agent-messenger 2.19.3 → 2.19.5

package/skills/agent-line/references/common-patterns.md

@@ -71,8 +71,8 @@ MESSAGES=$(agent-line message list "$CHAT_ID" -n 50)
 MSG_COUNT=$(echo "$MESSAGES" | jq 'length')
 echo "Found $MSG_COUNT messages"
 
-# Show messages
-echo "$MESSAGES" | jq -r '.[] | "\(.author_id): \(.text // "[non-text]")"'
+# Show messages; encrypted Letter Sealing messages may include decryption_error.
+echo "$MESSAGES" | jq -r '.[] | "\(.author_id): \(.text // .decryption_error.message // "[non-text]")"'
 ```
 
 **When to use**: Context gathering, summarizing conversations, catching up on missed messages.
@@ -130,7 +130,9 @@ listener.on('connected', (info) => {
 })
 
 listener.on('message', (event) => {
-  console.log(`[${event.chat_id}] ${event.author_id}: ${event.text}`)
+  // event.decryption_error?: { code: 'missing_e2ee_key' | 'decrypt_failed'; message: string }
+  const content = event.text ?? event.decryption_error?.message ?? '[non-text]'
+  console.log(`[${event.chat_id}] ${event.author_id}: ${content}`)
 })
 
 listener.on('error', (error) => {
@@ -152,6 +154,10 @@ await listener.start()
 
 **Features**: Auto-reconnects with exponential backoff, typed events, AbortController-based clean shutdown.
 
+**E2EE note**: For LINE Letter Sealing messages that cannot be decrypted in the current session, `text` stays `null` and `decryption_error` explains whether E2EE key material is missing or decryption failed.
+
+Message listener payloads include `decryption_error` when encrypted content is present but unavailable. Check `event.decryption_error.code` for `missing_e2ee_key` or `decrypt_failed` before treating `text: null` as a non-text message.
+
 ## Pattern 5: Get User Profile
 
 **Use case**: Retrieve your own LINE profile information

package/skills/agent-slack/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: agent-slack
 description: Interact with Slack workspaces - send messages, read channels, manage reactions
-version: 2.19.3
+version: 2.19.5
 allowed-tools: Bash(agent-slack:*)
 metadata:
   openclaw:

package/skills/agent-slackbot/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: agent-slackbot
 description: Interact with Slack workspaces using bot tokens - send messages, read channels, manage reactions
-version: 2.19.3
+version: 2.19.5
 allowed-tools: Bash(agent-slackbot:*)
 metadata:
   openclaw:

package/skills/agent-teams/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: agent-teams
 description: Interact with Microsoft Teams - send messages, read channels, manage reactions
-version: 2.19.3
+version: 2.19.5
 allowed-tools: Bash(agent-teams:*)
 metadata:
   openclaw:

package/skills/agent-telegram/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: agent-telegram
 description: Interact with Telegram through TDLib - authenticate, inspect chats, and send messages
-version: 2.19.3
+version: 2.19.5
 allowed-tools: Bash(agent-telegram:*)
 ---
 

package/skills/agent-telegrambot/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: agent-telegrambot
 description: Interact with Telegram using bot tokens - send messages, read chats, manage reactions
-version: 2.19.3
+version: 2.19.5
 allowed-tools: Bash(agent-telegrambot:*)
 metadata:
   openclaw:

package/skills/agent-webex/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: agent-webex
 description: Interact with Cisco Webex - send messages, read spaces, manage memberships
-version: 2.19.3
+version: 2.19.5
 allowed-tools: Bash(agent-webex:*)
 metadata:
   openclaw:

package/skills/agent-wechatbot/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: agent-wechatbot
 description: Interact with WeChat Official Account using API credentials - send messages, manage templates, list followers
-version: 2.19.3
+version: 2.19.5
 allowed-tools: Bash(agent-wechatbot:*)
 metadata:
   openclaw:

package/skills/agent-whatsapp/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: agent-whatsapp
 description: Interact with WhatsApp - send messages, read chats, manage conversations
-version: 2.19.3
+version: 2.19.5
 allowed-tools: Bash(agent-whatsapp:*)
 metadata:
   openclaw:

package/skills/agent-whatsappbot/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: agent-whatsappbot
 description: Interact with WhatsApp using Cloud API credentials - send messages, manage templates
-version: 2.19.3
+version: 2.19.5
 allowed-tools: Bash(agent-whatsappbot:*)
 metadata:
   openclaw:

package/src/platforms/line/client.test.ts

@@ -105,6 +105,30 @@ describe('LineClient', () => {
       expect(result.map((m) => m.message_id)).toEqual(['30', '20'])
       expect(result.map((m) => m.text)).toEqual(['c', 'b'])
     })
+
+    it('marks encrypted chunk messages without text as missing E2EE keys', async () => {
+      const client = clientWithTalk({
+        getServerTime: async () => 1700000000000,
+        getPreviousMessagesV2WithRequest: async () => [
+          {
+            id: '40',
+            from: 'u1',
+            text: null,
+            contentType: 'NONE',
+            createdTime: 1700000004000,
+            chunks: ['a', 'b'],
+            metadata: { e2eeMark: '2', e2eeVersion: '2' },
+          },
+        ],
+      })
+
+      const result = await client.getMessages('chat1', { count: 1 })
+      expect(result[0].text).toBeNull()
+      expect(result[0].decryption_error).toEqual({
+        code: 'missing_e2ee_key',
+        message: 'LINE message is encrypted with Letter Sealing, but this session has no saved E2EE key material.',
+      })
+    })
   })
 
   describe('sendMessage()', () => {
@@ -206,6 +230,18 @@ describe('LineClient', () => {
       const msg = events[1] as Extract<LineRawEvent, { kind: 'message' }>
       expect(msg.message.from.id).toBe('u1')
       expect(msg.message.text).toBeNull()
+      expect(msg.message.decryption_error).toEqual({ code: 'decrypt_failed', message: 'E2EE decrypt failed' })
+    })
+
+    it('marks missing E2EE key failures explicitly', async () => {
+      const op = { type: 'RECEIVE_MESSAGE', message: { id: '1', from: 'u1', to: 'me' } }
+      const client = clientWithStream([op], async () => {
+        throw new Error('NoE2EEKey: E2EE Key has not been saved')
+      })
+
+      const events = await collect(client)
+      const msg = events[1] as Extract<LineRawEvent, { kind: 'message' }>
+      expect(msg.message.decryption_error?.code).toBe('missing_e2ee_key')
     })
 
     it('propagates polling errors so the listener can reconnect', async () => {

package/src/platforms/line/client.ts

@@ -1,4 +1,4 @@
-import { mkdirSync } from 'node:fs'
+import { copyFileSync, existsSync, mkdirSync } from 'node:fs'
 import { join } from 'node:path'
 
 import type { Operation as LineOperation } from '@jsr/evex__linejs-types'
@@ -17,6 +17,7 @@ import type {
   LineAccountCredentials,
   LineChat,
   LineDevice,
+  LineDecryptionError,
   LineFriend,
   LineLoginResult,
   LineMessage,
@@ -26,11 +27,23 @@ import type {
 import { LineError } from './types'
 
 export interface LineRawMessage {
-  raw: { id: unknown; contentType?: unknown; createdTime?: unknown; toType?: unknown; to?: unknown; from?: unknown }
+  raw: {
+    id: unknown
+    contentType?: unknown
+    contentMetadata?: unknown
+    createdTime?: unknown
+    toType?: unknown
+    to?: unknown
+    from?: unknown
+    text?: unknown
+    chunks?: unknown
+    metadata?: unknown
+  }
   to: { id: unknown }
   from: { id: unknown }
   isMyMessage: boolean
   text: string | null
+  decryption_error?: LineDecryptionError
 }
 
 export type LineRawEvent = { kind: 'message'; message: LineRawMessage } | { kind: 'event'; op: LineOperation }
@@ -79,7 +92,14 @@ function getDefaultDevice(): LineDevice {
 function createStorage(accountId?: string): FileStorage {
   const dir = join(getConfigDir(), 'line-storage')
   mkdirSync(dir, { recursive: true })
-  return new FileStorage(join(dir, `${accountId ?? 'default'}.json`))
+  const defaultPath = join(dir, 'default.json')
+  if (!accountId) return new FileStorage(defaultPath)
+
+  const accountPath = join(dir, `${accountId}.json`)
+  if (!existsSync(accountPath) && existsSync(defaultPath)) {
+    copyFileSync(defaultPath, accountPath)
+  }
+  return new FileStorage(accountPath)
 }
 
 export class LineClient {
@@ -110,6 +130,7 @@ export class LineClient {
       this.client = client
 
       const profile = await client.base.talk.getProfile()
+      createStorage(profile.mid)
       const now = new Date().toISOString()
 
       await this.credManager.setAccount({
@@ -146,6 +167,7 @@ export class LineClient {
         {
           email: options.email,
           password: options.password,
+          e2ee: true,
           onPincodeRequest: (pin) => options.onPincode(pin),
         },
         { device, storage },
@@ -154,6 +176,7 @@ export class LineClient {
       this.client = client
 
       const profile = await client.base.talk.getProfile()
+      createStorage(profile.mid)
       const now = new Date().toISOString()
 
       await this.credManager.setAccount({
@@ -188,7 +211,7 @@ export class LineClient {
       }
 
       const device: LineDevice = creds.device ?? getDefaultDevice()
-      const storage = createStorage()
+      const storage = createStorage(creds.account_id)
 
       this.client = await linejsLoginWithAuthToken(creds.auth_token, { device, storage })
       return this
@@ -337,14 +360,18 @@ export class LineClient {
         },
       })
 
-      return (rawMessages ?? []).map((msg) => ({
-        message_id: String(msg.id),
-        chat_id: chatId,
-        author_id: String(msg.from ?? ''),
-        text: msg.text || null,
-        content_type: String(msg.contentType ?? 'NONE'),
-        sent_at: new Date(Number(msg.createdTime)).toISOString(),
-      }))
+      return (rawMessages ?? []).map((msg) => {
+        const decryptionError = getUndecryptableMessageError(msg)
+        return {
+          message_id: String(msg.id),
+          chat_id: chatId,
+          author_id: String(msg.from ?? ''),
+          text: msg.text || null,
+          ...(decryptionError && { decryption_error: decryptionError }),
+          content_type: String(msg.contentType ?? 'NONE'),
+          sent_at: new Date(Number(msg.createdTime)).toISOString(),
+        }
+      })
     } catch (error) {
       throw wrapError(error, 'get_messages_failed')
     }
@@ -418,12 +445,15 @@ export class LineClient {
         // surface the message with null text, since its text is unreadable.
         let raw = op.message
         let decrypted = true
+        let decryptionError: LineDecryptionError | undefined
         try {
           raw = await client.base.e2ee.decryptE2EEMessage(op.message)
-        } catch {
+        } catch (error) {
           raw = op.message
           decrypted = false
+          decryptionError = getDecryptionError(error)
         }
+        decryptionError ??= getUndecryptableMessageError(raw)
         yield {
           kind: 'message',
           message: {
@@ -432,6 +462,7 @@ export class LineClient {
             from: { id: raw.from },
             isMyMessage: selfMid === raw.from,
             text: decrypted ? (raw.text ?? null) : null,
+            ...(decryptionError && { decryption_error: decryptionError }),
           },
         }
       }
@@ -449,3 +480,38 @@ export class LineClient {
     return this.client
   }
 }
+
+function getUndecryptableMessageError(raw: unknown): LineDecryptionError | undefined {
+  if (!isEncryptedChunkMessage(raw) || hasPlainText(raw)) return undefined
+  return {
+    code: 'missing_e2ee_key',
+    message: 'LINE message is encrypted with Letter Sealing, but this session has no saved E2EE key material.',
+  }
+}
+
+function getDecryptionError(error: unknown): LineDecryptionError {
+  const message = error instanceof Error ? error.message : String(error)
+  return {
+    code: /NoE2EEKey|E2EE Key has not been saved|saveE2EE/i.test(message) ? 'missing_e2ee_key' : 'decrypt_failed',
+    message,
+  }
+}
+
+function hasPlainText(raw: unknown): boolean {
+  if (!raw || typeof raw !== 'object') return false
+  const text = (raw as { text?: unknown }).text
+  return typeof text === 'string' && text.length > 0
+}
+
+function isEncryptedChunkMessage(raw: unknown): boolean {
+  if (!raw || typeof raw !== 'object') return false
+  const message = raw as { chunks?: unknown; contentMetadata?: unknown; metadata?: unknown }
+  if (!Array.isArray(message.chunks) || message.chunks.length === 0) return false
+  return hasE2EEMetadata(message.contentMetadata) || hasE2EEMetadata(message.metadata)
+}
+
+function hasE2EEMetadata(raw: unknown): boolean {
+  if (!raw || typeof raw !== 'object') return false
+  const metadata = raw as { e2eeMark?: unknown; e2eeVersion?: unknown }
+  return metadata.e2eeMark !== undefined || metadata.e2eeVersion !== undefined
+}

package/src/platforms/line/index.test.ts

@@ -11,6 +11,12 @@ import {
   LineMessageSchema,
   LineSendResultSchema,
 } from '@/platforms/line/index'
+import type { LineDecryptionError } from '@/platforms/line/index'
+
+const lineDecryptionError: LineDecryptionError = {
+  code: 'missing_e2ee_key',
+  message: 'E2EE key material is missing',
+}
 
 it('LineClient is exported from barrel', () => {
   expect(typeof LineClient).toBe('function')
@@ -47,3 +53,7 @@ it('LineAccountCredentialsSchema is exported from barrel', () => {
 it('LineConfigSchema is exported from barrel', () => {
   expect(typeof LineConfigSchema.parse).toBe('function')
 })
+
+it('LineDecryptionError type is exported from barrel', () => {
+  expect(lineDecryptionError.code).toBe('missing_e2ee_key')
+})

package/src/platforms/line/index.ts

@@ -6,6 +6,7 @@ export type {
   LineAccountCredentials,
   LineChat,
   LineConfig,
+  LineDecryptionError,
   LineDevice,
   LineFriend,
   LineListenerEventMap,

package/src/platforms/line/listener.test.ts

@@ -203,6 +203,65 @@ describe('LineListener', () => {
       expect(messages[0].content_metadata).toEqual({ STKID: '123', STKPKGID: '456', STKVER: '1' })
     })
 
+    it('falls back to raw text when text is empty for contentType NONE messages', async () => {
+      const client = createMockLineClient()
+      listener = new LineListener(client)
+
+      const messages: LinePushMessageEvent[] = []
+      listener.on('message', (event) => messages.push(event))
+
+      await listener.start()
+      mockInternalClientInstance.simulateMessage({
+        isMyMessage: false,
+        from: { type: 'USER', id: 'u456' },
+        to: { type: 'USER', id: 'u123' },
+        text: '',
+        raw: {
+          id: 'msg012',
+          contentType: 'NONE',
+          text: 'actual text from raw',
+          createdTime: 1700000009000,
+        },
+      })
+      await flush()
+
+      expect(messages.length).toBe(1)
+      expect(messages[0].text).toBe('actual text from raw')
+      expect(messages[0].content_type).toBe('NONE')
+    })
+
+    it('forwards LINE decryption errors on message events', async () => {
+      const client = createMockLineClient()
+      listener = new LineListener(client)
+
+      const messages: LinePushMessageEvent[] = []
+      listener.on('message', (event) => messages.push(event))
+
+      await listener.start()
+      mockInternalClientInstance.simulateMessage({
+        isMyMessage: false,
+        from: { type: 'USER', id: 'u456' },
+        to: { type: 'USER', id: 'u123' },
+        text: null,
+        decryption_error: {
+          code: 'missing_e2ee_key',
+          message: 'LINE message is encrypted with Letter Sealing, but this session has no saved E2EE key material.',
+        },
+        raw: {
+          id: 'msg013',
+          contentType: 'NONE',
+          createdTime: 1700000010000,
+          chunks: ['a', 'b'],
+          metadata: { e2eeMark: '2', e2eeVersion: '2' },
+        },
+      })
+      await flush()
+
+      expect(messages.length).toBe(1)
+      expect(messages[0].text).toBeNull()
+      expect(messages[0].decryption_error?.code).toBe('missing_e2ee_key')
+    })
+
     it('coerces non-string contentMetadata values to strings', async () => {
       const client = createMockLineClient()
       listener = new LineListener(client)

package/src/platforms/line/listener.ts

@@ -1,6 +1,6 @@
 import { EventEmitter } from 'events'
 
-import type { LineClient } from './client'
+import type { LineClient, LineRawMessage } from './client'
 import type { LineListenerEventMap, LinePushGenericEvent, LinePushMessageEvent } from './types'
 
 const RECONNECT_BASE_DELAY = 1_000
@@ -94,19 +94,21 @@ export class LineListener {
     }
   }
 
-  private emitMessage(msg: any): void {
+  private emitMessage(msg: LineRawMessage): void {
     try {
       const toType = msg.raw.toType
       const isGroupOrRoom = toType === 'GROUP' || toType === 'ROOM' || toType === 0 || toType === 1
-      const chatId = isGroupOrRoom ? msg.to.id : msg.isMyMessage ? msg.to.id : msg.from.id
+      const chatId = String(isGroupOrRoom ? msg.to.id : msg.isMyMessage ? msg.to.id : msg.from.id)
 
+      const contentType = String(msg.raw.contentType ?? 'NONE')
       const event: LinePushMessageEvent = {
         type: 'message',
         chat_id: chatId,
         message_id: String(msg.raw.id),
-        author_id: msg.from.id,
-        text: msg.text ?? null,
-        content_type: String(msg.raw.contentType ?? 'NONE'),
+        author_id: String(msg.from.id),
+        text: getMessageText(msg.text, msg.raw, contentType),
+        ...(msg.decryption_error && { decryption_error: msg.decryption_error }),
+        content_type: contentType,
         content_metadata: normalizeContentMetadata(msg.raw.contentMetadata),
         sent_at: new Date(Number(msg.raw.createdTime)).toISOString(),
       }
@@ -151,3 +153,21 @@ function normalizeContentMetadata(raw: unknown): Record<string, string> {
   }
   return result
 }
+
+function getMessageText(text: unknown, raw: unknown, contentType: string): string | null {
+  const direct = normalizeText(text)
+  if (direct !== null) return direct
+  if (!isTextContentType(contentType)) return null
+
+  if (!raw || typeof raw !== 'object') return null
+  return normalizeText((raw as Record<string, unknown>).text)
+}
+
+function normalizeText(value: unknown): string | null {
+  if (typeof value !== 'string') return null
+  return value.length > 0 ? value : null
+}
+
+function isTextContentType(contentType: string): boolean {
+  return contentType === 'NONE' || contentType === '0'
+}

package/src/platforms/line/types.test.ts

@@ -87,6 +87,23 @@ describe('LineMessageSchema', () => {
     expect(result.text).toBeNull()
   })
 
+  it('parses message with decryption error', () => {
+    const data = {
+      message_id: 'msg789',
+      chat_id: 'u1234567890abcdef',
+      author_id: 'u9876543210fedcba',
+      text: null,
+      decryption_error: {
+        code: 'missing_e2ee_key',
+        message: 'LINE message is encrypted with Letter Sealing, but this session has no saved E2EE key material.',
+      },
+      content_type: 'NONE',
+      sent_at: '2026-03-29T00:00:00.000Z',
+    }
+    const result = LineMessageSchema.parse(data)
+    expect(result.decryption_error?.code).toBe('missing_e2ee_key')
+  })
+
   it('rejects missing required fields', () => {
     expect(() => LineMessageSchema.parse({ message_id: 'msg123' })).toThrow()
   })

package/src/platforms/line/types.ts

@@ -43,10 +43,16 @@ export interface LineMessage {
   author_id: string
   author_name?: string
   text: string | null
+  decryption_error?: LineDecryptionError
   content_type: string
   sent_at: string
 }
 
+export interface LineDecryptionError {
+  code: 'missing_e2ee_key' | 'decrypt_failed'
+  message: string
+}
+
 export interface LineSendResult {
   success: boolean
   chat_id: string
@@ -106,6 +112,12 @@ export const LineMessageSchema = z.object({
   author_id: z.string(),
   author_name: z.string().optional(),
   text: z.string().nullable(),
+  decryption_error: z
+    .object({
+      code: z.enum(['missing_e2ee_key', 'decrypt_failed']),
+      message: z.string(),
+    })
+    .optional(),
   content_type: z.string(),
   sent_at: z.string(),
 })
@@ -137,6 +149,7 @@ export interface LinePushMessageEvent {
   message_id: string
   author_id: string
   text: string | null
+  decryption_error?: LineDecryptionError
   content_type: string
   // Raw LINE contentMetadata (sticker IDs, file name/size, media URLs); empty for plain text.
   content_metadata: Record<string, string>

package/src/platforms/slack/commands/auth.test.ts

@@ -1,4 +1,4 @@
-import { afterAll, beforeEach, describe, expect, mock, it } from 'bun:test'
+import { afterAll, beforeEach, describe, expect, mock, spyOn, it } from 'bun:test'
 import { mkdirSync, rmSync } from 'node:fs'
 import { homedir } from 'node:os'
 import { join } from 'node:path'
@@ -14,6 +14,16 @@ import { type ExtractedWorkspace, TokenExtractor } from '@/platforms/slack/token
 const testConfigDir = join(import.meta.dir, '.test-auth-config')
 const testSlackDir = join(import.meta.dir, '.test-slack-data')
 
+async function extractWithoutBrowserFallback(extractor: TokenExtractor): Promise<ExtractedWorkspace[]> {
+  const extractFromBrowsersSpy = spyOn(TokenExtractor.prototype, 'extractFromBrowsers').mockResolvedValue([])
+
+  try {
+    return await extractor.extract()
+  } finally {
+    extractFromBrowsersSpy.mockRestore()
+  }
+}
+
 describe('TokenExtractor', () => {
   let extractor: TokenExtractor
 
@@ -85,7 +95,7 @@ describe('TokenExtractor', () => {
       extractor = new TokenExtractor('darwin', nonExistentPath)
 
       // when
-      const result = await extractor.extract()
+      const result = await extractWithoutBrowserFallback(extractor)
 
       // then
       expect(result).toEqual([])
@@ -97,7 +107,7 @@ describe('TokenExtractor', () => {
       extractor = new TokenExtractor('darwin', testSlackDir)
 
       // When: extract is called
-      const result = await extractor.extract()
+      const result = await extractWithoutBrowserFallback(extractor)
 
       // Then: Should return empty array
       expect(result).toEqual([])
@@ -463,7 +473,7 @@ describe('Error Handling', () => {
     const extractor = new TokenExtractor('darwin', nonExistentPath)
 
     // when/then — falls back to browser profiles, returns empty array
-    const result = await extractor.extract()
+    const result = await extractWithoutBrowserFallback(extractor)
     expect(result).toEqual([])
   })
 
@@ -472,7 +482,7 @@ describe('Error Handling', () => {
     const extractor = new TokenExtractor('darwin', testSlackDir)
 
     // When: Trying to extract from empty directory
-    const result = await extractor.extract()
+    const result = await extractWithoutBrowserFallback(extractor)
 
     // Then: Should return empty array
     expect(result).toEqual([])
@@ -484,7 +494,7 @@ describe('Error Handling', () => {
     const extractor = new TokenExtractor('darwin', testSlackDir)
 
     // When: Trying to extract
-    const result = await extractor.extract()
+    const result = await extractWithoutBrowserFallback(extractor)
 
     // Then: Should return empty array (no tokens found)
     expect(result).toEqual([])