npm - @vellumai/assistant - Versions diffs - 0.9.0 → 0.10.0-staging.2 - Mend

@vellumai/assistant 0.9.0 → 0.10.0-staging.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (572) hide show

package/ARCHITECTURE.md +18 -34
package/bun.lock +7 -8
package/docs/activation-funnel-telemetry.md +28 -22
package/docs/architecture/security.md +29 -28
package/docs/stt-provider-onboarding.md +3 -5
package/docs/workflows-testing.md +13 -44
package/docs/workflows.md +3 -5
package/node_modules/@vellumai/ces-client/src/__tests__/ces-client.test.ts +47 -0
package/node_modules/@vellumai/ces-client/src/rpc-client.ts +28 -5
package/node_modules/@vellumai/environments/src/seeds.ts +2 -5
package/node_modules/@vellumai/gateway-client/src/admission-policy-contract.ts +97 -0
package/node_modules/@vellumai/gateway-client/src/inbound-contract.ts +10 -0
package/node_modules/@vellumai/gateway-client/src/index.ts +32 -6
package/node_modules/@vellumai/gateway-client/src/outbound-contract.ts +119 -0
package/node_modules/@vellumai/gateway-client/src/types.ts +15 -84
package/openapi.yaml +976 -63
package/package.json +2 -1
package/scripts/sync-llm-catalog.ts +6 -15
package/scripts/sync-web-search-catalog.ts +3 -11
package/src/__tests__/access-request-card-view.test.ts +98 -0
package/src/__tests__/access-request-seed-content-blocks.test.ts +2 -4
package/src/__tests__/actor-trust-resolver-address-fallback.test.ts +72 -32
package/src/__tests__/agent-loop-compaction-strip.test.ts +241 -0
package/src/__tests__/agent-loop-mutable-latest-user-message.test.ts +16 -13
package/src/__tests__/agent-loop-output-hooks.test.ts +69 -0
package/src/__tests__/agent-loop-override-profile.test.ts +25 -0
package/src/__tests__/always-loaded-tools-guard.test.ts +2 -3
package/src/__tests__/app-compiler.test.ts +15 -1
package/src/__tests__/app-dir-path-guard.test.ts +0 -1
package/src/__tests__/assistant-feature-flag-guard.test.ts +1 -4
package/src/__tests__/assistant-feature-flag-guardrails.test.ts +0 -2
package/src/__tests__/auth-fallback-events-store.test.ts +6 -14
package/src/__tests__/avatar-identity-sync.test.ts +2 -27
package/src/__tests__/btw-routes.test.ts +6 -8
package/src/__tests__/call-pointer-messages.test.ts +28 -0
package/src/__tests__/cancel-clears-processing.test.ts +89 -0
package/src/__tests__/channel-approval-routes.test.ts +0 -4
package/src/__tests__/channel-inbound-disk-pressure.test.ts +5 -15
package/src/__tests__/checker.test.ts +0 -3
package/src/__tests__/cli-memory-v2-reembed-skills.test.ts +3 -4
package/src/__tests__/compactor-image-manifest-trust.test.ts +21 -1
package/src/__tests__/compactor-summary-call-truncation.test.ts +223 -0
package/src/__tests__/config-loader-backfill.test.ts +268 -27
package/src/__tests__/config-schema.test.ts +35 -0
package/src/__tests__/config-watcher.test.ts +0 -18
package/src/__tests__/confirmation-request-guardian-bridge.test.ts +2 -2
package/src/__tests__/contact-store-user-file.test.ts +0 -6
package/src/__tests__/contacts-tools.test.ts +29 -0
package/src/__tests__/conversation-agent-loop-inference-profile.test.ts +22 -0
package/src/__tests__/conversation-agent-loop-overflow.test.ts +1 -0
package/src/__tests__/conversation-agent-loop.test.ts +58 -0
package/src/__tests__/conversation-attention-telegram.test.ts +0 -1
package/src/__tests__/conversation-lifecycle.test.ts +7 -9
package/src/__tests__/conversation-load-history-repair.test.ts +101 -0
package/src/__tests__/conversation-routes-guardian-reply.test.ts +15 -12
package/src/__tests__/conversation-surfaces-activation-emit.test.ts +6 -3
package/src/__tests__/conversation-title-service.test.ts +62 -0
package/src/__tests__/credential-broker.test.ts +449 -1
package/src/__tests__/credential-execution-shell-lockdown.test.ts +18 -11
package/src/__tests__/credential-execution-tools.test.ts +0 -1
package/src/__tests__/credential-prompt-route.test.ts +4 -4
package/src/__tests__/credential-routes.test.ts +360 -0
package/src/__tests__/credential-security-invariants.test.ts +4 -13
package/src/__tests__/disk-pressure-policy.test.ts +12 -0
package/src/__tests__/disk-usage.test.ts +65 -0
package/src/__tests__/dynamic-page-surface.test.ts +152 -1
package/src/__tests__/fixtures/credential-security-fixtures.ts +2 -33
package/src/__tests__/gateway-flag-listener.test.ts +110 -1
package/src/__tests__/gateway-only-guard.test.ts +3 -7
package/src/__tests__/guardian-binding-drift-heal.test.ts +1 -1
package/src/__tests__/guardian-card-withdrawal.test.ts +403 -0
package/src/__tests__/guardian-decision-primitive-canonical.test.ts +5 -3
package/src/__tests__/guardian-grant-minting.test.ts +3 -35
package/src/__tests__/guardian-routing-invariants.test.ts +64 -26
package/src/__tests__/guardian-routing-state.test.ts +0 -1
package/src/__tests__/headless-browser-mode.test.ts +10 -0
package/src/__tests__/headless-browser-navigate.test.ts +8 -3
package/src/__tests__/helpers/create-guardian-binding.ts +0 -1
package/src/__tests__/host-browser-proxy.test.ts +87 -0
package/src/__tests__/identity-routes.test.ts +0 -189
package/src/__tests__/inbound-invite-redemption.test.ts +4 -4
package/src/__tests__/injector-v3-suppression.test.ts +27 -20
package/src/__tests__/internal-telemetry-routes.test.ts +6 -14
package/src/__tests__/invite-redemption-service.test.ts +4 -7
package/src/__tests__/llm-callsite-catalog.test.ts +5 -6
package/src/__tests__/llm-catalog-parity.test.ts +30 -23
package/src/__tests__/llm-resolver.test.ts +70 -24
package/src/__tests__/llm-schema.test.ts +1 -0
package/src/__tests__/managed-profile-guard.test.ts +163 -4
package/src/__tests__/mcp-health-check.test.ts +6 -7
package/src/__tests__/media-stream-server-integration.test.ts +317 -13
package/src/__tests__/oauth-provider-seed-logos.test.ts +4 -6
package/src/__tests__/onboarding-persona-write.test.ts +1 -1
package/src/__tests__/path-policy.test.ts +34 -0
package/src/__tests__/persona-resolver.test.ts +49 -14
package/src/__tests__/plugin-api-model-profiles.test.ts +178 -0
package/src/__tests__/plugin-api-provider.test.ts +24 -0
package/src/__tests__/plugin-tool-contribution.test.ts +6 -3
package/src/__tests__/post-compaction-reinjection-idempotency.test.ts +214 -0
package/src/__tests__/provider-send-message-override-profile.test.ts +76 -0
package/src/__tests__/reaction-persistence.test.ts +150 -29
package/src/__tests__/registry.test.ts +2 -7
package/src/__tests__/relay-server.test.ts +285 -0
package/src/__tests__/runtime-attachment-metadata.test.ts +0 -1
package/src/__tests__/schedule-routes-workflow-validation.test.ts +1 -10
package/src/__tests__/schedule-routes.test.ts +0 -30
package/src/__tests__/schedule-tools.test.ts +2 -18
package/src/__tests__/scheduler-reuse-conversation.test.ts +8 -5
package/src/__tests__/skill-execute-input.test.ts +51 -1
package/src/__tests__/skill-runtime-path.test.ts +2 -3
package/src/__tests__/skills.test.ts +51 -0
package/src/__tests__/slack-notification-approval-card.test.ts +176 -0
package/src/__tests__/slack-reaction-canonical-approval.test.ts +285 -0
package/src/__tests__/subagent-tools.test.ts +266 -0
package/src/__tests__/surface-completion-nudge-hook.test.ts +367 -0
package/src/__tests__/task-progress-nudge-hook.test.ts +1 -1
package/src/__tests__/title-generate-hook.test.ts +100 -3
package/src/__tests__/token-estimator-accuracy.benchmark.test.ts +1 -29
package/src/__tests__/token-manager.test.ts +519 -0
package/src/__tests__/tool-approval-seed-content-blocks.test.ts +1 -1
package/src/__tests__/tool-audit-listener.test.ts +7 -7
package/src/__tests__/tool-executor-lifecycle-events.test.ts +6 -3
package/src/__tests__/tool-executor.test.ts +0 -79
package/src/__tests__/trusted-contact-approval-notifier.test.ts +4 -2
package/src/__tests__/trusted-contact-inline-approval-integration.test.ts +220 -3
package/src/__tests__/trusted-contact-multichannel.test.ts +3 -3
package/src/__tests__/trusted-contact-verification.test.ts +8 -10
package/src/__tests__/twilio-routes.test.ts +81 -1
package/src/__tests__/voice-invite-redemption.test.ts +2 -3
package/src/__tests__/weak-open-model.test.ts +30 -0
package/src/__tests__/web-search-catalog-parity.test.ts +6 -25
package/src/__tests__/workspace-greetings.test.ts +152 -0
package/src/__tests__/workspace-migration-105-enable-memory-v3-live-for-new-workspaces.test.ts +149 -0
package/src/__tests__/workspace-migration-108-drop-balanced-economy-profile.test.ts +285 -0
package/src/__tests__/workspace-migration-add-send-diagnostics.test.ts +1 -1
package/src/__tests__/workspace-migration-drop-collect-usage-data.test.ts +118 -0
package/src/__tests__/workspace-migration-drop-send-diagnostics.test.ts +118 -0
package/src/a2a/__tests__/e2e-a2a-channel.test.ts +0 -4
package/src/agent/loop.ts +49 -29
package/src/api/README.md +6 -6
package/src/api/events/tool-result.ts +6 -0
package/src/api/events/workflow-completed.ts +53 -0
package/src/api/events/workflow-leaf-finished.ts +38 -0
package/src/api/events/workflow-leaf-started.ts +35 -0
package/src/api/events/workflow-progress.ts +32 -0
package/src/api/events/workflow-started.ts +31 -0
package/src/api/index.ts +40 -0
package/src/api/responses/conversation-message.ts +28 -4
package/src/api/responses/home.ts +26 -4
package/src/api/responses/workflow-journal.ts +53 -0
package/src/approvals/guardian-card-withdrawal.ts +145 -0
package/src/approvals/guardian-decision-primitive.ts +26 -3
package/src/approvals/guardian-request-resolvers.ts +183 -80
package/src/calls/__tests__/channel-admission-reader.test.ts +132 -0
package/src/calls/__tests__/relay-setup-router.test.ts +350 -0
package/src/calls/call-pointer-messages.ts +10 -4
package/src/calls/channel-admission-reader.ts +104 -0
package/src/calls/guardian-dispatch.ts +17 -45
package/src/calls/media-stream-server.ts +84 -2
package/src/calls/relay-access-wait.ts +1 -1
package/src/calls/relay-server.ts +66 -0
package/src/calls/relay-setup-router.ts +82 -1
package/src/calls/twilio-routes.ts +17 -8
package/src/calls/voice-session-bridge.ts +2 -2
package/src/cli/commands/clients.ts +3 -0
package/src/cli/commands/{__tests__ → memory/__tests__}/memory-v2-compare-render.test.ts +1 -1
package/src/cli/commands/{__tests__ → memory/__tests__}/memory-v2.test.ts +8 -7
package/src/cli/commands/{__tests__ → memory/__tests__}/memory-v3.test.ts +5 -4
package/src/cli/commands/memory/index.ts +30 -0
package/src/cli/commands/{memory-v2-compare-render.ts → memory/memory-v2-compare-render.ts} +1 -1
package/src/cli/commands/{memory-v2.ts → memory/memory-v2.ts} +6 -15
package/src/cli/commands/{memory-v3.ts → memory/memory-v3.ts} +97 -11
package/src/cli/commands/oauth/status.test.ts +36 -0
package/src/cli/commands/oauth/status.ts +23 -3
package/src/cli/commands/plugins.ts +197 -4
package/src/cli/lib/__tests__/diff-plugin.test.ts +443 -0
package/src/cli/lib/__tests__/inspect-plugin.test.ts +54 -0
package/src/cli/lib/__tests__/merge-plugin-tree.test.ts +443 -0
package/src/cli/lib/__tests__/plugin-surfaces.test.ts +111 -0
package/src/cli/lib/__tests__/upgrade-plugin.test.ts +295 -2
package/src/cli/lib/diff-plugin.ts +346 -0
package/src/cli/lib/inspect-plugin.ts +12 -1
package/src/cli/lib/install-from-github.ts +105 -17
package/src/cli/lib/merge-plugin-tree.ts +328 -0
package/src/cli/lib/plugin-fingerprint.ts +14 -0
package/src/cli/lib/plugin-surfaces.ts +104 -0
package/src/cli/lib/upgrade-plugin.ts +298 -10
package/src/cli/program.ts +2 -6
package/src/config/__tests__/sync-gated-profiles.test.ts +368 -0
package/src/config/assistant-feature-flags.ts +22 -7
package/src/config/bundled-skills/contacts/tools/contact-search.ts +0 -1
package/src/config/bundled-skills/messaging/SKILL.md +6 -4
package/src/config/bundled-skills/messaging/tools/messaging-archive-by-sender.ts +9 -8
package/src/config/bundled-skills/subagent/SKILL.md +4 -0
package/src/config/bundled-skills/subagent/TOOLS.json +4 -0
package/src/config/bundled-skills/workflows/SKILL.md +14 -8
package/src/config/bundled-tool-registry.ts +2 -7
package/src/config/call-site-defaults.ts +15 -2
package/src/config/feature-flag-registry.json +46 -31
package/src/config/inference-profile-validation.ts +26 -0
package/src/config/llm-resolver.ts +3 -0
package/src/config/loader.ts +4 -0
package/src/config/memory-v3-gate.ts +11 -0
package/src/config/profile-order.ts +28 -0
package/src/config/schema.ts +8 -6
package/src/config/schemas/__tests__/memory-v3.test.ts +1 -0
package/src/config/schemas/call-site-catalog.ts +7 -0
package/src/config/schemas/channels.ts +11 -0
package/src/config/schemas/elevenlabs.ts +0 -1
package/src/config/schemas/llm.ts +31 -0
package/src/config/schemas/memory-lifecycle.ts +3 -7
package/src/config/schemas/memory-v3.ts +6 -0
package/src/config/schemas/platform.ts +0 -8
package/src/config/schemas/services.ts +18 -0
package/src/config/seed-inference-profiles.ts +109 -44
package/src/config/skills.ts +21 -0
package/src/config/sync-gated-profiles.ts +220 -0
package/src/contacts/contact-store.ts +89 -106
package/src/contacts/contacts-write.ts +5 -22
package/src/contacts/types.ts +0 -1
package/src/context/compactor.ts +88 -54
package/src/context/strip-injections.ts +58 -10
package/src/context/token-estimator.ts +1 -1
package/src/credential-execution/process-manager.ts +55 -14
package/src/credential-execution/prompted-credential.ts +2 -3
package/src/daemon/__tests__/conversation-lifecycle-auto-analyze.test.ts +3 -2
package/src/daemon/config-watcher.ts +0 -4
package/src/daemon/conversation-agent-loop-handlers.ts +2 -0
package/src/daemon/conversation-agent-loop.ts +114 -22
package/src/daemon/conversation-history.ts +1 -1
package/src/daemon/conversation-lifecycle.ts +3 -5
package/src/daemon/conversation-process.ts +13 -5
package/src/daemon/conversation-runtime-assembly.ts +13 -15
package/src/daemon/conversation-slash.ts +2 -23
package/src/daemon/conversation-surfaces.ts +26 -0
package/src/daemon/conversation-tool-setup.ts +27 -14
package/src/daemon/conversation.ts +66 -14
package/src/daemon/disk-pressure-policy.ts +5 -3
package/src/daemon/handlers/__tests__/config-a2a-complete.test.ts +0 -1
package/src/daemon/handlers/__tests__/config-a2a-redeem.test.ts +0 -1
package/src/daemon/handlers/config-a2a.ts +0 -2
package/src/daemon/handlers/config-channels.ts +15 -16
package/src/daemon/handlers/config-slack-channel.ts +22 -3
package/src/daemon/handlers/conversations.ts +107 -0
package/src/daemon/host-browser-proxy.ts +41 -0
package/src/daemon/lifecycle.ts +55 -27
package/src/daemon/message-provenance.ts +2 -0
package/src/daemon/message-types/contacts.ts +0 -1
package/src/daemon/message-types/conversations.ts +3 -3
package/src/daemon/message-types/sync.ts +0 -1
package/src/daemon/message-types/web-activity.ts +7 -1
package/src/daemon/message-types/workflows.ts +83 -1
package/src/daemon/orphan-reaper.test.ts +0 -19
package/src/daemon/orphan-reaper.ts +2 -24
package/src/daemon/server.ts +0 -10
package/src/daemon/tool-setup-types.ts +4 -0
package/src/daemon/trust-context.ts +1 -1
package/src/events/tool-audit-listener.ts +2 -2
package/src/home/feed-source-enrichment.test.ts +151 -0
package/src/home/feed-source-enrichment.ts +176 -0
package/src/home/relationship-state.ts +2 -4
package/src/instrument.ts +18 -6
package/src/ipc/__tests__/binary-result-ipc.test.ts +81 -0
package/src/ipc/__tests__/clients-list-ipc.test.ts +20 -0
package/src/ipc/assistant-server.ts +37 -4
package/src/ipc/gateway-flag-listener.ts +18 -2
package/src/memory/__tests__/auto-analysis-enqueue.test.ts +5 -16
package/src/memory/__tests__/jobs-store-enqueue-gate.test.ts +7 -11
package/src/memory/__tests__/memory-retrospective-enqueue.test.ts +37 -7
package/src/memory/__tests__/memory-retrospective-job.test.ts +229 -401
package/src/memory/__tests__/onboarding-events-store.test.ts +7 -7
package/src/memory/auth-fallback-events-store.ts +2 -2
package/src/memory/auto-analysis-enqueue.ts +3 -5
package/src/memory/bookmark-crud.ts +1 -2
package/src/memory/canonical-guardian-store.ts +39 -1
package/src/memory/conversation-crud.ts +9 -4
package/src/memory/conversation-key-store.ts +17 -2
package/src/memory/conversation-title-service.ts +64 -7
package/src/memory/db-init.ts +17 -17
package/src/memory/embedding-backend.ts +38 -1
package/src/memory/embedding-billing-breaker.ts +96 -0
package/src/memory/jobs-store.ts +25 -13
package/src/memory/jobs-worker.ts +54 -1
package/src/memory/lifecycle-events-store.ts +2 -2
package/src/memory/memory-retrospective-constants.ts +4 -4
package/src/memory/memory-retrospective-enqueue.ts +31 -6
package/src/memory/memory-retrospective-job.ts +28 -227
package/src/memory/migrations/129-contact-channels-access-fields.ts +18 -9
package/src/memory/migrations/131-drop-legacy-member-guardian-tables.ts +14 -2
package/src/memory/migrations/289-contact-channels-unique-ext-user.ts +10 -0
package/src/memory/migrations/291-contact-channels-renormalize-addresses.ts +72 -0
package/src/memory/migrations/292-schedule-default-no-reuse-conversation.test.ts +67 -0
package/src/memory/migrations/292-schedule-default-no-reuse-conversation.ts +25 -0
package/src/memory/migrations/293-workflow-journal-leaf-tokens.ts +32 -0
package/src/memory/migrations/294-drop-external-user-id.ts +31 -0
package/src/memory/migrations/295-drop-approval-prompt-ts-tracker.ts +20 -0
package/src/memory/migrations/296-rewrite-balanced-economy-profile-pins.test.ts +110 -0
package/src/memory/migrations/296-rewrite-balanced-economy-profile-pins.ts +68 -0
package/src/memory/migrations/__tests__/131-drop-legacy-member-guardian-tables.test.ts +154 -0
package/src/memory/migrations/__tests__/289-contact-channels-unique-ext-user.test.ts +31 -0
package/src/memory/migrations/__tests__/291-contact-channels-renormalize-addresses.test.ts +341 -0
package/src/memory/migrations/__tests__/run-migrations.test.ts +52 -0
package/src/memory/migrations/index.ts +6 -0
package/src/memory/migrations/run-migrations.ts +41 -0
package/src/memory/migrations/validate-migration-state.ts +1 -1
package/src/memory/onboarding-events-store.ts +3 -3
package/src/memory/schema/contacts.ts +0 -5
package/src/memory/skill-loaded-events-store.test.ts +7 -15
package/src/memory/skill-loaded-events-store.ts +2 -2
package/src/memory/tool-executed-events-store.test.ts +7 -7
package/src/memory/turn-trace-store.test.ts +736 -0
package/src/memory/turn-trace-store.ts +364 -0
package/src/memory/v2/__tests__/consolidation-job.test.ts +8 -0
package/src/memory/v2/__tests__/skill-content.test.ts +30 -0
package/src/memory/v2/consolidation-job.ts +2 -2
package/src/memory/v2/skill-content.ts +25 -7
package/src/memory/v2/skill-store.ts +7 -1
package/src/memory/v3-eval/__tests__/eval-packets.test.ts +248 -0
package/src/memory/v3-eval/eval-packets.ts +546 -0
package/src/messaging/providers/slack/adapter.ts +1 -1
package/src/messaging/providers/slack/api.ts +31 -0
package/src/messaging/providers/slack/send.test.ts +114 -2
package/src/messaging/providers/slack/send.ts +30 -7
package/src/messaging/providers/slack/withdraw.test.ts +200 -0
package/src/messaging/providers/slack/withdraw.ts +161 -0
package/src/notifications/AGENTS.md +2 -0
package/src/notifications/access-request-copy.ts +72 -59
package/src/notifications/adapters/shared.ts +29 -0
package/src/notifications/adapters/slack.ts +58 -103
package/src/notifications/adapters/telegram.ts +2 -20
package/src/notifications/approval-card-data.ts +333 -0
package/src/notifications/broadcaster.ts +16 -3
package/src/notifications/canonical-delivery-recorder.ts +139 -0
package/src/notifications/copy-composer.ts +3 -3
package/src/notifications/decision-engine.ts +4 -2
package/src/notifications/destination-resolver.ts +4 -6
package/src/notifications/guardian-question-mode.ts +10 -0
package/src/notifications/home-feed-side-effect.ts +7 -16
package/src/notifications/notification-utils.ts +19 -20
package/src/notifications/signal.ts +79 -43
package/src/notifications/types.ts +98 -121
package/src/oauth/AGENTS.md +5 -24
package/src/permissions/checker.test.ts +51 -0
package/src/permissions/checker.ts +185 -26
package/src/permissions/ipc-risk-types.ts +24 -0
package/src/permissions/question-prompter.test.ts +27 -0
package/src/permissions/question-prompter.ts +4 -0
package/src/platform/client.test.ts +119 -0
package/src/platform/client.ts +66 -0
package/src/platform/consent-cache.test.ts +267 -0
package/src/platform/consent-cache.ts +174 -0
package/src/plugin-api/constants.ts +1 -1
package/src/plugin-api/index.ts +33 -1
package/src/plugin-api/model-profiles.ts +33 -0
package/src/plugin-api/types.ts +50 -2
package/src/plugins/defaults/advisor/__tests__/advisor-gate.test.ts +56 -0
package/src/plugins/defaults/advisor/__tests__/advisor-state-store.test.ts +43 -0
package/src/plugins/defaults/advisor/__tests__/agent-loop-integration.test.ts +137 -0
package/src/plugins/defaults/advisor/__tests__/consult.test.ts +153 -0
package/src/plugins/defaults/advisor/__tests__/hooks.test.ts +138 -0
package/src/plugins/defaults/advisor/__tests__/transcript.test.ts +147 -0
package/src/plugins/defaults/advisor/advisor-gate.ts +29 -0
package/src/plugins/defaults/advisor/advisor-state-store.ts +94 -0
package/src/plugins/defaults/advisor/config.ts +21 -0
package/src/plugins/defaults/advisor/consult.ts +93 -0
package/src/plugins/defaults/advisor/hooks/post-model-call.ts +34 -0
package/src/plugins/defaults/advisor/hooks/pre-model-call.ts +30 -0
package/src/plugins/defaults/advisor/hooks/user-prompt-submit.ts +19 -0
package/src/plugins/defaults/advisor/package.json +14 -0
package/src/plugins/defaults/advisor/steering.ts +67 -0
package/src/plugins/defaults/advisor/tools/advisor.ts +65 -0
package/src/plugins/defaults/advisor/transcript.ts +76 -0
package/src/plugins/defaults/index.ts +60 -0
package/src/plugins/defaults/memory-retrieval/hooks/post-compact.ts +22 -9
package/src/plugins/defaults/memory-retrieval/hooks/user-prompt-submit.ts +2 -2
package/src/plugins/defaults/memory-retrieval/tail-reinjection-strip.ts +64 -0
package/src/plugins/defaults/memory-retrieval/unified-turn-context.ts +29 -21
package/src/plugins/defaults/memory-v3-shadow/__tests__/carry-integration.test.ts +1 -0
package/src/plugins/defaults/memory-v3-shadow/__tests__/injection.test.ts +1 -0
package/src/plugins/defaults/memory-v3-shadow/__tests__/maintain-job.test.ts +129 -9
package/src/plugins/defaults/memory-v3-shadow/__tests__/orchestrate.test.ts +31 -4
package/src/plugins/defaults/memory-v3-shadow/__tests__/selection-log-store.test.ts +77 -2
package/src/plugins/defaults/memory-v3-shadow/__tests__/shadow-plugin.test.ts +1 -0
package/src/plugins/defaults/memory-v3-shadow/injector.ts +7 -10
package/src/plugins/defaults/memory-v3-shadow/maintain-job.ts +144 -11
package/src/plugins/defaults/memory-v3-shadow/orchestrate.ts +32 -20
package/src/plugins/defaults/memory-v3-shadow/selection-log-store.ts +56 -3
package/src/plugins/defaults/memory-v3-shadow/shadow-plugin.ts +23 -2
package/src/plugins/defaults/surface-completion-nudge/hooks/post-model-call.ts +276 -0
package/src/plugins/defaults/surface-completion-nudge/hooks/stop.ts +22 -0
package/src/plugins/defaults/surface-completion-nudge/nudge-state-store.ts +46 -0
package/src/plugins/defaults/surface-completion-nudge/package.json +14 -0
package/src/plugins/defaults/task-progress-nudge/hooks/post-tool-use.ts +3 -13
package/src/plugins/defaults/title-generate/hooks/stop.ts +56 -21
package/src/prompts/persona-resolver.ts +14 -4
package/src/prompts/templates/system-sections.ts +7 -2
package/src/providers/__tests__/provider-env-vars.test.ts +6 -0
package/src/providers/__tests__/provider-secret-catalog.test.ts +1 -0
package/src/providers/__tests__/retry-callsite.test.ts +176 -0
package/src/providers/atlascloud/client.ts +85 -0
package/src/providers/fetch-provider-catalog.ts +85 -0
package/src/providers/inference/adapter-factory.ts +3 -0
package/src/providers/model-catalog.ts +58 -0
package/src/providers/openai/__tests__/chat-completions-provider-reasoning.test.ts +33 -0
package/src/providers/openai/chat-completions-provider.ts +7 -0
package/src/providers/openai/responses-provider.ts +10 -0
package/src/providers/provider-send-message.ts +11 -3
package/src/providers/retry.ts +53 -12
package/src/providers/search-provider-catalog.ts +10 -0
package/src/providers/weak-open-model.ts +22 -0
package/src/runtime/AGENTS.md +0 -1
package/src/runtime/__tests__/agent-wake.test.ts +181 -0
package/src/runtime/__tests__/client-health.test.ts +44 -0
package/src/runtime/access-request-helper.ts +21 -53
package/src/runtime/actor-trust-resolver.ts +59 -63
package/src/runtime/agent-wake.ts +52 -0
package/src/runtime/assistant-event-hub.ts +18 -4
package/src/runtime/auth/__tests__/route-policy.test.ts +12 -0
package/src/runtime/auth/require-bound-guardian.ts +1 -4
package/src/runtime/btw-sidechain.ts +3 -6
package/src/runtime/capabilities.test.ts +120 -0
package/src/runtime/capabilities.ts +197 -0
package/src/runtime/channel-approval-types.ts +22 -45
package/src/runtime/channel-invite-transports/telegram.ts +4 -4
package/src/runtime/channel-retry-sweep.ts +1 -0
package/src/runtime/channel-verification-service.ts +3 -3
package/src/runtime/client-health.ts +26 -0
package/src/runtime/confirmation-request-guardian-bridge.ts +38 -29
package/src/runtime/effective-capabilities.test.ts +128 -0
package/src/runtime/effective-capabilities.ts +84 -0
package/src/runtime/guardian-reply-router.ts +106 -21
package/src/runtime/invite-redemption-service.ts +9 -25
package/src/runtime/migrations/__tests__/vbundle-builder-fd-leak.test.ts +123 -0
package/src/runtime/migrations/vbundle-builder.ts +49 -20
package/src/runtime/pending-interactions.ts +15 -0
package/src/runtime/routes/__tests__/client-routes.test.ts +13 -0
package/src/runtime/routes/__tests__/conversation-management-routes.test.ts +67 -0
package/src/runtime/routes/__tests__/plugins-routes.test.ts +240 -1
package/src/runtime/routes/app-routes.ts +1 -1
package/src/runtime/routes/approval-strategies/guardian-callback-strategy.ts +2 -2
package/src/runtime/routes/assets/vellum-design-system.css +1959 -0
package/src/runtime/routes/browser-tabs-routes.ts +9 -0
package/src/runtime/routes/btw-routes.ts +1 -27
package/src/runtime/routes/canonical-guardian-expiry-sweep.ts +17 -8
package/src/runtime/routes/client-routes.ts +10 -0
package/src/runtime/routes/contact-routes.ts +31 -8
package/src/runtime/routes/conversation-compaction-routes.ts +1 -1
package/src/runtime/routes/conversation-management-routes.ts +80 -1
package/src/runtime/routes/conversation-query-routes.ts +68 -22
package/src/runtime/routes/conversation-routes.ts +39 -14
package/src/runtime/routes/credential-routes.ts +40 -16
package/src/runtime/routes/empty-state-greeting-cache.ts +1 -2
package/src/runtime/routes/events-routes.ts +1 -3
package/src/runtime/routes/guardian-approval-interception.ts +14 -73
package/src/runtime/routes/guardian-approval-prompt.ts +22 -4
package/src/runtime/routes/home-feed-routes.ts +8 -3
package/src/runtime/routes/identity-routes.ts +1 -296
package/src/runtime/routes/inbound-message-handler.ts +214 -228
package/src/runtime/routes/inbound-stages/acl-enforcement.ts +89 -7
package/src/runtime/routes/inbound-stages/admission-policy.test.ts +154 -0
package/src/runtime/routes/inbound-stages/admission-policy.ts +140 -0
package/src/runtime/routes/inbound-stages/background-dispatch.test.ts +3 -3
package/src/runtime/routes/inbound-stages/background-dispatch.ts +11 -6
package/src/runtime/routes/inbound-stages/escalation-intercept.ts +1 -2
package/src/runtime/routes/inbound-stages/guardian-activation-intercept.ts +1 -2
package/src/runtime/routes/inbound-stages/guardian-reply-intercept.test.ts +7 -7
package/src/runtime/routes/inbound-stages/guardian-reply-intercept.ts +47 -28
package/src/runtime/routes/inbound-stages/reaction-intercept.ts +358 -0
package/src/runtime/routes/index.ts +2 -0
package/src/runtime/routes/integrations/slack/__tests__/channel.test.ts +8 -0
package/src/runtime/routes/integrations/slack/channel.ts +36 -0
package/src/runtime/routes/internal-telemetry-routes.ts +1 -1
package/src/runtime/routes/mcp-auth-routes.ts +233 -41
package/src/runtime/routes/memory-eval-routes.ts +87 -0
package/src/runtime/routes/notification-routes.ts +122 -133
package/src/runtime/routes/platform-routes.ts +2 -2
package/src/runtime/routes/plugins-routes.ts +202 -3
package/src/runtime/routes/schedule-routes.ts +0 -22
package/src/runtime/routes/secret-routes.ts +10 -0
package/src/runtime/routes/surface-action-routes.ts +2 -1
package/src/runtime/routes/tool-call-question-enrichment.test.ts +146 -0
package/src/runtime/routes/tool-call-question-enrichment.ts +66 -0
package/src/runtime/routes/workflow-routes.test.ts +229 -44
package/src/runtime/routes/workflow-routes.ts +131 -29
package/src/runtime/routes/workspace-greetings.ts +55 -0
package/src/runtime/sync/resource-sync-events.ts +1 -11
package/src/runtime/tool-grant-request-helper.ts +18 -16
package/src/runtime/trust-context-resolver.ts +8 -5
package/src/schedule/inference-profile.ts +2 -14
package/src/schedule/schedule-store.ts +1 -1
package/src/schedule/scheduler-types.ts +5 -1
package/src/security/__tests__/provider-key-env-fallback.test.ts +6 -0
package/src/security/secret-patterns.ts +3 -0
package/src/subagent/manager.ts +17 -4
package/src/subagent/types.ts +6 -0
package/src/telemetry/trace-collection-policy.test.ts +28 -0
package/src/telemetry/trace-collection-policy.ts +30 -0
package/src/telemetry/types.ts +89 -0
package/src/telemetry/usage-telemetry-reporter.test.ts +586 -36
package/src/telemetry/usage-telemetry-reporter.ts +148 -41
package/src/tools/AGENTS.md +3 -3
package/src/tools/browser/__tests__/browser-execution-acquire.test.ts +31 -0
package/src/tools/browser/browser-execution.ts +30 -19
package/src/tools/document/document-tool.ts +2 -3
package/src/tools/executor.ts +5 -3
package/src/tools/host-terminal/host-shell.ts +5 -4
package/src/tools/memory/register.ts +2 -2
package/src/tools/network/__tests__/web-fetch-firecrawl.test.ts +360 -0
package/src/tools/network/__tests__/web-search.test.ts +143 -0
package/src/tools/network/web-fetch.ts +372 -1
package/src/tools/network/web-search-error.ts +1 -1
package/src/tools/network/web-search.ts +213 -10
package/src/tools/permission-checker.ts +4 -3
package/src/tools/registry.ts +20 -0
package/src/tools/schedule/create.ts +7 -12
package/src/tools/schedule/update.ts +4 -11
package/src/tools/shared/filesystem/path-policy.ts +39 -13
package/src/tools/side-effects.ts +2 -17
package/src/tools/skills/execute.ts +33 -0
package/src/tools/subagent/spawn.ts +61 -12
package/src/tools/terminal/shell.ts +10 -4
package/src/tools/tool-approval-handler.ts +18 -13
package/src/tools/tool-manifest.ts +0 -2
package/src/tools/types.ts +9 -0
package/src/tools/ui-surface/definitions.ts +64 -3
package/src/tools/verification-control-plane-policy.ts +3 -1
package/src/tools/workflows/run-workflow.test.ts +8 -18
package/src/tools/workflows/run-workflow.ts +1 -0
package/src/util/disk-usage.ts +78 -23
package/src/util/platform.ts +10 -3
package/src/watcher/telemetry.ts +2 -2
package/src/workflows/capabilities.ts +2 -3
package/src/workflows/engine.test.ts +175 -1
package/src/workflows/engine.ts +82 -0
package/src/workflows/journal-store.test.ts +70 -0
package/src/workflows/journal-store.ts +18 -3
package/src/workflows/run-manager.test.ts +171 -28
package/src/workflows/run-manager.ts +66 -24
package/src/workspace/migrations/105-enable-memory-v3-live-for-new-workspaces.ts +63 -0
package/src/workspace/migrations/106-drop-collect-usage-data.ts +47 -0
package/src/workspace/migrations/107-drop-send-diagnostics.ts +47 -0
package/src/workspace/migrations/108-drop-balanced-economy-profile.ts +129 -0
package/src/workspace/migrations/registry.ts +8 -0
package/src/__tests__/app-control-no-global-cgevent.test.ts +0 -98
package/src/__tests__/credential-security-e2e.test.ts +0 -362
package/src/__tests__/credential-vault-unit.test.ts +0 -1528
package/src/__tests__/credential-vault.test.ts +0 -1706
package/src/__tests__/identity-intro-cache.test.ts +0 -315
package/src/__tests__/secret-onetime-send.test.ts +0 -182
package/src/cli/commands/__tests__/task.test.ts +0 -914
package/src/cli/commands/task.ts +0 -771
package/src/config/bundled-skills/personal-page/SKILL.md +0 -57
package/src/config/bundled-skills/personal-page/TOOLS.json +0 -27
package/src/config/bundled-skills/personal-page/tools/app-refresh.ts +0 -17
package/src/config/preloaded-apps/personal-page/src/components/About.tsx +0 -22
package/src/config/preloaded-apps/personal-page/src/components/App.tsx +0 -16
package/src/config/preloaded-apps/personal-page/src/components/Features.tsx +0 -77
package/src/config/preloaded-apps/personal-page/src/components/Hero.tsx +0 -57
package/src/config/preloaded-apps/personal-page/src/components/Pending.tsx +0 -28
package/src/config/preloaded-apps/personal-page/src/components/animations.tsx +0 -234
package/src/config/preloaded-apps/personal-page/src/components/icons.tsx +0 -48
package/src/config/preloaded-apps/personal-page/src/components/media.ts +0 -16
package/src/config/preloaded-apps/personal-page/src/index.html +0 -20
package/src/config/preloaded-apps/personal-page/src/main.tsx +0 -7
package/src/config/preloaded-apps/personal-page/src/profile-data.ts +0 -82
package/src/config/preloaded-apps/personal-page/src/styles.css +0 -759
package/src/memory/__tests__/preloaded-apps.test.ts +0 -85
package/src/memory/preloaded-apps.ts +0 -116
package/src/notifications/tool-approval-copy.ts +0 -142
package/src/runtime/routes/approval-prompt-ts-tracker.ts +0 -78
package/src/runtime/routes/identity-intro-cache.ts +0 -172
package/src/tools/credentials/vault.ts +0 -712

package/src/__tests__/credential-vault.test.ts DELETED Viewed

@@ -1,1706 +0,0 @@
-import { randomBytes } from "node:crypto";
-import { mkdirSync, readdirSync, rmSync, writeFileSync } from "node:fs";
-import { tmpdir } from "node:os";
-import { join } from "node:path";
-import {
-  afterAll,
-  afterEach,
-  beforeAll,
-  beforeEach,
-  describe,
-  expect,
-  mock,
-  test,
-} from "bun:test";
-// ---------------------------------------------------------------------------
-// Mock logger
-// ---------------------------------------------------------------------------
-mock.module("../util/logger.js", () => ({
-  getLogger: () =>
-    new Proxy({} as Record<string, unknown>, {
-      get: () => () => {},
-    }),
-}));
-// ---------------------------------------------------------------------------
-// Use encrypted backend with a temp store path
-// ---------------------------------------------------------------------------
-import { _resetBackend } from "../security/secure-keys.js";
-import { setStorePathForTesting } from "./encrypted-store-test-helpers.js";
-const TEST_DIR = join(
-  tmpdir(),
-  `vellum-credvault-test-${randomBytes(4).toString("hex")}`,
-);
-const STORE_PATH = join(TEST_DIR, "keys.enc");
-// ---------------------------------------------------------------------------
-// Mock the registry so importing vault.ts doesn't fail on double-registration
-// ---------------------------------------------------------------------------
-mock.module("../tools/registry.js", () => ({
-  registerTool: () => {},
-}));
-// ---------------------------------------------------------------------------
-// Mock OAuth2 token refresh for token-manager deduplication tests
-// ---------------------------------------------------------------------------
-let mockRefreshOAuth2Token: ReturnType<
-  typeof mock<
-    (
-      tokenExchangeUrl: string,
-      clientId: string,
-      refreshToken: string,
-      clientSecret?: string,
-      tokenEndpointAuthMethod?: string,
-    ) => Promise<{ accessToken: string; expiresIn: number }>
-  >
->;
-mock.module("../security/oauth2.js", () => {
-  mockRefreshOAuth2Token = mock(() =>
-    Promise.resolve({
-      accessToken: "refreshed-access-token",
-      expiresIn: 3600,
-    }),
-  );
-  return {
-    refreshOAuth2Token: mockRefreshOAuth2Token,
-  };
-});
-// ---------------------------------------------------------------------------
-// Mock oauth-store — token-manager reads refresh config from SQLite
-// ---------------------------------------------------------------------------
-/** Mutable per-test map of provider connections for getConnectionByProvider */
-const mockConnections = new Map<
-  string,
-  {
-    id: string;
-    provider: string;
-    oauthAppId: string;
-    expiresAt: number | null;
-  }
->();
-const mockApps = new Map<
-  string,
-  {
-    id: string;
-    provider: string;
-    clientId: string;
-    clientSecretCredentialPath: string;
-  }
->();
-const mockProviders = new Map<
-  string,
-  {
-    key: string;
-    tokenExchangeUrl: string;
-    refreshUrl?: string | null;
-    tokenEndpointAuthMethod?: string;
-  }
->();
-let mockDisconnectOAuthProvider: ReturnType<
-  typeof mock<
-    (provider: string) => Promise<"disconnected" | "not-found" | "error">
-  >
->;
-mock.module("../oauth/oauth-store.js", () => {
-  mockDisconnectOAuthProvider = mock((provider: string) =>
-    Promise.resolve(
-      mockConnections.has(provider)
-        ? ("disconnected" as const)
-        : ("not-found" as const),
-    ),
-  );
-  return {
-    disconnectOAuthProvider: mockDisconnectOAuthProvider,
-    getConnectionByProvider: (service: string) => mockConnections.get(service),
-    getConnection: (id: string) => {
-      for (const conn of mockConnections.values()) {
-        if (conn.id === id) return conn;
-      }
-      return undefined;
-    },
-    getApp: (id: string) => mockApps.get(id),
-    getProvider: (key: string) => mockProviders.get(key),
-    updateConnection: () => {},
-    getMostRecentAppByProvider: () => undefined,
-    listConnections: () => [],
-  };
-});
-// ---------------------------------------------------------------------------
-// Import the module under test
-// ---------------------------------------------------------------------------
-// getCredentialValue is no longer exported (sealed in PR 17) — use getSecureKeyAsync directly
-import { credentialKey } from "../security/credential-key.js";
-import {
-  deleteSecureKeyAsync,
-  getSecureKeyAsync,
-  setSecureKeyAsync,
-} from "../security/secure-keys.js";
-import {
-  _resetInflightRefreshes,
-  _resetRefreshBreakers,
-  withValidToken,
-} from "../security/token-manager.js";
-import {
-  _setMetadataPath,
-  getCredentialMetadata,
-} from "../tools/credentials/metadata-store.js";
-import { credentialStoreTool } from "../tools/credentials/vault.js";
-import type { ToolContext } from "../tools/types.js";
-// Create a minimal context for tool execution
-const _ctx: ToolContext = {
-  workingDir: "/tmp",
-  conversationId: "test-conv",
-  trustClass: "guardian",
-};
-// We'll manually instantiate the tool for testing
-// by reimporting the class behavior through the tool's execute method.
-// Since the tool registers itself, let's capture it.
-let _capturedTool: {
-  execute(
-    input: Record<string, unknown>,
-    context: ToolContext,
-  ): Promise<{ content: string; isError: boolean }>;
-};
-// Re-mock registry to capture the tool
-const { registerTool: _unused, ..._registryRest } =
-  await import("../tools/registry.js");
-// We need to access the actual tool - let's create it directly
-// by re-using the module. Since vault.ts calls registerTool as a side-effect,
-// let's just use the secure-keys functions directly + test getCredentialValue.
-// For the tool execute tests, we'll create a simple wrapper that mimics the tool.
-async function executeVault(
-  input: Record<string, unknown>,
-): Promise<{ content: string; isError: boolean }> {
-  const action = input.action as string;
-  switch (action) {
-    case "store": {
-      const service = input.service as string | undefined;
-      const field = input.field as string | undefined;
-      const value = input.value as string | undefined;
-      if (!service || typeof service !== "string") {
-        return {
-          content: "Error: service is required for store action",
-          isError: true,
-        };
-      }
-      if (!field || typeof field !== "string") {
-        return {
-          content: "Error: field is required for store action",
-          isError: true,
-        };
-      }
-      if (!value || typeof value !== "string") {
-        return {
-          content: "Error: value is required for store action",
-          isError: true,
-        };
-      }
-      const key = credentialKey(service, field);
-      const ok = await setSecureKeyAsync(key, value);
-      if (!ok) {
-        return { content: "Error: failed to store credential", isError: true };
-      }
-      return {
-        content: `Stored credential for ${service}/${field}.`,
-        isError: false,
-      };
-    }
-    case "list":
-      return credentialStoreTool.execute({ action: "list" }, _ctx);
-    case "delete": {
-      const service = input.service as string | undefined;
-      const field = input.field as string | undefined;
-      if (!service || typeof service !== "string") {
-        return {
-          content: "Error: service is required for delete action",
-          isError: true,
-        };
-      }
-      if (!field || typeof field !== "string") {
-        return {
-          content: "Error: field is required for delete action",
-          isError: true,
-        };
-      }
-      const key = credentialKey(service, field);
-      const result = await deleteSecureKeyAsync(key);
-      if (result !== "deleted") {
-        return {
-          content: `Error: credential ${service}/${field} not found`,
-          isError: true,
-        };
-      }
-      return {
-        content: `Deleted credential for ${service}/${field}.`,
-        isError: false,
-      };
-    }
-    default:
-      return { content: `Error: unknown action "${action}"`, isError: true };
-  }
-}
-afterAll(() => {
-  mock.restore();
-});
-describe("credential_store tool", () => {
-  beforeAll(() => {
-    mkdirSync(TEST_DIR, { recursive: true });
-  });
-  beforeEach(() => {
-    _resetBackend();
-    // Clear content files but preserve the directory structure
-    for (const entry of readdirSync(TEST_DIR)) {
-      rmSync(join(TEST_DIR, entry), { recursive: true, force: true });
-    }
-    setStorePathForTesting(STORE_PATH);
-    _setMetadataPath(join(TEST_DIR, "metadata.json"));
-    mockDisconnectOAuthProvider.mockClear();
-    mockConnections.clear();
-  });
-  afterEach(() => {
-    _setMetadataPath(null);
-    setStorePathForTesting(null);
-    _resetBackend();
-    mockConnections.clear();
-  });
-  afterAll(() => {
-    rmSync(TEST_DIR, { recursive: true, force: true });
-  });
-  // -----------------------------------------------------------------------
-  // Store
-  // -----------------------------------------------------------------------
-  describe("store action", () => {
-    test("stores a credential and returns confirmation", async () => {
-      const result = await executeVault({
-        action: "store",
-        service: "gmail",
-        field: "password",
-        value: "super-secret-123",
-      });
-      expect(result.isError).toBe(false);
-      expect(result.content).toBe("Stored credential for gmail/password.");
-    });
-    test("stored value NEVER appears in tool output", async () => {
-      const testValue = "my-ultra-test-value-xyz";
-      const result = await executeVault({
-        action: "store",
-        service: "github",
-        field: "token",
-        value: testValue,
-      });
-      expect(result.content).not.toContain(testValue);
-    });
-    test("missing service returns error", async () => {
-      const result = await executeVault({
-        action: "store",
-        field: "password",
-        value: "val",
-      });
-      expect(result.isError).toBe(true);
-      expect(result.content).toContain("service is required");
-    });
-    test("missing field returns error", async () => {
-      const result = await executeVault({
-        action: "store",
-        service: "gmail",
-        value: "val",
-      });
-      expect(result.isError).toBe(true);
-      expect(result.content).toContain("field is required");
-    });
-    test("missing value returns error", async () => {
-      const result = await executeVault({
-        action: "store",
-        service: "gmail",
-        field: "password",
-      });
-      expect(result.isError).toBe(true);
-      expect(result.content).toContain("value is required");
-    });
-    test("store success includes credential_id via credentialStoreTool", async () => {
-      const result = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "test-cred-id",
-          field: "api_key",
-          value: "test-value",
-        },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      expect(result.content).toContain("credential_id:");
-      expect(result.content).toContain("test-cred-id/api_key");
-      // Verify the credential_id in the output matches the metadata
-      const metadata = getCredentialMetadata("test-cred-id", "api_key");
-      expect(metadata).toBeDefined();
-      expect(result.content).toContain(metadata!.credentialId);
-    });
-  });
-  // -----------------------------------------------------------------------
-  // List
-  // -----------------------------------------------------------------------
-  describe("list action", () => {
-    test("lists stored credentials with credential_id, service, field", async () => {
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "gmail",
-          field: "password",
-          value: "secret1",
-        },
-        _ctx,
-      );
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "github",
-          field: "token",
-          value: "secret2",
-        },
-        _ctx,
-      );
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      const entries = JSON.parse(result.content);
-      expect(entries).toHaveLength(2);
-      const services = entries
-        .map((e: { service: string }) => e.service)
-        .sort();
-      expect(services).toEqual(["github", "gmail"]);
-      // Each entry must have credential_id, service, field
-      for (const entry of entries) {
-        expect(typeof entry.credential_id).toBe("string");
-        expect(entry.credential_id.length).toBeGreaterThan(0);
-        expect(typeof entry.service).toBe("string");
-        expect(typeof entry.field).toBe("string");
-      }
-      // Values must NOT appear in the output
-      expect(result.content).not.toContain("secret1");
-      expect(result.content).not.toContain("secret2");
-    });
-    test("list output includes alias when set", async () => {
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "fal",
-          field: "api_key",
-          value: "fal-secret",
-          alias: "fal-primary",
-        },
-        _ctx,
-      );
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      const entries = JSON.parse(result.content);
-      const entry = entries.find(
-        (e: { service: string }) => e.service === "fal",
-      );
-      expect(entry).toBeDefined();
-      expect(entry.alias).toBe("fal-primary");
-    });
-    test("list output includes template summary with host patterns", async () => {
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "fal",
-          field: "api_key",
-          value: "fal-secret",
-          injection_templates: [
-            {
-              hostPattern: "*.fal.ai",
-              injectionType: "header",
-              headerName: "Authorization",
-              valuePrefix: "Key ",
-            },
-            {
-              hostPattern: "gateway.fal.ai",
-              injectionType: "header",
-              headerName: "X-Key",
-            },
-          ],
-        },
-        _ctx,
-      );
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      const entries = JSON.parse(result.content);
-      const entry = entries.find(
-        (e: { service: string }) => e.service === "fal",
-      );
-      expect(entry).toBeDefined();
-      expect(entry.injection_templates).toBeDefined();
-      expect(entry.injection_templates.count).toBe(2);
-      expect(entry.injection_templates.host_patterns).toEqual([
-        "*.fal.ai",
-        "gateway.fal.ai",
-      ]);
-    });
-    test("list does not include credential values", async () => {
-      const testValue = "test-dummy-value-for-list";
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "test",
-          field: "key",
-          value: testValue,
-        },
-        _ctx,
-      );
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      expect(result.content).not.toContain(testValue);
-      // Also verify no allowedTools/allowedDomains leak into list output
-      const entries = JSON.parse(result.content);
-      for (const entry of entries) {
-        expect(entry.allowedTools).toBeUndefined();
-        expect(entry.allowedDomains).toBeUndefined();
-        expect(entry.usageDescription).toBeUndefined();
-        expect(entry.value).toBeUndefined();
-      }
-    });
-    test("returns empty array when no credentials exist", async () => {
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      expect(JSON.parse(result.content)).toEqual([]);
-    });
-    test("lists multiple credentials", async () => {
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "gmail",
-          field: "password",
-          value: "s1",
-        },
-        _ctx,
-      );
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "github",
-          field: "token",
-          value: "s2",
-          alias: "gh-main",
-        },
-        _ctx,
-      );
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "fal",
-          field: "api_key",
-          value: "s3",
-          alias: "fal-primary",
-          injection_templates: [
-            {
-              hostPattern: "*.fal.ai",
-              injectionType: "header",
-              headerName: "Authorization",
-            },
-          ],
-        },
-        _ctx,
-      );
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      const entries = JSON.parse(result.content);
-      expect(entries).toHaveLength(3);
-      const fal = entries.find((e: { service: string }) => e.service === "fal");
-      expect(fal.alias).toBe("fal-primary");
-      expect(fal.injection_templates.count).toBe(1);
-      const gh = entries.find(
-        (e: { service: string }) => e.service === "github",
-      );
-      expect(gh.alias).toBe("gh-main");
-      expect(gh.injection_templates).toBeUndefined();
-      const gmail = entries.find(
-        (e: { service: string }) => e.service === "gmail",
-      );
-      expect(gmail.alias).toBeUndefined();
-      expect(gmail.injection_templates).toBeUndefined();
-    });
-    test("works with metadata store fallback when listing secrets", async () => {
-      // Store a credential first (on encrypted backend)
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "keychain-test",
-          field: "token",
-          value: "kc-secret",
-        },
-        _ctx,
-      );
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      const entries = JSON.parse(result.content);
-      expect(entries).toHaveLength(1);
-      expect(entries[0].service).toBe("keychain-test");
-      expect(entries[0].field).toBe("token");
-      expect(typeof entries[0].credential_id).toBe("string");
-    });
-    test("returns error when metadata file has unrecognized version", async () => {
-      // Write a metadata file with a future version that the current code cannot handle
-      const metadataPath = join(TEST_DIR, "metadata.json");
-      writeFileSync(
-        metadataPath,
-        JSON.stringify({ version: 999, credentials: [] }),
-        "utf-8",
-      );
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      expect(result.isError).toBe(true);
-      expect(result.content).toContain("unrecognized version");
-    });
-    test("excludes metadata entries whose secret was deleted from secure storage", async () => {
-      // Store two credentials so both metadata and secrets exist
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "svc-a",
-          field: "key",
-          value: "val-a",
-        },
-        _ctx,
-      );
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "svc-b",
-          field: "key",
-          value: "val-b",
-        },
-        _ctx,
-      );
-      // Delete the secret directly without going through the tool (simulates
-      // a divergence where metadata write failed after secret deletion)
-      await deleteSecureKeyAsync(credentialKey("svc-a", "key"));
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      const entries = JSON.parse(result.content);
-      // svc-a's secret is gone, so it should be excluded even though metadata exists
-      expect(entries).toHaveLength(1);
-      expect(entries[0].service).toBe("svc-b");
-    });
-    test("recovers from corrupt secure storage by resetting and returning empty list", async () => {
-      // Store a credential so metadata exists
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "svc-x",
-          field: "key",
-          value: "val-x",
-        },
-        _ctx,
-      );
-      // Corrupt the encrypted store file — the store auto-recovers by
-      // backing up the corrupt file and creating a fresh store
-      writeFileSync(STORE_PATH, "not-valid-json!!!", "utf-8");
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      // Store auto-recovers: list succeeds but the corrupted credentials are lost
-      expect(result.isError).toBe(false);
-    });
-  });
-  // -----------------------------------------------------------------------
-  // Delete
-  // -----------------------------------------------------------------------
-  describe("delete action", () => {
-    test("deletes a stored credential", async () => {
-      await setSecureKeyAsync(credentialKey("gmail", "password"), "secret");
-      const result = await executeVault({
-        action: "delete",
-        service: "gmail",
-        field: "password",
-      });
-      expect(result.isError).toBe(false);
-      expect(result.content).toBe("Deleted credential for gmail/password.");
-      // Verify it's actually gone
-      expect(
-        await getSecureKeyAsync(credentialKey("gmail", "password")),
-      ).toBeUndefined();
-    });
-    test("returns error for non-existent credential", async () => {
-      const result = await executeVault({
-        action: "delete",
-        service: "nonexistent",
-        field: "field",
-      });
-      expect(result.isError).toBe(true);
-      expect(result.content).toContain("not found");
-    });
-    test("missing service returns error", async () => {
-      const result = await executeVault({
-        action: "delete",
-        field: "password",
-      });
-      expect(result.isError).toBe(true);
-      expect(result.content).toContain("service is required");
-    });
-    test("missing field returns error", async () => {
-      const result = await executeVault({
-        action: "delete",
-        service: "gmail",
-      });
-      expect(result.isError).toBe(true);
-      expect(result.content).toContain("field is required");
-    });
-    test("delete also disconnects OAuth connection for the service", async () => {
-      // Store a credential via the real tool so metadata exists
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "google",
-          field: "api_key",
-          value: "test-value",
-        },
-        _ctx,
-      );
-      // Simulate an active OAuth connection for this service
-      mockConnections.set("google", {
-        id: "conn-gmail",
-        provider: "google",
-        oauthAppId: "app-gmail",
-        expiresAt: Date.now() + 3600_000,
-      });
-      const result = await credentialStoreTool.execute(
-        {
-          action: "delete",
-          service: "google",
-          field: "api_key",
-        },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      expect(result.content).toContain("Deleted credential");
-      // Verify disconnectOAuthProvider was called with the service name
-      expect(mockDisconnectOAuthProvider).toHaveBeenCalledTimes(1);
-      expect(mockDisconnectOAuthProvider).toHaveBeenCalledWith("google");
-    });
-  });
-  // -----------------------------------------------------------------------
-  // Credential value access (sealed — only via secure-keys internally)
-  // -----------------------------------------------------------------------
-  describe("credential value access", () => {
-    test("credential values are stored via secure keys", async () => {
-      await setSecureKeyAsync(credentialKey("github", "token"), "ghp_abc123");
-      expect(await getSecureKeyAsync(credentialKey("github", "token"))).toBe(
-        "ghp_abc123",
-      );
-    });
-    test("returns undefined for non-existent credential", async () => {
-      expect(
-        await getSecureKeyAsync(credentialKey("nonexistent", "field")),
-      ).toBeUndefined();
-    });
-  });
-  // -----------------------------------------------------------------------
-  // Hardening verification — getCredentialValue is no longer exported
-  // -----------------------------------------------------------------------
-  describe("hardening verification", () => {
-    test("vault module does not export getCredentialValue", async () => {
-      const vaultModule = await import("../tools/credentials/vault.js");
-      expect("getCredentialValue" in vaultModule).toBe(false);
-    });
-    test("store with policy fields persists metadata", async () => {
-      const result = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "github",
-          field: "token",
-          value: "ghp_secret",
-          allowed_tools: ["browser_fill_credential"],
-          allowed_domains: ["github.com"],
-          usage_description: "GitHub login",
-        },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      const metadata = getCredentialMetadata("github", "token");
-      expect(metadata).toBeDefined();
-      expect(metadata!.allowedTools).toEqual(["browser_fill_credential"]);
-      expect(metadata!.allowedDomains).toEqual(["github.com"]);
-      expect(metadata!.usageDescription).toBe("GitHub login");
-    });
-    test("store without policy fields defaults to empty arrays", async () => {
-      const result = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "slack",
-          field: "token",
-          value: "xoxb-secret",
-        },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      const metadata = getCredentialMetadata("slack", "token");
-      expect(metadata).toBeDefined();
-      expect(metadata!.allowedTools).toEqual([]);
-      expect(metadata!.allowedDomains).toEqual([]);
-    });
-    test("store rotation without policy fields preserves the existing policy", async () => {
-      /**
-       * Re-storing (rotating) a credential without policy fields must keep the
-       * policy it was originally stored with, rather than resetting it to a
-       * deny-all empty policy.
-       */
-      // GIVEN a credential stored with an allowed-tools/-domains policy
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "rotation-svc",
-          field: "token",
-          value: "v1",
-          allowed_tools: ["browser_fill_credential"],
-          allowed_domains: ["example.com"],
-        },
-        _ctx,
-      );
-      // WHEN it is re-stored with a new value but no policy fields
-      const result = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "rotation-svc",
-          field: "token",
-          value: "v2",
-        },
-        _ctx,
-      );
-      // THEN the original policy is preserved
-      expect(result.isError).toBe(false);
-      const metadata = getCredentialMetadata("rotation-svc", "token");
-      expect(metadata!.allowedTools).toEqual(["browser_fill_credential"]);
-      expect(metadata!.allowedDomains).toEqual(["example.com"]);
-    });
-    test("store rejects invalid policy input", async () => {
-      const result = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "test",
-          field: "token",
-          value: "val",
-          allowed_tools: "not-an-array",
-        },
-        _ctx,
-      );
-      expect(result.isError).toBe(true);
-      expect(result.content).toContain("allowed_tools must be an array");
-    });
-    test("list action entries do not expose policy metadata", async () => {
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "myservice",
-          field: "myfield",
-          value: "secret-val",
-          allowed_tools: ["browser_fill_credential"],
-          allowed_domains: ["example.com"],
-          usage_description: "Test usage",
-        },
-        _ctx,
-      );
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      const entries = JSON.parse(result.content);
-      const entry = entries.find(
-        (e: { service: string; field: string }) =>
-          e.service === "myservice" && e.field === "myfield",
-      );
-      expect(entry).toBeDefined();
-      // List entries expose credential_id, service, field (and optionally alias,
-      // injection_templates) — never policy details.
-      expect(entry.allowedTools).toBeUndefined();
-      expect(entry.allowedDomains).toBeUndefined();
-      expect(entry.usageDescription).toBeUndefined();
-      expect(entry.createdAt).toBeUndefined();
-      expect(entry.updatedAt).toBeUndefined();
-    });
-  });
-  // -----------------------------------------------------------------------
-  // Alias and injection template fields
-  // -----------------------------------------------------------------------
-  describe("alias and injection template fields", () => {
-    test("store with valid alias and templates persists metadata", async () => {
-      const result = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "fal",
-          field: "api_key",
-          value: "fal-key-123",
-          alias: "fal-primary",
-          injection_templates: [
-            {
-              hostPattern: "*.fal.ai",
-              injectionType: "header",
-              headerName: "Authorization",
-              valuePrefix: "Key ",
-            },
-          ],
-        },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      const metadata = getCredentialMetadata("fal", "api_key");
-      expect(metadata).toBeDefined();
-      expect(metadata!.alias).toBe("fal-primary");
-      expect(metadata!.injectionTemplates).toHaveLength(1);
-      expect(metadata!.injectionTemplates![0].hostPattern).toBe("*.fal.ai");
-      expect(metadata!.injectionTemplates![0].injectionType).toBe("header");
-      expect(metadata!.injectionTemplates![0].headerName).toBe("Authorization");
-      expect(metadata!.injectionTemplates![0].valuePrefix).toBe("Key ");
-    });
-    test("store with alias only (no templates)", async () => {
-      const result = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "openai",
-          field: "api_key",
-          value: "sk-test",
-          alias: "openai-main",
-        },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      const metadata = getCredentialMetadata("openai", "api_key");
-      expect(metadata).toBeDefined();
-      expect(metadata!.alias).toBe("openai-main");
-      expect(metadata!.injectionTemplates).toBeUndefined();
-    });
-    test("store with templates only (no alias)", async () => {
-      const result = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "replicate",
-          field: "token",
-          value: "r8_test",
-          injection_templates: [
-            {
-              hostPattern: "api.replicate.com",
-              injectionType: "header",
-              headerName: "Authorization",
-              valuePrefix: "Bearer ",
-            },
-          ],
-        },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      const metadata = getCredentialMetadata("replicate", "token");
-      expect(metadata).toBeDefined();
-      expect(metadata!.alias).toBeUndefined();
-      expect(metadata!.injectionTemplates).toHaveLength(1);
-      expect(metadata!.injectionTemplates![0].injectionType).toBe("header");
-    });
-    test("rejects template missing headerName for header type", async () => {
-      const result = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "fal",
-          field: "api_key",
-          value: "fal-key-123",
-          injection_templates: [
-            {
-              hostPattern: "*.fal.ai",
-              injectionType: "header",
-              // missing headerName
-            },
-          ],
-        },
-        _ctx,
-      );
-      expect(result.isError).toBe(true);
-      expect(result.content).toContain("headerName is required");
-    });
-    test("rejects template missing queryParamName for query type", async () => {
-      const result = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "mapbox",
-          field: "token",
-          value: "pk.test",
-          injection_templates: [
-            {
-              hostPattern: "api.mapbox.com",
-              injectionType: "query",
-              // missing queryParamName
-            },
-          ],
-        },
-        _ctx,
-      );
-      expect(result.isError).toBe(true);
-      expect(result.content).toContain("queryParamName is required");
-    });
-    test("round-trip: store then list shows the credential", async () => {
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "anthropic",
-          field: "api_key",
-          value: "sk-ant-test",
-          alias: "claude-key",
-          injection_templates: [
-            {
-              hostPattern: "api.anthropic.com",
-              injectionType: "header",
-              headerName: "x-api-key",
-            },
-          ],
-        },
-        _ctx,
-      );
-      const listResult = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      expect(listResult.isError).toBe(false);
-      const entries = JSON.parse(listResult.content);
-      const entry = entries.find(
-        (e: { service: string; field: string }) =>
-          e.service === "anthropic" && e.field === "api_key",
-      );
-      expect(entry).toBeDefined();
-      // Verify metadata persisted correctly
-      const metadata = getCredentialMetadata("anthropic", "api_key");
-      expect(metadata).toBeDefined();
-      expect(metadata!.alias).toBe("claude-key");
-      expect(metadata!.injectionTemplates).toHaveLength(1);
-    });
-    test("update alias on existing credential", async () => {
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "fal",
-          field: "api_key",
-          value: "fal-key-123",
-          alias: "fal-old",
-        },
-        _ctx,
-      );
-      let metadata = getCredentialMetadata("fal", "api_key");
-      expect(metadata!.alias).toBe("fal-old");
-      // Re-store same credential with updated alias
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "fal",
-          field: "api_key",
-          value: "fal-key-123",
-          alias: "fal-new",
-        },
-        _ctx,
-      );
-      metadata = getCredentialMetadata("fal", "api_key");
-      expect(metadata!.alias).toBe("fal-new");
-    });
-    test("store with query injection template", async () => {
-      const result = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "mapbox",
-          field: "token",
-          value: "pk.test123",
-          injection_templates: [
-            {
-              hostPattern: "api.mapbox.com",
-              injectionType: "query",
-              queryParamName: "access_token",
-            },
-          ],
-        },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      const metadata = getCredentialMetadata("mapbox", "token");
-      expect(metadata!.injectionTemplates).toHaveLength(1);
-      expect(metadata!.injectionTemplates![0].injectionType).toBe("query");
-      expect(metadata!.injectionTemplates![0].queryParamName).toBe(
-        "access_token",
-      );
-    });
-  });
-  // -----------------------------------------------------------------------
-  // Multi-key same-service vault storage
-  // -----------------------------------------------------------------------
-  describe("multi-key same-service storage", () => {
-    test("stores two credentials with same service but different aliases", async () => {
-      const result1 = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "openai",
-          field: "api_key_prod",
-          value: "sk-prod-abc",
-          alias: "production",
-        },
-        _ctx,
-      );
-      expect(result1.isError).toBe(false);
-      const result2 = await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "openai",
-          field: "api_key_staging",
-          value: "sk-staging-xyz",
-          alias: "staging",
-        },
-        _ctx,
-      );
-      expect(result2.isError).toBe(false);
-      // Verify both stored independently in metadata
-      const meta1 = getCredentialMetadata("openai", "api_key_prod");
-      const meta2 = getCredentialMetadata("openai", "api_key_staging");
-      expect(meta1).toBeDefined();
-      expect(meta2).toBeDefined();
-      expect(meta1!.alias).toBe("production");
-      expect(meta2!.alias).toBe("staging");
-    });
-    test("listing shows both same-service credentials independently", async () => {
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "openai",
-          field: "api_key_prod",
-          value: "sk-prod-abc",
-          alias: "production",
-        },
-        _ctx,
-      );
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "openai",
-          field: "api_key_staging",
-          value: "sk-staging-xyz",
-          alias: "staging",
-        },
-        _ctx,
-      );
-      const result = await credentialStoreTool.execute(
-        { action: "list" },
-        _ctx,
-      );
-      expect(result.isError).toBe(false);
-      const entries = JSON.parse(result.content);
-      const openaiEntries = entries.filter(
-        (e: { service: string }) => e.service === "openai",
-      );
-      expect(openaiEntries).toHaveLength(2);
-      const aliases = openaiEntries
-        .map((e: { alias?: string }) => e.alias)
-        .sort();
-      expect(aliases).toEqual(["production", "staging"]);
-    });
-    test("each same-service credential has its own credential_id", async () => {
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "openai",
-          field: "api_key_prod",
-          value: "sk-prod-abc",
-          alias: "production",
-        },
-        _ctx,
-      );
-      await credentialStoreTool.execute(
-        {
-          action: "store",
-          service: "openai",
-          field: "api_key_staging",
-          value: "sk-staging-xyz",
-          alias: "staging",
-        },
-        _ctx,
-      );
-      const meta1 = getCredentialMetadata("openai", "api_key_prod");
-      const meta2 = getCredentialMetadata("openai", "api_key_staging");
-      expect(meta1).toBeDefined();
-      expect(meta2).toBeDefined();
-      expect(meta1!.credentialId).not.toBe(meta2!.credentialId);
-      // Both should be valid UUIDs (non-empty strings)
-      expect(meta1!.credentialId.length).toBeGreaterThan(0);
-      expect(meta2!.credentialId.length).toBeGreaterThan(0);
-    });
-  });
-  // -----------------------------------------------------------------------
-  // Namespace isolation
-  // -----------------------------------------------------------------------
-  describe("namespace isolation", () => {
-    test("different services with same field do not collide", async () => {
-      await executeVault({
-        action: "store",
-        service: "gmail",
-        field: "password",
-        value: "gmail-pass",
-      });
-      await executeVault({
-        action: "store",
-        service: "github",
-        field: "password",
-        value: "github-pass",
-      });
-      expect(await getSecureKeyAsync(credentialKey("gmail", "password"))).toBe(
-        "gmail-pass",
-      );
-      expect(await getSecureKeyAsync(credentialKey("github", "password"))).toBe(
-        "github-pass",
-      );
-    });
-    test("same service with different fields do not collide", async () => {
-      await executeVault({
-        action: "store",
-        service: "gmail",
-        field: "password",
-        value: "pass123",
-      });
-      await executeVault({
-        action: "store",
-        service: "gmail",
-        field: "recovery_email",
-        value: "backup@example.com",
-      });
-      expect(await getSecureKeyAsync(credentialKey("gmail", "password"))).toBe(
-        "pass123",
-      );
-      expect(
-        await getSecureKeyAsync(credentialKey("gmail", "recovery_email")),
-      ).toBe("backup@example.com");
-    });
-  });
-});
-// ---------------------------------------------------------------------------
-// Token refresh deduplication tests
-// ---------------------------------------------------------------------------
-describe("withValidToken refresh deduplication", () => {
-  beforeAll(() => {
-    mkdirSync(TEST_DIR, { recursive: true });
-  });
-  beforeEach(() => {
-    _resetBackend();
-    for (const entry of readdirSync(TEST_DIR)) {
-      rmSync(join(TEST_DIR, entry), { recursive: true, force: true });
-    }
-    setStorePathForTesting(STORE_PATH);
-    _setMetadataPath(join(TEST_DIR, "metadata.json"));
-    _resetRefreshBreakers();
-    _resetInflightRefreshes();
-    mockRefreshOAuth2Token.mockClear();
-    // Clear mock oauth-store maps
-    mockConnections.clear();
-    mockApps.clear();
-    mockProviders.clear();
-  });
-  afterEach(() => {
-    _setMetadataPath(null);
-    setStorePathForTesting(null);
-    _resetBackend();
-    _resetRefreshBreakers();
-    _resetInflightRefreshes();
-    mockConnections.clear();
-    mockApps.clear();
-    mockProviders.clear();
-  });
-  afterAll(() => {
-    rmSync(TEST_DIR, { recursive: true, force: true });
-  });
-  /**
-   * Helper: set up a service with an access token, refresh token, and
-   * mock DB data so that token refresh can proceed through doRefresh().
-   *
-   * OAuth-specific fields (tokenExchangeUrl, clientId, expiresAt) are now stored
-   * in the SQLite oauth-store. The mock maps simulate the DB layer.
-   */
-  async function setupService(
-    service: string,
-    opts?: { expired?: boolean; accessToken?: string },
-  ) {
-    const accessToken = opts?.accessToken ?? "old-access-token";
-    // Seed mock oauth-store maps so token-manager can resolve refresh config
-    const appId = `app-${service}`;
-    const connId = `conn-${service}`;
-    // Store access token under the oauth_connection key path that
-    // withValidToken reads (not the legacy credentialKey path).
-    await setSecureKeyAsync(
-      `oauth_connection/${connId}/access_token`,
-      accessToken,
-    );
-    mockProviders.set(service, {
-      key: service,
-      tokenExchangeUrl: "https://oauth.example.com/token",
-      refreshUrl: null,
-    });
-    mockApps.set(appId, {
-      id: appId,
-      provider: service,
-      clientId: "test-client-id",
-      clientSecretCredentialPath: `oauth_app/${appId}/client_secret`,
-    });
-    mockConnections.set(service, {
-      id: connId,
-      provider: service,
-      oauthAppId: appId,
-      expiresAt: opts?.expired
-        ? Date.now() - 60_000 // expired 1 minute ago
-        : Date.now() + 3600_000, // expires in 1 hour
-    });
-    // Store refresh token and client_secret in secure keys (token-manager reads them)
-    await setSecureKeyAsync(
-      `oauth_connection/${connId}/refresh_token`,
-      "valid-refresh-token",
-    );
-    await setSecureKeyAsync(
-      `oauth_app/${appId}/client_secret`,
-      "test-client-secret",
-    );
-  }
-  test("3 concurrent 401 refreshes for the same service call doRefresh exactly once", async () => {
-    await setupService("google");
-    let resolveRefresh!: (value: {
-      accessToken: string;
-      expiresIn: number;
-    }) => void;
-    const refreshPromise = new Promise<{
-      accessToken: string;
-      expiresIn: number;
-    }>((resolve) => {
-      resolveRefresh = resolve;
-    });
-    mockRefreshOAuth2Token.mockImplementation(() => refreshPromise);
-    const err401 = Object.assign(new Error("Unauthorized"), { status: 401 });
-    const callback = async (token: string) => {
-      if (token === "old-access-token") throw err401;
-      return `result-with-${token}`;
-    };
-    // Launch 3 concurrent withValidToken calls — all will get a non-expired
-    // token first, call the callback, get a 401, and then try to refresh.
-    const p1 = withValidToken("google", callback);
-    const p2 = withValidToken("google", callback);
-    const p3 = withValidToken("google", callback);
-    // Let the event loop tick so all 3 calls enter the 401 retry path
-    await new Promise((r) => setTimeout(r, 10));
-    // Resolve the single refresh attempt
-    resolveRefresh({ accessToken: "new-token-123", expiresIn: 3600 });
-    const results = await Promise.all([p1, p2, p3]);
-    // All 3 should succeed with the refreshed token
-    expect(results).toEqual([
-      "result-with-new-token-123",
-      "result-with-new-token-123",
-      "result-with-new-token-123",
-    ]);
-    // refreshOAuth2Token should have been called exactly once
-    expect(mockRefreshOAuth2Token).toHaveBeenCalledTimes(1);
-  });
-  test("concurrent refreshes for different services proceed independently", async () => {
-    await setupService("google");
-    await setupService("slack");
-    let resolveGmail!: (value: {
-      accessToken: string;
-      expiresIn: number;
-    }) => void;
-    let resolveSlack!: (value: {
-      accessToken: string;
-      expiresIn: number;
-    }) => void;
-    const gmailPromise = new Promise<{
-      accessToken: string;
-      expiresIn: number;
-    }>((resolve) => {
-      resolveGmail = resolve;
-    });
-    const slackPromise = new Promise<{
-      accessToken: string;
-      expiresIn: number;
-    }>((resolve) => {
-      resolveSlack = resolve;
-    });
-    let refreshCallCount = 0;
-    mockRefreshOAuth2Token.mockImplementation(() => {
-      refreshCallCount++;
-      // Both services use the same tokenExchangeUrl in this test, so we track by
-      // call order to return the correct deferred promise.
-      if (refreshCallCount === 1) return gmailPromise;
-      return slackPromise;
-    });
-    const err401 = Object.assign(new Error("Unauthorized"), { status: 401 });
-    const gmailCallback = async (token: string) => {
-      if (token === "old-access-token") throw err401;
-      return `gmail-${token}`;
-    };
-    const slackCallback = async (token: string) => {
-      if (token === "old-access-token") throw err401;
-      return `slack-${token}`;
-    };
-    const p1 = withValidToken("google", gmailCallback);
-    const p2 = withValidToken("slack", slackCallback);
-    await new Promise((r) => setTimeout(r, 10));
-    // Resolve both independently
-    resolveGmail({ accessToken: "gmail-new-token", expiresIn: 3600 });
-    resolveSlack({ accessToken: "slack-new-token", expiresIn: 3600 });
-    const [r1, r2] = await Promise.all([p1, p2]);
-    expect(r1).toBe("gmail-gmail-new-token");
-    expect(r2).toBe("slack-slack-new-token");
-    // Both services should have triggered their own refresh
-    expect(mockRefreshOAuth2Token).toHaveBeenCalledTimes(2);
-  });
-  test("deduplication cleans up after refresh completes, allowing subsequent refreshes", async () => {
-    await setupService("google");
-    let refreshCount = 0;
-    mockRefreshOAuth2Token.mockImplementation(() => {
-      refreshCount++;
-      return Promise.resolve({
-        accessToken: `token-${refreshCount}`,
-        expiresIn: 3600,
-      });
-    });
-    const err401 = Object.assign(new Error("Unauthorized"), { status: 401 });
-    // First call triggers a refresh (old token → 401 → refresh → token-1)
-    const r1 = await withValidToken("google", async (token: string) => {
-      if (token !== "token-1") throw err401;
-      return token;
-    });
-    expect(r1).toBe("token-1");
-    expect(refreshCount).toBe(1);
-    // Second call also triggers a 401 to verify dedup state was cleaned up
-    // and a new refresh is allowed (not deduplicated with the first).
-    const r2 = await withValidToken("google", async (token: string) => {
-      if (token !== "token-2") throw err401;
-      return token;
-    });
-    expect(r2).toBe("token-2");
-    // Second refresh should have happened (not deduplicated with the first,
-    // since the first already completed)
-    expect(refreshCount).toBe(2);
-  });
-  test("deduplication propagates refresh errors to all waiting callers", async () => {
-    await setupService("google");
-    mockRefreshOAuth2Token.mockImplementation(() =>
-      Promise.reject(
-        Object.assign(
-          new Error("OAuth2 token refresh failed (HTTP 401: invalid_grant)"),
-        ),
-      ),
-    );
-    const err401 = Object.assign(new Error("Unauthorized"), { status: 401 });
-    const callback = async (token: string) => {
-      if (token === "old-access-token") throw err401;
-      return "should-not-reach";
-    };
-    // Launch 2 concurrent calls — both should fail with the same error
-    const p1 = withValidToken("google", callback);
-    const p2 = withValidToken("google", callback);
-    const results = await Promise.allSettled([p1, p2]);
-    expect(results[0].status).toBe("rejected");
-    expect(results[1].status).toBe("rejected");
-    // Only one actual refresh attempt
-    expect(mockRefreshOAuth2Token).toHaveBeenCalledTimes(1);
-  });
-  // -----------------------------------------------------------------------
-  // refreshUrl resolution — provider.refreshUrl with fallback to tokenExchangeUrl
-  // -----------------------------------------------------------------------
-  describe("refreshUrl resolution", () => {
-    test("uses provider.refreshUrl when set", async () => {
-      await setupService("google");
-      mockProviders.get("google")!.refreshUrl =
-        "https://refresh.example.com/token";
-      mockRefreshOAuth2Token.mockImplementation(() =>
-        Promise.resolve({
-          accessToken: "new-token-from-refresh-url",
-          expiresIn: 3600,
-        }),
-      );
-      const err401 = Object.assign(new Error("Unauthorized"), { status: 401 });
-      const callback = async (token: string) => {
-        if (token === "old-access-token") throw err401;
-        return `result-with-${token}`;
-      };
-      const result = await withValidToken("google", callback);
-      expect(result).toBe("result-with-new-token-from-refresh-url");
-      expect(mockRefreshOAuth2Token).toHaveBeenCalledTimes(1);
-      // Assert the refresh endpoint passed in is provider.refreshUrl, not
-      // the tokenExchangeUrl fallback.
-      expect(mockRefreshOAuth2Token.mock.calls[0]?.[0]).toBe(
-        "https://refresh.example.com/token",
-      );
-    });
-    test("falls back to provider.tokenExchangeUrl when refreshUrl is null", async () => {
-      // setupService sets refreshUrl: null by default — this exercises the
-      // fallback path explicitly.
-      await setupService("google");
-      expect(mockProviders.get("google")!.refreshUrl).toBeNull();
-      mockRefreshOAuth2Token.mockImplementation(() =>
-        Promise.resolve({
-          accessToken: "new-token-from-token-exchange-url",
-          expiresIn: 3600,
-        }),
-      );
-      const err401 = Object.assign(new Error("Unauthorized"), { status: 401 });
-      const callback = async (token: string) => {
-        if (token === "old-access-token") throw err401;
-        return `result-with-${token}`;
-      };
-      const result = await withValidToken("google", callback);
-      expect(result).toBe("result-with-new-token-from-token-exchange-url");
-      expect(mockRefreshOAuth2Token).toHaveBeenCalledTimes(1);
-      // Assert the refresh endpoint falls back to tokenExchangeUrl.
-      expect(mockRefreshOAuth2Token.mock.calls[0]?.[0]).toBe(
-        "https://oauth.example.com/token",
-      );
-    });
-    test("falls back to provider.tokenExchangeUrl when refreshUrl is undefined", async () => {
-      await setupService("google");
-      // Delete the refreshUrl field entirely so the property is `undefined`
-      // rather than `null`. Both representations of "not set" must produce
-      // the fallback behavior.
-      delete mockProviders.get("google")!.refreshUrl;
-      expect(mockProviders.get("google")!.refreshUrl).toBeUndefined();
-      mockRefreshOAuth2Token.mockImplementation(() =>
-        Promise.resolve({
-          accessToken: "new-token-from-token-exchange-url",
-          expiresIn: 3600,
-        }),
-      );
-      const err401 = Object.assign(new Error("Unauthorized"), { status: 401 });
-      const callback = async (token: string) => {
-        if (token === "old-access-token") throw err401;
-        return `result-with-${token}`;
-      };
-      const result = await withValidToken("google", callback);
-      expect(result).toBe("result-with-new-token-from-token-exchange-url");
-      expect(mockRefreshOAuth2Token).toHaveBeenCalledTimes(1);
-      // Assert the refresh endpoint falls back to tokenExchangeUrl.
-      expect(mockRefreshOAuth2Token.mock.calls[0]?.[0]).toBe(
-        "https://oauth.example.com/token",
-      );
-    });
-    test("falls back to provider.tokenExchangeUrl when refreshUrl is empty string", async () => {
-      // Platform's Python `oauth_app.refresh_url or oauth_app.token_exchange_url`
-      // treats an empty string as unset. We use `||` (not `??`) so empty
-      // strings follow the same fallback path and never resolve to an empty
-      // endpoint.
-      await setupService("google");
-      mockProviders.get("google")!.refreshUrl = "";
-      mockRefreshOAuth2Token.mockImplementation(() =>
-        Promise.resolve({
-          accessToken: "new-token-from-token-exchange-url",
-          expiresIn: 3600,
-        }),
-      );
-      const err401 = Object.assign(new Error("Unauthorized"), { status: 401 });
-      const callback = async (token: string) => {
-        if (token === "old-access-token") throw err401;
-        return `result-with-${token}`;
-      };
-      const result = await withValidToken("google", callback);
-      expect(result).toBe("result-with-new-token-from-token-exchange-url");
-      expect(mockRefreshOAuth2Token).toHaveBeenCalledTimes(1);
-      // Assert the refresh endpoint falls back to tokenExchangeUrl — NOT "".
-      expect(mockRefreshOAuth2Token.mock.calls[0]?.[0]).toBe(
-        "https://oauth.example.com/token",
-      );
-    });
-  });
-});