npm - @wipcomputer/wip-ldm-os - Versions diffs - 0.4.85-alpha.5 → 0.4.85-alpha.7 - Mend

@wipcomputer/wip-ldm-os 0.4.85-alpha.5 → 0.4.85-alpha.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/docs/universal-installer/SPEC.md +2 -0
package/package.json +1 -1
package/scripts/test-crc-agentid-tenant-boundary.mjs +13 -5
package/src/hosted-mcp/server.mjs +15 -32

package/docs/universal-installer/SPEC.md CHANGED Viewed

@@ -152,6 +152,8 @@ A markdown file that teaches agents when and how to use the tool. The instructio
 **Install:** the skill folder is deployed to every supported local agent skill surface, including OpenClaw, Codex, Claude Code, and WIP agent compatibility paths when present. If `references/` exists, it is deployed alongside SKILL.md and to `settings/docs/skills/<name>/` in the workspace.
+**Npm package shape:** a public skill package can expose `SKILL.md` at package root. For example, `@wipcomputer/wip-ai-chat-ui` is sourced from a private repo folder at `design/skills/wip-ai-chat-ui/`, but publishes a tarball with `SKILL.md`, `agents/`, and `references/` at package root so `ldm install @wipcomputer/wip-ai-chat-ui` installs the skill directly.
 **Structure:**
 ```
 repo/

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@wipcomputer/wip-ldm-os",
-  "version": "0.4.85-alpha.5",
+  "version": "0.4.85-alpha.7",
   "type": "module",
   "description": "LDM OS: identity, memory, and sovereignty infrastructure for AI agents",
   "engines": {

package/scripts/test-crc-agentid-tenant-boundary.mjs CHANGED Viewed

@@ -17,15 +17,15 @@ function assertNotContains(needle, label) {
 assertContains('const ACCOUNT_TENANT_PREFIX = "acct:";', "account tenant prefix");
 assertContains('const LEGACY_API_KEY_TENANT_PREFIX = "key:";', "legacy key tenant prefix");
-assertContains('const RESERVED_AGENT_HANDLES = new Set([', "reserved handle set");
-assertContains('"parker-smoke-test",', "reserved parker smoke handle");
 assertContains('function accountTenantIdForUserId(userId)', "account tenant helper");
 assertContains('function identityForApiKey(key)', "api key identity helper");
 assertContains('return identityForApiKey(key);', "http auth uses identity helper");
 assertContains("const agentId = accountTenantIdForUserId(stored.userId);", "registration uses immutable account tenant");
+assertContains("function sanitizeDisplayLabel(raw)", "display label sanitizer");
+assertContains('replace(/[\\u0000-\\u001f\\u007f]/g, "").replace(/\\s+/g, " ").trim().slice(0, 64)', "display label sanitizer preserves label semantics");
+assertContains("const displayLabel = sanitizeDisplayLabel(body?.displayName || body?.username);", "registration treats entered name as display label");
+assertContains("displayLabel,", "registration challenge stores display label");
 assertContains("await saveApiKey(apiKey, agentId, { handle: credentialLabel });", "registration stores handle separately");
-assertContains('json(res, 409, { error: "reserved_handle"', "reserved handle rejected");
-assertContains('json(res, 409, { error: "handle_taken"', "duplicate handle rejected");
 assertContains("p.handle = identity.handle;", "pair stores display handle separately");
 assertContains("handle: identity.handle,", "relay metadata returns display handle");
 assertContains("codexDaemons.has(identity.agentId)", "daemon presence uses tenant id");
@@ -37,6 +37,10 @@ assertContains("const key = codexRelayKey(identity.agentId, threadId);", "web ws
 assertContains("const daemonWs = codexDaemons.get(identity.agentId);", "web sends to tenant daemon");
 assertNotContains("const agentId = stored.username || (\"passkey-\"", "registration must not use chosen handle as tenant");
 assertNotContains("const existingKey = Object.entries(API_KEYS).find(([k, v]) => v === agentId);", "oauth must not reuse chosen handle as tenant");
+assertNotContains("function isUsernameTaken", "display labels must not be globally unique usernames");
+assertNotContains("function sanitizeUsername", "display labels must not be modeled as usernames");
+assertNotContains('json(res, 409, { error: "reserved_handle"', "display labels must not be blocked as reserved security handles");
+assertNotContains('json(res, 409, { error: "handle_taken"', "duplicate display labels must be allowed");
 function legacyTenantIdForApiKey(key) {
   return "key:" + createHash("sha256").update(key).digest("base64url").slice(0, 32);
@@ -47,11 +51,16 @@ function accountTenantIdForUserId(userId) {
 }
 const chosenHandle = "parker-smoke-test";
+const sharedDisplayLabel = "Parker";
 const accountA = accountTenantIdForUserId("user-a");
 const accountB = accountTenantIdForUserId("user-b");
+const threadId = "thread-019dfa";
 if (accountA === accountB) {
   throw new Error("different user ids collapsed to one account tenant");
 }
+if (`${sharedDisplayLabel}:${threadId}` === `${accountA}:${threadId}` || `${sharedDisplayLabel}:${threadId}` === `${accountB}:${threadId}`) {
+  throw new Error("display label was used as a relay route key");
+}
 const legacyA = legacyTenantIdForApiKey("ck-a");
 const legacyB = legacyTenantIdForApiKey("ck-b");
@@ -59,7 +68,6 @@ if (legacyA === legacyB) {
   throw new Error("legacy API-key tenants collided");
 }
-const threadId = "thread-019dfa";
 const webKeyA = `${accountA}:${threadId}`;
 const webKeyB = `${accountB}:${threadId}`;
 if (webKeyA === webKeyB) {

package/src/hosted-mcp/server.mjs CHANGED Viewed

@@ -110,9 +110,6 @@ const API_KEY_HANDLES = {};
 const ACCOUNT_TENANT_PREFIX = "acct:";
 const LEGACY_API_KEY_TENANT_PREFIX = "key:";
 const OAUTH_API_KEY_TENANT_PREFIX = "oauth:";
-const RESERVED_AGENT_HANDLES = new Set([
-  "parker-smoke-test",
-]);
 function isInternalTenantId(id) {
   return typeof id === "string"
@@ -519,21 +516,12 @@ function esc(s) {
   return s.replace(/&/g, "&amp;").replace(/"/g, "&quot;").replace(/</g, "&lt;").replace(/>/g, "&gt;");
 }
-function sanitizeUsername(raw) {
+function sanitizeDisplayLabel(raw) {
   if (!raw || typeof raw !== "string") return null;
-  const cleaned = raw.toLowerCase().replace(/[^a-z0-9-]/g, "").slice(0, 30);
+  const cleaned = raw.replace(/[\u0000-\u001f\u007f]/g, "").replace(/\s+/g, " ").trim().slice(0, 64);
   return cleaned.length > 0 ? cleaned : null;
 }
-async function isUsernameTaken(username) {
-  if (!username) return false;
-  if (usePrisma) {
-    const existing = await prisma.user.findFirst({ where: { name: username } });
-    return !!existing;
-  }
-  return passkeys.some((entry) => entry.handle === username || entry.agentId === username);
-}
 // ---------- Session cleanup ----------
 function touchSession(sid) {
@@ -655,22 +643,17 @@ async function handleRegisterOptions(req, res) {
   let body;
   try { body = await readBody(req); } catch { body = {}; }
-  // Accept optional username from request body
-  const username = sanitizeUsername(body?.username);
-  if (username && RESERVED_AGENT_HANDLES.has(username)) {
-    json(res, 409, { error: "reserved_handle", error_description: "This handle is reserved." });
-    return;
-  }
-  if (username && await isUsernameTaken(username)) {
-    json(res, 409, { error: "handle_taken", error_description: "This handle is already in use." });
-    return;
-  }
+  // Accept the existing `username` field for wire compatibility, but
+  // treat it only as a display label for the passkey prompt. It is not
+  // a public username, account handle, or relay tenant boundary.
+  // Duplicate display labels are allowed.
+  const displayLabel = sanitizeDisplayLabel(body?.displayName || body?.username);
   const userId = randomBytes(16);
   const userIdB64 = userId.toString("base64url");
-  const userName = username || ("user-" + userIdB64.slice(0, 8));
-  const displayName = username || "Memory Crystal User";
+  const userName = displayLabel || ("user-" + userIdB64.slice(0, 8));
+  const displayName = displayLabel || "Memory Crystal User";
   let options;
   try {
@@ -699,7 +682,7 @@ async function handleRegisterOptions(req, res) {
     challenge: options.challenge,
     type: "registration",
     userId: userIdB64,
-    username: username,
+    displayLabel,
     expires: Date.now() + 120000,
   };
@@ -752,8 +735,8 @@ async function handleRegisterVerify(req, res) {
   const { credential: cred, credentialDeviceType, credentialBackedUp } = verification.registrationInfo;
-  // Internal tenancy is the immutable WebAuthn user id. The chosen
-  // username is display metadata only and never owns a relay namespace.
+  // Internal tenancy is the immutable WebAuthn user id. The user-entered
+  // display label is metadata only and never owns a relay namespace.
   const agentId = accountTenantIdForUserId(stored.userId);
   // credentialLabel matches the userName passed to
   // generateRegistrationOptions in handleRegisterOptions, which is what
@@ -761,7 +744,7 @@ async function handleRegisterVerify(req, res) {
   // welcome view should display this, not agentId. Auth semantics are
   // unchanged; only the user-facing label is aligned with the saved
   // credential.
-  const credentialLabel = stored.username || ("user-" + stored.userId.slice(0, 8));
+  const credentialLabel = stored.displayLabel || ("user-" + stored.userId.slice(0, 8));
   const apiKey = generateApiKey();
   const entry = {
@@ -2784,8 +2767,8 @@ async function handleCodexPairComplete(req, res) {
   p.agentId = identity.agentId;
   p.handle = identity.handle;
   // Phase 2.5: register the daemon's E2EE public key against the
-  // authenticated handle. Replaces any previous key for this handle
-  // (rotate-key implicitly happens here on a re-pair).
+  // authenticated immutable tenant id. The display handle is returned
+  // as metadata only.
   if (p.daemon_public_key) {
     codexDaemonPubkeys.set(identity.agentId, {
       pubkey: p.daemon_public_key,