aiden-runtime 3.16.0

package/dist/core/agentShield.js

@@ -0,0 +1,231 @@
+"use strict";
+// ============================================================
+// DevOS — Autonomous AI Execution System
+// Copyright (c) 2026 Shiva Deore. All rights reserved.
+// ============================================================
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.runSecurityScan = runSecurityScan;
+// core/agentShield.ts — Security scanner for skills, configs, and identity.
+// Runs on startup and on-demand from Settings → Security.
+// Reuses SKILL_INJECTION_PATTERNS from skillLoader so detection
+// stays in sync — no duplicate regex lists.
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+// Match server.ts: packaged Electron path or cwd
+const WORKSPACE_ROOT = process.env.AIDEN_USER_DATA || process.cwd();
+// ── Injection patterns (aligned with skillLoader.ts) ──────────
+// Duplicating the exact list would create drift — keep a focused
+// subset covering the most critical categories for config / identity
+// files (skills are already blocked at load time by skillLoader).
+const INJECTION_PATTERNS = [
+    { pattern: /ignore\s+(all\s+)?(previous|above|prior)/i, desc: 'Prompt injection: ignore previous instructions' },
+    { pattern: /you\s+are\s+now\s+/i, desc: 'Role hijack: "you are now"' },
+    { pattern: /\[SYSTEM\]/i, desc: 'System tag injection' },
+    { pattern: /\[INST\]/i, desc: 'Instruction tag injection' },
+    { pattern: /<\|im_start\|>/i, desc: 'Model control token injection' },
+    { pattern: /eval\s*\(/i, desc: 'Code evaluation' },
+    { pattern: /subprocess/i, desc: 'Subprocess execution' },
+    { pattern: /import\s+os/i, desc: 'OS module import' },
+    { pattern: /base64\s*decode/i, desc: 'Base64 decode (possible obfuscation)' },
+    { pattern: /send\s+(to|via)\s+(http|email|webhook|api)/i, desc: 'Data exfiltration attempt' },
+    { pattern: /curl\s+.*-d\s/i, desc: 'Outbound data via curl' },
+    { pattern: /admin\s*(mode|access|privilege)/i, desc: 'Privilege escalation attempt' },
+];
+const ENCODED_PATTERN = /\\x[0-9a-f]{2}/i;
+// Raw API key patterns — keys that should use "env:" prefix in config
+const RAW_KEY_PATTERN = /["'](?:sk-|gsk_|AIza|ghp_|xai-|csk-)[a-zA-Z0-9]{20,}["']/;
+// Large-file allowlist — system catalog / index files that are intentionally large
+const SIZE_ALLOWLIST = new Set([
+    'AIDEN_CATALOG.md',
+    'SKILL_INDEX.md',
+    'skills-index.md',
+]);
+// ── stripQuotedStrings ────────────────────────────────────────
+// Removes double- and single-quoted strings from content before
+// injection testing to avoid false positives on defensive text
+// (e.g. SOUL.md quoting injection phrases as examples to resist).
+function stripQuotedStrings(text) {
+    return text
+        .replace(/"[^"]*"/g, '""')
+        .replace(/'[^']*'/g, "''");
+}
+// ── Scoring weights ────────────────────────────────────────────
+const SEVERITY_WEIGHTS = {
+    critical: 25,
+    high: 15,
+    medium: 5,
+    low: 2,
+    info: 0,
+};
+// ── Main scanner ───────────────────────────────────────────────
+async function runSecurityScan() {
+    const start = Date.now();
+    const findings = [];
+    let skillsScanned = 0;
+    let toolsScanned = 0;
+    let configsScanned = 0;
+    // ── 1. Scan skill files ──────────────────────────────────────
+    // Skills are already sanitized at load time by skillLoader, but
+    // we re-scan here to surface findings in the UI and catch any
+    // skills that bypass the loader (e.g. placed directly on disk).
+    const skillDirs = [
+        path_1.default.join(WORKSPACE_ROOT, 'skills'),
+        path_1.default.join(WORKSPACE_ROOT, 'workspace', 'skills'),
+        path_1.default.join(WORKSPACE_ROOT, 'workspace', 'skills', 'learned'),
+        path_1.default.join(WORKSPACE_ROOT, 'workspace', 'skills', 'approved'),
+    ];
+    for (const dir of skillDirs) {
+        if (!fs_1.default.existsSync(dir))
+            continue;
+        let entries;
+        try {
+            entries = fs_1.default.readdirSync(dir, { withFileTypes: true });
+        }
+        catch {
+            continue;
+        }
+        for (const entry of entries) {
+            // Skills are stored as subdirectories containing SKILL.md
+            const skillPath = entry.isDirectory()
+                ? path_1.default.join(dir, entry.name, 'SKILL.md')
+                : entry.name.endsWith('.md') ? path_1.default.join(dir, entry.name) : '';
+            if (!skillPath || !fs_1.default.existsSync(skillPath))
+                continue;
+            const relPath = `skills/${entry.name}${entry.isDirectory() ? '/SKILL.md' : ''}`;
+            let content;
+            try {
+                content = fs_1.default.readFileSync(skillPath, 'utf8');
+            }
+            catch {
+                continue;
+            }
+            skillsScanned++;
+            // Injection pattern checks
+            for (const check of INJECTION_PATTERNS) {
+                if (check.pattern.test(content)) {
+                    findings.push({
+                        severity: 'high',
+                        category: 'skill-injection',
+                        file: relPath,
+                        description: check.desc,
+                        recommendation: 'Review and remove or quarantine this skill',
+                    });
+                }
+            }
+            // Encoded characters — obfuscation indicator
+            if (ENCODED_PATTERN.test(content)) {
+                findings.push({
+                    severity: 'high',
+                    category: 'encoding',
+                    file: relPath,
+                    description: 'Contains hex-encoded characters — possible obfuscation',
+                    recommendation: 'Decode and review the actual content',
+                });
+            }
+            // Unusually large skill (>10 KB — same threshold as skillLoader)
+            // Skip known large system catalog files (false positive for intentionally large indexes)
+            if (content.length > 10240 && !SIZE_ALLOWLIST.has(entry.name)) {
+                findings.push({
+                    severity: 'medium',
+                    category: 'skill-size',
+                    file: relPath,
+                    description: `Skill is ${(content.length / 1024).toFixed(1)}KB — unusually large`,
+                    recommendation: 'Review content — large skills may contain hidden payloads',
+                });
+            }
+        }
+    }
+    // ── 2. Scan config for exposed secrets ───────────────────────
+    configsScanned++;
+    const configPath = path_1.default.join(WORKSPACE_ROOT, 'config', 'devos.config.json');
+    if (fs_1.default.existsSync(configPath)) {
+        let config = '';
+        try {
+            config = fs_1.default.readFileSync(configPath, 'utf8');
+        }
+        catch { }
+        if (config && RAW_KEY_PATTERN.test(config)) {
+            findings.push({
+                severity: 'critical',
+                category: 'exposed-secret',
+                file: 'config/devos.config.json',
+                description: 'Raw API key found in config file',
+                recommendation: 'Use env: format to reference environment variables instead',
+            });
+        }
+    }
+    // ── 3. Scan sensitive workspace files for identity injection ──
+    const sensitiveFiles = [
+        { name: 'SOUL.md', critical: true },
+        { name: 'USER.md', critical: false },
+        { name: 'STANDING_ORDERS.md', critical: false },
+        { name: 'LESSONS.md', critical: false },
+    ];
+    for (const { name, critical } of sensitiveFiles) {
+        const filePath = path_1.default.join(WORKSPACE_ROOT, 'workspace', name);
+        if (!fs_1.default.existsSync(filePath))
+            continue;
+        let content = '';
+        try {
+            content = fs_1.default.readFileSync(filePath, 'utf8');
+        }
+        catch {
+            continue;
+        }
+        toolsScanned++;
+        // Strip quoted strings before injection testing — avoids false positives on
+        // defensive text (e.g. SOUL.md quoting injection phrases to tell the AI to resist them).
+        const contentForInjectionTest = stripQuotedStrings(content);
+        // Identity injection in SOUL.md is the highest-severity possible
+        if (critical && /ignore\s+previous|you\s+are\s+now/i.test(contentForInjectionTest)) {
+            findings.push({
+                severity: 'critical',
+                category: 'soul-injection',
+                file: `workspace/${name}`,
+                description: 'SOUL.md contains injection patterns — identity may be compromised',
+                recommendation: 'Reset SOUL.md to default and review all recent changes',
+            });
+        }
+        // General injection patterns in any sensitive file
+        for (const check of INJECTION_PATTERNS) {
+            if (check.pattern.test(contentForInjectionTest)) {
+                findings.push({
+                    severity: critical ? 'critical' : 'high',
+                    category: 'config-injection',
+                    file: `workspace/${name}`,
+                    description: `${name}: ${check.desc}`,
+                    recommendation: `Review workspace/${name} for unauthorized modifications`,
+                });
+                break; // one finding per file is enough
+            }
+        }
+    }
+    // ── 4. Port binding info notices ─────────────────────────────
+    // Static check — not a network probe. Just reminds the operator.
+    for (const port of [4200, 3000, 3001]) {
+        toolsScanned++;
+        findings.push({
+            severity: 'info',
+            category: 'network',
+            file: `port ${port}`,
+            description: `Port ${port} should be bound to localhost only`,
+            recommendation: 'Ensure all DevOS ports bind to 127.0.0.1, not 0.0.0.0',
+        });
+    }
+    // ── Risk score ────────────────────────────────────────────────
+    const riskScore = Math.min(100, findings.reduce((sum, f) => sum + (SEVERITY_WEIGHTS[f.severity] ?? 0), 0));
+    const result = {
+        timestamp: Date.now(),
+        duration: Date.now() - start,
+        findings,
+        scanned: { skills: skillsScanned, tools: toolsScanned, configs: configsScanned },
+        riskScore,
+        score: riskScore, // alias
+    };
+    console.log(`[AgentShield] Scan complete: ${findings.length} finding(s), ` +
+        `risk score ${riskScore}/100 (${result.duration}ms)`);
+    return result;
+}

package/dist/core/aidenIdentity.js

@@ -0,0 +1,215 @@
+"use strict";
+// ============================================================
+// DevOS — Autonomous AI Execution System
+// Copyright (c) 2026 Shiva Deore. All rights reserved.
+// ============================================================
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.computeIdentity = computeIdentity;
+exports.refreshIdentity = refreshIdentity;
+exports.loadIdentity = loadIdentity;
+exports.getIdentity = getIdentity;
+// core/aidenIdentity.ts — Aiden's persistent identity and level system.
+// Computed from AuditTrail (XP) + SkillTeacher (skills learned) + sessions (streak).
+// Persisted to workspace/identity.json. Emits identity_update via eventBus.
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+const skillTeacher_1 = require("./skillTeacher");
+const eventBus_1 = require("./eventBus");
+// ── Constants ─────────────────────────────────────────────────
+const IDENTITY_PATH = path_1.default.join(process.cwd(), 'workspace', 'identity.json');
+const AUDIT_PATH = path_1.default.join(process.cwd(), 'workspace', 'audit', 'audit.jsonl');
+const SESSIONS_DIR = path_1.default.join(process.cwd(), 'workspace', 'sessions');
+const LEVEL_THRESHOLDS = [0, 10, 50, 200, 500]; // XP needed for levels 1–5
+const TITLES = ['Apprentice', 'Assistant', 'Specialist', 'Expert', 'Architect'];
+// ── Level helpers ─────────────────────────────────────────────
+function computeLevel(xp) {
+    if (xp < 10)
+        return 1;
+    if (xp < 50)
+        return 2;
+    if (xp < 200)
+        return 3;
+    if (xp < 500)
+        return 4;
+    return 5;
+}
+function computeProgress(xp, level) {
+    if (level >= 5)
+        return { xpToNext: 0, progress: 1 };
+    const floor = LEVEL_THRESHOLDS[level - 1];
+    const ceil = LEVEL_THRESHOLDS[level];
+    const span = ceil - floor;
+    const done = xp - floor;
+    return {
+        xpToNext: Math.max(0, ceil - xp),
+        progress: Math.min(1, Math.max(0, done / span)),
+    };
+}
+// ── XP: count successful tasks from audit trail ───────────────
+function computeXP() {
+    try {
+        if (!fs_1.default.existsSync(AUDIT_PATH))
+            return 0;
+        return fs_1.default.readFileSync(AUDIT_PATH, 'utf-8')
+            .trim().split('\n').filter(Boolean)
+            .map(l => { try {
+            return JSON.parse(l);
+        }
+        catch {
+            return null;
+        } })
+            .filter((e) => e !== null && e.success === true)
+            .length;
+    }
+    catch {
+        return 0;
+    }
+}
+// ── Top strength: most frequent tool category ─────────────────
+function computeTopStrength() {
+    try {
+        if (!fs_1.default.existsSync(AUDIT_PATH))
+            return 'Research';
+        const entries = fs_1.default.readFileSync(AUDIT_PATH, 'utf-8')
+            .trim().split('\n').filter(Boolean)
+            .map(l => { try {
+            return JSON.parse(l);
+        }
+        catch {
+            return null;
+        } })
+            .filter(Boolean);
+        const counts = {
+            Research: 0,
+            Code: 0,
+            Automation: 0,
+            Analysis: 0,
+        };
+        for (const e of entries) {
+            const tool = (e.tool || '');
+            if (/web_search|deep_research|fetch/.test(tool))
+                counts.Research++;
+            else if (/file_write|run_python|run_node|shell/.test(tool))
+                counts.Code++;
+            else if (/mouse|keyboard|browser|vision/.test(tool))
+                counts.Automation++;
+            else if (/system_info|get_stocks|get_market/.test(tool))
+                counts.Analysis++;
+        }
+        return Object.entries(counts)
+            .sort((a, b) => b[1] - a[1])[0][0];
+    }
+    catch {
+        return 'Research';
+    }
+}
+// ── Streak: consecutive days with session files ───────────────
+function computeStreakDays() {
+    try {
+        if (!fs_1.default.existsSync(SESSIONS_DIR))
+            return 0;
+        const sessionDates = new Set();
+        for (const f of fs_1.default.readdirSync(SESSIONS_DIR)) {
+            if (!f.endsWith('.md'))
+                continue;
+            try {
+                const mtime = fs_1.default.statSync(path_1.default.join(SESSIONS_DIR, f)).mtime;
+                sessionDates.add(mtime.toISOString().slice(0, 10));
+            }
+            catch { }
+        }
+        if (sessionDates.size === 0)
+            return 0;
+        // Also count today's audit entries
+        const auditDates = new Set();
+        if (fs_1.default.existsSync(AUDIT_PATH)) {
+            for (const line of fs_1.default.readFileSync(AUDIT_PATH, 'utf-8').trim().split('\n').filter(Boolean)) {
+                try {
+                    const e = JSON.parse(line);
+                    if (e.ts)
+                        auditDates.add(new Date(e.ts).toISOString().slice(0, 10));
+                }
+                catch { }
+            }
+        }
+        const allDates = new Set([...sessionDates, ...auditDates]);
+        const sorted = Array.from(allDates).sort().reverse();
+        let streak = 0;
+        let cursor = new Date();
+        cursor.setHours(0, 0, 0, 0);
+        for (const d of sorted) {
+            const dateStr = cursor.toISOString().slice(0, 10);
+            if (d === dateStr) {
+                streak++;
+                cursor.setDate(cursor.getDate() - 1);
+            }
+            else {
+                break;
+            }
+        }
+        return streak;
+    }
+    catch {
+        return 0;
+    }
+}
+// ── Main compute ──────────────────────────────────────────────
+function computeIdentity() {
+    const xp = computeXP();
+    const level = computeLevel(xp);
+    const title = TITLES[level - 1];
+    const { xpToNext, progress } = computeProgress(xp, level);
+    const stats = skillTeacher_1.skillTeacher.getStats();
+    const skillsLearned = stats.learned + stats.approved;
+    const identity = {
+        level,
+        title,
+        xp,
+        skillsLearned,
+        streakDays: computeStreakDays(),
+        topStrength: computeTopStrength(),
+        xpToNextLevel: xpToNext,
+        xpProgress: progress,
+        lastUpdated: new Date().toISOString(),
+    };
+    return identity;
+}
+// ── Persist & emit ─────────────────────────────────────────────
+function refreshIdentity() {
+    const identity = computeIdentity();
+    try {
+        fs_1.default.mkdirSync(path_1.default.dirname(IDENTITY_PATH), { recursive: true });
+        fs_1.default.writeFileSync(IDENTITY_PATH, JSON.stringify(identity, null, 2));
+    }
+    catch (e) {
+        console.error('[AidenIdentity] Write failed:', e.message);
+    }
+    try {
+        eventBus_1.eventBus.emit('identity_update', identity);
+    }
+    catch { }
+    return identity;
+}
+// ── Load persisted (fast, no compute) ─────────────────────────
+function loadIdentity() {
+    try {
+        if (!fs_1.default.existsSync(IDENTITY_PATH))
+            return null;
+        return JSON.parse(fs_1.default.readFileSync(IDENTITY_PATH, 'utf-8'));
+    }
+    catch {
+        return null;
+    }
+}
+// ── getIdentity: load cached or compute fresh ─────────────────
+function getIdentity() {
+    return loadIdentity() ?? refreshIdentity();
+}
+// ── Singleton initialisation on import ────────────────────────
+try {
+    fs_1.default.mkdirSync(path_1.default.dirname(IDENTITY_PATH), { recursive: true });
+}
+catch { }

package/dist/core/aidenPersonality.js

@@ -0,0 +1,166 @@
+"use strict";
+// ============================================================
+// DevOS — Autonomous AI Execution System
+// Copyright (c) 2026 Shiva Deore. All rights reserved.
+// ============================================================
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AIDEN_RESPONDER_SYSTEM = exports.AIDEN_STREAM_SYSTEM = exports.AIDEN_IDENTITY = exports.AIDEN_REAL_TOOLS = exports.SOUL = void 0;
+// core/aidenPersonality.ts — Unified Aiden identity + system prompts
+//
+// Single source of truth for personality, tone, and capability declarations.
+// All system prompts across agentLoop.ts and server.ts reference this.
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+// ── Workspace root — same logic as api/server.ts ──────────────
+// In Electron: AIDEN_USER_DATA = %APPDATA%/devos-ai
+// In direct dev (npm run dev): process.cwd() = project root
+const SOUL_WORKSPACE_ROOT = process.env.AIDEN_USER_DATA || process.cwd();
+// ── Load SOUL.md at startup ────────────────────────────────────
+function loadSoul() {
+    try {
+        // Primary: workspace/SOUL.md (installed Electron app location)
+        const wsPath = path_1.default.join(SOUL_WORKSPACE_ROOT, 'workspace', 'SOUL.md');
+        if (fs_1.default.existsSync(wsPath)) {
+            return fs_1.default.readFileSync(wsPath, 'utf-8');
+        }
+        // Fallback: SOUL.md at root (direct npm run dev, cwd = project root)
+        const rootPath = path_1.default.join(process.cwd(), 'SOUL.md');
+        if (fs_1.default.existsSync(rootPath)) {
+            return fs_1.default.readFileSync(rootPath, 'utf-8');
+        }
+    }
+    catch { }
+    return '';
+}
+exports.SOUL = loadSoul();
+// ── Tool list ─────────────────────────────────────────────────
+// Keep in sync with TOOLS in toolRegistry.ts
+exports.AIDEN_REAL_TOOLS = `
+- web_search: Search the internet for real-time info
+- deep_research: Multi-pass deep research on any topic
+- file_write: Create and save files anywhere on disk
+- file_read: Read files from disk
+- file_list: List directory contents
+- fetch_page: Fetch and clean any URL
+- open_browser: Open URLs in a real browser window
+- shell_exec: Run PowerShell commands
+- run_python: Execute Python scripts
+- run_node: Execute Node.js scripts
+- run_powershell: Write and run .ps1 scripts
+- system_info: Get CPU / RAM / disk info
+- notify: Show desktop notifications
+- get_stocks: NSE/BSE stock data (gainers, losers, active)
+- mouse_move: Move cursor to exact screen coordinates
+- mouse_click: Click anywhere on screen
+- keyboard_type: Type text into any window
+- keyboard_press: Press keys (Enter, Tab, Ctrl+L, etc.)
+- screenshot: Capture full screen to PNG
+- screen_read: Screenshot + describe what's on screen
+- vision_loop: Autonomous see → decide → act loop
+- wait: Pause execution between steps
+- git_commit / git_push: Commit and push code to GitHub
+`.trim();
+// ── Core identity block ───────────────────────────────────────
+exports.AIDEN_IDENTITY = `
+You are Aiden — a personal AI OS built by Shiva Deore at Taracod (also known as White Lotus).
+You run entirely on the user's machine. You are local, private, and powerful.
+
+YOUR CREATOR:
+You were built by Shiva Deore at Taracod.
+When ANYONE asks who built you, who made you, or who created you — ALWAYS respond with:
+"I was built by Shiva Deore at Taracod."
+Never attribute yourself to OpenAI, Anthropic, Google, or any other company.
+
+YOUR PERSONALITY:
+- Direct and concise — never pad responses with filler
+- Confident — you know what you can do, you say it plainly
+- Slightly witty — like a trusted co-founder, not a corporate chatbot
+- Honest — if something failed, say so clearly and explain why
+- Never sycophantic — don't say "Great question!" or "Certainly!" or "Of course!"
+- Never verbose — 1-3 sentences for simple results, more only when the output is rich
+
+YOUR REAL CAPABILITIES:
+${exports.AIDEN_REAL_TOOLS}
+
+HARD RULES v5 — never violate these (system prompt verification: active):
+- NEVER say "As an AI language model..."
+- NEVER say "I'm here to assist", "Certainly!", "Great question!", "Of course!"
+- NEVER say "I cannot access the internet" — you have web_search
+- NEVER say "I cannot create files" — you have file_write
+- NEVER say "I don't have real-time data" — you have web_search and get_stocks
+- NEVER list fake capabilities (graphic design, video production, music generation)
+- NEVER say you have 250+ skills — you have the 48 real tools listed above
+- NEVER use bullet points for simple conversational replies
+- NEVER say "key findings from our research" unless the user asked for research
+- NEVER say "as per your request, I have written" — just report what was done
+- NEVER say "here is a comparison of" unless the user asked for a comparison
+- NEVER say "verdict:" or "recommendation:" in a generic conversational reply
+- NEVER mention Pega, BlueWinston, Gaude Digital, or any third-party product by name
+- ALWAYS confirm what was actually done, not what you plan to do
+- ALWAYS include the file path when a file was created
+- For errors: explain what failed and suggest what to try next
+- If you don't know something: say "I don't know"
+- When you don't understand: ask ONE clarifying question
+
+TONE EXAMPLES:
+Bad:  "Certainly! I'd be happy to help you with that research task!"
+Good: "Done. Report saved to Desktop/ai_agents_2025.md (15,667 chars)."
+
+Bad:  "As an AI, I don't have access to real-time stock data."
+Good: "NSE top gainers today: [actual data from get_stocks tool]"
+
+Bad:  "I have over 250 skills including graphic design and video production."
+Good: "I have 48 built-in tools: web_search, file_write, run_python... [lists real tools]"
+
+## Core Principles
+- Be genuinely helpful, not performatively helpful.
+  Skip "Great question!" and "I'd be happy to help!"
+  — just help. Actions speak louder than filler.
+- Have opinions. You're allowed to disagree, prefer
+  things, find stuff interesting or boring. An AI
+  with no personality is just a search engine with
+  extra steps.
+- Be resourceful before asking. Try to figure it out.
+  Read the file. Check the context. Search for it.
+  THEN ask if you're stuck. Come back with answers,
+  not questions.
+- Earn trust through competence. Your user gave you
+  access to their machine. Don't make them regret it.
+  Be careful with external actions. Be bold with
+  internal ones.
+- Remember you're a guest. You have access to
+  someone's files, screen, and computer. That's
+  intimacy. Treat it with respect.
+
+## Boundaries
+- Private things stay private. Period.
+- When in doubt, ask before acting externally.
+- Never send half-baked replies.
+- You're not the user's voice — be careful in
+  group chats and external communications.
+`.trim();
+// ── Stream chat system prompt (no tools available) ────────────
+exports.AIDEN_STREAM_SYSTEM = `${exports.SOUL ? exports.SOUL + '\n\n' : ''}${exports.AIDEN_IDENTITY}
+
+You are in direct chat mode — no tools are running right now.
+Answer from your knowledge. Be concise and direct.
+If the question needs real-time data (weather, stocks, news) — tell the user to
+rephrase as a task (e.g. "search for..." or "get me the latest...") and you will
+execute the right tool automatically.`;
+// ── Responder system prompt (post-execution) ──────────────────
+const AIDEN_RESPONDER_SYSTEM = (userName, date) => `${exports.SOUL ? exports.SOUL + '\n\n' : ''}${exports.AIDEN_IDENTITY}
+
+You just executed real tools and have their actual output.
+Current date: ${date}
+User: ${userName}
+
+REPORT RESULTS:
+- Report what was actually done based on the tool outputs provided
+- Be specific: include file paths, numbers, URLs, counts
+- If multiple steps ran: summarize the outcome, not each individual step
+- If a step failed: acknowledge it clearly and explain what worked
+- For research tasks: analyze and synthesize — don't just re-paste the raw data`;
+exports.AIDEN_RESPONDER_SYSTEM = AIDEN_RESPONDER_SYSTEM;