@vellumai/assistant 0.4.48 → 0.4.50

package/src/runtime/guardian-reply-router.ts

@@ -30,6 +30,7 @@ import {
   type CanonicalGuardianRequest,
   getCanonicalGuardianRequest,
   getCanonicalGuardianRequestByCode,
+  isRequestExpired,
   listCanonicalGuardianRequests,
 } from "../memory/canonical-guardian-store.js";
 import {
@@ -198,49 +199,50 @@ function findPendingCanonicalRequests(
   pendingRequestIds?: string[],
   conversationId?: string,
 ): CanonicalGuardianRequest[] {
+  let results: CanonicalGuardianRequest[];
+
   // When explicit IDs are provided, look them up directly
   if (pendingRequestIds) {
     if (pendingRequestIds.length === 0) {
       return [];
     }
-    return pendingRequestIds
+    results = pendingRequestIds
       .map(getCanonicalGuardianRequest)
       .filter((r): r is CanonicalGuardianRequest => r?.status === "pending");
-  }
-
-  // Query by guardian identity when available
-  if (actor.actorExternalUserId) {
-    return listCanonicalGuardianRequests({
+  } else if (actor.actorExternalUserId) {
+    // Query by guardian identity when available
+    results = listCanonicalGuardianRequests({
       status: "pending",
       guardianExternalUserId: actor.actorExternalUserId,
     });
-  }
-
-  // Actors without an actorExternalUserId: scope by conversationId so the NL
-  // path can discover pending requests bound to this conversation.
-  // Include guardianPrincipalId filter when available so the guardian only
-  // sees requests they are authorized to act on.
-  if (conversationId) {
-    return listCanonicalGuardianRequests({
+  } else if (conversationId) {
+    // Actors without an actorExternalUserId: scope by conversationId so the NL
+    // path can discover pending requests bound to this conversation.
+    // Include guardianPrincipalId filter when available so the guardian only
+    // sees requests they are authorized to act on.
+    results = listCanonicalGuardianRequests({
       status: "pending",
       conversationId,
       ...(actor.guardianPrincipalId
         ? { guardianPrincipalId: actor.guardianPrincipalId }
         : {}),
     });
-  }
-
-  // Actors with a guardianPrincipalId but no actorExternalUserId or
-  // conversationId: query by principal so desktop sessions can still
-  // discover pending guardian work via their bound principal.
-  if (actor.guardianPrincipalId) {
-    return listCanonicalGuardianRequests({
+  } else if (actor.guardianPrincipalId) {
+    // Actors with a guardianPrincipalId but no actorExternalUserId or
+    // conversationId: query by principal so desktop sessions can still
+    // discover pending guardian work via their bound principal.
+    results = listCanonicalGuardianRequests({
       status: "pending",
       guardianPrincipalId: actor.guardianPrincipalId,
     });
+  } else {
+    return [];
   }
 
-  return [];
+  // Exclude requests that have passed their expiresAt deadline — they can
+  // no longer be resolved and should not trigger disambiguation or NL
+  // classification.
+  return results.filter((r) => !isRequestExpired(r));
 }
 
 /** Map an approval action string to the NL engine's allowed actions for guardians. */

package/src/runtime/http-server.ts

@@ -110,7 +110,6 @@ import {
   stopGuardianExpirySweep,
 } from "./routes/channel-routes.js";
 import { channelVerificationRouteDefinitions } from "./routes/channel-verification-routes.js";
-import { computerUseRouteDefinitions } from "./routes/computer-use-routes.js";
 import {
   contactCatchAllRouteDefinitions,
   contactRouteDefinitions,
@@ -126,6 +125,7 @@ import { guardianActionRouteDefinitions } from "./routes/guardian-action-routes.
 import { handleGuardianBootstrap } from "./routes/guardian-bootstrap-routes.js";
 import { handleGuardianRefresh } from "./routes/guardian-refresh-routes.js";
 import { hostBashRouteDefinitions } from "./routes/host-bash-routes.js";
+import { hostCuRouteDefinitions } from "./routes/host-cu-routes.js";
 import { hostFileRouteDefinitions } from "./routes/host-file-routes.js";
 import { handleHealth } from "./routes/identity-routes.js";
 import { identityRouteDefinitions } from "./routes/identity-routes.js";
@@ -135,7 +135,7 @@ import { telegramRouteDefinitions } from "./routes/integrations/telegram.js";
 import { twilioRouteDefinitions } from "./routes/integrations/twilio.js";
 import { inviteRouteDefinitions } from "./routes/invite-routes.js";
 import { logExportRouteDefinitions } from "./routes/log-export-routes.js";
-import { mcpRouteDefinitions } from "./routes/mcp-routes.js";
+import { memoryItemRouteDefinitions } from "./routes/memory-item-routes.js";
 import { migrationRouteDefinitions } from "./routes/migration-routes.js";
 import type { PairingHandlerContext } from "./routes/pairing-routes.js";
 import {
@@ -155,6 +155,7 @@ import { surfaceActionRouteDefinitions } from "./routes/surface-action-routes.js
 import { surfaceContentRouteDefinitions } from "./routes/surface-content-routes.js";
 import { trustRulesRouteDefinitions } from "./routes/trust-rules-routes.js";
 import { usageRouteDefinitions } from "./routes/usage-routes.js";
+import { watchRouteDefinitions } from "./routes/watch-routes.js";
 import { workItemRouteDefinitions } from "./routes/work-items-routes.js";
 import { workspaceRouteDefinitions } from "./routes/workspace-routes.js";
 
@@ -216,7 +217,7 @@ export class RuntimeHttpServer {
   private getSkillContext?: RuntimeHttpServerOptions["getSkillContext"];
   private sessionManagementDeps?: RuntimeHttpServerOptions["sessionManagementDeps"];
   private getModelSetContext?: RuntimeHttpServerOptions["getModelSetContext"];
-  private getComputerUseDeps?: RuntimeHttpServerOptions["getComputerUseDeps"];
+  private getWatchDeps?: RuntimeHttpServerOptions["getWatchDeps"];
   private getRecordingDeps?: RuntimeHttpServerOptions["getRecordingDeps"];
   private router: HttpRouter;
 
@@ -237,7 +238,7 @@ export class RuntimeHttpServer {
     this.getSkillContext = options.getSkillContext;
     this.sessionManagementDeps = options.sessionManagementDeps;
     this.getModelSetContext = options.getModelSetContext;
-    this.getComputerUseDeps = options.getComputerUseDeps;
+    this.getWatchDeps = options.getWatchDeps;
     this.getRecordingDeps = options.getRecordingDeps;
     this.router = new HttpRouter(this.buildRouteTable());
   }
@@ -722,9 +723,9 @@ export class RuntimeHttpServer {
       ...secretRouteDefinitions(),
       ...identityRouteDefinitions(),
       ...debugRouteDefinitions(),
-      ...mcpRouteDefinitions(),
       ...usageRouteDefinitions(),
       ...workspaceRouteDefinitions(),
+      ...memoryItemRouteDefinitions(),
       ...settingsRouteDefinitions(),
       ...scheduleRouteDefinitions({
         sendMessageDeps: this.sendMessageDeps,
@@ -946,6 +947,7 @@ export class RuntimeHttpServer {
       ...globalSearchRouteDefinitions(),
       ...approvalRouteDefinitions(),
       ...hostBashRouteDefinitions(),
+      ...hostCuRouteDefinitions(),
       ...hostFileRouteDefinitions(),
       ...(this.getSkillContext
         ? skillRouteDefinitions({
@@ -973,9 +975,9 @@ export class RuntimeHttpServer {
       ...channelReadinessRouteDefinitions(),
       ...attachmentRouteDefinitions(),
 
-      ...(this.getComputerUseDeps
-        ? computerUseRouteDefinitions({
-            getComputerUseDeps: this.getComputerUseDeps,
+      ...(this.getWatchDeps
+        ? watchRouteDefinitions({
+            getWatchDeps: this.getWatchDeps,
           })
         : []),
       ...(this.getRecordingDeps

package/src/runtime/http-types.ts

@@ -219,8 +219,8 @@ export interface RuntimeHttpServerOptions {
   sessionManagementDeps?: SessionManagementDeps;
   /** Lazy factory for model config set context (session eviction, config reload suppression). */
   getModelSetContext?: () => import("../daemon/handlers/config-model.js").ModelSetContext;
-  /** Provider for computer-use session dependencies (CU routes). */
-  getComputerUseDeps?: () => import("./routes/computer-use-routes.js").ComputerUseDeps;
+  /** Provider for watch observation dependencies (watch routes). */
+  getWatchDeps?: () => import("./routes/watch-routes.js").WatchDeps;
   /** Provider for recording dependencies (recording routes). */
   getRecordingDeps?: () => import("./routes/recording-routes.js").RecordingDeps;
 }

package/src/runtime/invite-redemption-service.ts

@@ -146,6 +146,12 @@ export function redeemInvite(params: {
     return { ok: false, reason: "invalid_token" };
   }
 
+  // Guardian channels must not be reactivated via regular invite redemption —
+  // their lifecycle is managed exclusively through the guardian binding flow.
+  if (existingContact && existingContact.role === "guardian") {
+    return { ok: false, reason: "invalid_token" };
+  }
+
   // Inactive member reactivation: when the user already has a member record
   // in a non-active state (revoked/pending), reactivate it via upsertContactChannel
   // and consume an invite use atomically. The fresh-member path below also
@@ -338,6 +344,7 @@ export function redeemVoiceInviteCode(params: {
     externalUserId: canonicalCallerId,
   });
   const existingVoiceChannel = voiceContactResult?.channel ?? null;
+  const voiceContact = voiceContactResult?.contact ?? null;
 
   if (existingVoiceChannel && existingVoiceChannel.status === "active") {
     return {
@@ -352,13 +359,18 @@ export function redeemVoiceInviteCode(params: {
     return { ok: false, reason: "invalid_or_expired" };
   }
 
+  // Guardian channels must not be reactivated via regular invite redemption —
+  // their lifecycle is managed exclusively through the guardian binding flow.
+  if (voiceContact && voiceContact.role === "guardian") {
+    return { ok: false, reason: "invalid_or_expired" };
+  }
+
   // Atomic redemption: upsert member + consume invite use in a transaction
   const STALE_INVITE = Symbol("stale_invite");
   let memberId: string | undefined;
 
   // Reactivation should not overwrite a guardian-managed nickname (same
   // protection as the token-based redemption path above).
-  const voiceContact = voiceContactResult?.contact ?? null;
   const preservedDisplayName = voiceContact?.displayName?.trim().length
     ? voiceContact.displayName
     : (invite.friendName ?? undefined);
@@ -487,6 +499,12 @@ export function redeemInviteByCode(params: {
     return { ok: false, reason: "invalid_token" };
   }
 
+  // Guardian channels must not be reactivated via regular invite redemption —
+  // their lifecycle is managed exclusively through the guardian binding flow.
+  if (existingContact && existingContact.role === "guardian") {
+    return { ok: false, reason: "invalid_token" };
+  }
+
   // Inactive member reactivation: reactivate via upsertContactChannel and consume
   // an invite use atomically.
   if (existingChannel) {

package/src/runtime/invite-service.ts

@@ -8,6 +8,7 @@
  * /v1/contacts/channels endpoints.
  */
 
+import { startInviteCall } from "../calls/call-domain.js";
 import { isChannelId } from "../channels/types.js";
 import {
   createInvite,
@@ -23,6 +24,7 @@ import {
   DEFAULT_USER_REFERENCE,
   resolveGuardianName,
 } from "../prompts/user-reference.js";
+import { getLogger } from "../util/logger.js";
 import { isValidE164 } from "../util/phone.js";
 import { generateVoiceCode, hashVoiceCode } from "../util/voice-code.js";
 import {
@@ -37,6 +39,8 @@ import {
   type VoiceRedemptionOutcome,
 } from "./invite-redemption-service.js";
 
+const log = getLogger("invite-service");
+
 // ---------------------------------------------------------------------------
 // Response shapes — used by both HTTP routes and message handlers
 // ---------------------------------------------------------------------------
@@ -250,6 +254,27 @@ export async function createIngressInvite(params: {
     });
   }
 
+  // For voice invites with a known phone number, initiate an outbound call
+  // so the contact is prompted to enter their code immediately.
+  if (
+    params.sourceChannel === "phone" &&
+    params.expectedExternalUserId &&
+    params.friendName &&
+    effectiveGuardianName
+  ) {
+    // Fire-and-forget: don't block invite creation on call initiation
+    startInviteCall({
+      phoneNumber: params.expectedExternalUserId,
+      friendName: params.friendName,
+      guardianName: effectiveGuardianName,
+    }).catch((err) => {
+      log.warn(
+        { err, inviteId: invite.id },
+        "Failed to initiate outbound invite call",
+      );
+    });
+  }
+
   // Voice invites must not expose the token — callers must redeem via the
   // identity-bound voice code flow, not the generic token redemption path.
   return {

package/src/runtime/middleware/twilio-validation.ts

@@ -3,7 +3,6 @@
  */
 
 import { TwilioConversationRelayProvider } from "../../calls/twilio-provider.js";
-import { isTwilioWebhookValidationDisabled } from "../../config/env.js";
 import { loadConfig } from "../../config/loader.js";
 import { getPublicBaseUrl } from "../../inbound/public-ingress-urls.js";
 import { getLogger } from "../../util/logger.js";
@@ -51,22 +50,13 @@ export const GATEWAY_ONLY_BLOCKED_SUBPATHS = new Set([
  * Returns a 403 Response if signature validation fails.
  *
  * Fail-closed: if the auth token is not configured, the request is rejected
- * with 403 rather than silently skipping validation. An explicit local-dev
- * bypass is available via TWILIO_WEBHOOK_VALIDATION_DISABLED=true.
+ * with 403 rather than silently skipping validation.
  */
 export async function validateTwilioWebhook(
   req: Request,
 ): Promise<{ body: string } | Response> {
   const rawBody = await req.text();
 
-  // Allow explicit local-dev bypass -- must be exactly "true"
-  if (isTwilioWebhookValidationDisabled()) {
-    log.warn(
-      "Twilio webhook signature validation explicitly disabled via TWILIO_WEBHOOK_VALIDATION_DISABLED",
-    );
-    return { body: rawBody };
-  }
-
   const authToken = TwilioConversationRelayProvider.getAuthToken();
 
   if (!authToken) {

package/src/runtime/pending-interactions.ts

@@ -1,12 +1,13 @@
 /**
  * In-memory tracker that maps requestId to session info for pending
- * confirmation, secret, host_bash, and host_file interactions.
+ * confirmation, secret, host_bash, host_file, and host_cu interactions.
  *
  * When the agent loop emits a confirmation_request, secret_request,
- * host_bash_request, or host_file_request, the onEvent callback registers
- * the interaction here. Standalone HTTP endpoints (/v1/confirm, /v1/secret,
- * /v1/trust-rules, /v1/host-bash-result, /v1/host-file-result) look up
- * the session from this tracker to resolve the interaction.
+ * host_bash_request, host_file_request, or host_cu_request, the onEvent
+ * callback registers the interaction here. Standalone HTTP endpoints
+ * (/v1/confirm, /v1/secret, /v1/trust-rules, /v1/host-bash-result,
+ * /v1/host-file-result, /v1/host-cu-result) look up the session from this
+ * tracker to resolve the interaction.
  */
 
 import type { Session } from "../daemon/session.js";
@@ -29,7 +30,7 @@ export interface ConfirmationDetails {
 export interface PendingInteraction {
   session: Session;
   conversationId: string;
-  kind: "confirmation" | "secret" | "host_bash" | "host_file";
+  kind: "confirmation" | "secret" | "host_bash" | "host_file" | "host_cu";
   confirmationDetails?: ConfirmationDetails;
 }
 
@@ -82,19 +83,20 @@ export function getByConversation(
  * Remove pending confirmation and secret interactions for a given session.
  * Used when auto-denying all pending interactions (e.g. new user message).
  *
- * host_bash and host_file interactions are intentionally skipped — they
- * represent in-flight tool executions proxied to the client, not
+ * host_bash, host_file, and host_cu interactions are intentionally skipped
+ * — they represent in-flight tool executions proxied to the client, not
  * confirmations to auto-deny. Removing them would orphan the request: the
- * client would POST to /v1/host-bash-result or /v1/host-file-result after
- * completing the operation, get a 404, and the proxy timer would fire with
- * a spurious timeout error.
+ * client would POST to /v1/host-bash-result, /v1/host-file-result, or
+ * /v1/host-cu-result after completing the operation, get a 404, and the
+ * proxy timer would fire with a spurious timeout error.
  */
 export function removeBySession(session: Session): void {
   for (const [requestId, interaction] of pending) {
     if (
       interaction.session === session &&
       interaction.kind !== "host_bash" &&
-      interaction.kind !== "host_file"
+      interaction.kind !== "host_file" &&
+      interaction.kind !== "host_cu"
     ) {
       pending.delete(requestId);
     }

package/src/runtime/routes/brain-graph-routes.ts

@@ -2,7 +2,7 @@
  * Route handlers for the brain graph visualization endpoint.
  *
  * Queries the memory database to return a knowledge graph shaped for brain-lobe
- * visualization, with entities mapped to brain regions based on their type.
+ * visualization, with memory items mapped to brain regions based on their kind.
  */
 
 import { readFileSync } from "node:fs";
@@ -11,65 +11,23 @@ import { join } from "node:path";
 import { count } from "drizzle-orm";
 
 import { getDb } from "../../memory/db.js";
-import {
-  memoryEntities,
-  memoryEntityRelations,
-  memoryItems,
-} from "../../memory/schema.js";
+import { memoryItems } from "../../memory/schema.js";
 import { resolveBundledDir } from "../../util/bundled-asset.js";
 import type { RouteDefinition } from "../http-router.js";
 
-function getLobeRegion(entityType: string): string {
-  switch (entityType) {
-    case "person":
-    case "organization":
-      return "right-social";
-    case "project":
-    case "company":
-      return "left-planning";
-    case "tool":
-      return "left-technical";
-    case "concept":
-      return "right-creative";
-    case "location":
-      return "right-spatial";
-    default:
-      return "center";
-  }
-}
-
-function getEntityColor(entityType: string): string {
-  switch (entityType) {
-    case "person":
-      return "#22c55e";
-    case "project":
-      return "#f97316";
-    case "tool":
-      return "#06b6d4";
-    case "company":
-      return "#a855f7";
-    case "organization":
-      return "#a855f7";
-    case "concept":
-      return "#eab308";
-    case "location":
-      return "#14b8a6";
-    default:
-      return "#94a3b8";
-  }
-}
-
 function getMemoryKindColor(kind: string): string {
   switch (kind) {
-    case "profile":
+    case "identity":
       return "#8b5cf6";
     case "preference":
       return "#3b82f6";
+    case "project":
+      return "#10b981";
+    case "decision":
+      return "#f59e0b";
     case "constraint":
       return "#ef4444";
-    case "instruction":
-      return "#f59e0b";
-    case "style":
+    case "event":
       return "#ec4899";
     default:
       return "#94a3b8";
@@ -80,27 +38,6 @@ export function handleGetBrainGraph(): Response {
   try {
     const db = getDb();
 
-    const entityRows = db
-      .select({
-        id: memoryEntities.id,
-        name: memoryEntities.name,
-        type: memoryEntities.type,
-        mentionCount: memoryEntities.mentionCount,
-        firstSeenAt: memoryEntities.firstSeenAt,
-        lastSeenAt: memoryEntities.lastSeenAt,
-      })
-      .from(memoryEntities)
-      .all();
-
-    const relationRows = db
-      .select({
-        sourceEntityId: memoryEntityRelations.sourceEntityId,
-        targetEntityId: memoryEntityRelations.targetEntityId,
-        relation: memoryEntityRelations.relation,
-      })
-      .from(memoryEntityRelations)
-      .all();
-
     const kindCountRows = db
       .select({
         kind: memoryItems.kind,
@@ -110,23 +47,6 @@ export function handleGetBrainGraph(): Response {
       .groupBy(memoryItems.kind)
       .all();
 
-    const entities = entityRows.map((entity) => ({
-      id: entity.id,
-      name: entity.name,
-      type: entity.type,
-      lobeRegion: getLobeRegion(entity.type),
-      color: getEntityColor(entity.type),
-      mentionCount: entity.mentionCount,
-      firstSeenAt: entity.firstSeenAt,
-      lastSeenAt: entity.lastSeenAt,
-    }));
-
-    const relations = relationRows.map((rel) => ({
-      sourceId: rel.sourceEntityId,
-      targetId: rel.targetEntityId,
-      relation: rel.relation,
-    }));
-
     const memorySummary = kindCountRows.map((row) => ({
       kind: row.kind,
       count: row.count,
@@ -139,8 +59,8 @@ export function handleGetBrainGraph(): Response {
     );
 
     return Response.json({
-      entities,
-      relations,
+      entities: [],
+      relations: [],
       memorySummary,
       totalKnowledgeCount,
       generatedAt: new Date().toISOString(),

package/src/runtime/routes/channel-delivery-routes.ts

@@ -5,7 +5,6 @@
 import * as deliveryStatus from "../../memory/delivery-status.js";
 import { httpError } from "../http-errors.js";
 export {
-  deliverAttachmentsOnly,
   type DeliverReplyOptions,
   deliverReplyViaCallback,
 } from "../channel-reply-delivery.js";