agentquad 0.4.4 → 0.4.7

package/src/openclaw-hook.js

@@ -83,6 +83,9 @@ const BOX_HORIZONTAL = /[─━┄┅┈┉═]/g
 const BOX_VERTICAL = /[│┃┆┇┊┋║]/g
 const BOX_CORNERS = /[┌┍┎┏┐┑┒┓└┕┖┗┘┙┚┛┌┐└┘╭╮╯╰╓╒╕╖╙╘╛╜╔╗╚╝]/g
 const BOX_TEES = /[├┝┞┟┠┡┢┣┤┥┦┧┨┩┪┫┬┭┮┯┰┱┲┳┴┵┶┷┸┹┺┻┼┽┾┿╀╁╂╃╄╅╆╇╈╉╊╋╠╣╦╩╬]/g
+// Unicode Block Elements (U+2580-259F)：▀▁▂▃▄▅▆▇█ ▉▊▋▌▍▎▏ ▐░▒▓▔▕▖▗▘▙▚▛▜▝▞▟
+// Cursor TUI 用这些画状态栏 / 进度条 / 边框，发到 IM 一串看就是黑条。
+const BOX_BLOCK = /[▀-▟]/g
 
 function cleanBoxDrawing(s) {
   return String(s || '')
@@ -90,6 +93,7 @@ function cleanBoxDrawing(s) {
     .replace(BOX_VERTICAL, '|')     // 竖线 → |
     .replace(BOX_CORNERS, '+')      // 角 → +
     .replace(BOX_TEES, '+')         // 三叉 → +
+    .replace(BOX_BLOCK, '')         // 块元素直接删（连成一片就是黑条，没语义）
 }
 
 function compactBlankLines(s) {
@@ -114,6 +118,15 @@ const PROMPT_LINE = /^\s*(❯|⏵|►|→)/
 const AUTO_MODE_LINE = /(auto mode (on|off)|shift\+tab to cycle|ctrl\+[a-z]\b)/i
 const BORDER_LINE = /^[\s\-=_|+~]+$/
 
+// Cursor TUI 底部状态栏噪声 —— 每次 stop hook 触发时这些行都会出现在 PTY tail，
+// 完全没信息量，发到 IM 是纯刷屏。
+//   "Opus 4.6 (Thinking) 200K High · 23.6%"  → 模型选择器 + context %
+//   "Auto-run" / "Manual"                    → 模式指示
+//   "~/Desktop/code/crazyCombo/quadtodo · main" → cwd · git branch
+const CURSOR_MODEL_LINE = /^\s*(Opus|Sonnet|Haiku|GPT|Claude|Codex|Composer)\s+[\w.-]+.*·\s*[\d.]+%\s*$/i
+const CURSOR_AUTORUN_LINE = /^\s*(Auto-run|Manual|Auto)\s*$/i
+const CURSOR_CWD_BRANCH_LINE = /^\s*~?\/[^\s·]+(?:\/[^\s·]+)*\s+·\s+[\w./-]+\s*$/
+
 function isSpinnerOnly(line) {
   // 全部是 spinner 字符（含空格）
   const trimmed = line.replace(/\s+/g, '')
@@ -130,6 +143,9 @@ function isStatusLine(line) {
   if (PROMPT_LINE.test(line)) return true
   if (AUTO_MODE_LINE.test(line)) return true
   if (BORDER_LINE.test(line)) return true
+  if (CURSOR_MODEL_LINE.test(line)) return true
+  if (CURSOR_AUTORUN_LINE.test(line)) return true
+  if (CURSOR_CWD_BRANCH_LINE.test(line)) return true
   return false
 }
 
@@ -444,6 +460,7 @@ export function createOpenClawHookHandler(deps = {}) {
    * 处理一条 hook 事件 —— 统一入口，按 source/path 分发。
    *  - source=codex,path=jsonl    → handleCodexJsonl（Phase C）
    *  - source=codex,path=detector → handleCodexDetector（Phase E 占位，目前直接拒绝）
+   *  - source=claude,path=detector→ handleClaudeDetector（PTY 兜底 Notification hook 不 fire）
    *  - 其它（默认 claude）        → handleClaude（保留原逻辑，签名不变）
    * 返回 { ok, action: 'sent'|'skipped'|'failed', reason? }
    */
@@ -451,6 +468,7 @@ export function createOpenClawHookHandler(deps = {}) {
     const source = req?.source || 'claude'
     if (source === 'codex' && req?.path === 'jsonl') return handleCodexJsonl(req)
     if (source === 'codex' && req?.path === 'detector') return handleCodexDetector(req)
+    if (source === 'claude' && req?.path === 'detector') return handleClaudeDetector(req)
     return handleClaude(req)
   }
 
@@ -566,12 +584,12 @@ export function createOpenClawHookHandler(deps = {}) {
     // bridge.postText 的形参是 `message`，不是 `text`——早期实现写错字段名，
     // 导致 bridge 收到 message=undefined 直接走 message_required 短路返回。
     try {
-      const r = await codexBridge.postText({ sessionId: quadtodoSessionId, message: fullText })
+      const r = await codexBridge.broadcastText({ sessionId: quadtodoSessionId, message: fullText })
       if (!r?.ok) {
-        logger.warn?.(`[codex-hook] postText returned not-ok: reason=${r?.reason} detail=${r?.detail || ''}`)
+        logger.warn?.(`[codex-hook] broadcastText returned not-ok: reason=${r?.reason} detail=${r?.detail || ''}`)
         return { ok: false, reason: 'post_failed', detail: r?.reason }
       }
-      logger.info?.(`[codex-hook] postText OK sessionId=${quadtodoSessionId} event=${event} len=${fullText.length}`)
+      logger.info?.(`[codex-hook] broadcastText OK sessionId=${quadtodoSessionId} event=${event} len=${fullText.length}`)
     } catch (e) {
       logger.warn?.(`[codex-hook] postText threw: ${e.message}`)
       return { ok: false, reason: 'post_failed', detail: e?.message }
@@ -628,6 +646,61 @@ export function createOpenClawHookHandler(deps = {}) {
     return { ok: true, action: 'sent', source: 'codex', event, nativeId, matchedPattern }
   }
 
+  // ─── Claude PTY-detector 分支 ────────────────────────────────────────────────
+  // Notification hook 不 fire 的兜底（实测 permissions.defaultMode='auto' 时 model
+  // classifier 触发的权限框走不到 hook）。两件事：
+  //   1) 翻 session.status → pending_confirm（web 端 deriveAiState 据此显示"待确认"）
+  //   2) 推 IM 权限卡 / 按钮（跟真 Notification 走同一份 cooldown，避免双推）
+  // 与 handleCodexDetector 同构，但走 broadcastText（保持跟 Claude 真 Notification 一致），
+  // header 标题区别成 "Claude Code 等待你的响应"。
+  async function handleClaudeDetector({ event, sessionId, promptText } = {}) {
+    if (!sessionId) return { ok: false, reason: 'no_sessionId' }
+    const sess = aiTerminal?.sessions?.get(sessionId)
+    if (!sess) return { ok: false, reason: 'session_gone' }
+
+    // 1) 翻状态。markPendingConfirm 默认只接受 running → pending_confirm，但 PTY-detector
+    //    要求 anchor + ≥2 数字选项才 emit，假阳性概率极低；显式 allowIdleFlip=true 让它
+    //    在 status=idle 时也能翻（覆盖 auto 模式权限框在 Stop hook 后才浮出的场景）。
+    try {
+      aiTerminal?.markPendingConfirm?.(sessionId, {
+        source: 'claude-pty-detector',
+        promptText,
+        allowIdleFlip: true,
+      })
+    } catch { /* ignore */ }
+
+    // 2) IM 推送资格 & cooldown 跟真 Notification 共享 → 不会双推
+    if (!isPermissionReminderEligible(sessionId)) {
+      return { ok: true, action: 'skipped', reason: 'im_push_not_eligible' }
+    }
+    const cd = notificationCooldownMs()
+    if (cd > 0 && isOnCooldown(sessionId, 'notification', cd)) {
+      return { ok: true, action: 'skipped', reason: 'notification_cooldown', cooldownMs: cd }
+    }
+
+    // 3) 拼消息：直接用 PTY detector 抽出来的 promptText（已经过 anchor + cleanPtyTail 清洗）
+    const todoId = sess.todoId
+    let todoTitle = todoId
+    try {
+      const todo = await db.getTodo?.(todoId)
+      todoTitle = todo?.title || todoId
+    } catch { /* ignore */ }
+    const idTail = todoId ? String(todoId).slice(-3) : '???'
+    let message = `[#t${idTail}] 任务「${todoTitle}」\n\n${promptText || '(no prompt text)'}`
+    message = buildPermissionNotificationMessage(message)
+    const replyMarkup = buildPermissionReplyMarkup(sessionId)
+
+    let result
+    try {
+      result = await openclaw.broadcastText({ sessionId, message, replyMarkup })
+    } catch (e) {
+      logger.warn?.(`[claude-detector] broadcastText failed: ${e.message}`)
+      return { ok: false, reason: 'post_failed', detail: e?.message }
+    }
+    if (result?.ok !== false) recordSent(sessionId, 'notification')
+    return { ok: true, action: 'sent', source: 'claude', path: 'detector', event }
+  }
+
   // ─── Claude 分支（既有实现，原 handle() 主体不变）─────────────────────────────
   async function handleClaude({ event, sessionId, todoId, todoTitle, hookPayload } = {}) {
     if (!event) return { ok: false, action: 'failed', reason: 'event_required' }
@@ -642,11 +715,56 @@ export function createOpenClawHookHandler(deps = {}) {
       logger.warn?.(`[openclaw-hook] hook fired with no registered route: event=${evt} sid=${sessionId} todoId=${todoId || 'null'}`)
     }
 
+    // 0) user-prompt-submit → echo user's prompt to all IM channels (minus origin)
+    if (evt === 'user-prompt-submit') {
+      if (!sessionId) return { ok: true, action: 'skipped', reason: 'no_session' }
+      const promptRaw =
+        (hookPayload && typeof hookPayload === 'object' && (
+          hookPayload.user_prompt ||
+          hookPayload.prompt ||
+          hookPayload.user_message ||
+          hookPayload.message
+        )) || ''
+      const prompt = String(promptRaw).trim()
+      if (!prompt) return { ok: true, action: 'skipped', reason: 'empty_prompt' }
+
+      // 截断：>2000 字符 → 取前 2000 + 末尾标注总字数
+      const MAX = 2000
+      const truncated = prompt.length > MAX
+        ? `${prompt.slice(0, MAX)}\n… [共 ${prompt.length} 字]`
+        : prompt
+      const message = `👤 ${truncated}`
+
+      let originChannel = null
+      try {
+        originChannel = sessionInputDispatcher?.consumeOrigin?.(sessionId, prompt) || null
+      } catch (e) {
+        logger.warn?.(`[openclaw-hook] consumeOrigin threw: ${e.message}`)
+      }
+
+      try {
+        await openclaw?.broadcastEcho?.({ sessionId, message, excludeChannel: originChannel })
+      } catch (e) {
+        logger.warn?.(`[openclaw-hook] broadcastEcho threw: ${e.message}`)
+      }
+      return { ok: true, action: 'echoed', origin: originChannel, length: prompt.length }
+    }
+
     // 1) ask_user pending 时 Stop 静默
     if (evt === 'stop' && hasPendingAskUser(sessionId)) {
       return { ok: true, action: 'skipped', reason: 'ask_user_pending' }
     }
 
+    // 1a) Cursor 的 stop hook 每轮 fire 3 次（实测 13ms 内连发，cursor 内部架构使然）。
+    //     给 cursor session 加 5 秒短 cooldown 去重 —— 5s 足够吞掉同一轮内的连发，
+    //     又远小于用户两轮对话的最小间隔。Claude/Codex 不受影响（它们 stop 一轮一发）。
+    if (evt === 'stop' && sessionId) {
+      const sess = aiTerminal?.sessions?.get?.(sessionId)
+      if (sess?.tool === 'cursor' && isOnCooldown(sessionId, 'stop', 5_000)) {
+        return { ok: true, action: 'skipped', reason: 'cursor_stop_dedup' }
+      }
+    }
+
     const permissionReminderEligible = evt === 'notification' && isPermissionReminderEligible(sessionId)
 
     // 注：原来这里会立即 notifyWebTurnDone。已经挪到 ③ 读完 JSONL 之后，
@@ -833,8 +951,8 @@ export function createOpenClawHookHandler(deps = {}) {
     // footer 永远附在最末尾（即使消息被截短到附件也要保留，让用户能看到费用）
     if (usageFooter) message = `${message}\n\n${usageFooter}`
 
-    // 4) 推送（postText 接受可选 attachment）
-    const result = await openclaw.postText({
+    // 4) 推送（broadcastText 扇出到 session 所有绑定 channel；接受可选 attachment）
+    const result = await openclaw.broadcastText({
       sessionId,
       message,
       attachment: attachmentPath,    // bridge 转给 telegramBot.sendDocument
@@ -843,7 +961,7 @@ export function createOpenClawHookHandler(deps = {}) {
 
     // 5) SessionEnd 后处理：close topic + 改名 ✅ + 清状态
     if (evt === 'session-end') {
-      const route = openclaw.resolveRoute?.(sessionId)
+      const route = openclaw.resolveRoute?.(sessionId, 'telegram')
       if (route?.threadId && telegramBot) {
         try {
           await telegramBot.closeForumTopic({ chatId: route.targetUserId, threadId: route.threadId })
@@ -904,14 +1022,14 @@ export function createOpenClawHookHandler(deps = {}) {
       }
       // Stop / session-end → 清掉 lark "在思考" reaction（如果是 lark route）
       if ((evt === 'stop' || evt === 'session-end') && sessionId && larkBot?.clearReactionsForSession) {
-        const route = openclaw.resolveRoute?.(sessionId)
+        const route = openclaw.resolveRoute?.(sessionId, 'lark')
         if (route?.channel === 'lark') {
           larkBot.clearReactionsForSession(sessionId).catch((e) => logger.warn?.(`[openclaw-hook] clearReactionsForSession failed: ${e.message}`))
         }
       }
       // Stop / session-end → 清掉 telegram "✍" reaction（如果是 telegram route）
       if ((evt === 'stop' || evt === 'session-end') && sessionId && reactionTracker?.clearReactionsForSession) {
-        const route = openclaw.resolveRoute?.(sessionId)
+        const route = openclaw.resolveRoute?.(sessionId, 'telegram')
         if (route?.channel === 'telegram') {
           reactionTracker.clearReactionsForSession(sessionId).catch((e) => logger.warn?.(`[openclaw-hook] tg clearReactionsForSession failed: ${e.message}`))
         }
@@ -938,4 +1056,4 @@ export function createOpenClawHookHandler(deps = {}) {
   }
 }
 
-export const __test__ = { buildMessage, shortTodoId }
+export const __test__ = { buildMessage, shortTodoId, extractTailSnippet }

package/src/openclaw-wizard.js

@@ -821,9 +821,9 @@ export function createOpenClawWizard({
     if (!sessionId || !todoId) return { ok: false, reason: 'missing_args' }
     if (!telegramBot?.createForumTopic) return { ok: false, reason: 'no_telegram_bot' }
 
-    // 已有路由 → 跳过
-    const existing = openclaw?.resolveRoute?.(sessionId)
-    if (existing && existing.threadId) return { ok: true, action: 'already_bound' }
+    // 已有 telegram 路由 → 跳过（per-channel resolveRoute；避免被 lark 路由误判）
+    const existing = openclaw?.resolveRoute?.(sessionId, 'telegram')
+    if (existing?.threadId) return { ok: true, action: 'already_bound' }
 
     // DB 里已持久化（rehydrate 时常见）→ 重注路由就行
     const todo = db.getTodo(todoId)
@@ -896,8 +896,9 @@ export function createOpenClawWizard({
     if (!sessionId || !todoId) return { ok: false, reason: 'missing_args' }
     if (!larkBot?.sendMessage) return { ok: false, reason: 'no_lark_bot' }
 
-    const existing = openclaw?.resolveRoute?.(sessionId)
-    if (existing?.channel === 'lark' && existing?.rootMessageId) {
+    // 显式取 lark 路由，避免被 telegram 路由误判
+    const existing = openclaw?.resolveRoute?.(sessionId, 'lark')
+    if (existing?.rootMessageId) {
       return { ok: true, action: 'already_bound' }
     }
 
@@ -916,7 +917,7 @@ export function createOpenClawWizard({
 
     const shortCode = String(todoId).replace(/[^a-zA-Z0-9]/g, '').slice(-4).toLowerCase() || 'auto'
     const title = (todo.title || `todo-${shortCode}`).slice(0, 96)
-    const topicName = `#t${shortCode} ${title}`.slice(0, 128)
+    const topicName = title.slice(0, 128)
     const intro = [
       `${topicName}`,
       `AI 已启动（自动镜像 from web/CLI），后续输出会回复在这条消息的 thread 里。`,
@@ -1015,7 +1016,7 @@ export function createOpenClawWizard({
           const todo = db.getTodo(sess.todoId)
           if (todo) {
             // 构造一个假 aiSession（DB 里没持久化，能跑就行）
-            const route = openclaw.resolveRoute?.(sid) || {}
+            const route = openclaw.resolveRoute?.(sid, 'telegram') || {}
             const fakeAi = {
               sessionId: sid,
               tool: sess.tool,
@@ -1168,7 +1169,7 @@ export function createOpenClawWizard({
         if (sess?.todoId) {
           const todo = db.getTodo(sess.todoId)
           if (todo) {
-            const route = openclaw.resolveRoute?.(sid) || {}
+            const route = openclaw.resolveRoute?.(sid, 'lark') || {}
             const fakeAi = {
               sessionId: sid,
               tool: sess.tool,
@@ -1272,6 +1273,16 @@ export function createOpenClawWizard({
     const routeKey = makeRouteKey(channel, chatId, threadId)
     const isLarkThreadReply = channel === 'lark' && (threadId || rootMessageId)
 
+    // 飞书无前缀建任务守门：channel + 配置 + 文本 + slash 守门
+    // 调用方需自行加 newTaskGateOpen + targetSid 缺失等额外条件。
+    function shouldLarkAutoCreate() {
+      if (channel !== 'lark') return false
+      if (getConfig?.()?.lark?.autoCreateTodo === false) return false
+      if (!trimmed) return false
+      if (/^\/[a-z][a-z0-9_]*\b/i.test(trimmed)) return false
+      return true
+    }
+
     // Lark 任务话题/root 回复必须严格隔离到原始路由：不允许被全局 ask_user、新任务触发词、
     // lastPush 或单活跃 session 等模糊 fallback 消费，避免把群内任务线程回复送到不相关会话。
     //
@@ -1565,6 +1576,36 @@ export function createOpenClawWizard({
         }
       }
       if (targetSid && typeof targetSid === 'object' && targetSid.notFound) {
+        // 未绑定 lark thread 的首条消息：默认起新建任务向导（受 autoCreateTodo 控制）
+        if (newTaskGateOpen && shouldLarkAutoCreate()) {
+          logger.info?.(`[wizard] lark auto-create from non-prefix text (unbound thread): chatId=${chatId} thread=${threadId || '-'} title="${trimmed.slice(0, 80)}"`)
+          const w = startWizard({ channel, chatId, threadId, text: trimmed, messageId, rootMessageId, imagePaths, userId: fromUserId })
+          if (w.step === STEP_DONE) return await finalizeWizard(w)
+          if (w.step === STEP_QUADRANT) {
+            const p = buildQuadrantPrompt()
+            return {
+              reply: `任务: ${w.title}\n（目录已识别为 ${w.chosenWorkdir}）\n\n${p.text}`,
+              replyMarkup: p.replyMarkup,
+              action: 'wizard_started',
+            }
+          }
+          if (w.step === STEP_TEMPLATE) {
+            const tpls = db.listTemplates()
+            w.cachedTemplates = tpls
+            const p = buildTemplatePrompt(tpls)
+            return {
+              reply: `任务: ${w.title}\n（目录+象限已识别）\n\n${p.text}`,
+              replyMarkup: p.replyMarkup,
+              action: 'wizard_started',
+            }
+          }
+          const p = buildWorkdirPrompt(w.workdirOptions)
+          return {
+            reply: `任务: ${w.title}\n\n${p.text}`,
+            replyMarkup: p.replyMarkup,
+            action: 'wizard_started',
+          }
+        }
         return {
           reply: '没有找到对应运行中的任务',
           action: 'session_not_found',
@@ -1718,6 +1759,38 @@ export function createOpenClawWizard({
       }
     }
 
+    // 5.5 飞书无前缀建任务兜底：lark + autoCreateTodo + step 5 没匹配任何 PTY target →
+    // 把消息原文当 title 起 wizard。Telegram/微信/openclaw 不受影响（channel 守门）。
+    if (newTaskGateOpen && shouldLarkAutoCreate()) {
+      logger.info?.(`[wizard] lark auto-create from non-prefix text: chatId=${chatId} thread=${threadId || '-'} title="${trimmed.slice(0, 80)}"`)
+      const w = startWizard({ channel, chatId, threadId, text: trimmed, messageId, rootMessageId, imagePaths, userId: fromUserId })
+      if (w.step === STEP_DONE) return await finalizeWizard(w)
+      if (w.step === STEP_QUADRANT) {
+        const p = buildQuadrantPrompt()
+        return {
+          reply: `任务: ${w.title}\n（目录已识别为 ${w.chosenWorkdir}）\n\n${p.text}`,
+          replyMarkup: p.replyMarkup,
+          action: 'wizard_started',
+        }
+      }
+      if (w.step === STEP_TEMPLATE) {
+        const tpls = db.listTemplates()
+        w.cachedTemplates = tpls
+        const p = buildTemplatePrompt(tpls)
+        return {
+          reply: `任务: ${w.title}\n（目录+象限已识别）\n\n${p.text}`,
+          replyMarkup: p.replyMarkup,
+          action: 'wizard_started',
+        }
+      }
+      const p = buildWorkdirPrompt(w.workdirOptions)
+      return {
+        reply: `任务: ${w.title}\n\n${p.text}`,
+        replyMarkup: p.replyMarkup,
+        action: 'wizard_started',
+      }
+    }
+
     // 6. fallback
     // General 频道里专门提示：保护 PTY 上下文不被污染
     if (isInGeneralOfSupergroup) {
@@ -1782,7 +1855,7 @@ export function createOpenClawWizard({
     // ── 权限按钮路径（qt:perm:<short>:allow|deny）──────────────────
     const permCb = parsePermissionCallback(callbackData)
     if (permCb) {
-      return handlePermissionCallback(permCb, { chatId, threadId })
+      return handlePermissionCallback(permCb, { chatId, threadId, channel: args.channel || null })
     }
     if (callbackData.startsWith(`${CALLBACK_PREFIX}:${PERMISSION_CALLBACK_KIND}:`)) {
       return { toast: '无效的权限按钮', action: 'invalid', editOriginal: true }
@@ -1899,30 +1972,51 @@ export function createOpenClawWizard({
   }
 
   // ─── 权限按钮回调 ───────────────────────────────────────────────
-  async function handlePermissionCallback({ short, action } = {}, { chatId, threadId } = {}) {
-    const stale = () => ({
-      toast: '会话已结束',
-      reply: `⚠️ 会话已结束（#${short}），无法发送权限选择。`,
-      action: 'permission_session_stale',
-      editOriginal: true,
-    })
+  async function handlePermissionCallback({ short, action } = {}, { chatId, threadId, channel = null } = {}) {
+    const stale = (why) => {
+      logger.warn?.(`[wizard/perm] stale short=${short} action=${action} channel=${channel || 'null'} chatId=${chatId || 'null'} threadId=${threadId || 'null'} reason=${why}`)
+      return {
+        toast: '会话已结束',
+        reply: `⚠️ 会话已结束（#${short}），无法发送权限选择。`,
+        action: 'permission_session_stale',
+        editOriginal: true,
+      }
+    }
 
     const sid = openclaw?.findSessionByShortId?.(short) || null
-    if (!sid || !pty?.has?.(sid)) return stale()
-    const route = openclaw?.resolveRoute?.(sid) || null
-    const sameChat = route && String(route.targetUserId) === String(chatId)
-    const sameThread = (route?.threadId || null) === (threadId || null)
+    if (!sid) return stale('no_sid_for_short')
+    if (!pty?.has?.(sid)) return stale(`pty_no_session sid=${sid}`)
+    // channel hint 关键：同一 session 经常同时绑 telegram + lark，resolveRoute(sid)
+    // 不带 channel 时返回最后注册的 route（通常是 telegram），导致 lark 点击的 sameChat
+    // 校验失败被误判为 stale。caller 已经知道点击来自哪个渠道，必须传过来。
+    const route = openclaw?.resolveRoute?.(sid, channel) || null
+    if (!route) return stale(`no_route sid=${sid} channel=${channel || 'null'}`)
+    const sameChat = String(route.targetUserId) === String(chatId)
+    // 飞书 card.action.trigger 事件实测经常不带 open_thread_id（即使卡片是在 thread
+    // 里发的）；用 sameThread 硬校验会把所有 lark click 卡成 stale。lark 渠道下
+    // 信任 sameChat + shortid（已经锁到具体 session）就够了，threadId 只在 telegram
+    // 渠道生效（topic 隔离才有意义）。
+    const sameThread = route.channel === 'lark'
+      ? true
+      : (route.threadId || null) === (threadId || null)
     // 允许 telegram / lark 渠道的权限回调；老的"threadId 非空就算"留作 legacy 兜底。
-    const isRoutedChannel = route?.channel === 'telegram' || route?.channel === 'lark' || route?.threadId != null
-    if (!sameChat || !sameThread || !isRoutedChannel) return stale()
+    const isRoutedChannel = route.channel === 'telegram' || route.channel === 'lark' || route.threadId != null
+    if (!sameChat || !sameThread || !isRoutedChannel) {
+      return stale(`route_mismatch sid=${sid} route=${JSON.stringify({channel: route.channel, targetUserId: route.targetUserId, threadId: route.threadId})} sameChat=${sameChat} sameThread=${sameThread} isRoutedChannel=${isRoutedChannel}`)
+    }
 
     if (action === PERMISSION_ACTION_ALLOW) {
       try {
         pty.write(sid, '\r')
       } catch (e) {
         logger.warn?.(`[wizard] permission allow write failed: ${e.message}`)
-        return stale()
+        return stale('write_failed_allow')
       }
+      // Lark click 直写 PTY 绕过了 /api/ai-terminal/input 路径，web 端的
+      // permissionPrompt + 卡片不会自动消失。手工调一下 awaitingReply(false) 让
+      // ai-terminal 走 markSessionRunningAfterInput → 翻 running、清 permissionPrompt、
+      // 广播 pending_cleared，前端 webview 那张"AI 等待授权"卡随之消失。
+      try { aiTerminal?.markSessionAwaitingReply?.(sid, false) } catch { /* ignore */ }
       return {
         toast: '已发送 Enter',
         chosenLabel: '允许（Enter）',
@@ -1936,8 +2030,9 @@ export function createOpenClawWizard({
         pty.write(sid, '\x1b')
       } catch (e) {
         logger.warn?.(`[wizard] permission deny write failed: ${e.message}`)
-        return stale()
+        return stale('write_failed_deny')
       }
+      try { aiTerminal?.markSessionAwaitingReply?.(sid, false) } catch { /* ignore */ }
       return {
         toast: '已发送 Esc',
         chosenLabel: '拒绝/退出（Esc）',