@zhin.js/agent 0.0.18 → 0.0.19

package/lib/zhin-agent/prompt.js.map

@@ -1 +1 @@
-{"version":3,"file":"prompt.js","sourceRoot":"","sources":["../../src/zhin-agent/prompt.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAK7B,OAAO,EAAE,WAAW,EAAE,sBAAsB,EAAE,sBAAsB,EAAE,MAAM,aAAa,CAAC;AAE1F,OAAO,EAAE,oBAAoB,EAAE,MAAM,iBAAiB,CAAC;AAEvD,MAAM,UAAU,aAAa,CAAC,CAA0D;IACtF,IAAI,CAAC,IAAI,IAAI;QAAE,OAAO,EAAE,CAAC;IACzB,IAAI,OAAO,CAAC,KAAK,QAAQ;QAAE,OAAO,CAAC,CAAC;IACpC,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAgB,CAAC,CAAC;IACxD,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE;QACnB,IAAI,CAAC,CAAC;YAAE,OAAO,EAAE,CAAC;QAClB,QAAQ,CAAC,CAAC,IAAI,EAAE,CAAC;YACf,KAAK,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC;YAC3B,KAAK,WAAW,CAAC,CAAC,OAAO,MAAM,CAAC;YAChC,KAAK,OAAO,CAAC,CAAC,OAAO,MAAM,CAAC;YAC5B,KAAK,WAAW,CAAC,CAAC,OAAO,MAAM,CAAC;YAChC,KAAK,MAAM,CAAC,CAAC,OAAQ,CAA4C,CAAC,IAAI,CAAC,IAAI,IAAI,MAAM,CAAC;YACtF,OAAO,CAAC,CAAC,OAAO,EAAE,CAAC;QACrB,CAAC;IACH,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;AACd,CAAC;AAED,MAAM,UAAU,2BAA2B,CAAC,OAAsB,EAAE,cAAsB;IACxF,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,cAAc,CAAC;IAChD,MAAM,SAAS,GAAG,CAAC,IAAY,EAAE,EAAE,CAAC,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;IAC/G,MAAM,KAAK,GAAG,OAAO;SAClB,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,IAAI,CAAC,CAAC,IAAI,KAAK,WAAW,IAAI,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC;SAC/E,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,GAAG,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,aAAa,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;IACjE,MAAM,YAAY,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACtC,OAAO,GAAG,sBAAsB,KAAK,YAAY,OAAO,sBAAsB,KAAK,cAAc,EAAE,CAAC;AACtG,CAAC;AAED,MAAM,UAAU,oBAAoB,CAClC,MAAiC,EACjC,cAAsB,EACtB,QAAgB;IAEhB,IAAI,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;IAC7B,IAAI,cAAc,EAAE,CAAC;QACnB,OAAO,IAAI,OAAO,cAAc,EAAE,CAAC;IACrC,CAAC;IACD,IAAI,QAAQ,EAAE,CAAC;QACb,OAAO,IAAI,mBAAmB,QAAQ,EAAE,CAAC;IAC3C,CAAC;IACD,MAAM,EAAE,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC,eAAe,EAAE,CAAC,QAAQ,CAAC;IAC5D,MAAM,OAAO,GAAG,IAAI,IAAI,EAAE,CAAC,cAAc,CAAC,OAAO,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC;IACrE,OAAO,IAAI,qBAAqB,OAAO,KAAK,EAAE,GAAG,CAAC;IAClD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,OAAoB,EAAE,QAAgB;IACrE,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,IAAI,OAAO,CAAC,QAAQ;QAAE,KAAK,CAAC,IAAI,CAAC,YAAY,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC;IACjE,IAAI,OAAO,CAAC,KAAK;QAAE,KAAK,CAAC,IAAI,CAAC,OAAO,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC;IACtD,IAAI,OAAO,CAAC,QAAQ;QAAE,KAAK,CAAC,IAAI,CAAC,QAAQ,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC;IAC7D,IAAI,OAAO,CAAC,KAAK;QAAE,KAAK,CAAC,IAAI,CAAC,SAAS,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC;IACxD,IAAI,OAAO,CAAC,OAAO;QAAE,KAAK,CAAC,IAAI,CAAC,SAAS,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;IAC5D,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAClC,OAAO,cAAc,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;AAC3C,CAAC;AAUD,MAAM,UAAU,qBAAqB,CAAC,GAA4B;IAChE,MAAM,EAAE,MAAM,EAAE,aAAa,EAAE,gBAAgB,EAAE,mBAAmB,EAAE,gBAAgB,EAAE,GAAG,GAAG,CAAC;IAC/F,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;IAC1B,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;IAEvC,cAAc;IACd,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,EAAE,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC,eAAe,EAAE,CAAC,QAAQ,CAAC;IAC5D,MAAM,OAAO,GAAG,GAAG,CAAC,cAAc,CAAC,OAAO,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC;IAC9D,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IAC/C,MAAM,QAAQ,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IACjD,KAAK,CAAC,IAAI,CAAC;QACT,MAAM,CAAC,OAAO;QACd,EAAE;QACF,iBAAiB,OAAO,KAAK,EAAE,GAAG;QAClC,cAAc,GAAG,EAAE;QACnB,aAAa,OAAO,EAAE;QACtB,qBAAqB,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,CAAC,oBAAoB,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,QAAQ,GAAG,KAAK,CAAC,6CAA6C;KAC9J,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IAEd,WAAW;IACX,KAAK,CAAC,IAAI,CAAC;QACT,UAAU;QACV,kEAAkE;QAClE,uEAAuE;QACvE,gFAAgF;QAChF,wFAAwF;QACxF,oDAAoD;QACpD,uEAAuE;QACvE,kFAAkF;QAClF,sFAAsF;QACtF,iGAAiG;KAClG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IAEd,YAAY;IACZ,IAAI,gBAAgB,EAAE,CAAC;QACrB,KAAK,CAAC,IAAI,CAAC,yBAAyB,GAAG,gBAAgB,GAAG,+EAA+E,CAAC,CAAC;IAC7I,CAAC;SAAM,IAAI,aAAa,IAAI,aAAa,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;QACnD,MAAM,MAAM,GAAG,aAAa,CAAC,MAAM,EAAE,CAAC;QACtC,MAAM,KAAK,GAAa,CAAC,qBAAqB,CAAC,CAAC;QAChD,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,KAAK,CAAC,IAAI,CAAC,KAAK,KAAK,CAAC,IAAI,KAAK,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC;QACtD,CAAC;QACD,KAAK,CAAC,IAAI,CAAC,2EAA2E,CAAC,CAAC;QACxF,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IAC/B,CAAC;IAED,mBAAmB;IACnB,IAAI,mBAAmB,EAAE,CAAC;QACxB,KAAK,CAAC,IAAI,CAAC,sBAAsB,GAAG,mBAAmB,CAAC,CAAC;IAC3D,CAAC;IAED,YAAY;IACZ,MAAM,UAAU,GAAG,oBAAoB,EAAE,CAAC;IAC1C,IAAI,UAAU,EAAE,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,eAAe,GAAG,UAAU,CAAC,CAAC;IAC3C,CAAC;IAED,eAAe;IACf,IAAI,gBAAgB,EAAE,CAAC;QACrB,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;IAC/B,CAAC;IAED,OAAO,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;AACjD,CAAC"}
+{"version":3,"file":"prompt.js","sourceRoot":"","sources":["../../src/zhin-agent/prompt.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAK7B,OAAO,EAAE,WAAW,EAAE,sBAAsB,EAAE,sBAAsB,EAAE,MAAM,aAAa,CAAC;AAE1F,OAAO,EAAE,oBAAoB,EAAE,MAAM,iBAAiB,CAAC;AAEvD,MAAM,UAAU,aAAa,CAAC,CAA0D;IACtF,IAAI,CAAC,IAAI,IAAI;QAAE,OAAO,EAAE,CAAC;IACzB,IAAI,OAAO,CAAC,KAAK,QAAQ;QAAE,OAAO,CAAC,CAAC;IACpC,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAgB,CAAC,CAAC;IACxD,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE;QACnB,IAAI,CAAC,CAAC;YAAE,OAAO,EAAE,CAAC;QAClB,QAAQ,CAAC,CAAC,IAAI,EAAE,CAAC;YACf,KAAK,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC;YAC3B,KAAK,WAAW,CAAC,CAAC,OAAO,MAAM,CAAC;YAChC,KAAK,OAAO,CAAC,CAAC,OAAO,MAAM,CAAC;YAC5B,KAAK,WAAW,CAAC,CAAC,OAAO,MAAM,CAAC;YAChC,KAAK,MAAM,CAAC,CAAC,OAAQ,CAA4C,CAAC,IAAI,CAAC,IAAI,IAAI,MAAM,CAAC;YACtF,OAAO,CAAC,CAAC,OAAO,EAAE,CAAC;QACrB,CAAC;IACH,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;AACd,CAAC;AAED,MAAM,UAAU,2BAA2B,CAAC,OAAsB,EAAE,cAAsB;IACxF,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,cAAc,CAAC;IAChD,MAAM,SAAS,GAAG,CAAC,IAAY,EAAE,EAAE,CAAC,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;IAC/G,MAAM,KAAK,GAAG,OAAO;SAClB,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,IAAI,CAAC,CAAC,IAAI,KAAK,WAAW,IAAI,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC;SAC/E,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,GAAG,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,aAAa,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;IACjE,MAAM,YAAY,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACtC,OAAO,GAAG,sBAAsB,KAAK,YAAY,OAAO,sBAAsB,KAAK,cAAc,EAAE,CAAC;AACtG,CAAC;AAED,MAAM,UAAU,oBAAoB,CAClC,MAAiC,EACjC,cAAsB,EACtB,QAAgB;IAEhB,IAAI,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;IAC7B,IAAI,cAAc,EAAE,CAAC;QACnB,OAAO,IAAI,OAAO,cAAc,EAAE,CAAC;IACrC,CAAC;IACD,IAAI,QAAQ,EAAE,CAAC;QACb,OAAO,IAAI,mBAAmB,QAAQ,EAAE,CAAC;IAC3C,CAAC;IACD,MAAM,EAAE,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC,eAAe,EAAE,CAAC,QAAQ,CAAC;IAC5D,MAAM,OAAO,GAAG,IAAI,IAAI,EAAE,CAAC,cAAc,CAAC,OAAO,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC;IACrE,OAAO,IAAI,qBAAqB,OAAO,KAAK,EAAE,GAAG,CAAC;IAClD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,OAAoB,EAAE,QAAgB;IACrE,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,IAAI,OAAO,CAAC,QAAQ;QAAE,KAAK,CAAC,IAAI,CAAC,YAAY,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC;IACjE,IAAI,OAAO,CAAC,KAAK;QAAE,KAAK,CAAC,IAAI,CAAC,OAAO,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC;IACtD,IAAI,OAAO,CAAC,QAAQ;QAAE,KAAK,CAAC,IAAI,CAAC,QAAQ,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC;IAC7D,IAAI,OAAO,CAAC,KAAK;QAAE,KAAK,CAAC,IAAI,CAAC,SAAS,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC;IACxD,IAAI,OAAO,CAAC,OAAO;QAAE,KAAK,CAAC,IAAI,CAAC,SAAS,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;IAC5D,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAClC,OAAO,cAAc,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;AAC3C,CAAC;AAUD,yBAAyB;AAEzB,SAAS,cAAc,CAAC,KAAmC;IACzD,OAAO,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAC1C,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC;QACjB,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,OAAO,GAAG,EAAE,CAAC;QAC/B,CAAC,CAAC,CAAC,MAAM,IAAc,EAAE,CAAC,CAC7B,CAAC;AACJ,CAAC;AAED;;;GAGG;AACH,SAAS,oBAAoB,CAAC,MAAiC;IAC7D,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,EAAE,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC,eAAe,EAAE,CAAC,QAAQ,CAAC;IAC5D,MAAM,OAAO,GAAG,GAAG,CAAC,cAAc,CAAC,OAAO,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC;IAC9D,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;IAC1B,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;IACvC,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IAC/C,MAAM,QAAQ,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IACjD,MAAM,QAAQ,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC;IAC/B,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,KAAK,IAAI,SAAS,CAAC;IAC7C,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;IAEhC,MAAM,QAAQ,GAAG;QACf,sBAAsB,GAAG,EAAE;QAC3B,mBAAmB,OAAO,EAAE;QAC5B,aAAa,QAAQ,KAAK,EAAE,CAAC,OAAO,EAAE,GAAG;QACzC,UAAU,KAAK,EAAE;QACjB,YAAY,OAAO,EAAE;QACrB,iBAAiB,OAAO,KAAK,EAAE,GAAG;QAClC,qBAAqB,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,CAAC,EAAE;QACxD,kBAAkB,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,QAAQ,GAAG,KAAK,CAAC,EAAE;KAC3D,CAAC;IAEF,OAAO;QACL,MAAM,CAAC,OAAO;QACd,EAAE;QACF,eAAe;QACf,GAAG,cAAc,CAAC,QAAQ,CAAC;KAC5B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACf,CAAC;AAED;;;GAGG;AACH,SAAS,kBAAkB;IACzB,MAAM,KAAK,GAAG;QACZ,0HAA0H;QAC1H,+JAA+J;QAC/J,4KAA4K;QAC5K,kHAAkH;KACnH,CAAC;IACF,OAAO,CAAC,UAAU,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC3D,CAAC;AAED;;;GAGG;AACH,SAAS,sBAAsB;IAC7B,MAAM,cAAc,GAAG;QACrB,kHAAkH;QAClH,6HAA6H;QAC7H,oHAAoH;KACrH,CAAC;IAEF,MAAM,KAAK,GAAG;QACZ,sFAAsF;QACtF,kFAAkF;QAClF,oGAAoG;QACpG,uFAAuF;QACvF,6EAA6E;QAC7E,iMAAiM;QACjM,gJAAgJ;QAChJ,GAAG,cAAc;QACjB,6EAA6E;QAC7E,0EAA0E;KAC3E,CAAC;IAEF,OAAO,CAAC,eAAe,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAChE,CAAC;AAED;;;GAGG;AACH,SAAS,mBAAmB;IAC1B,OAAO;;;;;;;;;ySASgS,CAAC;AAC1S,CAAC;AAED;;;GAGG;AACH,SAAS,sBAAsB;IAC7B,MAAM,kBAAkB,GAAG;QACzB,2DAA2D;QAC3D,qDAAqD;QACrD,iEAAiE;QACjE,mDAAmD;QACnD,yDAAyD;KAC1D,CAAC;IAEF,MAAM,KAAK,GAAG;QACZ,sIAAsI;QACtI,kBAAkB;QAClB,oGAAoG;QACpG,kPAAkP;QAClP,4HAA4H;QAC5H,8FAA8F;QAC9F,+FAA+F;KAChG,CAAC;IAEF,OAAO,CAAC,oBAAoB,EAAE,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACrE,CAAC;AAED;;;GAGG;AACH,SAAS,yBAAyB;IAChC,MAAM,SAAS,GAAG;QAChB,wFAAwF;QACxF,wFAAwF;QACxF,6JAA6J;KAC9J,CAAC;IAEF,MAAM,eAAe,GAAG;QACtB,2EAA2E;QAC3E,8FAA8F;QAC9F,sDAAsD;QACtD,gIAAgI;QAChI,oJAAoJ;KACrJ,CAAC;IAEF,OAAO;QACL,kBAAkB;QAClB,GAAG,cAAc,CAAC,SAAS,CAAC;QAC5B,EAAE;QACF,qBAAqB;QACrB,GAAG,cAAc,CAAC,eAAe,CAAC;KACnC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACf,CAAC;AAED;;GAEG;AACH,SAAS,kBAAkB,CAAC,aAAkC,EAAE,gBAAwB;IACtF,IAAI,gBAAgB,EAAE,CAAC;QACrB,OAAO,wBAAwB,GAAG,gBAAgB,GAAG,gFAAgF,CAAC;IACxI,CAAC;IACD,IAAI,aAAa,IAAI,aAAa,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;QAC5C,MAAM,MAAM,GAAG,aAAa,CAAC,MAAM,EAAE,CAAC;QACtC,MAAM,KAAK,GAAa,CAAC,oBAAoB,CAAC,CAAC;QAC/C,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,KAAK,CAAC,IAAI,CAAC,MAAM,KAAK,CAAC,IAAI,KAAK,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC;QACvD,CAAC;QACD,KAAK,CAAC,IAAI,CAAC,8EAA8E,CAAC,CAAC;QAC3F,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC1B,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;GAEG;AACH,SAAS,wBAAwB,CAAC,mBAA2B;IAC3D,IAAI,CAAC,mBAAmB;QAAE,OAAO,IAAI,CAAC;IACtC,OAAO,qBAAqB,GAAG,mBAAmB,CAAC;AACrD,CAAC;AAED;;GAEG;AACH,SAAS,kBAAkB;IACzB,MAAM,UAAU,GAAG,oBAAoB,EAAE,CAAC;IAC1C,IAAI,CAAC,UAAU;QAAE,OAAO,IAAI,CAAC;IAC7B,OAAO,cAAc,GAAG,UAAU,CAAC;AACrC,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,GAA4B;IAChE,MAAM,EAAE,MAAM,EAAE,aAAa,EAAE,gBAAgB,EAAE,mBAAmB,EAAE,gBAAgB,EAAE,GAAG,GAAG,CAAC;IAE/F,MAAM,QAAQ,GAAsB;QAClC,wCAAwC;QACxC,oBAAoB,CAAC,MAAM,CAAC,EAAQ,KAAK;QACzC,kBAAkB,EAAE,EAAgB,KAAK;QACzC,sBAAsB,EAAE,EAAY,KAAK;QACzC,mBAAmB,EAAE,EAAe,KAAK;QACzC,sBAAsB,EAAE,EAAY,KAAK;QACzC,yBAAyB,EAAE,EAAS,KAAK;QACzC,2CAA2C;QAC3C,kBAAkB,CAAC,aAAa,EAAE,gBAAgB,CAAC,EAAG,KAAK;QAC3D,wBAAwB,CAAC,mBAAmB,CAAC,EAAS,KAAK;QAC3D,kBAAkB,EAAE,EAAgB,KAAK;QACzC,gBAAgB,IAAI,IAAI,EAAY,MAAM;KAC3C,CAAC;IAEF,OAAO,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;AACpD,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@zhin.js/agent",
-  "version": "0.0.18",
+  "version": "0.0.19",
   "description": "Zhin AI Agent — session, ZhinAgent, init; composes @zhin.js/core providers and tools",
   "type": "module",
   "main": "./lib/index.js",
@@ -14,8 +14,8 @@
   },
   "dependencies": {
     "js-yaml": "^4.1.0",
-    "@zhin.js/ai": "1.0.16",
-    "@zhin.js/core": "1.0.55"
+    "@zhin.js/ai": "1.0.17",
+    "@zhin.js/core": "1.0.56"
   },
   "devDependencies": {
     "@types/js-yaml": "^4.0.9",

package/src/builtin-tools.ts

@@ -7,6 +7,7 @@
  * 计划:      todo_read, todo_write
  * 记忆:      read_memory, write_memory (AGENTS.md)
  * 技能:      activate_skill, install_skill
+ * 交互:      ask_user（基于 Prompt 类的用户确认/提问工具）
  *
  * 发现逻辑已拆分到 discover-skills.ts / discover-agents.ts / discover-tools.ts
  */
@@ -15,9 +16,13 @@ import * as fs from 'fs';
 import * as path from 'path';
 import { exec } from 'child_process';
 import { promisify } from 'util';
-import { Logger, type PropertySchema } from '@zhin.js/core';
+import { Logger, Prompt, type Plugin, type PropertySchema } from '@zhin.js/core';
 import { ZhinTool } from '@zhin.js/core';
-import { assertFileAccess, checkBashCommandSafety, shellEscape } from './file-policy.js';
+import {
+  assertFileAccess, checkBashCommandSafety, shellEscape,
+  isBlockedDevicePath, MAX_READ_FILE_SIZE, MAX_EDIT_FILE_SIZE,
+  classifyBashCommand, getFileMtime, isFileStale,
+} from './file-policy.js';
 import {
   errMsg, expandHome, getDataDir, mergeSkillDirsWithResolver, nodeErrToFileMessage,
 } from './discovery-utils.js';
@@ -26,11 +31,119 @@ import { checkSkillDeps, extractSkillInstructions } from './discover-skills.js';
 const execAsync = promisify(exec);
 const logger = new Logger(null, 'builtin-tools');
 
+// ── 引号归一化 + 模糊匹配（参考 Claude Code FileEditTool/utils.ts） ──
+
+/** 将弯引号归一化为直引号 */
+function normalizeQuotes(str: string): string {
+  return str
+    .replace(/\u2018/g, "'")  // '
+    .replace(/\u2019/g, "'")  // '
+    .replace(/\u201C/g, '"')  // "
+    .replace(/\u201D/g, '"'); // "
+}
+
+interface FuzzyMatchResult {
+  /** 文件中实际匹配到的字符串 */
+  actual: string;
+  /** 匹配次数 */
+  count: number;
+  /** 是否通过引号归一化匹配 */
+  wasNormalized: boolean;
+}
+
+/**
+ * 在文件内容中查找字符串，支持精确匹配和引号归一化模糊匹配。
+ * 参考 Claude Code `findActualString`。
+ */
+function findActualStringInFile(fileContent: string, searchString: string): FuzzyMatchResult | null {
+  // 精确匹配
+  const exactCount = fileContent.split(searchString).length - 1;
+  if (exactCount > 0) {
+    return { actual: searchString, count: exactCount, wasNormalized: false };
+  }
+
+  // 引号归一化匹配
+  const normalizedSearch = normalizeQuotes(searchString);
+  const normalizedFile = normalizeQuotes(fileContent);
+  const idx = normalizedFile.indexOf(normalizedSearch);
+  if (idx !== -1) {
+    // 提取文件中实际的字符串（保留原始弯引号）
+    const actual = fileContent.substring(idx, idx + searchString.length);
+    const normalizedCount = normalizedFile.split(normalizedSearch).length - 1;
+    return { actual, count: normalizedCount, wasNormalized: true };
+  }
+
+  return null;
+}
+
+/**
+ * 将 new_string 中的直引号替换为文件中原始的弯引号风格。
+ * 参考 Claude Code `preserveQuoteStyle`。
+ */
+function preserveQuoteStyleInEdit(oldString: string, actualOldString: string, newString: string): string {
+  if (oldString === actualOldString) return newString;
+
+  const hasDouble = actualOldString.includes('\u201C') || actualOldString.includes('\u201D');
+  const hasSingle = actualOldString.includes('\u2018') || actualOldString.includes('\u2019');
+  if (!hasDouble && !hasSingle) return newString;
+
+  let result = newString;
+  if (hasDouble) {
+    // 简单启发式：前面是空白/行首时用左引号，否则右引号
+    const chars = [...result];
+    const out: string[] = [];
+    for (let i = 0; i < chars.length; i++) {
+      if (chars[i] === '"') {
+        const prev = i > 0 ? chars[i - 1] : ' ';
+        const isOpening = /[\s(\[{]/.test(prev) || i === 0;
+        out.push(isOpening ? '\u201C' : '\u201D');
+      } else {
+        out.push(chars[i]);
+      }
+    }
+    result = out.join('');
+  }
+  if (hasSingle) {
+    const chars = [...result];
+    const out: string[] = [];
+    for (let i = 0; i < chars.length; i++) {
+      if (chars[i] === "'") {
+        const prev = i > 0 ? chars[i - 1] : ' ';
+        const next = i < chars.length - 1 ? chars[i + 1] : ' ';
+        // 两个字母之间是缩写，用右引号
+        if (/\p{L}/u.test(prev) && /\p{L}/u.test(next)) {
+          out.push('\u2019');
+        } else {
+          const isOpening = /[\s(\[{]/.test(prev) || i === 0;
+          out.push(isOpening ? '\u2018' : '\u2019');
+        }
+      } else {
+        out.push(chars[i]);
+      }
+    }
+    result = out.join('');
+  }
+  return result;
+}
+
+// ── 图片格式检测（参考 Claude Code FileReadTool imageResizer） ──
+
+/** 支持的图片扩展名 */
+const IMAGE_EXTENSIONS: ReadonlySet<string> = new Set([
+  '.png', '.jpg', '.jpeg', '.gif', '.webp', '.bmp', '.svg', '.ico',
+]);
+
+function isImageFile(filePath: string): boolean {
+  return IMAGE_EXTENSIONS.has(path.extname(filePath).toLowerCase());
+}
+
 // ============================================================================
 // 工具工厂函数
 // ============================================================================
 
 export interface BuiltinToolsOptions {
+  /** 插件实例，用于 ask_user 工具创建 Prompt 交互 */
+  plugin?: Plugin;
   /** Max chars for skill instruction extraction (model-size-aware) */
   skillInstructionMaxChars?: number;
   /**
@@ -52,13 +165,14 @@ export function createBuiltinTools(options?: BuiltinToolsOptions): ZhinTool[] {
   const skillMaxChars = options?.skillInstructionMaxChars ?? 4000;
   const skillDirList = () => mergeSkillDirsWithResolver(options?.pluginSkillRootsResolver);
   const skillFileLookup = options?.skillFileLookup;
+  const pluginRef = options?.plugin;
 
   const tools: ZhinTool[] = [];
 
-  // ── read_file（清晰描述 + 强关键词） ──
+  // ── read_file（清晰描述 + 强关键词 + 图片检测 + 安全防护） ──
   tools.push(
     new ZhinTool('read_file')
-      .desc('读取指定路径的文件内容。用于查看、打开或读取任意文本文件。')
+      .desc('读取指定路径的文件内容。用于查看、打开或读取任意文本文件。图片文件返回 Base64 数据。')
       .keyword('读文件', '读取文件', '查看文件', '打开文件', '文件内容', 'read file', 'read', 'cat', '查看', '打开')
       .tag('file', 'read')
       .kind('file')
@@ -68,8 +182,27 @@ export function createBuiltinTools(options?: BuiltinToolsOptions): ZhinTool[] {
       .execute(async (args) => {
         try {
           const fp = expandHome(args.file_path);
+          // 设备路径拦截（参考 Claude Code BLOCKED_DEVICE_PATHS）
+          if (isBlockedDevicePath(fp)) {
+            return `Error: 禁止读取设备文件 ${fp}（会导致进程挂起或注入攻击）`;
+          }
           assertFileAccess(fp);
           const stat = await fs.promises.stat(fp);
+          // 文件大小限制（参考 Claude Code MAX_EDIT_FILE_SIZE）
+          if (stat.size > MAX_READ_FILE_SIZE) {
+            return `Error: 文件过大 (${(stat.size / 1024 / 1024).toFixed(1)} MiB)，超过 ${MAX_READ_FILE_SIZE / 1024 / 1024} MiB 限制。请使用 offset/limit 分段读取。`;
+          }
+
+          // 图片文件检测（参考 Claude Code FileReadTool 的图片处理）
+          if (isImageFile(fp)) {
+            const buffer = await fs.promises.readFile(fp);
+            const ext = path.extname(fp).toLowerCase().replace('.', '');
+            const mimeType = ext === 'jpg' ? 'jpeg' : ext === 'svg' ? 'svg+xml' : ext;
+            const b64 = buffer.toString('base64');
+            const sizeKb = (buffer.length / 1024).toFixed(1);
+            return `[Image: ${path.basename(fp)}, ${sizeKb} KB, type: image/${mimeType}]\ndata:image/${mimeType};base64,${b64.slice(0, 200)}...(total ${b64.length} chars)`;
+          }
+
           const content = await fs.promises.readFile(fp, 'utf-8');
           const lines = content.split('\n');
           const offset = args.offset ?? 0;
@@ -105,10 +238,10 @@ export function createBuiltinTools(options?: BuiltinToolsOptions): ZhinTool[] {
       }),
   );
 
-  // ── edit_file（old_text 必须精确匹配） ──
+  // ── edit_file（支持精确匹配 + 引号归一化模糊匹配）──
   tools.push(
     new ZhinTool('edit_file')
-      .desc('在文件中查找并替换一段文本。old_string 必须在文件中精确存在且唯一；建议包含完整行或足够上下文以避免重复匹配。')
+      .desc('在文件中查找并替换一段文本。old_string 必须在文件中精确存在且唯一；建议包含完整行或足够上下文以避免重复匹配。支持弯引号/直引号自动归一化。')
       .keyword('编辑文件', '修改文件', '替换内容', '查找替换', 'edit file', 'edit', '修改', '替换')
       .tag('file', 'edit')
       .kind('file')
@@ -119,11 +252,32 @@ export function createBuiltinTools(options?: BuiltinToolsOptions): ZhinTool[] {
         try {
           const fp = expandHome(args.file_path);
           assertFileAccess(fp);
+          // 文件大小限制
+          const stat = await fs.promises.stat(fp);
+          if (stat.size > MAX_EDIT_FILE_SIZE) {
+            return `Error: 文件过大 (${(stat.size / 1024 / 1024).toFixed(1)} MiB)，超过 ${MAX_EDIT_FILE_SIZE / 1024 / 1024} MiB 限制。`;
+          }
+          // 记录 mtime 用于防并发覆写
+          const mtimeBefore = stat.mtimeMs;
           const content = await fs.promises.readFile(fp, 'utf-8');
-          const count = content.split(args.old_string).length - 1;
-          if (count === 0) return `Error: old_string not found in file. Make sure it matches exactly.`;
-          if (count > 1) return `Warning: old_string appears ${count} times. Please provide more context to make it unique.`;
-          const newContent = content.replace(args.old_string, args.new_string);
+
+          // 精确匹配 → 引号归一化模糊匹配
+          const matchResult = findActualStringInFile(content, args.old_string);
+          if (!matchResult) return `Error: old_string not found in file. Make sure it matches exactly (also tried quote normalization).`;
+          if (matchResult.count > 1) return `Warning: old_string appears ${matchResult.count} times. Please provide more context to make it unique.`;
+
+          // 如果通过引号归一化匹配，保持文件的引号风格
+          const effectiveNew = matchResult.wasNormalized
+            ? preserveQuoteStyleInEdit(args.old_string, matchResult.actual, args.new_string)
+            : args.new_string;
+
+          const newContent = content.replace(matchResult.actual, effectiveNew);
+
+          // 写入前再检查 mtime 防止并发修改
+          const currentStat = await fs.promises.stat(fp);
+          if (isFileStale(mtimeBefore, currentStat.mtimeMs)) {
+            return `Error: 文件 ${fp} 在读取后被外部修改。请重新读取文件后再编辑，避免覆盖他人的修改。`;
+          }
           await fs.promises.writeFile(fp, newContent, 'utf-8');
 
           const oldLines = args.old_string.split('\n');
@@ -195,29 +349,68 @@ export function createBuiltinTools(options?: BuiltinToolsOptions): ZhinTool[] {
       }),
   );
 
-  // ── grep ──
+  // ── grep（支持上下文行、大小写、多行、ripgrep 自动检测） ──
   tools.push(
     new ZhinTool('grep')
-      .desc('按正则搜索文件内容，返回匹配行和行号')
-      .keyword('搜索', '查找内容', 'grep', '正则')
+      .desc('按正则搜索文件内容，返回匹配行和行号。优先使用 ripgrep (rg)，回退到 grep。')
+      .keyword('搜索', '查找内容', 'grep', '正则', 'rg', 'ripgrep')
       .tag('search', 'regex')
       .kind('file')
       .param('pattern', { type: 'string', description: '正则表达式' }, true)
       .param('path', { type: 'string', description: '搜索路径（默认 .）' })
       .param('include', { type: 'string', description: '文件类型过滤（如 *.ts）' })
+      .param('context', { type: 'number', description: '匹配行上下文行数（-C 参数）' })
+      .param('before', { type: 'number', description: '匹配行之前显示行数（-B 参数）' })
+      .param('after', { type: 'number', description: '匹配行之后显示行数（-A 参数）' })
+      .param('ignore_case', { type: 'boolean', description: '大小写不敏感搜索（-i 参数）' } as any)
+      .param('multiline', { type: 'boolean', description: '多行模式，. 匹配换行（仅 ripgrep 支持）' } as any)
+      .param('limit', { type: 'number', description: '最多返回结果行数（默认 50）' })
       .execute(async (args) => {
         try {
           const searchPath = args.path || '.';
           assertFileAccess(path.resolve(process.cwd(), searchPath));
-          // 安全转义 pattern 和 include 参数防止命令注入
           const safePattern = shellEscape(args.pattern);
           const safePath = shellEscape(searchPath);
-          const includeFlag = args.include ? `--include=${shellEscape(args.include)}` : '';
-          const { stdout } = await execAsync(
-            `grep -rn ${includeFlag} ${safePattern} ${safePath} 2>/dev/null | head -50`,
-            { cwd: process.cwd() },
-          );
-          return stdout.trim() || `No matches for '${args.pattern}'`;
+          const limit = args.limit ?? 50;
+
+          // 检测 ripgrep 是否可用
+          let useRipgrep = false;
+          try {
+            await execAsync('rg --version', { timeout: 3000 });
+            useRipgrep = true;
+          } catch { /* ripgrep 不可用，回退到 grep */ }
+
+          let cmd: string;
+          if (useRipgrep) {
+            // ripgrep 命令构建
+            const rgFlags: string[] = ['-n']; // 行号
+            if (args.ignore_case) rgFlags.push('-i');
+            if (args.multiline) rgFlags.push('-U', '--multiline-dotall');
+            if (args.context) rgFlags.push(`-C${args.context}`);
+            else {
+              if (args.before) rgFlags.push(`-B${args.before}`);
+              if (args.after) rgFlags.push(`-A${args.after}`);
+            }
+            if (args.include) rgFlags.push(`--glob=${shellEscape(args.include)}`);
+            cmd = `rg ${rgFlags.join(' ')} ${safePattern} ${safePath} 2>/dev/null | head -${limit}`;
+          } else {
+            // 传统 grep 回退
+            const grepFlags: string[] = ['-rn'];
+            if (args.ignore_case) grepFlags.push('-i');
+            if (args.context) grepFlags.push(`-C${args.context}`);
+            else {
+              if (args.before) grepFlags.push(`-B${args.before}`);
+              if (args.after) grepFlags.push(`-A${args.after}`);
+            }
+            const includeFlag = args.include ? `--include=${shellEscape(args.include)}` : '';
+            cmd = `grep ${grepFlags.join(' ')} ${includeFlag} ${safePattern} ${safePath} 2>/dev/null | head -${limit}`;
+          }
+
+          const { stdout } = await execAsync(cmd, { cwd: process.cwd() });
+          const engine = useRipgrep ? '(ripgrep)' : '(grep)';
+          return stdout.trim()
+            ? `${engine}\n${stdout.trim()}`
+            : `No matches for '${args.pattern}' ${engine}`;
         } catch (e: unknown) {
           const err = e as { code?: number; message?: string };
           if (err.code === 1) return `No matches for '${args.pattern}'`;
@@ -226,10 +419,10 @@ export function createBuiltinTools(options?: BuiltinToolsOptions): ZhinTool[] {
       }),
   );
 
-  // ── bash ──
+  // ── bash（安全检查 + 命令读写分类） ──
   tools.push(
     new ZhinTool('bash')
-      .desc('执行 Shell 命令（带超时保护）')
+      .desc('执行 Shell 命令（带超时保护和命令分类）。返回结果中会标注命令类型（只读/搜索/写入）。')
       .keyword('执行', '运行', '命令', '终端', 'shell', 'bash')
       .tag('shell', 'exec')
       .kind('shell')
@@ -243,15 +436,20 @@ export function createBuiltinTools(options?: BuiltinToolsOptions): ZhinTool[] {
           // 检查命令是否可能泄漏敏感信息
           const safety = checkBashCommandSafety(cmd);
           if (!safety.safe) return `Error: ${safety.reason}`;
+          // 命令读写分类
+          const classification = classifyBashCommand(cmd);
           const { stdout, stderr } = await execAsync(cmd, {
             cwd: args.cwd || process.cwd(),
             timeout,
             maxBuffer: 1024 * 1024,
           });
           let result = '';
+          const tag = classification.isReadOnly
+            ? (classification.isSearch ? '[搜索]' : classification.isList ? '[列出]' : '[只读]')
+            : '[执行]';
           if (stdout.trim()) result += `STDOUT:\n${stdout.trim()}`;
           if (stderr.trim()) result += `${result ? '\n' : ''}STDERR:\n${stderr.trim()}`;
-          return result || '(no output)';
+          return `${tag} ${result || '(no output)'}`;
         } catch (e: unknown) {
           const err = e as { code?: number; message?: string; stdout?: string; stderr?: string };
           return `Error (exit ${err.code || '?'}): ${errMsg(e)}\nSTDOUT:\n${err.stdout || ''}\nSTDERR:\n${err.stderr || ''}`;
@@ -259,17 +457,27 @@ export function createBuiltinTools(options?: BuiltinToolsOptions): ZhinTool[] {
       }),
   );
 
-  // ── web_search（搜索网页，返回标题、URL、摘要） ──
+  // ── web_search（搜索网页，返回标题、URL、摘要 + 域名过滤 + 次数限制） ──
+  let searchCount = 0;
+  const MAX_SEARCH_COUNT = 20; // 单次会话搜索次数上限
   tools.push(
     new ZhinTool('web_search')
-      .desc('在互联网上搜索，返回匹配的标题、URL 和摘要片段。用于查资料、找网页。')
+      .desc('在互联网上搜索，返回匹配的标题、URL 和摘要片段。用于查资料、找网页。支持域名过滤。')
       .keyword('搜索', '网上搜', '网页搜索', '搜索引擎', 'search', 'google', '百度', '查询', '搜一下')
       .tag('web', 'search')
       .kind('web')
       .param('query', { type: 'string', description: '搜索关键词或完整查询语句' }, true)
       .param('limit', { type: 'number', description: '返回结果数量（默认 5，建议 1–10）' })
+      .param('allowed_domains', { type: 'array', description: '仅保留这些域名的结果（可选，如 ["github.com", "stackoverflow.com"]）' } as any)
+      .param('blocked_domains', { type: 'array', description: '排除这些域名的结果（可选）' } as any)
       .execute(async (args) => {
         try {
+          // 搜索次数限制
+          searchCount++;
+          if (searchCount > MAX_SEARCH_COUNT) {
+            return `Error: 搜索次数已达上限 (${MAX_SEARCH_COUNT})。请使用已获取的信息回答。`;
+          }
+
           const limit = args.limit ?? 5;
           const url = `https://html.duckduckgo.com/html/?q=${encodeURIComponent(args.query)}`;
           const res = await fetch(url, {
@@ -312,8 +520,23 @@ export function createBuiltinTools(options?: BuiltinToolsOptions): ZhinTool[] {
             }
           }
 
-          if (results.length === 0) return 'No results found.';
-          return results.map((r, i) =>
+          // 域名过滤
+          let filtered = results;
+          if (args.allowed_domains?.length) {
+            const allowed = new Set((args.allowed_domains as string[]).map(d => d.toLowerCase()));
+            filtered = filtered.filter(r => {
+              try { return allowed.has(new URL(r.url).hostname.toLowerCase()); } catch { return false; }
+            });
+          }
+          if (args.blocked_domains?.length) {
+            const blocked = new Set((args.blocked_domains as string[]).map(d => d.toLowerCase()));
+            filtered = filtered.filter(r => {
+              try { return !blocked.has(new URL(r.url).hostname.toLowerCase()); } catch { return true; }
+            });
+          }
+
+          if (filtered.length === 0) return 'No results found.';
+          return `(${searchCount}/${MAX_SEARCH_COUNT} searches)\n` + filtered.map((r, i) =>
             `${i + 1}. ${r.title}\n   URL: ${r.url}\n   ${r.snippet}`,
           ).join('\n\n');
         } catch (e: unknown) {
@@ -322,29 +545,67 @@ export function createBuiltinTools(options?: BuiltinToolsOptions): ZhinTool[] {
       }),
   );
 
-  // ── web_fetch（抓取 URL 并提取正文） ──
+  // ── web_fetch（抓取 URL 并提取正文 + SSRF 防护 + 改进的内容提取） ──
   tools.push(
     new ZhinTool('web_fetch')
-      .desc('抓取指定 URL 的网页内容并提取正文（去除广告等），返回可读文本。用于读文章、获取网页内容。')
+      .desc('抓取指定 URL 的网页内容并提取正文（去除广告、脚本等），返回可读文本。仅支持 http/https 协议。')
       .keyword('抓取网页', '打开链接', '获取网页', '读网页', 'fetch', 'url', '链接内容', '网页内容')
       .tag('web', 'fetch')
       .kind('web')
       .param('url', { type: 'string', description: '要抓取的完整 URL（需 http 或 https）' }, true)
+      .param('max_length', { type: 'number', description: '最大返回字符数（默认 20480）' })
       .execute(async (args) => {
         try {
+          // SSRF 防护：仅允许 http/https 协议
+          let parsedUrl: URL;
+          try {
+            parsedUrl = new URL(args.url);
+          } catch {
+            return `Error: 无效的 URL 格式`;
+          }
+          if (parsedUrl.protocol !== 'http:' && parsedUrl.protocol !== 'https:') {
+            return `Error: 仅支持 http/https 协议，拒绝 ${parsedUrl.protocol}`;
+          }
+          // 阻止内网地址（SSRF 关键防护）
+          const hostname = parsedUrl.hostname.toLowerCase();
+          if (
+            hostname === 'localhost' ||
+            hostname === '127.0.0.1' ||
+            hostname === '::1' ||
+            hostname === '0.0.0.0' ||
+            hostname.endsWith('.local') ||
+            hostname.startsWith('10.') ||
+            hostname.startsWith('192.168.') ||
+            /^172\.(1[6-9]|2\d|3[01])\./.test(hostname)
+          ) {
+            return `Error: 禁止访问内网地址 ${hostname}（SSRF 防护）`;
+          }
+
           const response = await fetch(args.url, {
             headers: { 'User-Agent': 'Mozilla/5.0 (compatible; ZhinBot/1.0)' },
             signal: AbortSignal.timeout(15000),
+            redirect: 'follow',
           });
           if (!response.ok) return `HTTP ${response.status}: ${response.statusText}`;
           const html = await response.text();
+          // 改进的内容提取：去除脚本、样式、导航、页脚、表单等
           const text = html
             .replace(/<script[^>]*>[\s\S]*?<\/script>/gi, '')
             .replace(/<style[^>]*>[\s\S]*?<\/style>/gi, '')
+            .replace(/<nav[^>]*>[\s\S]*?<\/nav>/gi, '')
+            .replace(/<footer[^>]*>[\s\S]*?<\/footer>/gi, '')
+            .replace(/<header[^>]*>[\s\S]*?<\/header>/gi, ' ')
+            .replace(/<form[^>]*>[\s\S]*?<\/form>/gi, '')
+            .replace(/<!--[\s\S]*?-->/g, '')
             .replace(/<[^>]+>/g, ' ')
+            .replace(/&nbsp;/gi, ' ')
+            .replace(/&amp;/g, '&')
+            .replace(/&lt;/g, '<')
+            .replace(/&gt;/g, '>')
+            .replace(/&quot;/g, '"')
             .replace(/\s+/g, ' ')
             .trim();
-          const maxLen = 20 * 1024;
+          const maxLen = args.max_length ?? 20 * 1024;
           return text.length > maxLen ? text.slice(0, maxLen) + '\n...(truncated)' : text;
         } catch (e: unknown) {
           return `Error: ${errMsg(e)}`;
@@ -527,5 +788,65 @@ export function createBuiltinTools(options?: BuiltinToolsOptions): ZhinTool[] {
       }),
   );
 
+  // ── ask_user（基于 Prompt 类的用户确认/提问工具） ──
+  tools.push(
+    new ZhinTool('ask_user')
+      .desc('向用户发送问题，等待用户在聊天中回复。用于需要用户确认、补充信息或做出选择时。支持文本输入、数字输入、是/否确认、选项选择。')
+      .keyword('询问', '确认', '提问', '用户输入', 'ask', 'confirm', 'prompt', '选择', '请问')
+      .tag('interaction', 'prompt')
+      .kind('interaction')
+      .param('question', { type: 'string', description: '要向用户提出的问题文本' }, true)
+      .param('type', { type: 'string', description: '问题类型: text(文本输入)、number(数字输入)、confirm(是/否确认)、pick(选项选择)。默认 text' })
+      .param('options', { type: 'array', description: '选项列表（type=pick 时必填），每项为字符串，如 ["选项A","选项B","选项C"]' })
+      .param('default_value', { type: 'string', description: '用户超时未回复时使用的默认值' })
+      .param('timeout', { type: 'number', description: '等待用户回复的超时时间（秒），默认 120' })
+      .execute(async (args, context) => {
+        // 无消息上下文时无法使用（如子任务场景）
+        if (!context?.message) {
+          return 'Error: 当前上下文没有消息来源，无法向用户提问。请改为在回复中直接询问。';
+        }
+        if (!pluginRef) {
+          return 'Error: 插件实例不可用，无法创建交互式提问。请改为在回复中直接询问。';
+        }
+
+        const prompt = new Prompt(pluginRef, context.message);
+        const timeoutMs = (args.timeout ?? 120) * 1000;
+        const questionType = args.type || 'text';
+
+        try {
+          switch (questionType) {
+            case 'number': {
+              const defaultNum = args.default_value != null ? Number(args.default_value) : undefined;
+              const result = await prompt.number(args.question, timeoutMs, defaultNum, '输入超时，已取消');
+              return String(result);
+            }
+            case 'confirm': {
+              const result = await prompt.confirm(args.question, 'yes', timeoutMs, false, '确认超时，已取消');
+              return result ? 'yes' : 'no';
+            }
+            case 'pick': {
+              if (!args.options?.length) {
+                return 'Error: type=pick 时必须提供 options 选项列表';
+              }
+              const pickOptions = (args.options as string[]).map((o: string) => ({ label: o, value: o }));
+              const result = await prompt.pick(args.question, {
+                type: 'text' as const,
+                options: pickOptions,
+                timeout: timeoutMs,
+              }, '选择超时，已取消');
+              return String(result);
+            }
+            case 'text':
+            default: {
+              const result = await prompt.text(args.question, timeoutMs, args.default_value || '', '输入超时，已取消');
+              return result;
+            }
+          }
+        } catch (e: unknown) {
+          return `用户未响应或输入错误: ${errMsg(e)}`;
+        }
+      }),
+  );
+
   return tools;
 }