npm - a2acalling - Versions diffs - 0.6.52 → 0.6.53 - Mend

a2acalling 0.6.52 → 0.6.53

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (19) hide show

package/README.md +1 -0
package/bin/cli.js +83 -7
package/docs/protocol.md +6 -5
package/native/macos/index.html +24 -12
package/native/macos/package-lock.json +232 -0
package/native/macos/src-tauri/src/discovery.rs +100 -13
package/native/macos/src-tauri/src/server.rs +4 -1
package/package.json +1 -1
package/src/dashboard/public/app.js +2 -0
package/src/dashboard/public/index.html +1 -0
package/src/lib/claude-subagent.js +100 -27
package/src/lib/config.js +11 -0
package/src/lib/conversation-driver.js +11 -2
package/src/lib/disclosure.js +89 -13
package/src/lib/runtime-adapter.js +42 -15
package/src/lib/tokens.js +18 -0
package/src/routes/a2a.js +4 -0
package/src/routes/dashboard.js +9 -1
package/src/server.js +42 -2

package/src/lib/runtime-adapter.js CHANGED Viewed

@@ -12,7 +12,12 @@
 const { execSync, spawnSync } = require('child_process');
 const { createLogger } = require('./logger');
-const { runClaudeTurn: invokeClaudeTurn, buildSubagentSystemPrompt, runClaudeSummary } = require('./claude-subagent');
+const {
+  runClaudeTurn: invokeClaudeTurn,
+  buildSubagentSystemPrompt,
+  runClaudeSummary,
+  resolveClaudeAllowedTools
+} = require('./claude-subagent');
 const { getTopicsForTier, formatTopicsForPrompt, loadManifest } = require('./disclosure');
 const { HARD_FALLBACK_TURN_TIMEOUT_MS } = require('./turn-timeout');
@@ -168,7 +173,29 @@ function createRuntimeAdapter(options = {}) {
       const tierTopics = getTopicsForTier(context?.tier || 'public');
       const formatted = formatTopicsForPrompt(tierTopics);
-      const systemPrompt = buildSubagentSystemPrompt({
+      session = {
+        systemPrompt: '',
+        turnCount: 0,
+        lastMeta: null,
+        // Keep a permission snapshot so summary runs with the same policy envelope.
+        permissionSnapshot: {
+          capabilities: Array.isArray(context?.capabilities) ? context.capabilities : [],
+          allowedTopics: Array.isArray(context?.allowedTopics || context?.allowed_topics)
+            ? (context?.allowedTopics || context?.allowed_topics)
+            : [],
+          allowedTools: Array.isArray(context?.allowedTools || context?.allowed_tools)
+            ? (context?.allowedTools || context?.allowed_tools)
+            : []
+        }
+      };
+      const sessionAllowedTools = resolveClaudeAllowedTools({
+        capabilities: session.permissionSnapshot.capabilities,
+        allowedTopics: session.permissionSnapshot.allowedTopics,
+        allowedTools: session.permissionSnapshot.allowedTools
+      });
+      session.systemPrompt = buildSubagentSystemPrompt({
         agentName: context?.agentName || 'Agent',
         ownerName: context?.ownerName || 'the owner',
         otherAgentName: caller?.name || 'Remote Agent',
@@ -179,21 +206,10 @@ function createRuntimeAdapter(options = {}) {
         doNotDiscuss: formatted.doNotDiscuss,
         neverDisclose: formatted.neverDisclose,
         personalityNotes: manifest.personality_notes || '',
-        roleContext: context?.roleContext || ''
+        roleContext: context?.roleContext || '',
+        allowedTools: sessionAllowedTools
       });
-      session = {
-        systemPrompt,
-        turnCount: 0,
-        lastMeta: null,
-        // Keep a permission snapshot so summary runs with the same policy envelope.
-        permissionSnapshot: {
-          capabilities: Array.isArray(context?.capabilities) ? context.capabilities : [],
-          allowedTopics: Array.isArray(context?.allowedTopics || context?.allowed_topics)
-            ? (context?.allowedTopics || context?.allowed_topics)
-            : []
-        }
-      };
       claudeSessions.set(sessionId, session);
     }
@@ -227,6 +243,9 @@ function createRuntimeAdapter(options = {}) {
       allowedTopics: Array.isArray(context?.allowedTopics || context?.allowed_topics)
         ? (context?.allowedTopics || context?.allowed_topics)
         : (session.permissionSnapshot?.allowedTopics || []),
+      allowedTools: Array.isArray(context?.allowedTools || context?.allowed_tools)
+        ? (context?.allowedTools || context?.allowed_tools)
+        : (session.permissionSnapshot?.allowedTools || []),
       timeoutMs: timeoutMs || HARD_FALLBACK_TURN_TIMEOUT_MS
     });
@@ -237,6 +256,9 @@ function createRuntimeAdapter(options = {}) {
     if (Array.isArray(context?.allowedTopics || context?.allowed_topics)) {
       session.permissionSnapshot.allowedTopics = context?.allowedTopics || context?.allowed_topics;
     }
+    if (Array.isArray(context?.allowedTools || context?.allowed_tools)) {
+      session.permissionSnapshot.allowedTools = context?.allowedTools || context?.allowed_tools;
+    }
     // Store flags/state for retrieval via getLastTurnMeta
     session.lastMeta = {
@@ -416,12 +438,17 @@ function createRuntimeAdapter(options = {}) {
         || callerInfo?.allowedTopics
         || callerInfo?.allowed_topics
         || [];
+      const allowedTools = session?.permissionSnapshot?.allowedTools
+        || callerInfo?.allowedTools
+        || callerInfo?.allowed_tools
+        || [];
       const result = await runClaudeSummary({
         prompt,
         reason: 'conversation ended',
         capabilities,
         allowedTopics,
+        allowedTools,
         timeoutMs: timeoutMs || HARD_FALLBACK_TURN_TIMEOUT_MS
       });
       if (result && result.summary) {

package/src/lib/tokens.js CHANGED Viewed

@@ -201,6 +201,7 @@ class TokenStore {
       // Snapshot of actual capabilities at creation time
       allowedTopics = null,  // Array of topic strings, e.g. ['chat', 'calendar.read']
       allowedGoals = null,   // Array of goal strings, e.g. ['grow-network', 'find-collaborators']
+      allowedTools = null,   // Array of tool names, e.g. ['Read', 'Grep', 'Glob']
       tierSettings = null,   // Object with tier-specific settings
       timeoutMs = null
     } = options;
@@ -246,6 +247,14 @@ class TokenStore {
       'custom': configTiers.custom?.goals || []
     };
+    // Default tool allowlist based on tier label (snapshot at creation).
+    const defaultTools = {
+      'public': configTiers.public?.allowed_tools || TokenStore.DEFAULT_ALLOWED_TOOLS.public,
+      'friends': configTiers.friends?.allowed_tools || TokenStore.DEFAULT_ALLOWED_TOOLS.friends,
+      'family': configTiers.family?.allowed_tools || TokenStore.DEFAULT_ALLOWED_TOOLS.family,
+      'custom': configTiers.custom?.allowed_tools || TokenStore.DEFAULT_ALLOWED_TOOLS.custom
+    };
     // Resolve capabilities: explicit > config > defaults
     const defaultCapabilities = (configTiers[tier]?.capabilities?.length)
       ? configTiers[tier].capabilities
@@ -261,6 +270,7 @@ class TokenStore {
       capabilities: capabilities || defaultCapabilities,
       allowed_topics: allowedTopics || defaultTopics[tier] || ['chat'],
       allowed_goals: allowedGoals || defaultGoals[tier] || [],
+      allowed_tools: allowedTools || defaultTools[tier] || TokenStore.DEFAULT_ALLOWED_TOOLS.public,
       timeout_ms: parsePositiveTimeoutMs(timeoutMs),
       tier_settings: tierSettings || {},  // Snapshot of settings at creation
       disclosure,
@@ -346,6 +356,7 @@ class TokenStore {
       capabilities,
       allowed_topics: record.allowed_topics || ['chat'],
       allowed_goals: record.allowed_goals || [],
+      allowed_tools: record.allowed_tools || TokenStore.DEFAULT_ALLOWED_TOOLS[tier] || TokenStore.DEFAULT_ALLOWED_TOOLS.public,
       timeout_ms: timeoutMs,
       tier_settings: record.tier_settings || {},
       disclosure: record.disclosure,
@@ -777,4 +788,11 @@ TokenStore.DEFAULT_CAPABILITIES = {
   'custom': ['context-read']
 };
+TokenStore.DEFAULT_ALLOWED_TOOLS = {
+  'public': ['Read', 'Grep', 'Glob'],
+  'friends': ['Bash(readonly)', 'Read', 'Grep', 'Glob', 'WebSearch', 'WebFetch'],
+  'family': ['Bash', 'Read', 'Grep', 'Glob', 'WebSearch', 'WebFetch'],
+  'custom': ['Read', 'Grep', 'Glob']
+};
 module.exports = { TokenStore };

package/src/routes/a2a.js CHANGED Viewed

@@ -347,6 +347,8 @@ function createRoutes(options = {}) {
       tier: validation.tier,
       capabilities: validation.capabilities,
       allowed_topics: validation.allowed_topics,
+      allowed_goals: validation.allowed_goals,
+      allowed_tools: validation.allowed_tools,
       timeout_ms: validation.timeout_ms,
       disclosure: validation.disclosure,
       caller: sanitizedCaller,
@@ -393,6 +395,8 @@ function createRoutes(options = {}) {
             tier: validation.tier,
             capabilities: validation.capabilities,
             allowed_topics: validation.allowed_topics,
+            allowed_goals: validation.allowed_goals,
+            allowed_tools: validation.allowed_tools,
             trace_id: traceId,
             request_id: requestId
           });

package/src/routes/dashboard.js CHANGED Viewed

@@ -170,16 +170,18 @@ function parseTopicObjects(values) {
   return cleaned;
 }
-function formatInviteMessage({ owner, agentName, inviteUrl, topics, goals, expiresText }) {
+function formatInviteMessage({ owner, agentName, inviteUrl, topics, goals, tools, expiresText }) {
   const ownerText = owner || 'Someone';
   const topicsList = topics.length > 0 ? topics.join(' · ') : 'chat';
   const goalsList = (goals || []).join(' · ');
+  const toolsList = (tools || []).join(' · ');
   const expirationLine = expiresText === 'never' ? '' : `\n⏰ ${expiresText}`;
   return `📞🗣️ **Agent-to-Agent Call Invite**
 👤 **${ownerText}** would like your agent to call **${agentName}** and explore where our owners might collaborate.
 💬 ${topicsList}${goalsList ? `\n🎯 ${goalsList}` : ''}
+${toolsList ? `\n🧰 ${toolsList}` : ''}
 ${inviteUrl}${expirationLine}
@@ -1271,6 +1273,7 @@ function createDashboardApiRouter(options = {}) {
         name: configTier.name || tierId,
         description: configTier.description || '',
         capabilities: configTier.capabilities || [],
+        allowed_tools: sanitizeStringArray(configTier.allowed_tools || [], 30, 80),
         topics: sanitizeStringArray(configTier.topics || []),
         goals: sanitizeStringArray(configTier.goals || []),
         disclosure: configTier.disclosure || 'minimal',
@@ -1309,6 +1312,7 @@ function createDashboardApiRouter(options = {}) {
     if (body.description !== undefined) update.description = sanitizeString(body.description, 300);
     if (body.disclosure !== undefined) update.disclosure = sanitizeString(body.disclosure, 40) || 'minimal';
     if (body.capabilities !== undefined) update.capabilities = sanitizeStringArray(body.capabilities, 100, 120);
+    if (body.allowed_tools !== undefined) update.allowed_tools = sanitizeStringArray(body.allowed_tools, 30, 80);
     if (body.examples !== undefined) update.examples = sanitizeStringArray(body.examples, 20, 120);
     if (body.topics !== undefined) update.topics = sanitizeStringArray(body.topics, 200, 160);
     if (body.goals !== undefined) update.goals = sanitizeStringArray(body.goals, 200, 160);
@@ -1368,6 +1372,7 @@ function createDashboardApiRouter(options = {}) {
           name: sanitizeString(body.name || tierId, 120),
           description: sanitizeString(body.description || 'Custom tier', 300),
           capabilities: sanitizeStringArray(body.capabilities || []),
+          allowed_tools: sanitizeStringArray(body.allowed_tools || [], 30, 80),
           topics: sanitizeStringArray(body.topics || []),
           goals: sanitizeStringArray(body.goals || []),
           disclosure: sanitizeString(body.disclosure || 'minimal', 40),
@@ -1464,6 +1469,7 @@ function createDashboardApiRouter(options = {}) {
     const allowedTopics = sanitizeStringArray(body.topics || tier.topics || []);
     const allowedGoals = sanitizeStringArray(body.goals || tier.goals || []);
+    const allowedTools = sanitizeStringArray(body.tools || body.allowed_tools || tier.allowed_tools || [], 30, 80);
     const { token, record } = context.tokenStore.create({
       name,
       owner,
@@ -1474,6 +1480,7 @@ function createDashboardApiRouter(options = {}) {
       maxCalls,
       allowedTopics: allowedTopics.length ? allowedTopics : null,
       allowedGoals: allowedGoals.length ? allowedGoals : null,
+      allowedTools: allowedTools.length ? allowedTools : null,
       tierSettings: {
         tierId,
         ...tier
@@ -1495,6 +1502,7 @@ function createDashboardApiRouter(options = {}) {
       inviteUrl,
       topics: record.allowed_topics || [],
       goals: record.allowed_goals || [],
+      tools: record.allowed_tools || [],
       expiresText
     });

package/src/server.js CHANGED Viewed

@@ -624,12 +624,41 @@ async function callAgent(message, a2aContext) {
           capabilities: Array.isArray(a2aContext.capabilities) ? a2aContext.capabilities : [],
           allowedTopics: a2aContext.allowed_topics || [],
           allowed_topics: a2aContext.allowed_topics || [],
+          allowedGoals: a2aContext.allowed_goals || [],
+          allowed_goals: a2aContext.allowed_goals || [],
+          allowedTools: a2aContext.allowed_tools || [],
+          allowed_tools: a2aContext.allowed_tools || [],
           timeoutMs: runtime.mode === 'claude' ? claudeTurnTimeoutMs : 65000,
           traceId,
           requestId
         }
       });
+    // Claude mode returns structured metadata (statePatch + flags) via side channel.
+    // We persist owner-facing flags so permission questions (e.g. blocked tool requests)
+    // are visible in call history even though the remote only sees conversational text.
+    const turnMeta = runtime.mode === 'claude' && typeof runtime.getLastTurnMeta === 'function'
+      ? runtime.getLastTurnMeta(sessionId)
+      : null;
+    if (turnMeta?.flags?.length > 0) {
+      const convStoreForFlags = getServerConvStore();
+      if (convStoreForFlags) {
+        try {
+          convStoreForFlags.addMessage(conversationId, {
+            direction: 'outbound',
+            role: 'system',
+            content: `[flags] ${turnMeta.flags.map(f => f.content || f.type).join('; ')}`,
+            metadata: JSON.stringify({ flags: turnMeta.flags, phase: collabState.phase })
+          });
+        } catch (err) {
+          callLogger.warn('Failed to persist owner flags for turn', {
+            event: 'call_turn_flags_persist_failed',
+            error: err
+          });
+        }
+      }
+    }
     if (collabMode !== 'adaptive') {
       return rawResponse;
     }
@@ -639,7 +668,17 @@ async function callAgent(message, a2aContext) {
     const beforeTurn = collabState.turnCount;
     let usedMetadata = false;
-    if (parsed.hasState && parsed.statePatch) {
+    // Prefer explicit Claude metadata side channel in claude mode.
+    if (turnMeta?.statePatch) {
+      usedMetadata = applyCollaborationPatch(collabState, turnMeta.statePatch);
+      if (!usedMetadata) {
+        callLogger.warn('Invalid collaboration patch; applying fallback heuristics', {
+          event: 'collaboration_patch_invalid',
+          error_code: 'COLLABORATION_PATCH_INVALID',
+          hint: 'Ensure assistant emits valid collaboration metadata JSON block.'
+        });
+      }
+    } else if (parsed.hasState && parsed.statePatch) {
       usedMetadata = applyCollaborationPatch(collabState, parsed.statePatch);
       if (!usedMetadata) {
         callLogger.warn('Invalid collaboration patch; applying fallback heuristics', {
@@ -772,8 +811,9 @@ async function generateSummary(messages, callerInfo) {
   });
   try {
+    const summarySessionId = conversationId ? `a2a-${conversationId}` : `summary-${Date.now()}`;
     return await runtime.summarize({
-      sessionId: `summary-${Date.now()}`,
+      sessionId: summarySessionId,
       prompt,
       messages,
       callerInfo,