@xopcai/xopc 0.0.14 → 0.0.16

package/dist/extensions/feishu/src/transport/webhook/monitor.js

@@ -0,0 +1,271 @@
+import { createLogger } from "../../../../../src/utils/logger/index.js";
+import { init_logger } from "../../../../../src/utils/logger.js";
+import { generateSessionKey } from "../../../../../src/chat-commands/session-key.js";
+import { createFeishuLarkSdkPinoLogger } from "../client/lark-sdk-logger.js";
+import { createFeishuDedupe } from "../reliability/dedupe.js";
+import { stripFeishuMentions } from "../text/mentions.js";
+import { recordFeishuMessageBinding } from "../../state/message-bindings.js";
+import crypto from "node:crypto";
+import lark from "@larksuiteoapi/node-sdk";
+import * as http from "node:http";
+//#region extensions/feishu/src/transport/webhook/monitor.ts
+init_logger();
+const log = createLogger("FeishuWebhook");
+const MAX_BODY_BYTES = 256 * 1024;
+const BODY_TIMEOUT_MS = 2e3;
+const RATE_LIMIT_WINDOW_MS = 6e4;
+const RATE_LIMIT_MAX = 120;
+const RATE_LIMIT_MAX_KEYS = 4096;
+const rateState = /* @__PURE__ */ new Map();
+function pruneRateState(now) {
+	for (const [k, v] of rateState.entries()) if (now - v.windowStart > RATE_LIMIT_WINDOW_MS) rateState.delete(k);
+	if (rateState.size <= RATE_LIMIT_MAX_KEYS) return;
+	const over = rateState.size - RATE_LIMIT_MAX_KEYS;
+	let i = 0;
+	for (const k of rateState.keys()) {
+		rateState.delete(k);
+		i++;
+		if (i >= over) break;
+	}
+}
+function isRateLimited(key, now) {
+	pruneRateState(now);
+	const cur = rateState.get(key);
+	if (!cur || now - cur.windowStart > RATE_LIMIT_WINDOW_MS) {
+		rateState.set(key, {
+			windowStart: now,
+			count: 1
+		});
+		return false;
+	}
+	cur.count += 1;
+	return cur.count > RATE_LIMIT_MAX;
+}
+function safeEqual(a, b) {
+	if (a.length !== b.length) return false;
+	try {
+		return crypto.timingSafeEqual(Buffer.from(a), Buffer.from(b));
+	} catch {
+		return false;
+	}
+}
+function signatureValid(headers, rawBody, encryptKey) {
+	const timestampHeader = headers["x-lark-request-timestamp"];
+	const nonceHeader = headers["x-lark-request-nonce"];
+	const signatureHeader = headers["x-lark-signature"];
+	const timestamp = Array.isArray(timestampHeader) ? timestampHeader[0] : timestampHeader;
+	const nonce = Array.isArray(nonceHeader) ? nonceHeader[0] : nonceHeader;
+	const signature = Array.isArray(signatureHeader) ? signatureHeader[0] : signatureHeader;
+	if (!timestamp || !nonce || !signature) return false;
+	if (typeof signature !== "string" || signature.length < 32) return false;
+	return safeEqual(crypto.createHash("sha256").update(timestamp + nonce + encryptKey + rawBody).digest("hex"), signature);
+}
+function readBody(req) {
+	return new Promise((resolve) => {
+		let done = false;
+		let bytes = 0;
+		const chunks = [];
+		const t = setTimeout(() => {
+			if (done) return;
+			done = true;
+			resolve({
+				ok: false,
+				status: 408,
+				msg: "Request body timeout"
+			});
+			req.destroy();
+		}, BODY_TIMEOUT_MS);
+		req.on("data", (chunk) => {
+			if (done) return;
+			bytes += chunk.length;
+			if (bytes > MAX_BODY_BYTES) {
+				done = true;
+				clearTimeout(t);
+				resolve({
+					ok: false,
+					status: 413,
+					msg: "Payload too large"
+				});
+				req.destroy();
+				return;
+			}
+			chunks.push(chunk);
+		});
+		req.on("end", () => {
+			if (done) return;
+			done = true;
+			clearTimeout(t);
+			resolve({
+				ok: true,
+				body: Buffer.concat(chunks).toString("utf8")
+			});
+		});
+		req.on("error", () => {
+			if (done) return;
+			done = true;
+			clearTimeout(t);
+			resolve({
+				ok: false,
+				status: 400,
+				msg: "Bad Request"
+			});
+		});
+	});
+}
+function json(res, status, obj) {
+	res.statusCode = status;
+	res.setHeader("content-type", "application/json; charset=utf-8");
+	res.end(JSON.stringify(obj));
+}
+function text(res, status, body) {
+	res.statusCode = status;
+	res.setHeader("content-type", "text/plain; charset=utf-8");
+	res.end(body);
+}
+function createFeishuWebhookMonitor(deps) {
+	const { account, bus, abortSignal, security } = deps;
+	const dedupe = createFeishuDedupe();
+	const encryptKey = (account.encryptKey ?? "").trim();
+	const verificationToken = (account.verificationToken ?? "").trim();
+	if (!encryptKey) throw new Error("Feishu webhook mode requires encryptKey");
+	if (!verificationToken) throw new Error("Feishu webhook mode requires verificationToken");
+	const host = (account.webhookHost ?? "127.0.0.1").trim() || "127.0.0.1";
+	const port = account.webhookPort ?? 3e3;
+	const path = (account.webhookPath ?? "/feishu/events").trim() || "/feishu/events";
+	const l = lark;
+	const sdkLogger = createFeishuLarkSdkPinoLogger(account.accountId);
+	async function handleMessageReceive(event) {
+		const msg = event?.event?.message ?? event?.message ?? event?.data?.message;
+		const sender = event?.event?.sender ?? event?.sender ?? event?.data?.sender;
+		const chatId = msg?.chat_id ?? msg?.chatId ?? "";
+		const messageId = msg?.message_id ?? msg?.messageId ?? "";
+		const chatType = msg?.chat_type ?? msg?.chatType ?? "";
+		const senderId = sender?.sender_id?.open_id ?? sender?.sender_id?.user_id ?? sender?.open_id ?? sender?.user_id ?? "";
+		const senderName = sender?.sender_id?.name ?? sender?.sender_name ?? void 0;
+		if (!chatId || !messageId || !senderId) return;
+		if (!dedupe.claim(messageId)) return;
+		const isGroup = chatType === "group" || chatType === "chat";
+		const normalizedText = stripFeishuMentions((msg?.content && typeof msg.content === "string" ? safeJsonText(msg.content) : safeJsonText(msg?.body?.content)) ?? "").trim();
+		if (!normalizedText) return;
+		const threadId = msg?.thread_id ?? msg?.threadId ?? void 0;
+		const sessionKey = generateSessionKey({
+			source: "feishu",
+			chatId,
+			senderId,
+			isGroup,
+			threadId: typeof threadId === "string" && threadId.trim() ? threadId : void 0,
+			accountId: account.accountId
+		});
+		recordFeishuMessageBinding({
+			messageId,
+			sessionKey,
+			accountId: account.accountId,
+			chatId,
+			senderId,
+			isGroup,
+			threadId: typeof threadId === "string" && threadId.trim() ? threadId : void 0
+		});
+		const access = security.checkAccess({
+			accountId: account.accountId,
+			chatId,
+			senderId,
+			senderName,
+			isGroup,
+			threadId
+		});
+		if (access && !access.allowed) return;
+		await bus.publishInbound({
+			channel: "feishu",
+			sender_id: senderId,
+			chat_id: chatId,
+			content: normalizedText,
+			metadata: {
+				sessionKey,
+				accountId: account.accountId,
+				messageId,
+				threadId,
+				isGroup,
+				feishuEventType: "im.message.receive_v1",
+				raw: event
+			}
+		});
+	}
+	const dispatcher = new l.EventDispatcher({
+		verifyChallenge: false,
+		encryptKey,
+		verificationToken,
+		logger: sdkLogger,
+		loggerLevel: l.LoggerLevel.info
+	});
+	dispatcher.register({ "im.message.receive_v1": async (data) => await handleMessageReceive(data) });
+	const server = http.createServer();
+	async function handleRequest(req, res) {
+		if (req.method !== "POST") return text(res, 405, "Method Not Allowed");
+		if ((req.url ?? "").split("?")[0] !== path) return text(res, 404, "Not Found");
+		const now = Date.now();
+		if (isRateLimited(`${account.accountId}:${path}:${req.socket.remoteAddress ?? "unknown"}`, now)) return text(res, 429, "Too Many Requests");
+		if (!String(req.headers["content-type"] ?? "").toLowerCase().includes("application/json")) return text(res, 415, "Unsupported Media Type");
+		const body = await readBody(req);
+		if (body.ok === false) return text(res, body.status, body.msg);
+		if (!signatureValid(req.headers, body.body, encryptKey)) return text(res, 401, "Invalid signature");
+		let payload;
+		try {
+			payload = JSON.parse(body.body);
+		} catch {
+			return text(res, 400, "Invalid JSON");
+		}
+		const token = payload?.token ?? payload?.header?.token ?? payload?.event?.token;
+		if (typeof token === "string" && token.trim() && token.trim() !== verificationToken) return text(res, 401, "Invalid verification token");
+		const { isChallenge, challenge } = lark.generateChallenge(payload, { encryptKey });
+		if (isChallenge) return json(res, 200, challenge);
+		const envelope = Object.assign(Object.create({ headers: req.headers }), payload);
+		const out = await dispatcher.invoke(envelope, { needCheck: false });
+		if (!res.headersSent) return json(res, 200, out);
+	}
+	async function run() {
+		await new Promise((resolve, reject) => {
+			server.on("request", (req, res) => {
+				handleRequest(req, res).catch((err) => {
+					log.error({
+						err,
+						accountId: account.accountId
+					}, "Feishu webhook handler error");
+					if (!res.headersSent) text(res, 500, "Internal Server Error");
+				});
+			});
+			server.on("error", (err) => reject(err));
+			server.listen(port, host, () => resolve());
+		});
+		log.info({
+			accountId: account.accountId,
+			host,
+			port,
+			path
+		}, "Feishu webhook server listening");
+		await new Promise((resolve) => {
+			if (abortSignal.aborted) {
+				server.close();
+				return resolve();
+			}
+			abortSignal.addEventListener("abort", () => {
+				server.close();
+				resolve();
+			}, { once: true });
+		});
+	}
+	return { run };
+}
+function safeJsonText(raw) {
+	if (typeof raw !== "string" || !raw.trim()) return void 0;
+	try {
+		const parsed = JSON.parse(raw);
+		const t = typeof parsed?.text === "string" ? parsed.text : typeof parsed?.content === "string" ? parsed.content : typeof parsed?.title === "string" ? parsed.title : void 0;
+		return typeof t === "string" ? t : raw;
+	} catch {
+		return raw;
+	}
+}
+//#endregion
+export { createFeishuWebhookMonitor };
+
+//# sourceMappingURL=monitor.js.map

package/dist/extensions/feishu/src/transport/webhook/monitor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"monitor.js","names":[],"sources":["../../../../../../extensions/feishu/src/transport/webhook/monitor.ts"],"sourcesContent":["import crypto from 'node:crypto';\nimport * as http from 'node:http';\n\nimport lark from '@larksuiteoapi/node-sdk';\n\nimport type { MessageBus } from '@xopcai/xopc/infra/bus/index.js';\nimport type { Config } from '@xopcai/xopc/config/schema.js';\nimport type { ChannelSecurityContext } from '@xopcai/xopc/channels/plugin-types.js';\nimport { generateSessionKey } from '@xopcai/xopc/chat-commands/session-key.js';\nimport { createLogger } from '@xopcai/xopc/utils/logger.js';\n\nimport type { ResolvedFeishuAccount } from '../../state/accounts.js';\nimport { createFeishuDedupe } from '../reliability/dedupe.js';\nimport { stripFeishuMentions } from '../text/mentions.js';\nimport { recordFeishuMessageBinding } from '../../state/message-bindings.js';\nimport { createFeishuLarkSdkPinoLogger } from '../client/lark-sdk-logger.js';\n\nconst log = createLogger('FeishuWebhook');\n\nconst MAX_BODY_BYTES = 256 * 1024;\nconst BODY_TIMEOUT_MS = 2_000;\nconst RATE_LIMIT_WINDOW_MS = 60_000;\nconst RATE_LIMIT_MAX = 120;\nconst RATE_LIMIT_MAX_KEYS = 4096;\n\ntype RateKeyState = { windowStart: number; count: number };\nconst rateState = new Map<string, RateKeyState>();\n\nfunction pruneRateState(now: number) {\n  for (const [k, v] of rateState.entries()) {\n    if (now - v.windowStart > RATE_LIMIT_WINDOW_MS) {\n      rateState.delete(k);\n    }\n  }\n  if (rateState.size <= RATE_LIMIT_MAX_KEYS) return;\n  const over = rateState.size - RATE_LIMIT_MAX_KEYS;\n  let i = 0;\n  for (const k of rateState.keys()) {\n    rateState.delete(k);\n    i++;\n    if (i >= over) break;\n  }\n}\n\nfunction isRateLimited(key: string, now: number): boolean {\n  pruneRateState(now);\n  const cur = rateState.get(key);\n  if (!cur || now - cur.windowStart > RATE_LIMIT_WINDOW_MS) {\n    rateState.set(key, { windowStart: now, count: 1 });\n    return false;\n  }\n  cur.count += 1;\n  return cur.count > RATE_LIMIT_MAX;\n}\n\nfunction safeEqual(a: string, b: string): boolean {\n  if (a.length !== b.length) return false;\n  try {\n    return crypto.timingSafeEqual(Buffer.from(a), Buffer.from(b));\n  } catch {\n    return false;\n  }\n}\n\nfunction signatureValid(headers: http.IncomingHttpHeaders, rawBody: string, encryptKey: string): boolean {\n  const timestampHeader = headers['x-lark-request-timestamp'];\n  const nonceHeader = headers['x-lark-request-nonce'];\n  const signatureHeader = headers['x-lark-signature'];\n  const timestamp = Array.isArray(timestampHeader) ? timestampHeader[0] : timestampHeader;\n  const nonce = Array.isArray(nonceHeader) ? nonceHeader[0] : nonceHeader;\n  const signature = Array.isArray(signatureHeader) ? signatureHeader[0] : signatureHeader;\n  if (!timestamp || !nonce || !signature) return false;\n  if (typeof signature !== 'string' || signature.length < 32) return false;\n  const computed = crypto.createHash('sha256').update(timestamp + nonce + encryptKey + rawBody).digest('hex');\n  return safeEqual(computed, signature);\n}\n\nfunction readBody(\n  req: http.IncomingMessage,\n): Promise<{ ok: true; body: string } | { ok: false; status: number; msg: string }> {\n  return new Promise((resolve) => {\n    let done = false;\n    let bytes = 0;\n    const chunks: Buffer[] = [];\n    const t = setTimeout(() => {\n      if (done) return;\n      done = true;\n      resolve({ ok: false, status: 408, msg: 'Request body timeout' });\n      req.destroy();\n    }, BODY_TIMEOUT_MS);\n\n    req.on('data', (chunk: Buffer) => {\n      if (done) return;\n      bytes += chunk.length;\n      if (bytes > MAX_BODY_BYTES) {\n        done = true;\n        clearTimeout(t);\n        resolve({ ok: false, status: 413, msg: 'Payload too large' });\n        req.destroy();\n        return;\n      }\n      chunks.push(chunk);\n    });\n    req.on('end', () => {\n      if (done) return;\n      done = true;\n      clearTimeout(t);\n      resolve({ ok: true, body: Buffer.concat(chunks).toString('utf8') });\n    });\n    req.on('error', () => {\n      if (done) return;\n      done = true;\n      clearTimeout(t);\n      resolve({ ok: false, status: 400, msg: 'Bad Request' });\n    });\n  });\n}\n\nfunction json(res: http.ServerResponse, status: number, obj: unknown) {\n  res.statusCode = status;\n  res.setHeader('content-type', 'application/json; charset=utf-8');\n  res.end(JSON.stringify(obj));\n}\n\nfunction text(res: http.ServerResponse, status: number, body: string) {\n  res.statusCode = status;\n  res.setHeader('content-type', 'text/plain; charset=utf-8');\n  res.end(body);\n}\n\nexport interface FeishuWebhookMonitorDeps {\n  account: ResolvedFeishuAccount;\n  config: Config;\n  bus: MessageBus;\n  abortSignal: AbortSignal;\n  security: {\n    checkAccess: (ctx: ChannelSecurityContext) => { allowed: boolean; reason?: string } | undefined;\n  };\n}\n\nexport function createFeishuWebhookMonitor(deps: FeishuWebhookMonitorDeps) {\n  const { account, bus, abortSignal, security } = deps;\n  const dedupe = createFeishuDedupe();\n\n  const encryptKey = (account.encryptKey ?? '').trim();\n  const verificationToken = (account.verificationToken ?? '').trim();\n  if (!encryptKey) throw new Error('Feishu webhook mode requires encryptKey');\n  if (!verificationToken) throw new Error('Feishu webhook mode requires verificationToken');\n\n  const host = (account.webhookHost ?? '127.0.0.1').trim() || '127.0.0.1';\n  const port = account.webhookPort ?? 3000;\n  const path = (account.webhookPath ?? '/feishu/events').trim() || '/feishu/events';\n  const l = lark as any;\n  const sdkLogger = createFeishuLarkSdkPinoLogger(account.accountId);\n\n  async function handleMessageReceive(event: any): Promise<void> {\n    const msg = event?.event?.message ?? event?.message ?? event?.data?.message;\n    const sender = event?.event?.sender ?? event?.sender ?? event?.data?.sender;\n    const chatId = msg?.chat_id ?? msg?.chatId ?? '';\n    const messageId = msg?.message_id ?? msg?.messageId ?? '';\n    const chatType = msg?.chat_type ?? msg?.chatType ?? '';\n\n    const senderId =\n      sender?.sender_id?.open_id ??\n      sender?.sender_id?.user_id ??\n      sender?.open_id ??\n      sender?.user_id ??\n      '';\n    const senderName = sender?.sender_id?.name ?? sender?.sender_name ?? undefined;\n\n    if (!chatId || !messageId || !senderId) return;\n    if (!dedupe.claim(messageId)) return;\n\n    const isGroup = chatType === 'group' || chatType === 'chat';\n    const textRaw =\n      msg?.content && typeof msg.content === 'string'\n        ? safeJsonText(msg.content)\n        : safeJsonText(msg?.body?.content);\n    const normalizedText = stripFeishuMentions(textRaw ?? '').trim();\n    if (!normalizedText) return;\n\n    const threadId = msg?.thread_id ?? msg?.threadId ?? undefined;\n    const sessionKey = generateSessionKey({\n      source: 'feishu',\n      chatId,\n      senderId,\n      isGroup,\n      threadId: typeof threadId === 'string' && threadId.trim() ? threadId : undefined,\n      accountId: account.accountId,\n    });\n\n    recordFeishuMessageBinding({\n      messageId,\n      sessionKey,\n      accountId: account.accountId,\n      chatId,\n      senderId,\n      isGroup,\n      threadId: typeof threadId === 'string' && threadId.trim() ? threadId : undefined,\n    });\n\n    const access = security.checkAccess({\n      accountId: account.accountId,\n      chatId,\n      senderId,\n      senderName,\n      isGroup,\n      threadId,\n    });\n    if (access && !access.allowed) return;\n\n    await bus.publishInbound({\n      channel: 'feishu',\n      sender_id: senderId,\n      chat_id: chatId,\n      content: normalizedText,\n      metadata: {\n        sessionKey,\n        accountId: account.accountId,\n        messageId,\n        threadId,\n        isGroup,\n        feishuEventType: 'im.message.receive_v1',\n        raw: event,\n      },\n    });\n  }\n\n  const dispatcher = new l.EventDispatcher({\n    verifyChallenge: false,\n    encryptKey,\n    verificationToken,\n    logger: sdkLogger,\n    loggerLevel: l.LoggerLevel.info,\n  } as any);\n  dispatcher.register({\n    'im.message.receive_v1': async (data: any) => await handleMessageReceive(data),\n  });\n\n  const server = http.createServer();\n\n  async function handleRequest(req: http.IncomingMessage, res: http.ServerResponse) {\n    if (req.method !== 'POST') return text(res, 405, 'Method Not Allowed');\n    if ((req.url ?? '').split('?')[0] !== path) return text(res, 404, 'Not Found');\n\n    const now = Date.now();\n    const rateKey = `${account.accountId}:${path}:${req.socket.remoteAddress ?? 'unknown'}`;\n    if (isRateLimited(rateKey, now)) return text(res, 429, 'Too Many Requests');\n\n    const contentType = String(req.headers['content-type'] ?? '');\n    if (!contentType.toLowerCase().includes('application/json')) return text(res, 415, 'Unsupported Media Type');\n\n    const body = await readBody(req);\n    if (body.ok === false) return text(res, body.status, body.msg);\n\n    if (!signatureValid(req.headers, body.body, encryptKey)) return text(res, 401, 'Invalid signature');\n\n    let payload: any;\n    try {\n      payload = JSON.parse(body.body);\n    } catch {\n      return text(res, 400, 'Invalid JSON');\n    }\n\n    const token = payload?.token ?? payload?.header?.token ?? payload?.event?.token;\n    if (typeof token === 'string' && token.trim() && token.trim() !== verificationToken) {\n      return text(res, 401, 'Invalid verification token');\n    }\n\n    const { isChallenge, challenge } = (lark as any).generateChallenge(payload, { encryptKey });\n    if (isChallenge) return json(res, 200, challenge);\n\n    const envelope = Object.assign(Object.create({ headers: req.headers }), payload);\n    const out = await dispatcher.invoke(envelope, { needCheck: false });\n    if (!res.headersSent) return json(res, 200, out);\n  }\n\n  async function run(): Promise<void> {\n    await new Promise<void>((resolve, reject) => {\n      server.on('request', (req, res) => {\n        void handleRequest(req, res).catch((err) => {\n          log.error({ err, accountId: account.accountId }, 'Feishu webhook handler error');\n          if (!res.headersSent) text(res, 500, 'Internal Server Error');\n        });\n      });\n      server.on('error', (err) => reject(err));\n      server.listen(port, host, () => resolve());\n    });\n\n    log.info({ accountId: account.accountId, host, port, path }, 'Feishu webhook server listening');\n\n    await new Promise<void>((resolve) => {\n      if (abortSignal.aborted) {\n        server.close();\n        return resolve();\n      }\n      abortSignal.addEventListener(\n        'abort',\n        () => {\n          server.close();\n          resolve();\n        },\n        { once: true },\n      );\n    });\n  }\n\n  return { run };\n}\n\nfunction safeJsonText(raw: unknown): string | undefined {\n  if (typeof raw !== 'string' || !raw.trim()) return undefined;\n  try {\n    const parsed = JSON.parse(raw);\n    const t =\n      typeof parsed?.text === 'string'\n        ? parsed.text\n        : typeof parsed?.content === 'string'\n          ? parsed.content\n          : typeof parsed?.title === 'string'\n            ? parsed.title\n            : undefined;\n    return typeof t === 'string' ? t : raw;\n  } catch {\n    return raw;\n  }\n}\n\n"],"mappings":";;;;;;;;;;;aAS4D;AAQ5D,MAAM,MAAM,aAAa,gBAAgB;AAEzC,MAAM,iBAAiB,MAAM;AAC7B,MAAM,kBAAkB;AACxB,MAAM,uBAAuB;AAC7B,MAAM,iBAAiB;AACvB,MAAM,sBAAsB;AAG5B,MAAM,4BAAY,IAAI,KAA2B;AAEjD,SAAS,eAAe,KAAa;AACnC,MAAK,MAAM,CAAC,GAAG,MAAM,UAAU,SAAS,CACtC,KAAI,MAAM,EAAE,cAAc,qBACxB,WAAU,OAAO,EAAE;AAGvB,KAAI,UAAU,QAAQ,oBAAqB;CAC3C,MAAM,OAAO,UAAU,OAAO;CAC9B,IAAI,IAAI;AACR,MAAK,MAAM,KAAK,UAAU,MAAM,EAAE;AAChC,YAAU,OAAO,EAAE;AACnB;AACA,MAAI,KAAK,KAAM;;;AAInB,SAAS,cAAc,KAAa,KAAsB;AACxD,gBAAe,IAAI;CACnB,MAAM,MAAM,UAAU,IAAI,IAAI;AAC9B,KAAI,CAAC,OAAO,MAAM,IAAI,cAAc,sBAAsB;AACxD,YAAU,IAAI,KAAK;GAAE,aAAa;GAAK,OAAO;GAAG,CAAC;AAClD,SAAO;;AAET,KAAI,SAAS;AACb,QAAO,IAAI,QAAQ;;AAGrB,SAAS,UAAU,GAAW,GAAoB;AAChD,KAAI,EAAE,WAAW,EAAE,OAAQ,QAAO;AAClC,KAAI;AACF,SAAO,OAAO,gBAAgB,OAAO,KAAK,EAAE,EAAE,OAAO,KAAK,EAAE,CAAC;SACvD;AACN,SAAO;;;AAIX,SAAS,eAAe,SAAmC,SAAiB,YAA6B;CACvG,MAAM,kBAAkB,QAAQ;CAChC,MAAM,cAAc,QAAQ;CAC5B,MAAM,kBAAkB,QAAQ;CAChC,MAAM,YAAY,MAAM,QAAQ,gBAAgB,GAAG,gBAAgB,KAAK;CACxE,MAAM,QAAQ,MAAM,QAAQ,YAAY,GAAG,YAAY,KAAK;CAC5D,MAAM,YAAY,MAAM,QAAQ,gBAAgB,GAAG,gBAAgB,KAAK;AACxE,KAAI,CAAC,aAAa,CAAC,SAAS,CAAC,UAAW,QAAO;AAC/C,KAAI,OAAO,cAAc,YAAY,UAAU,SAAS,GAAI,QAAO;AAEnE,QAAO,UADU,OAAO,WAAW,SAAS,CAAC,OAAO,YAAY,QAAQ,aAAa,QAAQ,CAAC,OAAO,MAC5E,EAAE,UAAU;;AAGvC,SAAS,SACP,KACkF;AAClF,QAAO,IAAI,SAAS,YAAY;EAC9B,IAAI,OAAO;EACX,IAAI,QAAQ;EACZ,MAAM,SAAmB,EAAE;EAC3B,MAAM,IAAI,iBAAiB;AACzB,OAAI,KAAM;AACV,UAAO;AACP,WAAQ;IAAE,IAAI;IAAO,QAAQ;IAAK,KAAK;IAAwB,CAAC;AAChE,OAAI,SAAS;KACZ,gBAAgB;AAEnB,MAAI,GAAG,SAAS,UAAkB;AAChC,OAAI,KAAM;AACV,YAAS,MAAM;AACf,OAAI,QAAQ,gBAAgB;AAC1B,WAAO;AACP,iBAAa,EAAE;AACf,YAAQ;KAAE,IAAI;KAAO,QAAQ;KAAK,KAAK;KAAqB,CAAC;AAC7D,QAAI,SAAS;AACb;;AAEF,UAAO,KAAK,MAAM;IAClB;AACF,MAAI,GAAG,aAAa;AAClB,OAAI,KAAM;AACV,UAAO;AACP,gBAAa,EAAE;AACf,WAAQ;IAAE,IAAI;IAAM,MAAM,OAAO,OAAO,OAAO,CAAC,SAAS,OAAO;IAAE,CAAC;IACnE;AACF,MAAI,GAAG,eAAe;AACpB,OAAI,KAAM;AACV,UAAO;AACP,gBAAa,EAAE;AACf,WAAQ;IAAE,IAAI;IAAO,QAAQ;IAAK,KAAK;IAAe,CAAC;IACvD;GACF;;AAGJ,SAAS,KAAK,KAA0B,QAAgB,KAAc;AACpE,KAAI,aAAa;AACjB,KAAI,UAAU,gBAAgB,kCAAkC;AAChE,KAAI,IAAI,KAAK,UAAU,IAAI,CAAC;;AAG9B,SAAS,KAAK,KAA0B,QAAgB,MAAc;AACpE,KAAI,aAAa;AACjB,KAAI,UAAU,gBAAgB,4BAA4B;AAC1D,KAAI,IAAI,KAAK;;AAaf,SAAgB,2BAA2B,MAAgC;CACzE,MAAM,EAAE,SAAS,KAAK,aAAa,aAAa;CAChD,MAAM,SAAS,oBAAoB;CAEnC,MAAM,cAAc,QAAQ,cAAc,IAAI,MAAM;CACpD,MAAM,qBAAqB,QAAQ,qBAAqB,IAAI,MAAM;AAClE,KAAI,CAAC,WAAY,OAAM,IAAI,MAAM,0CAA0C;AAC3E,KAAI,CAAC,kBAAmB,OAAM,IAAI,MAAM,iDAAiD;CAEzF,MAAM,QAAQ,QAAQ,eAAe,aAAa,MAAM,IAAI;CAC5D,MAAM,OAAO,QAAQ,eAAe;CACpC,MAAM,QAAQ,QAAQ,eAAe,kBAAkB,MAAM,IAAI;CACjE,MAAM,IAAI;CACV,MAAM,YAAY,8BAA8B,QAAQ,UAAU;CAElE,eAAe,qBAAqB,OAA2B;EAC7D,MAAM,MAAM,OAAO,OAAO,WAAW,OAAO,WAAW,OAAO,MAAM;EACpE,MAAM,SAAS,OAAO,OAAO,UAAU,OAAO,UAAU,OAAO,MAAM;EACrE,MAAM,SAAS,KAAK,WAAW,KAAK,UAAU;EAC9C,MAAM,YAAY,KAAK,cAAc,KAAK,aAAa;EACvD,MAAM,WAAW,KAAK,aAAa,KAAK,YAAY;EAEpD,MAAM,WACJ,QAAQ,WAAW,WACnB,QAAQ,WAAW,WACnB,QAAQ,WACR,QAAQ,WACR;EACF,MAAM,aAAa,QAAQ,WAAW,QAAQ,QAAQ,eAAe,KAAA;AAErE,MAAI,CAAC,UAAU,CAAC,aAAa,CAAC,SAAU;AACxC,MAAI,CAAC,OAAO,MAAM,UAAU,CAAE;EAE9B,MAAM,UAAU,aAAa,WAAW,aAAa;EAKrD,MAAM,iBAAiB,qBAHrB,KAAK,WAAW,OAAO,IAAI,YAAY,WACnC,aAAa,IAAI,QAAQ,GACzB,aAAa,KAAK,MAAM,QAAQ,KACgB,GAAG,CAAC,MAAM;AAChE,MAAI,CAAC,eAAgB;EAErB,MAAM,WAAW,KAAK,aAAa,KAAK,YAAY,KAAA;EACpD,MAAM,aAAa,mBAAmB;GACpC,QAAQ;GACR;GACA;GACA;GACA,UAAU,OAAO,aAAa,YAAY,SAAS,MAAM,GAAG,WAAW,KAAA;GACvE,WAAW,QAAQ;GACpB,CAAC;AAEF,6BAA2B;GACzB;GACA;GACA,WAAW,QAAQ;GACnB;GACA;GACA;GACA,UAAU,OAAO,aAAa,YAAY,SAAS,MAAM,GAAG,WAAW,KAAA;GACxE,CAAC;EAEF,MAAM,SAAS,SAAS,YAAY;GAClC,WAAW,QAAQ;GACnB;GACA;GACA;GACA;GACA;GACD,CAAC;AACF,MAAI,UAAU,CAAC,OAAO,QAAS;AAE/B,QAAM,IAAI,eAAe;GACvB,SAAS;GACT,WAAW;GACX,SAAS;GACT,SAAS;GACT,UAAU;IACR;IACA,WAAW,QAAQ;IACnB;IACA;IACA;IACA,iBAAiB;IACjB,KAAK;IACN;GACF,CAAC;;CAGJ,MAAM,aAAa,IAAI,EAAE,gBAAgB;EACvC,iBAAiB;EACjB;EACA;EACA,QAAQ;EACR,aAAa,EAAE,YAAY;EAC5B,CAAQ;AACT,YAAW,SAAS,EAClB,yBAAyB,OAAO,SAAc,MAAM,qBAAqB,KAAK,EAC/E,CAAC;CAEF,MAAM,SAAS,KAAK,cAAc;CAElC,eAAe,cAAc,KAA2B,KAA0B;AAChF,MAAI,IAAI,WAAW,OAAQ,QAAO,KAAK,KAAK,KAAK,qBAAqB;AACtE,OAAK,IAAI,OAAO,IAAI,MAAM,IAAI,CAAC,OAAO,KAAM,QAAO,KAAK,KAAK,KAAK,YAAY;EAE9E,MAAM,MAAM,KAAK,KAAK;AAEtB,MAAI,cAAc,GADC,QAAQ,UAAU,GAAG,KAAK,GAAG,IAAI,OAAO,iBAAiB,aACjD,IAAI,CAAE,QAAO,KAAK,KAAK,KAAK,oBAAoB;AAG3E,MAAI,CADgB,OAAO,IAAI,QAAQ,mBAAmB,GAC1C,CAAC,aAAa,CAAC,SAAS,mBAAmB,CAAE,QAAO,KAAK,KAAK,KAAK,yBAAyB;EAE5G,MAAM,OAAO,MAAM,SAAS,IAAI;AAChC,MAAI,KAAK,OAAO,MAAO,QAAO,KAAK,KAAK,KAAK,QAAQ,KAAK,IAAI;AAE9D,MAAI,CAAC,eAAe,IAAI,SAAS,KAAK,MAAM,WAAW,CAAE,QAAO,KAAK,KAAK,KAAK,oBAAoB;EAEnG,IAAI;AACJ,MAAI;AACF,aAAU,KAAK,MAAM,KAAK,KAAK;UACzB;AACN,UAAO,KAAK,KAAK,KAAK,eAAe;;EAGvC,MAAM,QAAQ,SAAS,SAAS,SAAS,QAAQ,SAAS,SAAS,OAAO;AAC1E,MAAI,OAAO,UAAU,YAAY,MAAM,MAAM,IAAI,MAAM,MAAM,KAAK,kBAChE,QAAO,KAAK,KAAK,KAAK,6BAA6B;EAGrD,MAAM,EAAE,aAAa,cAAe,KAAa,kBAAkB,SAAS,EAAE,YAAY,CAAC;AAC3F,MAAI,YAAa,QAAO,KAAK,KAAK,KAAK,UAAU;EAEjD,MAAM,WAAW,OAAO,OAAO,OAAO,OAAO,EAAE,SAAS,IAAI,SAAS,CAAC,EAAE,QAAQ;EAChF,MAAM,MAAM,MAAM,WAAW,OAAO,UAAU,EAAE,WAAW,OAAO,CAAC;AACnE,MAAI,CAAC,IAAI,YAAa,QAAO,KAAK,KAAK,KAAK,IAAI;;CAGlD,eAAe,MAAqB;AAClC,QAAM,IAAI,SAAe,SAAS,WAAW;AAC3C,UAAO,GAAG,YAAY,KAAK,QAAQ;AAC5B,kBAAc,KAAK,IAAI,CAAC,OAAO,QAAQ;AAC1C,SAAI,MAAM;MAAE;MAAK,WAAW,QAAQ;MAAW,EAAE,+BAA+B;AAChF,SAAI,CAAC,IAAI,YAAa,MAAK,KAAK,KAAK,wBAAwB;MAC7D;KACF;AACF,UAAO,GAAG,UAAU,QAAQ,OAAO,IAAI,CAAC;AACxC,UAAO,OAAO,MAAM,YAAY,SAAS,CAAC;IAC1C;AAEF,MAAI,KAAK;GAAE,WAAW,QAAQ;GAAW;GAAM;GAAM;GAAM,EAAE,kCAAkC;AAE/F,QAAM,IAAI,SAAe,YAAY;AACnC,OAAI,YAAY,SAAS;AACvB,WAAO,OAAO;AACd,WAAO,SAAS;;AAElB,eAAY,iBACV,eACM;AACJ,WAAO,OAAO;AACd,aAAS;MAEX,EAAE,MAAM,MAAM,CACf;IACD;;AAGJ,QAAO,EAAE,KAAK;;AAGhB,SAAS,aAAa,KAAkC;AACtD,KAAI,OAAO,QAAQ,YAAY,CAAC,IAAI,MAAM,CAAE,QAAO,KAAA;AACnD,KAAI;EACF,MAAM,SAAS,KAAK,MAAM,IAAI;EAC9B,MAAM,IACJ,OAAO,QAAQ,SAAS,WACpB,OAAO,OACP,OAAO,QAAQ,YAAY,WACzB,OAAO,UACP,OAAO,QAAQ,UAAU,WACvB,OAAO,QACP,KAAA;AACV,SAAO,OAAO,MAAM,WAAW,IAAI;SAC7B;AACN,SAAO"}

package/dist/extensions/feishu/src/ui/config-surface.d.ts

@@ -0,0 +1,2 @@
+import type { ChannelConfigSurfaceAdapter } from '@xopcai/xopc/channels/plugins/types.adapters.js';
+export declare const feishuConfigSurface: ChannelConfigSurfaceAdapter;

package/dist/extensions/feishu/src/ui/config-surface.js

@@ -0,0 +1,6 @@
+//#region extensions/feishu/src/ui/config-surface.ts
+const feishuConfigSurface = { buildConfigSurface: (cfg) => cfg.channels?.feishu ?? {} };
+//#endregion
+export { feishuConfigSurface };
+
+//# sourceMappingURL=config-surface.js.map

package/dist/extensions/feishu/src/ui/config-surface.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config-surface.js","names":[],"sources":["../../../../../extensions/feishu/src/ui/config-surface.ts"],"sourcesContent":["import type { ChannelConfigSurfaceAdapter } from '@xopcai/xopc/channels/plugins/types.adapters.js';\nimport type { Config } from '@xopcai/xopc/config/schema.js';\n\nexport const feishuConfigSurface: ChannelConfigSurfaceAdapter = {\n  // Note: unlike providers (which intentionally return masked values),\n  // channel config is returned as plain text in /api/config so the Web UI can\n  // render it like Telegram: hidden by default, reveal on demand.\n  buildConfigSurface: (cfg: Config) => (cfg.channels?.feishu as Record<string, unknown>) ?? {},\n};\n\n"],"mappings":";AAGA,MAAa,sBAAmD,EAI9D,qBAAqB,QAAiB,IAAI,UAAU,UAAsC,EAAE,EAC7F"}

package/dist/extensions/feishu/xopc.extension.json

@@ -0,0 +1,18 @@
+{
+  "id": "feishu-tools",
+  "name": "Feishu Tools",
+  "description": "Feishu/Lark tools (doc/wiki/drive/perm/bitable) for xopc agents. Activates when the Feishu channel is configured.",
+  "version": "0.0.14",
+  "kind": "tool",
+  "main": "src/extension.ts",
+  "channels": ["feishu", "lark"],
+  "activation": {
+    "onChannels": ["feishu", "lark"],
+    "onCapabilities": ["tool"]
+  },
+  "setup": {
+    "providers": [],
+    "requiresRuntime": true
+  }
+}
+

package/dist/extensions/telegram/xopc.extension.json

@@ -0,0 +1,20 @@
+{
+  "id": "telegram",
+  "name": "Telegram Channel",
+  "description": "Bundled Telegram Bot channel (private workspace sources; ships inside @xopcai/xopc dist/)",
+  "version": "0.0.16",
+  "kind": "channel",
+  "main": "src/index.ts",
+  "channels": ["telegram"],
+  "channelEnvVars": {
+    "telegram": ["TELEGRAM_BOT_TOKEN"]
+  },
+  "activation": {
+    "onChannels": ["telegram"],
+    "onCapabilities": ["channel"]
+  },
+  "setup": {
+    "providers": [],
+    "requiresRuntime": true
+  }
+}

package/dist/extensions/weixin/xopc.extension.json

@@ -0,0 +1,17 @@
+{
+  "id": "weixin",
+  "name": "WeChat (Weixin) Channel",
+  "description": "WeChat ilink channel (private workspace sources; ships inside @xopcai/xopc dist/)",
+  "version": "0.1.0",
+  "kind": "channel",
+  "main": "src/index.ts",
+  "channels": ["weixin"],
+  "activation": {
+    "onChannels": ["weixin"],
+    "onCapabilities": ["channel"]
+  },
+  "setup": {
+    "providers": [],
+    "requiresRuntime": true
+  }
+}