts +536 -0
package/src/__tests__/headless-browser-navigate.test.ts +211 -0
package/src/__tests__/headless-browser-read-tools.test.ts +261 -0
package/src/__tests__/headless-browser-snapshot.test.ts +185 -0
package/src/__tests__/history-repair-observability.test.ts +56 -0
package/src/__tests__/history-repair.test.ts +510 -0
package/src/__tests__/home-base-bootstrap.test.ts +82 -0
package/src/__tests__/hooks-blocking.test.ts +128 -0
package/src/__tests__/hooks-cli.test.ts +144 -0
package/src/__tests__/hooks-config.test.ts +93 -0
package/src/__tests__/hooks-discovery.test.ts +199 -0
package/src/__tests__/hooks-integration.test.ts +189 -0
package/src/__tests__/hooks-manager.test.ts +187 -0
package/src/__tests__/hooks-runner.test.ts +182 -0
package/src/__tests__/hooks-settings.test.ts +154 -0
package/src/__tests__/hooks-templates.test.ts +137 -0
package/src/__tests__/hooks-ts-runner.test.ts +125 -0
package/src/__tests__/hooks-watch.test.ts +100 -0
package/src/__tests__/host-file-edit-tool.test.ts +228 -0
package/src/__tests__/host-file-read-tool.test.ts +123 -0
package/src/__tests__/host-file-write-tool.test.ts +136 -0
package/src/__tests__/host-shell-tool.test.ts +562 -0
package/src/__tests__/ingress-reconcile.test.ts +581 -0
package/src/__tests__/ingress-url-consistency.test.ts +214 -0
package/src/__tests__/intent-routing.test.ts +259 -0
package/src/__tests__/ipc-blob-store.test.ts +315 -0
package/src/__tests__/ipc-contract-inventory.test.ts +54 -0
package/src/__tests__/ipc-contract.test.ts +74 -0
package/src/__tests__/ipc-protocol.test.ts +113 -0
package/src/__tests__/ipc-roundtrip.benchmark.test.ts +237 -0
package/src/__tests__/ipc-snapshot.test.ts +1769 -0
package/src/__tests__/ipc-validate.test.ts +407 -0
package/src/__tests__/key-migration.test.ts +206 -0
package/src/__tests__/keychain.test.ts +258 -0
package/src/__tests__/llm-usage-store.test.ts +221 -0
package/src/__tests__/managed-skill-lifecycle.test.ts +257 -0
package/src/__tests__/managed-store.test.ts +608 -0
package/src/__tests__/media-generate-image.test.ts +238 -0
package/src/__tests__/media-reuse-story.e2e.test.ts +676 -0
package/src/__tests__/media-visibility-policy.test.ts +141 -0
package/src/__tests__/memory-context-benchmark.benchmark.test.ts +235 -0
package/src/__tests__/memory-lifecycle-e2e.test.ts +481 -0
package/src/__tests__/memory-query-builder.test.ts +59 -0
package/src/__tests__/memory-recall-quality.test.ts +846 -0
package/src/__tests__/memory-regressions.experimental.test.ts +538 -0
package/src/__tests__/memory-regressions.test.ts +4435 -0
package/src/__tests__/memory-retrieval-budget.test.ts +49 -0
package/src/__tests__/memory-retrieval.benchmark.test.ts +430 -0
package/src/__tests__/migration-cli-flows.test.ts +169 -0
package/src/__tests__/migration-ordering.test.ts +249 -0
package/src/__tests__/mock-signup-server.test.ts +528 -0
package/src/__tests__/oauth-callback-registry.test.ts +92 -0
package/src/__tests__/oauth2-gateway-transport.test.ts +285 -0
package/src/__tests__/onboarding-starter-tasks.test.ts +176 -0
package/src/__tests__/onboarding-template-contract.test.ts +58 -0
package/src/__tests__/openai-provider.test.ts +753 -0
package/src/__tests__/parallel-tool.benchmark.test.ts +294 -0
package/src/__tests__/parser.test.ts +472 -0
package/src/__tests__/path-classifier.test.ts +73 -0
package/src/__tests__/path-policy.test.ts +435 -0
package/src/__tests__/platform-move-helper.test.ts +99 -0
package/src/__tests__/platform-socket-path.test.ts +52 -0
package/src/__tests__/platform-workspace-migration.test.ts +1000 -0
package/src/__tests__/platform.test.ts +131 -0
package/src/__tests__/playbook-execution.test.ts +502 -0
package/src/__tests__/playbook-tools.test.ts +340 -0
package/src/__tests__/prebuilt-home-base-seed.test.ts +75 -0
package/src/__tests__/pricing.test.ts +256 -0
package/src/__tests__/profile-compiler.test.ts +374 -0
package/src/__tests__/provider-commit-message-generator.test.ts +342 -0
package/src/__tests__/provider-registry-ollama.test.ts +16 -0
package/src/__tests__/provider-streaming.benchmark.test.ts +773 -0
package/src/__tests__/proxy-approval-callback.test.ts +601 -0
package/src/__tests__/public-ingress-urls.test.ts +256 -0
package/src/__tests__/qdrant-manager.test.ts +267 -0
package/src/__tests__/ratelimit.test.ts +297 -0
package/src/__tests__/recurrence-engine-rruleset.test.ts +175 -0
package/src/__tests__/recurrence-engine.test.ts +78 -0
package/src/__tests__/recurrence-types.test.ts +79 -0
package/src/__tests__/registry.test.ts +494 -0
package/src/__tests__/relay-server.test.ts +688 -0
package/src/__tests__/reminder-store.test.ts +223 -0
package/src/__tests__/reminder.test.ts +229 -0
package/src/__tests__/request-file-tool.test.ts +158 -0
package/src/__tests__/run-orchestrator-assistant-events.test.ts +227 -0
package/src/__tests__/run-orchestrator.test.ts +425 -0
package/src/__tests__/runtime-attachment-metadata.test.ts +189 -0
package/src/__tests__/runtime-events-sse-parity.test.ts +343 -0
package/src/__tests__/runtime-events-sse.test.ts +162 -0
package/src/__tests__/runtime-runs-http.test.ts +438 -0
package/src/__tests__/runtime-runs.test.ts +260 -0
package/src/__tests__/sandbox-diagnostics.test.ts +408 -0
package/src/__tests__/sandbox-host-parity.test.ts +950 -0
package/src/__tests__/scaffold-managed-skill-tool.test.ts +253 -0
package/src/__tests__/schedule-store.test.ts +484 -0
package/src/__tests__/schedule-tools.test.ts +783 -0
package/src/__tests__/scheduler-recurrence.test.ts +430 -0
package/src/__tests__/script-proxy-certs.test.ts +90 -0
package/src/__tests__/script-proxy-connect-tunnel.test.ts +177 -0
package/src/__tests__/script-proxy-decision-trace.test.ts +156 -0
package/src/__tests__/script-proxy-http-forwarder.test.ts +281 -0
package/src/__tests__/script-proxy-injection-runtime.test.ts +401 -0
package/src/__tests__/script-proxy-mitm-handler.test.ts +407 -0
package/src/__tests__/script-proxy-policy-runtime.test.ts +287 -0
package/src/__tests__/script-proxy-policy.test.ts +310 -0
package/src/__tests__/script-proxy-rewrite-specificity.test.ts +135 -0
package/src/__tests__/script-proxy-router.test.ts +180 -0
package/src/__tests__/script-proxy-session-manager.test.ts +382 -0
package/src/__tests__/script-proxy-session-runtime.test.ts +113 -0
package/src/__tests__/secret-allowlist.test.ts +230 -0
package/src/__tests__/secret-ingress-handler.test.ts +110 -0
package/src/__tests__/secret-onetime-send.test.ts +130 -0
package/src/__tests__/secret-prompt-log-hygiene.test.ts +106 -0
package/src/__tests__/secret-response-routing.test.ts +93 -0
package/src/__tests__/secret-scanner-executor.test.ts +348 -0
package/src/__tests__/secret-scanner.test.ts +900 -0
package/src/__tests__/secure-keys.test.ts +323 -0
package/src/__tests__/server-history-render.test.ts +431 -0
package/src/__tests__/session-abort-tool-results.test.ts +240 -0
package/src/__tests__/session-conflict-gate.test.ts +1136 -0
package/src/__tests__/session-error.test.ts +369 -0
package/src/__tests__/session-evictor.test.ts +188 -0
package/src/__tests__/session-init.benchmark.test.ts +465 -0
package/src/__tests__/session-load-history-repair.test.ts +222 -0
package/src/__tests__/session-pre-run-repair.test.ts +213 -0
package/src/__tests__/session-process-bridge.test.ts +242 -0
package/src/__tests__/session-profile-injection.test.ts +444 -0
package/src/__tests__/session-provider-retry-repair.test.ts +306 -0
package/src/__tests__/session-queue.test.ts +1535 -0
package/src/__tests__/session-runtime-assembly.test.ts +476 -0
package/src/__tests__/session-runtime-workspace.test.ts +183 -0
package/src/__tests__/session-skill-tools.test.ts +2431 -0
package/src/__tests__/session-slash-known.test.ts +368 -0
package/src/__tests__/session-slash-queue.test.ts +288 -0
package/src/__tests__/session-slash-unknown.test.ts +271 -0
package/src/__tests__/session-surfaces-task-progress.test.ts +104 -0
package/src/__tests__/session-tool-setup-app-refresh.test.ts +473 -0
package/src/__tests__/session-tool-setup-memory-scope.test.ts +140 -0
package/src/__tests__/session-tool-setup-side-effect-flag.test.ts +140 -0
package/src/__tests__/session-undo.test.ts +75 -0
package/src/__tests__/session-workspace-cache-state.test.ts +246 -0
package/src/__tests__/session-workspace-injection.test.ts +327 -0
package/src/__tests__/session-workspace-tool-tracking.test.ts +240 -0
package/src/__tests__/shared-filesystem-errors.test.ts +78 -0
package/src/__tests__/shell-credential-ref.test.ts +187 -0
package/src/__tests__/shell-identity.test.ts +256 -0
package/src/__tests__/shell-parser-fuzz.test.ts +544 -0
package/src/__tests__/shell-parser-property.test.ts +433 -0
package/src/__tests__/shell-tool-proxy-mode.test.ts +272 -0
package/src/__tests__/signup-e2e.test.ts +353 -0
package/src/__tests__/size-guard.test.ts +117 -0
package/src/__tests__/skill-include-graph.test.ts +303 -0
package/src/__tests__/skill-load-tool.test.ts +409 -0
package/src/__tests__/skill-projection.benchmark.test.ts +338 -0
package/src/__tests__/skill-script-runner-host.test.ts +489 -0
package/src/__tests__/skill-script-runner-sandbox.test.ts +349 -0
package/src/__tests__/skill-script-runner.test.ts +159 -0
package/src/__tests__/skill-tool-factory.test.ts +252 -0
package/src/__tests__/skill-tool-manifest.test.ts +658 -0
package/src/__tests__/skill-version-hash.test.ts +182 -0
package/src/__tests__/skills.test.ts +680 -0
package/src/__tests__/slash-commands-catalog.test.ts +86 -0
package/src/__tests__/slash-commands-parser.test.ts +119 -0
package/src/__tests__/slash-commands-resolver.test.ts +193 -0
package/src/__tests__/slash-commands-rewrite.test.ts +39 -0
package/src/__tests__/speaker-identification.test.ts +52 -0
package/src/__tests__/starter-bundle.test.ts +136 -0
package/src/__tests__/starter-task-flow.test.ts +143 -0
package/src/__tests__/subagent-manager-notify.test.ts +404 -0
package/src/__tests__/subagent-tools.test.ts +801 -0
package/src/__tests__/subagent-types.test.ts +78 -0
package/src/__tests__/swarm-orchestrator.test.ts +428 -0
package/src/__tests__/swarm-plan-validator.test.ts +330 -0
package/src/__tests__/swarm-recursion.test.ts +165 -0
package/src/__tests__/swarm-router-planner.test.ts +208 -0
package/src/__tests__/swarm-session-integration.test.ts +274 -0
package/src/__tests__/swarm-tool.test.ts +145 -0
package/src/__tests__/swarm-worker-backend.test.ts +129 -0
package/src/__tests__/swarm-worker-runner.test.ts +272 -0
package/src/__tests__/system-prompt.test.ts +439 -0
package/src/__tests__/task-compiler.test.ts +284 -0
package/src/__tests__/task-management-tools.test.ts +936 -0
package/src/__tests__/task-runner.test.ts +216 -0
package/src/__tests__/task-scheduler.test.ts +217 -0
package/src/__tests__/task-tools.test.ts +595 -0
package/src/__tests__/terminal-sandbox-docker.test.ts +1064 -0
package/src/__tests__/terminal-sandbox.integration.test.ts +178 -0
package/src/__tests__/terminal-sandbox.test.ts +202 -0
package/src/__tests__/terminal-tools.test.ts +840 -0
package/src/__tests__/test-support/browser-skill-harness.ts +90 -0
package/src/__tests__/test-support/computer-use-skill-harness.ts +45 -0
package/src/__tests__/tool-audit-listener.test.ts +113 -0
package/src/__tests__/tool-domain-event-publisher.test.ts +253 -0
package/src/__tests__/tool-execution-pipeline.benchmark.test.ts +500 -0
package/src/__tests__/tool-executor-lifecycle-events.test.ts +516 -0
package/src/__tests__/tool-executor-redaction.test.ts +289 -0
package/src/__tests__/tool-executor-shell-integration.test.ts +301 -0
package/src/__tests__/tool-executor.test.ts +1989 -0
package/src/__tests__/tool-metrics-listener.test.ts +225 -0
package/src/__tests__/tool-notification-listener.test.ts +49 -0
package/src/__tests__/tool-permission-simulate-handler.test.ts +336 -0
package/src/__tests__/tool-policy.test.ts +54 -0
package/src/__tests__/tool-profiling-listener.test.ts +268 -0
package/src/__tests__/tool-result-truncation.test.ts +217 -0
package/src/__tests__/tool-trace-listener.test.ts +226 -0
package/src/__tests__/top-level-renderer.test.ts +121 -0
package/src/__tests__/top-level-scanner.test.ts +141 -0
package/src/__tests__/trace-emitter.test.ts +173 -0
package/src/__tests__/trust-store.test.ts +1605 -0
package/src/__tests__/turn-commit.test.ts +554 -0
package/src/__tests__/twilio-provider.test.ts +329 -0
package/src/__tests__/twilio-routes-elevenlabs.test.ts +375 -0
package/src/__tests__/twilio-routes-twiml.test.ts +127 -0
package/src/__tests__/twilio-routes.test.ts +577 -0
package/src/__tests__/twitter-auth-handler.test.ts +667 -0
package/src/__tests__/twitter-cli-error-shaping.test.ts +208 -0
package/src/__tests__/twitter-cli-routing.test.ts +252 -0
package/src/__tests__/twitter-oauth-client.test.ts +209 -0
package/src/__tests__/url-safety.test.ts +418 -0
package/src/__tests__/view-image-tool.test.ts +217 -0
package/src/__tests__/weather-skill-regression.test.ts +225 -0
package/src/__tests__/web-fetch.test.ts +869 -0
package/src/__tests__/web-search.test.ts +584 -0
package/src/__tests__/workspace-git-service.test.ts +1153 -0
package/src/__tests__/workspace-heartbeat-service.test.ts +486 -0
package/src/__tests__/workspace-lifecycle.test.ts +292 -0
package/src/__tests__/workspace-policy.test.ts +213 -0
package/src/agent/attachments.ts +35 -0
package/src/agent/loop.ts +500 -0
package/src/agent/message-types.ts +17 -0
package/src/agent-heartbeat/agent-heartbeat-service.ts +155 -0
package/src/autonomy/autonomy-resolver.ts +60 -0
package/src/autonomy/autonomy-store.ts +122 -0
package/src/autonomy/disposition-mapper.ts +31 -0
package/src/autonomy/index.ts +11 -0
package/src/autonomy/types.ts +39 -0
package/src/bundler/app-bundler.ts +295 -0
package/src/bundler/bundle-scanner.ts +535 -0
package/src/bundler/bundle-signer.ts +124 -0
package/src/bundler/manifest.ts +21 -0
package/src/bundler/signature-verifier.ts +184 -0
package/src/calls/call-bridge.ts +168 -0
package/src/calls/call-constants.ts +48 -0
package/src/calls/call-domain.ts +430 -0
package/src/calls/call-orchestrator.ts +498 -0
package/src/calls/call-recovery.ts +207 -0
package/src/calls/call-state-machine.ts +68 -0
package/src/calls/call-state.ts +87 -0
package/src/calls/call-store.ts +422 -0
package/src/calls/elevenlabs-client.ts +97 -0
package/src/calls/elevenlabs-config.ts +31 -0
package/src/calls/relay-server.ts +390 -0
package/src/calls/speaker-identification.ts +213 -0
package/src/calls/twilio-config.ts +45 -0
package/src/calls/twilio-provider.ts +263 -0
package/src/calls/twilio-rest.ts +156 -0
package/src/calls/twilio-routes.ts +311 -0
package/src/calls/types.ts +39 -0
package/src/calls/voice-provider.ts +14 -0
package/src/calls/voice-quality.ts +114 -0
package/src/cli/autonomy.ts +188 -0
package/src/cli/config-commands.ts +334 -0
package/src/cli/contacts.ts +149 -0
package/src/cli/core-commands.ts +784 -0
package/src/cli/doordash.ts +1055 -0
package/src/cli/email-guardrails.ts +200 -0
package/src/cli/email.ts +405 -0
package/src/cli/ipc-client.ts +82 -0
package/src/cli/main-screen.tsx +53 -0
package/src/cli/map.ts +270 -0
package/src/cli/twitter.ts +754 -0
package/src/cli.ts +918 -0
package/src/commands/__tests__/cc-command-registry.test.ts +319 -0
package/src/commands/cc-command-registry.ts +209 -0
package/src/config/bundled-skills/.gitkeep +0 -0
package/src/config/bundled-skills/agentmail/SKILL.md +128 -0
package/src/config/bundled-skills/agentmail/icon.svg +21 -0
package/src/config/bundled-skills/app-builder/SKILL.md +1404 -0
package/src/config/bundled-skills/app-builder/TOOLS.json +279 -0
package/src/config/bundled-skills/app-builder/icon.svg +9 -0
package/src/config/bundled-skills/app-builder/tools/app-create.ts +15 -0
package/src/config/bundled-skills/app-builder/tools/app-delete.ts +10 -0
package/src/config/bundled-skills/app-builder/tools/app-file-edit.ts +11 -0
package/src/config/bundled-skills/app-builder/tools/app-file-list.ts +10 -0
package/src/config/bundled-skills/app-builder/tools/app-file-read.ts +18 -0
package/src/config/bundled-skills/app-builder/tools/app-file-write.ts +11 -0
package/src/config/bundled-skills/app-builder/tools/app-list.ts +10 -0
package/src/config/bundled-skills/app-builder/tools/app-query.ts +10 -0
package/src/config/bundled-skills/app-builder/tools/app-update.ts +20 -0
package/src/config/bundled-skills/browser/SKILL.md +28 -0
package/src/config/bundled-skills/browser/TOOLS.json +234 -0
package/src/config/bundled-skills/browser/tools/browser-click.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-close.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-extract.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-fill-credential.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-navigate.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-press-key.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-screenshot.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-snapshot.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-type.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-wait-for.ts +9 -0
package/src/config/bundled-skills/claude-code/SKILL.md +50 -0
package/src/config/bundled-skills/claude-code/TOOLS.json +40 -0
package/src/config/bundled-skills/claude-code/tools/claude-code.ts +9 -0
package/src/config/bundled-skills/computer-use/SKILL.md +17 -0
package/src/config/bundled-skills/computer-use/TOOLS.json +326 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-click.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-done.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-double-click.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-drag.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-key.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-open-app.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-request-control.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-respond.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-right-click.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-run-applescript.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-scroll.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-type-text.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-wait.ts +9 -0
package/src/config/bundled-skills/contacts/SKILL.md +39 -0
package/src/config/bundled-skills/contacts/TOOLS.json +122 -0
package/src/config/bundled-skills/contacts/tools/contact-merge.ts +57 -0
package/src/config/bundled-skills/contacts/tools/contact-search.ts +60 -0
package/src/config/bundled-skills/contacts/tools/contact-upsert.ts +66 -0
package/src/config/bundled-skills/document/SKILL.md +26 -0
package/src/config/bundled-skills/document/TOOLS.json +53 -0
package/src/config/bundled-skills/document/tools/document-create.ts +9 -0
package/src/config/bundled-skills/document/tools/document-update.ts +9 -0
package/src/config/bundled-skills/doordash/SKILL.md +163 -0
package/src/config/bundled-skills/followups/SKILL.md +32 -0
package/src/config/bundled-skills/followups/TOOLS.json +100 -0
package/src/config/bundled-skills/followups/icon.svg +24 -0
package/src/config/bundled-skills/followups/tools/followup-create.ts +9 -0
package/src/config/bundled-skills/followups/tools/followup-list.ts +9 -0
package/src/config/bundled-skills/followups/tools/followup-resolve.ts +9 -0
package/src/config/bundled-skills/google-calendar/SKILL.md +51 -0
package/src/config/bundled-skills/google-calendar/TOOLS.json +108 -0
package/src/config/bundled-skills/google-calendar/calendar-client.ts +165 -0
package/src/config/bundled-skills/google-calendar/tools/calendar-check-availability.ts +21 -0
package/src/config/bundled-skills/google-calendar/tools/calendar-create-event.ts +42 -0
package/src/config/bundled-skills/google-calendar/tools/calendar-get-event.ts +13 -0
package/src/config/bundled-skills/google-calendar/tools/calendar-list-events.ts +30 -0
package/src/config/bundled-skills/google-calendar/tools/calendar-rsvp.ts +41 -0
package/src/config/bundled-skills/google-calendar/tools/shared.ts +18 -0
package/src/config/bundled-skills/google-calendar/types.ts +97 -0
package/src/config/bundled-skills/image-studio/SKILL.md +32 -0
package/src/config/bundled-skills/image-studio/TOOLS.json +42 -0
package/src/config/bundled-skills/image-studio/tools/media-generate-image.ts +115 -0
package/src/config/bundled-skills/macos-automation/SKILL.md +66 -0
package/src/config/bundled-skills/messaging/SKILL.md +153 -0
package/src/config/bundled-skills/messaging/TOOLS.json +357 -0
package/src/config/bundled-skills/messaging/tools/gmail-archive.ts +23 -0
package/src/config/bundled-skills/messaging/tools/gmail-batch-archive.ts +23 -0
package/src/config/bundled-skills/messaging/tools/gmail-batch-label.ts +25 -0
package/src/config/bundled-skills/messaging/tools/gmail-draft.ts +26 -0
package/src/config/bundled-skills/messaging/tools/gmail-label.ts +25 -0
package/src/config/bundled-skills/messaging/tools/gmail-trash.ts +23 -0
package/src/config/bundled-skills/messaging/tools/gmail-unsubscribe.ts +84 -0
package/src/config/bundled-skills/messaging/tools/messaging-analyze-activity.ts +18 -0
package/src/config/bundled-skills/messaging/tools/messaging-analyze-style.ts +125 -0
package/src/config/bundled-skills/messaging/tools/messaging-auth-test.ts +16 -0
package/src/config/bundled-skills/messaging/tools/messaging-draft.ts +49 -0
package/src/config/bundled-skills/messaging/tools/messaging-list-conversations.ts +21 -0
package/src/config/bundled-skills/messaging/tools/messaging-mark-read.ts +25 -0
package/src/config/bundled-skills/messaging/tools/messaging-read.ts +28 -0
package/src/config/bundled-skills/messaging/tools/messaging-reply.ts +32 -0
package/src/config/bundled-skills/messaging/tools/messaging-search.ts +22 -0
package/src/config/bundled-skills/messaging/tools/messaging-send.ts +31 -0
package/src/config/bundled-skills/messaging/tools/shared.ts +76 -0
package/src/config/bundled-skills/messaging/tools/slack-add-reaction.ts +25 -0
package/src/config/bundled-skills/messaging/tools/slack-leave-channel.ts +23 -0
package/src/config/bundled-skills/phone-calls/SKILL.md +533 -0
package/src/config/bundled-skills/playbooks/SKILL.md +31 -0
package/src/config/bundled-skills/playbooks/TOOLS.json +126 -0
package/src/config/bundled-skills/playbooks/tools/playbook-create.ts +98 -0
package/src/config/bundled-skills/playbooks/tools/playbook-delete.ts +54 -0
package/src/config/bundled-skills/playbooks/tools/playbook-list.ts +76 -0
package/src/config/bundled-skills/playbooks/tools/playbook-update.ts +113 -0
package/src/config/bundled-skills/public-ingress/SKILL.md +200 -0
package/src/config/bundled-skills/reminder/SKILL.md +20 -0
package/src/config/bundled-skills/reminder/TOOLS.json +67 -0
package/src/config/bundled-skills/reminder/tools/reminder-cancel.ts +9 -0
package/src/config/bundled-skills/reminder/tools/reminder-create.ts +9 -0
package/src/config/bundled-skills/reminder/tools/reminder-list.ts +9 -0
package/src/config/bundled-skills/schedule/SKILL.md +74 -0
package/src/config/bundled-skills/schedule/TOOLS.json +135 -0
package/src/config/bundled-skills/schedule/tools/schedule-create.ts +9 -0
package/src/config/bundled-skills/schedule/tools/schedule-delete.ts +9 -0
package/src/config/bundled-skills/schedule/tools/schedule-list.ts +9 -0
package/src/config/bundled-skills/schedule/tools/schedule-update.ts +9 -0
package/src/config/bundled-skills/self-upgrade/SKILL.md +68 -0
package/src/config/bundled-skills/start-the-day/SKILL.md +70 -0
package/src/config/bundled-skills/start-the-day/icon.svg +13 -0
package/src/config/bundled-skills/subagent/SKILL.md +25 -0
package/src/config/bundled-skills/subagent/TOOLS.json +107 -0
package/src/config/bundled-skills/subagent/tools/subagent-abort.ts +9 -0
package/src/config/bundled-skills/subagent/tools/subagent-message.ts +9 -0
package/src/config/bundled-skills/subagent/tools/subagent-read.ts +9 -0
package/src/config/bundled-skills/subagent/tools/subagent-spawn.ts +9 -0
package/src/config/bundled-skills/subagent/tools/subagent-status.ts +9 -0
package/src/config/bundled-skills/tasks/SKILL.md +28 -0
package/src/config/bundled-skills/tasks/TOOLS.json +281 -0
package/src/config/bundled-skills/tasks/tools/task-delete.ts +9 -0
package/src/config/bundled-skills/tasks/tools/task-list-add.ts +9 -0
package/src/config/bundled-skills/tasks/tools/task-list-remove.ts +9 -0
package/src/config/bundled-skills/tasks/tools/task-list-show.ts +9 -0
package/src/config/bundled-skills/tasks/tools/task-list-update.ts +9 -0
package/src/config/bundled-skills/tasks/tools/task-list.ts +9 -0
package/src/config/bundled-skills/tasks/tools/task-queue-run.ts +9 -0
package/src/config/bundled-skills/tasks/tools/task-run.ts +9 -0
package/src/config/bundled-skills/tasks/tools/task-save.ts +9 -0
package/src/config/bundled-skills/transcribe/SKILL.md +25 -0
package/src/config/bundled-skills/transcribe/TOOLS.json +32 -0
package/src/config/bundled-skills/transcribe/tools/transcribe-media.ts +370 -0
package/src/config/bundled-skills/twitter/SKILL.md +220 -0
package/src/config/bundled-skills/watcher/SKILL.md +27 -0
package/src/config/bundled-skills/watcher/TOOLS.json +147 -0
package/src/config/bundled-skills/watcher/tools/watcher-create.ts +9 -0
package/src/config/bundled-skills/watcher/tools/watcher-delete.ts +9 -0
package/src/config/bundled-skills/watcher/tools/watcher-digest.ts +9 -0
package/src/config/bundled-skills/watcher/tools/watcher-list.ts +9 -0
package/src/config/bundled-skills/watcher/tools/watcher-update.ts +9 -0
package/src/config/bundled-skills/weather/SKILL.md +37 -0
package/src/config/bundled-skills/weather/TOOLS.json +32 -0
package/src/config/bundled-skills/weather/icon.svg +24 -0
package/src/config/bundled-skills/weather/tools/get-weather.ts +9 -0
package/src/config/computer-use-prompt.ts +97 -0
package/src/config/defaults.ts +263 -0
package/src/config/loader.ts +339 -0
package/src/config/schema.ts +1436 -0
package/src/config/skill-state.ts +95 -0
package/src/config/skills.ts +972 -0
package/src/config/system-prompt.ts +675 -0
package/src/config/templates/BOOTSTRAP.md +70 -0
package/src/config/templates/IDENTITY.md +25 -0
package/src/config/templates/LOOKS.md +25 -0
package/src/config/templates/SOUL.md +37 -0
package/src/config/templates/USER.md +19 -0
package/src/config/types.ts +42 -0
package/src/config/vellum-skills/chatgpt-import/SKILL.md +24 -0
package/src/config/vellum-skills/chatgpt-import/TOOLS.json +23 -0
package/src/config/vellum-skills/chatgpt-import/tools/chatgpt-import.ts +284 -0
package/src/config/vellum-skills/deploy-fullstack-vercel/SKILL.md +179 -0
package/src/config/vellum-skills/document-writer/SKILL.md +195 -0
package/src/config/vellum-skills/google-oauth-setup/SKILL.md +199 -0
package/src/config/vellum-skills/slack-oauth-setup/SKILL.md +153 -0
package/src/config/vellum-skills/telegram-setup/SKILL.md +143 -0
package/src/config/vellum-skills/twilio-setup/SKILL.md +213 -0
package/src/contacts/contact-store.ts +410 -0
package/src/contacts/index.ts +11 -0
package/src/contacts/types.ts +28 -0
package/src/context/token-estimator.ts +108 -0
package/src/context/tool-result-truncation.ts +128 -0
package/src/context/window-manager.ts +531 -0
package/src/daemon/assistant-attachments.ts +691 -0
package/src/daemon/classifier.ts +110 -0
package/src/daemon/computer-use-session.ts +903 -0
package/src/daemon/connection-policy.ts +41 -0
package/src/daemon/date-context.ts +136 -0
package/src/daemon/handlers/apps.ts +530 -0
package/src/daemon/handlers/browser.ts +54 -0
package/src/daemon/handlers/computer-use.ts +187 -0
package/src/daemon/handlers/config.ts +1517 -0
package/src/daemon/handlers/diagnostics.ts +338 -0
package/src/daemon/handlers/documents.ts +173 -0
package/src/daemon/handlers/home-base.ts +78 -0
package/src/daemon/handlers/identity.ts +127 -0
package/src/daemon/handlers/index.ts +129 -0
package/src/daemon/handlers/misc.ts +331 -0
package/src/daemon/handlers/open-bundle-handler.ts +80 -0
package/src/daemon/handlers/publish.ts +187 -0
package/src/daemon/handlers/sessions.ts +555 -0
package/src/daemon/handlers/shared.ts +570 -0
package/src/daemon/handlers/signing.ts +37 -0
package/src/daemon/handlers/skills.ts +486 -0
package/src/daemon/handlers/subagents.ts +210 -0
package/src/daemon/handlers/twitter-auth.ts +198 -0
package/src/daemon/handlers/work-items.ts +632 -0
package/src/daemon/handlers/workspace-files.ts +75 -0
package/src/daemon/handlers.ts +17 -0
package/src/daemon/history-repair.ts +214 -0
package/src/daemon/ipc-blob-store.ts +231 -0
package/src/daemon/ipc-contract-inventory.json +495 -0
package/src/daemon/ipc-contract-inventory.ts +126 -0
package/src/daemon/ipc-contract.ts +2551 -0
package/src/daemon/ipc-protocol.ts +75 -0
package/src/daemon/ipc-validate.ts +188 -0
package/src/daemon/lifecycle.ts +582 -0
package/src/daemon/main.ts +21 -0
package/src/daemon/media-visibility-policy.ts +57 -0
package/src/daemon/ride-shotgun-handler.ts +309 -0
package/src/daemon/server.ts +1215 -0
package/src/daemon/session-agent-loop.ts +922 -0
package/src/daemon/session-attachments.ts +196 -0
package/src/daemon/session-conflict-gate.ts +184 -0
package/src/daemon/session-dynamic-profile.ts +63 -0
package/src/daemon/session-error.ts +290 -0
package/src/daemon/session-evictor.ts +196 -0
package/src/daemon/session-history.ts +437 -0
package/src/daemon/session-lifecycle.ts +147 -0
package/src/daemon/session-media-retry.ts +147 -0
package/src/daemon/session-memory.ts +212 -0
package/src/daemon/session-messaging.ts +145 -0
package/src/daemon/session-notifiers.ts +193 -0
package/src/daemon/session-process.ts +323 -0
package/src/daemon/session-queue-manager.ts +82 -0
package/src/daemon/session-runtime-assembly.ts +447 -0
package/src/daemon/session-skill-tools.ts +356 -0
package/src/daemon/session-slash.ts +305 -0
package/src/daemon/session-surfaces.ts +702 -0
package/src/daemon/session-tool-setup.ts +523 -0
package/src/daemon/session-usage.ts +72 -0
package/src/daemon/session-workspace.ts +19 -0
package/src/daemon/session.ts +400 -0
package/src/daemon/tls-certs.ts +189 -0
package/src/daemon/trace-emitter.ts +82 -0
package/src/daemon/video-thumbnail.ts +62 -0
package/src/daemon/watch-handler.ts +274 -0
package/src/doordash/client.ts +999 -0
package/src/doordash/queries.ts +1311 -0
package/src/doordash/query-extractor.ts +93 -0
package/src/doordash/session.ts +82 -0
package/src/email/provider.ts +117 -0
package/src/email/providers/agentmail.ts +317 -0
package/src/email/providers/index.ts +58 -0
package/src/email/service.ts +303 -0
package/src/email/types.ts +126 -0
package/src/events/bus.ts +157 -0
package/src/events/domain-events.ts +83 -0
package/src/events/index.ts +18 -0
package/src/events/tool-audit-listener.ts +80 -0
package/src/events/tool-domain-event-publisher.ts +111 -0
package/src/events/tool-metrics-listener.ts +159 -0
package/src/events/tool-notification-listener.ts +17 -0
package/src/events/tool-profiling-listener.ts +158 -0
package/src/events/tool-trace-listener.ts +75 -0
package/src/export/formatter.ts +98 -0
package/src/followups/followup-store.ts +168 -0
package/src/followups/index.ts +10 -0
package/src/followups/types.ts +29 -0
package/src/gallery/default-gallery.ts +795 -0
package/src/gallery/gallery-manifest.ts +24 -0
package/src/home-base/app-link-store.ts +82 -0
package/src/home-base/bootstrap.ts +68 -0
package/src/home-base/prebuilt/index.html +662 -0
package/src/home-base/prebuilt/seed-metadata.json +21 -0
package/src/home-base/prebuilt/seed.ts +112 -0
package/src/home-base/prebuilt-home-base-updater.ts +30 -0
package/src/hooks/cli.ts +163 -0
package/src/hooks/config.ts +88 -0
package/src/hooks/discovery.ts +110 -0
package/src/hooks/manager.ts +124 -0
package/src/hooks/runner.ts +123 -0
package/src/hooks/templates.ts +52 -0
package/src/hooks/types.ts +72 -0
package/src/inbound/public-ingress-urls.ts +123 -0
package/src/index.ts +81 -0
package/src/instrument.ts +60 -0
package/src/logfire.ts +99 -0
package/src/media/gemini-image-service.ts +136 -0
package/src/memory/account-store.ts +108 -0
package/src/memory/admin.ts +211 -0
package/src/memory/app-git-service.ts +295 -0
package/src/memory/app-store.ts +577 -0
package/src/memory/attachments-store.ts +397 -0
package/src/memory/channel-delivery-store.ts +353 -0
package/src/memory/channel-guardian-store.ts +669 -0
package/src/memory/checkpoints.ts +52 -0
package/src/memory/clarification-resolver.ts +298 -0
package/src/memory/conflict-intent.ts +157 -0
package/src/memory/conflict-policy.ts +73 -0
package/src/memory/conflict-store.ts +350 -0
package/src/memory/contradiction-checker.ts +358 -0
package/src/memory/conversation-key-store.ts +122 -0
package/src/memory/conversation-store.ts +470 -0
package/src/memory/db.ts +1991 -0
package/src/memory/embedding-backend.ts +229 -0
package/src/memory/embedding-gemini.ts +52 -0
package/src/memory/embedding-local.ts +65 -0
package/src/memory/embedding-ollama.ts +55 -0
package/src/memory/embedding-openai.ts +25 -0
package/src/memory/entity-extractor.ts +474 -0
package/src/memory/external-conversation-store.ts +234 -0
package/src/memory/fingerprint.ts +20 -0
package/src/memory/indexer.ts +156 -0
package/src/memory/items-extractor.ts +461 -0
package/src/memory/job-handlers/backfill.ts +139 -0
package/src/memory/job-handlers/cleanup.ts +58 -0
package/src/memory/job-handlers/conflict.ts +141 -0
package/src/memory/job-handlers/embedding.ts +61 -0
package/src/memory/job-handlers/extraction.ts +123 -0
package/src/memory/job-handlers/index-maintenance.ts +54 -0
package/src/memory/job-handlers/summarization.ts +286 -0
package/src/memory/job-utils.ts +170 -0
package/src/memory/jobs-store.ts +401 -0
package/src/memory/jobs-worker.ts +313 -0
package/src/memory/llm-request-log-store.ts +45 -0
package/src/memory/llm-usage-store.ts +60 -0
package/src/memory/message-content.ts +54 -0
package/src/memory/profile-compiler.ts +160 -0
package/src/memory/published-pages-store.ts +137 -0
package/src/memory/qdrant-client.ts +366 -0
package/src/memory/qdrant-manager.ts +242 -0
package/src/memory/query-builder.ts +45 -0
package/src/memory/retrieval-budget.ts +30 -0
package/src/memory/retriever.ts +653 -0
package/src/memory/runs-store.ts +305 -0
package/src/memory/schema.ts +677 -0
package/src/memory/search/entity.ts +298 -0
package/src/memory/search/formatting.ts +207 -0
package/src/memory/search/lexical.ts +227 -0
package/src/memory/search/ranking.ts +401 -0
package/src/memory/search/semantic.ts +121 -0
package/src/memory/search/types.ts +137 -0
package/src/memory/segmenter.ts +68 -0
package/src/memory/shared-app-links-store.ts +138 -0
package/src/memory/tool-usage-store.ts +62 -0
package/src/messaging/activity-analyzer.ts +76 -0
package/src/messaging/draft-store.ts +88 -0
package/src/messaging/index.ts +3 -0
package/src/messaging/provider-types.ts +80 -0
package/src/messaging/provider.ts +52 -0
package/src/messaging/providers/gmail/adapter.ts +193 -0
package/src/messaging/providers/gmail/client.ts +204 -0
package/src/messaging/providers/gmail/types.ts +90 -0
package/src/messaging/providers/slack/adapter.ts +202 -0
package/src/messaging/providers/slack/client.ts +198 -0
package/src/messaging/providers/slack/types.ts +119 -0
package/src/messaging/providers/telegram-bot/adapter.ts +162 -0
package/src/messaging/providers/telegram-bot/client.ts +104 -0
package/src/messaging/providers/telegram-bot/types.ts +15 -0
package/src/messaging/registry.ts +35 -0
package/src/messaging/style-analyzer.ts +159 -0
package/src/messaging/thread-summarizer.ts +306 -0
package/src/messaging/triage-engine.ts +323 -0
package/src/messaging/types.ts +55 -0
package/src/permissions/checker.ts +640 -0
package/src/permissions/defaults.ts +254 -0
package/src/permissions/prompter.ts +98 -0
package/src/permissions/secret-prompter.ts +114 -0
package/src/permissions/shell-identity.ts +227 -0
package/src/permissions/trust-store.ts +607 -0
package/src/permissions/types.ts +43 -0
package/src/permissions/workspace-policy.ts +114 -0
package/src/playbooks/index.ts +2 -0
package/src/playbooks/playbook-compiler.ts +90 -0
package/src/playbooks/types.ts +55 -0
package/src/providers/anthropic/client.ts +751 -0
package/src/providers/failover.ts +129 -0
package/src/providers/fireworks/client.ts +20 -0
package/src/providers/gemini/client.ts +285 -0
package/src/providers/ollama/client.ts +30 -0
package/src/providers/openai/client.ts +337 -0
package/src/providers/openrouter/client.ts +20 -0
package/src/providers/ratelimit.ts +93 -0
package/src/providers/registry.ts +146 -0
package/src/providers/retry.ts +81 -0
package/src/providers/stream-timeout.ts +38 -0
package/src/providers/types.ts +109 -0
package/src/runtime/assistant-event-hub.ts +157 -0
package/src/runtime/assistant-event.ts +82 -0
package/src/runtime/channel-approval-parser.ts +60 -0
package/src/runtime/channel-approval-types.ts +73 -0
package/src/runtime/channel-approvals.ts +206 -0
package/src/runtime/channel-guardian-service.ts +212 -0
package/src/runtime/gateway-client.ts +58 -0
package/src/runtime/http-server.ts +1076 -0
package/src/runtime/http-types.ts +66 -0
package/src/runtime/routes/app-routes.ts +174 -0
package/src/runtime/routes/attachment-routes.ts +133 -0
package/src/runtime/routes/call-routes.ts +190 -0
package/src/runtime/routes/channel-routes.ts +1404 -0
package/src/runtime/routes/conversation-routes.ts +352 -0
package/src/runtime/routes/events-routes.ts +148 -0
package/src/runtime/routes/run-routes.ts +257 -0
package/src/runtime/routes/secret-routes.ts +76 -0
package/src/runtime/run-orchestrator.ts +330 -0
package/src/schedule/recurrence-engine.ts +162 -0
package/src/schedule/recurrence-types.ts +67 -0
package/src/schedule/schedule-store.ts +506 -0
package/src/schedule/scheduler.ts +171 -0
package/src/security/encrypted-store.ts +238 -0
package/src/security/keychain.ts +252 -0
package/src/security/oauth-callback-registry.ts +66 -0
package/src/security/oauth2.ts +274 -0
package/src/security/redaction.ts +89 -0
package/src/security/secret-allowlist.ts +164 -0
package/src/security/secret-ingress.ts +57 -0
package/src/security/secret-scanner.ts +550 -0
package/src/security/secure-keys.ts +180 -0
package/src/security/token-manager.ts +141 -0
package/src/services/published-app-updater.ts +69 -0
package/src/services/vercel-deploy.ts +73 -0
package/src/skills/active-skill-tools.ts +81 -0
package/src/skills/clawhub.ts +414 -0
package/src/skills/include-graph.ts +146 -0
package/src/skills/managed-store.ts +233 -0
package/src/skills/path-classifier.ts +128 -0
package/src/skills/slash-commands.ts +174 -0
package/src/skills/tool-manifest.ts +165 -0
package/src/skills/version-hash.ts +110 -0
package/src/slack/slack-webhook.ts +61 -0
package/src/subagent/index.ts +19 -0
package/src/subagent/manager.ts +511 -0
package/src/subagent/types.ts +69 -0
package/src/swarm/backend-claude-code.ts +145 -0
package/src/swarm/index.ts +44 -0
package/src/swarm/limits.ts +37 -0
package/src/swarm/orchestrator.ts +279 -0
package/src/swarm/plan-validator.ts +151 -0
package/src/swarm/router-planner.ts +100 -0
package/src/swarm/router-prompts.ts +36 -0
package/src/swarm/synthesizer.ts +62 -0
package/src/swarm/types.ts +62 -0
package/src/swarm/worker-backend.ts +121 -0
package/src/swarm/worker-prompts.ts +79 -0
package/src/swarm/worker-runner.ts +164 -0
package/src/tasks/SPEC.md +139 -0
package/src/tasks/candidate-store.ts +86 -0
package/src/tasks/ephemeral-permissions.ts +48 -0
package/src/tasks/task-compiler.ts +199 -0
package/src/tasks/task-runner.ts +90 -0
package/src/tasks/task-scheduler.ts +21 -0
package/src/tasks/task-store.ts +127 -0
package/src/tasks/tool-sanitizer.ts +36 -0
package/src/tools/apps/definitions.ts +59 -0
package/src/tools/apps/executors.ts +313 -0
package/src/tools/apps/open-proxy.ts +43 -0
package/src/tools/apps/registry.ts +16 -0
package/src/tools/assets/materialize.ts +218 -0
package/src/tools/assets/search.ts +361 -0
package/src/tools/browser/__tests__/auth-cache.test.ts +219 -0
package/src/tools/browser/__tests__/auth-detector.test.ts +362 -0
package/src/tools/browser/__tests__/jit-auth.test.ts +189 -0
package/src/tools/browser/api-map.ts +293 -0
package/src/tools/browser/auth-cache.ts +149 -0
package/src/tools/browser/auth-detector.ts +347 -0
package/src/tools/browser/auto-navigate.ts +270 -0
package/src/tools/browser/browser-execution.ts +980 -0
package/src/tools/browser/browser-handoff.ts +79 -0
package/src/tools/browser/browser-manager.ts +715 -0
package/src/tools/browser/browser-screencast.ts +217 -0
package/src/tools/browser/headless-browser.ts +450 -0
package/src/tools/browser/jit-auth.ts +51 -0
package/src/tools/browser/network-recorder.ts +349 -0
package/src/tools/browser/network-recording-types.ts +49 -0
package/src/tools/browser/recording-store.ts +49 -0
package/src/tools/browser/runtime-check.ts +43 -0
package/src/tools/browser/x-auto-navigate.ts +207 -0
package/src/tools/calls/call-end.ts +67 -0
package/src/tools/calls/call-start.ts +81 -0
package/src/tools/calls/call-status.ts +81 -0
package/src/tools/claude-code/claude-code.ts +428 -0
package/src/tools/computer-use/definitions.ts +443 -0
package/src/tools/computer-use/registry.ts +22 -0
package/src/tools/computer-use/request-computer-control.ts +53 -0
package/src/tools/computer-use/skill-proxy-bridge.ts +28 -0
package/src/tools/credentials/account-registry.ts +127 -0
package/src/tools/credentials/broker-types.ts +107 -0
package/src/tools/credentials/broker.ts +372 -0
package/src/tools/credentials/domain-policy.ts +51 -0
package/src/tools/credentials/host-pattern-match.ts +60 -0
package/src/tools/credentials/metadata-store.ts +335 -0
package/src/tools/credentials/policy-types.ts +52 -0
package/src/tools/credentials/policy-validate.ts +80 -0
package/src/tools/credentials/resolve.ts +122 -0
package/src/tools/credentials/selection.ts +159 -0
package/src/tools/credentials/tool-policy.ts +25 -0
package/src/tools/credentials/vault.ts +657 -0
package/src/tools/document/document-tool.ts +92 -0
package/src/tools/document/editor-template.ts +237 -0
package/src/tools/execution-target.ts +21 -0
package/src/tools/execution-timeout.ts +49 -0
package/src/tools/executor.ts +815 -0
package/src/tools/filesystem/edit.ts +127 -0
package/src/tools/filesystem/fuzzy-match.ts +202 -0
package/src/tools/filesystem/read.ts +71 -0
package/src/tools/filesystem/view-image.ts +199 -0
package/src/tools/filesystem/write.ts +79 -0
package/src/tools/followups/followup_create.ts +76 -0
package/src/tools/followups/followup_list.ts +60 -0
package/src/tools/followups/followup_resolve.ts +56 -0
package/src/tools/host-filesystem/edit.ts +125 -0
package/src/tools/host-filesystem/read.ts +80 -0
package/src/tools/host-filesystem/write.ts +76 -0
package/src/tools/host-terminal/cli-discover.ts +180 -0
package/src/tools/host-terminal/host-shell.ts +191 -0
package/src/tools/memory/definitions.ts +69 -0
package/src/tools/memory/handlers.ts +246 -0
package/src/tools/memory/register.ts +66 -0
package/src/tools/network/__tests__/web-search.test.ts +427 -0
package/src/tools/network/domain-normalize.ts +85 -0
package/src/tools/network/script-proxy/__tests__/logging.test.ts +248 -0
package/src/tools/network/script-proxy/__tests__/policy.test.ts +234 -0
package/src/tools/network/script-proxy/__tests__/router.test.ts +76 -0
package/src/tools/network/script-proxy/certs.ts +237 -0
package/src/tools/network/script-proxy/connect-tunnel.ts +82 -0
package/src/tools/network/script-proxy/http-forwarder.ts +151 -0
package/src/tools/network/script-proxy/index.ts +28 -0
package/src/tools/network/script-proxy/logging.ts +196 -0
package/src/tools/network/script-proxy/mitm-handler.ts +269 -0
package/src/tools/network/script-proxy/policy.ts +152 -0
package/src/tools/network/script-proxy/router.ts +60 -0
package/src/tools/network/script-proxy/server.ts +136 -0
package/src/tools/network/script-proxy/session-manager.ts +534 -0
package/src/tools/network/script-proxy/types.ts +125 -0
package/src/tools/network/url-safety.ts +227 -0
package/src/tools/network/web-fetch.ts +713 -0
package/src/tools/network/web-search.ts +296 -0
package/src/tools/policy-context.ts +29 -0
package/src/tools/registry.ts +295 -0
package/src/tools/reminder/reminder-store.ts +148 -0
package/src/tools/reminder/reminder.ts +80 -0
package/src/tools/schedule/create.ts +81 -0
package/src/tools/schedule/delete.ts +28 -0
package/src/tools/schedule/list.ts +69 -0
package/src/tools/schedule/update.ts +97 -0
package/src/tools/shared/filesystem/edit-engine.ts +56 -0
package/src/tools/shared/filesystem/errors.ts +85 -0
package/src/tools/shared/filesystem/file-ops-service.ts +215 -0
package/src/tools/shared/filesystem/format-diff.ts +35 -0
package/src/tools/shared/filesystem/path-policy.ts +125 -0
package/src/tools/shared/filesystem/size-guard.ts +41 -0
package/src/tools/shared/filesystem/types.ts +80 -0
package/src/tools/shared/shell-output.ts +52 -0
package/src/tools/skills/delete-managed.ts +60 -0
package/src/tools/skills/load.ts +139 -0
package/src/tools/skills/sandbox-runner.ts +279 -0
package/src/tools/skills/scaffold-managed.ts +150 -0
package/src/tools/skills/script-contract.ts +6 -0
package/src/tools/skills/skill-script-runner.ts +86 -0
package/src/tools/skills/skill-tool-factory.ts +64 -0
package/src/tools/skills/vellum-catalog.ts +217 -0
package/src/tools/subagent/abort.ts +33 -0
package/src/tools/subagent/message.ts +39 -0
package/src/tools/subagent/read.ts +67 -0
package/src/tools/subagent/spawn.ts +46 -0
package/src/tools/subagent/status.ts +45 -0
package/src/tools/swarm/delegate.ts +183 -0
package/src/tools/system/request-permission.ts +98 -0
package/src/tools/system/version.ts +43 -0
package/src/tools/tasks/index.ts +27 -0
package/src/tools/tasks/task-delete.ts +82 -0
package/src/tools/tasks/task-list.ts +44 -0
package/src/tools/tasks/task-run.ts +97 -0
package/src/tools/tasks/task-save.ts +47 -0
package/src/tools/tasks/work-item-enqueue.ts +234 -0
package/src/tools/tasks/work-item-list.ts +55 -0
package/src/tools/tasks/work-item-remove.ts +60 -0
package/src/tools/tasks/work-item-run.ts +78 -0
package/src/tools/tasks/work-item-update.ts +114 -0
package/src/tools/terminal/backends/docker.ts +372 -0
package/src/tools/terminal/backends/native.ts +190 -0
package/src/tools/terminal/backends/types.ts +26 -0
package/src/tools/terminal/evaluate-typescript.ts +275 -0
package/src/tools/terminal/parser.ts +413 -0
package/src/tools/terminal/safe-env.ts +37 -0
package/src/tools/terminal/sandbox-diagnostics.ts +149 -0
package/src/tools/terminal/sandbox.ts +44 -0
package/src/tools/terminal/shell.ts +257 -0
package/src/tools/tool-manifest.ts +198 -0
package/src/tools/types.ts +176 -0
package/src/tools/ui-surface/definitions.ts +244 -0
package/src/tools/ui-surface/registry.ts +14 -0
package/src/tools/watch/screen-watch.ts +130 -0
package/src/tools/watch/watch-state.ts +119 -0
package/src/tools/watcher/create.ts +64 -0
package/src/tools/watcher/delete.ts +27 -0
package/src/tools/watcher/digest.ts +50 -0
package/src/tools/watcher/list.ts +60 -0
package/src/tools/watcher/update.ts +56 -0
package/src/tools/weather/service.ts +551 -0
package/src/twitter/client.ts +690 -0
package/src/twitter/oauth-client.ts +102 -0
package/src/twitter/router.ts +101 -0
package/src/twitter/session.ts +91 -0
package/src/usage/actors.ts +24 -0
package/src/usage/types.ts +37 -0
package/src/util/clipboard.ts +33 -0
package/src/util/content-id.ts +16 -0
package/src/util/debounce.ts +88 -0
package/src/util/diff.ts +181 -0
package/src/util/errors.ts +129 -0
package/src/util/logger.ts +243 -0
package/src/util/network-info.ts +47 -0
package/src/util/platform.ts +632 -0
package/src/util/pricing.ts +150 -0
package/src/util/promise-guard.ts +37 -0
package/src/util/retry.ts +98 -0
package/src/util/spinner.ts +51 -0
package/src/util/time.ts +16 -0
package/src/util/truncate.ts +6 -0
package/src/util/xml.ts +4 -0
package/src/version.ts +3 -0
package/src/watcher/constants.ts +11 -0
package/src/watcher/engine.ts +199 -0
package/src/watcher/provider-registry.ts +15 -0
package/src/watcher/provider-types.ts +48 -0
package/src/watcher/providers/gmail.ts +198 -0
package/src/watcher/providers/google-calendar.ts +228 -0
package/src/watcher/providers/slack.ts +129 -0
package/src/watcher/watcher-store.ts +419 -0
package/src/work-items/work-item-runner.ts +171 -0
package/src/work-items/work-item-store.ts +325 -0
package/src/workspace/commit-message-enrichment-service.ts +284 -0
package/src/workspace/commit-message-provider.ts +95 -0
package/src/workspace/git-service.ts +857 -0
package/src/workspace/heartbeat-service.ts +345 -0
package/src/workspace/provider-commit-message-generator.ts +285 -0
package/src/workspace/top-level-renderer.ts +19 -0
package/src/workspace/top-level-scanner.ts +41 -0
package/src/workspace/turn-commit.ts +175 -0
package/tsconfig.json +21 -0

package/src/daemon/server.ts ADDED Viewed

@@ -0,0 +1,1215 @@
+import * as net from 'node:net';
+import * as tls from 'node:tls';
+import { randomBytes } from 'node:crypto';
+import { existsSync, chmodSync, readFileSync, writeFileSync, readdirSync, watch, type FSWatcher } from 'node:fs';
+import { join } from 'node:path';
+import { getSocketPath, getSessionTokenPath, getRootDir, getWorkspaceDir, getWorkspaceSkillsDir, getSandboxWorkingDir, removeSocketFile, getTCPPort, getTCPHost, isTCPEnabled, isIOSPairingEnabled } from '../util/platform.js';
+import { ensureTlsCert } from './tls-certs.js';
+import { getLocalIPv4 } from '../util/network-info.js';
+import { hasNoAuthOverride } from './connection-policy.js';
+import { getLogger } from '../util/logger.js';
+import { getFailoverProvider, initializeProviders } from '../providers/registry.js';
+import { RateLimitProvider } from '../providers/ratelimit.js';
+import { getConfig, invalidateConfigCache } from '../config/loader.js';
+import { buildSystemPrompt } from '../config/system-prompt.js';
+import { clearCache as clearTrustCache } from '../permissions/trust-store.js';
+import { resetAllowlist, validateAllowlistFile } from '../security/secret-allowlist.js';
+import { checkIngressForSecrets } from '../security/secret-ingress.js';
+import { IngressBlockedError } from '../util/errors.js';
+import { clearEmbeddingBackendCache } from '../memory/embedding-backend.js';
+import * as conversationStore from '../memory/conversation-store.js';
+import * as attachmentsStore from '../memory/attachments-store.js';
+import { Session, DEFAULT_MEMORY_POLICY, type SessionMemoryPolicy } from './session.js';
+import { resolveChannelCapabilities } from './session-runtime-assembly.js';
+import { ComputerUseSession } from './computer-use-session.js';
+import {
+  serialize,
+  createMessageParser,
+  MAX_LINE_SIZE,
+  type ClientMessage,
+  type ServerMessage,
+  normalizeThreadType,
+} from './ipc-protocol.js';
+import { validateClientMessage } from './ipc-validate.js';
+import { handleMessage, type HandlerContext, type SessionCreateOptions } from './handlers.js';
+import { RunOrchestrator } from '../runtime/run-orchestrator.js';
+import { ensureBlobDir, sweepStaleBlobs } from './ipc-blob-store.js';
+import { bootstrapHomeBaseAppLink } from '../home-base/bootstrap.js';
+import { assistantEventHub } from '../runtime/assistant-event-hub.js';
+import { buildAssistantEvent } from '../runtime/assistant-event.js';
+import { SessionEvictor } from './session-evictor.js';
+import { getSubagentManager } from '../subagent/index.js';
+import { tryRouteCallMessage } from '../calls/call-bridge.js';
+import { resolveSlash } from './session-slash.js';
+import { createUserMessage, createAssistantMessage } from '../agent/message-types.js';
+import { registerDaemonCallbacks } from '../work-items/work-item-runner.js';
+import { DebouncerMap } from '../util/debounce.js';
+const log = getLogger('server');
+function readPackageVersion(): string | undefined {
+  try {
+    const pkgPath = join(import.meta.dir, '../../package.json');
+    const pkg = JSON.parse(readFileSync(pkgPath, 'utf-8')) as { version?: string };
+    return pkg.version;
+  } catch {
+    return undefined;
+  }
+}
+const daemonVersion = readPackageVersion();
+export class DaemonServer {
+  private server: net.Server | null = null;
+  private tcpServer: tls.Server | null = null;
+  private sessions = new Map<string, Session>();
+  private socketToSession = new Map<net.Socket, string>();
+  private cuSessions = new Map<string, ComputerUseSession>();
+  private socketToCuSession = new Map<net.Socket, Set<string>>();
+  private connectedSockets = new Set<net.Socket>();
+  private socketSandboxOverride = new Map<net.Socket, boolean>();
+  private cuObservationParseSequence = new Map<string, number>();
+  // Persisted session options (e.g. systemPromptOverride, maxResponseTokens)
+  // so that evicted sessions can be recreated with the same overrides.
+  private sessionOptions = new Map<string, SessionCreateOptions>();
+  // Guards against duplicate session creation when multiple clients connect
+  // with the same conversation ID concurrently. The first caller creates the
+  // session; subsequent callers await the same promise.
+  private sessionCreating = new Map<string, Promise<Session>>();
+  // Shared across all sessions so maxRequestsPerMinute is enforced globally.
+  private sharedRequestTimestamps: number[] = [];
+  private socketPath: string;
+  private httpPort: number | undefined;
+  private watchers: FSWatcher[] = [];
+  private debounceTimers = new DebouncerMap({
+    defaultDelayMs: 200,
+    maxEntries: 1000,
+    protectedKeyPrefix: '__',
+  });
+  private suppressConfigReload = false;
+  private lastConfigFingerprint = '';
+  private lastConfigRefreshTime = 0;
+  private blobSweepTimer: ReturnType<typeof setInterval> | null = null;
+  private static readonly CONFIG_REFRESH_INTERVAL_MS = 30_000;
+  private static readonly MAX_CONNECTIONS = 50;
+  private static readonly AUTH_TIMEOUT_MS = 5_000;
+  private sessionToken = '';
+  private authenticatedSockets = new Set<net.Socket>();
+  private authTimeouts = new Map<net.Socket, ReturnType<typeof setTimeout>>();
+  private evictor: SessionEvictor;
+  /**
+   * Derive a SessionMemoryPolicy from the conversation's thread type and
+   * memory scope. Private conversations get an isolated scope with strict
+   * side-effect controls and default-fallback recall; standard conversations
+   * use the shared default scope with no restrictions.
+   */
+  private deriveMemoryPolicy(conversationId: string): SessionMemoryPolicy {
+    const threadType = conversationStore.getConversationThreadType(conversationId);
+    if (threadType === 'private') {
+      return {
+        scopeId: conversationStore.getConversationMemoryScopeId(conversationId),
+        includeDefaultFallback: true,
+        strictSideEffects: true,
+      };
+    }
+    return DEFAULT_MEMORY_POLICY;
+  }
+  private applyTransportMetadata(_session: Session, options: SessionCreateOptions | undefined): void {
+    const transport = options?.transport;
+    if (!transport) return;
+    // Transport metadata is available for future use but onboarding context
+    // is now handled via BOOTSTRAP.md in the system prompt.
+    log.debug({ channelId: transport.channelId }, 'Transport metadata received');
+  }
+  /**
+   * Logical assistant identifier used when publishing to the assistant-events hub.
+   * Defaults to 'default' for the IPC daemon runtime; override in tests or
+   * multi-tenant deployments where the daemon is scoped to a specific assistant.
+   */
+  assistantId: string = 'default';
+  constructor() {
+    this.socketPath = getSocketPath();
+    this.evictor = new SessionEvictor(this.sessions);
+    // Share the global rate-limit timestamps with the subagent manager.
+    getSubagentManager().sharedRequestTimestamps = this.sharedRequestTimestamps;
+    // Abort subagents when their parent session is evicted.
+    this.evictor.onEvict = (sessionId: string) => {
+      getSubagentManager().abortAllForParent(sessionId);
+    };
+    // Protect parent sessions that have active subagents from eviction.
+    this.evictor.shouldProtect = (sessionId: string) => {
+      const children = getSubagentManager().getChildrenOf(sessionId);
+      return children.some((c) => c.status === 'running' || c.status === 'pending');
+    };
+    // When a subagent finishes, inject the result into the parent session
+    // so the LLM automatically informs the user.
+    getSubagentManager().onSubagentFinished = (parentSessionId, message, sendToClient, notification) => {
+      const parentSession = this.sessions.get(parentSessionId);
+      if (!parentSession) {
+        log.warn({ parentSessionId }, 'Subagent finished but parent session not found');
+        return;
+      }
+      const requestId = `subagent-notify-${Date.now()}`;
+      // Store structured notification data in the DB for history reconstruction
+      const metadata = { subagentNotification: notification };
+      const enqueueResult = parentSession.enqueueMessage(message, [], sendToClient, requestId, undefined, undefined, metadata);
+      if (enqueueResult.rejected) {
+        log.warn({ parentSessionId }, 'Parent session queue full, dropping subagent notification');
+        return;
+      }
+      if (!enqueueResult.queued) {
+        // Parent is idle — send directly.
+        const messageId = parentSession.persistUserMessage(message, [], undefined, metadata);
+        parentSession.runAgentLoop(message, messageId, sendToClient).catch((err) => {
+          log.error({ parentSessionId, err }, 'Failed to process subagent notification in parent');
+        });
+      }
+      // If queued, it will be processed when the parent finishes its current turn.
+    };
+  }
+  async start(): Promise<void> {
+    // Clean up stale socket (only if it's actually a Unix socket)
+    removeSocketFile(this.socketPath);
+    // Initialize providers from config so they're available before any
+    // session is created. Without this, getProvider() throws because the
+    // registry is empty until a config file change triggers a reload.
+    const config = getConfig();
+    initializeProviders(config);
+    this.lastConfigFingerprint = this.configFingerprint(config);
+    try {
+      bootstrapHomeBaseAppLink();
+    } catch (err) {
+      log.warn({ err }, 'Failed to bootstrap Home Base app link at daemon startup');
+    }
+    this.evictor.start();
+    // Register daemon callbacks so tools can trigger work item execution
+    registerDaemonCallbacks({
+      getOrCreateSession: (conversationId) => this.getOrCreateSession(conversationId),
+      broadcast: (msg) => this.broadcast(msg),
+    });
+    ensureBlobDir();
+    this.blobSweepTimer = setInterval(() => {
+      sweepStaleBlobs(30 * 60 * 1000).catch((err) => {
+        log.warn({ err }, 'Blob sweep failed');
+      });
+    }, 5 * 60 * 1000);
+    this.startFileWatchers();
+    // Reuse existing session token from disk if present, so pairing
+    // (e.g. iOS QR code) survives daemon restarts. Only generate a
+    // new token when none exists on disk.
+    const tokenPath = getSessionTokenPath();
+    let existingToken: string | null = null;
+    try {
+      const raw = readFileSync(tokenPath, 'utf-8').trim();
+      if (raw.length >= 32) existingToken = raw;
+    } catch { /* file doesn't exist yet */ }
+    if (existingToken) {
+      this.sessionToken = existingToken;
+      log.info({ tokenPath }, 'Reusing existing session token');
+    } else {
+      this.sessionToken = randomBytes(32).toString('hex');
+      writeFileSync(tokenPath, this.sessionToken, { mode: 0o600 });
+      chmodSync(tokenPath, 0o600);
+      log.info({ tokenPath }, 'New session token generated');
+    }
+    // Generate TLS certificate before starting listeners so it's
+    // available synchronously in the listen callback.
+    let tlsCreds: { cert: string; key: string; fingerprint: string } | null = null;
+    if (isTCPEnabled()) {
+      try {
+        tlsCreds = await ensureTlsCert();
+      } catch (err) {
+        log.error({ err }, 'Failed to generate TLS certificate — TCP listener will not start');
+      }
+    }
+    return new Promise((resolve, reject) => {
+      this.server = net.createServer((socket) => {
+        this.handleConnection(socket);
+      });
+      const oldUmask = process.umask(0o177);
+      this.server.once('error', (err) => {
+        process.umask(oldUmask);
+        log.error({ err, socketPath: this.socketPath }, 'Server failed to start (is another daemon already running?)');
+        reject(err);
+      });
+      this.server.listen(this.socketPath, () => {
+        process.umask(oldUmask);
+        // Replace the one-shot startup handler with a permanent one
+        this.server!.removeAllListeners('error');
+        this.server!.on('error', (err) => {
+          log.error({ err, socketPath: this.socketPath }, 'Server socket error while running');
+        });
+        chmodSync(this.socketPath, 0o600);
+        log.info({ socketPath: this.socketPath }, 'Daemon server listening');
+        // Start TLS-encrypted TCP listener for iOS clients (alongside the Unix socket)
+        if (tlsCreds) {
+          const tcpPort = getTCPPort();
+          const tcpHost = getTCPHost();
+          this.tcpServer = tls.createServer(
+            { cert: tlsCreds.cert, key: tlsCreds.key },
+            (socket) => { this.handleConnection(socket); },
+          );
+          this.tcpServer.on('error', (err) => {
+            log.error({ err, tcpPort }, 'TLS TCP server error');
+          });
+          const fingerprint = tlsCreds.fingerprint;
+          this.tcpServer.listen(tcpPort, tcpHost, () => {
+            const localIP = getLocalIPv4();
+            log.info(
+              { tcpPort, tcpHost, fingerprint, localIP, iosPairing: isIOSPairingEnabled() },
+              'TLS TCP listener started',
+            );
+            if (isIOSPairingEnabled() && localIP) {
+              log.warn(
+                { localIP, tcpPort },
+                'iOS pairing enabled — daemon is reachable on the local network at %s:%d',
+                localIP, tcpPort,
+              );
+            }
+          });
+        }
+        resolve();
+      });
+    });
+  }
+  async stop(): Promise<void> {
+    getSubagentManager().disposeAll();
+    this.evictor.stop();
+    if (this.blobSweepTimer) {
+      clearInterval(this.blobSweepTimer);
+      this.blobSweepTimer = null;
+    }
+    this.stopFileWatchers();
+    // Session token is intentionally kept on disk so pairing
+    // (e.g. iOS QR code) survives daemon restarts. To regenerate,
+    // delete ~/.vellum/session-token and restart the daemon.
+    for (const timer of this.authTimeouts.values()) {
+      clearTimeout(timer);
+    }
+    this.authTimeouts.clear();
+    this.authenticatedSockets.clear();
+    // 1. Stop accepting new connections first. server.close() prevents new
+    //    connections from arriving, so the cleanup below won't race with
+    //    handleConnection() adding sockets that never get destroyed.
+    //    Its callback fires once all existing connections have ended.
+    const serverClosed = new Promise<void>((resolve) => {
+      if (this.server) {
+        this.server.close(() => {
+          try {
+            removeSocketFile(this.socketPath);
+          } catch (err) {
+            log.warn({ err, socketPath: this.socketPath }, 'Failed to remove socket file during shutdown');
+          }
+          resolve();
+        });
+      } else {
+        resolve();
+      }
+    });
+    const tcpServerClosed = new Promise<void>((resolve) => {
+      if (this.tcpServer) {
+        this.tcpServer.close(() => resolve());
+        this.tcpServer = null;
+      } else {
+        resolve();
+      }
+    });
+    // 2. Now dispose sessions and destroy sockets. This lets server.close()
+    //    finish promptly since all connections will be ended.
+    for (const session of this.sessions.values()) {
+      session.dispose();
+    }
+    this.sessions.clear();
+    for (const cuSession of this.cuSessions.values()) {
+      cuSession.abort();
+    }
+    this.cuSessions.clear();
+    this.socketToCuSession.clear();
+    for (const socket of this.connectedSockets) {
+      socket.destroy();
+    }
+    this.connectedSockets.clear();
+    this.socketToSession.clear();
+    this.socketSandboxOverride.clear();
+    this.cuObservationParseSequence.clear();
+    await Promise.all([serverClosed, tcpServerClosed]);
+    log.info('Daemon server stopped');
+  }
+  private startFileWatchers(): void {
+    const rootDir = getRootDir();
+    const workspaceDir = getWorkspaceDir();
+    const protectedDir = join(rootDir, 'protected');
+    // Watch workspace directory for config + prompt files
+    const workspaceHandlers: Record<string, () => void> = {
+      'config.json': () => {
+        if (this.suppressConfigReload) return;
+        try {
+          this.refreshConfigFromSources();
+        } catch (err) {
+          log.error({ err, configPath: join(workspaceDir, 'config.json') }, 'Failed to reload config after file change. Previous config remains active.');
+          return;
+        }
+      },
+      'SOUL.md': () => this.evictSessionsForReload(),
+      'IDENTITY.md': () => this.evictSessionsForReload(),
+      'USER.md': () => this.evictSessionsForReload(),
+      'LOOKS.md': () => this.evictSessionsForReload(),
+    };
+    // Watch protected/ for trust rules and secret allowlist
+    const protectedHandlers: Record<string, () => void> = {
+      'trust.json': () => {
+        clearTrustCache();
+      },
+      'secret-allowlist.json': () => {
+        resetAllowlist();
+        try {
+          const errors = validateAllowlistFile();
+          if (errors && errors.length > 0) {
+            for (const e of errors) {
+              log.warn({ index: e.index, pattern: e.pattern }, `Invalid regex in secret-allowlist.json: ${e.message}`);
+            }
+          }
+        } catch (err) {
+          log.warn({ err }, 'Failed to validate secret-allowlist.json');
+        }
+      },
+    };
+    const watchDir = (dir: string, handlers: Record<string, () => void>, label: string): void => {
+      try {
+        const watcher = watch(dir, (_eventType, filename) => {
+          if (!filename) return;
+          const file = String(filename);
+          if (!handlers[file]) return;
+          this.debounceTimers.schedule(`file:${file}`, () => {
+            log.info({ file }, 'File changed, reloading');
+            handlers[file]();
+          });
+        });
+        this.watchers.push(watcher);
+        log.info({ dir }, `Watching ${label}`);
+      } catch (err) {
+        log.warn({ err, dir }, `Failed to watch ${label}. Hot-reload will be unavailable.`);
+      }
+    };
+    watchDir(workspaceDir, workspaceHandlers, 'workspace directory for config/prompt changes');
+    if (existsSync(protectedDir)) {
+      watchDir(protectedDir, protectedHandlers, 'protected directory for trust/allowlist changes');
+    }
+    this.startSkillsWatchers(() => this.evictSessionsForReload());
+  }
+  private configFingerprint(config: ReturnType<typeof getConfig>): string {
+    return JSON.stringify(config);
+  }
+  /**
+   * Record the runtime HTTP server port and broadcast it to all
+   * connected clients so they can enable the share UI immediately.
+   */
+  setHttpPort(port: number): void {
+    this.httpPort = port;
+    // Clients that connected before the HTTP server started received
+    // daemon_status with no httpPort. Broadcast the updated port so
+    // they can enable the share UI without reconnecting.
+    this.broadcast({
+      type: 'daemon_status',
+      httpPort: port,
+      version: daemonVersion,
+    });
+  }
+  /**
+   * Dispose and remove all in-memory sessions unconditionally.
+   * Called after `sessions clear` wipes the database so that stale
+   * sessions don't reference deleted conversation rows.
+   */
+  clearAllSessions(): number {
+    const count = this.sessions.size;
+    const subagentManager = getSubagentManager();
+    for (const id of this.sessions.keys()) {
+      this.evictor.remove(id);
+      subagentManager.abortAllForParent(id);
+    }
+    for (const session of this.sessions.values()) {
+      session.dispose();
+    }
+    this.sessions.clear();
+    this.sessionOptions.clear();
+    return count;
+  }
+  private evictSessionsForReload(): void {
+    const subagentManager = getSubagentManager();
+    for (const [id, session] of this.sessions) {
+      if (!session.isProcessing()) {
+        subagentManager.abortAllForParent(id);
+        session.dispose();
+        this.sessions.delete(id);
+        this.evictor.remove(id);
+      } else {
+        session.markStale();
+      }
+    }
+  }
+  /**
+   * Reload config from disk + secure storage, and refresh providers only
+   * when effective config values (including API keys) have changed.
+   */
+  private refreshConfigFromSources(): boolean {
+    invalidateConfigCache();
+    const config = getConfig();
+    const fingerprint = this.configFingerprint(config);
+    if (fingerprint === this.lastConfigFingerprint) {
+      return false;
+    }
+    // Default trust rules depend on config (e.g. skills.load.extraDirs),
+    // so clear the trust cache so rules are regenerated from fresh config.
+    clearTrustCache();
+    clearEmbeddingBackendCache();
+    const isFirstInit = this.lastConfigFingerprint === '';
+    initializeProviders(config);
+    this.lastConfigFingerprint = fingerprint;
+    if (!isFirstInit) {
+      this.evictSessionsForReload();
+    }
+    return true;
+  }
+  private stopFileWatchers(): void {
+    this.debounceTimers.cancelAll();
+    for (const watcher of this.watchers) {
+      watcher.close();
+    }
+    this.watchers = [];
+  }
+  private startSkillsWatchers(evictSessions: () => void): void {
+    const skillsDir = getWorkspaceSkillsDir();
+    if (!existsSync(skillsDir)) return;
+    const scheduleSkillsReload = (file: string): void => {
+      this.debounceTimers.schedule(`skills:${file}`, () => {
+        log.info({ file }, 'Skill file changed, reloading');
+        evictSessions();
+      });
+    };
+    try {
+      const recursiveWatcher = watch(skillsDir, { recursive: true }, (_eventType, filename) => {
+        scheduleSkillsReload(filename ? String(filename) : '(unknown)');
+      });
+      this.watchers.push(recursiveWatcher);
+      log.info({ dir: skillsDir }, 'Watching skills directory recursively');
+      return;
+    } catch (err) {
+      log.info({ err, dir: skillsDir }, 'Recursive skills watch unavailable; using per-directory watchers');
+    }
+    const childWatchers = new Map<string, FSWatcher>();
+    const watchDir = (dirPath: string, onChange: (filename: string) => void): FSWatcher | null => {
+      try {
+        const watcher = watch(dirPath, (_eventType, filename) => {
+          onChange(filename ? String(filename) : '(unknown)');
+        });
+        this.watchers.push(watcher);
+        return watcher;
+      } catch (err) {
+        log.warn({ err, dirPath }, 'Failed to watch skills directory');
+        return null;
+      }
+    };
+    const removeWatcher = (watcher: FSWatcher): void => {
+      const idx = this.watchers.indexOf(watcher);
+      if (idx !== -1) {
+        this.watchers.splice(idx, 1);
+      }
+    };
+    const refreshChildWatchers = (): void => {
+      const nextChildDirs = new Set<string>();
+      try {
+        const entries = readdirSync(skillsDir, { withFileTypes: true });
+        for (const entry of entries) {
+          if (!entry.isDirectory()) continue;
+          const childDir = join(skillsDir, entry.name);
+          nextChildDirs.add(childDir);
+          if (childWatchers.has(childDir)) continue;
+          const watcher = watchDir(childDir, (filename) => {
+            const label = filename === '(unknown)' ? entry.name : `${entry.name}/${filename}`;
+            scheduleSkillsReload(label);
+          });
+          if (watcher) {
+            childWatchers.set(childDir, watcher);
+          }
+        }
+      } catch (err) {
+        log.warn({ err, skillsDir }, 'Failed to enumerate skill directories');
+        return;
+      }
+      for (const [childDir, watcher] of childWatchers.entries()) {
+        if (nextChildDirs.has(childDir)) continue;
+        watcher.close();
+        childWatchers.delete(childDir);
+        removeWatcher(watcher);
+      }
+    };
+    const rootWatcher = watchDir(skillsDir, (filename) => {
+      scheduleSkillsReload(filename);
+      refreshChildWatchers();
+    });
+    if (!rootWatcher) return;
+    refreshChildWatchers();
+    log.info({ dir: skillsDir }, 'Watching skills directory with non-recursive fallback');
+  }
+  private handleConnection(socket: net.Socket): void {
+    if (this.connectedSockets.size >= DaemonServer.MAX_CONNECTIONS) {
+      log.warn({ current: this.connectedSockets.size, max: DaemonServer.MAX_CONNECTIONS }, 'Connection limit reached, rejecting client');
+      socket.once('error', (err) => {
+        log.error({ err }, 'Socket error while rejecting connection');
+      });
+      socket.write(serialize({ type: 'error', message: `Connection limit reached (max ${DaemonServer.MAX_CONNECTIONS})` }));
+      socket.destroy();
+      return;
+    }
+    log.info('Client connected');
+    this.connectedSockets.add(socket);
+    const parser = createMessageParser({ maxLineSize: MAX_LINE_SIZE });
+    // When the operator explicitly opts into unauthenticated connections
+    // (VELLUM_DAEMON_NOAUTH=1), auto-authenticate so clients that can't
+    // read the local session token file (e.g. SSH-forwarded sockets)
+    // aren't disconnected by the auth timeout. This is intentionally
+    // gated on a separate flag — a custom socket path alone (via
+    // VELLUM_DAEMON_SOCKET) no longer bypasses token auth.
+    if (hasNoAuthOverride()) {
+      this.authenticatedSockets.add(socket);
+      log.warn('Auto-authenticated client (VELLUM_DAEMON_NOAUTH is set — token auth bypassed)');
+      this.send(socket, { type: 'auth_result', success: true });
+      this.sendInitialSession(socket).catch((err) => {
+        log.error({ err }, 'Failed to send initial session info after auto-auth');
+      });
+    }
+    // Require authentication before sending session info or accepting
+    // commands. Clients must send { type: 'auth', token } as their
+    // first message within AUTH_TIMEOUT_MS.
+    const authTimer = setTimeout(() => {
+      if (!this.authenticatedSockets.has(socket)) {
+        log.warn('Client failed to authenticate within timeout, disconnecting');
+        this.send(socket, { type: 'error', message: 'Authentication timeout' });
+        socket.destroy();
+      }
+    }, DaemonServer.AUTH_TIMEOUT_MS);
+    this.authTimeouts.set(socket, authTimer);
+    socket.on('data', (data) => {
+      const chunkReceivedAtMs = Date.now();
+      const parseStartNs = process.hrtime.bigint();
+      let parsed;
+      try {
+        parsed = parser.feedRaw(data.toString());
+      } catch (err) {
+        log.error({ err }, 'IPC parse error (malformed JSON or message exceeded size limit), dropping client');
+        socket.write(serialize({ type: 'error', message: `IPC parse error: ${(err as Error).message}` }));
+        socket.destroy();
+        return;
+      }
+      const parsedAtMs = Date.now();
+      const parseDurationMs = Number(process.hrtime.bigint() - parseStartNs) / 1_000_000;
+      for (const entry of parsed) {
+        const msg = entry.msg;
+        if (typeof msg === 'object' && msg !== null && (msg as { type?: unknown }).type === 'cu_observation') {
+          const maybeSessionId = (msg as { sessionId?: unknown }).sessionId;
+          const sessionId = typeof maybeSessionId === 'string' ? maybeSessionId : 'unknown';
+          const previousSequence = this.cuObservationParseSequence.get(sessionId) ?? 0;
+          const sequence = previousSequence + 1;
+          this.cuObservationParseSequence.set(sessionId, sequence);
+          log.info({
+            sessionId,
+            sequence,
+            chunkReceivedAtMs,
+            parsedAtMs,
+            parseDurationMs,
+            messageBytes: entry.rawByteLength,
+          }, 'IPC_METRIC cu_observation_parse');
+        }
+        const result = validateClientMessage(msg);
+        if (!result.valid) {
+          log.warn({ reason: result.reason }, 'Invalid IPC message, dropping client');
+          socket.write(serialize({ type: 'error', message: `Invalid message: ${result.reason}` }));
+          socket.destroy();
+          return;
+        }
+        // Auth gate: first message must be 'auth' with a valid token.
+        if (!this.authenticatedSockets.has(socket)) {
+          const pendingTimer = this.authTimeouts.get(socket);
+          if (pendingTimer) {
+            clearTimeout(pendingTimer);
+            this.authTimeouts.delete(socket);
+          }
+          if (result.message.type === 'auth') {
+            const authMsg = result.message as { type: 'auth'; token: string };
+            if (authMsg.token === this.sessionToken) {
+              this.authenticatedSockets.add(socket);
+              this.send(socket, { type: 'auth_result', success: true });
+              this.sendInitialSession(socket).catch((err) => {
+                log.error({ err }, 'Failed to send initial session info after auth');
+              });
+            } else {
+              log.warn('Client provided invalid auth token');
+              this.send(socket, { type: 'auth_result', success: false, message: 'Invalid token' });
+              socket.destroy();
+            }
+            continue;
+          }
+          // Non-auth message from unauthenticated socket
+          log.warn({ type: result.message.type }, 'Unauthenticated client sent non-auth message, disconnecting');
+          this.send(socket, { type: 'error', message: 'Authentication required' });
+          socket.destroy();
+          return;
+        }
+        // If an already-authenticated socket sends an auth message (e.g.
+        // auto-auth'd client that also has a local token), respond with
+        // auth_result so the client doesn't hang waiting for the handshake.
+        if (result.message.type === 'auth') {
+          this.send(socket, { type: 'auth_result', success: true });
+          continue;
+        }
+        this.dispatchMessage(result.message, socket);
+      }
+    });
+    socket.on('close', () => {
+      const pendingAuthTimer = this.authTimeouts.get(socket);
+      if (pendingAuthTimer) {
+        clearTimeout(pendingAuthTimer);
+        this.authTimeouts.delete(socket);
+      }
+      this.authenticatedSockets.delete(socket);
+      this.connectedSockets.delete(socket);
+      this.socketSandboxOverride.delete(socket);
+      const sessionId = this.socketToSession.get(socket);
+      if (sessionId) {
+        const session = this.sessions.get(sessionId);
+        if (session) {
+          session.abort();
+        }
+        getSubagentManager().abortAllForParent(sessionId);
+      }
+      this.socketToSession.delete(socket);
+      const cuSessionIds = this.socketToCuSession.get(socket);
+      if (cuSessionIds) {
+        for (const cuSessionId of cuSessionIds) {
+          this.cuObservationParseSequence.delete(cuSessionId);
+          const cuSession = this.cuSessions.get(cuSessionId);
+          if (cuSession) {
+            cuSession.abort();
+            this.cuSessions.delete(cuSessionId);
+          }
+        }
+      }
+      this.socketToCuSession.delete(socket);
+      log.info('Client disconnected');
+    });
+    socket.on('error', (err) => {
+      log.error({ err, remoteAddress: socket.remoteAddress }, 'Client socket error');
+    });
+  }
+  /** Low-level wire write — does not publish to the assistant-events hub. */
+  private writeToSocket(socket: net.Socket, msg: ServerMessage): void {
+    if (!socket.destroyed && socket.writable) {
+      socket.write(serialize(msg));
+    }
+  }
+  private send(socket: net.Socket, msg: ServerMessage): void {
+    this.writeToSocket(socket, msg);
+    // Best-effort sessionId: prefer message field, fall back to socket binding.
+    const msgRecord = msg as unknown as Record<string, unknown>;
+    const sessionId =
+      ('sessionId' in msg && typeof msgRecord.sessionId === 'string'
+        ? msgRecord.sessionId as string
+        : undefined) ?? this.socketToSession.get(socket);
+    this.publishAssistantEvent(msg, sessionId, this.assistantId);
+  }
+  broadcast(msg: ServerMessage, excludeSocket?: net.Socket): void {
+    for (const socket of this.authenticatedSockets) {
+      if (socket === excludeSocket) continue;
+      this.writeToSocket(socket, msg);  // bypass per-socket hub publish
+    }
+    // Publish once for the broadcast. Prefer message-level sessionId; fall back
+    // to excludeSocket's session binding so session-scoped events (e.g.
+    // assistant_text_delta emitted without a sessionId field) are correctly tagged.
+    const msgRecord = msg as unknown as Record<string, unknown>;
+    const sessionId =
+      ('sessionId' in msg && typeof msgRecord.sessionId === 'string'
+        ? msgRecord.sessionId as string
+        : undefined) ?? (excludeSocket ? this.socketToSession.get(excludeSocket) : undefined);
+    this.publishAssistantEvent(msg, sessionId, this.assistantId);
+  }
+  /**
+   * Publish `msg` as an `AssistantEvent` to the process-level hub.
+   * Publishes are serialized via a promise chain so that subscribers always
+   * observe events in the order they were sent (e.g. text deltas before
+   * message_complete), even when subscriber callbacks are async.
+   */
+  private _hubChain: Promise<void> = Promise.resolve();
+  private publishAssistantEvent(msg: ServerMessage, sessionId?: string, assistantId?: string): void {
+    const event = buildAssistantEvent(assistantId ?? this.assistantId, msg, sessionId);
+    this._hubChain = this._hubChain
+      .then(() => assistantEventHub.publish(event))
+      .catch((err: unknown) => {
+        log.warn({ err }, 'assistant-events hub subscriber threw during IPC send');
+      });
+  }
+  private async sendInitialSession(socket: net.Socket): Promise<void> {
+    // Only send session info for an existing conversation. Don't create one —
+    // the client will create its own session via session_create when the user
+    // sends a message. Creating one here would produce an orphaned session
+    // that the macOS client rejects (correlation ID mismatch) but that still
+    // appears in session_list on subsequent launches.
+    const conversation = conversationStore.getLatestConversation();
+    if (!conversation) {
+      this.send(socket, {
+        type: 'daemon_status',
+        httpPort: this.httpPort,
+        version: daemonVersion,
+      });
+      return;
+    }
+    // Warm session state for commands like undo/usage after reconnect without
+    // rebinding the active IPC output client to this passive socket.
+    await this.getOrCreateSession(conversation.id, undefined, false);
+    this.send(socket, {
+      type: 'session_info',
+      sessionId: conversation.id,
+      title: conversation.title ?? 'New Conversation',
+      threadType: normalizeThreadType(conversation.threadType),
+    });
+    this.send(socket, {
+      type: 'daemon_status',
+      httpPort: this.httpPort,
+      version: daemonVersion,
+    });
+  }
+  private async getOrCreateSession(
+    conversationId: string,
+    socket?: net.Socket,
+    rebindClient = true,
+    options?: SessionCreateOptions,
+  ): Promise<Session> {
+    let session = this.sessions.get(conversationId);
+    const sendToClient = socket
+      ? (msg: ServerMessage) => this.send(socket, msg)
+      : () => {};
+    const maybeBindClient = (target: Session): void => {
+      if (!rebindClient || !socket) return;
+      target.updateClient(sendToClient);
+      target.setSandboxOverride(this.socketSandboxOverride.get(socket));
+      // Update the sender for any active child subagents so they route
+      // through the new socket instead of the stale one from spawn time.
+      getSubagentManager().updateParentSender(conversationId, sendToClient);
+    };
+    // Persist session options so they survive eviction/recreation.
+    if (options && Object.values(options).some(v => v !== undefined)) {
+      this.sessionOptions.set(conversationId, {
+        ...this.sessionOptions.get(conversationId),
+        ...options,
+      });
+    }
+    if (!session || (session.isStale() && !session.isProcessing())) {
+      // Dispose the outgoing stale session before replacing it.
+      if (session) {
+        getSubagentManager().abortAllForParent(conversationId);
+        session.dispose();
+      }
+      // Check if another caller is already creating this session.
+      // Without this guard, two concurrent getOrCreateSession calls for the
+      // same conversationId would both pass the null/stale check, both create
+      // a Session + loadFromDb(), and the second set() would orphan the first.
+      const pending = this.sessionCreating.get(conversationId);
+      if (pending) {
+        session = await pending;
+        maybeBindClient(session);
+        return session;
+      }
+      // Recover stored options for this conversation (survives eviction).
+      const storedOptions = this.sessionOptions.get(conversationId);
+      const createPromise = (async () => {
+        const config = getConfig();
+        let provider = getFailoverProvider(config.provider, config.providerOrder);
+        const { rateLimit } = config;
+        if (rateLimit.maxRequestsPerMinute > 0 || rateLimit.maxTokensPerSession > 0) {
+          provider = new RateLimitProvider(provider, rateLimit, this.sharedRequestTimestamps);
+        }
+        const workingDir = getSandboxWorkingDir();
+        const systemPrompt = storedOptions?.systemPromptOverride ?? buildSystemPrompt();
+        const maxTokens = storedOptions?.maxResponseTokens ?? config.maxTokens;
+        const memoryPolicy = this.deriveMemoryPolicy(conversationId);
+        const newSession = new Session(
+          conversationId,
+          provider,
+          systemPrompt,
+          maxTokens,
+          rebindClient ? sendToClient : () => {},
+          workingDir,
+          (msg) => this.broadcast(msg, socket),
+          memoryPolicy,
+        );
+        // When created without a socket (HTTP path), mark the session
+        // so interactive prompts (e.g. host attachment reads) can fail
+        // fast instead of waiting for a timeout with no client to respond.
+        if (!socket) {
+          newSession.updateClient(sendToClient, true);
+        }
+        await newSession.loadFromDb();
+        this.applyTransportMetadata(newSession, storedOptions);
+        if (rebindClient && socket) {
+          newSession.setSandboxOverride(this.socketSandboxOverride.get(socket));
+        }
+        this.sessions.set(conversationId, newSession);
+        return newSession;
+      })();
+      this.sessionCreating.set(conversationId, createPromise);
+      try {
+        session = await createPromise;
+      } finally {
+        this.sessionCreating.delete(conversationId);
+      }
+      this.evictor.touch(conversationId);
+    } else {
+      // Rebind to the new socket so IPC goes to the current client.
+      maybeBindClient(session);
+      this.applyTransportMetadata(session, options);
+      this.evictor.touch(conversationId);
+    }
+    return session;
+  }
+  private handlerContext(): HandlerContext {
+    return {
+      sessions: this.sessions,
+      socketToSession: this.socketToSession,
+      cuSessions: this.cuSessions,
+      socketToCuSession: this.socketToCuSession,
+      cuObservationParseSequence: this.cuObservationParseSequence,
+      socketSandboxOverride: this.socketSandboxOverride,
+      sharedRequestTimestamps: this.sharedRequestTimestamps,
+      debounceTimers: this.debounceTimers,
+      suppressConfigReload: this.suppressConfigReload,
+      setSuppressConfigReload: (value: boolean) => { this.suppressConfigReload = value; },
+      updateConfigFingerprint: () => {
+        this.lastConfigFingerprint = this.configFingerprint(getConfig());
+        this.lastConfigRefreshTime = Date.now();
+      },
+      send: (socket, msg) => this.send(socket, msg),
+      broadcast: (msg) => this.broadcast(msg),
+      clearAllSessions: () => this.clearAllSessions(),
+      getOrCreateSession: (id, socket?, rebind?, options?) =>
+        this.getOrCreateSession(id, socket, rebind, options),
+      touchSession: (id) => this.evictor.touch(id),
+    };
+  }
+  private dispatchMessage(msg: ClientMessage, socket: net.Socket): void {
+    if (msg.type !== 'ping') {
+      const now = Date.now();
+      if (now - this.lastConfigRefreshTime >= DaemonServer.CONFIG_REFRESH_INTERVAL_MS) {
+        try {
+          this.refreshConfigFromSources();
+          this.lastConfigRefreshTime = now;
+        } catch (err) {
+          log.warn({ err }, 'Failed to refresh config from secure sources before handling IPC message');
+        }
+      }
+    }
+    handleMessage(msg, socket, this.handlerContext());
+  }
+  /**
+   * Persist a user message and start the agent loop in the background.
+   * Returns the messageId immediately without waiting for the agent loop
+   * to complete. Used by the HTTP sendMessage endpoint so the response
+   * is not blocked for the duration of the agent loop.
+   */
+  async persistAndProcessMessage(
+    conversationId: string,
+    content: string,
+    attachmentIds?: string[],
+    options?: SessionCreateOptions,
+    sourceChannel?: string,
+  ): Promise<{ messageId: string }> {
+    // Block inbound content that contains secrets — mirrors the IPC check in sessions.ts
+    const ingressCheck = checkIngressForSecrets(content);
+    if (ingressCheck.blocked) {
+      throw new IngressBlockedError(ingressCheck.userNotice!, ingressCheck.detectedTypes);
+    }
+    const session = await this.getOrCreateSession(conversationId, undefined, true, options);
+    // Reject concurrent requests upfront. The HTTP path should never use
+    // the message queue — it returns 409 to the caller instead.
+    if (session.isProcessing()) {
+      throw new Error('Session is already processing a message');
+    }
+    session.setChannelCapabilities(resolveChannelCapabilities(sourceChannel));
+    // Resolve attachment IDs to full attachment data for the session
+    const attachments = attachmentIds
+      ? attachmentsStore.getAttachmentsByIds(attachmentIds).map((a) => ({
+          id: a.id,
+          filename: a.originalFilename,
+          mimeType: a.mimeType,
+          data: a.dataBase64,
+        }))
+      : [];
+    // Persist the user message immediately after the isProcessing() guard.
+    // This synchronously sets session.processing = true, closing the race
+    // window that previously existed between the guard and the async bridge
+    // check (two concurrent requests could both pass isProcessing() and
+    // race into message handling).
+    const requestId = crypto.randomUUID();
+    const messageId = session.persistUserMessage(content, attachments, requestId);
+    // Now that the processing lock is held, check the call-answer bridge.
+    let bridgeHandled = false;
+    try {
+      const bridgeResult = await tryRouteCallMessage(conversationId, content, messageId);
+      bridgeHandled = bridgeResult.handled;
+    } catch (err) {
+      log.warn({ err, conversationId }, 'Call bridge check failed (non-fatal), proceeding with agent loop');
+    }
+    if (bridgeHandled) {
+      // The message was consumed by the call system. Release the session.
+      resetSessionProcessingState(session);
+      // Drain any queued messages that arrived while processing was true.
+      session.drainQueue('loop_complete');
+      log.info({ conversationId, messageId }, 'User message consumed by call bridge, skipping agent loop');
+      return { messageId };
+    }
+    // Fire-and-forget the agent loop. Errors are logged but do not
+    // affect the HTTP response (the client polls GET /messages).
+    session.runAgentLoop(content, messageId, () => {}).catch((err) => {
+      log.error({ err, conversationId }, 'Background agent loop failed');
+    });
+    return { messageId };
+  }
+  /**
+   * Process a message from the HTTP runtime API (blocking).
+   * Gets or creates a session and runs the full agent loop before returning.
+   * Used by the channel inbound endpoint which needs the assistant reply.
+   */
+  async processMessage(
+    conversationId: string,
+    content: string,
+    attachmentIds?: string[],
+    options?: SessionCreateOptions,
+    sourceChannel?: string,
+  ): Promise<{ messageId: string }> {
+    // Block inbound content that contains secrets — mirrors the IPC check in sessions.ts
+    const ingressCheck = checkIngressForSecrets(content);
+    if (ingressCheck.blocked) {
+      throw new IngressBlockedError(ingressCheck.userNotice!, ingressCheck.detectedTypes);
+    }
+    const session = await this.getOrCreateSession(conversationId, undefined, true, options);
+    if (session.isProcessing()) {
+      throw new Error('Session is already processing a message');
+    }
+    session.setChannelCapabilities(resolveChannelCapabilities(sourceChannel));
+    // Resolve attachment IDs to full attachment data for the session
+    const attachments = attachmentIds
+      ? attachmentsStore.getAttachmentsByIds(attachmentIds).map((a) => ({
+          id: a.id,
+          filename: a.originalFilename,
+          mimeType: a.mimeType,
+          data: a.dataBase64,
+        }))
+      : [];
+    // Resolve slash commands before persistence (synchronous — no race window).
+    const slashResult = resolveSlash(content);
+    // Unknown slash command — persist the exchange (user + assistant) and
+    // return immediately. This path doesn't set processing=true since no
+    // agent loop runs, so there is no race concern.
+    if (slashResult.kind === 'unknown') {
+      const userMsg = createUserMessage(content, attachments);
+      const persisted = conversationStore.addMessage(
+        conversationId,
+        'user',
+        JSON.stringify(userMsg.content),
+      );
+      session.getMessages().push(userMsg);
+      const assistantMsg = createAssistantMessage(slashResult.message);
+      conversationStore.addMessage(
+        conversationId,
+        'assistant',
+        JSON.stringify(assistantMsg.content),
+      );
+      session.getMessages().push(assistantMsg);
+      return { messageId: persisted.id };
+    }
+    const resolvedContent = slashResult.content;
+    // Preactivate skill tools when slash resolution identifies a known skill
+    if (slashResult.kind === 'rewritten') {
+      (session as unknown as { preactivatedSkillIds?: string[] }).preactivatedSkillIds = [slashResult.skillId];
+    }
+    // Persist the user message immediately after the isProcessing() guard.
+    // This synchronously sets session.processing = true, closing the race
+    // window that previously existed between the guard and the async bridge
+    // check.
+    const requestId = crypto.randomUUID();
+    let messageId: string;
+    try {
+      messageId = session.persistUserMessage(resolvedContent, attachments, requestId);
+    } catch (err) {
+      // runAgentLoop never ran, so its finally block won't clear this
+      (session as unknown as { preactivatedSkillIds?: string[] }).preactivatedSkillIds = undefined;
+      throw err;
+    }
+    // Now that the processing lock is held, check the call-answer bridge.
+    let bridgeHandled = false;
+    try {
+      const bridgeResult = await tryRouteCallMessage(conversationId, resolvedContent, messageId);
+      bridgeHandled = bridgeResult.handled;
+    } catch (err) {
+      log.warn({ err, conversationId }, 'Call bridge check failed (non-fatal), proceeding with agent loop');
+    }
+    if (bridgeHandled) {
+      // The message was consumed by the call system. Release the session.
+      (session as unknown as { preactivatedSkillIds?: string[] }).preactivatedSkillIds = undefined;
+      resetSessionProcessingState(session);
+      // Drain any queued messages that arrived while processing was true.
+      session.drainQueue('loop_complete');
+      log.info({ conversationId, messageId }, 'User message consumed by call bridge, skipping agent loop');
+      return { messageId };
+    }
+    // Run the agent loop (blocking — the channel inbound endpoint needs the reply).
+    await session.runAgentLoop(resolvedContent, messageId, () => {});
+    return { messageId };
+  }
+  /**
+   * Create a RunOrchestrator wired to this server's session management.
+   */
+  createRunOrchestrator(): RunOrchestrator {
+    return new RunOrchestrator({
+      getOrCreateSession: (conversationId) =>
+        this.getOrCreateSession(conversationId),
+      resolveAttachments: (attachmentIds) =>
+        attachmentsStore.getAttachmentsByIds(attachmentIds).map((a) => ({
+          id: a.id,
+          filename: a.originalFilename,
+          mimeType: a.mimeType,
+          data: a.dataBase64,
+        })),
+      deriveDefaultStrictSideEffects: (conversationId) =>
+        this.deriveMemoryPolicy(conversationId).strictSideEffects,
+    });
+  }
+}
+/**
+ * Reset the processing state set by `persistUserMessage` when the agent loop
+ * is intentionally skipped (e.g. call-answer bridge consumed the message).
+ */
+function resetSessionProcessingState(session: Session): void {
+  const s = session as unknown as {
+    processing: boolean;
+    abortController: AbortController | null;
+    currentRequestId: string | undefined;
+  };
+  s.processing = false;
+  s.abortController = null;
+  s.currentRequestId = undefined;
+}