@zonease/aiworker-cli 0.5.2 → 0.6.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +73 -6
- package/aiworker-bun.js +399 -323
- package/drizzle/worker/0005_worthless_whiplash.sql +20 -0
- package/drizzle/worker/0006_fair_jetstream.sql +34 -0
- package/drizzle/worker/meta/0005_snapshot.json +1192 -0
- package/drizzle/worker/meta/0006_snapshot.json +1420 -0
- package/drizzle/worker/meta/_journal.json +14 -0
- package/package.json +1 -1
- package/web/fleet/assets/index-BZwhVgPL.js +20 -0
- package/web/fleet/assets/index-COGrC65e.css +2 -0
- package/web/fleet/index.html +2 -2
- package/web/worker/assets/index-CHPQ4YS-.js +30 -0
- package/web/worker/assets/index-COGrC65e.css +2 -0
- package/web/worker/index.html +2 -2
- package/web/fleet/assets/index-DTCfTJhd.css +0 -2
- package/web/fleet/assets/index-L4fKh6RH.js +0 -20
- package/web/worker/assets/index-BmosiLzt.js +0 -30
- package/web/worker/assets/index-DTCfTJhd.css +0 -2
package/README.md
CHANGED
|
@@ -1,14 +1,67 @@
|
|
|
1
1
|
# AIWorker
|
|
2
2
|
|
|
3
|
-
|
|
3
|
+
轻量自托管 **Project Brain + Worker/Fleet aggregation runtime**。
|
|
4
|
+
|
|
5
|
+
AIWorker 负责 Project Brain、worker identity/state、gateway routing、fleet
|
|
6
|
+
presence、audit 和 admin surface。Executor 是 bring-your-own 外部 agent runtime:
|
|
7
|
+
Codex、Claude Code、Hermes、OpenClaw、Cursor 等继续拥有自己的 MCP、skills、
|
|
8
|
+
plugins、auth、sandbox、approval 和 native sessions,AIWorker 只通过薄 adapter
|
|
9
|
+
调用、观察和聚合它们。
|
|
10
|
+
|
|
11
|
+
这里的 Project 是 worker 在 host/workspace 上服务的业务作用域,不等同于
|
|
12
|
+
software project。developer Soul 可以把 scope 绑定到代码仓库;HR Soul 可以把
|
|
13
|
+
scope 绑定到岗位、候选人池或简历库;legal、finance、ops 等 Soul 也应以各自
|
|
14
|
+
业务对象、资料、审核和归档流程为中心建模。
|
|
4
15
|
|
|
5
16
|
工作站、服务器、k8s pod、docker container 都能跑成一个 worker 加入同一个 fleet。Operator 用一个 CLI 控制所有 worker。
|
|
6
17
|
|
|
18
|
+
## Operator topology(一图 canonical)
|
|
19
|
+
|
|
20
|
+
```text
|
|
21
|
+
┌──────────────────────────────────────────────────────────────┐
|
|
22
|
+
│ Operator / Admin │
|
|
23
|
+
│ $ aiworker fleet ... $ aiworker gateway ... │
|
|
24
|
+
└───────────────────┬──────────────────────────────────────────┘
|
|
25
|
+
│ WS /ws (basicauth) + /enroll-ws (OTP)
|
|
26
|
+
▼
|
|
27
|
+
┌──────────────────────────────────────────────────────────────┐
|
|
28
|
+
│ AIWorker Gateway (control plane) │
|
|
29
|
+
│ fleet.db: registered_workers + audit_events │
|
|
30
|
+
│ 只持指针 / presence / routing / audit ── 不持 brain / 对话 │
|
|
31
|
+
└───────────────────┬──────────────────────────────────────────┘
|
|
32
|
+
│ WS frame relay
|
|
33
|
+
┌────────────────────┼────────────────────┐
|
|
34
|
+
▼ ▼ ▼
|
|
35
|
+
┌──────────┐ ┌──────────┐ ┌──────────┐
|
|
36
|
+
│ Worker A │ │ Worker B │ │ Worker N │
|
|
37
|
+
└────┬─────┘ └────┬─────┘ └────┬─────┘
|
|
38
|
+
│ │ │
|
|
39
|
+
▼ (data plane, per worker) ...
|
|
40
|
+
┌─────────────────────────────────────────────────────────────┐
|
|
41
|
+
│ worker.db (identity + config + conversations, AES-256-GCM) │
|
|
42
|
+
│ Project Brain (filesystem 权威,5 类资产) │
|
|
43
|
+
│ Thin Executor Adapter → External Engine │
|
|
44
|
+
│ health / run / stream / cancel / resume │
|
|
45
|
+
│ └─→ user/host MCP / skills / │
|
|
46
|
+
│ plugins / auth / sessions │
|
|
47
|
+
└─────────────────────────────────────────────────────────────┘
|
|
48
|
+
```
|
|
49
|
+
|
|
50
|
+
详见 [`docs/architecture.md` § Product Positioning](docs/architecture.md#product-positioning)(同一份 mermaid 图,operator 与 dataplane 视角分开画);部署形态对照见 [`docs/deployment.md`](docs/deployment.md)。
|
|
51
|
+
|
|
52
|
+
要点:
|
|
53
|
+
|
|
54
|
+
- **Gateway = control plane**:fleet.db 只存 worker 指针 / presence / audit;从不缓存 conversations / messages / secrets,也不主动持有 brain 资产。
|
|
55
|
+
- **Worker = data plane**:worker.db 与 Project Brain 都在 worker 本机;fleet 视角通过 gateway WS 发指令读 worker,**不**反向 fetch worker REST。
|
|
56
|
+
- **External executor only inside the worker**:Codex / Claude Code / Hermes / OpenClaw / Cursor 等 engine 在 worker 内由薄 adapter 调用,永不被 gateway 直接接触;engine 自己持 user/host 级 MCP / skills / plugins / auth / native sessions,AIWorker 不默认隔离这些 ambient capabilities。
|
|
57
|
+
|
|
7
58
|
## Features
|
|
8
59
|
|
|
60
|
+
- **Project Brain**:每个业务作用域一份 5 类 brain 资产 — identity(`AGENT/SOUL/USER`)、memory(`MEMORY.md` + `memories/`)、brain skills(`.aiworker/skills/**`)、policy & drafts(`policy.json` / `toolsets.json` / `capability-packs.json` / `.aiworker/mcp.json`)、admission state(roadmap);filesystem 为权威,便于迁移和审计
|
|
61
|
+
- **Worker/Fleet 聚合**:gateway 管 workers、presence、audit、routing;worker 自持 worker.db、Project Brain 和外部 executor adapter
|
|
9
62
|
- **4 种入网路径**:OTP-attended(worker deployer 零凭证)/ self-enroll(unattended 批量)/ 手动 pair / docker auto-launch
|
|
10
63
|
- **WS 控制面**:operator + worker 共享同一 gateway 入口,按 path 分流(`/ws` basicauth + `/enroll-ws` OTP 专用)
|
|
11
|
-
-
|
|
64
|
+
- **Bring-your-own executor**:`http` baseline / `claude-code` / `codex` / `acp` (gemini / qwen) / `cursor` / `mcp`,外部 engine 自己管理 user/host 级能力
|
|
12
65
|
- **多 channel webhook**:Telegram / WhatsApp / Lark / LINE / Web,全部强制验签
|
|
13
66
|
- **Cron / per-tool approvals / hot-reload / fallback chain** 内建
|
|
14
67
|
- **数据物理隔离**:fleet.db(gateway)与 worker.db(每 worker)AES-256-GCM 各自加密
|
|
@@ -107,7 +160,8 @@ npm install -g @zonease/aiworker-cli
|
|
|
107
160
|
|
|
108
161
|
AIWorker CLI 是 Bun-native:`npx` / `npm install -g` 不会把 runtime 改成 Node。没有 Bun 时,CLI 会提示安装 Bun 或改用 GitHub Releases 的 standalone binary。binary 跑在 `~/.bun/bin/aiworker` 或 `$(npm bin -g)/aiworker`。第一次跑任意命令时自动 mint master key 写到 `~/.aiworker/.env`(chmod 0600)。
|
|
109
162
|
|
|
110
|
-
**项目级 worker**(PLAN-023,可选):`aiworker up --soul developer` 会在当前目录 `<cwd>/.aiworker/`
|
|
163
|
+
**项目级 worker**(PLAN-023,可选):`aiworker up --soul developer` 会在当前目录 `<cwd>/.aiworker/` 落 Project Brain layout(每个 worker-bound business scope 一份独立 worker.db / master key / persona / brain skills;不要求当前目录是 git repo,也不要求 scope 是软件工程项目),随后完成 brain/runtime 静态预检并启动本地 HTTP/admin。executor(claude / codex / cursor / Hermes / OpenClaw 等)默认是 operator 自己提供的外部运行时,可能加载 user/host 级 MCP、skills、plugins、auth 和 native sessions;AIWorker 不默认做 executor isolation。`aiworker scope` 诊断当前命中的 layout;显式拆步时仍可用 `aiworker init` / `aiworker doctor` / `aiworker serve`。详见 [docs/cli.md §`aiworker up`](docs/cli.md)。
|
|
164
|
+
新项目默认使用安全的 `http/default` stub executor;准备好 Codex / Claude 等本机 CLI 后,用 `aiworker executor select --engine codex --apply` 显式切换 task executor,再用 `aiworker executor doctor --engine codex` 检查 engine CLI 和可选 project executor overlay。`.aiworker/executor-capabilities.json` 只是 bootstrap hint / best-effort projection helper,不是 executor effective capability 的完整来源。
|
|
111
165
|
|
|
112
166
|
```sh
|
|
113
167
|
cd ~/code/my-project
|
|
@@ -259,8 +313,16 @@ aiworker fleet config get <workerId>
|
|
|
259
313
|
|
|
260
314
|
# 2. 切到 claude-code default variant(model=sonnet, timeout=120s)
|
|
261
315
|
NEW='{
|
|
262
|
-
"brains": [
|
|
263
|
-
|
|
316
|
+
"brains": [
|
|
317
|
+
{
|
|
318
|
+
"id": "local-filesystem",
|
|
319
|
+
"type": "filesystem",
|
|
320
|
+
"priority": 100,
|
|
321
|
+
"readOnly": false,
|
|
322
|
+
"config": {}
|
|
323
|
+
}
|
|
324
|
+
],
|
|
325
|
+
"brainWriteTarget": "local-filesystem",
|
|
264
326
|
"brainRetrieval": "first-match",
|
|
265
327
|
"executor": { "engine": "claude-code", "variant": "default" },
|
|
266
328
|
"channels": [],
|
|
@@ -268,7 +330,12 @@ NEW='{
|
|
|
268
330
|
}'
|
|
269
331
|
aiworker fleet config set <workerId> "$NEW" --if-match 1
|
|
270
332
|
|
|
271
|
-
# 3.
|
|
333
|
+
# 3. 如果是在该 worker 主机 / 项目目录内调试,可只读确认 brain source / skills / memories
|
|
334
|
+
aiworker brain status
|
|
335
|
+
aiworker brain skills
|
|
336
|
+
aiworker brain memories --limit 20
|
|
337
|
+
|
|
338
|
+
# 4. chat 验证
|
|
272
339
|
aiworker fleet chat <workerId> '请用中文回我一句话'
|
|
273
340
|
# {"kind":"accepted",...}
|
|
274
341
|
# {"kind":"chat.message","payload":{"role":"assistant","content":"...claude 真实回复..."}}
|