npm - @xopcai/xopc - Versions diffs - 0.0.29 → 0.0.31 - Mend

@xopcai/xopc 0.0.29 → 0.0.31

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (632) hide show

package/dist/src/extensions/lockfile.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"lockfile.js","names":[],"sources":["../../../src/extensions/lockfile.ts"],"sourcesContent":["import { readFile, ~~writeFile,~~ mkdir } from 'fs/promises';\nimport { existsSync } from 'fs';\nimport { dirname, join } from 'path';\nimport { createHash } from 'crypto';\nimport { createLogger } from '../utils/logger.js';\nimport { resolveExtensionsLockPath, resolveExtensionsDir } from '../config/paths.js';\n\nconst log = createLogger('ExtensionLockfile');\n\n// ============================================\n// Types\n// ============================================\n\nexport type ExtensionSource = 'npm' \| 'local' \| 'git';\n\nexport interface ExtensionLockEntry {\n /** Extension ID /\n name: string;\n /* Installed version /\n version: string;\n /* Resolved URL or path /\n resolved: string;\n /* Integrity hash (for verification) /\n integrity?: string;\n /* Installation timestamp /\n installedAt: string;\n /* Source type /\n source: ExtensionSource;\n /* Local path (for local extensions) /\n localPath?: string;\n /* Git reference (for git extensions) /\n gitRef?: string;\n /* Dependencies /\n dependencies?: Record<string, string>;\n}\n\nexport interface ExtensionsLockfile {\n version: number;\n lockfileVersion: number;\n /* Installed extensions /\n extensions: Record<string, ExtensionLockEntry>;\n /* Last updated timestamp /\n lastUpdated?: string;\n}\n\n// ============================================\n// Extension Lockfile Manager\n// ============================================\n\nexport class ExtensionLockfileManager {\n private readonly lockfilePath: string;\n\n constructor(lockfilePath?: string) {\n this.lockfilePath = lockfilePath \|\| resolveExtensionsLockPath();\n }\n\n /\n Load the lockfile\n /\n async load(): Promise<ExtensionsLockfile> {\n if (!existsSync(this.lockfilePath)) {\n return { version: 1, lockfileVersion: 1, extensions: {} };\n }\n\n try {\n const content = await readFile(this.lockfilePath, 'utf-8');\n const data = JSON.parse(content);\n return {\n version: data.version \|\| 1,\n lockfileVersion: data.lockfileVersion \|\| 1,\n extensions: data.extensions \|\| {},\n lastUpdated: data.lastUpdated,\n };\n } catch (error) {\n log.warn({ error }, 'Failed to load lockfile, starting fresh');\n return { version: 1, lockfileVersion: 1, extensions: {} };\n }\n }\n\n /\n Save the lockfile\n /\n async save(data: ExtensionsLockfile): Promise<void> {\n data.lastUpdated = new Date().toISOString();\n\n await mkdir(dirname(this.lockfilePath), { recursive: true });\n await ~~writeFile~~(\n this.lockfilePath~~,\n~~ JSON.stringify(data, null, 2)~~,\n 'utf-8'\n~~ );\n\n log.debug('Lockfile saved');\n }\n\n /\n Add or update an extension entry\n /\n async upsert(\n extensionId: string,\n entry: Omit<ExtensionLockEntry, 'installedAt'>\n ): Promise<void> {\n const data = await this.load();\n\n data.extensions[extensionId] = {\n ...entry,\n installedAt: new Date().toISOString(),\n };\n\n await this.save(data);\n log.info({ extensionId, version: entry.version }, 'Extension locked');\n }\n\n /\n Remove an extension entry\n /\n async remove(extensionId: string): Promise<void> {\n const data = await this.load();\n\n if (data.extensions[extensionId]) {\n delete data.extensions[extensionId];\n await this.save(data);\n log.info({ extensionId }, 'Extension removed from lockfile');\n }\n }\n\n /\n Get a specific extension entry\n /\n async get(extensionId: string): Promise<ExtensionLockEntry \| null> {\n const data = await this.load();\n return data.extensions[extensionId] \|\| null;\n }\n\n /\n Check if an extension is locked\n /\n async has(extensionId: string): Promise<boolean> {\n const data = await this.load();\n return extensionId in data.extensions;\n }\n\n /\n List all locked extensions\n /\n async list(): Promise<ExtensionLockEntry[]> {\n const data = await this.load();\n return Object.values(data.extensions);\n }\n\n /\n Verify extension integrity\n /\n async verify(extensionId: string): Promise<{ valid: boolean; reason?: string }> {\n const entry = await this.get(extensionId);\n\n if (!entry) {\n return { valid: false, reason: 'Extension not in lockfile' };\n }\n\n const extDir = join(resolveExtensionsDir(), extensionId);\n\n if (!existsSync(extDir)) {\n return { valid: false, reason: 'Extension directory not found' };\n }\n\n // TODO: Verify integrity hash if available\n // This would require reading and hashing the extension files\n\n return { valid: true };\n }\n\n /\n Verify all locked extensions\n /\n async verifyAll(): Promise<\n Array<{ extensionId: string; valid: boolean; reason?: string }>\n > {\n const data = await this.load();\n const results: Array<{ extensionId: string; valid: boolean; reason?: string }> = [];\n\n for (const extensionId of Object.keys(data.extensions)) {\n results.push({\n extensionId,\n ...(await this.verify(extensionId)),\n });\n }\n\n return results;\n }\n\n /\n Freeze current state (save with validation)\n /\n async freeze(): Promise<ExtensionsLockfile> {\n const data = await this.load();\n\n // Validate all extensions exist\n for (const [extensionId] of Object.entries(data.extensions)) {\n const extDir = join(resolveExtensionsDir(), extensionId);\n\n if (!existsSync(extDir)) {\n log.warn({ extensionId }, 'Extension in lockfile but not installed');\n }\n }\n\n data.lastUpdated = new Date().toISOString();\n await this.save(data);\n\n log.info('Lockfile frozen');\n return data;\n }\n\n /\n Generate integrity hash for a file\n */\n static async generateIntegrity(filePath: string): Promise<string> {\n const { readFile } = await import('fs/promises');\n const content = await readFile(filePath);\n return 'sha512-' + createHash('sha512').update(content).digest('base64');\n }\n}\n\n// ============================================\n// Global Instance\n// ============================================\n\nlet globalManager: ExtensionLockfileManager \| undefined;\n\nexport function getExtensionLockfileManager(\n lockfilePath?: string\n): ExtensionLockfileManager {\n if (!globalManager) {\n globalManager = new ExtensionLockfileManager(lockfilePath);\n }\n return globalManager;\n}\n\nexport function resetExtensionLockfileManager(): void {\n globalManager = undefined;\n}\n\n// ============================================\n// Convenience Functions\n// ============================================\n\nexport async function loadExtensionLockfile(\n lockfilePath?: string\n): Promise<ExtensionsLockfile> {\n const manager = getExtensionLockfileManager(lockfilePath);\n return manager.load();\n}\n\nexport async function saveExtensionLockfile(\n data: ExtensionsLockfile,\n lockfilePath?: string\n): Promise<void> {\n const manager = getExtensionLockfileManager(lockfilePath);\n return manager.save(data);\n}\n"],"mappings":"~~;;;;;;;;aAIkD~~;YACmC;AAErF,MAAM,MAAM,aAAa,oBAAoB;AA0C7C,IAAa,2BAAb,MAAsC;CACpC;CAEA,YAAY,cAAuB;AACjC,OAAK,eAAe,gBAAgB,2BAA2B;;;;;CAMjE,MAAM,OAAoC;AACxC,MAAI,CAAC,WAAW,KAAK,aAAa,CAChC,QAAO;GAAE,SAAS;GAAG,iBAAiB;GAAG,YAAY,EAAE;GAAE;AAG3D,MAAI;GACF,MAAM,UAAU,MAAM,SAAS,KAAK,cAAc,QAAQ;GAC1D,MAAM,OAAO,KAAK,MAAM,QAAQ;AAChC,UAAO;IACL,SAAS,KAAK,WAAW;IACzB,iBAAiB,KAAK,mBAAmB;IACzC,YAAY,KAAK,cAAc,EAAE;IACjC,aAAa,KAAK;IACnB;WACM,OAAO;AACd,OAAI,KAAK,EAAE,OAAO,EAAE,0CAA0C;AAC9D,UAAO;IAAE,SAAS;IAAG,iBAAiB;IAAG,YAAY,EAAE;IAAE;;;;;;CAO7D,MAAM,KAAK,MAAyC;AAClD,OAAK,+BAAc,IAAI,MAAM,EAAC,aAAa;AAE3C,QAAM,MAAM,QAAQ,KAAK,aAAa,EAAE,EAAE,WAAW,MAAM,CAAC;AAC5D,QAAM,~~UACJ~~,KAAK,~~cACL~~,KAAK,UAAU,MAAM,MAAM,EAAE,~~EAC7B,QACD~~;~~AAED~~,MAAI,MAAM,iBAAiB;;;;;CAM7B,MAAM,OACJ,aACA,OACe;EACf,MAAM,OAAO,MAAM,KAAK,MAAM;AAE9B,OAAK,WAAW,eAAe;GAC7B,GAAG;GACH,8BAAa,IAAI,MAAM,EAAC,aAAa;GACtC;AAED,QAAM,KAAK,KAAK,KAAK;AACrB,MAAI,KAAK;GAAE;GAAa,SAAS,MAAM;GAAS,EAAE,mBAAmB;;;;;CAMvE,MAAM,OAAO,aAAoC;EAC/C,MAAM,OAAO,MAAM,KAAK,MAAM;AAE9B,MAAI,KAAK,WAAW,cAAc;AAChC,UAAO,KAAK,WAAW;AACvB,SAAM,KAAK,KAAK,KAAK;AACrB,OAAI,KAAK,EAAE,aAAa,EAAE,kCAAkC;;;;;;CAOhE,MAAM,IAAI,aAAyD;AAEjE,UAAO,MADY,KAAK,MAAM,EAClB,WAAW,gBAAgB;;;;;CAMzC,MAAM,IAAI,aAAuC;AAE/C,SAAO,gBAAe,MADH,KAAK,MAAM,EACH;;;;;CAM7B,MAAM,OAAsC;EAC1C,MAAM,OAAO,MAAM,KAAK,MAAM;AAC9B,SAAO,OAAO,OAAO,KAAK,WAAW;;;;;CAMvC,MAAM,OAAO,aAAmE;AAG9E,MAAI,CAAC,MAFe,KAAK,IAAI,YAAY,CAGvC,QAAO;GAAE,OAAO;GAAO,QAAQ;GAA6B;AAK9D,MAAI,CAAC,WAFU,KAAK,sBAAsB,EAAE,YAEtB,CAAC,CACrB,QAAO;GAAE,OAAO;GAAO,QAAQ;GAAiC;AAMlE,SAAO,EAAE,OAAO,MAAM;;;;;CAMxB,MAAM,YAEJ;EACA,MAAM,OAAO,MAAM,KAAK,MAAM;EAC9B,MAAM,UAA2E,EAAE;AAEnF,OAAK,MAAM,eAAe,OAAO,KAAK,KAAK,WAAW,CACpD,SAAQ,KAAK;GACX;GACA,GAAI,MAAM,KAAK,OAAO,YAAY;GACnC,CAAC;AAGJ,SAAO;;;;;CAMT,MAAM,SAAsC;EAC1C,MAAM,OAAO,MAAM,KAAK,MAAM;AAG9B,OAAK,MAAM,CAAC,gBAAgB,OAAO,QAAQ,KAAK,WAAW,CAGzD,KAAI,CAAC,WAFU,KAAK,sBAAsB,EAAE,YAEtB,CAAC,CACrB,KAAI,KAAK,EAAE,aAAa,EAAE,0CAA0C;AAIxE,OAAK,+BAAc,IAAI,MAAM,EAAC,aAAa;AAC3C,QAAM,KAAK,KAAK,KAAK;AAErB,MAAI,KAAK,kBAAkB;AAC3B,SAAO;;;;;CAMT,aAAa,kBAAkB,UAAmC;EAChE,MAAM,EAAE,aAAa,MAAM,OAAO;EAClC,MAAM,UAAU,MAAM,SAAS,SAAS;AACxC,SAAO,YAAY,WAAW,SAAS,CAAC,OAAO,QAAQ,CAAC,OAAO,SAAS;;;AAQ5E,IAAI;AAEJ,SAAgB,4BACd,cAC0B;AAC1B,KAAI,CAAC,cACH,iBAAgB,IAAI,yBAAyB,aAAa;AAE5D,QAAO;;AAGT,SAAgB,gCAAsC;AACpD,iBAAgB,KAAA;;AAOlB,eAAsB,sBACpB,cAC6B;AAE7B,QADgB,4BAA4B,aAC9B,CAAC,MAAM;;AAGvB,eAAsB,sBACpB,MACA,cACe;AAEf,QADgB,4BAA4B,aAC9B,CAAC,KAAK,KAAK"}
1	+ {"version":3,"file":"lockfile.js","names":[],"sources":["../../../src/extensions/lockfile.ts"],"sourcesContent":["import { readFile, mkdir } from 'fs/promises';\nimport { writeTextAtomic } from '../infra/write-file-atomic.js';\nimport { existsSync } from 'fs';\nimport { dirname, join } from 'path';\nimport { createHash } from 'crypto';\nimport { createLogger } from '../utils/logger.js';\nimport { resolveExtensionsLockPath, resolveExtensionsDir } from '../config/paths.js';\n\nconst log = createLogger('ExtensionLockfile');\n\n// ============================================\n// Types\n// ============================================\n\nexport type ExtensionSource = 'npm' \| 'local' \| 'git';\n\nexport interface ExtensionLockEntry {\n /** Extension ID /\n name: string;\n /* Installed version /\n version: string;\n /* Resolved URL or path /\n resolved: string;\n /* Integrity hash (for verification) /\n integrity?: string;\n /* Installation timestamp /\n installedAt: string;\n /* Source type /\n source: ExtensionSource;\n /* Local path (for local extensions) /\n localPath?: string;\n /* Git reference (for git extensions) /\n gitRef?: string;\n /* Dependencies /\n dependencies?: Record<string, string>;\n}\n\nexport interface ExtensionsLockfile {\n version: number;\n lockfileVersion: number;\n /* Installed extensions /\n extensions: Record<string, ExtensionLockEntry>;\n /* Last updated timestamp /\n lastUpdated?: string;\n}\n\n// ============================================\n// Extension Lockfile Manager\n// ============================================\n\nexport class ExtensionLockfileManager {\n private readonly lockfilePath: string;\n\n constructor(lockfilePath?: string) {\n this.lockfilePath = lockfilePath \|\| resolveExtensionsLockPath();\n }\n\n /\n Load the lockfile\n /\n async load(): Promise<ExtensionsLockfile> {\n if (!existsSync(this.lockfilePath)) {\n return { version: 1, lockfileVersion: 1, extensions: {} };\n }\n\n try {\n const content = await readFile(this.lockfilePath, 'utf-8');\n const data = JSON.parse(content);\n return {\n version: data.version \|\| 1,\n lockfileVersion: data.lockfileVersion \|\| 1,\n extensions: data.extensions \|\| {},\n lastUpdated: data.lastUpdated,\n };\n } catch (error) {\n log.warn({ error }, 'Failed to load lockfile, starting fresh');\n return { version: 1, lockfileVersion: 1, extensions: {} };\n }\n }\n\n /\n Save the lockfile\n /\n async save(data: ExtensionsLockfile): Promise<void> {\n data.lastUpdated = new Date().toISOString();\n\n await mkdir(dirname(this.lockfilePath), { recursive: true });\n await writeTextAtomic(this.lockfilePath, JSON.stringify(data, null, 2));\n\n log.debug('Lockfile saved');\n }\n\n /\n Add or update an extension entry\n /\n async upsert(\n extensionId: string,\n entry: Omit<ExtensionLockEntry, 'installedAt'>\n ): Promise<void> {\n const data = await this.load();\n\n data.extensions[extensionId] = {\n ...entry,\n installedAt: new Date().toISOString(),\n };\n\n await this.save(data);\n log.info({ extensionId, version: entry.version }, 'Extension locked');\n }\n\n /\n Remove an extension entry\n /\n async remove(extensionId: string): Promise<void> {\n const data = await this.load();\n\n if (data.extensions[extensionId]) {\n delete data.extensions[extensionId];\n await this.save(data);\n log.info({ extensionId }, 'Extension removed from lockfile');\n }\n }\n\n /\n Get a specific extension entry\n /\n async get(extensionId: string): Promise<ExtensionLockEntry \| null> {\n const data = await this.load();\n return data.extensions[extensionId] \|\| null;\n }\n\n /\n Check if an extension is locked\n /\n async has(extensionId: string): Promise<boolean> {\n const data = await this.load();\n return extensionId in data.extensions;\n }\n\n /\n List all locked extensions\n /\n async list(): Promise<ExtensionLockEntry[]> {\n const data = await this.load();\n return Object.values(data.extensions);\n }\n\n /\n Verify extension integrity\n /\n async verify(extensionId: string): Promise<{ valid: boolean; reason?: string }> {\n const entry = await this.get(extensionId);\n\n if (!entry) {\n return { valid: false, reason: 'Extension not in lockfile' };\n }\n\n const extDir = join(resolveExtensionsDir(), extensionId);\n\n if (!existsSync(extDir)) {\n return { valid: false, reason: 'Extension directory not found' };\n }\n\n // TODO: Verify integrity hash if available\n // This would require reading and hashing the extension files\n\n return { valid: true };\n }\n\n /\n Verify all locked extensions\n /\n async verifyAll(): Promise<\n Array<{ extensionId: string; valid: boolean; reason?: string }>\n > {\n const data = await this.load();\n const results: Array<{ extensionId: string; valid: boolean; reason?: string }> = [];\n\n for (const extensionId of Object.keys(data.extensions)) {\n results.push({\n extensionId,\n ...(await this.verify(extensionId)),\n });\n }\n\n return results;\n }\n\n /\n Freeze current state (save with validation)\n /\n async freeze(): Promise<ExtensionsLockfile> {\n const data = await this.load();\n\n // Validate all extensions exist\n for (const [extensionId] of Object.entries(data.extensions)) {\n const extDir = join(resolveExtensionsDir(), extensionId);\n\n if (!existsSync(extDir)) {\n log.warn({ extensionId }, 'Extension in lockfile but not installed');\n }\n }\n\n data.lastUpdated = new Date().toISOString();\n await this.save(data);\n\n log.info('Lockfile frozen');\n return data;\n }\n\n /\n Generate integrity hash for a file\n */\n static async generateIntegrity(filePath: string): Promise<string> {\n const { readFile } = await import('fs/promises');\n const content = await readFile(filePath);\n return 'sha512-' + createHash('sha512').update(content).digest('base64');\n }\n}\n\n// ============================================\n// Global Instance\n// ============================================\n\nlet globalManager: ExtensionLockfileManager \| undefined;\n\nexport function getExtensionLockfileManager(\n lockfilePath?: string\n): ExtensionLockfileManager {\n if (!globalManager) {\n globalManager = new ExtensionLockfileManager(lockfilePath);\n }\n return globalManager;\n}\n\nexport function resetExtensionLockfileManager(): void {\n globalManager = undefined;\n}\n\n// ============================================\n// Convenience Functions\n// ============================================\n\nexport async function loadExtensionLockfile(\n lockfilePath?: string\n): Promise<ExtensionsLockfile> {\n const manager = getExtensionLockfileManager(lockfilePath);\n return manager.load();\n}\n\nexport async function saveExtensionLockfile(\n data: ExtensionsLockfile,\n lockfilePath?: string\n): Promise<void> {\n const manager = getExtensionLockfileManager(lockfilePath);\n return manager.save(data);\n}\n"],"mappings":";;;;;;;;;wBACgE;aAId;YACmC;AAErF,MAAM,MAAM,aAAa,oBAAoB;AA0C7C,IAAa,2BAAb,MAAsC;CACpC;CAEA,YAAY,cAAuB;AACjC,OAAK,eAAe,gBAAgB,2BAA2B;;;;;CAMjE,MAAM,OAAoC;AACxC,MAAI,CAAC,WAAW,KAAK,aAAa,CAChC,QAAO;GAAE,SAAS;GAAG,iBAAiB;GAAG,YAAY,EAAE;GAAE;AAG3D,MAAI;GACF,MAAM,UAAU,MAAM,SAAS,KAAK,cAAc,QAAQ;GAC1D,MAAM,OAAO,KAAK,MAAM,QAAQ;AAChC,UAAO;IACL,SAAS,KAAK,WAAW;IACzB,iBAAiB,KAAK,mBAAmB;IACzC,YAAY,KAAK,cAAc,EAAE;IACjC,aAAa,KAAK;IACnB;WACM,OAAO;AACd,OAAI,KAAK,EAAE,OAAO,EAAE,0CAA0C;AAC9D,UAAO;IAAE,SAAS;IAAG,iBAAiB;IAAG,YAAY,EAAE;IAAE;;;;;;CAO7D,MAAM,KAAK,MAAyC;AAClD,OAAK,+BAAc,IAAI,MAAM,EAAC,aAAa;AAE3C,QAAM,MAAM,QAAQ,KAAK,aAAa,EAAE,EAAE,WAAW,MAAM,CAAC;AAC5D,QAAM,gBAAgB,KAAK,cAAc,KAAK,UAAU,MAAM,MAAM,EAAE,CAAC;AAEvE,MAAI,MAAM,iBAAiB;;;;;CAM7B,MAAM,OACJ,aACA,OACe;EACf,MAAM,OAAO,MAAM,KAAK,MAAM;AAE9B,OAAK,WAAW,eAAe;GAC7B,GAAG;GACH,8BAAa,IAAI,MAAM,EAAC,aAAa;GACtC;AAED,QAAM,KAAK,KAAK,KAAK;AACrB,MAAI,KAAK;GAAE;GAAa,SAAS,MAAM;GAAS,EAAE,mBAAmB;;;;;CAMvE,MAAM,OAAO,aAAoC;EAC/C,MAAM,OAAO,MAAM,KAAK,MAAM;AAE9B,MAAI,KAAK,WAAW,cAAc;AAChC,UAAO,KAAK,WAAW;AACvB,SAAM,KAAK,KAAK,KAAK;AACrB,OAAI,KAAK,EAAE,aAAa,EAAE,kCAAkC;;;;;;CAOhE,MAAM,IAAI,aAAyD;AAEjE,UAAO,MADY,KAAK,MAAM,EAClB,WAAW,gBAAgB;;;;;CAMzC,MAAM,IAAI,aAAuC;AAE/C,SAAO,gBAAe,MADH,KAAK,MAAM,EACH;;;;;CAM7B,MAAM,OAAsC;EAC1C,MAAM,OAAO,MAAM,KAAK,MAAM;AAC9B,SAAO,OAAO,OAAO,KAAK,WAAW;;;;;CAMvC,MAAM,OAAO,aAAmE;AAG9E,MAAI,CAAC,MAFe,KAAK,IAAI,YAAY,CAGvC,QAAO;GAAE,OAAO;GAAO,QAAQ;GAA6B;AAK9D,MAAI,CAAC,WAFU,KAAK,sBAAsB,EAAE,YAEtB,CAAC,CACrB,QAAO;GAAE,OAAO;GAAO,QAAQ;GAAiC;AAMlE,SAAO,EAAE,OAAO,MAAM;;;;;CAMxB,MAAM,YAEJ;EACA,MAAM,OAAO,MAAM,KAAK,MAAM;EAC9B,MAAM,UAA2E,EAAE;AAEnF,OAAK,MAAM,eAAe,OAAO,KAAK,KAAK,WAAW,CACpD,SAAQ,KAAK;GACX;GACA,GAAI,MAAM,KAAK,OAAO,YAAY;GACnC,CAAC;AAGJ,SAAO;;;;;CAMT,MAAM,SAAsC;EAC1C,MAAM,OAAO,MAAM,KAAK,MAAM;AAG9B,OAAK,MAAM,CAAC,gBAAgB,OAAO,QAAQ,KAAK,WAAW,CAGzD,KAAI,CAAC,WAFU,KAAK,sBAAsB,EAAE,YAEtB,CAAC,CACrB,KAAI,KAAK,EAAE,aAAa,EAAE,0CAA0C;AAIxE,OAAK,+BAAc,IAAI,MAAM,EAAC,aAAa;AAC3C,QAAM,KAAK,KAAK,KAAK;AAErB,MAAI,KAAK,kBAAkB;AAC3B,SAAO;;;;;CAMT,aAAa,kBAAkB,UAAmC;EAChE,MAAM,EAAE,aAAa,MAAM,OAAO;EAClC,MAAM,UAAU,MAAM,SAAS,SAAS;AACxC,SAAO,YAAY,WAAW,SAAS,CAAC,OAAO,QAAQ,CAAC,OAAO,SAAS;;;AAQ5E,IAAI;AAEJ,SAAgB,4BACd,cAC0B;AAC1B,KAAI,CAAC,cACH,iBAAgB,IAAI,yBAAyB,aAAa;AAE5D,QAAO;;AAGT,SAAgB,gCAAsC;AACpD,iBAAgB,KAAA;;AAOlB,eAAsB,sBACpB,cAC6B;AAE7B,QADgB,4BAA4B,aAC9B,CAAC,MAAM;;AAGvB,eAAsB,sBACpB,MACA,cACe;AAEf,QADgB,4BAA4B,aAC9B,CAAC,KAAK,KAAK"}

package/dist/src/gateway/auth.d.ts CHANGED Viewed

@@ -24,15 +24,6 @@ export declare function resolveGatewayAuth(params: {
  * Assert that gateway auth is properly configured.
  */
 export declare function assertGatewayAuthConfigured(auth: ResolvedGatewayAuth): void;
-/**
- * Constant-time string comparison to prevent timing attacks.
- *
- * Uses `crypto.timingSafeEqual` with padding so both buffers always have
- * the same byte length. The actual length is checked separately.
- *
- * @deprecated Use `safeEqualSecret` from `./security/secret-equal.js` directly.
- */
-export declare function safeCompare(a: string, b: string): boolean;
 /**
  * Validate a credential against configured auth using constant-time comparison.
  *

package/dist/src/gateway/auth.js CHANGED Viewed

@@ -40,17 +40,6 @@ function assertGatewayAuthConfigured(auth) {
 	if (auth.mode === "password" && !auth.password) throw new Error("Gateway auth mode is password, but no password was configured. Set gateway.auth.password in config or XOPC_GATEWAY_PASSWORD environment variable.");
 }
 /**
-* Constant-time string comparison to prevent timing attacks.
-*
-* Uses `crypto.timingSafeEqual` with padding so both buffers always have
-* the same byte length. The actual length is checked separately.
-*
-* @deprecated Use `safeEqualSecret` from `./security/secret-equal.js` directly.
-*/
-function safeCompare(a, b) {
-	return safeEqualSecret(a, b);
-}
-/**
 * Validate a credential against configured auth using constant-time comparison.
 *
 * Works for both token and password modes — the caller extracts the credential
@@ -81,6 +70,6 @@ function extractToken(headers) {
 	if (apiKey) return Array.isArray(apiKey) ? apiKey[0] : apiKey;
 }
 //#endregion
-export { assertGatewayAuthConfigured, extractToken, resolveGatewayAuth, safeCompare, validateToken };
+export { assertGatewayAuthConfigured, extractToken, resolveGatewayAuth, validateToken };
 //# sourceMappingURL=auth.js.map

package/dist/src/gateway/auth.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"auth.js","names":[],"sources":["../../../src/gateway/auth.ts"],"sourcesContent":["import crypto from 'crypto';\nimport type { GatewayAuthConfig } from '../config/schema.js';\nimport { safeEqualSecret } from './security/secret-equal.js';\n\n/*\n Resolved gateway authentication configuration.\n \n Supports three modes:\n * - `none`: no authentication (local dev only)\n * - `token`: Bearer token authentication (default)\n * - `password`: password-based authentication (for simpler setups)\n /\nexport interface ResolvedGatewayAuth {\n mode: 'none' \| 'token' \| 'password';\n token?: string;\n password?: string;\n}\n\n/\n Resolve gateway authentication configuration.\n * Priority: env vars > config > defaults\n /\nexport function resolveGatewayAuth(params: {\n authConfig?: GatewayAuthConfig \| null;\n env?: NodeJS.ProcessEnv;\n}): ResolvedGatewayAuth {\n const env = params.env ?? process.env;\n const config: GatewayAuthConfig = params.authConfig ?? { mode: 'token' };\n\n // Environment variables take precedence\n const envMode = env.XOPC_GATEWAY_AUTH_MODE;\n const envToken = env.XOPC_GATEWAY_TOKEN;\n const envPassword = env.XOPC_GATEWAY_PASSWORD;\n\n // Resolve mode\n let mode: ResolvedGatewayAuth['mode'] = 'token';\n if (envMode === 'none' \|\| envMode === 'token' \|\| envMode === 'password') {\n mode = envMode;\n } else if (config.mode === 'none' \|\| config.mode === 'password') {\n mode = config.mode;\n }\n\n // Ambiguity detection: reject conflicting credential types\n const hasToken = Boolean(envToken \|\| config.token);\n const hasPassword = Boolean(envPassword \|\| config.password);\n if (hasToken && hasPassword) {\n throw new Error(\n 'Invalid config: both gateway.auth.token and gateway.auth.password are set. ' +\n 'Choose one authentication mode: \"token\" (Bearer header) or \"password\".',\n );\n }\n\n // Resolve token\n let token: string \| undefined;\n if (mode === 'token') {\n if (envToken) {\n token = envToken;\n } else if (config.token) {\n token = config.token;\n } else {\n // Auto-generate token if not provided\n token = crypto.randomBytes(24).toString('hex');\n }\n }\n\n // Resolve password\n let password: string \| undefined;\n if (mode === 'password') {\n if (envPassword) {\n password = envPassword;\n } else if (config.password) {\n password = config.password;\n }\n }\n\n return { mode, token, password };\n}\n\n/\n Assert that gateway auth is properly configured.\n /\nexport function assertGatewayAuthConfigured(auth: ResolvedGatewayAuth): void {\n if (auth.mode === 'token' && !auth.token) {\n throw new Error(\n 'Gateway auth mode is token, but no token was configured. ' +\n 'Set gateway.auth.token in config or XOPC_GATEWAY_TOKEN environment variable.',\n );\n }\n if (auth.mode === 'password' && !auth.password) {\n throw new Error(\n 'Gateway auth mode is password, but no password was configured. ' +\n 'Set gateway.auth.password in config or XOPC_GATEWAY_PASSWORD environment variable.',\n );\n }\n}\n\n/\n Constant-time string comparison to prevent timing attacks.\n \n Uses `crypto.timingSafeEqual` with padding so both buffers always have\n * the same byte length. The actual length is checked separately.\n \n @deprecated Use `safeEqualSecret` from `./security/secret-equal.js` directly.\n /\nexport function safeCompare(a: string, b: string): boolean {\n return safeEqualSecret(a, b);\n}\n\n/\n Validate a credential against configured auth using constant-time comparison.\n \n Works for both token and password modes — the caller extracts the credential\n * from the appropriate transport (header, query param, etc.).\n /\nexport function validateToken(auth: ResolvedGatewayAuth, providedCredential?: string \| null): boolean {\n if (auth.mode === 'none') {\n return true;\n }\n\n if (!providedCredential) {\n return false;\n }\n\n if (auth.mode === 'password') {\n if (!auth.password) return false;\n return safeEqualSecret(auth.password, providedCredential);\n }\n\n // Default: token mode\n if (!auth.token) return false;\n return safeEqualSecret(auth.token, providedCredential);\n}\n\n/\n Extract token from request headers.\n * Supports: Authorization: Bearer <token>, X-Api-Key: <token>\n */\nexport function extractToken(headers?: Record<string, string \| string[] \| undefined>): string \| undefined {\n if (!headers) return undefined;\n\n // Authorization: Bearer <token>\n const authHeader = headers.authorization;\n if (authHeader) {\n const value = Array.isArray(authHeader) ? authHeader[0] : authHeader;\n if (value?.startsWith('Bearer ')) {\n return value.slice(7);\n }\n }\n\n // X-Api-Key: <token>\n const apiKey = headers['x-api-key'];\n if (apiKey) {\n return Array.isArray(apiKey) ? apiKey[0] : apiKey;\n }\n\n return undefined;\n}\n"],"mappings":";;;;;;;AAsBA,SAAgB,mBAAmB,QAGX;CACtB,MAAM,MAAM,OAAO,OAAO,QAAQ;CAClC,MAAM,SAA4B,OAAO,cAAc,EAAE,MAAM,SAAS;CAGxE,MAAM,UAAU,IAAI;CACpB,MAAM,WAAW,IAAI;CACrB,MAAM,cAAc,IAAI;CAGxB,IAAI,OAAoC;AACxC,KAAI,YAAY,UAAU,YAAY,WAAW,YAAY,WAC3D,QAAO;UACE,OAAO,SAAS,UAAU,OAAO,SAAS,WACnD,QAAO,OAAO;CAIhB,MAAM,WAAW,QAAQ,YAAY,OAAO,MAAM;CAClD,MAAM,cAAc,QAAQ,eAAe,OAAO,SAAS;AAC3D,KAAI,YAAY,YACd,OAAM,IAAI,MACR,wJAED;CAIH,IAAI;AACJ,KAAI,SAAS,QACX,KAAI,SACF,SAAQ;UACC,OAAO,MAChB,SAAQ,OAAO;KAGf,SAAQ,OAAO,YAAY,GAAG,CAAC,SAAS,MAAM;CAKlD,IAAI;AACJ,KAAI,SAAS;MACP,YACF,YAAW;WACF,OAAO,SAChB,YAAW,OAAO;;AAItB,QAAO;EAAE;EAAM;EAAO;EAAU;;;;;AAMlC,SAAgB,4BAA4B,MAAiC;AAC3E,KAAI,KAAK,SAAS,WAAW,CAAC,KAAK,MACjC,OAAM,IAAI,MACR,wIAED;AAEH,KAAI,KAAK,SAAS,cAAc,CAAC,KAAK,SACpC,OAAM,IAAI,MACR,oJAED~~;;;;;;;;;;AAYL,SAAgB,YAAY,GAAW,GAAoB;AACzD,QAAO,gBAAgB,GAAG,EAAE~~;;;;;;;;~~AAS9B~~,SAAgB,cAAc,MAA2B,oBAA6C;AACpG,KAAI,KAAK,SAAS,OAChB,QAAO;AAGT,KAAI,CAAC,mBACH,QAAO;AAGT,KAAI,KAAK,SAAS,YAAY;AAC5B,MAAI,CAAC,KAAK,SAAU,QAAO;AAC3B,SAAO,gBAAgB,KAAK,UAAU,mBAAmB;;AAI3D,KAAI,CAAC,KAAK,MAAO,QAAO;AACxB,QAAO,gBAAgB,KAAK,OAAO,mBAAmB;;;;;;AAOxD,SAAgB,aAAa,SAA6E;AACxG,KAAI,CAAC,QAAS,QAAO,KAAA;CAGrB,MAAM,aAAa,QAAQ;AAC3B,KAAI,YAAY;EACd,MAAM,QAAQ,MAAM,QAAQ,WAAW,GAAG,WAAW,KAAK;AAC1D,MAAI,OAAO,WAAW,UAAU,CAC9B,QAAO,MAAM,MAAM,EAAE;;CAKzB,MAAM,SAAS,QAAQ;AACvB,KAAI,OACF,QAAO,MAAM,QAAQ,OAAO,GAAG,OAAO,KAAK"}
1	+ {"version":3,"file":"auth.js","names":[],"sources":["../../../src/gateway/auth.ts"],"sourcesContent":["import crypto from 'crypto';\nimport type { GatewayAuthConfig } from '../config/schema.js';\nimport { safeEqualSecret } from './security/secret-equal.js';\n\n/*\n Resolved gateway authentication configuration.\n \n Supports three modes:\n * - `none`: no authentication (local dev only)\n * - `token`: Bearer token authentication (default)\n * - `password`: password-based authentication (for simpler setups)\n /\nexport interface ResolvedGatewayAuth {\n mode: 'none' \| 'token' \| 'password';\n token?: string;\n password?: string;\n}\n\n/\n Resolve gateway authentication configuration.\n * Priority: env vars > config > defaults\n /\nexport function resolveGatewayAuth(params: {\n authConfig?: GatewayAuthConfig \| null;\n env?: NodeJS.ProcessEnv;\n}): ResolvedGatewayAuth {\n const env = params.env ?? process.env;\n const config: GatewayAuthConfig = params.authConfig ?? { mode: 'token' };\n\n // Environment variables take precedence\n const envMode = env.XOPC_GATEWAY_AUTH_MODE;\n const envToken = env.XOPC_GATEWAY_TOKEN;\n const envPassword = env.XOPC_GATEWAY_PASSWORD;\n\n // Resolve mode\n let mode: ResolvedGatewayAuth['mode'] = 'token';\n if (envMode === 'none' \|\| envMode === 'token' \|\| envMode === 'password') {\n mode = envMode;\n } else if (config.mode === 'none' \|\| config.mode === 'password') {\n mode = config.mode;\n }\n\n // Ambiguity detection: reject conflicting credential types\n const hasToken = Boolean(envToken \|\| config.token);\n const hasPassword = Boolean(envPassword \|\| config.password);\n if (hasToken && hasPassword) {\n throw new Error(\n 'Invalid config: both gateway.auth.token and gateway.auth.password are set. ' +\n 'Choose one authentication mode: \"token\" (Bearer header) or \"password\".',\n );\n }\n\n // Resolve token\n let token: string \| undefined;\n if (mode === 'token') {\n if (envToken) {\n token = envToken;\n } else if (config.token) {\n token = config.token;\n } else {\n // Auto-generate token if not provided\n token = crypto.randomBytes(24).toString('hex');\n }\n }\n\n // Resolve password\n let password: string \| undefined;\n if (mode === 'password') {\n if (envPassword) {\n password = envPassword;\n } else if (config.password) {\n password = config.password;\n }\n }\n\n return { mode, token, password };\n}\n\n/\n Assert that gateway auth is properly configured.\n /\nexport function assertGatewayAuthConfigured(auth: ResolvedGatewayAuth): void {\n if (auth.mode === 'token' && !auth.token) {\n throw new Error(\n 'Gateway auth mode is token, but no token was configured. ' +\n 'Set gateway.auth.token in config or XOPC_GATEWAY_TOKEN environment variable.',\n );\n }\n if (auth.mode === 'password' && !auth.password) {\n throw new Error(\n 'Gateway auth mode is password, but no password was configured. ' +\n 'Set gateway.auth.password in config or XOPC_GATEWAY_PASSWORD environment variable.',\n );\n }\n}\n\n/\n Validate a credential against configured auth using constant-time comparison.\n \n Works for both token and password modes — the caller extracts the credential\n * from the appropriate transport (header, query param, etc.).\n /\nexport function validateToken(auth: ResolvedGatewayAuth, providedCredential?: string \| null): boolean {\n if (auth.mode === 'none') {\n return true;\n }\n\n if (!providedCredential) {\n return false;\n }\n\n if (auth.mode === 'password') {\n if (!auth.password) return false;\n return safeEqualSecret(auth.password, providedCredential);\n }\n\n // Default: token mode\n if (!auth.token) return false;\n return safeEqualSecret(auth.token, providedCredential);\n}\n\n/\n Extract token from request headers.\n * Supports: Authorization: Bearer <token>, X-Api-Key: <token>\n */\nexport function extractToken(headers?: Record<string, string \| string[] \| undefined>): string \| undefined {\n if (!headers) return undefined;\n\n // Authorization: Bearer <token>\n const authHeader = headers.authorization;\n if (authHeader) {\n const value = Array.isArray(authHeader) ? authHeader[0] : authHeader;\n if (value?.startsWith('Bearer ')) {\n return value.slice(7);\n }\n }\n\n // X-Api-Key: <token>\n const apiKey = headers['x-api-key'];\n if (apiKey) {\n return Array.isArray(apiKey) ? apiKey[0] : apiKey;\n }\n\n return undefined;\n}\n"],"mappings":";;;;;;;AAsBA,SAAgB,mBAAmB,QAGX;CACtB,MAAM,MAAM,OAAO,OAAO,QAAQ;CAClC,MAAM,SAA4B,OAAO,cAAc,EAAE,MAAM,SAAS;CAGxE,MAAM,UAAU,IAAI;CACpB,MAAM,WAAW,IAAI;CACrB,MAAM,cAAc,IAAI;CAGxB,IAAI,OAAoC;AACxC,KAAI,YAAY,UAAU,YAAY,WAAW,YAAY,WAC3D,QAAO;UACE,OAAO,SAAS,UAAU,OAAO,SAAS,WACnD,QAAO,OAAO;CAIhB,MAAM,WAAW,QAAQ,YAAY,OAAO,MAAM;CAClD,MAAM,cAAc,QAAQ,eAAe,OAAO,SAAS;AAC3D,KAAI,YAAY,YACd,OAAM,IAAI,MACR,wJAED;CAIH,IAAI;AACJ,KAAI,SAAS,QACX,KAAI,SACF,SAAQ;UACC,OAAO,MAChB,SAAQ,OAAO;KAGf,SAAQ,OAAO,YAAY,GAAG,CAAC,SAAS,MAAM;CAKlD,IAAI;AACJ,KAAI,SAAS;MACP,YACF,YAAW;WACF,OAAO,SAChB,YAAW,OAAO;;AAItB,QAAO;EAAE;EAAM;EAAO;EAAU;;;;;AAMlC,SAAgB,4BAA4B,MAAiC;AAC3E,KAAI,KAAK,SAAS,WAAW,CAAC,KAAK,MACjC,OAAM,IAAI,MACR,wIAED;AAEH,KAAI,KAAK,SAAS,cAAc,CAAC,KAAK,SACpC,OAAM,IAAI,MACR,oJAED;;;;;;;;AAUL,SAAgB,cAAc,MAA2B,oBAA6C;AACpG,KAAI,KAAK,SAAS,OAChB,QAAO;AAGT,KAAI,CAAC,mBACH,QAAO;AAGT,KAAI,KAAK,SAAS,YAAY;AAC5B,MAAI,CAAC,KAAK,SAAU,QAAO;AAC3B,SAAO,gBAAgB,KAAK,UAAU,mBAAmB;;AAI3D,KAAI,CAAC,KAAK,MAAO,QAAO;AACxB,QAAO,gBAAgB,KAAK,OAAO,mBAAmB;;;;;;AAOxD,SAAgB,aAAa,SAA6E;AACxG,KAAI,CAAC,QAAS,QAAO,KAAA;CAGrB,MAAM,aAAa,QAAQ;AAC3B,KAAI,YAAY;EACd,MAAM,QAAQ,MAAM,QAAQ,WAAW,GAAG,WAAW,KAAK;AAC1D,MAAI,OAAO,WAAW,UAAU,CAC9B,QAAO,MAAM,MAAM,EAAE;;CAKzB,MAAM,SAAS,QAAQ;AACvB,KAAI,OACF,QAAO,MAAM,QAAQ,OAAO,GAAG,OAAO,KAAK"}

package/dist/src/gateway/hono/lib/config-payload.d.ts CHANGED Viewed

@@ -167,9 +167,9 @@ export declare function buildSafeWebConfigPayload(service: GatewayService): Prom
     tts: {
         enabled: boolean;
         provider: "openai" | "alibaba" | "edge" | "minimax";
+        trigger: "off" | "always" | "inbound" | "tagged";
         maxTextLength: number;
         timeoutMs: number;
-        trigger?: "off" | "always" | "inbound" | "tagged";
         fallback?: {
             enabled: boolean;
             order: ("openai" | "alibaba" | "edge" | "minimax")[];

package/dist/src/gateway/hono/lib/extension-store.js CHANGED Viewed

@@ -1,7 +1,9 @@
+import { init_write_file_atomic, writeTextAtomic } from "../../../infra/write-file-atomic.js";
 import { join } from "node:path";
 import { homedir } from "node:os";
-import { mkdir, readFile, writeFile } from "node:fs/promises";
+import { readFile } from "node:fs/promises";
 //#region src/gateway/hono/lib/extension-store.ts
+init_write_file_atomic();
 /** Extension UI: write-through JSON KV per namespace under ~/.xopc/extensions/{namespace}/storage.json */
 const extensionStoreCache = /* @__PURE__ */ new Map();
 function getExtensionStorePath(namespace) {
@@ -24,9 +26,7 @@ async function loadExtensionStore(namespace) {
 	}
 }
 async function saveExtensionStore(namespace, data) {
-	const filePath = getExtensionStorePath(namespace);
-	await mkdir(join(filePath, ".."), { recursive: true });
-	await writeFile(filePath, JSON.stringify(data, null, 2), "utf-8");
+	await writeTextAtomic(getExtensionStorePath(namespace), JSON.stringify(data, null, 2));
 	extensionStoreCache.set(namespace, data);
 }
 //#endregion

package/dist/src/gateway/hono/lib/extension-store.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"extension-store.js","names":[],"sources":["../../../../../src/gateway/hono/lib/extension-store.ts"],"sourcesContent":["import { ~~mkdir,~~ readFile, ~~writeFile~~ } from 'node:fs/promises';\nimport { homedir } from 'node:os';\nimport { join } from 'node:path';\n\n/** Extension UI: write-through JSON KV per namespace under ~/.xopc/extensions/{namespace}/storage.json */\nconst extensionStoreCache = new Map<string, Record<string, unknown>>();\n\nfunction getExtensionStorePath(namespace: string): string {\n const safeNamespace = namespace.replace(/[^a-zA-Z0-9_-]/g, '_');\n return join(homedir(), '.xopc', 'extensions', safeNamespace, 'storage.json');\n}\n\nexport async function loadExtensionStore(namespace: string): Promise<Record<string, unknown>> {\n const cached = extensionStoreCache.get(namespace);\n if (cached) return cached;\n\n const filePath = getExtensionStorePath(namespace);\n try {\n const raw = await readFile(filePath, 'utf-8');\n const data = JSON.parse(raw) as Record<string, unknown>;\n extensionStoreCache.set(namespace, data);\n return data;\n } catch {\n const empty: Record<string, unknown> = {};\n extensionStoreCache.set(namespace, empty);\n return empty;\n }\n}\n\nexport async function saveExtensionStore(namespace: string, data: Record<string, unknown>): Promise<void> {\n const filePath = getExtensionStorePath(namespace);\n await ~~mkdir~~(~~join(~~filePath, ~~'..'), { recursive: true });\n await writeFile(filePath,~~ JSON.stringify(data, null, 2)~~, 'utf-8'~~);\n extensionStoreCache.set(namespace, data);\n}\n"],"mappings":";;;;;~~AAKA~~,MAAM,sCAAsB,IAAI,KAAsC;AAEtE,SAAS,sBAAsB,WAA2B;CACxD,MAAM,gBAAgB,UAAU,QAAQ,mBAAmB,IAAI;AAC/D,QAAO,KAAK,SAAS,EAAE,SAAS,cAAc,eAAe,eAAe;;AAG9E,eAAsB,mBAAmB,WAAqD;CAC5F,MAAM,SAAS,oBAAoB,IAAI,UAAU;AACjD,KAAI,OAAQ,QAAO;CAEnB,MAAM,WAAW,sBAAsB,UAAU;AACjD,KAAI;EACF,MAAM,MAAM,MAAM,SAAS,UAAU,QAAQ;EAC7C,MAAM,OAAO,KAAK,MAAM,IAAI;AAC5B,sBAAoB,IAAI,WAAW,KAAK;AACxC,SAAO;SACD;EACN,MAAM,QAAiC,EAAE;AACzC,sBAAoB,IAAI,WAAW,MAAM;AACzC,SAAO;;;AAIX,eAAsB,mBAAmB,WAAmB,MAA8C;~~CACxG~~,~~MAAM~~,~~WAAW~~,sBAAsB,~~UAAU;AACjD~~,~~OAAM,MAAM,KAAK,UAAU,KAAK,~~EAAE,~~EAAE,WAAW,MAAM,CAAC;AACtD,OAAM,UAAU,UAAU,~~KAAK,UAAU,MAAM,MAAM,EAAE,~~EAAE,QAAQ~~;~~AACjE~~,qBAAoB,IAAI,WAAW,KAAK"}
1	+ {"version":3,"file":"extension-store.js","names":[],"sources":["../../../../../src/gateway/hono/lib/extension-store.ts"],"sourcesContent":["import { readFile } from 'node:fs/promises';\nimport { writeTextAtomic } from '../../../infra/write-file-atomic.js';\nimport { homedir } from 'node:os';\nimport { join } from 'node:path';\n\n/** Extension UI: write-through JSON KV per namespace under ~/.xopc/extensions/{namespace}/storage.json */\nconst extensionStoreCache = new Map<string, Record<string, unknown>>();\n\nfunction getExtensionStorePath(namespace: string): string {\n const safeNamespace = namespace.replace(/[^a-zA-Z0-9_-]/g, '_');\n return join(homedir(), '.xopc', 'extensions', safeNamespace, 'storage.json');\n}\n\nexport async function loadExtensionStore(namespace: string): Promise<Record<string, unknown>> {\n const cached = extensionStoreCache.get(namespace);\n if (cached) return cached;\n\n const filePath = getExtensionStorePath(namespace);\n try {\n const raw = await readFile(filePath, 'utf-8');\n const data = JSON.parse(raw) as Record<string, unknown>;\n extensionStoreCache.set(namespace, data);\n return data;\n } catch {\n const empty: Record<string, unknown> = {};\n extensionStoreCache.set(namespace, empty);\n return empty;\n }\n}\n\nexport async function saveExtensionStore(namespace: string, data: Record<string, unknown>): Promise<void> {\n const filePath = getExtensionStorePath(namespace);\n await writeTextAtomic(filePath, JSON.stringify(data, null, 2));\n extensionStoreCache.set(namespace, data);\n}\n"],"mappings":";;;;;wBACsE;;AAKtE,MAAM,sCAAsB,IAAI,KAAsC;AAEtE,SAAS,sBAAsB,WAA2B;CACxD,MAAM,gBAAgB,UAAU,QAAQ,mBAAmB,IAAI;AAC/D,QAAO,KAAK,SAAS,EAAE,SAAS,cAAc,eAAe,eAAe;;AAG9E,eAAsB,mBAAmB,WAAqD;CAC5F,MAAM,SAAS,oBAAoB,IAAI,UAAU;AACjD,KAAI,OAAQ,QAAO;CAEnB,MAAM,WAAW,sBAAsB,UAAU;AACjD,KAAI;EACF,MAAM,MAAM,MAAM,SAAS,UAAU,QAAQ;EAC7C,MAAM,OAAO,KAAK,MAAM,IAAI;AAC5B,sBAAoB,IAAI,WAAW,KAAK;AACxC,SAAO;SACD;EACN,MAAM,QAAiC,EAAE;AACzC,sBAAoB,IAAI,WAAW,MAAM;AACzC,SAAO;;;AAIX,eAAsB,mBAAmB,WAAmB,MAA8C;AAExG,OAAM,gBADW,sBAAsB,UACT,EAAE,KAAK,UAAU,MAAM,MAAM,EAAE,CAAC;AAC9D,qBAAoB,IAAI,WAAW,KAAK"}

package/dist/src/gateway/hono/routes/channels.js CHANGED Viewed

@@ -1,4 +1,7 @@
+import { init_write_file_atomic, writeTextAtomic } from "../../../infra/write-file-atomic.js";
+import { readFileSync } from "node:fs";
 //#region src/gateway/hono/routes/channels.ts
+init_write_file_atomic();
 const feishuSetupSessions = /* @__PURE__ */ new Map();
 async function startFeishuSetupPolling(sessionKey, service) {
 	const session = feishuSetupSessions.get(sessionKey);
@@ -15,9 +18,8 @@ async function startFeishuSetupPolling(sessionKey, service) {
 		session.phase = "done";
 		session.result = outcome.result;
 		try {
-			const fs = await import("node:fs");
 			const configPath = service.getHealth().configPath;
-			const raw = fs.readFileSync(configPath, "utf8");
+			const raw = readFileSync(configPath, "utf8");
 			const config = JSON.parse(raw);
 			const existingFeishu = config.channels?.feishu ?? {};
 			config.channels = {
@@ -31,7 +33,7 @@ async function startFeishuSetupPolling(sessionKey, service) {
 					connectionMode: existingFeishu.connectionMode || "websocket"
 				}
 			};
-			fs.writeFileSync(configPath, JSON.stringify(config, null, 2) + "\n", "utf8");
+			await writeTextAtomic(configPath, `${JSON.stringify(config, null, 2)}\n`);
 			await service.afterFeishuCredentialsPersisted();
 		} catch {}
 	} else {

package/dist/src/gateway/hono/routes/channels.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"channels.js","names":[],"sources":["../../../../../src/gateway/hono/routes/channels.ts"],"sourcesContent":["import type { Hono } from 'hono';\n\nimport type { GatewayService } from '../../service.js';\nimport type { AuthenticatedRouteDeps } from './deps.js';\n\ntype FeishuSetupDomain = 'feishu' \| 'lark';\n\ninterface FeishuSetupSession {\n deviceCode: string;\n domain: FeishuSetupDomain;\n intervalSec: number;\n expireInSec: number;\n createdAt: number;\n phase: 'idle' \| 'polling' \| 'scanned' \| 'done' \| 'error';\n result?: {\n appId: string;\n appSecret: string;\n domain: FeishuSetupDomain;\n openId?: string;\n };\n error?: string;\n}\n\nconst feishuSetupSessions = new Map<string, FeishuSetupSession>();\n\nasync function startFeishuSetupPolling(sessionKey: string, service: GatewayService): Promise<void> {\n const session = feishuSetupSessions.get(sessionKey);\n if (!session) return;\n\n const { pollAppRegistration } = await import(\n '../../../../extensions/feishu/src/auth/app-registration.js'\n );\n\n session.phase = 'polling';\n\n const outcome = await pollAppRegistration({\n deviceCode: session.deviceCode,\n intervalSec: session.intervalSec,\n expireInSec: session.expireInSec,\n initialDomain: session.domain,\n });\n\n if (outcome.status === 'success') {\n session.phase = 'done';\n session.result = outcome.result;\n try {\n const fs = await import('node:fs');\n const configPath = service.getHealth().configPath;\n const raw = fs.readFileSync(configPath, 'utf8');\n const config = JSON.parse(raw) as {\n channels?: Record<string, unknown>;\n };\n const existingFeishu = (config.channels?.feishu ?? {}) as Record<string, unknown>;\n\n config.channels = {\n ...config.channels,\n feishu: {\n ...existingFeishu,\n enabled: true,\n appId: outcome.result.appId,\n appSecret: outcome.result.appSecret,\n domain: outcome.result.domain,\n connectionMode: (existingFeishu.connectionMode as string) \|\| 'websocket',\n },\n };\n\n fs.writeFileSync(configPath, JSON.stringify(config, null, 2) + '\\n', 'utf8');\n await service.afterFeishuCredentialsPersisted();\n } catch {\n // Config write / reload failure is non-blocking; session still carries credentials for debugging.\n }\n } else {\n session.phase = 'error';\n session.error =\n outcome.status === 'access_denied'\n ? 'User denied authorization.'\n : outcome.status === 'expired'\n ? 'Session expired.'\n : outcome.status === 'timeout'\n ? 'Scan timed out.'\n : 'message' in outcome\n ? outcome.message\n : 'Unknown error.';\n }\n\n setTimeout(() => feishuSetupSessions.delete(sessionKey), 30_000);\n}\n\nexport function registerChannelRoutes(authenticated: Hono, deps: AuthenticatedRouteDeps): void {\n const { service, strictRateLimitMiddleware } = deps;\n\n authenticated.get('/api/channels/status', (c) => {\n const channels = service.getChannelsStatus();\n return c.json({ ok: true, payload: { channels } });\n });\n\n authenticated.post('/api/channels/weixin/login/start', strictRateLimitMiddleware, async (c) => {\n const body = await c.req.json().catch(() => ({}));\n const account =\n body && typeof body === 'object' && typeof (body as { account?: unknown }).account === 'string'\n ? (body as { account: string }).account.trim() \|\| undefined\n : undefined;\n const rawTimeout =\n body && typeof body === 'object' ? (body as { timeoutMs?: unknown }).timeoutMs : undefined;\n const timeoutMs =\n typeof rawTimeout === 'number' && Number.isFinite(rawTimeout) ? Math.max(60_000, rawTimeout) : undefined;\n\n const { startWeixinGatewayQrLogin } = await import('../../../channels/weixin/index.js');\n const result = await startWeixinGatewayQrLogin({\n configPath: service.getHealth().configPath,\n account,\n timeoutMs,\n onPersisted: async (r) => {\n if (r.ok) {\n await service.afterWeixinCredentialsPersisted();\n }\n },\n });\n\n if (result.ok === false) {\n return c.json(\n { ok: false, error: { code: 'WEIXIN_LOGIN_FAILED', message: result.message } },\n 400,\n );\n }\n return c.json({\n ok: true,\n payload: { sessionKey: result.sessionKey, qrcodeUrl: result.qrcodeUrl },\n });\n });\n\n authenticated.get('/api/channels/weixin/login/:sessionKey', async (c) => {\n const sessionKey = c.req.param('sessionKey')?.trim() ?? '';\n if (!sessionKey) {\n return c.json({ ok: false, error: { code: 'BAD_REQUEST', message: 'Missing sessionKey' } }, 400);\n }\n const { getWeixinGatewayQrLoginStatus } = await import('../../../channels/weixin/index.js');\n const status = getWeixinGatewayQrLoginStatus(sessionKey);\n return c.json({ ok: true, payload: { status } });\n });\n\n authenticated.post('/api/channels/feishu/setup/start', strictRateLimitMiddleware, async (c) => {\n const body = await c.req.json().catch(() => ({}));\n const rawDomain =\n body && typeof body === 'object' && typeof (body as { domain?: unknown }).domain === 'string'\n ? (body as { domain: string }).domain.trim().toLowerCase()\n : '';\n const domain: FeishuSetupDomain = rawDomain === 'lark' ? 'lark' : 'feishu';\n\n const { initAppRegistration, beginAppRegistration } = await import(\n '../../../../extensions/feishu/src/auth/app-registration.js'\n );\n\n const supported = await initAppRegistration(domain);\n if (!supported) {\n return c.json(\n {\n ok: false,\n error: { code: 'FEISHU_SCAN_NOT_SUPPORTED', message: 'Scan-to-create is not available.' },\n },\n 400,\n );\n }\n\n const begin = await beginAppRegistration(domain);\n\n const sessionKey = `feishu-setup-${Date.now()}-${Math.random().toString(36).slice(2, 8)}`;\n\n feishuSetupSessions.set(sessionKey, {\n deviceCode: begin.deviceCode,\n domain,\n intervalSec: begin.intervalSec,\n expireInSec: begin.expireInSec,\n createdAt: Date.now(),\n phase: 'idle',\n });\n\n void startFeishuSetupPolling(sessionKey, service);\n\n return c.json({\n ok: true,\n payload: { sessionKey, qrUrl: begin.qrUrl },\n });\n });\n\n authenticated.get('/api/channels/feishu/setup/:sessionKey', async (c) => {\n const sessionKey = c.req.param('sessionKey')?.trim() ?? '';\n if (!sessionKey) {\n return c.json({ ok: false, error: { code: 'BAD_REQUEST', message: 'Missing sessionKey' } }, 400);\n }\n\n const session = feishuSetupSessions.get(sessionKey);\n if (!session) {\n return c.json({\n ok: true,\n payload: {\n status: { phase: 'unknown' as const, message: 'Session not found or expired.' },\n },\n });\n }\n\n if (session.phase === 'done' && session.result) {\n return c.json({\n ok: true,\n payload: {\n status: {\n phase: 'done' as const,\n ok: true,\n appId: session.result.appId,\n domain: session.result.domain,\n openId: session.result.openId,\n },\n },\n });\n }\n\n if (session.phase === 'error') {\n return c.json({\n ok: true,\n payload: {\n status: {\n phase: 'done' as const,\n ok: false,\n message: session.error ?? 'Setup failed.',\n },\n },\n });\n }\n\n return c.json({\n ok: true,\n payload: {\n status: { phase: 'polling' as const },\n },\n });\n });\n}\n"],"mappings":";AAuBA,MAAM,sCAAsB,IAAI,KAAiC;AAEjE,eAAe,wBAAwB,YAAoB,SAAwC;CACjG,MAAM,UAAU,oBAAoB,IAAI,WAAW;AACnD,KAAI,CAAC,QAAS;CAEd,MAAM,EAAE,wBAAwB,MAAM,OACpC;AAGF,SAAQ,QAAQ;CAEhB,MAAM,UAAU,MAAM,oBAAoB;EACxC,YAAY,QAAQ;EACpB,aAAa,QAAQ;EACrB,aAAa,QAAQ;EACrB,eAAe,QAAQ;EACxB,CAAC;AAEF,KAAI,QAAQ,WAAW,WAAW;AAChC,UAAQ,QAAQ;AAChB,UAAQ,SAAS,QAAQ;AACzB,MAAI;GACF,MAAM,KAAK,MAAM,OAAO;GACxB,MAAM,aAAa,QAAQ,WAAW,CAAC;GACvC,MAAM,MAAM,GAAG,aAAa,YAAY,OAAO;GAC/C,MAAM,SAAS,KAAK,MAAM,IAAI;GAG9B,MAAM,iBAAkB,OAAO,UAAU,UAAU,EAAE;AAErD,UAAO,WAAW;IAChB,GAAG,OAAO;IACV,QAAQ;KACN,GAAG;KACH,SAAS;KACT,OAAO,QAAQ,OAAO;KACtB,WAAW,QAAQ,OAAO;KAC1B,QAAQ,QAAQ,OAAO;KACvB,gBAAiB,eAAe,kBAA6B;KAC9D;IACF;AAED,MAAG,cAAc,YAAY,KAAK,UAAU,QAAQ,MAAM,EAAE,GAAG,MAAM,OAAO;AAC5E,SAAM,QAAQ,iCAAiC;UACzC;QAGH;AACL,UAAQ,QAAQ;AAChB,UAAQ,QACN,QAAQ,WAAW,kBACf,+BACA,QAAQ,WAAW,YACjB,qBACA,QAAQ,WAAW,YACjB,oBACA,aAAa,UACX,QAAQ,UACR;;AAGd,kBAAiB,oBAAoB,OAAO,WAAW,EAAE,IAAO;;AAGlE,SAAgB,sBAAsB,eAAqB,MAAoC;CAC7F,MAAM,EAAE,SAAS,8BAA8B;AAE/C,eAAc,IAAI,yBAAyB,MAAM;EAC/C,MAAM,WAAW,QAAQ,mBAAmB;AAC5C,SAAO,EAAE,KAAK;GAAE,IAAI;GAAM,SAAS,EAAE,UAAU;GAAE,CAAC;GAClD;AAEF,eAAc,KAAK,oCAAoC,2BAA2B,OAAO,MAAM;EAC7F,MAAM,OAAO,MAAM,EAAE,IAAI,MAAM,CAAC,aAAa,EAAE,EAAE;EACjD,MAAM,UACJ,QAAQ,OAAO,SAAS,YAAY,OAAQ,KAA+B,YAAY,WAClF,KAA6B,QAAQ,MAAM,IAAI,KAAA,IAChD,KAAA;EACN,MAAM,aACJ,QAAQ,OAAO,SAAS,WAAY,KAAiC,YAAY,KAAA;EACnF,MAAM,YACJ,OAAO,eAAe,YAAY,OAAO,SAAS,WAAW,GAAG,KAAK,IAAI,KAAQ,WAAW,GAAG,KAAA;EAEjG,MAAM,EAAE,8BAA8B,MAAM,OAAO;EACnD,MAAM,SAAS,MAAM,0BAA0B;GAC7C,YAAY,QAAQ,WAAW,CAAC;GAChC;GACA;GACA,aAAa,OAAO,MAAM;AACxB,QAAI,EAAE,GACJ,OAAM,QAAQ,iCAAiC;;GAGpD,CAAC;AAEF,MAAI,OAAO,OAAO,MAChB,QAAO,EAAE,KACP;GAAE,IAAI;GAAO,OAAO;IAAE,MAAM;IAAuB,SAAS,OAAO;IAAS;GAAE,EAC9E,IACD;AAEH,SAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS;IAAE,YAAY,OAAO;IAAY,WAAW,OAAO;IAAW;GACxE,CAAC;GACF;AAEF,eAAc,IAAI,0CAA0C,OAAO,MAAM;EACvE,MAAM,aAAa,EAAE,IAAI,MAAM,aAAa,EAAE,MAAM,IAAI;AACxD,MAAI,CAAC,WACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;IAAE,MAAM;IAAe,SAAS;IAAsB;GAAE,EAAE,IAAI;EAElG,MAAM,EAAE,kCAAkC,MAAM,OAAO;EACvD,MAAM,SAAS,8BAA8B,WAAW;AACxD,SAAO,EAAE,KAAK;GAAE,IAAI;GAAM,SAAS,EAAE,QAAQ;GAAE,CAAC;GAChD;AAEF,eAAc,KAAK,oCAAoC,2BAA2B,OAAO,MAAM;EAC7F,MAAM,OAAO,MAAM,EAAE,IAAI,MAAM,CAAC,aAAa,EAAE,EAAE;EAKjD,MAAM,UAHJ,QAAQ,OAAO,SAAS,YAAY,OAAQ,KAA8B,WAAW,WAChF,KAA4B,OAAO,MAAM,CAAC,aAAa,GACxD,QAC0C,SAAS,SAAS;EAElE,MAAM,EAAE,qBAAqB,yBAAyB,MAAM,OAC1D;AAIF,MAAI,CAAC,MADmB,oBAAoB,OAAO,CAEjD,QAAO,EAAE,KACP;GACE,IAAI;GACJ,OAAO;IAAE,MAAM;IAA6B,SAAS;IAAoC;GAC1F,EACD,IACD;EAGH,MAAM,QAAQ,MAAM,qBAAqB,OAAO;EAEhD,MAAM,aAAa,gBAAgB,KAAK,KAAK,CAAC,GAAG,KAAK,QAAQ,CAAC,SAAS,GAAG,CAAC,MAAM,GAAG,EAAE;AAEvF,sBAAoB,IAAI,YAAY;GAClC,YAAY,MAAM;GAClB;GACA,aAAa,MAAM;GACnB,aAAa,MAAM;GACnB,WAAW,KAAK,KAAK;GACrB,OAAO;GACR,CAAC;AAEG,0BAAwB,YAAY,QAAQ;AAEjD,SAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS;IAAE;IAAY,OAAO,MAAM;IAAO;GAC5C,CAAC;GACF;AAEF,eAAc,IAAI,0CAA0C,OAAO,MAAM;EACvE,MAAM,aAAa,EAAE,IAAI,MAAM,aAAa,EAAE,MAAM,IAAI;AACxD,MAAI,CAAC,WACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;IAAE,MAAM;IAAe,SAAS;IAAsB;GAAE,EAAE,IAAI;EAGlG,MAAM,UAAU,oBAAoB,IAAI,WAAW;AACnD,MAAI,CAAC,QACH,QAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS,EACP,QAAQ;IAAE,OAAO;IAAoB,SAAS;IAAiC,EAChF;GACF,CAAC;AAGJ,MAAI,QAAQ,UAAU,UAAU,QAAQ,OACtC,QAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS,EACP,QAAQ;IACN,OAAO;IACP,IAAI;IACJ,OAAO,QAAQ,OAAO;IACtB,QAAQ,QAAQ,OAAO;IACvB,QAAQ,QAAQ,OAAO;IACxB,EACF;GACF,CAAC;AAGJ,MAAI,QAAQ,UAAU,QACpB,QAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS,EACP,QAAQ;IACN,OAAO;IACP,IAAI;IACJ,SAAS,QAAQ,SAAS;IAC3B,EACF;GACF,CAAC;AAGJ,SAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS,EACP,QAAQ,EAAE,OAAO,WAAoB,EACtC;GACF,CAAC;GACF"}
1	+ {"version":3,"file":"channels.js","names":[],"sources":["../../../../../src/gateway/hono/routes/channels.ts"],"sourcesContent":["import { readFileSync } from 'node:fs';\n\nimport type { Hono } from 'hono';\n\nimport { writeTextAtomic } from '../../../infra/write-file-atomic.js';\nimport type { GatewayService } from '../../service.js';\nimport type { AuthenticatedRouteDeps } from './deps.js';\n\ntype FeishuSetupDomain = 'feishu' \| 'lark';\n\ninterface FeishuSetupSession {\n deviceCode: string;\n domain: FeishuSetupDomain;\n intervalSec: number;\n expireInSec: number;\n createdAt: number;\n phase: 'idle' \| 'polling' \| 'scanned' \| 'done' \| 'error';\n result?: {\n appId: string;\n appSecret: string;\n domain: FeishuSetupDomain;\n openId?: string;\n };\n error?: string;\n}\n\nconst feishuSetupSessions = new Map<string, FeishuSetupSession>();\n\nasync function startFeishuSetupPolling(sessionKey: string, service: GatewayService): Promise<void> {\n const session = feishuSetupSessions.get(sessionKey);\n if (!session) return;\n\n const { pollAppRegistration } = await import(\n '../../../../extensions/feishu/src/auth/app-registration.js'\n );\n\n session.phase = 'polling';\n\n const outcome = await pollAppRegistration({\n deviceCode: session.deviceCode,\n intervalSec: session.intervalSec,\n expireInSec: session.expireInSec,\n initialDomain: session.domain,\n });\n\n if (outcome.status === 'success') {\n session.phase = 'done';\n session.result = outcome.result;\n try {\n const configPath = service.getHealth().configPath;\n const raw = readFileSync(configPath, 'utf8');\n const config = JSON.parse(raw) as {\n channels?: Record<string, unknown>;\n };\n const existingFeishu = (config.channels?.feishu ?? {}) as Record<string, unknown>;\n\n config.channels = {\n ...config.channels,\n feishu: {\n ...existingFeishu,\n enabled: true,\n appId: outcome.result.appId,\n appSecret: outcome.result.appSecret,\n domain: outcome.result.domain,\n connectionMode: (existingFeishu.connectionMode as string) \|\| 'websocket',\n },\n };\n\n await writeTextAtomic(configPath, `${JSON.stringify(config, null, 2)}\\n`);\n await service.afterFeishuCredentialsPersisted();\n } catch {\n // Config write / reload failure is non-blocking; session still carries credentials for debugging.\n }\n } else {\n session.phase = 'error';\n session.error =\n outcome.status === 'access_denied'\n ? 'User denied authorization.'\n : outcome.status === 'expired'\n ? 'Session expired.'\n : outcome.status === 'timeout'\n ? 'Scan timed out.'\n : 'message' in outcome\n ? outcome.message\n : 'Unknown error.';\n }\n\n setTimeout(() => feishuSetupSessions.delete(sessionKey), 30_000);\n}\n\nexport function registerChannelRoutes(authenticated: Hono, deps: AuthenticatedRouteDeps): void {\n const { service, strictRateLimitMiddleware } = deps;\n\n authenticated.get('/api/channels/status', (c) => {\n const channels = service.getChannelsStatus();\n return c.json({ ok: true, payload: { channels } });\n });\n\n authenticated.post('/api/channels/weixin/login/start', strictRateLimitMiddleware, async (c) => {\n const body = await c.req.json().catch(() => ({}));\n const account =\n body && typeof body === 'object' && typeof (body as { account?: unknown }).account === 'string'\n ? (body as { account: string }).account.trim() \|\| undefined\n : undefined;\n const rawTimeout =\n body && typeof body === 'object' ? (body as { timeoutMs?: unknown }).timeoutMs : undefined;\n const timeoutMs =\n typeof rawTimeout === 'number' && Number.isFinite(rawTimeout) ? Math.max(60_000, rawTimeout) : undefined;\n\n const { startWeixinGatewayQrLogin } = await import('../../../channels/weixin/index.js');\n const result = await startWeixinGatewayQrLogin({\n configPath: service.getHealth().configPath,\n account,\n timeoutMs,\n onPersisted: async (r) => {\n if (r.ok) {\n await service.afterWeixinCredentialsPersisted();\n }\n },\n });\n\n if (result.ok === false) {\n return c.json(\n { ok: false, error: { code: 'WEIXIN_LOGIN_FAILED', message: result.message } },\n 400,\n );\n }\n return c.json({\n ok: true,\n payload: { sessionKey: result.sessionKey, qrcodeUrl: result.qrcodeUrl },\n });\n });\n\n authenticated.get('/api/channels/weixin/login/:sessionKey', async (c) => {\n const sessionKey = c.req.param('sessionKey')?.trim() ?? '';\n if (!sessionKey) {\n return c.json({ ok: false, error: { code: 'BAD_REQUEST', message: 'Missing sessionKey' } }, 400);\n }\n const { getWeixinGatewayQrLoginStatus } = await import('../../../channels/weixin/index.js');\n const status = getWeixinGatewayQrLoginStatus(sessionKey);\n return c.json({ ok: true, payload: { status } });\n });\n\n authenticated.post('/api/channels/feishu/setup/start', strictRateLimitMiddleware, async (c) => {\n const body = await c.req.json().catch(() => ({}));\n const rawDomain =\n body && typeof body === 'object' && typeof (body as { domain?: unknown }).domain === 'string'\n ? (body as { domain: string }).domain.trim().toLowerCase()\n : '';\n const domain: FeishuSetupDomain = rawDomain === 'lark' ? 'lark' : 'feishu';\n\n const { initAppRegistration, beginAppRegistration } = await import(\n '../../../../extensions/feishu/src/auth/app-registration.js'\n );\n\n const supported = await initAppRegistration(domain);\n if (!supported) {\n return c.json(\n {\n ok: false,\n error: { code: 'FEISHU_SCAN_NOT_SUPPORTED', message: 'Scan-to-create is not available.' },\n },\n 400,\n );\n }\n\n const begin = await beginAppRegistration(domain);\n\n const sessionKey = `feishu-setup-${Date.now()}-${Math.random().toString(36).slice(2, 8)}`;\n\n feishuSetupSessions.set(sessionKey, {\n deviceCode: begin.deviceCode,\n domain,\n intervalSec: begin.intervalSec,\n expireInSec: begin.expireInSec,\n createdAt: Date.now(),\n phase: 'idle',\n });\n\n void startFeishuSetupPolling(sessionKey, service);\n\n return c.json({\n ok: true,\n payload: { sessionKey, qrUrl: begin.qrUrl },\n });\n });\n\n authenticated.get('/api/channels/feishu/setup/:sessionKey', async (c) => {\n const sessionKey = c.req.param('sessionKey')?.trim() ?? '';\n if (!sessionKey) {\n return c.json({ ok: false, error: { code: 'BAD_REQUEST', message: 'Missing sessionKey' } }, 400);\n }\n\n const session = feishuSetupSessions.get(sessionKey);\n if (!session) {\n return c.json({\n ok: true,\n payload: {\n status: { phase: 'unknown' as const, message: 'Session not found or expired.' },\n },\n });\n }\n\n if (session.phase === 'done' && session.result) {\n return c.json({\n ok: true,\n payload: {\n status: {\n phase: 'done' as const,\n ok: true,\n appId: session.result.appId,\n domain: session.result.domain,\n openId: session.result.openId,\n },\n },\n });\n }\n\n if (session.phase === 'error') {\n return c.json({\n ok: true,\n payload: {\n status: {\n phase: 'done' as const,\n ok: false,\n message: session.error ?? 'Setup failed.',\n },\n },\n });\n }\n\n return c.json({\n ok: true,\n payload: {\n status: { phase: 'polling' as const },\n },\n });\n });\n}\n"],"mappings":";;;wBAIsE;AAsBtE,MAAM,sCAAsB,IAAI,KAAiC;AAEjE,eAAe,wBAAwB,YAAoB,SAAwC;CACjG,MAAM,UAAU,oBAAoB,IAAI,WAAW;AACnD,KAAI,CAAC,QAAS;CAEd,MAAM,EAAE,wBAAwB,MAAM,OACpC;AAGF,SAAQ,QAAQ;CAEhB,MAAM,UAAU,MAAM,oBAAoB;EACxC,YAAY,QAAQ;EACpB,aAAa,QAAQ;EACrB,aAAa,QAAQ;EACrB,eAAe,QAAQ;EACxB,CAAC;AAEF,KAAI,QAAQ,WAAW,WAAW;AAChC,UAAQ,QAAQ;AAChB,UAAQ,SAAS,QAAQ;AACzB,MAAI;GACF,MAAM,aAAa,QAAQ,WAAW,CAAC;GACvC,MAAM,MAAM,aAAa,YAAY,OAAO;GAC5C,MAAM,SAAS,KAAK,MAAM,IAAI;GAG9B,MAAM,iBAAkB,OAAO,UAAU,UAAU,EAAE;AAErD,UAAO,WAAW;IAChB,GAAG,OAAO;IACV,QAAQ;KACN,GAAG;KACH,SAAS;KACT,OAAO,QAAQ,OAAO;KACtB,WAAW,QAAQ,OAAO;KAC1B,QAAQ,QAAQ,OAAO;KACvB,gBAAiB,eAAe,kBAA6B;KAC9D;IACF;AAED,SAAM,gBAAgB,YAAY,GAAG,KAAK,UAAU,QAAQ,MAAM,EAAE,CAAC,IAAI;AACzE,SAAM,QAAQ,iCAAiC;UACzC;QAGH;AACL,UAAQ,QAAQ;AAChB,UAAQ,QACN,QAAQ,WAAW,kBACf,+BACA,QAAQ,WAAW,YACjB,qBACA,QAAQ,WAAW,YACjB,oBACA,aAAa,UACX,QAAQ,UACR;;AAGd,kBAAiB,oBAAoB,OAAO,WAAW,EAAE,IAAO;;AAGlE,SAAgB,sBAAsB,eAAqB,MAAoC;CAC7F,MAAM,EAAE,SAAS,8BAA8B;AAE/C,eAAc,IAAI,yBAAyB,MAAM;EAC/C,MAAM,WAAW,QAAQ,mBAAmB;AAC5C,SAAO,EAAE,KAAK;GAAE,IAAI;GAAM,SAAS,EAAE,UAAU;GAAE,CAAC;GAClD;AAEF,eAAc,KAAK,oCAAoC,2BAA2B,OAAO,MAAM;EAC7F,MAAM,OAAO,MAAM,EAAE,IAAI,MAAM,CAAC,aAAa,EAAE,EAAE;EACjD,MAAM,UACJ,QAAQ,OAAO,SAAS,YAAY,OAAQ,KAA+B,YAAY,WAClF,KAA6B,QAAQ,MAAM,IAAI,KAAA,IAChD,KAAA;EACN,MAAM,aACJ,QAAQ,OAAO,SAAS,WAAY,KAAiC,YAAY,KAAA;EACnF,MAAM,YACJ,OAAO,eAAe,YAAY,OAAO,SAAS,WAAW,GAAG,KAAK,IAAI,KAAQ,WAAW,GAAG,KAAA;EAEjG,MAAM,EAAE,8BAA8B,MAAM,OAAO;EACnD,MAAM,SAAS,MAAM,0BAA0B;GAC7C,YAAY,QAAQ,WAAW,CAAC;GAChC;GACA;GACA,aAAa,OAAO,MAAM;AACxB,QAAI,EAAE,GACJ,OAAM,QAAQ,iCAAiC;;GAGpD,CAAC;AAEF,MAAI,OAAO,OAAO,MAChB,QAAO,EAAE,KACP;GAAE,IAAI;GAAO,OAAO;IAAE,MAAM;IAAuB,SAAS,OAAO;IAAS;GAAE,EAC9E,IACD;AAEH,SAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS;IAAE,YAAY,OAAO;IAAY,WAAW,OAAO;IAAW;GACxE,CAAC;GACF;AAEF,eAAc,IAAI,0CAA0C,OAAO,MAAM;EACvE,MAAM,aAAa,EAAE,IAAI,MAAM,aAAa,EAAE,MAAM,IAAI;AACxD,MAAI,CAAC,WACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;IAAE,MAAM;IAAe,SAAS;IAAsB;GAAE,EAAE,IAAI;EAElG,MAAM,EAAE,kCAAkC,MAAM,OAAO;EACvD,MAAM,SAAS,8BAA8B,WAAW;AACxD,SAAO,EAAE,KAAK;GAAE,IAAI;GAAM,SAAS,EAAE,QAAQ;GAAE,CAAC;GAChD;AAEF,eAAc,KAAK,oCAAoC,2BAA2B,OAAO,MAAM;EAC7F,MAAM,OAAO,MAAM,EAAE,IAAI,MAAM,CAAC,aAAa,EAAE,EAAE;EAKjD,MAAM,UAHJ,QAAQ,OAAO,SAAS,YAAY,OAAQ,KAA8B,WAAW,WAChF,KAA4B,OAAO,MAAM,CAAC,aAAa,GACxD,QAC0C,SAAS,SAAS;EAElE,MAAM,EAAE,qBAAqB,yBAAyB,MAAM,OAC1D;AAIF,MAAI,CAAC,MADmB,oBAAoB,OAAO,CAEjD,QAAO,EAAE,KACP;GACE,IAAI;GACJ,OAAO;IAAE,MAAM;IAA6B,SAAS;IAAoC;GAC1F,EACD,IACD;EAGH,MAAM,QAAQ,MAAM,qBAAqB,OAAO;EAEhD,MAAM,aAAa,gBAAgB,KAAK,KAAK,CAAC,GAAG,KAAK,QAAQ,CAAC,SAAS,GAAG,CAAC,MAAM,GAAG,EAAE;AAEvF,sBAAoB,IAAI,YAAY;GAClC,YAAY,MAAM;GAClB;GACA,aAAa,MAAM;GACnB,aAAa,MAAM;GACnB,WAAW,KAAK,KAAK;GACrB,OAAO;GACR,CAAC;AAEG,0BAAwB,YAAY,QAAQ;AAEjD,SAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS;IAAE;IAAY,OAAO,MAAM;IAAO;GAC5C,CAAC;GACF;AAEF,eAAc,IAAI,0CAA0C,OAAO,MAAM;EACvE,MAAM,aAAa,EAAE,IAAI,MAAM,aAAa,EAAE,MAAM,IAAI;AACxD,MAAI,CAAC,WACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;IAAE,MAAM;IAAe,SAAS;IAAsB;GAAE,EAAE,IAAI;EAGlG,MAAM,UAAU,oBAAoB,IAAI,WAAW;AACnD,MAAI,CAAC,QACH,QAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS,EACP,QAAQ;IAAE,OAAO;IAAoB,SAAS;IAAiC,EAChF;GACF,CAAC;AAGJ,MAAI,QAAQ,UAAU,UAAU,QAAQ,OACtC,QAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS,EACP,QAAQ;IACN,OAAO;IACP,IAAI;IACJ,OAAO,QAAQ,OAAO;IACtB,QAAQ,QAAQ,OAAO;IACvB,QAAQ,QAAQ,OAAO;IACxB,EACF;GACF,CAAC;AAGJ,MAAI,QAAQ,UAAU,QACpB,QAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS,EACP,QAAQ;IACN,OAAO;IACP,IAAI;IACJ,SAAS,QAAQ,SAAS;IAC3B,EACF;GACF,CAAC;AAGJ,SAAO,EAAE,KAAK;GACZ,IAAI;GACJ,SAAS,EACP,QAAQ,EAAE,OAAO,WAAoB,EACtC;GACF,CAAC;GACF"}

package/dist/src/gateway/hono/routes/commands-skills.js CHANGED Viewed

@@ -30,7 +30,8 @@ function registerCommandsSkillsRoutes(authenticated, deps) {
 		});
 	});
 	authenticated.get("/api/skills", (c) => {
-		const payload = service.getSkillsApi();
+		const lang = c.req.query("lang")?.trim() || void 0;
+		const payload = service.getSkillsApi(lang);
 		return c.json({
 			ok: true,
 			payload
@@ -51,7 +52,8 @@ function registerCommandsSkillsRoutes(authenticated, deps) {
 				error: "Invalid skill name"
 			}, 400);
 		}
-		const data = service.getSkillMarkdownSource(skillName);
+		const lang = c.req.query("lang")?.trim() || void 0;
+		const data = service.getSkillMarkdownSource(skillName, lang);
 		if (!data) return c.json({
 			ok: false,
 			error: "Skill not found"
@@ -99,12 +101,14 @@ function registerCommandsSkillsRoutes(authenticated, deps) {
 		const page = pageRaw != null && pageRaw !== "" ? Math.max(1, Number(pageRaw) || 1) : void 0;
 		const pageSize = pageSizeRaw != null && pageSizeRaw !== "" ? Math.min(50, Math.max(1, Number(pageSizeRaw) || 20)) : void 0;
 		const sort = sortRaw === "newest" || sortRaw === "downloads" ? sortRaw : void 0;
+		const category = c.req.query("category")?.trim() ?? "";
 		try {
 			const payload = await service.fetchSkillsMarketplaceCatalog({
 				q: q || void 0,
 				page,
 				pageSize,
-				sort
+				sort,
+				category: category || void 0
 			});
 			return c.json({
 				ok: true,
@@ -117,6 +121,27 @@ function registerCommandsSkillsRoutes(authenticated, deps) {
 			}, 502);
 		}
 	});
+	authenticated.get("/api/skills/marketplace/provider", (c) => {
+		const info = service.getSkillsMarketplaceProvider();
+		return c.json({
+			ok: true,
+			payload: info
+		});
+	});
+	authenticated.get("/api/skills/marketplace/categories", async (c) => {
+		try {
+			const payload = await service.fetchSkillsMarketplaceCategories();
+			return c.json({
+				ok: true,
+				payload
+			});
+		} catch (err) {
+			return c.json({
+				ok: false,
+				error: err instanceof Error ? err.message : "Marketplace categories failed"
+			}, 502);
+		}
+	});
 	authenticated.get("/api/skills/marketplace/packages/:pkgName", async (c) => {
 		const raw = c.req.param("pkgName");
 		if (!raw) return c.json({

package/dist/src/gateway/hono/routes/commands-skills.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"commands-skills.js","names":[],"sources":["../../../../../src/gateway/hono/routes/commands-skills.ts"],"sourcesContent":["import type { Hono } from 'hono';\n\nimport { commandRegistry } from '../../../chat-commands/index.js';\nimport type { AuthenticatedRouteDeps } from './deps.js';\n\nexport function registerCommandsSkillsRoutes(authenticated: Hono, deps: AuthenticatedRouteDeps): void {\n const { service } = deps;\n\n // ========== Chat slash commands (CommandRegistry) ==========\n\n authenticated.get('/api/commands', (c) => {\n const all = commandRegistry.list();\n const commands = all\n .filter((cmd) => cmd.scope.includes('global') \|\| cmd.scope.includes('private'))\n .map((cmd) => ({\n id: cmd.id,\n name: cmd.name,\n aliases: cmd.aliases ?? [],\n description: cmd.description,\n category: cmd.category,\n scope: cmd.scope,\n acceptsArgs: cmd.acceptsArgs ?? false,\n examples: cmd.examples ?? [],\n }));\n const extensionCommands = all\n .filter((cmd) => cmd.category === 'extension')\n .map((cmd) => ({\n id: cmd.id,\n name: cmd.name,\n description: cmd.description,\n extensionId: cmd.id.startsWith('ext.') ? cmd.id.split('.')[1] : undefined,\n }));\n return c.json({ ok: true, payload: { commands, extensionCommands } });\n });\n\n // ========== Skills (managed global skills under ~/.xopc/skills) ==========\n\n authenticated.get('/api/skills', (c) => {\n const payload = service.getSkillsApi();\n return c.json({ ok: true, payload });\n });\n\n authenticated.get('/api/skills/:skillName/content', (c) => {\n const raw = c.req.param('skillName');\n if (!raw) {\n return c.json({ ok: false, error: 'Missing skill name' }, 400);\n }\n let skillName: string;\n try {\n skillName = decodeURIComponent(raw);\n } catch {\n return c.json({ ok: false, error: 'Invalid skill name' }, 400);\n }\n const data = service.getSkillMarkdownSource(skillName);\n if (!data) {\n return c.json({ ok: false, error: 'Skill not found' }, 404);\n }\n return c.json({ ok: true, payload: data });\n });\n\n authenticated.post('/api/skills/reload', (c) => {\n service.reloadSkillsFromDisk();\n return c.json({ ok: true });\n });\n\n authenticated.patch('/api/skills/enabled', async (c) => {\n let body: { skillName?: unknown; enabled?: unknown };\n try {\n body = (await c.req.json()) as { skillName?: unknown; enabled?: unknown };\n } catch {\n return c.json({ ok: false, error: 'Invalid JSON' }, 400);\n }\n const skillName = typeof body.skillName === 'string' ? body.skillName.trim() : '';\n const enabled = body.enabled;\n if (!skillName \|\| typeof enabled !== 'boolean') {\n return c.json({ ok: false, error: 'Expected { skillName: string, enabled: boolean }' }, 400);\n }\n try {\n service.patchSkillEnabled(skillName, enabled);\n return c.json({ ok: true });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Update failed' },\n 400,\n );\n }\n });\n\n authenticated.get('/api/skills/marketplace', async (c) => {\n const q = c.req.query('q')?.trim() ?? '';\n const pageRaw = c.req.query('page');\n const pageSizeRaw = c.req.query('pageSize');\n const sortRaw = c.req.query('sort');\n const page = pageRaw != null && pageRaw !== '' ? Math.max(1, Number(pageRaw) \|\| 1) : undefined;\n const pageSize =\n pageSizeRaw != null && pageSizeRaw !== ''\n ? Math.min(50, Math.max(1, Number(pageSizeRaw) \|\| 20))\n : undefined;\n const sort =\n sortRaw === 'newest' \|\| sortRaw === 'downloads' ? sortRaw : undefined;\n try {\n const payload = await service.fetchSkillsMarketplaceCatalog({\n q: q \|\| undefined,\n page,\n pageSize,\n sort,\n });\n return c.json({ ok: true, payload });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Marketplace request failed' },\n 502,\n );\n }\n });\n\n authenticated.get('/api/skills/marketplace/packages/:pkgName', async (c) => {\n const raw = c.req.param('pkgName');\n if (!raw) {\n return c.json({ ok: false, error: 'Missing package name' }, 400);\n }\n let pkgName: string;\n try {\n pkgName = decodeURIComponent(raw);\n } catch {\n return c.json({ ok: false, error: 'Invalid package name' }, 400);\n }\n try {\n const payload = await service.fetchSkillsMarketplacePackageDetail(pkgName);\n return c.json({ ok: true, payload });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Marketplace request failed' },\n 502,\n );\n }\n });\n\n authenticated.post('/api/skills/marketplace/install', async (c) => {\n let body: { name?: unknown; version?: unknown; overwrite?: unknown };\n try {\n body = (await c.req.json()) as typeof body;\n } catch {\n return c.json({ ok: false, error: 'Invalid JSON' }, 400);\n }\n const name = typeof body.name === 'string' ? body.name.trim() : '';\n const version = typeof body.version === 'string' ? body.version.trim() : undefined;\n const overwrite =\n body.overwrite === true \|\|\n body.overwrite === 'true' \|\|\n body.overwrite === '1';\n if (!name) {\n return c.json({ ok: false, error: 'Expected { name: string, version?: string, overwrite?: boolean }' }, 400);\n }\n try {\n const payload = await service.installSkillFromMarketplace({ name, version, overwrite });\n return c.json({ ok: true, payload });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Install failed' },\n 400,\n );\n }\n });\n\n authenticated.post('/api/skills/upload', async (c) => {\n let body: Record<string, unknown>;\n try {\n body = await c.req.parseBody({ all: true });\n } catch {\n return c.json({ ok: false, error: 'Invalid multipart body' }, 400);\n }\n const file = body['file'];\n if (!file \|\| typeof file !== 'object') {\n return c.json({ ok: false, error: 'Missing file field' }, 400);\n }\n let buf: Buffer;\n if (file instanceof File) {\n buf = Buffer.from(await file.arrayBuffer());\n } else if (typeof (file as Blob).arrayBuffer === 'function') {\n buf = Buffer.from(await (file as Blob).arrayBuffer());\n } else {\n return c.json({ ok: false, error: 'Invalid file upload' }, 400);\n }\n const skillIdRaw = body['skillId'];\n const overwriteRaw = body['overwrite'];\n const skillId = typeof skillIdRaw === 'string' && skillIdRaw.trim() ? skillIdRaw.trim() : undefined;\n const overwrite =\n overwriteRaw === 'true' \|\|\n overwriteRaw === true \|\|\n overwriteRaw === '1';\n\n try {\n const result = service.installManagedSkillZip(buf, { skillId, overwrite });\n return c.json({ ok: true, payload: result });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Install failed' },\n 400,\n );\n }\n });\n\n authenticated.delete('/api/skills/:id', (c) => {\n const id = c.req.param('id');\n if (!id) {\n return c.json({ ok: false, error: 'Missing id' }, 400);\n }\n try {\n service.deleteManagedSkill(id);\n return c.json({ ok: true });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Delete failed' },\n 400,\n );\n }\n });\n}\n"],"mappings":";;;AAKA,SAAgB,6BAA6B,eAAqB,MAAoC;CACpG,MAAM,EAAE,YAAY;AAIpB,eAAc,IAAI,kBAAkB,MAAM;EACxC,MAAM,MAAM,gBAAgB,MAAM;EAClC,MAAM,WAAW,IACd,QAAQ,QAAQ,IAAI,MAAM,SAAS,SAAS,IAAI,IAAI,MAAM,SAAS,UAAU,CAAC,CAC9E,KAAK,SAAS;GACb,IAAI,IAAI;GACR,MAAM,IAAI;GACV,SAAS,IAAI,WAAW,EAAE;GAC1B,aAAa,IAAI;GACjB,UAAU,IAAI;GACd,OAAO,IAAI;GACX,aAAa,IAAI,eAAe;GAChC,UAAU,IAAI,YAAY,EAAE;GAC7B,EAAE;EACL,MAAM,oBAAoB,IACvB,QAAQ,QAAQ,IAAI,aAAa,YAAY,CAC7C,KAAK,SAAS;GACb,IAAI,IAAI;GACR,MAAM,IAAI;GACV,aAAa,IAAI;GACjB,aAAa,IAAI,GAAG,WAAW,OAAO,GAAG,IAAI,GAAG,MAAM,IAAI,CAAC,KAAK,KAAA;GACjE,EAAE;AACL,SAAO,EAAE,KAAK;GAAE,IAAI;GAAM,SAAS;IAAE;IAAU;IAAmB;GAAE,CAAC;GACrE;AAIF,eAAc,IAAI,gBAAgB,MAAM;EACtC,MAAM,UAAU,QAAQ,cAAc;AACtC,SAAO,EAAE,KAAK;GAAE,IAAI;GAAM;GAAS,CAAC;GACpC;AAEF,eAAc,IAAI,mCAAmC,MAAM;EACzD,MAAM,MAAM,EAAE,IAAI,MAAM,YAAY;AACpC,MAAI,CAAC,IACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAsB,EAAE,IAAI;EAEhE,IAAI;AACJ,MAAI;AACF,eAAY,mBAAmB,IAAI;UAC7B;AACN,UAAO,EAAE,KAAK;IAAE,IAAI;IAAO,OAAO;IAAsB,EAAE,IAAI;;EAEhE,MAAM,OAAO,QAAQ,uBAAuB,UAAU;AACtD,MAAI,CAAC,KACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAmB,EAAE,IAAI;AAE7D,SAAO,EAAE,KAAK;GAAE,IAAI;GAAM,SAAS;GAAM,CAAC;GAC1C;AAEF,eAAc,KAAK,uBAAuB,MAAM;AAC9C,UAAQ,sBAAsB;AAC9B,SAAO,EAAE,KAAK,EAAE,IAAI,MAAM,CAAC;GAC3B;AAEF,eAAc,MAAM,uBAAuB,OAAO,MAAM;EACtD,IAAI;AACJ,MAAI;AACF,UAAQ,MAAM,EAAE,IAAI,MAAM;UACpB;AACN,UAAO,EAAE,KAAK;IAAE,IAAI;IAAO,OAAO;IAAgB,EAAE,IAAI;;EAE1D,MAAM,YAAY,OAAO,KAAK,cAAc,WAAW,KAAK,UAAU,MAAM,GAAG;EAC/E,MAAM,UAAU,KAAK;AACrB,MAAI,CAAC,aAAa,OAAO,YAAY,UACnC,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAoD,EAAE,IAAI;AAE9F,MAAI;AACF,WAAQ,kBAAkB,WAAW,QAAQ;AAC7C,UAAO,EAAE,KAAK,EAAE,IAAI,MAAM,CAAC;WACpB,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAAiB,EAC1E,IACD;;GAEH;AAEF,eAAc,IAAI,2BAA2B,OAAO,MAAM;EACxD,MAAM,IAAI,EAAE,IAAI,MAAM,IAAI,EAAE,MAAM,IAAI;EACtC,MAAM,UAAU,EAAE,IAAI,MAAM,OAAO;EACnC,MAAM,cAAc,EAAE,IAAI,MAAM,WAAW;EAC3C,MAAM,UAAU,EAAE,IAAI,MAAM,OAAO;EACnC,MAAM,OAAO,WAAW,QAAQ,YAAY,KAAK,KAAK,IAAI,GAAG,OAAO,QAAQ,IAAI,EAAE,GAAG,KAAA;EACrF,MAAM,WACJ,eAAe,QAAQ,gBAAgB,KACnC,KAAK,IAAI,IAAI,KAAK,IAAI,GAAG,OAAO,YAAY,IAAI,GAAG,CAAC,GACpD,KAAA;EACN,MAAM,OACJ,YAAY,YAAY,YAAY,cAAc,UAAU,KAAA;AAC9D,MAAI;GACF,MAAM,UAAU,MAAM,QAAQ,8BAA8B;IAC1D,GAAG,KAAK,KAAA;IACR;IACA;IACA;IACD,CAAC;AACF,UAAO,EAAE,KAAK;IAAE,IAAI;IAAM;IAAS,CAAC;WAC7B,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAA8B,EACvF,IACD;;GAEH;AAEF,eAAc,IAAI,6CAA6C,OAAO,MAAM;EAC1E,MAAM,MAAM,EAAE,IAAI,MAAM,UAAU;AAClC,MAAI,CAAC,IACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAwB,EAAE,IAAI;EAElE,IAAI;AACJ,MAAI;AACF,aAAU,mBAAmB,IAAI;UAC3B;AACN,UAAO,EAAE,KAAK;IAAE,IAAI;IAAO,OAAO;IAAwB,EAAE,IAAI;;AAElE,MAAI;GACF,MAAM,UAAU,MAAM,QAAQ,oCAAoC,QAAQ;AAC1E,UAAO,EAAE,KAAK;IAAE,IAAI;IAAM;IAAS,CAAC;WAC7B,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAA8B,EACvF,IACD;;GAEH;AAEF,eAAc,KAAK,mCAAmC,OAAO,MAAM;EACjE,IAAI;AACJ,MAAI;AACF,UAAQ,MAAM,EAAE,IAAI,MAAM;UACpB;AACN,UAAO,EAAE,KAAK;IAAE,IAAI;IAAO,OAAO;IAAgB,EAAE,IAAI;;EAE1D,MAAM,OAAO,OAAO,KAAK,SAAS,WAAW,KAAK,KAAK,MAAM,GAAG;EAChE,MAAM,UAAU,OAAO,KAAK,YAAY,WAAW,KAAK,QAAQ,MAAM,GAAG,KAAA;EACzE,MAAM,YACJ,KAAK,cAAc,QACnB,KAAK,cAAc,UACnB,KAAK,cAAc;AACrB,MAAI,CAAC,KACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAoE,EAAE,IAAI;AAE9G,MAAI;GACF,MAAM,UAAU,MAAM,QAAQ,4BAA4B;IAAE;IAAM;IAAS;IAAW,CAAC;AACvF,UAAO,EAAE,KAAK;IAAE,IAAI;IAAM;IAAS,CAAC;WAC7B,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAAkB,EAC3E,IACD;;GAEH;AAEF,eAAc,KAAK,sBAAsB,OAAO,MAAM;EACpD,IAAI;AACJ,MAAI;AACF,UAAO,MAAM,EAAE,IAAI,UAAU,EAAE,KAAK,MAAM,CAAC;UACrC;AACN,UAAO,EAAE,KAAK;IAAE,IAAI;IAAO,OAAO;IAA0B,EAAE,IAAI;;EAEpE,MAAM,OAAO,KAAK;AAClB,MAAI,CAAC,QAAQ,OAAO,SAAS,SAC3B,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAsB,EAAE,IAAI;EAEhE,IAAI;AACJ,MAAI,gBAAgB,KAClB,OAAM,OAAO,KAAK,MAAM,KAAK,aAAa,CAAC;WAClC,OAAQ,KAAc,gBAAgB,WAC/C,OAAM,OAAO,KAAK,MAAO,KAAc,aAAa,CAAC;MAErD,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAuB,EAAE,IAAI;EAEjE,MAAM,aAAa,KAAK;EACxB,MAAM,eAAe,KAAK;EAC1B,MAAM,UAAU,OAAO,eAAe,YAAY,WAAW,MAAM,GAAG,WAAW,MAAM,GAAG,KAAA;EAC1F,MAAM,YACJ,iBAAiB,UACjB,iBAAiB,QACjB,iBAAiB;AAEnB,MAAI;GACF,MAAM,SAAS,QAAQ,uBAAuB,KAAK;IAAE;IAAS;IAAW,CAAC;AAC1E,UAAO,EAAE,KAAK;IAAE,IAAI;IAAM,SAAS;IAAQ,CAAC;WACrC,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAAkB,EAC3E,IACD;;GAEH;AAEF,eAAc,OAAO,oBAAoB,MAAM;EAC7C,MAAM,KAAK,EAAE,IAAI,MAAM,KAAK;AAC5B,MAAI,CAAC,GACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAc,EAAE,IAAI;AAExD,MAAI;AACF,WAAQ,mBAAmB,GAAG;AAC9B,UAAO,EAAE,KAAK,EAAE,IAAI,MAAM,CAAC;WACpB,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAAiB,EAC1E,IACD;;GAEH"}
1	+ {"version":3,"file":"commands-skills.js","names":[],"sources":["../../../../../src/gateway/hono/routes/commands-skills.ts"],"sourcesContent":["import type { Hono } from 'hono';\n\nimport { commandRegistry } from '../../../chat-commands/index.js';\nimport type { AuthenticatedRouteDeps } from './deps.js';\n\nexport function registerCommandsSkillsRoutes(authenticated: Hono, deps: AuthenticatedRouteDeps): void {\n const { service } = deps;\n\n // ========== Chat slash commands (CommandRegistry) ==========\n\n authenticated.get('/api/commands', (c) => {\n const all = commandRegistry.list();\n const commands = all\n .filter((cmd) => cmd.scope.includes('global') \|\| cmd.scope.includes('private'))\n .map((cmd) => ({\n id: cmd.id,\n name: cmd.name,\n aliases: cmd.aliases ?? [],\n description: cmd.description,\n category: cmd.category,\n scope: cmd.scope,\n acceptsArgs: cmd.acceptsArgs ?? false,\n examples: cmd.examples ?? [],\n }));\n const extensionCommands = all\n .filter((cmd) => cmd.category === 'extension')\n .map((cmd) => ({\n id: cmd.id,\n name: cmd.name,\n description: cmd.description,\n extensionId: cmd.id.startsWith('ext.') ? cmd.id.split('.')[1] : undefined,\n }));\n return c.json({ ok: true, payload: { commands, extensionCommands } });\n });\n\n // ========== Skills (managed global skills under ~/.xopc/skills) ==========\n\n authenticated.get('/api/skills', (c) => {\n const lang = c.req.query('lang')?.trim() \|\| undefined;\n const payload = service.getSkillsApi(lang);\n return c.json({ ok: true, payload });\n });\n\n authenticated.get('/api/skills/:skillName/content', (c) => {\n const raw = c.req.param('skillName');\n if (!raw) {\n return c.json({ ok: false, error: 'Missing skill name' }, 400);\n }\n let skillName: string;\n try {\n skillName = decodeURIComponent(raw);\n } catch {\n return c.json({ ok: false, error: 'Invalid skill name' }, 400);\n }\n const lang = c.req.query('lang')?.trim() \|\| undefined;\n const data = service.getSkillMarkdownSource(skillName, lang);\n if (!data) {\n return c.json({ ok: false, error: 'Skill not found' }, 404);\n }\n return c.json({ ok: true, payload: data });\n });\n\n authenticated.post('/api/skills/reload', (c) => {\n service.reloadSkillsFromDisk();\n return c.json({ ok: true });\n });\n\n authenticated.patch('/api/skills/enabled', async (c) => {\n let body: { skillName?: unknown; enabled?: unknown };\n try {\n body = (await c.req.json()) as { skillName?: unknown; enabled?: unknown };\n } catch {\n return c.json({ ok: false, error: 'Invalid JSON' }, 400);\n }\n const skillName = typeof body.skillName === 'string' ? body.skillName.trim() : '';\n const enabled = body.enabled;\n if (!skillName \|\| typeof enabled !== 'boolean') {\n return c.json({ ok: false, error: 'Expected { skillName: string, enabled: boolean }' }, 400);\n }\n try {\n service.patchSkillEnabled(skillName, enabled);\n return c.json({ ok: true });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Update failed' },\n 400,\n );\n }\n });\n\n authenticated.get('/api/skills/marketplace', async (c) => {\n const q = c.req.query('q')?.trim() ?? '';\n const pageRaw = c.req.query('page');\n const pageSizeRaw = c.req.query('pageSize');\n const sortRaw = c.req.query('sort');\n const page = pageRaw != null && pageRaw !== '' ? Math.max(1, Number(pageRaw) \|\| 1) : undefined;\n const pageSize =\n pageSizeRaw != null && pageSizeRaw !== ''\n ? Math.min(50, Math.max(1, Number(pageSizeRaw) \|\| 20))\n : undefined;\n const sort =\n sortRaw === 'newest' \|\| sortRaw === 'downloads' ? sortRaw : undefined;\n const category = c.req.query('category')?.trim() ?? '';\n try {\n const payload = await service.fetchSkillsMarketplaceCatalog({\n q: q \|\| undefined,\n page,\n pageSize,\n sort,\n category: category \|\| undefined,\n });\n return c.json({ ok: true, payload });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Marketplace request failed' },\n 502,\n );\n }\n });\n\n authenticated.get('/api/skills/marketplace/provider', (c) => {\n const info = service.getSkillsMarketplaceProvider();\n return c.json({ ok: true, payload: info });\n });\n\n authenticated.get('/api/skills/marketplace/categories', async (c) => {\n try {\n const payload = await service.fetchSkillsMarketplaceCategories();\n return c.json({ ok: true, payload });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Marketplace categories failed' },\n 502,\n );\n }\n });\n\n authenticated.get('/api/skills/marketplace/packages/:pkgName', async (c) => {\n const raw = c.req.param('pkgName');\n if (!raw) {\n return c.json({ ok: false, error: 'Missing package name' }, 400);\n }\n let pkgName: string;\n try {\n pkgName = decodeURIComponent(raw);\n } catch {\n return c.json({ ok: false, error: 'Invalid package name' }, 400);\n }\n try {\n const payload = await service.fetchSkillsMarketplacePackageDetail(pkgName);\n return c.json({ ok: true, payload });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Marketplace request failed' },\n 502,\n );\n }\n });\n\n authenticated.post('/api/skills/marketplace/install', async (c) => {\n let body: { name?: unknown; version?: unknown; overwrite?: unknown };\n try {\n body = (await c.req.json()) as typeof body;\n } catch {\n return c.json({ ok: false, error: 'Invalid JSON' }, 400);\n }\n const name = typeof body.name === 'string' ? body.name.trim() : '';\n const version = typeof body.version === 'string' ? body.version.trim() : undefined;\n const overwrite =\n body.overwrite === true \|\|\n body.overwrite === 'true' \|\|\n body.overwrite === '1';\n if (!name) {\n return c.json({ ok: false, error: 'Expected { name: string, version?: string, overwrite?: boolean }' }, 400);\n }\n try {\n const payload = await service.installSkillFromMarketplace({ name, version, overwrite });\n return c.json({ ok: true, payload });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Install failed' },\n 400,\n );\n }\n });\n\n authenticated.post('/api/skills/upload', async (c) => {\n let body: Record<string, unknown>;\n try {\n body = await c.req.parseBody({ all: true });\n } catch {\n return c.json({ ok: false, error: 'Invalid multipart body' }, 400);\n }\n const file = body['file'];\n if (!file \|\| typeof file !== 'object') {\n return c.json({ ok: false, error: 'Missing file field' }, 400);\n }\n let buf: Buffer;\n if (file instanceof File) {\n buf = Buffer.from(await file.arrayBuffer());\n } else if (typeof (file as Blob).arrayBuffer === 'function') {\n buf = Buffer.from(await (file as Blob).arrayBuffer());\n } else {\n return c.json({ ok: false, error: 'Invalid file upload' }, 400);\n }\n const skillIdRaw = body['skillId'];\n const overwriteRaw = body['overwrite'];\n const skillId = typeof skillIdRaw === 'string' && skillIdRaw.trim() ? skillIdRaw.trim() : undefined;\n const overwrite =\n overwriteRaw === 'true' \|\|\n overwriteRaw === true \|\|\n overwriteRaw === '1';\n\n try {\n const result = service.installManagedSkillZip(buf, { skillId, overwrite });\n return c.json({ ok: true, payload: result });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Install failed' },\n 400,\n );\n }\n });\n\n authenticated.delete('/api/skills/:id', (c) => {\n const id = c.req.param('id');\n if (!id) {\n return c.json({ ok: false, error: 'Missing id' }, 400);\n }\n try {\n service.deleteManagedSkill(id);\n return c.json({ ok: true });\n } catch (err) {\n return c.json(\n { ok: false, error: err instanceof Error ? err.message : 'Delete failed' },\n 400,\n );\n }\n });\n}\n"],"mappings":";;;AAKA,SAAgB,6BAA6B,eAAqB,MAAoC;CACpG,MAAM,EAAE,YAAY;AAIpB,eAAc,IAAI,kBAAkB,MAAM;EACxC,MAAM,MAAM,gBAAgB,MAAM;EAClC,MAAM,WAAW,IACd,QAAQ,QAAQ,IAAI,MAAM,SAAS,SAAS,IAAI,IAAI,MAAM,SAAS,UAAU,CAAC,CAC9E,KAAK,SAAS;GACb,IAAI,IAAI;GACR,MAAM,IAAI;GACV,SAAS,IAAI,WAAW,EAAE;GAC1B,aAAa,IAAI;GACjB,UAAU,IAAI;GACd,OAAO,IAAI;GACX,aAAa,IAAI,eAAe;GAChC,UAAU,IAAI,YAAY,EAAE;GAC7B,EAAE;EACL,MAAM,oBAAoB,IACvB,QAAQ,QAAQ,IAAI,aAAa,YAAY,CAC7C,KAAK,SAAS;GACb,IAAI,IAAI;GACR,MAAM,IAAI;GACV,aAAa,IAAI;GACjB,aAAa,IAAI,GAAG,WAAW,OAAO,GAAG,IAAI,GAAG,MAAM,IAAI,CAAC,KAAK,KAAA;GACjE,EAAE;AACL,SAAO,EAAE,KAAK;GAAE,IAAI;GAAM,SAAS;IAAE;IAAU;IAAmB;GAAE,CAAC;GACrE;AAIF,eAAc,IAAI,gBAAgB,MAAM;EACtC,MAAM,OAAO,EAAE,IAAI,MAAM,OAAO,EAAE,MAAM,IAAI,KAAA;EAC5C,MAAM,UAAU,QAAQ,aAAa,KAAK;AAC1C,SAAO,EAAE,KAAK;GAAE,IAAI;GAAM;GAAS,CAAC;GACpC;AAEF,eAAc,IAAI,mCAAmC,MAAM;EACzD,MAAM,MAAM,EAAE,IAAI,MAAM,YAAY;AACpC,MAAI,CAAC,IACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAsB,EAAE,IAAI;EAEhE,IAAI;AACJ,MAAI;AACF,eAAY,mBAAmB,IAAI;UAC7B;AACN,UAAO,EAAE,KAAK;IAAE,IAAI;IAAO,OAAO;IAAsB,EAAE,IAAI;;EAEhE,MAAM,OAAO,EAAE,IAAI,MAAM,OAAO,EAAE,MAAM,IAAI,KAAA;EAC5C,MAAM,OAAO,QAAQ,uBAAuB,WAAW,KAAK;AAC5D,MAAI,CAAC,KACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAmB,EAAE,IAAI;AAE7D,SAAO,EAAE,KAAK;GAAE,IAAI;GAAM,SAAS;GAAM,CAAC;GAC1C;AAEF,eAAc,KAAK,uBAAuB,MAAM;AAC9C,UAAQ,sBAAsB;AAC9B,SAAO,EAAE,KAAK,EAAE,IAAI,MAAM,CAAC;GAC3B;AAEF,eAAc,MAAM,uBAAuB,OAAO,MAAM;EACtD,IAAI;AACJ,MAAI;AACF,UAAQ,MAAM,EAAE,IAAI,MAAM;UACpB;AACN,UAAO,EAAE,KAAK;IAAE,IAAI;IAAO,OAAO;IAAgB,EAAE,IAAI;;EAE1D,MAAM,YAAY,OAAO,KAAK,cAAc,WAAW,KAAK,UAAU,MAAM,GAAG;EAC/E,MAAM,UAAU,KAAK;AACrB,MAAI,CAAC,aAAa,OAAO,YAAY,UACnC,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAoD,EAAE,IAAI;AAE9F,MAAI;AACF,WAAQ,kBAAkB,WAAW,QAAQ;AAC7C,UAAO,EAAE,KAAK,EAAE,IAAI,MAAM,CAAC;WACpB,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAAiB,EAC1E,IACD;;GAEH;AAEF,eAAc,IAAI,2BAA2B,OAAO,MAAM;EACxD,MAAM,IAAI,EAAE,IAAI,MAAM,IAAI,EAAE,MAAM,IAAI;EACtC,MAAM,UAAU,EAAE,IAAI,MAAM,OAAO;EACnC,MAAM,cAAc,EAAE,IAAI,MAAM,WAAW;EAC3C,MAAM,UAAU,EAAE,IAAI,MAAM,OAAO;EACnC,MAAM,OAAO,WAAW,QAAQ,YAAY,KAAK,KAAK,IAAI,GAAG,OAAO,QAAQ,IAAI,EAAE,GAAG,KAAA;EACrF,MAAM,WACJ,eAAe,QAAQ,gBAAgB,KACnC,KAAK,IAAI,IAAI,KAAK,IAAI,GAAG,OAAO,YAAY,IAAI,GAAG,CAAC,GACpD,KAAA;EACN,MAAM,OACJ,YAAY,YAAY,YAAY,cAAc,UAAU,KAAA;EAC9D,MAAM,WAAW,EAAE,IAAI,MAAM,WAAW,EAAE,MAAM,IAAI;AACpD,MAAI;GACF,MAAM,UAAU,MAAM,QAAQ,8BAA8B;IAC1D,GAAG,KAAK,KAAA;IACR;IACA;IACA;IACA,UAAU,YAAY,KAAA;IACvB,CAAC;AACF,UAAO,EAAE,KAAK;IAAE,IAAI;IAAM;IAAS,CAAC;WAC7B,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAA8B,EACvF,IACD;;GAEH;AAEF,eAAc,IAAI,qCAAqC,MAAM;EAC3D,MAAM,OAAO,QAAQ,8BAA8B;AACnD,SAAO,EAAE,KAAK;GAAE,IAAI;GAAM,SAAS;GAAM,CAAC;GAC1C;AAEF,eAAc,IAAI,sCAAsC,OAAO,MAAM;AACnE,MAAI;GACF,MAAM,UAAU,MAAM,QAAQ,kCAAkC;AAChE,UAAO,EAAE,KAAK;IAAE,IAAI;IAAM;IAAS,CAAC;WAC7B,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAAiC,EAC1F,IACD;;GAEH;AAEF,eAAc,IAAI,6CAA6C,OAAO,MAAM;EAC1E,MAAM,MAAM,EAAE,IAAI,MAAM,UAAU;AAClC,MAAI,CAAC,IACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAwB,EAAE,IAAI;EAElE,IAAI;AACJ,MAAI;AACF,aAAU,mBAAmB,IAAI;UAC3B;AACN,UAAO,EAAE,KAAK;IAAE,IAAI;IAAO,OAAO;IAAwB,EAAE,IAAI;;AAElE,MAAI;GACF,MAAM,UAAU,MAAM,QAAQ,oCAAoC,QAAQ;AAC1E,UAAO,EAAE,KAAK;IAAE,IAAI;IAAM;IAAS,CAAC;WAC7B,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAA8B,EACvF,IACD;;GAEH;AAEF,eAAc,KAAK,mCAAmC,OAAO,MAAM;EACjE,IAAI;AACJ,MAAI;AACF,UAAQ,MAAM,EAAE,IAAI,MAAM;UACpB;AACN,UAAO,EAAE,KAAK;IAAE,IAAI;IAAO,OAAO;IAAgB,EAAE,IAAI;;EAE1D,MAAM,OAAO,OAAO,KAAK,SAAS,WAAW,KAAK,KAAK,MAAM,GAAG;EAChE,MAAM,UAAU,OAAO,KAAK,YAAY,WAAW,KAAK,QAAQ,MAAM,GAAG,KAAA;EACzE,MAAM,YACJ,KAAK,cAAc,QACnB,KAAK,cAAc,UACnB,KAAK,cAAc;AACrB,MAAI,CAAC,KACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAoE,EAAE,IAAI;AAE9G,MAAI;GACF,MAAM,UAAU,MAAM,QAAQ,4BAA4B;IAAE;IAAM;IAAS;IAAW,CAAC;AACvF,UAAO,EAAE,KAAK;IAAE,IAAI;IAAM;IAAS,CAAC;WAC7B,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAAkB,EAC3E,IACD;;GAEH;AAEF,eAAc,KAAK,sBAAsB,OAAO,MAAM;EACpD,IAAI;AACJ,MAAI;AACF,UAAO,MAAM,EAAE,IAAI,UAAU,EAAE,KAAK,MAAM,CAAC;UACrC;AACN,UAAO,EAAE,KAAK;IAAE,IAAI;IAAO,OAAO;IAA0B,EAAE,IAAI;;EAEpE,MAAM,OAAO,KAAK;AAClB,MAAI,CAAC,QAAQ,OAAO,SAAS,SAC3B,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAsB,EAAE,IAAI;EAEhE,IAAI;AACJ,MAAI,gBAAgB,KAClB,OAAM,OAAO,KAAK,MAAM,KAAK,aAAa,CAAC;WAClC,OAAQ,KAAc,gBAAgB,WAC/C,OAAM,OAAO,KAAK,MAAO,KAAc,aAAa,CAAC;MAErD,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAuB,EAAE,IAAI;EAEjE,MAAM,aAAa,KAAK;EACxB,MAAM,eAAe,KAAK;EAC1B,MAAM,UAAU,OAAO,eAAe,YAAY,WAAW,MAAM,GAAG,WAAW,MAAM,GAAG,KAAA;EAC1F,MAAM,YACJ,iBAAiB,UACjB,iBAAiB,QACjB,iBAAiB;AAEnB,MAAI;GACF,MAAM,SAAS,QAAQ,uBAAuB,KAAK;IAAE;IAAS;IAAW,CAAC;AAC1E,UAAO,EAAE,KAAK;IAAE,IAAI;IAAM,SAAS;IAAQ,CAAC;WACrC,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAAkB,EAC3E,IACD;;GAEH;AAEF,eAAc,OAAO,oBAAoB,MAAM;EAC7C,MAAM,KAAK,EAAE,IAAI,MAAM,KAAK;AAC5B,MAAI,CAAC,GACH,QAAO,EAAE,KAAK;GAAE,IAAI;GAAO,OAAO;GAAc,EAAE,IAAI;AAExD,MAAI;AACF,WAAQ,mBAAmB,GAAG;AAC9B,UAAO,EAAE,KAAK,EAAE,IAAI,MAAM,CAAC;WACpB,KAAK;AACZ,UAAO,EAAE,KACP;IAAE,IAAI;IAAO,OAAO,eAAe,QAAQ,IAAI,UAAU;IAAiB,EAC1E,IACD;;GAEH"}

package/dist/src/gateway/hono/routes/config.js CHANGED Viewed

@@ -364,10 +364,21 @@ function registerConfigRoutes(authenticated, deps) {
 					const bodyTg = tgRaw;
 					if (!config.channels) config.channels = { telegram: {
 						enabled: false,
-						botToken: "",
 						allowFrom: [],
 						groupAllowFrom: [],
 						debug: false,
+						accounts: { default: {
+							accountId: "default",
+							enabled: true,
+							botToken: "",
+							allowFrom: [],
+							dmPolicy: "pairing",
+							groupPolicy: "open",
+							replyToMode: "off",
+							historyLimit: 50,
+							textChunkLimit: 4e3,
+							streamMode: "partial"
+						} },
 						dmPolicy: "pairing",
 						groupPolicy: "open",
 						replyToMode: "off",
@@ -377,7 +388,17 @@ function registerConfigRoutes(authenticated, deps) {
 					if (!config.channels.telegram) config.channels.telegram = {};
 					const tg = config.channels.telegram;
 					if (bodyTg.enabled !== void 0) tg.enabled = bodyTg.enabled;
-					if (bodyTg.botToken !== void 0) tg.botToken = bodyTg.botToken;
+					if (bodyTg.botToken !== void 0) {
+						const accRaw = tg.accounts;
+						const acc = accRaw && typeof accRaw === "object" && !Array.isArray(accRaw) ? { ...accRaw } : {};
+						const defRaw = acc.default;
+						acc.default = {
+							...defRaw && typeof defRaw === "object" && !Array.isArray(defRaw) ? { ...defRaw } : {},
+							accountId: "default",
+							botToken: bodyTg.botToken
+						};
+						tg.accounts = acc;
+					}
 					if (bodyTg.allowFrom !== void 0) tg.allowFrom = bodyTg.allowFrom;
 					if (bodyTg.apiRoot !== void 0) tg.apiRoot = bodyTg.apiRoot;
 					if (bodyTg.debug !== void 0) tg.debug = bodyTg.debug;