@xerktech/claude-hud 0.1.0

package/README.md

@@ -0,0 +1,50 @@
+# claude-hud
+
+Drive [Claude Code](https://code.claude.com) sessions from **Even Realities G2** smart glasses over your local network. One command on your PC spawns a broker, registers the current working directory, and runs `claude` inside a PTY so the glasses can attach — voice in, glasses out, no cloud relay.
+
+See the [project repo](https://github.com/xerktech/claudehud) for architecture, the broker design, and the companion Even Hub plugin (`.ehpk`) that runs on your Android phone.
+
+## Requirements
+
+- **Node 22 LTS** or newer (`node --version` ≥ 22)
+- **Claude Code** installed and authenticated (`claude --version`)
+- A C/C++ toolchain — `node-pty` builds from source on install (`python3`, `make`, a working C++ compiler)
+- For the glasses half: Even Realities G2 + the Even Realities app on Android with the companion `.ehpk` plugin sideloaded
+
+## Installation
+
+```bash
+npm install -g @xerktech/claude-hud
+```
+
+That puts the `claude-hud` binary on your `$PATH`. The package is published to the public npm registry with [provenance](https://docs.npmjs.com/generating-provenance-statements) — you can verify the source commit it was built from on the [npm page](https://www.npmjs.com/package/@xerktech/claude-hud).
+
+## Usage
+
+```bash
+claude-hud                    # ensure broker + register cwd + run claude
+claude-hud pair               # re-print the broker's pairing QR
+claude-hud broker status      # is the broker up? sessions? paired?
+claude-hud broker logs        # tail the detached broker log
+claude-hud broker stop        # terminate the detached broker
+claude-hud --help             # full usage
+```
+
+Anything after `claude-hud` that isn't a subcommand is forwarded to `claude` verbatim — including `--resume <id>`, model selectors, and the like.
+
+First run prints a QR code; scan it from the companion plugin on your phone to pair the glasses with the broker. Tokens, settings, and the generated TLS cert live under `~/.claude-hud/` (override with `CLAUDE_HUD_DIR`).
+
+## How it fits together
+
+```
++--- Glasses (G2) ---+  BLE  +--- Android phone ---+  HTTPS/WS  +--- This CLI ---+
+| 576×288 greyscale  | <---> | Even App + plugin   | <--------> | broker + PTY   |
+| Touchbars, mics    |       | (.ehpk we publish)  |   LAN      | spawns claude  |
++--------------------+       +---------------------+            +----------------+
+```
+
+Voice tokens, transcripts, and approvals flow over your LAN only — no Tailscale, no Cloudflare Tunnel, no telemetry.
+
+## License
+
+MIT — see [LICENSE](https://github.com/xerktech/claudehud/blob/main/LICENSE).

package/dist/_broker/attached.js

@@ -0,0 +1,78 @@
+/**
+ * Tracks the live `inject` WebSockets the `claude-hud` wrapper opens for each
+ * attached session. When the user dictates a prompt from the glasses, the
+ * SessionManager routes it through here instead of writing to a pty — the
+ * wrapper receives the text, types it into the running `claude` TUI, and the
+ * normal Claude Code flow takes over.
+ *
+ * Each session has at most one connected wrapper. If a second wrapper appears
+ * for the same id (broker rebound, race during reconnect), it replaces the
+ * old one and the old socket gets closed.
+ */
+export class AttachedSessionHub {
+    connections = new Map();
+    register(sessionId, ws) {
+        const existing = this.connections.get(sessionId);
+        if (existing && existing !== ws) {
+            try {
+                existing.close(1000, 'replaced');
+            }
+            catch {
+                // ignore — already gone
+            }
+        }
+        this.connections.set(sessionId, ws);
+        ws.on('close', () => {
+            // Only clear if it's still this socket; a newer one may have replaced it.
+            if (this.connections.get(sessionId) === ws) {
+                this.connections.delete(sessionId);
+            }
+        });
+    }
+    unregister(sessionId) {
+        const ws = this.connections.get(sessionId);
+        if (!ws)
+            return;
+        this.connections.delete(sessionId);
+        try {
+            ws.close(1000, 'detached');
+        }
+        catch {
+            // ignore
+        }
+    }
+    has(sessionId) {
+        return this.connections.has(sessionId);
+    }
+    /**
+     * Send a dictated prompt to the wrapper. Returns true on best-effort send.
+     * Returns false if there's no live wrapper for this session (the broker
+     * holds the input but can't deliver it — the caller should surface a toast).
+     */
+    send(sessionId, text) {
+        const ws = this.connections.get(sessionId);
+        if (!ws)
+            return false;
+        if (ws.readyState !== ws.OPEN)
+            return false;
+        try {
+            ws.send(JSON.stringify({ type: 'inject', text }));
+            return true;
+        }
+        catch {
+            return false;
+        }
+    }
+    closeAll(reason = 'broker_shutdown') {
+        for (const ws of this.connections.values()) {
+            try {
+                ws.close(1000, reason);
+            }
+            catch {
+                // ignore
+            }
+        }
+        this.connections.clear();
+    }
+}
+//# sourceMappingURL=attached.js.map

package/dist/_broker/attached.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"attached.js","sourceRoot":"","sources":["../src/attached.ts"],"names":[],"mappings":"AAEA;;;;;;;;;;GAUG;AACH,MAAM,OAAO,kBAAkB;IACrB,WAAW,GAAG,IAAI,GAAG,EAAqB,CAAA;IAElD,QAAQ,CAAC,SAAiB,EAAE,EAAa;QACvC,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,CAAC,CAAA;QAChD,IAAI,QAAQ,IAAI,QAAQ,KAAK,EAAE,EAAE,CAAC;YAChC,IAAI,CAAC;gBACH,QAAQ,CAAC,KAAK,CAAC,IAAI,EAAE,UAAU,CAAC,CAAA;YAClC,CAAC;YAAC,MAAM,CAAC;gBACP,wBAAwB;YAC1B,CAAC;QACH,CAAC;QACD,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,EAAE,EAAE,CAAC,CAAA;QACnC,EAAE,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YAClB,0EAA0E;YAC1E,IAAI,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,CAAC,KAAK,EAAE,EAAE,CAAC;gBAC3C,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;YACpC,CAAC;QACH,CAAC,CAAC,CAAA;IACJ,CAAC;IAED,UAAU,CAAC,SAAiB;QAC1B,MAAM,EAAE,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,CAAC,CAAA;QAC1C,IAAI,CAAC,EAAE;YAAE,OAAM;QACf,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,SAAS,CAAC,CAAA;QAClC,IAAI,CAAC;YACH,EAAE,CAAC,KAAK,CAAC,IAAI,EAAE,UAAU,CAAC,CAAA;QAC5B,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;IACH,CAAC;IAED,GAAG,CAAC,SAAiB;QACnB,OAAO,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,CAAC,CAAA;IACxC,CAAC;IAED;;;;OAIG;IACH,IAAI,CAAC,SAAiB,EAAE,IAAY;QAClC,MAAM,EAAE,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,CAAC,CAAA;QAC1C,IAAI,CAAC,EAAE;YAAE,OAAO,KAAK,CAAA;QACrB,IAAI,EAAE,CAAC,UAAU,KAAK,EAAE,CAAC,IAAI;YAAE,OAAO,KAAK,CAAA;QAC3C,IAAI,CAAC;YACH,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAA;YACjD,OAAO,IAAI,CAAA;QACb,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAA;QACd,CAAC;IACH,CAAC;IAED,QAAQ,CAAC,MAAM,GAAG,iBAAiB;QACjC,KAAK,MAAM,EAAE,IAAI,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,EAAE,CAAC;YAC3C,IAAI,CAAC;gBACH,EAAE,CAAC,KAAK,CAAC,IAAI,EAAE,MAAM,CAAC,CAAA;YACxB,CAAC;YAAC,MAAM,CAAC;gBACP,SAAS;YACX,CAAC;QACH,CAAC;QACD,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,CAAA;IAC1B,CAAC;CACF"}

package/dist/_broker/audio-codec.js

@@ -0,0 +1,82 @@
+/**
+ * PCM ↔ WAV helpers for the voice pipeline.
+ *
+ * The phone uploads raw 16 kHz, signed-16-bit-little-endian, mono PCM frames
+ * over the audio WebSocket. whisper.cpp's HTTP server expects a complete WAV
+ * file, so we wrap the buffered PCM in a 44-byte RIFF header before posting.
+ *
+ * Format constants pinned to the G2 hardware spec (device-features skill,
+ * CLAUDE.md §4 "Audio").
+ */
+export const SAMPLE_RATE_HZ = 16_000;
+export const BITS_PER_SAMPLE = 16;
+export const NUM_CHANNELS = 1;
+const BYTES_PER_SAMPLE = BITS_PER_SAMPLE / 8;
+const BYTE_RATE = SAMPLE_RATE_HZ * NUM_CHANNELS * BYTES_PER_SAMPLE;
+const BLOCK_ALIGN = NUM_CHANNELS * BYTES_PER_SAMPLE;
+/**
+ * Buffers binary PCM frames as they arrive and concatenates them on demand.
+ * Caps total buffered bytes to guard against a wedged phone that never closes
+ * the WS — capExceeded() lets the caller bail and force-close the connection.
+ */
+export class PcmAggregator {
+    maxBytes;
+    chunks = [];
+    totalBytes = 0;
+    constructor(maxBytes = 60 * BYTE_RATE) {
+        this.maxBytes = maxBytes;
+        // Default cap: 60 seconds of audio. Enough for any one utterance.
+    }
+    push(chunk) {
+        const buf = Buffer.isBuffer(chunk) ? chunk : Buffer.from(chunk);
+        if (buf.length === 0)
+            return;
+        this.chunks.push(buf);
+        this.totalBytes += buf.length;
+    }
+    /** True when the aggregator has accepted more PCM than `maxBytes`. */
+    capExceeded() {
+        return this.totalBytes > this.maxBytes;
+    }
+    bytes() {
+        return this.totalBytes;
+    }
+    /** Approximate captured audio duration in milliseconds. */
+    durationMs() {
+        const samples = Math.floor(this.totalBytes / BYTES_PER_SAMPLE);
+        return Math.round((samples / SAMPLE_RATE_HZ) * 1000);
+    }
+    /** Concatenated raw PCM. Empty buffer if nothing was pushed. */
+    concat() {
+        if (this.chunks.length === 0)
+            return Buffer.alloc(0);
+        return Buffer.concat(this.chunks, this.totalBytes);
+    }
+    reset() {
+        this.chunks = [];
+        this.totalBytes = 0;
+    }
+}
+/**
+ * Wrap a raw PCM buffer (16 kHz, s16le, mono) in a canonical WAV/RIFF header
+ * so it can be POSTed to a whisper.cpp HTTP server (which only accepts WAV).
+ */
+export function pcmToWav(pcm) {
+    const dataSize = pcm.length;
+    const header = Buffer.alloc(44);
+    header.write('RIFF', 0, 'ascii');
+    header.writeUInt32LE(36 + dataSize, 4);
+    header.write('WAVE', 8, 'ascii');
+    header.write('fmt ', 12, 'ascii');
+    header.writeUInt32LE(16, 16); // fmt chunk size
+    header.writeUInt16LE(1, 20); // audio format: PCM
+    header.writeUInt16LE(NUM_CHANNELS, 22);
+    header.writeUInt32LE(SAMPLE_RATE_HZ, 24);
+    header.writeUInt32LE(BYTE_RATE, 28);
+    header.writeUInt16LE(BLOCK_ALIGN, 32);
+    header.writeUInt16LE(BITS_PER_SAMPLE, 34);
+    header.write('data', 36, 'ascii');
+    header.writeUInt32LE(dataSize, 40);
+    return Buffer.concat([header, pcm], header.length + dataSize);
+}
+//# sourceMappingURL=audio-codec.js.map

package/dist/_broker/audio-codec.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audio-codec.js","sourceRoot":"","sources":["../src/audio-codec.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,MAAM,CAAC,MAAM,cAAc,GAAG,MAAM,CAAA;AACpC,MAAM,CAAC,MAAM,eAAe,GAAG,EAAE,CAAA;AACjC,MAAM,CAAC,MAAM,YAAY,GAAG,CAAC,CAAA;AAE7B,MAAM,gBAAgB,GAAG,eAAe,GAAG,CAAC,CAAA;AAC5C,MAAM,SAAS,GAAG,cAAc,GAAG,YAAY,GAAG,gBAAgB,CAAA;AAClE,MAAM,WAAW,GAAG,YAAY,GAAG,gBAAgB,CAAA;AAEnD;;;;GAIG;AACH,MAAM,OAAO,aAAa;IAIK;IAHrB,MAAM,GAAa,EAAE,CAAA;IACrB,UAAU,GAAG,CAAC,CAAA;IAEtB,YAA6B,WAAmB,EAAE,GAAG,SAAS;QAAjC,aAAQ,GAAR,QAAQ,CAAyB;QAC5D,kEAAkE;IACpE,CAAC;IAED,IAAI,CAAC,KAA0B;QAC7B,MAAM,GAAG,GAAG,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QAC/D,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC;YAAE,OAAM;QAC5B,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAA;QACrB,IAAI,CAAC,UAAU,IAAI,GAAG,CAAC,MAAM,CAAA;IAC/B,CAAC;IAED,sEAAsE;IACtE,WAAW;QACT,OAAO,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,QAAQ,CAAA;IACxC,CAAC;IAED,KAAK;QACH,OAAO,IAAI,CAAC,UAAU,CAAA;IACxB,CAAC;IAED,2DAA2D;IAC3D,UAAU;QACR,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,UAAU,GAAG,gBAAgB,CAAC,CAAA;QAC9D,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,GAAG,cAAc,CAAC,GAAG,IAAI,CAAC,CAAA;IACtD,CAAC;IAED,gEAAgE;IAChE,MAAM;QACJ,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;QACpD,OAAO,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,UAAU,CAAC,CAAA;IACpD,CAAC;IAED,KAAK;QACH,IAAI,CAAC,MAAM,GAAG,EAAE,CAAA;QAChB,IAAI,CAAC,UAAU,GAAG,CAAC,CAAA;IACrB,CAAC;CACF;AAED;;;GAGG;AACH,MAAM,UAAU,QAAQ,CAAC,GAAW;IAClC,MAAM,QAAQ,GAAG,GAAG,CAAC,MAAM,CAAA;IAC3B,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAA;IAC/B,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,OAAO,CAAC,CAAA;IAChC,MAAM,CAAC,aAAa,CAAC,EAAE,GAAG,QAAQ,EAAE,CAAC,CAAC,CAAA;IACtC,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,OAAO,CAAC,CAAA;IAChC,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,EAAE,EAAE,OAAO,CAAC,CAAA;IACjC,MAAM,CAAC,aAAa,CAAC,EAAE,EAAE,EAAE,CAAC,CAAA,CAAC,iBAAiB;IAC9C,MAAM,CAAC,aAAa,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA,CAAC,oBAAoB;IAChD,MAAM,CAAC,aAAa,CAAC,YAAY,EAAE,EAAE,CAAC,CAAA;IACtC,MAAM,CAAC,aAAa,CAAC,cAAc,EAAE,EAAE,CAAC,CAAA;IACxC,MAAM,CAAC,aAAa,CAAC,SAAS,EAAE,EAAE,CAAC,CAAA;IACnC,MAAM,CAAC,aAAa,CAAC,WAAW,EAAE,EAAE,CAAC,CAAA;IACrC,MAAM,CAAC,aAAa,CAAC,eAAe,EAAE,EAAE,CAAC,CAAA;IACzC,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,EAAE,EAAE,OAAO,CAAC,CAAA;IACjC,MAAM,CAAC,aAAa,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAA;IAClC,OAAO,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,GAAG,QAAQ,CAAC,CAAA;AAC/D,CAAC"}

package/dist/_broker/audio-session.js

@@ -0,0 +1,81 @@
+/**
+ * Audio session — one per active WS connection. Buffers PCM frames from the
+ * phone, finalises on `close()`, runs STT, parses the resulting transcript
+ * into an intent, and hands the intent off to a dispatcher.
+ *
+ * Kept deliberately small: the WS plumbing lives in `server.ts`, and the
+ * intent-to-action mapping lives in `intent-dispatcher.ts`. This module is the
+ * narrow waist where audio bytes become user intent.
+ */
+import { PcmAggregator } from "./audio-codec.js";
+import { parseIntent } from "./intent.js";
+export class AudioSession {
+    sessionId;
+    deps;
+    aggregator;
+    closed = false;
+    constructor(sessionId, deps) {
+        this.sessionId = sessionId;
+        this.deps = deps;
+        this.aggregator = new PcmAggregator(deps.maxBytes);
+    }
+    /** Push a binary PCM frame from the WS. Silently drops once over the cap. */
+    pushFrame(chunk) {
+        if (this.closed)
+            return;
+        if (this.aggregator.capExceeded())
+            return;
+        this.aggregator.push(chunk);
+    }
+    bytes() {
+        return this.aggregator.bytes();
+    }
+    /** True when the cumulative buffered audio has exceeded the configured cap. */
+    capExceeded() {
+        return this.aggregator.capExceeded();
+    }
+    /**
+     * Finalise the recording. Calls STT, parses the transcript into an intent,
+     * and notifies the dispatcher via `onResult`. Safe to call multiple times —
+     * subsequent calls are no-ops.
+     */
+    async close() {
+        if (this.closed)
+            return null;
+        this.closed = true;
+        const bytes = this.aggregator.bytes();
+        const durationMs = this.aggregator.durationMs();
+        const pcm = this.aggregator.concat();
+        this.aggregator.reset();
+        let transcript = { text: '', unavailable: true, reason: 'no audio received' };
+        if (pcm.length > 0) {
+            try {
+                transcript = await this.deps.stt.transcribe(pcm);
+            }
+            catch (err) {
+                const reason = err.message;
+                transcript = { text: '', unavailable: true, reason };
+                this.deps.onError?.(err);
+            }
+        }
+        const projects = this.deps.listProjects();
+        const intent = transcript.text
+            ? parseIntent(transcript.text, projects)
+            : { kind: 'noop', reason: transcript.reason ?? 'no transcript' };
+        const result = {
+            sessionId: this.sessionId,
+            transcript,
+            intent,
+            durationMs,
+            bytes,
+        };
+        try {
+            this.deps.onResult(result);
+        }
+        catch (err) {
+            this.deps.onError?.(err);
+        }
+        return result;
+    }
+}
+//# sourceMappingURL=audio-session.js.map

package/dist/_broker/audio-session.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audio-session.js","sourceRoot":"","sources":["../src/audio-session.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAA;AAEhD,OAAO,EAAE,WAAW,EAAe,MAAM,aAAa,CAAA;AAsBtD,MAAM,OAAO,YAAY;IAKZ;IACQ;IALF,UAAU,CAAe;IAClC,MAAM,GAAG,KAAK,CAAA;IAEtB,YACW,SAAiB,EACT,IAAsB;QAD9B,cAAS,GAAT,SAAS,CAAQ;QACT,SAAI,GAAJ,IAAI,CAAkB;QAEvC,IAAI,CAAC,UAAU,GAAG,IAAI,aAAa,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;IACpD,CAAC;IAED,6EAA6E;IAC7E,SAAS,CAAC,KAA0B;QAClC,IAAI,IAAI,CAAC,MAAM;YAAE,OAAM;QACvB,IAAI,IAAI,CAAC,UAAU,CAAC,WAAW,EAAE;YAAE,OAAM;QACzC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;IAC7B,CAAC;IAED,KAAK;QACH,OAAO,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAA;IAChC,CAAC;IAED,+EAA+E;IAC/E,WAAW;QACT,OAAO,IAAI,CAAC,UAAU,CAAC,WAAW,EAAE,CAAA;IACtC,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,KAAK;QACT,IAAI,IAAI,CAAC,MAAM;YAAE,OAAO,IAAI,CAAA;QAC5B,IAAI,CAAC,MAAM,GAAG,IAAI,CAAA;QAClB,MAAM,KAAK,GAAG,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAA;QACrC,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC,UAAU,EAAE,CAAA;QAC/C,MAAM,GAAG,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAA;QACpC,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAA;QAEvB,IAAI,UAAU,GAAc,EAAE,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,MAAM,EAAE,mBAAmB,EAAE,CAAA;QACxF,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACnB,IAAI,CAAC;gBACH,UAAU,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,CAAA;YAClD,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,MAAM,MAAM,GAAI,GAAa,CAAC,OAAO,CAAA;gBACrC,UAAU,GAAG,EAAE,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,IAAI,EAAE,MAAM,EAAE,CAAA;gBACpD,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC,GAAY,CAAC,CAAA;YACnC,CAAC;QACH,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAA;QACzC,MAAM,MAAM,GAAW,UAAU,CAAC,IAAI;YACpC,CAAC,CAAC,WAAW,CAAC,UAAU,CAAC,IAAI,EAAE,QAAQ,CAAC;YACxC,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,UAAU,CAAC,MAAM,IAAI,eAAe,EAAE,CAAA;QAElE,MAAM,MAAM,GAAuB;YACjC,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,UAAU;YACV,MAAM;YACN,UAAU;YACV,KAAK;SACN,CAAA;QACD,IAAI,CAAC;YACH,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAA;QAC5B,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC,GAAY,CAAC,CAAA;QACnC,CAAC;QACD,OAAO,MAAM,CAAA;IACf,CAAC;CACF"}

package/dist/_broker/auth.js

@@ -0,0 +1,32 @@
+import crypto from 'node:crypto';
+const PUBLIC_PATHS = new Set(['/api/health']);
+export function createBearerAuth(token) {
+    if (!token || token.length < 32) {
+        throw new Error('bearer token must be at least 32 chars');
+    }
+    return function bearerAuth(req, res, next) {
+        if (req.method === 'OPTIONS' || PUBLIC_PATHS.has(req.path)) {
+            next();
+            return;
+        }
+        const header = req.headers.authorization;
+        if (!header || !header.startsWith('Bearer ')) {
+            res.status(401).json({ error: 'unauthorized' });
+            return;
+        }
+        const presented = header.slice(7).trim();
+        if (!constantTimeEqual(presented, token)) {
+            res.status(401).json({ error: 'unauthorized' });
+            return;
+        }
+        next();
+    };
+}
+export function constantTimeEqual(a, b) {
+    const bufA = Buffer.from(a);
+    const bufB = Buffer.from(b);
+    if (bufA.length !== bufB.length)
+        return false;
+    return crypto.timingSafeEqual(bufA, bufB);
+}
+//# sourceMappingURL=auth.js.map

package/dist/_broker/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA,OAAO,MAAM,MAAM,aAAa,CAAA;AAGhC,MAAM,YAAY,GAAG,IAAI,GAAG,CAAS,CAAC,aAAa,CAAC,CAAC,CAAA;AAErD,MAAM,UAAU,gBAAgB,CAAC,KAAa;IAC5C,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;QAChC,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAA;IAC3D,CAAC;IACD,OAAO,SAAS,UAAU,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB;QACxE,IAAI,GAAG,CAAC,MAAM,KAAK,SAAS,IAAI,YAAY,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;YAC3D,IAAI,EAAE,CAAA;YACN,OAAM;QACR,CAAC;QACD,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAA;QACxC,IAAI,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YAC7C,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,CAAC,CAAA;YAC/C,OAAM;QACR,CAAC;QACD,MAAM,SAAS,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAA;QACxC,IAAI,CAAC,iBAAiB,CAAC,SAAS,EAAE,KAAK,CAAC,EAAE,CAAC;YACzC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,CAAC,CAAA;YAC/C,OAAM;QACR,CAAC;QACD,IAAI,EAAE,CAAA;IACR,CAAC,CAAA;AACH,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,CAAS,EAAE,CAAS;IACpD,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IAC3B,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IAC3B,IAAI,IAAI,CAAC,MAAM,KAAK,IAAI,CAAC,MAAM;QAAE,OAAO,KAAK,CAAA;IAC7C,OAAO,MAAM,CAAC,eAAe,CAAC,IAAI,EAAE,IAAI,CAAC,CAAA;AAC3C,CAAC"}

package/dist/_broker/bus.js

@@ -0,0 +1,76 @@
+const RING_SIZE = 1000;
+class Channel {
+    name;
+    events = [];
+    nextId = 1;
+    clients = new Set();
+    constructor(name) {
+        this.name = name;
+    }
+    publish(event, data) {
+        const e = { id: this.nextId++, channel: this.name, event, data };
+        this.events.push(e);
+        if (this.events.length > RING_SIZE) {
+            this.events.splice(0, this.events.length - RING_SIZE);
+        }
+        for (const client of this.clients) {
+            writeEvent(client, e);
+        }
+        return e;
+    }
+    subscribe(res, lastEventId) {
+        if (typeof lastEventId === 'number' && Number.isFinite(lastEventId)) {
+            for (const e of this.events) {
+                if (e.id > lastEventId)
+                    writeEvent(res, e);
+            }
+        }
+        this.clients.add(res);
+        res.on('close', () => this.clients.delete(res));
+    }
+    bufferedCount() {
+        return this.events.length;
+    }
+    clientCount() {
+        return this.clients.size;
+    }
+    closeClients() {
+        for (const client of this.clients) {
+            try {
+                client.end();
+            }
+            catch {
+                // ignore
+            }
+        }
+        this.clients.clear();
+    }
+}
+export class EventBus {
+    channels = new Map();
+    ensure(name) {
+        let c = this.channels.get(name);
+        if (!c) {
+            c = new Channel(name);
+            this.channels.set(name, c);
+        }
+        return c;
+    }
+    publish(channel, event, data) {
+        return this.ensure(channel).publish(event, data);
+    }
+    subscribe(channel, res, lastEventId) {
+        this.ensure(channel).subscribe(res, lastEventId);
+    }
+    closeAll() {
+        for (const channel of this.channels.values()) {
+            channel.closeClients();
+        }
+    }
+}
+function writeEvent(res, e) {
+    res.write(`id: ${e.id}\n`);
+    res.write(`event: ${e.event}\n`);
+    res.write(`data: ${JSON.stringify(e.data)}\n\n`);
+}
+//# sourceMappingURL=bus.js.map

package/dist/_broker/bus.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"bus.js","sourceRoot":"","sources":["../src/bus.ts"],"names":[],"mappings":"AASA,MAAM,SAAS,GAAG,IAAI,CAAA;AAEtB,MAAM,OAAO;IAKU;IAJb,MAAM,GAAe,EAAE,CAAA;IACvB,MAAM,GAAG,CAAC,CAAA;IACV,OAAO,GAAG,IAAI,GAAG,EAAY,CAAA;IAErC,YAAqB,IAAY;QAAZ,SAAI,GAAJ,IAAI,CAAQ;IAAG,CAAC;IAErC,OAAO,CAAC,KAAa,EAAE,IAAa;QAClC,MAAM,CAAC,GAAa,EAAE,EAAE,EAAE,IAAI,CAAC,MAAM,EAAE,EAAE,OAAO,EAAE,IAAI,CAAC,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAA;QAC1E,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;QACnB,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,SAAS,EAAE,CAAC;YACnC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,SAAS,CAAC,CAAA;QACvD,CAAC;QACD,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAClC,UAAU,CAAC,MAAM,EAAE,CAAC,CAAC,CAAA;QACvB,CAAC;QACD,OAAO,CAAC,CAAA;IACV,CAAC;IAED,SAAS,CAAC,GAAa,EAAE,WAA+B;QACtD,IAAI,OAAO,WAAW,KAAK,QAAQ,IAAI,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;YACpE,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;gBAC5B,IAAI,CAAC,CAAC,EAAE,GAAG,WAAW;oBAAE,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC,CAAA;YAC5C,CAAC;QACH,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,CAAA;QACrB,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAA;IACjD,CAAC;IAED,aAAa;QACX,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAA;IAC3B,CAAC;IAED,WAAW;QACT,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAA;IAC1B,CAAC;IAED,YAAY;QACV,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAClC,IAAI,CAAC;gBACH,MAAM,CAAC,GAAG,EAAE,CAAA;YACd,CAAC;YAAC,MAAM,CAAC;gBACP,SAAS;YACX,CAAC;QACH,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAA;IACtB,CAAC;CACF;AAED,MAAM,OAAO,QAAQ;IACX,QAAQ,GAAG,IAAI,GAAG,EAAmB,CAAA;IAErC,MAAM,CAAC,IAAY;QACzB,IAAI,CAAC,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;QAC/B,IAAI,CAAC,CAAC,EAAE,CAAC;YACP,CAAC,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC,CAAA;YACrB,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,CAAC,CAAA;QAC5B,CAAC;QACD,OAAO,CAAC,CAAA;IACV,CAAC;IAED,OAAO,CAAC,OAAe,EAAE,KAAa,EAAE,IAAa;QACnD,OAAO,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,CAAA;IAClD,CAAC;IAED,SAAS,CAAC,OAAe,EAAE,GAAa,EAAE,WAA+B;QACvE,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,GAAG,EAAE,WAAW,CAAC,CAAA;IAClD,CAAC;IAED,QAAQ;QACN,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC;YAC7C,OAAO,CAAC,YAAY,EAAE,CAAA;QACxB,CAAC;IACH,CAAC;CACF;AAED,SAAS,UAAU,CAAC,GAAa,EAAE,CAAW;IAC5C,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,EAAE,IAAI,CAAC,CAAA;IAC1B,GAAG,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,KAAK,IAAI,CAAC,CAAA;IAChC,GAAG,CAAC,KAAK,CAAC,SAAS,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;AAClD,CAAC"}

package/dist/_broker/cert.js

@@ -0,0 +1,72 @@
+import fs from 'node:fs';
+import path from 'node:path';
+import { execFileSync } from 'node:child_process';
+import selfsigned from 'selfsigned';
+export function ensureCert(certDir, hostname) {
+    fs.mkdirSync(certDir, { recursive: true });
+    const certPath = path.join(certDir, 'broker.crt');
+    const keyPath = path.join(certDir, 'broker.key');
+    if (fs.existsSync(certPath) && fs.existsSync(keyPath)) {
+        return {
+            cert: fs.readFileSync(certPath, 'utf8'),
+            key: fs.readFileSync(keyPath, 'utf8'),
+            source: 'reused',
+            certPath,
+            keyPath,
+        };
+    }
+    if (hasMkcert()) {
+        try {
+            execFileSync('mkcert', ['-cert-file', certPath, '-key-file', keyPath, hostname, '127.0.0.1', 'localhost'], { stdio: 'pipe' });
+            fs.chmodSync(keyPath, 0o600);
+            return {
+                cert: fs.readFileSync(certPath, 'utf8'),
+                key: fs.readFileSync(keyPath, 'utf8'),
+                source: 'mkcert',
+                certPath,
+                keyPath,
+            };
+        }
+        catch (err) {
+            console.warn(`[cert] mkcert failed, falling back to selfsigned: ${err.message}`);
+        }
+    }
+    const attrs = [{ name: 'commonName', value: hostname }];
+    const pems = selfsigned.generate(attrs, {
+        days: 825,
+        keySize: 2048,
+        extensions: [
+            { name: 'basicConstraints', cA: false },
+            {
+                name: 'keyUsage',
+                digitalSignature: true,
+                keyEncipherment: true,
+            },
+            {
+                name: 'extKeyUsage',
+                serverAuth: true,
+            },
+            {
+                name: 'subjectAltName',
+                altNames: [
+                    { type: 2, value: hostname },
+                    { type: 2, value: 'localhost' },
+                    { type: 7, ip: '127.0.0.1' },
+                ],
+            },
+        ],
+    });
+    fs.writeFileSync(certPath, pems.cert);
+    fs.writeFileSync(keyPath, pems.private, { mode: 0o600 });
+    return { cert: pems.cert, key: pems.private, source: 'selfsigned', certPath, keyPath };
+}
+function hasMkcert() {
+    try {
+        execFileSync('mkcert', ['-help'], { stdio: 'pipe' });
+        return true;
+    }
+    catch {
+        return false;
+    }
+}
+//# sourceMappingURL=cert.js.map

package/dist/_broker/cert.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cert.js","sourceRoot":"","sources":["../src/cert.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,SAAS,CAAA;AACxB,OAAO,IAAI,MAAM,WAAW,CAAA;AAC5B,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAA;AACjD,OAAO,UAAU,MAAM,YAAY,CAAA;AAYnC,MAAM,UAAU,UAAU,CAAC,OAAe,EAAE,QAAgB;IAC1D,EAAE,CAAC,SAAS,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAA;IAC1C,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,YAAY,CAAC,CAAA;IACjD,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,YAAY,CAAC,CAAA;IAEhD,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QACtD,OAAO;YACL,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,MAAM,CAAC;YACvC,GAAG,EAAE,EAAE,CAAC,YAAY,CAAC,OAAO,EAAE,MAAM,CAAC;YACrC,MAAM,EAAE,QAAQ;YAChB,QAAQ;YACR,OAAO;SACR,CAAA;IACH,CAAC;IAED,IAAI,SAAS,EAAE,EAAE,CAAC;QAChB,IAAI,CAAC;YACH,YAAY,CACV,QAAQ,EACR,CAAC,YAAY,EAAE,QAAQ,EAAE,WAAW,EAAE,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,WAAW,CAAC,EAClF,EAAE,KAAK,EAAE,MAAM,EAAE,CAClB,CAAA;YACD,EAAE,CAAC,SAAS,CAAC,OAAO,EAAE,KAAK,CAAC,CAAA;YAC5B,OAAO;gBACL,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,MAAM,CAAC;gBACvC,GAAG,EAAE,EAAE,CAAC,YAAY,CAAC,OAAO,EAAE,MAAM,CAAC;gBACrC,MAAM,EAAE,QAAQ;gBAChB,QAAQ;gBACR,OAAO;aACR,CAAA;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,IAAI,CAAC,qDAAsD,GAAa,CAAC,OAAO,EAAE,CAAC,CAAA;QAC7F,CAAC;IACH,CAAC;IAED,MAAM,KAAK,GAAG,CAAC,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAA;IACvD,MAAM,IAAI,GAAG,UAAU,CAAC,QAAQ,CAAC,KAAK,EAAE;QACtC,IAAI,EAAE,GAAG;QACT,OAAO,EAAE,IAAI;QACb,UAAU,EAAE;YACV,EAAE,IAAI,EAAE,kBAAkB,EAAE,EAAE,EAAE,KAAK,EAAE;YACvC;gBACE,IAAI,EAAE,UAAU;gBAChB,gBAAgB,EAAE,IAAI;gBACtB,eAAe,EAAE,IAAI;aACtB;YACD;gBACE,IAAI,EAAE,aAAa;gBACnB,UAAU,EAAE,IAAI;aACjB;YACD;gBACE,IAAI,EAAE,gBAAgB;gBACtB,QAAQ,EAAE;oBACR,EAAE,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE;oBAC5B,EAAE,IAAI,EAAE,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE;oBAC/B,EAAE,IAAI,EAAE,CAAC,EAAE,EAAE,EAAE,WAAW,EAAE;iBAC7B;aACF;SACF;KACF,CAAC,CAAA;IACF,EAAE,CAAC,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,CAAC,CAAA;IACrC,EAAE,CAAC,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAA;IACxD,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,GAAG,EAAE,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,YAAY,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAA;AACxF,CAAC;AAED,SAAS,SAAS;IAChB,IAAI,CAAC;QACH,YAAY,CAAC,QAAQ,EAAE,CAAC,OAAO,CAAC,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAA;QACpD,OAAO,IAAI,CAAA;IACb,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAA;IACd,CAAC;AACH,CAAC"}

package/dist/_broker/claude.js

@@ -0,0 +1,160 @@
+import { spawn as cpSpawn } from 'node:child_process';
+import fs from 'node:fs';
+import path from 'node:path';
+import process from 'node:process';
+export function parseStreamJsonLine(line) {
+    const trimmed = line.trim();
+    if (!trimmed)
+        return null;
+    try {
+        const parsed = JSON.parse(trimmed);
+        if (typeof parsed === 'object' && parsed !== null && typeof parsed.type === 'string') {
+            return parsed;
+        }
+        return null;
+    }
+    catch {
+        return null;
+    }
+}
+export function extractAssistantText(ev) {
+    if (ev.type !== 'assistant')
+        return null;
+    const blocks = ev.message?.content;
+    if (!Array.isArray(blocks))
+        return null;
+    const text = blocks
+        .filter((b) => b?.type === 'text' && typeof b.text === 'string')
+        .map(b => b.text)
+        .join('');
+    return text.length > 0 ? text : null;
+}
+export function encodeUserTurn(text) {
+    const payload = { type: 'user', message: { role: 'user', content: text } };
+    return `${JSON.stringify(payload)}\n`;
+}
+export class LineSplitter {
+    buffer = '';
+    push(chunk) {
+        this.buffer += chunk;
+        const lines = [];
+        let idx;
+        while ((idx = this.buffer.indexOf('\n')) >= 0) {
+            const line = this.buffer.slice(0, idx);
+            this.buffer = this.buffer.slice(idx + 1);
+            if (line.length > 0)
+                lines.push(line);
+        }
+        return lines;
+    }
+    flush() {
+        const rest = this.buffer;
+        this.buffer = '';
+        return rest.length > 0 ? [rest] : [];
+    }
+}
+/**
+ * Build the CLI argv for spawning `claude`. Exported separately so callers /
+ * tests can assert exact flag wiring — most importantly that we NEVER pass
+ * `--dangerously-skip-permissions`. CLAUDE.md §12 + M7 plan both require this:
+ * every tool prompt must route through the broker's hook gate, so we always
+ * spawn with default permission enforcement.
+ *
+ * `--print` is mandatory: the stream-json codec is the **headless** transport.
+ * Without `--print` the CLI runs an interactive REPL and never consumes
+ * stream-json from stdin. The pty stays alive as long as we keep stdin open;
+ * each line is one user turn.
+ */
+export function buildClaudeArgs(opts) {
+    const args = [
+        '--print',
+        '--output-format',
+        'stream-json',
+        '--input-format',
+        'stream-json',
+        '--verbose',
+    ];
+    if (opts.resumeId) {
+        args.push('--resume', opts.resumeId);
+    }
+    if (opts.model) {
+        args.push('--model', opts.model);
+    }
+    return args;
+}
+export const defaultSpawnClaude = opts => {
+    const args = buildClaudeArgs(opts);
+    const bin = resolveClaudeBin();
+    // Plain stdio pipes — not a PTY. `claude --print` reads stdin only when it's
+    // detected as piped (not a TTY); a PTY would (a) make stdin look like a TTY
+    // and crash the spawn, and (b) on Windows ConPTY would wrap stdout at the
+    // configured column width with cursor-position escapes, garbling stream-json
+    // lines past ~200 chars. Headless mode doesn't need a TTY anyway.
+    const child = cpSpawn(bin, args, {
+        cwd: opts.cwd,
+        env: { ...process.env, ...opts.env },
+        stdio: ['pipe', 'pipe', 'pipe'],
+        windowsHide: true,
+    });
+    return wrapChild(child);
+};
+/**
+ * Locate the claude executable. On Windows, `child_process.spawn` without
+ * `shell: true` doesn't honour PATHEXT, so a bare `claude` would not resolve
+ * to `claude.exe`. We walk PATH ourselves; on other platforms we just trust
+ * PATH lookup to find a `claude` binary on it.
+ */
+function resolveClaudeBin() {
+    if (process.platform !== 'win32')
+        return 'claude';
+    const exts = (process.env.PATHEXT ?? '.EXE;.CMD;.BAT;.COM').split(';').filter(Boolean);
+    const paths = (process.env.PATH ?? '').split(path.delimiter).filter(Boolean);
+    for (const dir of paths) {
+        for (const ext of exts) {
+            const candidate = path.join(dir, `claude${ext}`);
+            if (fs.existsSync(candidate))
+                return candidate;
+        }
+    }
+    // Last-ditch: let spawn fail with a clear error if we're really missing claude.
+    return 'claude.exe';
+}
+function wrapChild(cp) {
+    return {
+        write: data => {
+            cp.stdin?.write(data);
+        },
+        kill: signal => {
+            try {
+                cp.kill(signal ?? 'SIGTERM');
+            }
+            catch {
+                // process already gone — onExit has fired (or is about to).
+            }
+        },
+        onData: cb => {
+            // Merge stdout + stderr into one stream — the broker's LineSplitter
+            // tolerates non-JSON lines (drops them) and the user-visible event flow
+            // only cares about stream-json events on stdout. Pulling stderr in too
+            // makes diagnostics like "Error: API key invalid" reachable from the bus.
+            const onStdout = (d) => cb(d.toString());
+            const onStderr = (d) => cb(d.toString());
+            cp.stdout?.on('data', onStdout);
+            cp.stderr?.on('data', onStderr);
+            return () => {
+                cp.stdout?.off('data', onStdout);
+                cp.stderr?.off('data', onStderr);
+            };
+        },
+        onExit: cb => {
+            const handler = (code, signal) => {
+                cb({ exitCode: code ?? 0, signal: signal ? -1 : undefined });
+            };
+            cp.on('exit', handler);
+            return () => {
+                cp.off('exit', handler);
+            };
+        },
+    };
+}
+//# sourceMappingURL=claude.js.map