npm - atoo-studio - Versions diffs - 0.0.1 → 0.0.2 - Mend

atoo-studio 0.0.1 → 0.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (408) hide show

package/LICENSE +21 -0
package/README.github.md +322 -0
package/README.md +112 -0
package/README.npm.md +112 -0
package/bin/atoo-studio.js +90 -0
package/dist/src/agents/claude-code-terminal/adapter.d.ts +42 -0
package/dist/src/agents/claude-code-terminal/adapter.js +166 -0
package/dist/src/agents/claude-code-terminal/index.d.ts +13 -0
package/dist/src/agents/claude-code-terminal/index.js +45 -0
package/dist/src/agents/claude-code-terminal/spawner.d.ts +9 -0
package/dist/src/agents/claude-code-terminal/spawner.js +37 -0
package/dist/src/agents/claude-code-terminal-chatro/adapter.d.ts +51 -0
package/dist/src/agents/claude-code-terminal-chatro/adapter.js +301 -0
package/dist/src/agents/claude-code-terminal-chatro/index.d.ts +13 -0
package/dist/src/agents/claude-code-terminal-chatro/index.js +45 -0
package/dist/src/agents/claude-code-terminal-chatro/jsonl-watcher.d.ts +67 -0
package/dist/src/agents/claude-code-terminal-chatro/jsonl-watcher.js +431 -0
package/dist/src/agents/claude-code-terminal-chatro/spawner.d.ts +9 -0
package/dist/src/agents/claude-code-terminal-chatro/spawner.js +37 -0
package/dist/src/agents/codex-terminal/adapter.d.ts +40 -0
package/dist/src/agents/codex-terminal/adapter.js +160 -0
package/dist/src/agents/codex-terminal/index.d.ts +13 -0
package/dist/src/agents/codex-terminal/index.js +47 -0
package/dist/src/agents/codex-terminal/spawner.d.ts +9 -0
package/dist/src/agents/codex-terminal/spawner.js +56 -0
package/dist/src/agents/codex-terminal-chatro/adapter.d.ts +58 -0
package/dist/src/agents/codex-terminal-chatro/adapter.js +266 -0
package/dist/src/agents/codex-terminal-chatro/index.d.ts +13 -0
package/dist/src/agents/codex-terminal-chatro/index.js +50 -0
package/dist/src/agents/codex-terminal-chatro/jsonl-watcher.d.ts +36 -0
package/dist/src/agents/codex-terminal-chatro/jsonl-watcher.js +205 -0
package/dist/src/agents/codex-terminal-chatro/spawner.d.ts +9 -0
package/dist/src/agents/codex-terminal-chatro/spawner.js +57 -0
package/dist/src/agents/lib/chain-builder.d.ts +21 -0
package/dist/src/agents/lib/chain-builder.js +139 -0
package/dist/src/agents/lib/claude/fs-sessions.d.ts +31 -0
package/dist/src/agents/lib/claude/fs-sessions.js +329 -0
package/dist/src/agents/lib/claude/jsonl-writer.d.ts +32 -0
package/dist/src/agents/lib/claude/jsonl-writer.js +342 -0
package/dist/src/agents/lib/claude/workspace-trust.d.ts +1 -0
package/dist/src/agents/lib/claude/workspace-trust.js +29 -0
package/dist/src/agents/lib/codex/fs-sessions.d.ts +34 -0
package/dist/src/agents/lib/codex/fs-sessions.js +255 -0
package/dist/src/agents/lib/codex/jsonl-mapper.d.ts +11 -0
package/dist/src/agents/lib/codex/jsonl-mapper.js +154 -0
package/dist/src/agents/lib/codex/jsonl-writer.d.ts +8 -0
package/dist/src/agents/lib/codex/jsonl-writer.js +440 -0
package/dist/src/agents/lib/fs-tracking.d.ts +36 -0
package/dist/src/agents/lib/fs-tracking.js +109 -0
package/dist/src/agents/lib/pty-activity-tracker.d.ts +37 -0
package/dist/src/agents/lib/pty-activity-tracker.js +105 -0
package/dist/src/agents/lib/session-id-utils.d.ts +46 -0
package/dist/src/agents/lib/session-id-utils.js +147 -0
package/dist/src/agents/lib/session-precreate.d.ts +17 -0
package/dist/src/agents/lib/session-precreate.js +177 -0
package/dist/src/agents/registry.d.ts +72 -0
package/dist/src/agents/registry.js +337 -0
package/dist/src/agents/types.d.ts +135 -0
package/dist/src/agents/types.js +1 -0
package/dist/src/auth/crypto-key.d.ts +6 -0
package/dist/src/auth/crypto-key.js +45 -0
package/dist/src/auth/middleware.d.ts +18 -0
package/dist/src/auth/middleware.js +54 -0
package/dist/src/auth/password.d.ts +2 -0
package/dist/src/auth/password.js +12 -0
package/dist/src/auth/session.d.ts +10 -0
package/dist/src/auth/session.js +33 -0
package/dist/src/auth/totp.d.ts +12 -0
package/dist/src/auth/totp.js +61 -0
package/dist/src/auth/webauthn.d.ts +6 -0
package/dist/src/auth/webauthn.js +117 -0
package/dist/src/config.d.ts +10 -0
package/dist/src/config.js +16 -0
package/dist/src/database/connection-manager.d.ts +25 -0
package/dist/src/database/connection-manager.js +211 -0
package/dist/src/database/discovery/container.d.ts +6 -0
package/dist/src/database/discovery/container.js +226 -0
package/dist/src/database/discovery/env-parser.d.ts +9 -0
package/dist/src/database/discovery/env-parser.js +525 -0
package/dist/src/database/discovery/local-files.d.ts +6 -0
package/dist/src/database/discovery/local-files.js +58 -0
package/dist/src/database/discovery/port-scan.d.ts +7 -0
package/dist/src/database/discovery/port-scan.js +61 -0
package/dist/src/database/drivers/cassandra.d.ts +12 -0
package/dist/src/database/drivers/cassandra.js +91 -0
package/dist/src/database/drivers/clickhouse.d.ts +11 -0
package/dist/src/database/drivers/clickhouse.js +127 -0
package/dist/src/database/drivers/elasticsearch.d.ts +12 -0
package/dist/src/database/drivers/elasticsearch.js +169 -0
package/dist/src/database/drivers/influxdb.d.ts +14 -0
package/dist/src/database/drivers/influxdb.js +194 -0
package/dist/src/database/drivers/memcached.d.ts +11 -0
package/dist/src/database/drivers/memcached.js +117 -0
package/dist/src/database/drivers/mongodb.d.ts +12 -0
package/dist/src/database/drivers/mongodb.js +128 -0
package/dist/src/database/drivers/mysql.d.ts +11 -0
package/dist/src/database/drivers/mysql.js +112 -0
package/dist/src/database/drivers/neo4j.d.ts +11 -0
package/dist/src/database/drivers/neo4j.js +158 -0
package/dist/src/database/drivers/postgresql.d.ts +11 -0
package/dist/src/database/drivers/postgresql.js +133 -0
package/dist/src/database/drivers/redis.d.ts +11 -0
package/dist/src/database/drivers/redis.js +91 -0
package/dist/src/database/drivers/sqlite.d.ts +10 -0
package/dist/src/database/drivers/sqlite.js +100 -0
package/dist/src/database/query-stream.d.ts +5 -0
package/dist/src/database/query-stream.js +75 -0
package/dist/src/database/types.d.ts +71 -0
package/dist/src/database/types.js +1 -0
package/dist/src/events/index.d.ts +3 -0
package/dist/src/events/index.js +3 -0
package/dist/src/events/types.d.ts +214 -0
package/dist/src/events/types.js +22 -0
package/dist/src/events/wire.d.ts +114 -0
package/dist/src/events/wire.js +296 -0
package/dist/src/fs-monitor-types.d.ts +24 -0
package/dist/src/fs-monitor-types.js +1 -0
package/dist/src/fs-monitor.d.ts +80 -0
package/dist/src/fs-monitor.js +637 -0
package/dist/src/handlers/auth.d.ts +1 -0
package/dist/src/handlers/auth.js +170 -0
package/dist/src/handlers/changes.d.ts +1 -0
package/dist/src/handlers/changes.js +203 -0
package/dist/src/handlers/containers.d.ts +12 -0
package/dist/src/handlers/containers.js +379 -0
package/dist/src/handlers/databases.d.ts +3 -0
package/dist/src/handlers/databases.js +327 -0
package/dist/src/handlers/environments.d.ts +3 -0
package/dist/src/handlers/environments.js +286 -0
package/dist/src/handlers/github.d.ts +1 -0
package/dist/src/handlers/github.js +153 -0
package/dist/src/handlers/projects.d.ts +1 -0
package/dist/src/handlers/projects.js +895 -0
package/dist/src/handlers/ssh.d.ts +1 -0
package/dist/src/handlers/ssh.js +162 -0
package/dist/src/handlers/users.d.ts +1 -0
package/dist/src/handlers/users.js +195 -0
package/dist/src/index.d.ts +1 -0
package/dist/src/index.js +228 -0
package/dist/src/mcp/config.d.ts +32 -0
package/dist/src/mcp/config.js +227 -0
package/dist/src/mcp/server.d.ts +1 -0
package/dist/src/mcp/server.js +574 -0
package/dist/src/serial/cuse-device.d.ts +19 -0
package/dist/src/serial/cuse-device.js +260 -0
package/dist/src/serial/manager.d.ts +63 -0
package/dist/src/serial/manager.js +206 -0
package/dist/src/serial/pty-pair.d.ts +16 -0
package/dist/src/serial/pty-pair.js +68 -0
package/dist/src/services/fs-browser.d.ts +14 -0
package/dist/src/services/fs-browser.js +98 -0
package/dist/src/services/git-ops.d.ts +78 -0
package/dist/src/services/git-ops.js +288 -0
package/dist/src/services/github-ops.d.ts +104 -0
package/dist/src/services/github-ops.js +192 -0
package/dist/src/services/obfuscation.d.ts +2 -0
package/dist/src/services/obfuscation.js +16 -0
package/dist/src/services/preview/headless-backend.d.ts +62 -0
package/dist/src/services/preview/headless-backend.js +698 -0
package/dist/src/services/preview/injected-scripts.d.ts +9 -0
package/dist/src/services/preview/injected-scripts.js +232 -0
package/dist/src/services/preview/preview-backend.d.ts +92 -0
package/dist/src/services/preview/preview-backend.js +15 -0
package/dist/src/services/preview/universal-setter.d.ts +7 -0
package/dist/src/services/preview/universal-setter.js +46 -0
package/dist/src/services/preview-manager.d.ts +50 -0
package/dist/src/services/preview-manager.js +216 -0
package/dist/src/services/project-watcher.d.ts +6 -0
package/dist/src/services/project-watcher.js +307 -0
package/dist/src/services/remote-fs-browser.d.ts +11 -0
package/dist/src/services/remote-fs-browser.js +50 -0
package/dist/src/services/remote-git-ops.d.ts +71 -0
package/dist/src/services/remote-git-ops.js +215 -0
package/dist/src/services/session-search.d.ts +56 -0
package/dist/src/services/session-search.js +303 -0
package/dist/src/services/ssh-manager.d.ts +44 -0
package/dist/src/services/ssh-manager.js +359 -0
package/dist/src/session-writer.d.ts +9 -0
package/dist/src/session-writer.js +66 -0
package/dist/src/spawner.d.ts +56 -0
package/dist/src/spawner.js +135 -0
package/dist/src/state/db.d.ts +214 -0
package/dist/src/state/db.js +897 -0
package/dist/src/state/store.d.ts +37 -0
package/dist/src/state/store.js +108 -0
package/dist/src/state/types.d.ts +13 -0
package/dist/src/state/types.js +1 -0
package/dist/src/web/devtools-proxy.d.ts +7 -0
package/dist/src/web/devtools-proxy.js +176 -0
package/dist/src/web/port-proxy.d.ts +15 -0
package/dist/src/web/port-proxy.js +124 -0
package/dist/src/web/preview-ws.d.ts +5 -0
package/dist/src/web/preview-ws.js +207 -0
package/dist/src/web/server.d.ts +6 -0
package/dist/src/web/server.js +1694 -0
package/dist/src/ws/agent-ws.d.ts +5 -0
package/dist/src/ws/agent-ws.js +93 -0
package/frontend/dist/assets/_basePickBy-B-LibQ4-.js +1 -0
package/frontend/dist/assets/_baseUniq-CprifHap.js +1 -0
package/frontend/dist/assets/_createAssigner-ByDUqGii.js +1 -0
package/frontend/dist/assets/abap-DuT-3z4x.js +1 -0
package/frontend/dist/assets/addon-fit-CxQet2ja.js +1 -0
package/frontend/dist/assets/addon-web-links-D_jRkPIl.js +1 -0
package/frontend/dist/assets/apex-B-em86xX.js +1 -0
package/frontend/dist/assets/api-SUPuHhSY.js +2 -0
package/frontend/dist/assets/arc-Z0_eVteO.js +1 -0
package/frontend/dist/assets/architecture-PBZL5I3N-hvVXGhqd.js +1 -0
package/frontend/dist/assets/architectureDiagram-2XIMDMQ5-DiHPxX4j.js +36 -0
package/frontend/dist/assets/array-CwG8vNfn.js +1 -0
package/frontend/dist/assets/auth-store-R7eW5SVu.js +1 -0
package/frontend/dist/assets/azcli-Bg9wQloi.js +1 -0
package/frontend/dist/assets/bat-BM46z99L.js +1 -0
package/frontend/dist/assets/bicep-DcBsJUfh.js +2 -0
package/frontend/dist/assets/blockDiagram-WCTKOSBZ-C40u_hLo.js +132 -0
package/frontend/dist/assets/c4Diagram-IC4MRINW-Ct7LjWFQ.js +10 -0
package/frontend/dist/assets/cameligo-zw7JTtim.js +1 -0
package/frontend/dist/assets/channel-ClCsE6HN.js +1 -0
package/frontend/dist/assets/chunk-4BX2VUAB-zZ6P90VO.js +1 -0
package/frontend/dist/assets/chunk-55IACEB6-DXllTDQl.js +1 -0
package/frontend/dist/assets/chunk-7E7YKBS2-7zRaOLjj.js +1 -0
package/frontend/dist/assets/chunk-7R4GIKGN-Csst1274.js +80 -0
package/frontend/dist/assets/chunk-C72U2L5F-_JbQPbLN.js +1 -0
package/frontend/dist/assets/chunk-CFjPhJqf.js +1 -0
package/frontend/dist/assets/chunk-EGIJ26TM-B--aFyPw.js +1 -0
package/frontend/dist/assets/chunk-FMBD7UC4-DVR34RNb.js +15 -0
package/frontend/dist/assets/chunk-GEFDOKGD-CnmN6cC8.js +2 -0
package/frontend/dist/assets/chunk-JSJVCQXG-CWxHBzeJ.js +1 -0
package/frontend/dist/assets/chunk-KX2RTZJC-DkRk56s7.js +1 -0
package/frontend/dist/assets/chunk-KYZI473N-DCCsG2dK.js +53 -0
package/frontend/dist/assets/chunk-L3YUKLVL-C-DkZTMr.js +1 -0
package/frontend/dist/assets/chunk-MX3YWQON-OUdzv5sZ.js +1 -0
package/frontend/dist/assets/chunk-NQ4KR5QH-Bpu9FsM7.js +220 -0
package/frontend/dist/assets/chunk-O4XLMI2P-BMLK6_ib.js +7 -0
package/frontend/dist/assets/chunk-OZEHJAEY-CNNiJtG0.js +1 -0
package/frontend/dist/assets/chunk-PQ6SQG4A-evVHD3KM.js +1 -0
package/frontend/dist/assets/chunk-PU5JKC2W-DPFTYuvl.js +70 -0
package/frontend/dist/assets/chunk-QZHKN3VN-JRdddPvu.js +1 -0
package/frontend/dist/assets/chunk-R5LLSJPH-CHQzVVOV.js +1 -0
package/frontend/dist/assets/chunk-WL4C6EOR-BNFU6IIi.js +189 -0
package/frontend/dist/assets/chunk-XIRO2GV7-98T93G85.js +1 -0
package/frontend/dist/assets/chunk-XZSTWKYB-BcW3cyNp.js +94 -0
package/frontend/dist/assets/chunk-YBOYWFTD-BgKO1qAJ.js +1 -0
package/frontend/dist/assets/classDiagram-VBA2DB6C-DikXzgcD.js +1 -0
package/frontend/dist/assets/classDiagram-v2-RAHNMMFH-D7E3tQUK.js +1 -0
package/frontend/dist/assets/clojure-FspFoNNQ.js +1 -0
package/frontend/dist/assets/clone-mOXuZa7C.js +1 -0
package/frontend/dist/assets/codicon-ngg6Pgfi.ttf +0 -0
package/frontend/dist/assets/coffee-13n8Bk2W.js +1 -0
package/frontend/dist/assets/cose-bilkent-S5V4N54A-zUOWQqLe.js +1 -0
package/frontend/dist/assets/cpp-BVm2xGEs.js +1 -0
package/frontend/dist/assets/csharp-D2kAWmUm.js +1 -0
package/frontend/dist/assets/csp-Ezvgpf0e.js +1 -0
package/frontend/dist/assets/css-CYxRwcFy.js +3 -0
package/frontend/dist/assets/css.worker-Cd5h-ZOL.js +89 -0
package/frontend/dist/assets/cssMode-CrXej49V.js +1 -0
package/frontend/dist/assets/cypher-jg3SGErc.js +1 -0
package/frontend/dist/assets/cytoscape.esm-kyyvzxNV.js +321 -0
package/frontend/dist/assets/dagre-DH4bgZO7.js +1 -0
package/frontend/dist/assets/dagre-KLK3FWXG-DNSqDkwT.js +4 -0
package/frontend/dist/assets/dart-179jqhK4.js +1 -0
package/frontend/dist/assets/defaultLocale-Dda4OpKy.js +1 -0
package/frontend/dist/assets/diagram-E7M64L7V-RqPNT5Vs.js +24 -0
package/frontend/dist/assets/diagram-IFDJBPK2-B-5NRyaE.js +43 -0
package/frontend/dist/assets/diagram-P4PSJMXO-BrP69Hk0.js +24 -0
package/frontend/dist/assets/dist-CU_Nb1G5.js +1 -0
package/frontend/dist/assets/dockerfile-CIAtSGxS.js +1 -0
package/frontend/dist/assets/ecl-CGVKfDxD.js +1 -0
package/frontend/dist/assets/editor-Br_kD0ds.css +1 -0
package/frontend/dist/assets/editor.api2-YXkDn0Gm.js +872 -0
package/frontend/dist/assets/editor.main-fBaXZjJ0.js +6 -0
package/frontend/dist/assets/elixir-BZ-6w0y3.js +1 -0
package/frontend/dist/assets/erDiagram-INFDFZHY-BYiB9NYg.js +70 -0
package/frontend/dist/assets/flow9-CVuOjTMv.js +1 -0
package/frontend/dist/assets/flowDiagram-PKNHOUZH-Cwq47rsR.js +162 -0
package/frontend/dist/assets/freemarker2-DM-pztJU.js +3 -0
package/frontend/dist/assets/fsharp-q0pGJYr6.js +1 -0
package/frontend/dist/assets/ganttDiagram-A5KZAMGK-Dnx3szD9.js +292 -0
package/frontend/dist/assets/gitGraph-HDMCJU4V-COlTQ7bA.js +1 -0
package/frontend/dist/assets/gitGraphDiagram-K3NZZRJ6-BaUxboNc.js +65 -0
package/frontend/dist/assets/go-dzSPfdEO.js +1 -0
package/frontend/dist/assets/graphlib-kEFlkt3U.js +1 -0
package/frontend/dist/assets/graphql-CG4OUoEV.js +1 -0
package/frontend/dist/assets/handlebars-BbK53Vec.js +1 -0
package/frontend/dist/assets/hcl-Cy14JPk3.js +1 -0
package/frontend/dist/assets/html-DYtTQNOG.js +1 -0
package/frontend/dist/assets/html.worker-BjVEKLoU.js +502 -0
package/frontend/dist/assets/htmlMode-C6GTouth.js +1 -0
package/frontend/dist/assets/index-DMLxes_u.js +157 -0
package/frontend/dist/assets/index-DmzeqkB1.css +1 -0
package/frontend/dist/assets/info-3K5VOQVL-DBtHyA4C.js +1 -0
package/frontend/dist/assets/infoDiagram-LFFYTUFH-yBXLgMPI.js +2 -0
package/frontend/dist/assets/ini-Pbg8HGVD.js +1 -0
package/frontend/dist/assets/init-D6KNwrax.js +1 -0
package/frontend/dist/assets/ishikawaDiagram-PHBUUO56-Bld4two_.js +70 -0
package/frontend/dist/assets/java-BmVu6Qrl.js +1 -0
package/frontend/dist/assets/javascript-PbfQEdcJ.js +1 -0
package/frontend/dist/assets/journeyDiagram-4ABVD52K-4HyMd4R2.js +139 -0
package/frontend/dist/assets/json.worker-DqU5Wxnl.js +58 -0
package/frontend/dist/assets/jsonMode-CASsGppE.js +7 -0
package/frontend/dist/assets/julia-3cGnieBq.js +1 -0
package/frontend/dist/assets/kanban-definition-K7BYSVSG-DpgsZmpG.js +89 -0
package/frontend/dist/assets/katex-CEw3x5bf.js +261 -0
package/frontend/dist/assets/kotlin-BuWkVcfV.js +1 -0
package/frontend/dist/assets/less-CJ_VPy2C.js +2 -0
package/frontend/dist/assets/lexon-BygAuZPu.js +1 -0
package/frontend/dist/assets/line-CA_wh_TY.js +1 -0
package/frontend/dist/assets/linear-BAcLW45z.js +1 -0
package/frontend/dist/assets/liquid-kz84dle6.js +1 -0
package/frontend/dist/assets/lspLanguageFeatures-C7hAHFn1.js +4 -0
package/frontend/dist/assets/lua-C8Xs3dCx.js +1 -0
package/frontend/dist/assets/m3-DTJeKBk4.js +1 -0
package/frontend/dist/assets/markdown-QCgx8JqZ.js +1 -0
package/frontend/dist/assets/math-D0YcMJAn.js +1 -0
package/frontend/dist/assets/mdx-yRw0ap-E.js +1 -0
package/frontend/dist/assets/mermaid-parser.core-DAeTodBQ.js +4 -0
package/frontend/dist/assets/mindmap-definition-YRQLILUH-CoNlFyVl.js +68 -0
package/frontend/dist/assets/mips-DopWaYgE.js +1 -0
package/frontend/dist/assets/monaco.contribution-DeY0Qei-.js +2 -0
package/frontend/dist/assets/msdax-BDis4ARV.js +1 -0
package/frontend/dist/assets/mysql-BV6MLsOI.js +1 -0
package/frontend/dist/assets/objective-c-B1UuzKs6.js +1 -0
package/frontend/dist/assets/ordinal-jM7S0YHN.js +1 -0
package/frontend/dist/assets/packet-RMMSAZCW-FF6-Tmai.js +1 -0
package/frontend/dist/assets/pascal-BkvESCrc.js +1 -0
package/frontend/dist/assets/pascaligo-lTy0kZYr.js +1 -0
package/frontend/dist/assets/path-DNPd7Py7.js +1 -0
package/frontend/dist/assets/perl-CrtUPXLV.js +1 -0
package/frontend/dist/assets/pgsql-B9IbNWx2.js +1 -0
package/frontend/dist/assets/php-CXvQBY2p.js +1 -0
package/frontend/dist/assets/pie-UPGHQEXC-CFvXY2o-.js +1 -0
package/frontend/dist/assets/pieDiagram-SKSYHLDU-CM_hbCcn.js +30 -0
package/frontend/dist/assets/pla-DxBxuqWu.js +1 -0
package/frontend/dist/assets/postiats-OkEuT5YF.js +1 -0
package/frontend/dist/assets/powerquery-CMx5Tq4K.js +1 -0
package/frontend/dist/assets/powershell-CstRxrEc.js +1 -0
package/frontend/dist/assets/preload-helper-D4M6sveU.js +1 -0
package/frontend/dist/assets/protobuf-Bx0Z-uRj.js +2 -0
package/frontend/dist/assets/pug--W8vanWl.js +1 -0
package/frontend/dist/assets/python-DA0rnlw3.js +1 -0
package/frontend/dist/assets/qsharp-CRtr0YbN.js +1 -0
package/frontend/dist/assets/quadrantDiagram-337W2JSQ-B3n3IUhC.js +7 -0
package/frontend/dist/assets/r-C6E1d6iv.js +1 -0
package/frontend/dist/assets/radar-KQ55EAFF-MPZu7SdX.js +1 -0
package/frontend/dist/assets/razor-yd73uata.js +1 -0
package/frontend/dist/assets/redis-Dx13voP3.js +1 -0
package/frontend/dist/assets/redshift-D66HwlyV.js +1 -0
package/frontend/dist/assets/requirementDiagram-Z7DCOOCP-CorP7L7F.js +73 -0
package/frontend/dist/assets/restructuredtext-DQT2NKJ2.js +1 -0
package/frontend/dist/assets/rough.esm-DxAX5Vpo.js +1 -0
package/frontend/dist/assets/ruby-iFXI8hwH.js +1 -0
package/frontend/dist/assets/rust-CSKiei34.js +1 -0
package/frontend/dist/assets/sankeyDiagram-WA2Y5GQK-RDx6Bd-B.js +10 -0
package/frontend/dist/assets/sb-Bo3ttdP2.js +1 -0
package/frontend/dist/assets/scala-BC1D-Nxp.js +1 -0
package/frontend/dist/assets/scheme-Z4OAo4Lv.js +1 -0
package/frontend/dist/assets/scss-BvrdPs6B.js +3 -0
package/frontend/dist/assets/sequenceDiagram-2WXFIKYE-JMqJSFq6.js +145 -0
package/frontend/dist/assets/shell-Bh_aCyF-.js +1 -0
package/frontend/dist/assets/solidity-CWHj6tSe.js +1 -0
package/frontend/dist/assets/sophia-raoNtKtm.js +1 -0
package/frontend/dist/assets/sparql-XzmoGnue.js +1 -0
package/frontend/dist/assets/sql-BD0i9Gvg.js +1 -0
package/frontend/dist/assets/src-Bn-kKzs7.js +1 -0
package/frontend/dist/assets/st-DtVKyms6.js +1 -0
package/frontend/dist/assets/stateDiagram-RAJIS63D-CgFfENdy.js +1 -0
package/frontend/dist/assets/stateDiagram-v2-FVOUBMTO-C4Hh2P-U.js +1 -0
package/frontend/dist/assets/swift--UZs77wT.js +1 -0
package/frontend/dist/assets/systemverilog-CDnBSWUd.js +1 -0
package/frontend/dist/assets/tcl-DdCEuTHZ.js +1 -0
package/frontend/dist/assets/timeline-definition-YZTLITO2-BnatPBR5.js +61 -0
package/frontend/dist/assets/treemap-KZPCXAKY-qb1Pl9la.js +1 -0
package/frontend/dist/assets/ts.worker-DyPAEIuH.js +67719 -0
package/frontend/dist/assets/tsMode-iuvyEpyO.js +11 -0
package/frontend/dist/assets/twig-SSL-Altf.js +1 -0
package/frontend/dist/assets/typescript-17918Hud.js +1 -0
package/frontend/dist/assets/typespec-BT7S0ETg.js +1 -0
package/frontend/dist/assets/vb-CrIgucua.js +1 -0
package/frontend/dist/assets/vennDiagram-LZ73GAT5-DygS4Zzd.js +34 -0
package/frontend/dist/assets/wgsl-BeKc3oEp.js +298 -0
package/frontend/dist/assets/workers-DTfwKVoM.js +1 -0
package/frontend/dist/assets/xml-CBMr_Wbw.js +1 -0
package/frontend/dist/assets/xterm-BrP-ENHg.css +1 -0
package/frontend/dist/assets/xterm-CBX2m0YM.js +36 -0
package/frontend/dist/assets/xychartDiagram-JWTSCODW-D6wY1Jwd.js +7 -0
package/frontend/dist/assets/yaml-CTjCH7Bv.js +1 -0
package/frontend/dist/fonts/inter-300.ttf +0 -0
package/frontend/dist/fonts/inter-400.ttf +0 -0
package/frontend/dist/fonts/inter-500.ttf +0 -0
package/frontend/dist/fonts/inter-600.ttf +0 -0
package/frontend/dist/fonts/inter-700.ttf +0 -0
package/frontend/dist/index.html +49 -0
package/frontend/dist/logo_192x192.png +0 -0
package/frontend/dist/logo_32x32.png +0 -0
package/frontend/dist/logo_512x512.png +0 -0
package/frontend/dist/logo_64x64.png +0 -0
package/frontend/dist/logobg_192x192.png +0 -0
package/frontend/dist/logobg_512x512.png +0 -0
package/frontend/dist/logobg_64x64.png +0 -0
package/frontend/dist/manifest.json +25 -0
package/frontend/dist/sw.js +22 -0
package/package.json +74 -7
package/preload/Makefile +12 -0
package/preload/atoo-studio-preload.c +647 -0
package/preload/atoo-studio-preload.so +0 -0
package/setup-cuse.sh +260 -0
package/setup.sh +81 -0
package/src/serial/native/binding.gyp +10 -0
package/src/serial/native/pty_pair.c +222 -0

package/dist/src/handlers/ssh.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export declare const sshRouter: import("express-serve-static-core").Router;

package/dist/src/handlers/ssh.js ADDED Viewed

@@ -0,0 +1,162 @@
+import { Router } from 'express';
+import crypto from 'crypto';
+import { db } from '../state/db.js';
+import { sshManager } from '../services/ssh-manager.js';
+import { obfuscate } from '../services/obfuscation.js';
+export const sshRouter = Router();
+// Connect to SSH host (creates DB record + live connection)
+sshRouter.post('/api/ssh/connect', async (req, res) => {
+    const { label, host, port, username, auth_method, password, privateKey, passphrase, systemKeyPath } = req.body;
+    if (!host || !username || !auth_method) {
+        return res.status(400).json({ error: 'host, username, and auth_method are required' });
+    }
+    try {
+        const config = {
+            label: label || `${username}@${host}`,
+            host,
+            port: port || 22,
+            username,
+            auth_method,
+        };
+        if (auth_method === 'password' && password) {
+            config.password_obfuscated = obfuscate(password);
+        }
+        else if (auth_method === 'privatekey' && privateKey) {
+            config.private_key_obfuscated = obfuscate(privateKey);
+            if (passphrase)
+                config.passphrase_obfuscated = obfuscate(passphrase);
+        }
+        else if (auth_method === 'systemkey' && systemKeyPath) {
+            config.system_key_path = systemKeyPath;
+            if (passphrase)
+                config.passphrase_obfuscated = obfuscate(passphrase);
+        }
+        const dbRecord = db.createSshConnection(config);
+        // Attempt live connection
+        await sshManager.connect(dbRecord);
+        // Verify claude CLI
+        const hasClaude = await sshManager.verifyClaudeCli(dbRecord.id);
+        res.json({
+            id: dbRecord.id,
+            label: dbRecord.label,
+            host: dbRecord.host,
+            port: dbRecord.port,
+            username: dbRecord.username,
+            auth_method: dbRecord.auth_method,
+            connected: true,
+            has_claude: hasClaude,
+        });
+    }
+    catch (err) {
+        console.error('[ssh] Connect failed:', err.message);
+        res.status(500).json({ error: err.message });
+    }
+});
+// Generate ed25519 keypair
+sshRouter.post('/api/ssh/generate-keypair', (_req, res) => {
+    try {
+        const { publicKey, privateKey } = crypto.generateKeyPairSync('ed25519', {
+            publicKeyEncoding: { type: 'spki', format: 'pem' },
+            privateKeyEncoding: { type: 'pkcs8', format: 'pem' },
+        });
+        // Convert PEM public key to OpenSSH format for authorized_keys
+        const pubKeyObj = crypto.createPublicKey(publicKey);
+        const sshPublicKey = pubKeyObj.export({ type: 'spki', format: 'der' });
+        const opensshPubKey = `ssh-ed25519 ${Buffer.from(sshPublicKey).toString('base64')} atoo-studio-generated`;
+        res.json({ privateKey, publicKey: opensshPubKey });
+    }
+    catch (err) {
+        res.status(500).json({ error: err.message });
+    }
+});
+// Disconnect
+sshRouter.post('/api/ssh/:id/disconnect', async (req, res) => {
+    try {
+        await sshManager.disconnect(req.params.id);
+        res.json({ success: true });
+    }
+    catch (err) {
+        res.status(500).json({ error: err.message });
+    }
+});
+// Connection status
+sshRouter.get('/api/ssh/:id/status', (req, res) => {
+    const status = sshManager.getStatus(req.params.id);
+    const dbRecord = db.getSshConnection(req.params.id);
+    res.json({
+        ...status,
+        label: dbRecord?.label,
+        host: dbRecord?.host,
+        port: dbRecord?.port,
+        username: dbRecord?.username,
+    });
+});
+// List all connections (with live status)
+sshRouter.get('/api/ssh/connections', (_req, res) => {
+    const connections = db.listSshConnections();
+    const result = connections.map(c => ({
+        id: c.id,
+        label: c.label,
+        host: c.host,
+        port: c.port,
+        username: c.username,
+        auth_method: c.auth_method,
+        created_at: c.created_at,
+        ...sshManager.getStatus(c.id),
+    }));
+    res.json(result);
+});
+// Remote folder browser (SFTP)
+sshRouter.get('/api/ssh/:id/browse', async (req, res) => {
+    const browsePath = req.query.path || '/home';
+    try {
+        const entries = await sshManager.sftpReaddir(req.params.id, browsePath);
+        const dirs = entries.filter(e => e.type === 'dir').map(e => ({
+            name: e.name,
+            path: browsePath === '/' ? `/${e.name}` : `${browsePath}/${e.name}`,
+        }));
+        const parent = browsePath === '/' ? null : browsePath.substring(0, browsePath.lastIndexOf('/')) || '/';
+        res.json({ current: browsePath, parent, dirs });
+    }
+    catch (err) {
+        res.status(400).json({ error: err.message });
+    }
+});
+// Create remote directory
+sshRouter.post('/api/ssh/:id/browse/mkdir', async (req, res) => {
+    const { path: dirPath } = req.body;
+    if (!dirPath)
+        return res.status(400).json({ error: 'path is required' });
+    try {
+        await sshManager.sftpMkdir(req.params.id, dirPath);
+        res.json({ success: true, path: dirPath });
+    }
+    catch (err) {
+        res.status(400).json({ error: err.message });
+    }
+});
+// Delete SSH connection
+sshRouter.delete('/api/ssh/:id', async (req, res) => {
+    try {
+        await sshManager.disconnect(req.params.id);
+        db.deleteSshConnection(req.params.id);
+        res.json({ success: true });
+    }
+    catch (err) {
+        res.status(500).json({ error: err.message });
+    }
+});
+// Reconnect to a saved connection
+sshRouter.post('/api/ssh/:id/reconnect', async (req, res) => {
+    const dbRecord = db.getSshConnection(req.params.id);
+    if (!dbRecord)
+        return res.status(404).json({ error: 'Connection not found' });
+    try {
+        await sshManager.connect(dbRecord);
+        const hasClaude = await sshManager.verifyClaudeCli(dbRecord.id);
+        res.json({ connected: true, has_claude: hasClaude });
+    }
+    catch (err) {
+        res.status(500).json({ error: err.message });
+    }
+});

package/dist/src/handlers/users.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export declare const usersRouter: import("express-serve-static-core").Router;

package/dist/src/handlers/users.js ADDED Viewed

@@ -0,0 +1,195 @@
+import { Router } from 'express';
+import { z } from 'zod';
+import { db } from '../state/db.js';
+import { hashPassword, verifyPassword } from '../auth/password.js';
+import { requireAuth, requireAdmin } from '../auth/middleware.js';
+import { destroyAllUserSessions } from '../auth/session.js';
+import { generateTotpSecret, verifyTotpToken, saveTotpSecret, markTotpVerified, removeTotpSecret, getUnverifiedTotpSecret, hasTotpEnabled } from '../auth/totp.js';
+import { getRegistrationOptions, verifyAndSaveRegistration } from '../auth/webauthn.js';
+export const usersRouter = Router();
+// ═══════════════════════════════════════════════════
+// ADMIN: User management
+// ═══════════════════════════════════════════════════
+// GET /api/users — list all users (admin only)
+usersRouter.get('/api/users', requireAdmin, (_req, res) => {
+    const users = db.listUsers();
+    const usersWithMfa = users.map(u => ({
+        ...u,
+        hasTOTP: hasTotpEnabled(u.id),
+        passkeyCount: db.listPasskeys(u.id).length,
+    }));
+    res.json(usersWithMfa);
+});
+// POST /api/users — create user (admin only)
+const createUserSchema = z.object({
+    username: z.string().min(1).max(64),
+    display_name: z.string().min(1).max(128),
+    role: z.enum(['admin', 'basic']),
+    password: z.string().min(8).max(256),
+});
+usersRouter.post('/api/users', requireAdmin, async (req, res) => {
+    const parsed = createUserSchema.safeParse(req.body);
+    if (!parsed.success) {
+        return res.status(400).json({ error: 'Invalid input', details: parsed.error.flatten() });
+    }
+    const { username, display_name, role, password } = parsed.data;
+    if (db.getUserByUsername(username)) {
+        return res.status(409).json({ error: 'Username already exists' });
+    }
+    const passwordHash = await hashPassword(password);
+    const user = db.createUser(username, display_name, role, passwordHash);
+    res.json({ id: user.id, username: user.username, display_name: user.display_name, role: user.role });
+});
+// PUT /api/users/:id — update user (admin only)
+const updateUserSchema = z.object({
+    display_name: z.string().min(1).max(128).optional(),
+    role: z.enum(['admin', 'basic']).optional(),
+});
+usersRouter.put('/api/users/:id', requireAdmin, (req, res) => {
+    const parsed = updateUserSchema.safeParse(req.body);
+    if (!parsed.success) {
+        return res.status(400).json({ error: 'Invalid input' });
+    }
+    const user = db.getUser(req.params.id);
+    if (!user) {
+        return res.status(404).json({ error: 'User not found' });
+    }
+    db.updateUser(req.params.id, parsed.data);
+    res.json({ ok: true });
+});
+// DELETE /api/users/:id — delete user (admin only, cannot delete self)
+usersRouter.delete('/api/users/:id', requireAdmin, (req, res) => {
+    if (req.params.id === req.user.id) {
+        return res.status(400).json({ error: 'Cannot delete yourself' });
+    }
+    const user = db.getUser(req.params.id);
+    if (!user) {
+        return res.status(404).json({ error: 'User not found' });
+    }
+    destroyAllUserSessions(req.params.id);
+    db.deleteUser(req.params.id);
+    res.json({ ok: true });
+});
+// POST /api/users/:id/reset-password — admin resets password
+const resetPasswordSchema = z.object({
+    password: z.string().min(8).max(256),
+});
+usersRouter.post('/api/users/:id/reset-password', requireAdmin, async (req, res) => {
+    const parsed = resetPasswordSchema.safeParse(req.body);
+    if (!parsed.success) {
+        return res.status(400).json({ error: 'Invalid input' });
+    }
+    const user = db.getUser(req.params.id);
+    if (!user) {
+        return res.status(404).json({ error: 'User not found' });
+    }
+    const hash = await hashPassword(parsed.data.password);
+    db.updateUserPassword(req.params.id, hash);
+    destroyAllUserSessions(req.params.id);
+    res.json({ ok: true });
+});
+// POST /api/users/:id/reset-totp — admin removes TOTP
+usersRouter.post('/api/users/:id/reset-totp', requireAdmin, (req, res) => {
+    removeTotpSecret(req.params.id);
+    res.json({ ok: true });
+});
+// POST /api/users/:id/reset-passkeys — admin removes all passkeys
+usersRouter.post('/api/users/:id/reset-passkeys', requireAdmin, (req, res) => {
+    db.deleteAllUserPasskeys(req.params.id);
+    res.json({ ok: true });
+});
+// ═══════════════════════════════════════════════════
+// SELF: Profile & security
+// ═══════════════════════════════════════════════════
+// PUT /api/users/me/password — change own password
+const changePasswordSchema = z.object({
+    current_password: z.string().min(1),
+    new_password: z.string().min(8).max(256),
+});
+usersRouter.put('/api/users/me/password', requireAuth, async (req, res) => {
+    const parsed = changePasswordSchema.safeParse(req.body);
+    if (!parsed.success) {
+        return res.status(400).json({ error: 'Invalid input' });
+    }
+    const { current_password, new_password } = parsed.data;
+    const user = db.getUser(req.user.id);
+    const valid = await verifyPassword(current_password, user.password_hash);
+    if (!valid) {
+        return res.status(401).json({ error: 'Current password is incorrect' });
+    }
+    const hash = await hashPassword(new_password);
+    db.updateUserPassword(user.id, hash);
+    res.json({ ok: true });
+});
+// POST /api/users/me/totp/setup — generate TOTP secret + QR
+usersRouter.post('/api/users/me/totp/setup', requireAuth, async (req, res) => {
+    const user = req.user;
+    const result = await generateTotpSecret(user.username);
+    saveTotpSecret(user.id, result.secret);
+    res.json({ otpauthUri: result.otpauthUri, qrDataUrl: result.qrDataUrl });
+});
+// POST /api/users/me/totp/verify — activate TOTP with verification code
+const totpVerifySchema = z.object({
+    token: z.string().length(6),
+});
+usersRouter.post('/api/users/me/totp/verify', requireAuth, (req, res) => {
+    const parsed = totpVerifySchema.safeParse(req.body);
+    if (!parsed.success) {
+        return res.status(400).json({ error: 'Invalid input' });
+    }
+    const secret = getUnverifiedTotpSecret(req.user.id);
+    if (!secret) {
+        return res.status(400).json({ error: 'No TOTP setup in progress' });
+    }
+    if (!verifyTotpToken(secret, parsed.data.token)) {
+        return res.status(400).json({ error: 'Invalid TOTP code' });
+    }
+    markTotpVerified(req.user.id);
+    res.json({ ok: true });
+});
+// DELETE /api/users/me/totp — remove own TOTP
+usersRouter.delete('/api/users/me/totp', requireAuth, (req, res) => {
+    removeTotpSecret(req.user.id);
+    res.json({ ok: true });
+});
+// POST /api/users/me/passkey/register-options — get WebAuthn registration options
+usersRouter.post('/api/users/me/passkey/register-options', requireAuth, async (req, res) => {
+    const rpID = req.hostname;
+    const options = await getRegistrationOptions(req.user, rpID);
+    res.json(options);
+});
+// POST /api/users/me/passkey/register — complete passkey registration
+const passkeyRegisterSchema = z.object({
+    response: z.any(),
+    device_name: z.string().max(128).optional(),
+});
+usersRouter.post('/api/users/me/passkey/register', requireAuth, async (req, res) => {
+    const parsed = passkeyRegisterSchema.safeParse(req.body);
+    if (!parsed.success) {
+        return res.status(400).json({ error: 'Invalid input' });
+    }
+    const rpID = req.hostname;
+    const origin = `${req.protocol}://${req.headers.host}`;
+    const verified = await verifyAndSaveRegistration(req.user, rpID, origin, parsed.data.response, parsed.data.device_name);
+    if (!verified) {
+        return res.status(400).json({ error: 'Passkey registration failed' });
+    }
+    res.json({ ok: true });
+});
+// GET /api/users/me/passkeys — list own passkeys
+usersRouter.get('/api/users/me/passkeys', requireAuth, (req, res) => {
+    const passkeys = db.listPasskeys(req.user.id);
+    res.json(passkeys.map(pk => ({
+        id: pk.id,
+        device_name: pk.device_name,
+        created_at: pk.created_at,
+    })));
+});
+// DELETE /api/users/me/passkeys/:id — remove a passkey
+usersRouter.delete('/api/users/me/passkeys/:id', requireAuth, (req, res) => {
+    const deleted = db.deletePasskey(req.params.id, req.user.id);
+    if (!deleted) {
+        return res.status(404).json({ error: 'Passkey not found' });
+    }
+    res.json({ ok: true });
+});

package/dist/src/index.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export {};

package/dist/src/index.js ADDED Viewed

@@ -0,0 +1,228 @@
+import path from 'path';
+import fs from 'fs';
+import os from 'os';
+import https from 'https';
+import forge from 'node-forge';
+import { createWebServer } from './web/server.js';
+import { killAllCliProcesses } from './spawner.js';
+import { WEB_PORT, CA_CERT_PATH, CA_KEY_PATH, WEB_CERT_PATH, WEB_KEY_PATH } from './config.js';
+import { cleanupStaleMcpConfigs } from './mcp/config.js';
+import { fsMonitor } from './fs-monitor.js';
+import { db } from './state/db.js';
+import { agentRegistry } from './agents/registry.js';
+import { ClaudeCodeTerminalAgentFactory } from './agents/claude-code-terminal/index.js';
+import { ClaudeCodeTerminalChatROAgentFactory } from './agents/claude-code-terminal-chatro/index.js';
+import { CodexTerminalAgentFactory } from './agents/codex-terminal/index.js';
+import { sshManager } from './services/ssh-manager.js';
+import { previewManager } from './services/preview-manager.js';
+async function main() {
+    console.log('=== Atoo Studio ===');
+    console.log('');
+    // 1. Connect to filesystem monitor (graceful — no-op if unavailable)
+    fsMonitor.connect().catch(err => console.warn('[init] FS monitor not available:', err.message));
+    // 2. Register agent factories
+    agentRegistry.registerFactory(new ClaudeCodeTerminalAgentFactory());
+    agentRegistry.registerFactory(new ClaudeCodeTerminalChatROAgentFactory());
+    // agentRegistry.registerFactory(new CodexTerminalChatROAgentFactory());
+    agentRegistry.registerFactory(new CodexTerminalAgentFactory());
+    // 3. Clean up stale per-session MCP config files (older than 24h)
+    cleanupStaleMcpConfigs();
+    // 3.5. Generate CA-signed TLS cert for web frontend
+    const tlsOptions = getOrCreateWebCert();
+    // 4. Create and start the web frontend server over HTTPS (bind to 0.0.0.0 for WSL access from Windows)
+    const webServer = createWebServer(tlsOptions);
+    // Dynamic SAN expansion: detect new hosts from incoming requests and hot-swap cert
+    if (webServer instanceof https.Server) {
+        setupDynamicSan(webServer);
+    }
+    webServer.listen(WEB_PORT, '0.0.0.0', () => {
+        console.log(`[init] Web frontend listening on 0.0.0.0:${WEB_PORT} (HTTPS)`);
+    });
+    // Detect local IPs for display
+    const localIps = getLocalIps();
+    console.log('');
+    for (const ip of localIps) {
+        console.log(`Web frontend: https://${ip}:${WEB_PORT}`);
+    }
+    console.log('');
+    // Auto-reconnect saved SSH connections
+    const savedSshConns = db.listSshConnections();
+    for (const conn of savedSshConns) {
+        sshManager.connect(conn).then(() => {
+            console.log(`[init] SSH auto-reconnected: ${conn.label}`);
+        }).catch(err => {
+            console.warn(`[init] SSH auto-reconnect failed for ${conn.label}: ${err.message}`);
+        });
+    }
+    // Graceful shutdown
+    process.on('SIGINT', async () => {
+        console.log('\n[shutdown] Stopping...');
+        await previewManager.shutdown();
+        fsMonitor.disconnect();
+        sshManager.disconnectAll();
+        killAllCliProcesses();
+        db.close();
+        webServer.close();
+        process.exit(0);
+    });
+    process.on('SIGTERM', async () => {
+        await previewManager.shutdown();
+        fsMonitor.disconnect();
+        sshManager.disconnectAll();
+        killAllCliProcesses();
+        db.close();
+        webServer.close();
+        process.exit(0);
+    });
+}
+// Track known SANs so we can detect new ones
+const knownSans = new Set();
+let webKeyPem = '';
+function ensureCACert() {
+    if (fs.existsSync(CA_CERT_PATH))
+        return;
+    console.log('[tls] First run — generating CA certificate...');
+    fs.mkdirSync(path.dirname(CA_CERT_PATH), { recursive: true });
+    const keys = forge.pki.rsa.generateKeyPair(2048);
+    const cert = forge.pki.createCertificate();
+    cert.publicKey = keys.publicKey;
+    cert.serialNumber = '01';
+    cert.validity.notBefore = new Date();
+    cert.validity.notAfter = new Date();
+    cert.validity.notAfter.setFullYear(cert.validity.notAfter.getFullYear() + 10);
+    const attrs = [
+        { name: 'commonName', value: 'Atoo Studio Local CA' },
+        { name: 'organizationName', value: 'Atoo Studio' },
+    ];
+    cert.setSubject(attrs);
+    cert.setIssuer(attrs);
+    cert.setExtensions([
+        { name: 'basicConstraints', cA: true, critical: true },
+        { name: 'keyUsage', keyCertSign: true, cRLSign: true, critical: true },
+        { name: 'subjectKeyIdentifier' },
+    ]);
+    cert.sign(keys.privateKey, forge.md.sha256.create());
+    fs.writeFileSync(CA_CERT_PATH, forge.pki.certificateToPem(cert));
+    fs.writeFileSync(CA_KEY_PATH, forge.pki.privateKeyToPem(keys.privateKey), { mode: 0o600 });
+    console.log('[tls] CA certificate generated.');
+}
+function getOrCreateWebCert() {
+    ensureCACert();
+    // Seed known SANs with local IPs
+    knownSans.add('localhost');
+    knownSans.add('127.0.0.1');
+    for (const ip of getLocalIps())
+        knownSans.add(ip);
+    // If existing cert was CA-signed and covers all current SANs, reuse it
+    if (fs.existsSync(WEB_CERT_PATH) && fs.existsSync(WEB_KEY_PATH)) {
+        try {
+            const existingCert = forge.pki.certificateFromPem(fs.readFileSync(WEB_CERT_PATH, 'utf-8'));
+            const sanExt = existingCert.getExtension('subjectAltName');
+            const existingSans = new Set();
+            if (sanExt?.altNames) {
+                for (const an of sanExt.altNames)
+                    existingSans.add(an.value || an.ip);
+            }
+            // Check issuer is our CA (not self-signed)
+            const caCert = forge.pki.certificateFromPem(fs.readFileSync(CA_CERT_PATH, 'utf-8'));
+            const issuedByCA = existingCert.issuer.hash === caCert.subject.hash;
+            const allCovered = [...knownSans].every(s => existingSans.has(s));
+            if (issuedByCA && allCovered) {
+                webKeyPem = fs.readFileSync(WEB_KEY_PATH, 'utf-8');
+                // Also add any extra SANs from existing cert to our tracking set
+                for (const s of existingSans)
+                    knownSans.add(s);
+                console.log('[init] Reusing existing CA-signed web certificate');
+                return { key: webKeyPem, cert: fs.readFileSync(WEB_CERT_PATH, 'utf-8') };
+            }
+        }
+        catch { }
+    }
+    return regenerateWebCert('initial generation');
+}
+function regenerateWebCert(reason) {
+    console.log(`[tls] Generating CA-signed web certificate (${reason})...`);
+    const caCertPem = fs.readFileSync(CA_CERT_PATH, 'utf-8');
+    const caKeyPem = fs.readFileSync(CA_KEY_PATH, 'utf-8');
+    const caCert = forge.pki.certificateFromPem(caCertPem);
+    const caKey = forge.pki.privateKeyFromPem(caKeyPem);
+    // Reuse existing key if we have one, otherwise generate new
+    let privateKey;
+    let publicKey;
+    if (webKeyPem) {
+        privateKey = forge.pki.privateKeyFromPem(webKeyPem);
+        publicKey = forge.pki.setRsaPublicKey(privateKey.n, privateKey.e);
+    }
+    else {
+        const keys = forge.pki.rsa.generateKeyPair(2048);
+        privateKey = keys.privateKey;
+        publicKey = keys.publicKey;
+        webKeyPem = forge.pki.privateKeyToPem(privateKey);
+    }
+    const cert = forge.pki.createCertificate();
+    cert.publicKey = publicKey;
+    cert.serialNumber = Date.now().toString(16);
+    cert.validity.notBefore = new Date();
+    cert.validity.notAfter = new Date();
+    cert.validity.notAfter.setFullYear(cert.validity.notAfter.getFullYear() + 1);
+    cert.setSubject([{ name: 'commonName', value: 'Atoo Studio Web' }]);
+    cert.setIssuer(caCert.subject.attributes);
+    // Build SAN list from all known hosts
+    const altNames = [];
+    for (const san of knownSans) {
+        if (/^\d{1,3}(\.\d{1,3}){3}$/.test(san)) {
+            altNames.push({ type: 7, ip: san });
+        }
+        else {
+            altNames.push({ type: 2, value: san });
+        }
+    }
+    cert.setExtensions([
+        { name: 'basicConstraints', cA: false },
+        { name: 'keyUsage', digitalSignature: true, keyEncipherment: true },
+        { name: 'extKeyUsage', serverAuth: true },
+        { name: 'subjectAltName', altNames },
+    ]);
+    cert.sign(caKey, forge.md.sha256.create());
+    const certPem = forge.pki.certificateToPem(cert);
+    fs.writeFileSync(WEB_KEY_PATH, webKeyPem, { mode: 0o600 });
+    fs.writeFileSync(WEB_CERT_PATH, certPem);
+    console.log(`[tls] Web certificate issued with SANs: ${[...knownSans].join(', ')}`);
+    return { key: webKeyPem, cert: certPem };
+}
+function setupDynamicSan(server) {
+    // Intercept connections to check the Host header for unknown SANs
+    const origEmit = server.emit.bind(server);
+    server.emit = function (event, ...args) {
+        if (event === 'request') {
+            const req = args[0];
+            const host = req.headers.host;
+            if (host) {
+                const hostname = host.replace(/:\d+$/, '');
+                if (hostname && !knownSans.has(hostname)) {
+                    knownSans.add(hostname);
+                    console.log(`[tls] New host detected: ${hostname} — regenerating certificate`);
+                    const newTls = regenerateWebCert(`adding ${hostname}`);
+                    server.setSecureContext({ key: newTls.key, cert: newTls.cert });
+                }
+            }
+        }
+        return origEmit(event, ...args);
+    };
+}
+function getLocalIps() {
+    const ips = ['localhost'];
+    const interfaces = os.networkInterfaces();
+    for (const name of Object.keys(interfaces)) {
+        for (const iface of interfaces[name] || []) {
+            if (iface.family === 'IPv4' && !iface.internal) {
+                ips.push(iface.address);
+            }
+        }
+    }
+    return ips;
+}
+main().catch((err) => {
+    console.error('Fatal error:', err);
+    process.exit(1);
+});

package/dist/src/mcp/config.d.ts ADDED Viewed

@@ -0,0 +1,32 @@
+/** Register an MCP token as valid. */
+export declare function registerMcpToken(token: string): void;
+/** Remove an MCP token (called on session cleanup). */
+export declare function removeMcpToken(token: string): void;
+/** Check if an MCP token is valid. */
+export declare function validateMcpToken(token: string): boolean;
+/** Returns the command, args, and env needed to launch the MCP server process. */
+export declare function getMcpServerDef(): {
+    command: string;
+    args: string[];
+    env: Record<string, string>;
+};
+export declare const MCP_SYSTEM_PROMPT: string;
+/**
+ * Additional system prompt appended for chain continuation sessions.
+ * Tells the LLM that this is a continuation and how to search previous chain links.
+ */
+export declare const CHAIN_SYSTEM_PROMPT: string;
+/**
+ * Get or create an MCP config file.
+ * When sessionUuid is provided, creates a per-session config that includes
+ * ATOO_CURRENT_SESSION_UUID in the env — enabling chain-scoped search.
+ */
+export declare function getMcpConfigPath(sessionUuid?: string): string;
+/**
+ * Clean up a per-session MCP config file.
+ */
+export declare function cleanupMcpConfig(sessionUuid: string): void;
+/**
+ * Clean up stale per-session MCP config files older than maxAgeMs.
+ */
+export declare function cleanupStaleMcpConfigs(maxAgeMs?: number): void;