npm - agent-relay - Versions diffs - 1.1.0 → 1.2.3 - Mend

agent-relay 1.1.0 → 1.2.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (567) hide show

package/.gitattributes +3 -0
package/.nvmrc +1 -0
package/.trajectories/completed/2026-01/traj_1dviorhnkcb5.json +65 -0
package/.trajectories/completed/2026-01/traj_1dviorhnkcb5.md +37 -0
package/.trajectories/completed/2026-01/traj_1k5if5snst2e.json +65 -0
package/.trajectories/completed/2026-01/traj_1k5if5snst2e.md +37 -0
package/.trajectories/completed/2026-01/traj_1rp3rges5811.json +49 -0
package/.trajectories/completed/2026-01/traj_1rp3rges5811.md +31 -0
package/.trajectories/completed/2026-01/traj_22bhyulruouw.json +113 -0
package/.trajectories/completed/2026-01/traj_22bhyulruouw.md +57 -0
package/.trajectories/completed/2026-01/traj_2dao7ddgnta0.json +53 -0
package/.trajectories/completed/2026-01/traj_2dao7ddgnta0.md +32 -0
package/.trajectories/completed/2026-01/traj_3t0440mjeunc.json +26 -0
package/.trajectories/completed/2026-01/traj_3t0440mjeunc.md +6 -0
package/.trajectories/completed/2026-01/traj_45x9494d9xnr.json +47 -0
package/.trajectories/completed/2026-01/traj_45x9494d9xnr.md +32 -0
package/.trajectories/completed/2026-01/traj_4aa0bb77s4nh.json +53 -0
package/.trajectories/completed/2026-01/traj_4aa0bb77s4nh.md +32 -0
package/.trajectories/completed/2026-01/traj_5lhmzq8rxpqv.json +59 -0
package/.trajectories/completed/2026-01/traj_5lhmzq8rxpqv.md +33 -0
package/.trajectories/completed/2026-01/traj_5vr4e9erb1fs.json +53 -0
package/.trajectories/completed/2026-01/traj_5vr4e9erb1fs.md +32 -0
package/.trajectories/completed/2026-01/traj_6fgiwdoklvym.json +48 -0
package/.trajectories/completed/2026-01/traj_6fgiwdoklvym.md +24 -0
package/.trajectories/completed/2026-01/traj_7ludwvz45veh.json +209 -0
package/.trajectories/completed/2026-01/traj_7ludwvz45veh.md +97 -0
package/.trajectories/completed/2026-01/traj_9921cuhel0pj.json +48 -0
package/.trajectories/completed/2026-01/traj_9921cuhel0pj.md +24 -0
package/.trajectories/completed/2026-01/traj_ajs7zqfux4wc.json +49 -0
package/.trajectories/completed/2026-01/traj_ajs7zqfux4wc.md +23 -0
package/.trajectories/completed/2026-01/traj_cvtqhlwcq9s0.json +53 -0
package/.trajectories/completed/2026-01/traj_cvtqhlwcq9s0.md +32 -0
package/.trajectories/completed/2026-01/traj_cxofprm2m2en.json +49 -0
package/.trajectories/completed/2026-01/traj_cxofprm2m2en.md +31 -0
package/.trajectories/completed/2026-01/traj_d2hhz3k0vrhn.json +26 -0
package/.trajectories/completed/2026-01/traj_d2hhz3k0vrhn.md +6 -0
package/.trajectories/completed/2026-01/traj_dfuvww9pege5.json +59 -0
package/.trajectories/completed/2026-01/traj_dfuvww9pege5.md +37 -0
package/.trajectories/completed/2026-01/traj_g0fisy9h51mf.json +77 -0
package/.trajectories/completed/2026-01/traj_g0fisy9h51mf.md +42 -0
package/.trajectories/completed/2026-01/traj_gjdre5voouod.json +53 -0
package/.trajectories/completed/2026-01/traj_gjdre5voouod.md +32 -0
package/.trajectories/completed/2026-01/traj_gtlyqtta3x8l.json +25 -0
package/.trajectories/completed/2026-01/traj_gtlyqtta3x8l.md +15 -0
package/.trajectories/completed/2026-01/traj_h4xijiuip3w4.json +101 -0
package/.trajectories/completed/2026-01/traj_h4xijiuip3w4.md +44 -0
package/.trajectories/completed/2026-01/traj_hhxte7w4gjjx.json +22 -0
package/.trajectories/completed/2026-01/traj_hhxte7w4gjjx.md +5 -0
package/.trajectories/completed/2026-01/traj_hpungyhoj6v5.json +53 -0
package/.trajectories/completed/2026-01/traj_hpungyhoj6v5.md +32 -0
package/.trajectories/completed/2026-01/traj_m2xkjv0w2sq7.json +25 -0
package/.trajectories/completed/2026-01/traj_m2xkjv0w2sq7.md +15 -0
package/.trajectories/completed/2026-01/traj_noq5zbvnrdvz.json +53 -0
package/.trajectories/completed/2026-01/traj_noq5zbvnrdvz.md +32 -0
package/.trajectories/completed/2026-01/traj_ntbs6ppopf46.json +53 -0
package/.trajectories/completed/2026-01/traj_ntbs6ppopf46.md +32 -0
package/.trajectories/completed/2026-01/traj_ozd98si6a7ns.json +48 -0
package/.trajectories/completed/2026-01/traj_ozd98si6a7ns.md +24 -0
package/.trajectories/completed/2026-01/traj_prdza7a5cxp5.json +53 -0
package/.trajectories/completed/2026-01/traj_prdza7a5cxp5.md +32 -0
package/.trajectories/completed/2026-01/traj_qb3twvvywfwi.json +77 -0
package/.trajectories/completed/2026-01/traj_qb3twvvywfwi.md +42 -0
package/.trajectories/completed/2026-01/traj_qft54mi7nfor.json +53 -0
package/.trajectories/completed/2026-01/traj_qft54mi7nfor.md +32 -0
package/.trajectories/completed/2026-01/traj_qx9uhf8whhxo.json +83 -0
package/.trajectories/completed/2026-01/traj_qx9uhf8whhxo.md +47 -0
package/.trajectories/completed/2026-01/traj_rd9toccj18a0.json +59 -0
package/.trajectories/completed/2026-01/traj_rd9toccj18a0.md +37 -0
package/.trajectories/completed/2026-01/traj_rt4fiw3ecp50.json +48 -0
package/.trajectories/completed/2026-01/traj_rt4fiw3ecp50.md +16 -0
package/.trajectories/completed/2026-01/traj_st8j35b0hrlc.json +59 -0
package/.trajectories/completed/2026-01/traj_st8j35b0hrlc.md +37 -0
package/.trajectories/completed/2026-01/traj_t1yy8m7hbuxp.json +53 -0
package/.trajectories/completed/2026-01/traj_t1yy8m7hbuxp.md +32 -0
package/.trajectories/completed/2026-01/traj_tmux_orchestrator_analysis.json +84 -0
package/.trajectories/completed/2026-01/traj_tmux_orchestrator_analysis.md +109 -0
package/.trajectories/completed/2026-01/traj_u9n9eqasw16k.json +53 -0
package/.trajectories/completed/2026-01/traj_u9n9eqasw16k.md +32 -0
package/.trajectories/completed/2026-01/traj_v87hypnongqx.json +71 -0
package/.trajectories/completed/2026-01/traj_v87hypnongqx.md +42 -0
package/.trajectories/completed/2026-01/traj_wkp2fgzdyinb.json +53 -0
package/.trajectories/completed/2026-01/traj_wkp2fgzdyinb.md +32 -0
package/.trajectories/completed/2026-01/traj_x14t8w8rn7xg.json +20 -0
package/.trajectories/completed/2026-01/traj_x14t8w8rn7xg.md +6 -0
package/.trajectories/completed/2026-01/traj_xnwbznkvv8ua.json +175 -0
package/.trajectories/completed/2026-01/traj_xnwbznkvv8ua.md +82 -0
package/.trajectories/completed/2026-01/traj_ysjc8zaeqtd3.json +47 -0
package/.trajectories/completed/2026-01/traj_ysjc8zaeqtd3.md +32 -0
package/.trajectories/completed/2026-01/traj_yvdadtvdgnz3.json +59 -0
package/.trajectories/completed/2026-01/traj_yvdadtvdgnz3.md +37 -0
package/.trajectories/completed/2026-01/traj_z0vcw1wrzide.json +53 -0
package/.trajectories/completed/2026-01/traj_z0vcw1wrzide.md +32 -0
package/.trajectories/index.json +314 -0
package/ARCHITECTURE.md +1245 -0
package/README.md +1 -1
package/TESTING.md +278 -0
package/deploy/init-db.sql +5 -0
package/deploy/scripts/setup-fly-workspaces.sh +69 -0
package/deploy/scripts/setup-railway.sh +75 -0
package/deploy/workspace/entrypoint-browser.sh +118 -0
package/deploy/workspace/entrypoint.sh +348 -0
package/deploy/workspace/git-credential-relay +111 -0
package/dist/bridge/spawner.d.ts +53 -0
package/dist/bridge/spawner.js +203 -19
package/dist/bridge/types.d.ts +12 -0
package/dist/cli/index.js +618 -5
package/dist/cloud/api/auth.d.ts +3 -2
package/dist/cloud/api/auth.js +10 -98
package/dist/cloud/api/billing.js +30 -9
package/dist/cloud/api/cli-pty-runner.d.ts +54 -0
package/dist/cloud/api/cli-pty-runner.js +119 -0
package/dist/cloud/api/codex-auth-helper.d.ts +15 -0
package/dist/cloud/api/codex-auth-helper.js +100 -0
package/dist/cloud/api/generic-webhooks.d.ts +8 -0
package/dist/cloud/api/generic-webhooks.js +129 -0
package/dist/cloud/api/git.d.ts +8 -0
package/dist/cloud/api/git.js +152 -0
package/dist/cloud/api/github-app.d.ts +11 -0
package/dist/cloud/api/github-app.js +189 -0
package/dist/cloud/api/middleware/planLimits.d.ts +7 -0
package/dist/cloud/api/middleware/planLimits.js +39 -1
package/dist/cloud/api/monitoring.d.ts +11 -0
package/dist/cloud/api/monitoring.js +578 -0
package/dist/cloud/api/nango-auth.d.ts +9 -0
package/dist/cloud/api/nango-auth.js +377 -0
package/dist/cloud/api/onboarding.d.ts +8 -1
package/dist/cloud/api/onboarding.js +313 -119
package/dist/cloud/api/policy.d.ts +8 -0
package/dist/cloud/api/policy.js +229 -0
package/dist/cloud/api/providers.js +114 -42
package/dist/cloud/api/repos.d.ts +1 -0
package/dist/cloud/api/repos.js +186 -0
package/dist/cloud/api/test-helpers.d.ts +10 -0
package/dist/cloud/api/test-helpers.js +575 -0
package/dist/cloud/api/webhooks.d.ts +8 -0
package/dist/cloud/api/webhooks.js +645 -0
package/dist/cloud/api/workspaces.js +320 -12
package/dist/cloud/billing/plans.js +32 -19
package/dist/cloud/billing/types.d.ts +9 -3
package/dist/cloud/config.d.ts +9 -2
package/dist/cloud/config.js +13 -4
package/dist/cloud/db/drizzle.d.ts +84 -1
package/dist/cloud/db/drizzle.js +470 -0
package/dist/cloud/db/index.d.ts +9 -4
package/dist/cloud/db/index.js +11 -3
package/dist/cloud/db/schema.d.ts +3283 -556
package/dist/cloud/db/schema.js +314 -1
package/dist/cloud/index.d.ts +1 -0
package/dist/cloud/index.js +2 -0
package/dist/cloud/provisioner/index.d.ts +56 -0
package/dist/cloud/provisioner/index.js +676 -34
package/dist/cloud/server.d.ts +1 -0
package/dist/cloud/server.js +362 -13
package/dist/cloud/services/auto-scaler.d.ts +152 -0
package/dist/cloud/services/auto-scaler.js +439 -0
package/dist/cloud/services/capacity-manager.d.ts +148 -0
package/dist/cloud/services/capacity-manager.js +449 -0
package/dist/cloud/services/ci-agent-spawner.d.ts +49 -0
package/dist/cloud/services/ci-agent-spawner.js +373 -0
package/dist/cloud/services/index.d.ts +12 -0
package/dist/cloud/services/index.js +15 -0
package/dist/cloud/services/mention-handler.d.ts +65 -0
package/dist/cloud/services/mention-handler.js +405 -0
package/dist/cloud/services/nango.d.ts +186 -0
package/dist/cloud/services/nango.js +344 -0
package/dist/cloud/services/persistence.d.ts +131 -0
package/dist/cloud/services/persistence.js +200 -0
package/dist/cloud/services/planLimits.d.ts +37 -0
package/dist/cloud/services/planLimits.js +86 -5
package/dist/cloud/services/scaling-orchestrator.d.ts +159 -0
package/dist/cloud/services/scaling-orchestrator.js +502 -0
package/dist/cloud/services/scaling-policy.d.ts +121 -0
package/dist/cloud/services/scaling-policy.js +415 -0
package/dist/cloud/vault/index.js +1 -1
package/dist/cloud/webhooks/index.d.ts +24 -0
package/dist/cloud/webhooks/index.js +29 -0
package/dist/cloud/webhooks/parsers/github.d.ts +8 -0
package/dist/cloud/webhooks/parsers/github.js +234 -0
package/dist/cloud/webhooks/parsers/index.d.ts +23 -0
package/dist/cloud/webhooks/parsers/index.js +30 -0
package/dist/cloud/webhooks/parsers/linear.d.ts +9 -0
package/dist/cloud/webhooks/parsers/linear.js +258 -0
package/dist/cloud/webhooks/parsers/slack.d.ts +9 -0
package/dist/cloud/webhooks/parsers/slack.js +214 -0
package/dist/cloud/webhooks/responders/github.d.ts +8 -0
package/dist/cloud/webhooks/responders/github.js +73 -0
package/dist/cloud/webhooks/responders/index.d.ts +23 -0
package/dist/cloud/webhooks/responders/index.js +30 -0
package/dist/cloud/webhooks/responders/linear.d.ts +9 -0
package/dist/cloud/webhooks/responders/linear.js +149 -0
package/dist/cloud/webhooks/responders/slack.d.ts +20 -0
package/dist/cloud/webhooks/responders/slack.js +178 -0
package/dist/cloud/webhooks/router.d.ts +25 -0
package/dist/cloud/webhooks/router.js +504 -0
package/dist/cloud/webhooks/rules-engine.d.ts +24 -0
package/dist/cloud/webhooks/rules-engine.js +287 -0
package/dist/cloud/webhooks/types.d.ts +186 -0
package/dist/cloud/webhooks/types.js +8 -0
package/dist/continuity/formatter.d.ts +51 -0
package/dist/continuity/formatter.js +313 -0
package/dist/continuity/handoff-store.d.ts +67 -0
package/dist/continuity/handoff-store.js +472 -0
package/dist/continuity/index.d.ts +45 -0
package/dist/continuity/index.js +48 -0
package/dist/continuity/ledger-store.d.ts +110 -0
package/dist/continuity/ledger-store.js +500 -0
package/dist/continuity/manager.d.ts +178 -0
package/dist/continuity/manager.js +562 -0
package/dist/continuity/parser.d.ts +76 -0
package/dist/continuity/parser.js +579 -0
package/dist/continuity/types.d.ts +180 -0
package/dist/continuity/types.js +9 -0
package/dist/daemon/agent-manager.d.ts +27 -0
package/dist/daemon/agent-manager.js +107 -6
package/dist/daemon/agent-registry.d.ts +32 -0
package/dist/daemon/agent-registry.js +42 -2
package/dist/daemon/api.d.ts +12 -0
package/dist/daemon/api.js +131 -2
package/dist/daemon/cli-auth.d.ts +67 -0
package/dist/daemon/cli-auth.js +537 -0
package/dist/daemon/cloud-sync.js +9 -7
package/dist/daemon/orchestrator.js +30 -0
package/dist/daemon/router.d.ts +5 -0
package/dist/daemon/router.js +78 -26
package/dist/daemon/server.d.ts +5 -0
package/dist/daemon/server.js +9 -1
package/dist/daemon/services/browser-testing.d.ts +88 -0
package/dist/daemon/services/browser-testing.js +244 -0
package/dist/daemon/services/container-spawner.d.ts +135 -0
package/dist/daemon/services/container-spawner.js +313 -0
package/dist/daemon/types.d.ts +5 -1
package/dist/dashboard/out/404.html +1 -1
package/dist/dashboard/out/_next/static/chunks/116-2502180def231162.js +1 -0
package/dist/dashboard/out/_next/static/chunks/282-980c2eb8fff20123.js +1 -0
package/dist/dashboard/out/_next/static/chunks/699-3b1cd6618a45d259.js +1 -0
package/dist/dashboard/out/_next/static/chunks/724-2dae7627550ab88f.js +9 -0
package/dist/dashboard/out/_next/static/chunks/766-1f2dd8cb7f766b0b.js +1 -0
package/dist/dashboard/out/_next/static/chunks/app/app/onboarding/page-3fdfa60e53f2810d.js +1 -0
package/dist/dashboard/out/_next/static/chunks/app/app/page-e6381e5a6e1fbcfd.js +1 -0
package/dist/dashboard/out/_next/static/chunks/app/connect-repos/page-3538dfe0ffe984b8.js +1 -0
package/dist/dashboard/out/_next/static/chunks/app/history/{page-b6edd4dde8d08194.js → page-abb9ab2d329f56e9.js} +1 -1
package/dist/dashboard/out/_next/static/chunks/app/layout-c0d118c0f92d969c.js +1 -0
package/dist/dashboard/out/_next/static/chunks/app/login/page-c22d080201cbd9fb.js +1 -0
package/dist/dashboard/out/_next/static/chunks/app/metrics/page-67a3e98d9a43a6ed.js +1 -0
package/dist/dashboard/out/_next/static/chunks/app/page-77e9c65420a06cfb.js +1 -0
package/dist/dashboard/out/_next/static/chunks/app/pricing/page-b08ed1c34d14434a.js +1 -0
package/dist/dashboard/out/_next/static/chunks/app/providers/page-e88bc117ef7671c3.js +1 -0
package/dist/dashboard/out/_next/static/chunks/app/signup/page-68d34f50baa8ab6b.js +1 -0
package/dist/dashboard/out/_next/static/chunks/e868780c-48e5f147c90a3a41.js +18 -0
package/dist/dashboard/out/_next/static/chunks/{main-app-5d692157a8eb1fd9.js → main-app-6e8e8d3ef4e0192a.js} +1 -1
package/dist/dashboard/out/_next/static/chunks/{main-c2f423b9c9f4591b.js → main-ed4e1fb6f29c34cf.js} +1 -1
package/dist/dashboard/out/_next/static/chunks/webpack-1cdd8ed57114d5e1.js +1 -0
package/dist/dashboard/out/_next/static/css/29852f26181969a0.css +1 -0
package/dist/dashboard/out/_next/static/css/7c3ae9e8617d42a5.css +1 -0
package/dist/dashboard/out/app/onboarding.html +1 -0
package/dist/dashboard/out/app/onboarding.txt +7 -0
package/dist/dashboard/out/app.html +1 -14
package/dist/dashboard/out/app.txt +2 -2
package/dist/dashboard/out/connect-repos.html +1 -0
package/dist/dashboard/out/connect-repos.txt +7 -0
package/dist/dashboard/out/history.html +1 -1
package/dist/dashboard/out/history.txt +2 -2
package/dist/dashboard/out/index.html +1 -1
package/dist/dashboard/out/index.txt +2 -2
package/dist/dashboard/out/login.html +6 -0
package/dist/dashboard/out/login.txt +7 -0
package/dist/dashboard/out/metrics.html +1 -1
package/dist/dashboard/out/metrics.txt +2 -2
package/dist/dashboard/out/pricing.html +3 -3
package/dist/dashboard/out/pricing.txt +2 -2
package/dist/dashboard/out/providers.html +1 -0
package/dist/dashboard/out/providers.txt +7 -0
package/dist/dashboard/out/signup.html +6 -0
package/dist/dashboard/out/signup.txt +7 -0
package/dist/dashboard-server/server.js +1308 -8
package/dist/hooks/emitter.d.ts +40 -0
package/dist/hooks/emitter.js +63 -0
package/dist/hooks/index.d.ts +3 -0
package/dist/hooks/index.js +3 -0
package/dist/hooks/registry.d.ts +173 -0
package/dist/hooks/registry.js +476 -0
package/dist/hooks/trajectory-hooks.d.ts +52 -0
package/dist/hooks/trajectory-hooks.js +183 -0
package/dist/hooks/types.d.ts +141 -0
package/dist/index.d.ts +2 -0
package/dist/index.js +3 -0
package/dist/memory/adapters/index.d.ts +8 -0
package/dist/memory/adapters/index.js +8 -0
package/dist/memory/adapters/inmemory.d.ts +59 -0
package/dist/memory/adapters/inmemory.js +195 -0
package/dist/memory/adapters/supermemory.d.ts +71 -0
package/dist/memory/adapters/supermemory.js +338 -0
package/dist/memory/factory.d.ts +48 -0
package/dist/memory/factory.js +143 -0
package/dist/memory/index.d.ts +32 -0
package/dist/memory/index.js +32 -0
package/dist/memory/memory-hooks.d.ts +60 -0
package/dist/memory/memory-hooks.js +313 -0
package/dist/memory/service.d.ts +49 -0
package/dist/memory/service.js +146 -0
package/dist/memory/types.d.ts +195 -0
package/dist/memory/types.js +8 -0
package/dist/policy/agent-policy.d.ts +225 -0
package/dist/policy/agent-policy.js +665 -0
package/dist/policy/cloud-policy-fetcher.d.ts +12 -0
package/dist/policy/cloud-policy-fetcher.js +64 -0
package/dist/resiliency/crash-insights.d.ts +156 -0
package/dist/resiliency/crash-insights.js +492 -0
package/dist/resiliency/gossip-health.d.ts +137 -0
package/dist/resiliency/gossip-health.js +241 -0
package/dist/resiliency/index.d.ts +5 -0
package/dist/resiliency/index.js +5 -0
package/dist/resiliency/leader-watchdog.d.ts +109 -0
package/dist/resiliency/leader-watchdog.js +189 -0
package/dist/resiliency/memory-monitor.d.ts +172 -0
package/dist/resiliency/memory-monitor.js +593 -0
package/dist/resiliency/stateless-lead.d.ts +149 -0
package/dist/resiliency/stateless-lead.js +308 -0
package/dist/resiliency/supervisor.d.ts +38 -0
package/dist/resiliency/supervisor.js +122 -0
package/dist/shared/cli-auth-config.d.ts +91 -0
package/dist/shared/cli-auth-config.js +264 -0
package/dist/storage/adapter.d.ts +1 -1
package/dist/trajectory/config.d.ts +84 -0
package/dist/trajectory/config.js +163 -0
package/dist/trajectory/index.d.ts +8 -0
package/dist/trajectory/index.js +8 -0
package/dist/trajectory/integration.d.ts +292 -0
package/dist/trajectory/integration.js +834 -0
package/dist/utils/logger.js +1 -1
package/dist/utils/project-namespace.d.ts +24 -0
package/dist/utils/project-namespace.js +84 -0
package/dist/wrapper/parser.d.ts +10 -0
package/dist/wrapper/parser.js +100 -33
package/dist/wrapper/pty-wrapper.d.ts +197 -16
package/dist/wrapper/pty-wrapper.js +943 -106
package/dist/wrapper/shared.d.ts +165 -0
package/dist/wrapper/shared.js +270 -0
package/dist/wrapper/tmux-wrapper.d.ts +73 -11
package/dist/wrapper/tmux-wrapper.js +541 -120
package/package.json +16 -16
package/scripts/postinstall.js +60 -0
package/test-push.txt +1 -0
package/bin/tmux +0 -0
package/dist/bridge/config.d.ts.map +0 -1
package/dist/bridge/config.js.map +0 -1
package/dist/bridge/index.d.ts.map +0 -1
package/dist/bridge/index.js.map +0 -1
package/dist/bridge/multi-project-client.d.ts.map +0 -1
package/dist/bridge/multi-project-client.js.map +0 -1
package/dist/bridge/shadow-cli.d.ts.map +0 -1
package/dist/bridge/shadow-cli.js.map +0 -1
package/dist/bridge/shadow-config.d.ts.map +0 -1
package/dist/bridge/shadow-config.js.map +0 -1
package/dist/bridge/spawner.d.ts.map +0 -1
package/dist/bridge/spawner.js.map +0 -1
package/dist/bridge/teams-config.d.ts.map +0 -1
package/dist/bridge/teams-config.js.map +0 -1
package/dist/bridge/types.d.ts.map +0 -1
package/dist/bridge/types.js.map +0 -1
package/dist/bridge/utils.d.ts.map +0 -1
package/dist/bridge/utils.js.map +0 -1
package/dist/cli/index.d.ts.map +0 -1
package/dist/cli/index.js.map +0 -1
package/dist/cloud/api/auth.d.ts.map +0 -1
package/dist/cloud/api/auth.js.map +0 -1
package/dist/cloud/api/billing.d.ts.map +0 -1
package/dist/cloud/api/billing.js.map +0 -1
package/dist/cloud/api/coordinators.d.ts.map +0 -1
package/dist/cloud/api/coordinators.js.map +0 -1
package/dist/cloud/api/daemons.d.ts.map +0 -1
package/dist/cloud/api/daemons.js.map +0 -1
package/dist/cloud/api/middleware/planLimits.d.ts.map +0 -1
package/dist/cloud/api/middleware/planLimits.js.map +0 -1
package/dist/cloud/api/onboarding.d.ts.map +0 -1
package/dist/cloud/api/onboarding.js.map +0 -1
package/dist/cloud/api/providers.d.ts.map +0 -1
package/dist/cloud/api/providers.js.map +0 -1
package/dist/cloud/api/repos.d.ts.map +0 -1
package/dist/cloud/api/repos.js.map +0 -1
package/dist/cloud/api/teams.d.ts.map +0 -1
package/dist/cloud/api/teams.js.map +0 -1
package/dist/cloud/api/usage.d.ts.map +0 -1
package/dist/cloud/api/usage.js.map +0 -1
package/dist/cloud/api/workspaces.d.ts.map +0 -1
package/dist/cloud/api/workspaces.js.map +0 -1
package/dist/cloud/billing/index.d.ts.map +0 -1
package/dist/cloud/billing/index.js.map +0 -1
package/dist/cloud/billing/plans.d.ts.map +0 -1
package/dist/cloud/billing/plans.js.map +0 -1
package/dist/cloud/billing/service.d.ts.map +0 -1
package/dist/cloud/billing/service.js.map +0 -1
package/dist/cloud/billing/types.d.ts.map +0 -1
package/dist/cloud/billing/types.js.map +0 -1
package/dist/cloud/config.d.ts.map +0 -1
package/dist/cloud/config.js.map +0 -1
package/dist/cloud/db/drizzle.d.ts.map +0 -1
package/dist/cloud/db/drizzle.js.map +0 -1
package/dist/cloud/db/index.d.ts.map +0 -1
package/dist/cloud/db/index.js.map +0 -1
package/dist/cloud/db/schema.d.ts.map +0 -1
package/dist/cloud/db/schema.js.map +0 -1
package/dist/cloud/index.d.ts.map +0 -1
package/dist/cloud/index.js.map +0 -1
package/dist/cloud/provisioner/index.d.ts.map +0 -1
package/dist/cloud/provisioner/index.js.map +0 -1
package/dist/cloud/server.d.ts.map +0 -1
package/dist/cloud/server.js.map +0 -1
package/dist/cloud/services/coordinator.d.ts.map +0 -1
package/dist/cloud/services/coordinator.js.map +0 -1
package/dist/cloud/services/planLimits.d.ts.map +0 -1
package/dist/cloud/services/planLimits.js.map +0 -1
package/dist/cloud/vault/index.d.ts.map +0 -1
package/dist/cloud/vault/index.js.map +0 -1
package/dist/daemon/agent-manager.d.ts.map +0 -1
package/dist/daemon/agent-manager.js.map +0 -1
package/dist/daemon/agent-registry.d.ts.map +0 -1
package/dist/daemon/agent-registry.js.map +0 -1
package/dist/daemon/api.d.ts.map +0 -1
package/dist/daemon/api.js.map +0 -1
package/dist/daemon/auth.d.ts.map +0 -1
package/dist/daemon/auth.js.map +0 -1
package/dist/daemon/cloud-sync.d.ts.map +0 -1
package/dist/daemon/cloud-sync.js.map +0 -1
package/dist/daemon/connection.d.ts.map +0 -1
package/dist/daemon/connection.js.map +0 -1
package/dist/daemon/index.d.ts.map +0 -1
package/dist/daemon/index.js.map +0 -1
package/dist/daemon/orchestrator.d.ts.map +0 -1
package/dist/daemon/orchestrator.js.map +0 -1
package/dist/daemon/registry.d.ts.map +0 -1
package/dist/daemon/registry.js.map +0 -1
package/dist/daemon/router.d.ts.map +0 -1
package/dist/daemon/router.js.map +0 -1
package/dist/daemon/server.d.ts.map +0 -1
package/dist/daemon/server.js.map +0 -1
package/dist/daemon/types.d.ts.map +0 -1
package/dist/daemon/types.js.map +0 -1
package/dist/daemon/workspace-manager.d.ts.map +0 -1
package/dist/daemon/workspace-manager.js.map +0 -1
package/dist/dashboard/out/_next/static/chunks/693-7b3301d8f6bc5014.js +0 -1
package/dist/dashboard/out/_next/static/chunks/713-f78477eb185f1f4d.js +0 -1
package/dist/dashboard/out/_next/static/chunks/766-e53e1cfe39b0b5b5.js +0 -1
package/dist/dashboard/out/_next/static/chunks/900-037c64bfd797fb2a.js +0 -1
package/dist/dashboard/out/_next/static/chunks/app/app/page-e3d9e1f4466b9bae.js +0 -1
package/dist/dashboard/out/_next/static/chunks/app/layout-2433bb48965f4333.js +0 -1
package/dist/dashboard/out/_next/static/chunks/app/metrics/page-e68825a81db67ba1.js +0 -1
package/dist/dashboard/out/_next/static/chunks/app/page-cc108bf68c8a657f.js +0 -1
package/dist/dashboard/out/_next/static/chunks/app/pricing/page-d80e03a5297f95b6.js +0 -1
package/dist/dashboard/out/_next/static/chunks/webpack-a5acc2831d094776.js +0 -1
package/dist/dashboard/out/_next/static/css/79b80143647a07d7.css +0 -1
package/dist/dashboard/out/_next/static/css/8cf277370ad48cfe.css +0 -1
package/dist/dashboard-server/metrics.d.ts.map +0 -1
package/dist/dashboard-server/metrics.js.map +0 -1
package/dist/dashboard-server/needs-attention.d.ts.map +0 -1
package/dist/dashboard-server/needs-attention.js.map +0 -1
package/dist/dashboard-server/server.d.ts.map +0 -1
package/dist/dashboard-server/server.js.map +0 -1
package/dist/dashboard-server/start.d.ts.map +0 -1
package/dist/dashboard-server/start.js.map +0 -1
package/dist/hooks/inbox-check/hook.d.ts.map +0 -1
package/dist/hooks/inbox-check/hook.js.map +0 -1
package/dist/hooks/inbox-check/index.d.ts.map +0 -1
package/dist/hooks/inbox-check/index.js.map +0 -1
package/dist/hooks/inbox-check/types.d.ts.map +0 -1
package/dist/hooks/inbox-check/types.js.map +0 -1
package/dist/hooks/inbox-check/utils.d.ts.map +0 -1
package/dist/hooks/inbox-check/utils.js.map +0 -1
package/dist/hooks/index.d.ts.map +0 -1
package/dist/hooks/index.js.map +0 -1
package/dist/hooks/types.d.ts.map +0 -1
package/dist/hooks/types.js.map +0 -1
package/dist/index.d.ts.map +0 -1
package/dist/index.js.map +0 -1
package/dist/protocol/framing.d.ts.map +0 -1
package/dist/protocol/framing.js.map +0 -1
package/dist/protocol/index.d.ts.map +0 -1
package/dist/protocol/index.js.map +0 -1
package/dist/protocol/types.d.ts.map +0 -1
package/dist/protocol/types.js.map +0 -1
package/dist/resiliency/context-persistence.d.ts.map +0 -1
package/dist/resiliency/context-persistence.js.map +0 -1
package/dist/resiliency/health-monitor.d.ts.map +0 -1
package/dist/resiliency/health-monitor.js.map +0 -1
package/dist/resiliency/index.d.ts.map +0 -1
package/dist/resiliency/index.js.map +0 -1
package/dist/resiliency/logger.d.ts.map +0 -1
package/dist/resiliency/logger.js.map +0 -1
package/dist/resiliency/metrics.d.ts.map +0 -1
package/dist/resiliency/metrics.js.map +0 -1
package/dist/resiliency/provider-context.d.ts.map +0 -1
package/dist/resiliency/provider-context.js.map +0 -1
package/dist/resiliency/supervisor.d.ts.map +0 -1
package/dist/resiliency/supervisor.js.map +0 -1
package/dist/state/agent-state.d.ts.map +0 -1
package/dist/state/agent-state.js.map +0 -1
package/dist/storage/adapter.d.ts.map +0 -1
package/dist/storage/adapter.js.map +0 -1
package/dist/storage/sqlite-adapter.d.ts.map +0 -1
package/dist/storage/sqlite-adapter.js.map +0 -1
package/dist/utils/agent-config.d.ts.map +0 -1
package/dist/utils/agent-config.js.map +0 -1
package/dist/utils/command-resolver.d.ts.map +0 -1
package/dist/utils/command-resolver.js.map +0 -1
package/dist/utils/index.d.ts.map +0 -1
package/dist/utils/index.js.map +0 -1
package/dist/utils/logger.d.ts.map +0 -1
package/dist/utils/logger.js.map +0 -1
package/dist/utils/name-generator.d.ts.map +0 -1
package/dist/utils/name-generator.js.map +0 -1
package/dist/utils/project-namespace.d.ts.map +0 -1
package/dist/utils/project-namespace.js.map +0 -1
package/dist/utils/tmux-resolver.d.ts.map +0 -1
package/dist/utils/tmux-resolver.js.map +0 -1
package/dist/utils/update-checker.d.ts.map +0 -1
package/dist/utils/update-checker.js.map +0 -1
package/dist/wrapper/client.d.ts.map +0 -1
package/dist/wrapper/client.js.map +0 -1
package/dist/wrapper/inbox.d.ts.map +0 -1
package/dist/wrapper/inbox.js.map +0 -1
package/dist/wrapper/index.d.ts.map +0 -1
package/dist/wrapper/index.js.map +0 -1
package/dist/wrapper/parser.d.ts.map +0 -1
package/dist/wrapper/parser.js.map +0 -1
package/dist/wrapper/pty-wrapper.d.ts.map +0 -1
package/dist/wrapper/pty-wrapper.js.map +0 -1
package/dist/wrapper/tmux-wrapper.d.ts.map +0 -1
package/dist/wrapper/tmux-wrapper.js.map +0 -1
package/docs/AGENTS.md +0 -513
package/docs/ARCHITECTURE_DECISIONS.md +0 -175
package/docs/CHANGELOG.md +0 -11
package/docs/CLI-SIMPLIFICATION-COMPLETE.md +0 -48
package/docs/CLOUD-ARCHITECTURE.md +0 -652
package/docs/CLOUD-ONBOARDING-DESIGN.md +0 -1983
package/docs/COMPETITIVE_ANALYSIS.md +0 -897
package/docs/CONTRIBUTING.md +0 -151
package/docs/DESIGN_BRIDGE_STAFFING.md +0 -878
package/docs/DESIGN_V2.md +0 -1079
package/docs/INTEGRATION-GUIDE.md +0 -926
package/docs/MONETIZATION.md +0 -1679
package/docs/PROPOSAL-trajectories.md +0 -1582
package/docs/PROTOCOL.md +0 -325
package/docs/SCALING_ANALYSIS.md +0 -280
package/docs/TESTING_PRESENCE_FEATURES.md +0 -327
package/docs/TMUX_IMPLEMENTATION_NOTES.md +0 -364
package/docs/TMUX_IMPROVEMENTS.md +0 -968
package/docs/agent-relay-snippet.md +0 -168
package/docs/competitive-analysis-mcp-agent-mail.md +0 -389
package/docs/dashboard-v2-plan.md +0 -179
package/docs/guides/CLOUD.md +0 -236
package/docs/guides/LOCAL.md +0 -535
package/docs/guides/SELF-HOSTED.md +0 -494
package/docs/proposals/shadow-as-subagent.md +0 -765
package/docs/proposals/slack-bot-integration.md +0 -1457
package/docs/removable-code-analysis.md +0 -24
package/scripts/dev/PUBLIC_RELEASE_PLAN.md +0 -88
package/scripts/dev/dev-team-setup.sh +0 -431
package/scripts/e2e-test.sh +0 -119
package/scripts/games/game-protocol.md +0 -79
package/scripts/games/hearts-setup.sh +0 -264
package/scripts/tictactoe-setup.sh +0 -181
/package/dist/dashboard/out/_next/static/chunks/{117-b2cd8d6485aacf2b.js → 117-f7b8ab0809342e77.js} +0 -0
/package/dist/dashboard/out/_next/static/chunks/{648-8f3f26864ce515e5.js → 648-5cc6e1921389a58a.js} +0 -0
/package/dist/dashboard/out/_next/static/chunks/app/_not-found/{page-0b990dbb71d72a98.js → page-53b8a69f76db17d0.js} +0 -0
/package/dist/dashboard/out/_next/static/chunks/{fd9d1056-bf46c09eb57e019c.js → fd9d1056-609918ca7b6280bb.js} +0 -0
/package/dist/dashboard/out/_next/static/{6HHWb2ZmnJ4OSm0zUP7h4 → wPgKJtcOmTFLpUncDg16A}/_buildManifest.js +0 -0
/package/dist/dashboard/out/_next/static/{6HHWb2ZmnJ4OSm0zUP7h4 → wPgKJtcOmTFLpUncDg16A}/_ssgManifest.js +0 -0

package/dist/cloud/server.d.ts CHANGED Viewed

@@ -5,6 +5,7 @@ import { Express } from 'express';
 declare module 'express-session' {
     interface SessionData {
         csrfToken?: string;
+        userId?: string;
     }
 }
 export interface CloudServer {

package/dist/cloud/server.js CHANGED Viewed

@@ -7,14 +7,18 @@ import cors from 'cors';
 import helmet from 'helmet';
 import crypto from 'crypto';
 import path from 'node:path';
+import http from 'node:http';
 import { fileURLToPath } from 'node:url';
 import { createClient } from 'redis';
 import { RedisStore } from 'connect-redis';
+import { WebSocketServer, WebSocket } from 'ws';
 import { getConfig } from './config.js';
+import { runMigrations } from './db/index.js';
+import { getScalingOrchestrator } from './services/index.js';
 const __filename = fileURLToPath(import.meta.url);
 const __dirname = path.dirname(__filename);
 // API routers
-import { authRouter } from './api/auth.js';
+import { authRouter, requireAuth } from './api/auth.js';
 import { providersRouter } from './api/providers.js';
 import { workspacesRouter } from './api/workspaces.js';
 import { reposRouter } from './api/repos.js';
@@ -23,6 +27,43 @@ import { teamsRouter } from './api/teams.js';
 import { billingRouter } from './api/billing.js';
 import { usageRouter } from './api/usage.js';
 import { coordinatorsRouter } from './api/coordinators.js';
+import { daemonsRouter } from './api/daemons.js';
+import { monitoringRouter } from './api/monitoring.js';
+import { testHelpersRouter } from './api/test-helpers.js';
+import { webhooksRouter } from './api/webhooks.js';
+import { githubAppRouter } from './api/github-app.js';
+import { nangoAuthRouter } from './api/nango-auth.js';
+import { gitRouter } from './api/git.js';
+import { codexAuthHelperRouter } from './api/codex-auth-helper.js';
+import { db } from './db/index.js';
+/**
+ * Proxy a request to the user's primary running workspace
+ */
+async function proxyToUserWorkspace(req, res, path) {
+    const userId = req.session.userId;
+    if (!userId) {
+        res.status(401).json({ error: 'Unauthorized' });
+        return;
+    }
+    try {
+        // Find user's running workspace
+        const workspaces = await db.workspaces.findByUserId(userId);
+        const runningWorkspace = workspaces.find(w => w.status === 'running' && w.publicUrl);
+        if (!runningWorkspace || !runningWorkspace.publicUrl) {
+            res.status(404).json({ error: 'No running workspace found', success: false });
+            return;
+        }
+        // Proxy to workspace
+        const targetUrl = `${runningWorkspace.publicUrl}${path}`;
+        const proxyRes = await fetch(targetUrl);
+        const data = await proxyRes.json();
+        res.status(proxyRes.status).json(data);
+    }
+    catch (error) {
+        console.error('[trajectory-proxy] Error:', error);
+        res.status(500).json({ error: 'Failed to proxy request to workspace', success: false });
+    }
+}
 export async function createServer() {
     const config = getConfig();
     const app = express();
@@ -37,16 +78,19 @@ export async function createServer() {
     });
     await redisClient.connect();
     // Middleware
-    // Configure helmet to allow Next.js inline scripts
+    // Configure helmet to allow Next.js inline scripts and Nango Connect UI
     app.use(helmet({
         contentSecurityPolicy: {
             directives: {
                 defaultSrc: ["'self'"],
-                scriptSrc: ["'self'", "'unsafe-inline'", "'unsafe-eval'"],
-                styleSrc: ["'self'", "'unsafe-inline'", "https://fonts.googleapis.com"],
-                fontSrc: ["'self'", "https://fonts.gstatic.com"],
-                imgSrc: ["'self'", "data:", "https:"],
-                connectSrc: ["'self'", "wss:", "ws:", "https:"],
+                scriptSrc: ["'self'", "'unsafe-inline'", "'unsafe-eval'", "https://connect.nango.dev"],
+                styleSrc: ["'self'", "'unsafe-inline'", "https://fonts.googleapis.com", "https://connect.nango.dev"],
+                fontSrc: ["'self'", "https://fonts.gstatic.com", "data:"],
+                imgSrc: ["'self'", "data:", "https:", "blob:"],
+                connectSrc: ["'self'", "wss:", "ws:", "https:", "https://api.nango.dev", "https://connect.nango.dev"],
+                frameSrc: ["'self'", "https://connect.nango.dev", "https://github.com"],
+                childSrc: ["'self'", "https://connect.nango.dev", "blob:"],
+                workerSrc: ["'self'", "blob:"],
             },
         },
     }));
@@ -54,7 +98,15 @@ export async function createServer() {
         origin: config.publicUrl,
         credentials: true,
     }));
-    app.use(express.json());
+    // Custom JSON parser that preserves raw body for webhook signature verification
+    // Increase limit to 10mb for base64 image uploads (screenshots)
+    app.use(express.json({
+        limit: '10mb',
+        verify: (req, _res, buf) => {
+            // Store raw body for webhook signature verification
+            req.rawBody = buf.toString();
+        },
+    }));
     // Session middleware
     app.use(session({
         store: new RedisStore({ client: redisClient }),
@@ -80,9 +132,17 @@ export async function createServer() {
     });
     // Simple in-memory rate limiting per IP
     const RATE_LIMIT_WINDOW_MS = 60_000;
-    const RATE_LIMIT_MAX = 300;
+    // Higher limit in development mode
+    const RATE_LIMIT_MAX = process.env.NODE_ENV === 'development' ? 1000 : 300;
     const rateLimits = new Map();
     app.use((req, res, next) => {
+        // Skip rate limiting for localhost in development
+        if (process.env.NODE_ENV === 'development') {
+            const ip = req.ip || '';
+            if (ip === '127.0.0.1' || ip === '::1' || ip === '::ffff:127.0.0.1') {
+                return next();
+            }
+        }
         const now = Date.now();
         const key = req.ip || 'unknown';
         const entry = rateLimits.get(key);
@@ -111,18 +171,49 @@ export async function createServer() {
     });
     // Lightweight CSRF protection using session token
     const SAFE_METHODS = new Set(['GET', 'HEAD', 'OPTIONS']);
+    // Paths exempt from CSRF (webhooks from external services, workspace proxy, local auth callbacks)
+    const CSRF_EXEMPT_PATHS = [
+        '/api/webhooks/',
+        '/api/auth/nango/webhook',
+        '/api/auth/codex-helper/callback',
+    ];
+    // Additional pattern for workspace proxy routes (contains /proxy/)
+    const isWorkspaceProxyRoute = (path) => /^\/api\/workspaces\/[^/]+\/proxy\//.test(path);
     app.use((req, res, next) => {
+        // Skip CSRF for webhook endpoints and workspace proxy routes
+        if (CSRF_EXEMPT_PATHS.some(path => req.path.startsWith(path)) || isWorkspaceProxyRoute(req.path)) {
+            return next();
+        }
         if (!req.session)
             return res.status(500).json({ error: 'Session unavailable' });
+        // Generate CSRF token if not present
+        // Use session.save() to ensure the session is persisted even for unauthenticated users
+        // This is necessary because saveUninitialized: false won't auto-save new sessions
         if (!req.session.csrfToken) {
             req.session.csrfToken = crypto.randomBytes(32).toString('hex');
+            // Explicitly save session to persist the CSRF token
+            req.session.save((err) => {
+                if (err) {
+                    console.error('[csrf] Failed to save session:', err);
+                }
+            });
         }
         res.setHeader('X-CSRF-Token', req.session.csrfToken);
         if (SAFE_METHODS.has(req.method.toUpperCase())) {
             return next();
         }
+        // Skip CSRF for Bearer-authenticated endpoints (daemon API, test helpers)
+        const authHeader = req.get('authorization');
+        if (authHeader?.startsWith('Bearer ')) {
+            return next();
+        }
+        // Skip CSRF for test endpoints in non-production
+        if (process.env.NODE_ENV !== 'production' && req.path.startsWith('/api/test/')) {
+            return next();
+        }
         const token = req.get('x-csrf-token');
         if (!token || token !== req.session.csrfToken) {
+            console.log(`[csrf] Token mismatch: received=${token?.substring(0, 8)}... expected=${req.session.csrfToken?.substring(0, 8)}...`);
             return res.status(403).json({
                 error: 'CSRF token invalid or missing',
                 code: 'CSRF_MISMATCH',
@@ -144,12 +235,39 @@ export async function createServer() {
     app.use('/api/billing', billingRouter);
     app.use('/api/usage', usageRouter);
     app.use('/api/project-groups', coordinatorsRouter);
-    // TODO: Add authenticated agent/daemon channels when remote sockets are supported
+    app.use('/api/daemons', daemonsRouter);
+    app.use('/api/monitoring', monitoringRouter);
+    app.use('/api/webhooks', webhooksRouter);
+    app.use('/api/github-app', githubAppRouter);
+    app.use('/api/auth/nango', nangoAuthRouter);
+    app.use('/api/auth/codex-helper', codexAuthHelperRouter);
+    app.use('/api/git', gitRouter);
+    // Test helper routes (only available in non-production)
+    if (process.env.NODE_ENV !== 'production') {
+        app.use('/api/test', testHelpersRouter);
+        console.log('[cloud] Test helper routes enabled (non-production mode)');
+    }
+    // Trajectory proxy routes - auto-detect user's workspace and forward
+    // These are convenience routes so the dashboard doesn't need to know the workspace ID
+    app.get('/api/trajectory', requireAuth, async (req, res) => {
+        await proxyToUserWorkspace(req, res, '/api/trajectory');
+    });
+    app.get('/api/trajectory/steps', requireAuth, async (req, res) => {
+        const queryString = req.query.trajectoryId
+            ? `?trajectoryId=${encodeURIComponent(req.query.trajectoryId)}`
+            : '';
+        await proxyToUserWorkspace(req, res, `/api/trajectory/steps${queryString}`);
+    });
+    app.get('/api/trajectory/history', requireAuth, async (req, res) => {
+        await proxyToUserWorkspace(req, res, '/api/trajectory/history');
+    });
     // Serve static dashboard files (Next.js static export)
     // Path: dist/cloud/server.js -> ../../src/dashboard/out
     const dashboardPath = path.join(__dirname, '../../src/dashboard/out');
-    app.use(express.static(dashboardPath));
-    // SPA fallback - serve index.html for all non-API routes
+    // Serve static files with .html extension fallback for clean URLs
+    // e.g., /signup will try /signup.html
+    app.use(express.static(dashboardPath, { extensions: ['html'] }));
+    // SPA fallback - serve index.html for all non-API routes that don't match static files
     // Express 5 requires named wildcard params instead of bare '*'
     app.get('/{*splat}', (req, res, next) => {
         // Don't serve index.html for API routes
@@ -168,18 +286,249 @@ export async function createServer() {
     });
     // Server lifecycle
     let server = null;
+    let scalingOrchestrator = null;
+    // Create HTTP server for WebSocket upgrade handling
+    const httpServer = http.createServer(app);
+    // ===== Presence WebSocket =====
+    const wssPresence = new WebSocketServer({
+        noServer: true,
+        perMessageDeflate: false,
+        maxPayload: 1024 * 1024, // 1MB - presence messages are small
+    });
+    const onlineUsers = new Map();
+    // Validation helpers
+    const isValidUsername = (username) => {
+        if (typeof username !== 'string')
+            return false;
+        return /^[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,37}[a-zA-Z0-9])?$/.test(username);
+    };
+    const isValidAvatarUrl = (url) => {
+        if (url === undefined || url === null)
+            return true;
+        if (typeof url !== 'string')
+            return false;
+        try {
+            const parsed = new URL(url);
+            return parsed.protocol === 'https:' &&
+                (parsed.hostname === 'avatars.githubusercontent.com' ||
+                    parsed.hostname === 'github.com' ||
+                    parsed.hostname.endsWith('.githubusercontent.com'));
+        }
+        catch {
+            return false;
+        }
+    };
+    // Handle HTTP upgrade for WebSocket
+    httpServer.on('upgrade', (request, socket, head) => {
+        const pathname = new URL(request.url || '', `http://${request.headers.host}`).pathname;
+        if (pathname === '/ws/presence') {
+            wssPresence.handleUpgrade(request, socket, head, (ws) => {
+                wssPresence.emit('connection', ws, request);
+            });
+        }
+        else {
+            // Unknown WebSocket path - destroy socket
+            socket.destroy();
+        }
+    });
+    // Broadcast to all presence clients
+    const broadcastPresence = (message, exclude) => {
+        const payload = JSON.stringify(message);
+        wssPresence.clients.forEach((client) => {
+            if (client !== exclude && client.readyState === WebSocket.OPEN) {
+                client.send(payload);
+            }
+        });
+    };
+    // Get online users list
+    const getOnlineUsersList = () => {
+        return Array.from(onlineUsers.values()).map((state) => state.info);
+    };
+    // Heartbeat interval to detect dead connections (30 seconds)
+    const PRESENCE_HEARTBEAT_INTERVAL = 30000;
+    const _PRESENCE_HEARTBEAT_TIMEOUT = 35000; // Allow 5s grace period (reserved for future use)
+    // Track connection health for heartbeat
+    const connectionHealth = new WeakMap();
+    // Heartbeat interval to clean up dead connections
+    const presenceHeartbeat = setInterval(() => {
+        const now = Date.now();
+        wssPresence.clients.forEach((ws) => {
+            const health = connectionHealth.get(ws);
+            if (!health) {
+                // New connection without health tracking - initialize it
+                connectionHealth.set(ws, { isAlive: true, lastPing: now });
+                return;
+            }
+            if (!health.isAlive) {
+                // Connection didn't respond to last ping - terminate it
+                ws.terminate();
+                return;
+            }
+            // Mark as not alive until we get a pong
+            health.isAlive = false;
+            health.lastPing = now;
+            ws.ping();
+        });
+    }, PRESENCE_HEARTBEAT_INTERVAL);
+    // Clean up interval on server close
+    wssPresence.on('close', () => {
+        clearInterval(presenceHeartbeat);
+    });
+    // Handle presence connections
+    wssPresence.on('connection', (ws) => {
+        // Initialize health tracking (no log - too noisy)
+        connectionHealth.set(ws, { isAlive: true, lastPing: Date.now() });
+        // Handle pong responses (heartbeat)
+        ws.on('pong', () => {
+            const health = connectionHealth.get(ws);
+            if (health) {
+                health.isAlive = true;
+            }
+        });
+        let clientUsername;
+        ws.on('message', (data) => {
+            try {
+                const msg = JSON.parse(data.toString());
+                if (msg.type === 'presence') {
+                    if (msg.action === 'join' && msg.user?.username) {
+                        const username = msg.user.username;
+                        const avatarUrl = msg.user.avatarUrl;
+                        if (!isValidUsername(username)) {
+                            console.warn(`[cloud] Invalid username rejected: ${username}`);
+                            return;
+                        }
+                        if (!isValidAvatarUrl(avatarUrl)) {
+                            console.warn(`[cloud] Invalid avatar URL rejected for user ${username}`);
+                            return;
+                        }
+                        clientUsername = username;
+                        const now = new Date().toISOString();
+                        const existing = onlineUsers.get(username);
+                        if (existing) {
+                            existing.connections.add(ws);
+                            existing.info.lastSeen = now;
+                            // Only log at milestones to reduce noise
+                            const count = existing.connections.size;
+                            if (count === 2 || count === 5 || count === 10 || count % 50 === 0) {
+                                console.log(`[cloud] User ${username} has ${count} connections`);
+                            }
+                        }
+                        else {
+                            onlineUsers.set(username, {
+                                info: { username, avatarUrl, connectedAt: now, lastSeen: now },
+                                connections: new Set([ws]),
+                            });
+                            console.log(`[cloud] User ${username} came online`);
+                            broadcastPresence({
+                                type: 'presence_join',
+                                user: { username, avatarUrl, connectedAt: now, lastSeen: now },
+                            }, ws);
+                        }
+                        ws.send(JSON.stringify({
+                            type: 'presence_list',
+                            users: getOnlineUsersList(),
+                        }));
+                    }
+                    else if (msg.action === 'leave') {
+                        if (!clientUsername || msg.username !== clientUsername)
+                            return;
+                        const userState = onlineUsers.get(clientUsername);
+                        if (userState) {
+                            userState.connections.delete(ws);
+                            if (userState.connections.size === 0) {
+                                onlineUsers.delete(clientUsername);
+                                console.log(`[cloud] User ${clientUsername} went offline`);
+                                broadcastPresence({ type: 'presence_leave', username: clientUsername });
+                            }
+                        }
+                    }
+                }
+                else if (msg.type === 'typing') {
+                    if (!clientUsername || msg.username !== clientUsername)
+                        return;
+                    const userState = onlineUsers.get(clientUsername);
+                    if (userState) {
+                        userState.info.lastSeen = new Date().toISOString();
+                    }
+                    broadcastPresence({
+                        type: 'typing',
+                        username: clientUsername,
+                        avatarUrl: userState?.info.avatarUrl,
+                        isTyping: msg.isTyping,
+                    }, ws);
+                }
+            }
+            catch (err) {
+                console.error('[cloud] Invalid presence message:', err);
+            }
+        });
+        ws.on('close', () => {
+            if (clientUsername) {
+                const userState = onlineUsers.get(clientUsername);
+                if (userState) {
+                    userState.connections.delete(ws);
+                    if (userState.connections.size === 0) {
+                        onlineUsers.delete(clientUsername);
+                        console.log(`[cloud] User ${clientUsername} disconnected`);
+                        broadcastPresence({ type: 'presence_leave', username: clientUsername });
+                    }
+                }
+            }
+        });
+        ws.on('error', (err) => {
+            console.error('[cloud] Presence WebSocket error:', err);
+        });
+    });
+    wssPresence.on('error', (err) => {
+        console.error('[cloud] Presence WebSocket server error:', err);
+    });
     return {
         app,
         async start() {
+            // Run database migrations before accepting connections
+            console.log('[cloud] Running database migrations...');
+            await runMigrations();
+            // Initialize scaling orchestrator for auto-scaling
+            if (process.env.RELAY_CLOUD_ENABLED === 'true') {
+                try {
+                    scalingOrchestrator = getScalingOrchestrator();
+                    await scalingOrchestrator.initialize(config.redisUrl);
+                    console.log('[cloud] Scaling orchestrator initialized');
+                    // Log scaling events
+                    scalingOrchestrator.on('scaling_started', (op) => {
+                        console.log(`[scaling] Started: ${op.action} for user ${op.userId}`);
+                    });
+                    scalingOrchestrator.on('scaling_completed', (op) => {
+                        console.log(`[scaling] Completed: ${op.action} for user ${op.userId}`);
+                    });
+                    scalingOrchestrator.on('scaling_error', ({ operation, error }) => {
+                        console.error(`[scaling] Error: ${operation.action} for ${operation.userId}:`, error);
+                    });
+                    scalingOrchestrator.on('workspace_provisioned', (data) => {
+                        console.log(`[scaling] Provisioned workspace ${data.workspaceId} for user ${data.userId}`);
+                    });
+                }
+                catch (error) {
+                    console.warn('[cloud] Failed to initialize scaling orchestrator:', error);
+                    // Non-fatal - server can run without auto-scaling
+                }
+            }
             return new Promise((resolve) => {
-                server = app.listen(config.port, () => {
+                server = httpServer.listen(config.port, () => {
                     console.log(`Agent Relay Cloud running on port ${config.port}`);
                     console.log(`Public URL: ${config.publicUrl}`);
+                    console.log(`WebSocket: ws://localhost:${config.port}/ws/presence`);
                     resolve();
                 });
             });
         },
         async stop() {
+            // Shutdown scaling orchestrator
+            if (scalingOrchestrator) {
+                await scalingOrchestrator.shutdown();
+            }
+            // Close WebSocket server
+            wssPresence.close();
             if (server) {
                 await new Promise((resolve) => server.close(() => resolve()));
             }

package/dist/cloud/services/auto-scaler.d.ts ADDED Viewed

@@ -0,0 +1,152 @@
+/**
+ * Auto-Scaler Service
+ *
+ * Monitors workspace metrics and automatically scales instances based on
+ * defined policies. Uses Redis pub/sub for cross-server coordination to
+ * ensure only one scaling operation happens at a time.
+ *
+ * Key responsibilities:
+ * - Subscribe to metrics updates from monitoring service
+ * - Evaluate scaling policies periodically
+ * - Coordinate scaling decisions across multiple cloud servers
+ * - Execute scaling actions via workspace provisioner
+ * - Track scaling history and pending operations
+ */
+import { EventEmitter } from 'events';
+import { ScalingDecision, UserScalingContext, WorkspaceMetrics } from './scaling-policy.js';
+export interface ScalingOperation {
+    id: string;
+    userId: string;
+    action: 'scale_up' | 'scale_down' | 'resize_up' | 'resize_down' | 'increase_agent_limit' | 'migrate_agents' | 'rebalance';
+    targetWorkspaceId?: string;
+    targetResourceTier?: 'small' | 'medium' | 'large' | 'xlarge';
+    targetAgentLimit?: number;
+    status: 'pending' | 'in_progress' | 'completed' | 'failed';
+    startedAt: Date;
+    completedAt?: Date;
+    error?: string;
+    triggeredBy: string;
+    metrics: Record<string, number>;
+}
+export interface AutoScalerConfig {
+    enabled: boolean;
+    evaluationIntervalMs: number;
+    lockTimeoutMs: number;
+    maxConcurrentOperations: number;
+    redisKeyPrefix: string;
+}
+export interface MetricsSnapshot {
+    userId: string;
+    workspaces: WorkspaceMetrics[];
+    timestamp: Date;
+}
+export declare class AutoScaler extends EventEmitter {
+    private config;
+    private policyService;
+    private redis;
+    private subscriber;
+    private evaluationTimer;
+    private pendingOperations;
+    private metricsCache;
+    private isLeader;
+    private serverId;
+    private lastScalingActions;
+    constructor(config?: Partial<AutoScalerConfig>);
+    /**
+     * Initialize with Redis connection for cross-server coordination
+     */
+    initialize(redisUrl: string): Promise<void>;
+    /**
+     * Set up Redis pub/sub subscriptions
+     */
+    private setupSubscriptions;
+    /**
+     * Handle channel message
+     */
+    private handleChannelMessage;
+    /**
+     * Handle incoming pub/sub messages
+     */
+    private handlePubSubMessage;
+    /**
+     * Handle metrics update from monitoring service
+     */
+    private handleMetricsUpdate;
+    /**
+     * Handle scaling request (from any server)
+     */
+    private handleScalingRequest;
+    /**
+     * Handle scaling completion
+     */
+    private handleScalingComplete;
+    /**
+     * Handle leadership change
+     */
+    private handleLeadershipChange;
+    /**
+     * Attempt to become the leader (only leader evaluates scaling)
+     */
+    private attemptLeadership;
+    /**
+     * Schedule leadership lock renewal
+     */
+    private scheduleLeadershipRenewal;
+    /**
+     * Start the periodic evaluation loop
+     */
+    private startEvaluationLoop;
+    /**
+     * Evaluate scaling for all cached users
+     */
+    private evaluateAllUsers;
+    /**
+     * Evaluate scaling for a specific user
+     */
+    private evaluateUserScaling;
+    /**
+     * Build user context for policy evaluation
+     */
+    private buildUserContext;
+    /**
+     * Request a scaling operation
+     */
+    private requestScaling;
+    /**
+     * Execute the actual scaling operation
+     */
+    private executeScaling;
+    /**
+     * Report metrics from monitoring service
+     */
+    reportMetrics(userId: string, workspaces: WorkspaceMetrics[]): Promise<void>;
+    /**
+     * Manually trigger scaling evaluation for a user
+     */
+    triggerEvaluation(userId: string): Promise<ScalingDecision | null>;
+    /**
+     * Get current scaling status
+     */
+    getStatus(): {
+        enabled: boolean;
+        isLeader: boolean;
+        serverId: string;
+        pendingOperations: number;
+        cachedUsers: number;
+    };
+    /**
+     * Get pending operations for a user
+     */
+    getPendingOperations(userId?: string): ScalingOperation[];
+    /**
+     * Update user plan in cache
+     */
+    setUserPlan(userId: string, plan: UserScalingContext['plan']): Promise<void>;
+    /**
+     * Clean shutdown
+     */
+    shutdown(): Promise<void>;
+}
+export declare function getAutoScaler(): AutoScaler;
+export declare function createAutoScaler(config?: Partial<AutoScalerConfig>): AutoScaler;
+//# sourceMappingURL=auto-scaler.d.ts.map