@wrongstack/webui 0.250.0 → 0.256.0

package/dist/server/index.js

@@ -15,13 +15,99 @@ import {
   createAutonomyBrain,
   createTieredBrainArbiter
 } from "@wrongstack/core";
-import * as fs6 from "fs/promises";
-import * as path8 from "path";
+import * as fs7 from "fs/promises";
+import * as path9 from "path";
 
 // src/server/http-server.ts
 import * as fs from "fs/promises";
 import * as http from "http";
 import * as path from "path";
+
+// src/server/ws-auth.ts
+import { Buffer as Buffer2 } from "buffer";
+import { timingSafeEqual } from "crypto";
+function isLoopbackHostname(hostname) {
+  return hostname === "localhost" || hostname === "127.0.0.1" || hostname === "::1" || hostname === "[::1]";
+}
+function isTrustedLoopbackOrigin(origin) {
+  try {
+    const url = new URL(origin);
+    if (url.protocol !== "http:" && url.protocol !== "https:") return false;
+    return url.hostname === "localhost" || url.hostname === "127.0.0.1";
+  } catch {
+    return false;
+  }
+}
+function isLoopbackBind(wsHost) {
+  return wsHost === "127.0.0.1" || wsHost === "::1" || wsHost === "localhost";
+}
+function tokenMatches(provided, expected) {
+  if (!provided) return false;
+  const a = Buffer2.from(provided);
+  const b = Buffer2.from(expected);
+  if (a.length !== b.length) return false;
+  return timingSafeEqual(a, b);
+}
+function extractToken(url) {
+  const match = url.match(/[?&]token=([^&]+)/);
+  return match ? match[1] : void 0;
+}
+function extractTokenFromCookie(cookieHeader) {
+  if (!cookieHeader) return void 0;
+  const raw = Array.isArray(cookieHeader) ? cookieHeader.join("; ") : cookieHeader;
+  for (const part of raw.split(";")) {
+    const eq = part.indexOf("=");
+    if (eq < 0) continue;
+    const name = part.slice(0, eq).trim();
+    if (name === "ws_token") {
+      try {
+        return decodeURIComponent(part.slice(eq + 1).trim());
+      } catch {
+        return part.slice(eq + 1).trim();
+      }
+    }
+  }
+  return void 0;
+}
+function hostHeaderOk(input) {
+  if (!isLoopbackBind(input.wsHost)) return true;
+  const hostHeader = (input.hostHeader ?? "").trim();
+  if (!hostHeader) return false;
+  let hostname;
+  try {
+    hostname = new URL(`http://${hostHeader}`).hostname;
+  } catch {
+    return false;
+  }
+  return isLoopbackHostname(hostname);
+}
+function verifyClient(input) {
+  const { origin, url, hostHeader, remoteAddress, cookieHeader, wsHost, expectedToken } = input;
+  const urlToken = extractToken(url ?? "");
+  const cookieToken = extractTokenFromCookie(cookieHeader);
+  const tokenOk = tokenMatches(urlToken, expectedToken) || tokenMatches(cookieToken, expectedToken);
+  if (!hostHeaderOk({ hostHeader, wsHost })) return false;
+  if (!origin) {
+    const remoteIp = remoteAddress ?? "";
+    const isRemoteLoopback = remoteIp === "127.0.0.1" || remoteIp === "::1";
+    if (!isRemoteLoopback && wsHost === "0.0.0.0") return false;
+    return tokenOk || isLoopbackBind(wsHost);
+  }
+  try {
+    const { hostname } = new URL(origin);
+    if (isLoopbackHostname(hostname)) {
+      if (wsHost === "0.0.0.0" && !isTrustedLoopbackOrigin(origin)) {
+        return false;
+      }
+      return true;
+    }
+    return tokenOk;
+  } catch {
+    return false;
+  }
+}
+
+// src/server/http-server.ts
 var MIME_TYPES = {
   ".html": "text/html",
   ".js": "application/javascript",
@@ -53,15 +139,47 @@ function createHttpServer(opts) {
   const port = opts.port ?? Number.parseInt(process.env["PORT"] ?? "3456", 10);
   const distDir = path.resolve(opts.distDir);
   const wsPort = opts.wsPort;
+  const requireApiToken = !isLoopbackBind(opts.host) && Boolean(opts.apiToken);
   return http.createServer(async (req, res) => {
     try {
       const url = new URL(req.url ?? "/", `http://127.0.0.1:${port}`);
+      if (url.pathname === "/ws-auth" && req.method === "GET" && (opts.enableWsCookie ?? true)) {
+        const provided = url.searchParams.get("token") ?? req.headers["x-ws-token"];
+        if (!provided || !opts.apiToken || !tokenMatches(provided, opts.apiToken)) {
+          res.writeHead(401, { "Content-Type": "text/plain" });
+          res.end("Unauthorized");
+          return;
+        }
+        res.writeHead(200, {
+          "Content-Type": "text/plain",
+          "Set-Cookie": `ws_token=${encodeURIComponent(opts.apiToken)}; HttpOnly; SameSite=Strict; Path=/; Max-Age=3600`,
+          // Belt-and-braces: tell any caches the cookie response itself
+          // is sensitive.
+          "Cache-Control": "no-store"
+        });
+        res.end("ok");
+        return;
+      }
       if (url.pathname === "/api/sessions" && req.method === "GET") {
+        const headerToken = req.headers["x-ws-token"];
+        const provided = Array.isArray(headerToken) ? headerToken[0] : headerToken;
+        if (requireApiToken && !tokenMatches(provided, opts.apiToken ?? "")) {
+          res.writeHead(401, { "Content-Type": "application/json" });
+          res.end(JSON.stringify({ error: "Unauthorized" }));
+          return;
+        }
         await handleApiSessions(res, opts.globalRoot);
         return;
       }
       const agentsMatch = url.pathname.match(/^\/api\/sessions\/([^/]+)\/agents$/);
       if (agentsMatch && req.method === "GET") {
+        const headerToken = req.headers["x-ws-token"];
+        const provided = Array.isArray(headerToken) ? headerToken[0] : headerToken;
+        if (requireApiToken && !tokenMatches(provided, opts.apiToken ?? "")) {
+          res.writeHead(401, { "Content-Type": "application/json" });
+          res.end(JSON.stringify({ error: "Unauthorized" }));
+          return;
+        }
         await handleApiSessionAgents(res, opts.globalRoot, agentsMatch[1]);
         return;
       }
@@ -1799,71 +1917,6 @@ async function handleMailboxClear(ws, deps) {
   }
 }
 
-// src/server/ws-auth.ts
-import { Buffer as Buffer2 } from "buffer";
-import { timingSafeEqual } from "crypto";
-function isLoopbackHostname(hostname) {
-  return hostname === "localhost" || hostname === "127.0.0.1" || hostname === "::1" || hostname === "[::1]";
-}
-function isTrustedLoopbackOrigin(origin) {
-  try {
-    const url = new URL(origin);
-    if (url.protocol !== "http:" && url.protocol !== "https:") return false;
-    return url.hostname === "localhost" || url.hostname === "127.0.0.1";
-  } catch {
-    return false;
-  }
-}
-function isLoopbackBind(wsHost) {
-  return wsHost === "127.0.0.1" || wsHost === "::1" || wsHost === "localhost";
-}
-function tokenMatches(provided, expected) {
-  if (!provided) return false;
-  const a = Buffer2.from(provided);
-  const b = Buffer2.from(expected);
-  if (a.length !== b.length) return false;
-  return timingSafeEqual(a, b);
-}
-function extractToken(url) {
-  const match = url.match(/[?&]token=([^&]+)/);
-  return match ? match[1] : void 0;
-}
-function hostHeaderOk(input) {
-  if (!isLoopbackBind(input.wsHost)) return true;
-  const hostHeader = (input.hostHeader ?? "").trim();
-  if (!hostHeader) return false;
-  let hostname;
-  try {
-    hostname = new URL(`http://${hostHeader}`).hostname;
-  } catch {
-    return false;
-  }
-  return isLoopbackHostname(hostname);
-}
-function verifyClient(input) {
-  const { origin, url, hostHeader, remoteAddress, wsHost, expectedToken } = input;
-  const tokenOk = tokenMatches(extractToken(url ?? ""), expectedToken);
-  if (!hostHeaderOk({ hostHeader, wsHost })) return false;
-  if (!origin) {
-    const remoteIp = remoteAddress ?? "";
-    const isRemoteLoopback = remoteIp === "127.0.0.1" || remoteIp === "::1";
-    if (!isRemoteLoopback && wsHost === "0.0.0.0") return false;
-    return tokenOk || isLoopbackBind(wsHost);
-  }
-  try {
-    const { hostname } = new URL(origin);
-    if (isLoopbackHostname(hostname)) {
-      if (wsHost === "0.0.0.0" && !isTrustedLoopbackOrigin(origin)) {
-        return false;
-      }
-      return true;
-    }
-    return tokenOk;
-  } catch {
-    return false;
-  }
-}
-
 // src/server/lifecycle.ts
 function createShutdown(res) {
   const log = res.log ?? ((m) => console.log(m));
@@ -1981,16 +2034,16 @@ function formatInstances(instances) {
 // src/server/port-utils.ts
 import * as net from "net";
 function isPortFree(host, port) {
-  return new Promise((resolve5) => {
+  return new Promise((resolve6) => {
     const srv = net.createServer();
-    srv.once("error", () => resolve5(false));
+    srv.once("error", () => resolve6(false));
     srv.once("listening", () => {
-      srv.close(() => resolve5(true));
+      srv.close(() => resolve6(true));
     });
     try {
       srv.listen(port, host);
     } catch {
-      resolve5(false);
+      resolve6(false);
     }
   });
 }
@@ -2729,6 +2782,79 @@ function estimateContextBreakdown(input) {
   };
 }
 
+// src/server/eternal-iteration-broadcast.ts
+function createEternalSubscription(subscribe, broadcast2, clientsRef) {
+  let disposed = false;
+  const dispose = subscribe((entry) => {
+    if (disposed) return;
+    broadcast2(clientsRef(), {
+      type: "eternal.iteration",
+      payload: { entry }
+    });
+  });
+  return {
+    dispose() {
+      if (disposed) return;
+      disposed = true;
+      dispose();
+    }
+  };
+}
+
+// src/server/shell-open.ts
+import * as fs6 from "fs/promises";
+import * as path8 from "path";
+import { spawn as spawn2 } from "child_process";
+var METACHAR_REGEX = /[&|<>^"'`\n\r]/;
+async function handleShellOpen(req, logger) {
+  try {
+    const resolved = path8.resolve(req.path);
+    await fs6.access(resolved);
+    if (METACHAR_REGEX.test(resolved)) {
+      return { success: false, message: "Path contains unsupported characters." };
+    }
+    const platform = process.platform;
+    const launch = (cmd, args, onError) => {
+      const child = spawn2(cmd, args, {
+        detached: true,
+        stdio: "ignore",
+        windowsHide: true
+      });
+      child.on("error", (err) => {
+        logger.warn(`shell.open spawn failed: ${err.message}`);
+        onError?.();
+      });
+      child.unref();
+    };
+    if (req.target === "file-manager") {
+      if (platform === "win32") launch("explorer", [resolved]);
+      else if (platform === "darwin") launch("open", [resolved]);
+      else launch("xdg-open", [resolved]);
+    } else if (req.target === "terminal") {
+      if (platform === "win32") {
+        launch("cmd", ["/c", "start", "cmd", "/k", "cd", "/d", resolved]);
+      } else if (platform === "darwin") {
+        launch("open", ["-a", "Terminal", resolved]);
+      } else {
+        launch(
+          "x-terminal-emulator",
+          [`--working-directory=${resolved}`],
+          () => launch(
+            "gnome-terminal",
+            [`--working-directory=${resolved}`],
+            () => launch("xterm", ["-e", `cd '${resolved}' && ${process.env["SHELL"] ?? "sh"}`])
+          )
+        );
+      }
+    } else {
+      return { success: false, message: `Unknown shell.open target: ${String(req.target)}` };
+    }
+    return { success: true, message: `Opened ${req.target} at ${resolved}` };
+  } catch (err) {
+    return { success: false, message: err instanceof Error ? err.message : String(err) };
+  }
+}
+
 // src/server/index.ts
 async function startWebUI(opts = {}) {
   const requestedWsPort = opts.wsPort ?? 3457;
@@ -2763,7 +2889,8 @@ async function startWebUI(opts = {}) {
   }
   console.log("[WebUI] Starting backend services...");
   const boot = await bootConfig();
-  const { config: baseConfig, vault, globalConfigPath, wpaths, logger } = boot;
+  const { config: baseConfig, globalConfigPath, wpaths, logger } = boot;
+  const vault = opts.services?.vault ?? boot.vault;
   let config = baseConfig;
   let projectRoot = boot.projectRoot;
   let workingDir = projectRoot;
@@ -2775,12 +2902,12 @@ async function startWebUI(opts = {}) {
     console.log("[WebUI] No active provider \u2014 auto-selected:", firstKey);
   }
   const needsProvider = !config.provider || !config.model;
-  const modelsRegistry = new DefaultModelsRegistry({
+  const modelsRegistry = opts.services?.modelsRegistry ?? new DefaultModelsRegistry({
     cacheFile: wpaths.modelsCache,
     ttlSeconds: 24 * 3600
   });
   const container = createDefaultContainer({ config, wpaths, logger, modelsRegistry });
-  const configStore = container.resolve(TOKENS2.ConfigStore);
+  const configStore = opts.services?.configStore ?? container.resolve(TOKENS2.ConfigStore);
   const providerRegistry = new ProviderRegistry();
   try {
     const factories = await buildProviderFactoriesFromRegistry({
@@ -2797,8 +2924,11 @@ async function startWebUI(opts = {}) {
       timestamp: (/* @__PURE__ */ new Date()).toISOString()
     }));
   }
-  const toolRegistry = new ToolRegistry();
-  toolRegistry.registerAllOrThrow([...builtinToolsPack.tools ?? []], builtinToolsPack.name);
+  const toolRegistry = opts.services?.toolRegistry ?? (() => {
+    const r = new ToolRegistry();
+    r.registerAllOrThrow([...builtinToolsPack.tools ?? []], builtinToolsPack.name);
+    return r;
+  })();
   const memoryStore = new DefaultMemoryStore2({ paths: wpaths });
   if (config.features.memory) {
     toolRegistry.register(rememberTool(memoryStore));
@@ -2806,16 +2936,18 @@ async function startWebUI(opts = {}) {
     toolRegistry.register(searchMemoryTool(memoryStore));
     toolRegistry.register(relatedMemoryTool(memoryStore));
   }
-  const events = new EventBus();
+  const events = opts.services?.events ?? new EventBus();
   events.setLogger(logger);
   toolRegistry.register(makeMailboxTool({ projectDir: wpaths.projectDir, events }));
   toolRegistry.register(makeMailSendTool({ projectDir: wpaths.projectDir, events }));
   toolRegistry.register(makeMailInboxTool({ projectDir: wpaths.projectDir, events }));
   console.log("[WebUI] Tool registry loaded:", toolRegistry.list().length, "tools");
-  let sessionStore = new DefaultSessionStore2({ dir: wpaths.projectSessions });
-  sessionStore.prune(DEFAULT_SESSION_PRUNE_DAYS).then((count) => {
-    if (count > 0) logger.info(`Pruned ${count} old session${count === 1 ? "" : "s"}.`);
-  }).catch(() => void 0);
+  let sessionStore = opts.services?.session ?? new DefaultSessionStore2({ dir: wpaths.projectSessions });
+  if (!opts.services?.session) {
+    sessionStore.prune(DEFAULT_SESSION_PRUNE_DAYS).then((count) => {
+      if (count > 0) logger.info(`Pruned ${count} old session${count === 1 ? "" : "s"}.`);
+    }).catch(() => void 0);
+  }
   const sessionReader = new DefaultSessionReader({ store: sessionStore });
   const annotationsStore = new AnnotationsStore({ dir: wpaths.projectSessions });
   let session = await sessionStore.create({
@@ -2837,7 +2969,7 @@ async function startWebUI(opts = {}) {
       sessionId: session.id,
       projectSlug: wpaths.projectSlug,
       projectRoot,
-      projectName: path8.basename(projectRoot),
+      projectName: path9.basename(projectRoot),
       workingDir,
       pid: process.pid,
       startedAt: (/* @__PURE__ */ new Date()).toISOString()
@@ -3032,7 +3164,7 @@ async function startWebUI(opts = {}) {
     const write = async () => {
       let raw;
       try {
-        raw = await fs6.readFile(globalConfigPath, "utf8");
+        raw = await fs7.readFile(globalConfigPath, "utf8");
       } catch {
         raw = "{}";
       }
@@ -3303,6 +3435,14 @@ async function startWebUI(opts = {}) {
     try {
       const m = await modelsRegistry.getModel(config.provider, config.model);
       maxContext = m?.capabilities?.maxContext ?? 0;
+      if (!maxContext) {
+        try {
+          const provider2 = await modelsRegistry.getProvider(config.provider);
+          const rawModel = provider2?.models.find((mod) => mod.id === config.model);
+          maxContext = rawModel?.limit?.context ?? 0;
+        } catch {
+        }
+      }
       const rates = getCostRates(m);
       inputCost = rates.input;
       outputCost = rates.output;
@@ -3317,12 +3457,11 @@ async function startWebUI(opts = {}) {
       inputCost,
       outputCost,
       cacheReadCost,
-      projectName: path8.basename(projectRoot) || projectRoot,
+      projectName: path9.basename(projectRoot) || projectRoot,
       projectRoot,
       cwd: workingDir,
       mode: modeId,
-      contextMode: String(context.meta["contextWindowMode"] ?? DEFAULT_CONTEXT_WINDOW_MODE_ID),
-      wsToken
+      contextMode: String(context.meta["contextWindowMode"] ?? DEFAULT_CONTEXT_WINDOW_MODE_ID)
     };
   }
   const wsToken = generateAuthToken();
@@ -3332,6 +3471,11 @@ async function startWebUI(opts = {}) {
     url: info.req.url ?? "",
     hostHeader: info.req.headers.host,
     remoteAddress: info.req.socket.remoteAddress,
+    // C-2 fix: accept the token via the HttpOnly cookie set by
+    // `/ws-auth` (preferred) OR the URL query param (non-browser
+    // fallback). The cookie path closes the C-598 query-string
+    // exposure class.
+    cookieHeader: info.req.headers.cookie,
     wsHost,
     expectedToken: wsToken
   });
@@ -3356,6 +3500,14 @@ async function startWebUI(opts = {}) {
       payload: { cwd: newDir, projectRoot }
     });
   });
+  let eternalSubscription = null;
+  if (opts.subscribeEternalIteration) {
+    eternalSubscription = createEternalSubscription(
+      opts.subscribeEternalIteration,
+      broadcast,
+      () => clients
+    );
+  }
   const RATE_LIMIT_MESSAGES = Number.parseInt(process.env["WEBUI_RATE_LIMIT"] ?? "0", 10);
   const RATE_LIMIT_WINDOW_MS = 6e4;
   const rateLimits = /* @__PURE__ */ new Map();
@@ -3432,8 +3584,8 @@ async function startWebUI(opts = {}) {
       clients.delete(ws);
       rateLimits.delete(String(ws));
       if (pendingConfirms.size > 0) {
-        for (const [id, resolve5] of pendingConfirms) {
-          resolve5("no");
+        for (const [id, resolve6] of pendingConfirms) {
+          resolve6("no");
           pendingConfirms.delete(id);
         }
       }
@@ -3497,33 +3649,33 @@ async function startWebUI(opts = {}) {
     });
   }
   async function touchProjectEntry(root, workDir) {
-    const resolved = path8.resolve(root);
+    const resolved = path9.resolve(root);
     const manifest = await loadManifest(globalConfigPath);
     const now = (/* @__PURE__ */ new Date()).toISOString();
-    const existing = manifest.projects.find((p) => path8.resolve(p.root) === resolved);
+    const existing = manifest.projects.find((p) => path9.resolve(p.root) === resolved);
     if (existing) {
       existing.lastSeen = now;
-      if (workDir) existing.lastWorkingDir = path8.resolve(workDir);
+      if (workDir) existing.lastWorkingDir = path9.resolve(workDir);
     } else {
       manifest.projects.push({
-        name: path8.basename(resolved),
+        name: path9.basename(resolved),
         root: resolved,
         slug: generateProjectSlug(resolved),
         createdAt: now,
         lastSeen: now,
-        lastWorkingDir: workDir ? path8.resolve(workDir) : void 0
+        lastWorkingDir: workDir ? path9.resolve(workDir) : void 0
       });
     }
     await saveManifest(manifest, globalConfigPath);
     await ensureProjectDataDir(generateProjectSlug(resolved), globalConfigPath);
   }
   function projectsJsonPath(globalConfigPath2) {
-    const base = path8.dirname(globalConfigPath2);
-    return path8.join(base, "projects.json");
+    const base = path9.dirname(globalConfigPath2);
+    return path9.join(base, "projects.json");
   }
   async function loadManifest(globalConfigPath2) {
     try {
-      const raw = await fs6.readFile(projectsJsonPath(globalConfigPath2), "utf8");
+      const raw = await fs7.readFile(projectsJsonPath(globalConfigPath2), "utf8");
       const parsed = JSON.parse(raw);
       return { projects: parsed.projects ?? [] };
     } catch {
@@ -3532,16 +3684,16 @@ async function startWebUI(opts = {}) {
   }
   async function saveManifest(manifest, globalConfigPath2) {
     const file = projectsJsonPath(globalConfigPath2);
-    await fs6.mkdir(path8.dirname(file), { recursive: true });
-    await fs6.writeFile(file, JSON.stringify(manifest, null, 2), "utf8");
+    await fs7.mkdir(path9.dirname(file), { recursive: true });
+    await fs7.writeFile(file, JSON.stringify(manifest, null, 2), "utf8");
   }
   function generateProjectSlug(rootPath) {
     return projectSlug(rootPath);
   }
   async function ensureProjectDataDir(slug, globalConfigPath2) {
-    const base = path8.dirname(globalConfigPath2);
-    const dir = path8.join(base, "projects", slug);
-    await fs6.mkdir(dir, { recursive: true });
+    const base = path9.dirname(globalConfigPath2);
+    const dir = path9.join(base, "projects", slug);
+    await fs7.mkdir(dir, { recursive: true });
     return dir;
   }
   async function handleMessage(ws, _client, msg) {
@@ -3603,10 +3755,10 @@ async function startWebUI(opts = {}) {
       }
       case "tool.confirm_result": {
         const { id, decision } = msg.payload;
-        const resolve5 = pendingConfirms.get(id);
-        if (resolve5) {
+        const resolve6 = pendingConfirms.get(id);
+        if (resolve6) {
           pendingConfirms.delete(id);
-          resolve5(decision);
+          resolve6(decision);
         }
         break;
       }
@@ -3880,7 +4032,7 @@ async function startWebUI(opts = {}) {
           updateAutoCompactionMaxContext?.(newProv);
           try {
             configWriteLock = configWriteLock.then(async () => {
-              const raw = await fs6.readFile(globalConfigPath, "utf8");
+              const raw = await fs7.readFile(globalConfigPath, "utf8");
               const parsed = JSON.parse(raw);
               parsed.provider = newProvider;
               parsed.model = newModel;
@@ -4426,8 +4578,8 @@ async function startWebUI(opts = {}) {
       }
       case "goal.get": {
         try {
-          const goalPath = path8.join(projectRoot, ".wrongstack", "goal.json");
-          const raw = await fs6.readFile(goalPath, "utf8");
+          const goalPath = path9.join(projectRoot, ".wrongstack", "goal.json");
+          const raw = await fs7.readFile(goalPath, "utf8");
           const goal = JSON.parse(raw);
           broadcast(clients, { type: "goal.updated", payload: goal });
         } catch {
@@ -4487,7 +4639,7 @@ async function startWebUI(opts = {}) {
         try {
           const { DefaultSessionRewinder } = await import("@wrongstack/core");
           const rewinder = new DefaultSessionRewinder(
-            path8.join(projectRoot, ".wrongstack", "sessions"),
+            path9.join(projectRoot, ".wrongstack", "sessions"),
             projectRoot
           );
           const checkpoints = await rewinder.listCheckpoints(session.id);
@@ -4508,7 +4660,7 @@ async function startWebUI(opts = {}) {
         try {
           const { DefaultSessionRewinder } = await import("@wrongstack/core");
           const rewinder = new DefaultSessionRewinder(
-            path8.join(projectRoot, ".wrongstack", "sessions"),
+            path9.join(projectRoot, ".wrongstack", "sessions"),
             projectRoot
           );
           await rewinder.rewindToCheckpoint(session.id, checkpointIndex);
@@ -4542,9 +4694,9 @@ async function startWebUI(opts = {}) {
       case "projects.add": {
         const { root: addRoot, name: displayName } = msg.payload;
         try {
-          const resolved = path8.resolve(addRoot);
-          await fs6.access(resolved);
-          const stat2 = await fs6.stat(resolved);
+          const resolved = path9.resolve(addRoot);
+          await fs7.access(resolved);
+          const stat2 = await fs7.stat(resolved);
           if (!stat2.isDirectory()) throw new Error(`Not a directory: ${resolved}`);
           const manifest = await loadManifest(globalConfigPath);
           const existing = manifest.projects.find((p) => p.root === resolved);
@@ -4560,7 +4712,7 @@ async function startWebUI(opts = {}) {
             });
             break;
           }
-          const name = displayName?.trim() || path8.basename(resolved);
+          const name = displayName?.trim() || path9.basename(resolved);
           const slug = generateProjectSlug(resolved);
           await ensureProjectDataDir(slug, globalConfigPath);
           const now = (/* @__PURE__ */ new Date()).toISOString();
@@ -4579,7 +4731,7 @@ async function startWebUI(opts = {}) {
           send(ws, {
             type: "projects.added",
             payload: {
-              name: path8.basename(addRoot),
+              name: path9.basename(addRoot),
               root: addRoot,
               slug: "",
               message: errMessage(err)
@@ -4591,17 +4743,17 @@ async function startWebUI(opts = {}) {
       case "projects.select": {
         const { root: selRoot, name: selName } = msg.payload;
         try {
-          const resolved = path8.resolve(selRoot);
+          const resolved = path9.resolve(selRoot);
           try {
-            await fs6.access(resolved);
-            const stat2 = await fs6.stat(resolved);
+            await fs7.access(resolved);
+            const stat2 = await fs7.stat(resolved);
             if (!stat2.isDirectory()) throw new Error(`Not a directory: ${resolved}`);
           } catch (err) {
             send(ws, {
               type: "projects.selected",
               payload: {
                 root: selRoot,
-                name: selName || path8.basename(selRoot),
+                name: selName || path9.basename(selRoot),
                 message: `Cannot switch: ${errMessage(err)}`
               }
             });
@@ -4613,7 +4765,7 @@ async function startWebUI(opts = {}) {
             entry.lastSeen = (/* @__PURE__ */ new Date()).toISOString();
             entry.lastWorkingDir = resolved;
           } else {
-            const name = selName?.trim() || path8.basename(resolved);
+            const name = selName?.trim() || path9.basename(resolved);
             const slug = generateProjectSlug(resolved);
             manifest.projects.push({
               name,
@@ -4634,13 +4786,33 @@ async function startWebUI(opts = {}) {
           workingDir = resolved;
           context.cwd = workingDir;
           context.projectRoot = projectRoot;
-          const newSessionsDir = path8.join(
-            path8.dirname(globalConfigPath),
+          const switchSlug = entry?.slug ?? generateProjectSlug(resolved);
+          try {
+            const switchMode = modeId === "default" ? void 0 : await modeStore.getMode(modeId);
+            const switchBuilder = new DefaultSystemPromptBuilder2({
+              memoryStore,
+              skillLoader,
+              modeStore,
+              modeId,
+              modePrompt: switchMode?.prompt ?? "",
+              modelCapabilities
+            });
+            context.systemPrompt = await switchBuilder.build({
+              cwd: workingDir,
+              projectRoot,
+              tools: toolRegistry.list(),
+              provider: config.provider,
+              model: config.model
+            });
+          } catch {
+          }
+          const newSessionsDir = path9.join(
+            path9.dirname(globalConfigPath),
             "projects",
-            entry?.slug ?? generateProjectSlug(resolved),
+            switchSlug,
             "sessions"
           );
-          await fs6.mkdir(newSessionsDir, { recursive: true });
+          await fs7.mkdir(newSessionsDir, { recursive: true });
           const newSessionStore = new DefaultSessionStore2({ dir: newSessionsDir });
           const oldSessionId = session.id;
           try {
@@ -4666,12 +4838,25 @@ async function startWebUI(opts = {}) {
           context.fileMtimes.clear();
           tokenCounter.reset();
           sessionStartedAt = Date.now();
+          try {
+            const registry = getSessionRegistry(wpaths.globalRoot);
+            await registry.register({
+              sessionId: session.id,
+              projectSlug: switchSlug,
+              projectRoot,
+              projectName: path9.basename(projectRoot),
+              workingDir,
+              pid: process.pid,
+              startedAt: (/* @__PURE__ */ new Date()).toISOString()
+            });
+          } catch {
+          }
           send(ws, {
             type: "projects.selected",
             payload: {
               root: resolved,
-              name: selName || path8.basename(resolved),
-              message: `Switched to ${selName || path8.basename(resolved)}`
+              name: selName || path9.basename(resolved),
+              message: `Switched to ${selName || path9.basename(resolved)}`
             }
           });
           broadcast(clients, {
@@ -4694,7 +4879,7 @@ async function startWebUI(opts = {}) {
             type: "projects.selected",
             payload: {
               root: selRoot,
-              name: selName || path8.basename(selRoot),
+              name: selName || path9.basename(selRoot),
               message: errMessage(err)
             }
           });
@@ -4705,14 +4890,14 @@ async function startWebUI(opts = {}) {
       case "working_dir.set": {
         const { path: newPath } = msg.payload;
         try {
-          const resolved = path8.resolve(projectRoot, newPath);
-          if (!resolved.startsWith(projectRoot + path8.sep) && resolved !== projectRoot) {
+          const resolved = path9.resolve(projectRoot, newPath);
+          if (!resolved.startsWith(projectRoot + path9.sep) && resolved !== projectRoot) {
             sendResult(ws, false, `Path must stay inside the project root: ${projectRoot}`);
             break;
           }
           try {
-            await fs6.access(resolved);
-            const stat2 = await fs6.stat(resolved);
+            await fs7.access(resolved);
+            const stat2 = await fs7.stat(resolved);
             if (!stat2.isDirectory()) throw new Error("Not a directory");
           } catch {
             sendResult(ws, false, `Directory not found or not accessible: ${resolved}`);
@@ -4732,58 +4917,30 @@ async function startWebUI(opts = {}) {
       }
       // ── Shell open — spawn terminal or file manager at a path ─────────
       case "shell.open": {
-        const { path: targetPath, target } = msg.payload;
-        try {
-          const resolved = path8.resolve(targetPath);
-          await fs6.access(resolved);
-          const { exec } = await import("child_process");
-          const platform = process.platform;
-          let cmd;
-          if (target === "file-manager") {
-            if (platform === "win32") {
-              cmd = `explorer "${resolved}"`;
-            } else if (platform === "darwin") {
-              cmd = `open "${resolved}"`;
-            } else {
-              cmd = `xdg-open "${resolved}"`;
-            }
-          } else {
-            if (platform === "win32") {
-              cmd = `start cmd /k cd /d "${resolved}"`;
-            } else if (platform === "darwin") {
-              cmd = `open -a Terminal "${resolved}"`;
-            } else {
-              cmd = `x-terminal-emulator --working-directory="${resolved}" 2>/dev/null || gnome-terminal --working-directory="${resolved}" 2>/dev/null || xterm -e "cd '${resolved}' && $SHELL"`;
-            }
-          }
-          exec(cmd, { timeout: 5e3 }, (err) => {
-            if (err) {
-              logger.warn(`shell.open failed: ${err.message}`);
-            }
-          });
-          sendResult(ws, true, `Opened ${target} at ${resolved}`);
-        } catch (err) {
-          sendResult(ws, false, errMessage(err));
-        }
+        const result = await handleShellOpen(
+          msg.payload,
+          logger
+        );
+        sendResult(ws, result.success, result.message);
         break;
       }
       // ── Mailbox operations — project-level inter-agent messaging ────
       case "mailbox.messages":
         return handleMailboxMessages(
           ws,
-          { projectRoot, globalRoot: path8.dirname(globalConfigPath) },
+          { projectRoot, globalRoot: path9.dirname(globalConfigPath) },
           msg.payload
         );
       case "mailbox.agents":
         return handleMailboxAgents(
           ws,
-          { projectRoot, globalRoot: path8.dirname(globalConfigPath) },
+          { projectRoot, globalRoot: path9.dirname(globalConfigPath) },
           msg.payload
         );
       case "mailbox.clear":
         return handleMailboxClear(
           ws,
-          { projectRoot, globalRoot: path8.dirname(globalConfigPath) }
+          { projectRoot, globalRoot: path9.dirname(globalConfigPath) }
         );
       // ── Brain — status, autonomy ceiling, direct decision support ───
       case "brain.status":
@@ -4851,10 +5008,12 @@ async function startWebUI(opts = {}) {
   });
   const httpServer = createHttpServer({
     host: wsHost,
-    distDir: path8.resolve(import.meta.dirname, "../../dist"),
-    wsPort
+    distDir: path9.resolve(import.meta.dirname, "../../dist"),
+    wsPort,
+    globalRoot: wpaths.globalRoot,
+    apiToken: wsToken
   });
-  const registryBaseDir = path8.dirname(globalConfigPath);
+  const registryBaseDir = path9.dirname(globalConfigPath);
   httpServer.listen(httpPort, wsHost, () => {
     const openUrl = `http://${wsHost}:${httpPort}`;
     console.log(`[WebUI] HTTP server running on ${openUrl}`);
@@ -4866,7 +5025,7 @@ async function startWebUI(opts = {}) {
         wsPort,
         host: wsHost,
         projectRoot,
-        projectName: path8.basename(projectRoot) || projectRoot,
+        projectName: path9.basename(projectRoot) || projectRoot,
         startedAt: (/* @__PURE__ */ new Date()).toISOString(),
         url: `http://${wsHost}:${httpPort}`
       },
@@ -4893,6 +5052,10 @@ async function startWebUI(opts = {}) {
     // reality. Crash exits are healed by the next register()/list() prune pass.
     onShutdown: () => {
       brainMonitor.stop();
+      if (eternalSubscription) {
+        eternalSubscription.dispose();
+        eternalSubscription = null;
+      }
       return unregisterInstance(process.pid, registryBaseDir);
     }
   });
@@ -4904,11 +5067,13 @@ export {
   browserOpenCommand,
   buildCspHeader,
   createCustomModeStore,
+  createEternalSubscription,
   createHttpServer,
   createProviderConfigIO,
   defaultBaseDir,
   deleteKey,
   errMessage,
+  estimateTokens,
   extractToken,
   findFreePort,
   formatInstances,
@@ -4920,6 +5085,7 @@ export {
   handleMemoryForget,
   handleMemoryList,
   handleMemoryRemember,
+  handleShellOpen,
   hostHeaderOk,
   injectWsPort,
   isLoopbackBind,
@@ -4928,6 +5094,8 @@ export {
   listInstances,
   loadSavedProviders,
   maskedKey,
+  messagePreview,
+  messageTokens,
   normalizeKeys,
   openBrowser,
   registerInstance,
@@ -4938,6 +5106,7 @@ export {
   sendResult,
   setActiveKey,
   startWebUI,
+  stringifyContent,
   tokenMatches,
   unregisterInstance,
   upsertKey,