aegis-bridge 2.15.4 → 2.15.5

package/dist/auth.js

@@ -10,6 +10,7 @@ import { readFile, writeFile, mkdir } from 'node:fs/promises';
 import { authStoreSchema } from './validation.js';
 import { existsSync } from 'node:fs';
 import { dirname } from 'node:path';
+import { secureFilePermissions } from './file-utils.js';
 /** Default SSE token lifetime: 60 seconds. */
 const SSE_TOKEN_TTL_MS = 60_000;
 /** Max SSE tokens per bearer token to prevent abuse. */
@@ -61,6 +62,7 @@ export class AuthManager {
             await mkdir(dir, { recursive: true });
         }
         await writeFile(this.keysFile, JSON.stringify(this.store, null, 2), { mode: 0o600 });
+        await secureFilePermissions(this.keysFile);
     }
     /** Create a new API key. Returns the plaintext key (only shown once). */
     async createKey(name, rateLimit = 100) {

package/dist/channels/telegram.js

@@ -6,6 +6,7 @@
  *
  * Formatting: HTML parse_mode with structured, clean messages.
  */
+import { homedir } from 'node:os';
 import { esc, bold, code, italic, quickUpdate, taskComplete, alert as styleAlert, } from './telegram-style.js';
 /** Call Telegram Bot API with retry on 429. */
 // ── HTML Helpers ────────────────────────────────────────────────────────────
@@ -25,12 +26,22 @@ function elapsed(ms) {
     return `${h}h ${m % 60}m`;
 }
 function shortPath(path) {
+    const normalized = path.replace(/\\/g, '/');
     // Keep only filename or last 2 segments
-    const parts = path.replace(/^\//, '').split('/');
+    const parts = normalized.replace(/^\//, '').split('/');
     if (parts.length <= 2)
         return parts.join('/');
     return '…/' + parts.slice(-2).join('/');
 }
+function shortenHomePath(workDir) {
+    const normalized = workDir.replace(/\\/g, '/');
+    const home = homedir().replace(/\\/g, '/').replace(/\/+$/, '');
+    if (normalized === home)
+        return '~';
+    if (normalized.startsWith(`${home}/`))
+        return `~${normalized.slice(home.length)}`;
+    return normalized;
+}
 /**
  * Strip Claude Code internal XML tags from assistant messages.
  * These tags (local-command-*, antml:*, etc.) are CC's internal markup
@@ -244,7 +255,7 @@ function md2html(md) {
 // ── Message Formatting ──────────────────────────────────────────────────────
 function formatSessionCreated(name, workDir, id, meta) {
     const shortId = id.slice(0, 8);
-    const shortDir = workDir.replace(/^\/home\/[^/]+\/projects\//, '~/');
+    const shortDir = shortenHomePath(workDir);
     const parts = [`${bold(name)}  ${code(shortDir)}  ${code(shortId)}`];
     const flags = [];
     if (meta?.permissionMode && meta.permissionMode !== 'default')

package/dist/cli.js

@@ -5,7 +5,7 @@
  * `npx aegis-bridge` or `aegis-bridge` starts the server with sensible defaults.
  * Auto-detects tmux and claude CLI, prints helpful startup message.
  */
-import { execSync } from 'node:child_process';
+import { execFileSync } from 'node:child_process';
 import { readFileSync } from 'node:fs';
 import { dirname, join } from 'node:path';
 import { fileURLToPath } from 'node:url';
@@ -15,9 +15,9 @@ const pkg = JSON.parse(readFileSync(join(__dirname, '../package.json'), 'utf-8')
 /** Current aegis-bridge version read from package.json at startup. */
 const VERSION = pkg.version;
 /** Check whether a required external dependency can be executed. */
-function checkDependency(name, command) {
+function checkDependency(command, args) {
     try {
-        execSync(`${command} 2>/dev/null`, { stdio: 'ignore' });
+        execFileSync(command, args, { stdio: 'ignore', timeout: 5000 });
         return true;
     }
     catch { /* command not found or exited non-zero */
@@ -188,8 +188,8 @@ async function main() {
         process.env.AEGIS_PORT = args[portIdx + 1];
     }
     // Check dependencies
-    const hasTmux = checkDependency('tmux', 'tmux -V');
-    const hasClaude = checkDependency('claude', 'claude --version');
+    const hasTmux = checkDependency('tmux', ['-V']);
+    const hasClaude = checkDependency('claude', ['--version']);
     if (!hasTmux) {
         console.error(`
   ❌ tmux not found.

package/dist/file-utils.d.ts

@@ -0,0 +1,2 @@
+export declare function buildWindowsIcaclsArgs(filePath: string, account: string): string[];
+export declare function secureFilePermissions(filePath: string, platform?: NodeJS.Platform): Promise<void>;

package/dist/file-utils.js

@@ -0,0 +1,37 @@
+import { execFile } from 'node:child_process';
+import { chmod } from 'node:fs/promises';
+const PERMISSIONS_TIMEOUT_MS = 5_000;
+export function buildWindowsIcaclsArgs(filePath, account) {
+    return [filePath, '/inheritance:r', '/grant:r', `${account}:(R,W)`];
+}
+function runIcacls(filePath, account) {
+    const args = buildWindowsIcaclsArgs(filePath, account);
+    return new Promise((resolve, reject) => {
+        execFile('icacls', args, { timeout: PERMISSIONS_TIMEOUT_MS }, (error) => {
+            if (error) {
+                reject(error);
+                return;
+            }
+            resolve();
+        });
+    });
+}
+export async function secureFilePermissions(filePath, platform = process.platform) {
+    if (platform !== 'win32') {
+        await chmod(filePath, 0o600);
+        return;
+    }
+    const username = process.env.USERNAME;
+    if (!username) {
+        console.warn(`Windows permission hardening skipped for ${filePath}: USERNAME is not set`);
+        return;
+    }
+    const account = process.env.USERDOMAIN ? `${process.env.USERDOMAIN}\\${username}` : username;
+    try {
+        await runIcacls(filePath, account);
+    }
+    catch (error) {
+        const detail = error instanceof Error ? error.message : String(error);
+        console.warn(`Windows permission hardening failed for ${filePath}: ${detail}`);
+    }
+}

package/dist/hook-settings.js

@@ -19,6 +19,7 @@ import { join, resolve } from 'node:path';
 import { tmpdir } from 'node:os';
 import { randomBytes } from 'node:crypto';
 import { ccSettingsSchema, containsTraversalSegment } from './validation.js';
+import { secureFilePermissions } from './file-utils.js';
 function isRecord(value) {
     return typeof value === 'object' && value !== null && !Array.isArray(value);
 }
@@ -192,6 +193,7 @@ export async function writeHookSettingsFile(baseUrl, sessionId, hookSecret, work
     await mkdir(settingsDir, { recursive: true, mode: 0o700 });
     const filePath = join(settingsDir, `hooks-${sessionId}.json`);
     await writeFile(filePath, JSON.stringify(combined, null, 2) + '\n', { encoding: 'utf-8', mode: 0o600 });
+    await secureFilePermissions(filePath);
     return filePath;
 }
 /**
@@ -260,6 +262,7 @@ export async function cleanupStaleSessionHooks(workDir, activeSessionIds) {
         }
         if (changed) {
             await writeFile(projectSettingsPath, JSON.stringify(settings, null, 2) + '\n', 'utf-8');
+            await secureFilePermissions(projectSettingsPath);
         }
     }
     catch {

package/dist/mcp-server.js

@@ -15,13 +15,27 @@ import { McpServer, ResourceTemplate } from '@modelcontextprotocol/sdk/server/mc
 import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
 import { z } from 'zod';
 import { readFileSync } from 'node:fs';
-import { dirname, join } from 'node:path';
+import { dirname, join, resolve } from 'node:path';
 import { fileURLToPath } from 'node:url';
 import { isValidUUID } from './validation.js';
 // Read version from package.json at startup (matches cli.ts pattern)
 const __dirname = dirname(fileURLToPath(import.meta.url));
 const pkg = JSON.parse(readFileSync(join(__dirname, '../package.json'), 'utf-8'));
 const VERSION = pkg.version;
+function normalizeWorkDirForCompare(workDir) {
+    const isWindowsLikePath = /^[a-zA-Z]:[\\/]/.test(workDir) || workDir.startsWith('\\\\');
+    const normalizedPath = (isWindowsLikePath ? workDir : resolve(workDir))
+        .replace(/\\/g, '/')
+        .replace(/\/+$/, '');
+    return process.platform === 'win32' || isWindowsLikePath
+        ? normalizedPath.toLowerCase()
+        : normalizedPath;
+}
+function isSameOrChildWorkDir(candidate, parent) {
+    const normalizedCandidate = normalizeWorkDirForCompare(candidate);
+    const normalizedParent = normalizeWorkDirForCompare(parent);
+    return normalizedCandidate === normalizedParent || normalizedCandidate.startsWith(`${normalizedParent}/`);
+}
 // ── Aegis REST client ───────────────────────────────────────────────
 export class AegisClient {
     baseUrl;
@@ -65,7 +79,7 @@ export class AegisClient {
             sessions = sessions.filter((s) => s.status === filter.status);
         }
         if (filter?.workDir) {
-            sessions = sessions.filter((s) => s.workDir === filter.workDir || s.workDir?.startsWith(filter.workDir + '/'));
+            sessions = sessions.filter((s) => isSameOrChildWorkDir(s.workDir, filter.workDir));
         }
         return sessions;
     }

package/dist/process-utils.d.ts

@@ -0,0 +1,4 @@
+export declare function buildWindowsFindPidOnPortScript(port: number): string;
+export declare function buildWindowsReadParentPidScript(pid: number): string;
+export declare function findPidOnPort(port: number): Promise<number[]>;
+export declare function readParentPid(pid: number): Promise<number | null>;

package/dist/process-utils.js

@@ -0,0 +1,73 @@
+import { execFile } from 'node:child_process';
+import { readFile } from 'node:fs/promises';
+const SUBPROCESS_TIMEOUT_MS = 5_000;
+function runCommand(command, args) {
+    return new Promise((resolve, reject) => {
+        execFile(command, args, { encoding: 'utf-8', timeout: SUBPROCESS_TIMEOUT_MS, maxBuffer: 1024 * 1024 }, (error, stdout) => {
+            if (error) {
+                reject(error);
+                return;
+            }
+            resolve(stdout);
+        });
+    });
+}
+function parsePidLines(output) {
+    return [...new Set(output
+            .trim()
+            .split(/\r?\n/)
+            .map(line => parseInt(line.trim(), 10))
+            .filter(pid => Number.isInteger(pid) && pid > 0))];
+}
+export function buildWindowsFindPidOnPortScript(port) {
+    return [
+        `Get-NetTCPConnection -State Listen -LocalPort ${port} -ErrorAction SilentlyContinue`,
+        'Select-Object -ExpandProperty OwningProcess -Unique',
+    ].join(' | ');
+}
+export function buildWindowsReadParentPidScript(pid) {
+    return [
+        `Get-CimInstance Win32_Process -Filter "ProcessId = ${pid}" -ErrorAction SilentlyContinue`,
+        'Select-Object -ExpandProperty ParentProcessId',
+    ].join(' | ');
+}
+export async function findPidOnPort(port) {
+    if (!Number.isInteger(port) || port <= 0 || port > 65535)
+        return [];
+    try {
+        if (process.platform === 'win32') {
+            const script = buildWindowsFindPidOnPortScript(port);
+            const stdout = await runCommand('powershell', ['-NoProfile', '-Command', script]);
+            return parsePidLines(stdout);
+        }
+        const stdout = await runCommand('lsof', ['-ti', `tcp:${port}`]);
+        return parsePidLines(stdout);
+    }
+    catch {
+        return [];
+    }
+}
+export async function readParentPid(pid) {
+    if (!Number.isInteger(pid) || pid <= 0)
+        return null;
+    try {
+        if (process.platform === 'win32') {
+            const script = buildWindowsReadParentPidScript(pid);
+            const stdout = await runCommand('powershell', ['-NoProfile', '-Command', script]);
+            const parent = parseInt(stdout.trim(), 10);
+            return Number.isInteger(parent) && parent > 0 ? parent : null;
+        }
+        if (process.platform !== 'linux') {
+            return null;
+        }
+        const status = await readFile(`/proc/${pid}/status`, 'utf-8');
+        const match = status.match(/^PPid:\s+(\d+)/m);
+        if (!match)
+            return null;
+        const parent = parseInt(match[1], 10);
+        return Number.isInteger(parent) && parent > 0 ? parent : null;
+    }
+    catch {
+        return null;
+    }
+}

package/dist/server.d.ts

@@ -7,4 +7,4 @@
  * Notification channels (Telegram, webhooks, etc.) are pluggable —
  * the server doesn't know which channels are active.
  */
-export { readPpid } from './startup.js';
+export { readParentPid as readPpid } from './process-utils.js';

package/dist/server.js

@@ -1677,7 +1677,7 @@ function registerChannels(cfg) {
     }
 }
 // Preserve public export used by tests and external imports.
-export { readPpid } from './startup.js';
+export { readParentPid as readPpid } from './process-utils.js';
 async function main() {
     // Load configuration
     config = await loadConfig();

package/dist/startup.d.ts

@@ -1,6 +1,6 @@
 import Fastify from 'fastify';
 export declare function writePidFile(stateDir: string): string;
 export declare function removePidFile(pidFilePath: string): void;
-/** Read the parent PID for a Linux process from /proc. */
-export declare function readPpid(pid: number): number;
+/** Read parent PID with cross-platform fallback. */
+export declare function readPpid(pid: number): Promise<number>;
 export declare function listenWithRetry(app: ReturnType<typeof Fastify>, port: number, host: string, stateDir: string, maxRetries?: number): Promise<void>;

package/dist/startup.js

@@ -1,7 +1,7 @@
 import fs from 'node:fs/promises';
-import { readFileSync, writeFileSync, unlinkSync } from 'node:fs';
+import { writeFileSync, unlinkSync } from 'node:fs';
 import path from 'node:path';
-import { execFileSync } from 'node:child_process';
+import { findPidOnPort, readParentPid } from './process-utils.js';
 export function writePidFile(stateDir) {
     try {
         const pidFilePath = path.join(stateDir, 'aegis.pid');
@@ -41,22 +41,22 @@ function pidExists(pid) {
         return false;
     }
 }
-/** Read the parent PID for a Linux process from /proc. */
-export function readPpid(pid) {
-    const status = readFileSync(`/proc/${pid}/status`, 'utf-8');
-    const match = status.match(/^PPid:\s+(\d+)/m);
-    if (!match)
-        throw new Error(`no PPid line in /proc/${pid}/status`);
-    return parseInt(match[1], 10);
+/** Read parent PID with cross-platform fallback. */
+export async function readPpid(pid) {
+    const parent = await readParentPid(pid);
+    if (parent === null) {
+        throw new Error(`no parent PID available for process ${pid}`);
+    }
+    return parent;
 }
-function isAncestorPid(pid) {
+async function isAncestorPid(pid) {
     try {
         let current = process.ppid;
         for (let depth = 0; depth < 10 && current > 1; depth++) {
             if (current === pid)
                 return true;
             try {
-                current = readPpid(current);
+                current = await readPpid(current);
             }
             catch {
                 break;
@@ -94,17 +94,14 @@ async function waitForPortRelease(port, maxWaitMs = 5000) {
 async function killStalePortHolder(port, stateDir) {
     await new Promise(resolve => setTimeout(resolve, 100 + Math.random() * 400));
     try {
-        const output = execFileSync('lsof', ['-ti', `tcp:${port}`], { encoding: 'utf-8', timeout: 5000 }).trim();
-        if (!output)
-            return false;
-        const pids = output.split('\n').map(s => parseInt(s.trim(), 10)).filter(n => !Number.isNaN(n));
+        const pids = await findPidOnPort(port);
         if (pids.length === 0)
             return false;
         let killed = false;
         for (const pid of pids) {
             if (pid === process.pid)
                 continue;
-            if (isAncestorPid(pid)) {
+            if (await isAncestorPid(pid)) {
                 console.warn(`EADDRINUSE recovery: skipping ancestor PID ${pid} on port ${port}`);
                 continue;
             }

package/dist/swarm-monitor.d.ts

@@ -75,10 +75,13 @@ export declare class SwarmMonitor {
     private lastResult;
     private timer;
     private eventHandlers;
+    private windowsDisabledLogged;
     constructor(sessions: SessionManager, config?: SwarmMonitorConfig);
     /** Register an event handler for teammate lifecycle events. */
     onEvent(handler: SwarmEventHandler): void;
     private emitEvent;
+    private isWindowsPlatform;
+    private logWindowsDisabled;
     /** Start the periodic scan loop. */
     start(): void;
     /** Stop the periodic scan loop. */

package/dist/swarm-monitor.js

@@ -28,6 +28,7 @@ export class SwarmMonitor {
     lastResult = null;
     timer = null;
     eventHandlers = [];
+    windowsDisabledLogged = false;
     constructor(sessions, config = DEFAULT_SWARM_CONFIG) {
         this.sessions = sessions;
         this.config = config;
@@ -46,8 +47,21 @@ export class SwarmMonitor {
             }
         }
     }
+    isWindowsPlatform() {
+        return process.platform === 'win32';
+    }
+    logWindowsDisabled() {
+        if (this.windowsDisabledLogged)
+            return;
+        console.info('SwarmMonitor disabled on Windows: tmux swarm sockets are not supported on this platform.');
+        this.windowsDisabledLogged = true;
+    }
     /** Start the periodic scan loop. */
     start() {
+        if (this.isWindowsPlatform()) {
+            this.logWindowsDisabled();
+            return;
+        }
         if (this.running)
             return;
         this.running = true;
@@ -70,6 +84,16 @@ export class SwarmMonitor {
     }
     /** Run a single scan and return the result. */
     async scan() {
+        if (this.isWindowsPlatform()) {
+            this.logWindowsDisabled();
+            this.lastResult = {
+                swarms: [],
+                totalSockets: 0,
+                totalTeammates: 0,
+                scannedAt: Date.now(),
+            };
+            return this.lastResult;
+        }
         try {
             const sockets = await this.discoverSwarmSockets();
             // Issue #353: Inspect sockets in parallel to avoid N×timeout accumulation.
@@ -176,6 +200,17 @@ export class SwarmMonitor {
     }
     /** Inspect a single swarm socket and return swarm info. */
     async inspectSwarmSocket(socketName) {
+        if (this.isWindowsPlatform()) {
+            const pid = this.extractPid(socketName);
+            return {
+                socketName,
+                pid,
+                parentSession: null,
+                teammates: [],
+                aggregatedStatus: 'no_teammates',
+                lastScannedAt: Date.now(),
+            };
+        }
         const pid = this.extractPid(socketName);
         const teammates = await this.listSwarmWindows(socketName);
         const parentSession = this.findParentSession(pid, teammates);

package/dist/tmux.js

@@ -12,6 +12,7 @@ import { join } from 'node:path';
 import { homedir, tmpdir } from 'node:os';
 import { randomBytes } from 'node:crypto';
 import { computeProjectHash } from './path-utils.js';
+import { secureFilePermissions } from './file-utils.js';
 /** Shell-escape a string by wrapping in single quotes and escaping embedded single quotes. */
 function shellEscape(s) {
     return `'${s.replace(/'/g, "'\\''")}'`;
@@ -420,6 +421,7 @@ export class TmuxManager {
             return `export ${key}='${escaped}'`;
         });
         await fs.writeFile(tmpFile, lines.join('\n') + '\n', { mode: 0o600 });
+        await secureFilePermissions(tmpFile);
         // Source the file and delete it — all in one command so the values
         // appear in the process environment but not in the terminal history.
         // The 'source' line is visible but only shows the temp file path, not the values.
@@ -489,6 +491,7 @@ export class TmuxManager {
             return `export ${key}='${escaped}'`;
         });
         await fs.writeFile(tmpFile, lines.join('\n') + '\n', { mode: 0o600 });
+        await secureFilePermissions(tmpFile);
         // Use sendKeysDirectInternal to avoid re-entering serialize()
         const cmd = `source ${shellEscape(tmpFile)} && rm -f ${shellEscape(tmpFile)}`;
         await this.sendKeysDirectInternal(windowId, cmd, true);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "aegis-bridge",
-  "version": "2.15.4",
+  "version": "2.15.5",
   "type": "module",
   "description": "Orchestrate Claude Code sessions via API. Create, brief, monitor, refine, ship.",
   "main": "dist/server.js",
@@ -32,6 +32,7 @@
     "dev": "tsc && node dist/cli.js",
     "prepublishOnly": "npm run build:dashboard && npm run build",
     "test": "vitest run",
+    "test:smoke": "node scripts/uat-smoke.mjs",
     "test:fault-harness": "vitest run src/__tests__/fault-injection-harness-901.test.ts"
   },
   "keywords": [