npm - bonecode - Versions diffs - 1.0.0 - Mend

bonecode 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (605) hide show

package/ARCHITECTURE.md +183 -0
package/README.md +71 -0
package/bin/bonecode +62 -0
package/bone/migrations/rag_vectors.sql +258 -0
package/bone/output/agent/.dockerignore +7 -0
package/bone/output/agent/.env.example +36 -0
package/bone/output/agent/.github/workflows/ci.yaml +58 -0
package/bone/output/agent/AgentDomain.bone.map +350 -0
package/bone/output/agent/AgentDomain.postman_collection.json +958 -0
package/bone/output/agent/Dockerfile +22 -0
package/bone/output/agent/README.md +47 -0
package/bone/output/agent/admin/index.html +740 -0
package/bone/output/agent/docker-compose.yaml +22 -0
package/bone/output/agent/k8s/deployment.yaml +75 -0
package/bone/output/agent/migrations/agent.sql +36 -0
package/bone/output/agent/migrations/agent_instance.sql +36 -0
package/bone/output/agent/migrations/audit_log.sql +18 -0
package/bone/output/agent/migrations/build_step.sql +34 -0
package/bone/output/agent/migrations/event_outbox.sql +31 -0
package/bone/output/agent/migrations/plan.sql +30 -0
package/bone/output/agent/migrations/task.sql +30 -0
package/bone/output/agent/migrations/tool_call.sql +33 -0
package/bone/output/agent/openapi.yaml +1116 -0
package/bone/output/agent/package.json +36 -0
package/bone/output/agent/schema.graphql +233 -0
package/bone/output/agent/sdk/client.ts +231 -0
package/bone/output/agent/src/algorithms.ts +2 -0
package/bone/output/agent/src/audit.ts +44 -0
package/bone/output/agent/src/auth.ts +57 -0
package/bone/output/agent/src/cron.ts +12 -0
package/bone/output/agent/src/db.ts +32 -0
package/bone/output/agent/src/debug.ts +66 -0
package/bone/output/agent/src/events.ts +243 -0
package/bone/output/agent/src/extensions.ts +54 -0
package/bone/output/agent/src/failure_rules.ts +323 -0
package/bone/output/agent/src/flows.ts +168 -0
package/bone/output/agent/src/health.ts +43 -0
package/bone/output/agent/src/index.ts +100 -0
package/bone/output/agent/src/logger.ts +66 -0
package/bone/output/agent/src/metrics.ts +75 -0
package/bone/output/agent/src/migrate.ts +352 -0
package/bone/output/agent/src/migration_diff.ts +108 -0
package/bone/output/agent/src/notify.ts +125 -0
package/bone/output/agent/src/routes/agent_instance.ts +234 -0
package/bone/output/agent/src/routes/build_step.ts +105 -0
package/bone/output/agent/src/routes/plan.ts +91 -0
package/bone/output/agent/src/routes/task.ts +105 -0
package/bone/output/agent/src/routes/tool_call.ts +166 -0
package/bone/output/agent/src/schemas.ts +384 -0
package/bone/output/agent/src/state_machines/agent_instance.ts +24 -0
package/bone/output/agent/src/state_machines/build_step.ts +22 -0
package/bone/output/agent/src/state_machines/plan.ts +22 -0
package/bone/output/agent/src/state_machines/task.ts +22 -0
package/bone/output/agent/src/state_machines/tool_call.ts +22 -0
package/bone/output/agent/src/tests.ts +362 -0
package/bone/output/agent/src/websocket.ts +201 -0
package/bone/output/agent/tsconfig.json +25 -0
package/bone/output/rag/.dockerignore +7 -0
package/bone/output/rag/.env.example +36 -0
package/bone/output/rag/.github/workflows/ci.yaml +58 -0
package/bone/output/rag/Dockerfile +22 -0
package/bone/output/rag/RAGDomain.bone.map +287 -0
package/bone/output/rag/RAGDomain.postman_collection.json +923 -0
package/bone/output/rag/README.md +47 -0
package/bone/output/rag/admin/index.html +818 -0
package/bone/output/rag/docker-compose.yaml +22 -0
package/bone/output/rag/k8s/deployment.yaml +75 -0
package/bone/output/rag/migrations/audit_log.sql +18 -0
package/bone/output/rag/migrations/code_chunk.sql +34 -0
package/bone/output/rag/migrations/code_file.sql +33 -0
package/bone/output/rag/migrations/event_outbox.sql +31 -0
package/bone/output/rag/migrations/indexing_job.sql +33 -0
package/bone/output/rag/migrations/knowledge_base.sql +35 -0
package/bone/output/rag/migrations/memory_entry.sql +34 -0
package/bone/output/rag/openapi.yaml +1097 -0
package/bone/output/rag/package.json +36 -0
package/bone/output/rag/schema.graphql +245 -0
package/bone/output/rag/sdk/client.ts +234 -0
package/bone/output/rag/src/algorithms.ts +2 -0
package/bone/output/rag/src/audit.ts +37 -0
package/bone/output/rag/src/auth.ts +57 -0
package/bone/output/rag/src/cron.ts +12 -0
package/bone/output/rag/src/db.ts +32 -0
package/bone/output/rag/src/debug.ts +66 -0
package/bone/output/rag/src/events.ts +243 -0
package/bone/output/rag/src/extensions.ts +350 -0
package/bone/output/rag/src/failure_rules.ts +315 -0
package/bone/output/rag/src/flows.ts +239 -0
package/bone/output/rag/src/health.ts +43 -0
package/bone/output/rag/src/index.ts +95 -0
package/bone/output/rag/src/logger.ts +66 -0
package/bone/output/rag/src/metrics.ts +75 -0
package/bone/output/rag/src/migrate.ts +364 -0
package/bone/output/rag/src/migration_diff.ts +108 -0
package/bone/output/rag/src/notify.ts +99 -0
package/bone/output/rag/src/routes/code_chunk.ts +75 -0
package/bone/output/rag/src/routes/code_file.ts +101 -0
package/bone/output/rag/src/routes/indexing_job.ts +87 -0
package/bone/output/rag/src/routes/knowledge_base.ts +230 -0
package/bone/output/rag/src/routes/memory_entry.ts +87 -0
package/bone/output/rag/src/schemas.ts +394 -0
package/bone/output/rag/src/state_machines/code_file.ts +23 -0
package/bone/output/rag/src/state_machines/indexing_job.ts +22 -0
package/bone/output/rag/src/state_machines/knowledge_base.ts +23 -0
package/bone/output/rag/src/state_machines/memory_entry.ts +20 -0
package/bone/output/rag/src/tests.ts +340 -0
package/bone/output/rag/tsconfig.json +25 -0
package/bone/output/session/.dockerignore +7 -0
package/bone/output/session/.env.example +36 -0
package/bone/output/session/.github/workflows/ci.yaml +58 -0
package/bone/output/session/Dockerfile +22 -0
package/bone/output/session/README.md +47 -0
package/bone/output/session/SessionDomain.bone.map +350 -0
package/bone/output/session/SessionDomain.postman_collection.json +958 -0
package/bone/output/session/admin/index.html +667 -0
package/bone/output/session/docker-compose.yaml +22 -0
package/bone/output/session/k8s/deployment.yaml +75 -0
package/bone/output/session/migrations/audit_log.sql +18 -0
package/bone/output/session/migrations/event_outbox.sql +31 -0
package/bone/output/session/migrations/message.sql +31 -0
package/bone/output/session/migrations/part.sql +28 -0
package/bone/output/session/migrations/permission.sql +28 -0
package/bone/output/session/migrations/project.sql +28 -0
package/bone/output/session/migrations/session.sql +38 -0
package/bone/output/session/openapi.yaml +1101 -0
package/bone/output/session/package.json +36 -0
package/bone/output/session/schema.graphql +222 -0
package/bone/output/session/sdk/client.ts +225 -0
package/bone/output/session/src/algorithms.ts +2 -0
package/bone/output/session/src/audit.ts +44 -0
package/bone/output/session/src/auth.ts +57 -0
package/bone/output/session/src/cron.ts +12 -0
package/bone/output/session/src/db.ts +32 -0
package/bone/output/session/src/debug.ts +66 -0
package/bone/output/session/src/events.ts +270 -0
package/bone/output/session/src/extensions.ts +215 -0
package/bone/output/session/src/failure_rules.ts +284 -0
package/bone/output/session/src/flows.ts +168 -0
package/bone/output/session/src/health.ts +43 -0
package/bone/output/session/src/index.ts +100 -0
package/bone/output/session/src/logger.ts +66 -0
package/bone/output/session/src/metrics.ts +75 -0
package/bone/output/session/src/migrate.ts +332 -0
package/bone/output/session/src/migration_diff.ts +108 -0
package/bone/output/session/src/notify.ts +112 -0
package/bone/output/session/src/routes/message.ts +93 -0
package/bone/output/session/src/routes/part.ts +79 -0
package/bone/output/session/src/routes/permission.ts +79 -0
package/bone/output/session/src/routes/project.ts +79 -0
package/bone/output/session/src/routes/session.ts +294 -0
package/bone/output/session/src/schemas.ts +357 -0
package/bone/output/session/src/state_machines/session.ts +23 -0
package/bone/output/session/src/tests.ts +326 -0
package/bone/output/session/src/websocket.ts +201 -0
package/bone/output/session/tsconfig.json +25 -0
package/bone/output/workspace/.dockerignore +7 -0
package/bone/output/workspace/.env.example +36 -0
package/bone/output/workspace/.github/workflows/ci.yaml +58 -0
package/bone/output/workspace/Dockerfile +22 -0
package/bone/output/workspace/README.md +45 -0
package/bone/output/workspace/WorkspaceDomain.bone.map +189 -0
package/bone/output/workspace/WorkspaceDomain.postman_collection.json +621 -0
package/bone/output/workspace/admin/index.html +485 -0
package/bone/output/workspace/docker-compose.yaml +22 -0
package/bone/output/workspace/k8s/deployment.yaml +75 -0
package/bone/output/workspace/migrations/audit_log.sql +18 -0
package/bone/output/workspace/migrations/codebase.sql +34 -0
package/bone/output/workspace/migrations/event_outbox.sql +31 -0
package/bone/output/workspace/migrations/snapshot.sql +32 -0
package/bone/output/workspace/migrations/workspace.sql +33 -0
package/bone/output/workspace/openapi.yaml +721 -0
package/bone/output/workspace/package.json +36 -0
package/bone/output/workspace/schema.graphql +153 -0
package/bone/output/workspace/sdk/client.ts +155 -0
package/bone/output/workspace/src/algorithms.ts +2 -0
package/bone/output/workspace/src/audit.ts +37 -0
package/bone/output/workspace/src/auth.ts +57 -0
package/bone/output/workspace/src/cron.ts +12 -0
package/bone/output/workspace/src/db.ts +32 -0
package/bone/output/workspace/src/debug.ts +66 -0
package/bone/output/workspace/src/events.ts +243 -0
package/bone/output/workspace/src/extensions.ts +44 -0
package/bone/output/workspace/src/failure_rules.ts +153 -0
package/bone/output/workspace/src/health.ts +43 -0
package/bone/output/workspace/src/index.ts +89 -0
package/bone/output/workspace/src/logger.ts +66 -0
package/bone/output/workspace/src/metrics.ts +75 -0
package/bone/output/workspace/src/migrate.ts +220 -0
package/bone/output/workspace/src/migration_diff.ts +108 -0
package/bone/output/workspace/src/notify.ts +73 -0
package/bone/output/workspace/src/routes/codebase.ts +87 -0
package/bone/output/workspace/src/routes/snapshot.ts +127 -0
package/bone/output/workspace/src/routes/workspace.ts +190 -0
package/bone/output/workspace/src/schemas.ts +231 -0
package/bone/output/workspace/src/state_machines/codebase.ts +21 -0
package/bone/output/workspace/src/state_machines/snapshot.ts +20 -0
package/bone/output/workspace/src/state_machines/workspace.ts +21 -0
package/bone/output/workspace/src/tests.ts +249 -0
package/bone/output/workspace/tsconfig.json +25 -0
package/compat/opencode_adapter.ts +410 -0
package/package.json +69 -0
package/scripts/check_benchmark_session.js +34 -0
package/scripts/check_finish_event.js +24 -0
package/scripts/check_parts.js +15 -0
package/scripts/compile.js +79 -0
package/scripts/copy_opencode.ps1 +53 -0
package/scripts/create_functions.sql +129 -0
package/scripts/migrate.js +85 -0
package/scripts/migrate_from_opencode.ts +218 -0
package/scripts/test_agent_loop.js +101 -0
package/scripts/test_api.ps1 +116 -0
package/scripts/test_context_builder.js +136 -0
package/scripts/test_context_builder.ts +97 -0
package/scripts/test_rag.js +189 -0
package/scripts/test_stream_events.js +36 -0
package/scripts/test_websocket_and_saga.js +216 -0
package/src/cli.ts +475 -0
package/src/config.ts +162 -0
package/src/context_builder.ts +598 -0
package/src/engine/account/account.sql.ts +39 -0
package/src/engine/account/account.ts +456 -0
package/src/engine/account/repo.ts +166 -0
package/src/engine/account/schema.ts +99 -0
package/src/engine/account/url.ts +8 -0
package/src/engine/acp/README.md +174 -0
package/src/engine/acp/agent.ts +1968 -0
package/src/engine/acp/runtime.ts +22 -0
package/src/engine/acp/session.ts +122 -0
package/src/engine/acp/types.ts +24 -0
package/src/engine/agent/agent.ts +463 -0
package/src/engine/agent/generate.txt +75 -0
package/src/engine/agent/prompt/compaction.txt +9 -0
package/src/engine/agent/prompt/explore.txt +18 -0
package/src/engine/agent/prompt/scout.txt +36 -0
package/src/engine/agent/prompt/summary.txt +11 -0
package/src/engine/agent/prompt/title.txt +44 -0
package/src/engine/agent/subagent-permissions.ts +34 -0
package/src/engine/auth/index.ts +96 -0
package/src/engine/background/background/job.ts +200 -0
package/src/engine/background/job.ts +200 -0
package/src/engine/bus/bus-event.ts +45 -0
package/src/engine/bus/global.ts +22 -0
package/src/engine/bus/index.ts +203 -0
package/src/engine/command/command/index.ts +181 -0
package/src/engine/command/command/template/initialize.txt +66 -0
package/src/engine/command/command/template/review.txt +101 -0
package/src/engine/command/index.ts +181 -0
package/src/engine/command/template/initialize.txt +66 -0
package/src/engine/command/template/review.txt +101 -0
package/src/engine/config/agent.ts +172 -0
package/src/engine/config/attachment.ts +25 -0
package/src/engine/config/command.ts +62 -0
package/src/engine/config/config.ts +833 -0
package/src/engine/config/console-state.ts +14 -0
package/src/engine/config/entry-name.ts +16 -0
package/src/engine/config/error.ts +23 -0
package/src/engine/config/formatter.ts +13 -0
package/src/engine/config/layout.ts +6 -0
package/src/engine/config/lsp.ts +43 -0
package/src/engine/config/managed.ts +71 -0
package/src/engine/config/markdown.ts +96 -0
package/src/engine/config/mcp.ts +56 -0
package/src/engine/config/model-id.ts +5 -0
package/src/engine/config/parse.ts +79 -0
package/src/engine/config/paths.ts +45 -0
package/src/engine/config/permission.ts +58 -0
package/src/engine/config/plugin.ts +84 -0
package/src/engine/config/provider.ts +111 -0
package/src/engine/config/reference.ts +23 -0
package/src/engine/config/server.ts +19 -0
package/src/engine/config/skills.ts +14 -0
package/src/engine/config/variable.ts +90 -0
package/src/engine/control-plane/adapters/index.ts +41 -0
package/src/engine/control-plane/adapters/worktree.ts +96 -0
package/src/engine/control-plane/dev/README.md +19 -0
package/src/engine/control-plane/dev/debug-workspace-plugin.ts +73 -0
package/src/engine/control-plane/schema.ts +14 -0
package/src/engine/control-plane/types.ts +59 -0
package/src/engine/control-plane/util.ts +39 -0
package/src/engine/control-plane/workspace-adapter-runtime.ts +51 -0
package/src/engine/control-plane/workspace-context.ts +26 -0
package/src/engine/control-plane/workspace.sql.ts +20 -0
package/src/engine/control-plane/workspace.ts +1072 -0
package/src/engine/data-migration.ts +161 -0
package/src/engine/effect/app-runtime.ts +143 -0
package/src/engine/effect/bootstrap-runtime.ts +29 -0
package/src/engine/effect/bridge.ts +84 -0
package/src/engine/effect/config-service.ts +67 -0
package/src/engine/effect/instance-ref.ts +11 -0
package/src/engine/effect/instance-registry.ts +12 -0
package/src/engine/effect/instance-state.ts +72 -0
package/src/engine/effect/promise.ts +17 -0
package/src/engine/effect/run-service.ts +47 -0
package/src/engine/effect/runner.ts +217 -0
package/src/engine/effect/runtime-flags.ts +74 -0
package/src/engine/effect/service-use.ts +38 -0
package/src/engine/env/index.ts +37 -0
package/src/engine/event-v2-bridge.ts +89 -0
package/src/engine/file/file/ignore.ts +81 -0
package/src/engine/file/file/index.ts +651 -0
package/src/engine/file/file/protected.ts +59 -0
package/src/engine/file/file/ripgrep.ts +481 -0
package/src/engine/file/file/watcher.ts +167 -0
package/src/engine/file/ignore.ts +81 -0
package/src/engine/file/index.ts +651 -0
package/src/engine/file/protected.ts +59 -0
package/src/engine/file/ripgrep.ts +481 -0
package/src/engine/file/watcher.ts +167 -0
package/src/engine/format/format/formatter.ts +404 -0
package/src/engine/format/format/index.ts +209 -0
package/src/engine/format/formatter.ts +404 -0
package/src/engine/format/index.ts +209 -0
package/src/engine/git/git/index.ts +347 -0
package/src/engine/git/index.ts +347 -0
package/src/engine/id/id.ts +80 -0
package/src/engine/ide/index.ts +70 -0
package/src/engine/image/image/image.ts +176 -0
package/src/engine/image/image.ts +176 -0
package/src/engine/index.ts +251 -0
package/src/engine/installation/index.ts +327 -0
package/src/engine/lsp/client.ts +707 -0
package/src/engine/lsp/diagnostic.ts +29 -0
package/src/engine/lsp/language.ts +121 -0
package/src/engine/lsp/launch.ts +21 -0
package/src/engine/lsp/lsp/client.ts +707 -0
package/src/engine/lsp/lsp/diagnostic.ts +29 -0
package/src/engine/lsp/lsp/language.ts +121 -0
package/src/engine/lsp/lsp/launch.ts +21 -0
package/src/engine/lsp/lsp/lsp.ts +507 -0
package/src/engine/lsp/lsp/server.ts +2064 -0
package/src/engine/lsp/lsp.ts +507 -0
package/src/engine/lsp/server.ts +2064 -0
package/src/engine/mcp/auth.ts +146 -0
package/src/engine/mcp/index.ts +958 -0
package/src/engine/mcp/mcp/auth.ts +146 -0
package/src/engine/mcp/mcp/index.ts +958 -0
package/src/engine/mcp/mcp/oauth-callback.ts +232 -0
package/src/engine/mcp/mcp/oauth-provider.ts +214 -0
package/src/engine/mcp/oauth-callback.ts +232 -0
package/src/engine/mcp/oauth-provider.ts +214 -0
package/src/engine/node.ts +6 -0
package/src/engine/patch/index.ts +689 -0
package/src/engine/patch/patch/index.ts +689 -0
package/src/engine/permission/arity.ts +163 -0
package/src/engine/permission/evaluate.ts +15 -0
package/src/engine/permission/index.ts +306 -0
package/src/engine/permission/permission/arity.ts +163 -0
package/src/engine/permission/permission/evaluate.ts +15 -0
package/src/engine/permission/permission/index.ts +306 -0
package/src/engine/permission/permission/schema.ts +13 -0
package/src/engine/permission/schema.ts +13 -0
package/src/engine/plugin/azure.ts +26 -0
package/src/engine/plugin/cloudflare.ts +76 -0
package/src/engine/plugin/codex.ts +622 -0
package/src/engine/plugin/digitalocean.ts +411 -0
package/src/engine/plugin/github-copilot/copilot.ts +394 -0
package/src/engine/plugin/github-copilot/models.ts +196 -0
package/src/engine/plugin/index.ts +295 -0
package/src/engine/plugin/install.ts +439 -0
package/src/engine/plugin/loader.ts +216 -0
package/src/engine/plugin/meta.ts +188 -0
package/src/engine/plugin/shared.ts +323 -0
package/src/engine/project/bootstrap-service.ts +9 -0
package/src/engine/project/bootstrap.ts +75 -0
package/src/engine/project/instance-context.ts +24 -0
package/src/engine/project/instance-layer.ts +11 -0
package/src/engine/project/instance-runtime.ts +16 -0
package/src/engine/project/instance-store.ts +193 -0
package/src/engine/project/project.sql.ts +17 -0
package/src/engine/project/project.ts +537 -0
package/src/engine/project/schema.ts +13 -0
package/src/engine/project/vcs.ts +405 -0
package/src/engine/provider/auth.ts +225 -0
package/src/engine/provider/error.ts +204 -0
package/src/engine/provider/model-status.ts +8 -0
package/src/engine/provider/provider.ts +1843 -0
package/src/engine/provider/schema.ts +30 -0
package/src/engine/provider/sdk/copilot/AGENTS.md +1 -0
package/src/engine/provider/transform.ts +1376 -0
package/src/engine/pty/index.ts +365 -0
package/src/engine/pty/input.ts +24 -0
package/src/engine/pty/pty/index.ts +365 -0
package/src/engine/pty/pty/input.ts +24 -0
package/src/engine/pty/pty/pty.bun.ts +26 -0
package/src/engine/pty/pty/pty.node.ts +27 -0
package/src/engine/pty/pty/pty.ts +25 -0
package/src/engine/pty/pty/schema.ts +14 -0
package/src/engine/pty/pty/ticket.ts +68 -0
package/src/engine/pty/pty.bun.ts +26 -0
package/src/engine/pty/pty.node.ts +27 -0
package/src/engine/pty/pty.ts +25 -0
package/src/engine/pty/schema.ts +14 -0
package/src/engine/pty/ticket.ts +68 -0
package/src/engine/question/index.ts +213 -0
package/src/engine/question/question/index.ts +213 -0
package/src/engine/question/question/schema.ts +10 -0
package/src/engine/question/schema.ts +10 -0
package/src/engine/reference/reference/reference.ts +241 -0
package/src/engine/reference/reference/repository-cache.ts +147 -0
package/src/engine/reference/reference.ts +241 -0
package/src/engine/reference/repository-cache.ts +147 -0
package/src/engine/session/compaction.ts +651 -0
package/src/engine/session/compaction_logic.ts +120 -0
package/src/engine/session/instruction.ts +238 -0
package/src/engine/session/instruction_loader.ts +54 -0
package/src/engine/session/llm.ts +459 -0
package/src/engine/session/message-error.ts +14 -0
package/src/engine/session/message-v2.ts +1202 -0
package/src/engine/session/message.ts +146 -0
package/src/engine/session/overflow.ts +32 -0
package/src/engine/session/overflow_check.ts +46 -0
package/src/engine/session/processor.ts +823 -0
package/src/engine/session/prompt/anthropic.txt +105 -0
package/src/engine/session/prompt/beast.txt +147 -0
package/src/engine/session/prompt/build-switch.txt +5 -0
package/src/engine/session/prompt/codex.txt +79 -0
package/src/engine/session/prompt/copilot-gpt-5.txt +143 -0
package/src/engine/session/prompt/default.txt +105 -0
package/src/engine/session/prompt/gemini.txt +155 -0
package/src/engine/session/prompt/gpt.txt +107 -0
package/src/engine/session/prompt/kimi.txt +95 -0
package/src/engine/session/prompt/max-steps.txt +16 -0
package/src/engine/session/prompt/plan-reminder-anthropic.txt +67 -0
package/src/engine/session/prompt/plan.txt +26 -0
package/src/engine/session/prompt/trinity.txt +97 -0
package/src/engine/session/prompt.ts +671 -0
package/src/engine/session/provider_transform.ts +187 -0
package/src/engine/session/retry.ts +200 -0
package/src/engine/session/retry_logic.ts +65 -0
package/src/engine/session/revert.ts +162 -0
package/src/engine/session/run-state.ts +153 -0
package/src/engine/session/schema.ts +26 -0
package/src/engine/session/session.sql.ts +137 -0
package/src/engine/session/session.ts +1011 -0
package/src/engine/session/status.ts +94 -0
package/src/engine/session/summary.ts +164 -0
package/src/engine/session/system.ts +84 -0
package/src/engine/session/system_prompt.ts +65 -0
package/src/engine/session/todo.ts +81 -0
package/src/engine/session/tool_registry.ts +162 -0
package/src/engine/share/session.ts +61 -0
package/src/engine/share/share-next.ts +376 -0
package/src/engine/share/share.sql.ts +13 -0
package/src/engine/shell/shell/shell.ts +215 -0
package/src/engine/shell/shell.ts +215 -0
package/src/engine/skill/discovery.ts +116 -0
package/src/engine/skill/index.ts +336 -0
package/src/engine/skill/prompt/customize-opencode.md +377 -0
package/src/engine/skill/skill/discovery.ts +116 -0
package/src/engine/skill/skill/index.ts +336 -0
package/src/engine/skill/skill/prompt/customize-opencode.md +377 -0
package/src/engine/snapshot/index.ts +762 -0
package/src/engine/snapshot/snapshot/index.ts +762 -0
package/src/engine/sync/README.md +179 -0
package/src/engine/sync/event.sql.ts +17 -0
package/src/engine/sync/index.ts +410 -0
package/src/engine/sync/schema.ts +11 -0
package/src/engine/temporary.ts +33 -0
package/src/engine/tool/apply_patch.ts +313 -0
package/src/engine/tool/apply_patch.txt +33 -0
package/src/engine/tool/edit.ts +711 -0
package/src/engine/tool/edit.txt +10 -0
package/src/engine/tool/external-directory.ts +49 -0
package/src/engine/tool/glob.ts +103 -0
package/src/engine/tool/glob.txt +6 -0
package/src/engine/tool/grep.ts +156 -0
package/src/engine/tool/grep.txt +8 -0
package/src/engine/tool/invalid.ts +21 -0
package/src/engine/tool/json-schema.ts +164 -0
package/src/engine/tool/lsp.ts +113 -0
package/src/engine/tool/lsp.txt +24 -0
package/src/engine/tool/mcp-websearch.ts +96 -0
package/src/engine/tool/plan-enter.txt +14 -0
package/src/engine/tool/plan-exit.txt +13 -0
package/src/engine/tool/plan.ts +78 -0
package/src/engine/tool/question.ts +44 -0
package/src/engine/tool/question.txt +10 -0
package/src/engine/tool/read.ts +337 -0
package/src/engine/tool/read.txt +14 -0
package/src/engine/tool/registry.ts +472 -0
package/src/engine/tool/repo_clone.ts +80 -0
package/src/engine/tool/repo_clone.txt +5 -0
package/src/engine/tool/repo_overview.ts +279 -0
package/src/engine/tool/repo_overview.txt +4 -0
package/src/engine/tool/schema.ts +14 -0
package/src/engine/tool/shell/id.ts +19 -0
package/src/engine/tool/shell/prompt.ts +295 -0
package/src/engine/tool/shell/shell.txt +77 -0
package/src/engine/tool/shell.ts +647 -0
package/src/engine/tool/skill.ts +75 -0
package/src/engine/tool/skill.txt +5 -0
package/src/engine/tool/task.ts +337 -0
package/src/engine/tool/task.txt +58 -0
package/src/engine/tool/task_status.ts +179 -0
package/src/engine/tool/task_status.txt +13 -0
package/src/engine/tool/todo.ts +57 -0
package/src/engine/tool/todowrite.txt +167 -0
package/src/engine/tool/tool/apply_patch.ts +313 -0
package/src/engine/tool/tool/apply_patch.txt +33 -0
package/src/engine/tool/tool/edit.ts +711 -0
package/src/engine/tool/tool/edit.txt +10 -0
package/src/engine/tool/tool/external-directory.ts +49 -0
package/src/engine/tool/tool/glob.ts +103 -0
package/src/engine/tool/tool/glob.txt +6 -0
package/src/engine/tool/tool/grep.ts +156 -0
package/src/engine/tool/tool/grep.txt +8 -0
package/src/engine/tool/tool/invalid.ts +21 -0
package/src/engine/tool/tool/json-schema.ts +164 -0
package/src/engine/tool/tool/lsp.ts +113 -0
package/src/engine/tool/tool/lsp.txt +24 -0
package/src/engine/tool/tool/mcp-websearch.ts +96 -0
package/src/engine/tool/tool/plan-enter.txt +14 -0
package/src/engine/tool/tool/plan-exit.txt +13 -0
package/src/engine/tool/tool/plan.ts +78 -0
package/src/engine/tool/tool/question.ts +44 -0
package/src/engine/tool/tool/question.txt +10 -0
package/src/engine/tool/tool/read.ts +337 -0
package/src/engine/tool/tool/read.txt +14 -0
package/src/engine/tool/tool/registry.ts +472 -0
package/src/engine/tool/tool/repo_clone.ts +80 -0
package/src/engine/tool/tool/repo_clone.txt +5 -0
package/src/engine/tool/tool/repo_overview.ts +279 -0
package/src/engine/tool/tool/repo_overview.txt +4 -0
package/src/engine/tool/tool/schema.ts +14 -0
package/src/engine/tool/tool/shell/id.ts +19 -0
package/src/engine/tool/tool/shell/prompt.ts +295 -0
package/src/engine/tool/tool/shell/shell.txt +77 -0
package/src/engine/tool/tool/shell.ts +647 -0
package/src/engine/tool/tool/skill.ts +75 -0
package/src/engine/tool/tool/skill.txt +5 -0
package/src/engine/tool/tool/task.ts +337 -0
package/src/engine/tool/tool/task.txt +58 -0
package/src/engine/tool/tool/task_status.ts +179 -0
package/src/engine/tool/tool/task_status.txt +13 -0
package/src/engine/tool/tool/todo.ts +57 -0
package/src/engine/tool/tool/todowrite.txt +167 -0
package/src/engine/tool/tool/tool.ts +164 -0
package/src/engine/tool/tool/truncate.ts +160 -0
package/src/engine/tool/tool/truncation-dir.ts +4 -0
package/src/engine/tool/tool/webfetch.ts +192 -0
package/src/engine/tool/tool/webfetch.txt +13 -0
package/src/engine/tool/tool/websearch.ts +143 -0
package/src/engine/tool/tool/websearch.txt +14 -0
package/src/engine/tool/tool/write.ts +104 -0
package/src/engine/tool/tool/write.txt +8 -0
package/src/engine/tool/tool.ts +164 -0
package/src/engine/tool/truncate.ts +160 -0
package/src/engine/tool/truncation-dir.ts +4 -0
package/src/engine/tool/webfetch.ts +192 -0
package/src/engine/tool/webfetch.txt +13 -0
package/src/engine/tool/websearch.ts +143 -0
package/src/engine/tool/websearch.txt +14 -0
package/src/engine/tool/write.ts +104 -0
package/src/engine/tool/write.txt +8 -0
package/src/engine/util/archive.ts +17 -0
package/src/engine/util/bom.ts +31 -0
package/src/engine/util/data-url.ts +9 -0
package/src/engine/util/defer.ts +10 -0
package/src/engine/util/effect-http-client.ts +11 -0
package/src/engine/util/error.ts +88 -0
package/src/engine/util/filesystem.ts +252 -0
package/src/engine/util/format.ts +20 -0
package/src/engine/util/iife.ts +3 -0
package/src/engine/util/lazy.ts +20 -0
package/src/engine/util/local-context.ts +25 -0
package/src/engine/util/locale.ts +86 -0
package/src/engine/util/media.ts +26 -0
package/src/engine/util/process.ts +176 -0
package/src/engine/util/queue.ts +32 -0
package/src/engine/util/record.ts +3 -0
package/src/engine/util/repository.ts +158 -0
package/src/engine/util/rpc.ts +66 -0
package/src/engine/util/signal.ts +12 -0
package/src/engine/util/timeout.ts +13 -0
package/src/engine/util/token.ts +7 -0
package/src/engine/util/util/archive.ts +17 -0
package/src/engine/util/util/bom.ts +31 -0
package/src/engine/util/util/data-url.ts +9 -0
package/src/engine/util/util/defer.ts +10 -0
package/src/engine/util/util/effect-http-client.ts +11 -0
package/src/engine/util/util/error.ts +88 -0
package/src/engine/util/util/filesystem.ts +252 -0
package/src/engine/util/util/format.ts +20 -0
package/src/engine/util/util/iife.ts +3 -0
package/src/engine/util/util/lazy.ts +20 -0
package/src/engine/util/util/local-context.ts +25 -0
package/src/engine/util/util/locale.ts +86 -0
package/src/engine/util/util/media.ts +26 -0
package/src/engine/util/util/process.ts +176 -0
package/src/engine/util/util/queue.ts +32 -0
package/src/engine/util/util/record.ts +3 -0
package/src/engine/util/util/repository.ts +158 -0
package/src/engine/util/util/rpc.ts +66 -0
package/src/engine/util/util/signal.ts +12 -0
package/src/engine/util/util/timeout.ts +13 -0
package/src/engine/util/util/token.ts +7 -0
package/src/engine/util/util/which.ts +14 -0
package/src/engine/util/util/wildcard.ts +59 -0
package/src/engine/util/which.ts +14 -0
package/src/engine/util/wildcard.ts +59 -0
package/src/engine/worktree/index.ts +621 -0
package/src/rag_worker.ts +519 -0
package/src/server.ts +201 -0
package/src/tui.ts +637 -0
package/tsconfig.json +24 -0

package/src/engine/mcp/mcp/index.ts ADDED Viewed

@@ -0,0 +1,958 @@
+import { dynamicTool, type Tool, jsonSchema, type JSONSchema7 } from "ai"
+import { Client } from "@modelcontextprotocol/sdk/client/index.js"
+import { StreamableHTTPClientTransport } from "@modelcontextprotocol/sdk/client/streamableHttp.js"
+import { SSEClientTransport } from "@modelcontextprotocol/sdk/client/sse.js"
+import { StdioClientTransport } from "@modelcontextprotocol/sdk/client/stdio.js"
+import { UnauthorizedError } from "@modelcontextprotocol/sdk/client/auth.js"
+import {
+  CallToolResultSchema,
+  ListToolsResultSchema,
+  ToolSchema,
+  type Tool as MCPToolDef,
+  ToolListChangedNotificationSchema,
+} from "@modelcontextprotocol/sdk/types.js"
+import { Config } from "@/config/config"
+import { ConfigMCP } from "../config/mcp"
+import * as Log from "@opencode-ai/core/util/log"
+import { NamedError } from "@opencode-ai/core/util/error"
+import { Installation } from "../installation"
+import { InstallationVersion } from "@opencode-ai/core/installation/version"
+import { withTimeout } from "@/util/timeout"
+import { AppFileSystem } from "@opencode-ai/core/filesystem"
+import { McpOAuthProvider } from "./oauth-provider"
+import { McpOAuthCallback } from "./oauth-callback"
+import { McpAuth } from "./auth"
+import { BusEvent } from "../bus/bus-event"
+import { Bus } from "@/bus"
+import { TuiEvent } from "@/cli/cmd/tui/event"
+import open from "open"
+import { Effect, Exit, Layer, Option, Context, Schema, Stream } from "effect"
+import { EffectBridge } from "@/effect/bridge"
+import { InstanceState } from "@/effect/instance-state"
+import { ChildProcess, ChildProcessSpawner } from "effect/unstable/process"
+import { CrossSpawnSpawner } from "@opencode-ai/core/cross-spawn-spawner"
+const log = Log.create({ service: "mcp" })
+const DEFAULT_TIMEOUT = 30_000
+const TolerantListToolsResultSchema = ListToolsResultSchema.extend({
+  tools: ToolSchema.omit({ outputSchema: true }).array(),
+})
+export const Resource = Schema.Struct({
+  name: Schema.String,
+  uri: Schema.String,
+  description: Schema.optional(Schema.String),
+  mimeType: Schema.optional(Schema.String),
+  client: Schema.String,
+}).annotate({ identifier: "McpResource" })
+export type Resource = Schema.Schema.Type<typeof Resource>
+export const ToolsChanged = BusEvent.define(
+  "mcp.tools.changed",
+  Schema.Struct({
+    server: Schema.String,
+  }),
+)
+export const BrowserOpenFailed = BusEvent.define(
+  "mcp.browser.open.failed",
+  Schema.Struct({
+    mcpName: Schema.String,
+    url: Schema.String,
+  }),
+)
+export const Failed = NamedError.create("MCPFailed", {
+  name: Schema.String,
+})
+type MCPClient = Client
+const StatusConnected = Schema.Struct({ status: Schema.Literal("connected") }).annotate({
+  identifier: "MCPStatusConnected",
+})
+const StatusDisabled = Schema.Struct({ status: Schema.Literal("disabled") }).annotate({
+  identifier: "MCPStatusDisabled",
+})
+const StatusFailed = Schema.Struct({ status: Schema.Literal("failed"), error: Schema.String }).annotate({
+  identifier: "MCPStatusFailed",
+})
+const StatusNeedsAuth = Schema.Struct({ status: Schema.Literal("needs_auth") }).annotate({
+  identifier: "MCPStatusNeedsAuth",
+})
+const StatusNeedsClientRegistration = Schema.Struct({
+  status: Schema.Literal("needs_client_registration"),
+  error: Schema.String,
+}).annotate({ identifier: "MCPStatusNeedsClientRegistration" })
+export const Status = Schema.Union([
+  StatusConnected,
+  StatusDisabled,
+  StatusFailed,
+  StatusNeedsAuth,
+  StatusNeedsClientRegistration,
+]).annotate({ identifier: "MCPStatus", discriminator: "status" })
+export type Status = Schema.Schema.Type<typeof Status>
+// Store transports for OAuth servers to allow finishing auth
+type TransportWithAuth = StreamableHTTPClientTransport | SSEClientTransport
+const pendingOAuthTransports = new Map<string, TransportWithAuth>()
+// Prompt cache types
+type PromptInfo = Awaited<ReturnType<MCPClient["listPrompts"]>>["prompts"][number]
+type ResourceInfo = Awaited<ReturnType<MCPClient["listResources"]>>["resources"][number]
+type McpEntry = NonNullable<Config.Info["mcp"]>[string]
+function isMcpConfigured(entry: McpEntry): entry is ConfigMCP.Info {
+  return typeof entry === "object" && entry !== null && "type" in entry
+}
+const sanitize = (s: string) => s.replace(/[^a-zA-Z0-9_-]/g, "_")
+function remoteURL(key: string, value: string) {
+  if (URL.canParse(value)) return new URL(value)
+  log.warn("invalid remote mcp url", { key })
+}
+function isOutputSchemaValidationError(error: Error) {
+  return /can't resolve reference|resolves to more than one schema|outputSchema|schema.*reference|reference.*schema/i.test(
+    error.message,
+  )
+}
+function listTools(key: string, client: MCPClient, timeout: number) {
+  return Effect.tryPromise({
+    try: () => client.listTools(undefined, { timeout }),
+    catch: (err) => (err instanceof Error ? err : new Error(String(err))),
+  }).pipe(
+    Effect.map((result) => result.tools),
+    Effect.catch((error) => {
+      if (!isOutputSchemaValidationError(error)) return Effect.fail(error)
+      log.warn("failed to validate MCP tool output schemas, retrying without output schema validation", { key, error })
+      return Effect.tryPromise({
+        try: () =>
+          client.request({ method: "tools/list" }, TolerantListToolsResultSchema, {
+            timeout,
+          }),
+        catch: (err) => (err instanceof Error ? err : new Error(String(err))),
+      }).pipe(
+        Effect.map((result) =>
+          result.tools.map((tool) => ({
+            name: tool.name,
+            description: tool.description,
+            inputSchema: tool.inputSchema,
+          })),
+        ),
+      )
+    }),
+  )
+}
+// Convert MCP tool definition to AI SDK Tool type
+function convertMcpTool(mcpTool: MCPToolDef, client: MCPClient, timeout?: number): Tool {
+  const inputSchema = mcpTool.inputSchema
+  // Spread first, then override type to ensure it's always "object"
+  const schema: JSONSchema7 = {
+    ...(inputSchema as JSONSchema7),
+    type: "object",
+    properties: (inputSchema.properties ?? {}) as JSONSchema7["properties"],
+    additionalProperties: false,
+  }
+  return dynamicTool({
+    description: mcpTool.description ?? "",
+    inputSchema: jsonSchema(schema),
+    execute: async (args: unknown) => {
+      return client.callTool(
+        {
+          name: mcpTool.name,
+          arguments: (args || {}) as Record<string, unknown>,
+        },
+        CallToolResultSchema,
+        {
+          resetTimeoutOnProgress: true,
+          timeout,
+        },
+      )
+    },
+  })
+}
+function defs(key: string, client: MCPClient, timeout?: number) {
+  return listTools(key, client, timeout ?? DEFAULT_TIMEOUT).pipe(
+    Effect.catch((err) => {
+      log.error("failed to get tools from client", { key, error: err })
+      return Effect.succeed(undefined)
+    }),
+  )
+}
+function fetchFromClient<T extends { name: string }>(
+  clientName: string,
+  client: Client,
+  listFn: (c: Client) => Promise<T[]>,
+  label: string,
+) {
+  return Effect.tryPromise({
+    try: () => listFn(client),
+    catch: (e: any) => {
+      log.error(`failed to get ${label}`, { clientName, error: e.message })
+      return e
+    },
+  }).pipe(
+    Effect.map((items) => {
+      const out: Record<string, T & { client: string }> = {}
+      const sanitizedClient = sanitize(clientName)
+      for (const item of items) {
+        out[sanitizedClient + ":" + sanitize(item.name)] = { ...item, client: clientName }
+      }
+      return out
+    }),
+    Effect.orElseSucceed(() => undefined),
+  )
+}
+interface CreateResult {
+  mcpClient?: MCPClient
+  status: Status
+  defs?: MCPToolDef[]
+}
+interface AuthResult {
+  authorizationUrl: string
+  oauthState: string
+  client?: MCPClient
+}
+// --- Effect Service ---
+interface State {
+  status: Record<string, Status>
+  clients: Record<string, MCPClient>
+  defs: Record<string, MCPToolDef[]>
+}
+export interface Interface {
+  readonly status: () => Effect.Effect<Record<string, Status>>
+  readonly clients: () => Effect.Effect<Record<string, MCPClient>>
+  readonly tools: () => Effect.Effect<Record<string, Tool>>
+  readonly prompts: () => Effect.Effect<Record<string, PromptInfo & { client: string }>>
+  readonly resources: () => Effect.Effect<Record<string, ResourceInfo & { client: string }>>
+  readonly add: (name: string, mcp: ConfigMCP.Info) => Effect.Effect<{ status: Record<string, Status> | Status }>
+  readonly connect: (name: string) => Effect.Effect<void>
+  readonly disconnect: (name: string) => Effect.Effect<void>
+  readonly getPrompt: (
+    clientName: string,
+    name: string,
+    args?: Record<string, string>,
+  ) => Effect.Effect<Awaited<ReturnType<MCPClient["getPrompt"]>> | undefined>
+  readonly readResource: (
+    clientName: string,
+    resourceUri: string,
+  ) => Effect.Effect<Awaited<ReturnType<MCPClient["readResource"]>> | undefined>
+  readonly startAuth: (mcpName: string) => Effect.Effect<{ authorizationUrl: string; oauthState: string }>
+  readonly authenticate: (mcpName: string) => Effect.Effect<Status>
+  readonly finishAuth: (mcpName: string, authorizationCode: string) => Effect.Effect<Status>
+  readonly removeAuth: (mcpName: string) => Effect.Effect<void>
+  readonly supportsOAuth: (mcpName: string) => Effect.Effect<boolean>
+  readonly hasStoredTokens: (mcpName: string) => Effect.Effect<boolean>
+  readonly getAuthStatus: (mcpName: string) => Effect.Effect<AuthStatus>
+}
+export class Service extends Context.Service<Service, Interface>()("@opencode/MCP") {}
+export const layer = Layer.effect(
+  Service,
+  Effect.gen(function* () {
+    const spawner = yield* ChildProcessSpawner.ChildProcessSpawner
+    const auth = yield* McpAuth.Service
+    const bus = yield* Bus.Service
+    type Transport = StdioClientTransport | StreamableHTTPClientTransport | SSEClientTransport
+    /**
+     * Connect a client via the given transport with resource safety:
+     * on failure the transport is closed; on success the caller owns it.
+     */
+    const connectTransport = (transport: Transport, timeout: number) =>
+      Effect.acquireUseRelease(
+        Effect.succeed(transport),
+        (t) =>
+          Effect.tryPromise({
+            try: () => {
+              const client = new Client({ name: "opencode", version: InstallationVersion })
+              return withTimeout(client.connect(t), timeout).then(() => client)
+            },
+            catch: (e) => (e instanceof Error ? e : new Error(String(e))),
+          }),
+        (t, exit) => (Exit.isFailure(exit) ? Effect.tryPromise(() => t.close()).pipe(Effect.ignore) : Effect.void),
+      )
+    const DISABLED_RESULT: CreateResult = { status: { status: "disabled" } }
+    const connectRemote = Effect.fn("MCP.connectRemote")(function* (
+      key: string,
+      mcp: ConfigMCP.Info & { type: "remote" },
+    ) {
+      const oauthDisabled = mcp.oauth === false
+      const oauthConfig = typeof mcp.oauth === "object" ? mcp.oauth : undefined
+      const url = remoteURL(key, mcp.url)
+      if (!url) {
+        return {
+          client: undefined as MCPClient | undefined,
+          status: { status: "failed" as const, error: `Invalid MCP URL for "${key}"` },
+        }
+      }
+      let authProvider: McpOAuthProvider | undefined
+      if (!oauthDisabled) {
+        authProvider = new McpOAuthProvider(
+          key,
+          mcp.url,
+          {
+            clientId: oauthConfig?.clientId,
+            clientSecret: oauthConfig?.clientSecret,
+            scope: oauthConfig?.scope,
+            redirectUri: oauthConfig?.redirectUri,
+          },
+          {
+            onRedirect: async (url) => {
+              log.info("oauth redirect requested", { key, url: url.toString() })
+            },
+          },
+          auth,
+        )
+      }
+      const transports: Array<{ name: string; transport: TransportWithAuth }> = [
+        {
+          name: "StreamableHTTP",
+          transport: new StreamableHTTPClientTransport(url, {
+            authProvider,
+            requestInit: mcp.headers ? { headers: mcp.headers } : undefined,
+          }),
+        },
+        {
+          name: "SSE",
+          transport: new SSEClientTransport(url, {
+            authProvider,
+            requestInit: mcp.headers ? { headers: mcp.headers } : undefined,
+          }),
+        },
+      ]
+      const connectTimeout = mcp.timeout ?? DEFAULT_TIMEOUT
+      let lastStatus: Status | undefined
+      for (const { name, transport } of transports) {
+        const result = yield* connectTransport(transport, connectTimeout).pipe(
+          Effect.map((client) => ({ client, transportName: name })),
+          Effect.catch((error) => {
+            const lastError = error instanceof Error ? error : new Error(String(error))
+            const isAuthError =
+              error instanceof UnauthorizedError || (authProvider && lastError.message.includes("OAuth"))
+            if (isAuthError) {
+              log.info("mcp server requires authentication", { key, transport: name })
+              if (lastError.message.includes("registration") || lastError.message.includes("client_id")) {
+                lastStatus = {
+                  status: "needs_client_registration" as const,
+                  error: "Server does not support dynamic client registration. Please provide clientId in config.",
+                }
+                return bus
+                  .publish(TuiEvent.ToastShow, {
+                    title: "MCP Authentication Required",
+                    message: `Server "${key}" requires a pre-registered client ID. Add clientId to your config.`,
+                    variant: "warning",
+                    duration: 8000,
+                  })
+                  .pipe(Effect.ignore, Effect.as(undefined))
+              } else {
+                pendingOAuthTransports.set(key, transport)
+                lastStatus = { status: "needs_auth" as const }
+                return bus
+                  .publish(TuiEvent.ToastShow, {
+                    title: "MCP Authentication Required",
+                    message: `Server "${key}" requires authentication. Run: opencode mcp auth ${key}`,
+                    variant: "warning",
+                    duration: 8000,
+                  })
+                  .pipe(Effect.ignore, Effect.as(undefined))
+              }
+            }
+            log.debug("transport connection failed", {
+              key,
+              transport: name,
+              url: mcp.url,
+              error: lastError.message,
+            })
+            lastStatus = { status: "failed" as const, error: lastError.message }
+            return Effect.succeed(undefined)
+          }),
+        )
+        if (result) {
+          log.info("connected", { key, transport: result.transportName })
+          return { client: result.client as MCPClient | undefined, status: { status: "connected" } as Status }
+        }
+        // If this was an auth error, stop trying other transports
+        if (lastStatus?.status === "needs_auth" || lastStatus?.status === "needs_client_registration") break
+      }
+      return {
+        client: undefined as MCPClient | undefined,
+        status: (lastStatus ?? { status: "failed", error: "Unknown error" }) as Status,
+      }
+    })
+    const connectLocal = Effect.fn("MCP.connectLocal")(function* (
+      key: string,
+      mcp: ConfigMCP.Info & { type: "local" },
+    ) {
+      const [cmd, ...args] = mcp.command
+      const cwd = yield* InstanceState.directory
+      const transport = new StdioClientTransport({
+        stderr: "pipe",
+        command: cmd,
+        args,
+        cwd,
+        env: {
+          ...process.env,
+          ...(cmd === "opencode" ? { BUN_BE_BUN: "1" } : {}),
+          ...mcp.environment,
+        },
+      })
+      transport.stderr?.on("data", (chunk: Buffer) => {
+        log.info(`mcp stderr: ${chunk.toString()}`, { key })
+      })
+      const connectTimeout = mcp.timeout ?? DEFAULT_TIMEOUT
+      return yield* connectTransport(transport, connectTimeout).pipe(
+        Effect.map((client): { client: MCPClient | undefined; status: Status } => ({
+          client,
+          status: { status: "connected" },
+        })),
+        Effect.catch((error): Effect.Effect<{ client: MCPClient | undefined; status: Status }> => {
+          const msg = error instanceof Error ? error.message : String(error)
+          log.error("local mcp startup failed", { key, command: mcp.command, cwd, error: msg })
+          return Effect.succeed({ client: undefined, status: { status: "failed", error: msg } })
+        }),
+      )
+    })
+    const create = Effect.fn("MCP.create")(function* (key: string, mcp: ConfigMCP.Info) {
+      if (mcp.enabled === false) {
+        log.info("mcp server disabled", { key })
+        return DISABLED_RESULT
+      }
+      log.info("found", { key, type: mcp.type })
+      const { client: mcpClient, status } =
+        mcp.type === "remote"
+          ? yield* connectRemote(key, mcp as ConfigMCP.Info & { type: "remote" })
+          : yield* connectLocal(key, mcp as ConfigMCP.Info & { type: "local" })
+      if (!mcpClient) {
+        return { status } satisfies CreateResult
+      }
+      const listed = yield* defs(key, mcpClient, mcp.timeout)
+      if (!listed) {
+        yield* Effect.tryPromise(() => mcpClient.close()).pipe(Effect.ignore)
+        return { status: { status: "failed", error: "Failed to get tools" } } satisfies CreateResult
+      }
+      log.info("create() successfully created client", { key, toolCount: listed.length })
+      return { mcpClient, status, defs: listed } satisfies CreateResult
+    })
+    const cfgSvc = yield* Config.Service
+    const descendants = Effect.fnUntraced(
+      function* (pid: number) {
+        if (process.platform === "win32") return [] as number[]
+        const pids: number[] = []
+        const queue = [pid]
+        while (queue.length > 0) {
+          const current = queue.shift()!
+          const handle = yield* spawner.spawn(ChildProcess.make("pgrep", ["-P", String(current)], { stdin: "ignore" }))
+          const text = yield* Stream.mkString(Stream.decodeText(handle.stdout))
+          yield* handle.exitCode
+          for (const tok of text.split("\n")) {
+            const cpid = parseInt(tok, 10)
+            if (!isNaN(cpid) && !pids.includes(cpid)) {
+              pids.push(cpid)
+              queue.push(cpid)
+            }
+          }
+        }
+        return pids
+      },
+      Effect.scoped,
+      Effect.catch(() => Effect.succeed([] as number[])),
+    )
+    function watch(s: State, name: string, client: MCPClient, bridge: EffectBridge.Shape, timeout?: number) {
+      client.setNotificationHandler(ToolListChangedNotificationSchema, async () => {
+        log.info("tools list changed notification received", { server: name })
+        if (s.clients[name] !== client || s.status[name]?.status !== "connected") return
+        const listed = await bridge.promise(defs(name, client, timeout))
+        if (!listed) return
+        if (s.clients[name] !== client || s.status[name]?.status !== "connected") return
+        s.defs[name] = listed
+        await bridge.promise(bus.publish(ToolsChanged, { server: name }).pipe(Effect.ignore))
+      })
+    }
+    const state = yield* InstanceState.make<State>(
+      Effect.fn("MCP.state")(function* () {
+        const cfg = yield* cfgSvc.get()
+        const bridge = yield* EffectBridge.make()
+        const config = cfg.mcp ?? {}
+        const s: State = {
+          status: {},
+          clients: {},
+          defs: {},
+        }
+        yield* Effect.forEach(
+          Object.entries(config),
+          ([key, mcp]) =>
+            Effect.gen(function* () {
+              if (!isMcpConfigured(mcp)) {
+                log.error("Ignoring MCP config entry without type", { key })
+                return
+              }
+              if (mcp.enabled === false) {
+                s.status[key] = { status: "disabled" }
+                return
+              }
+              const result = yield* create(key, mcp).pipe(Effect.catch(() => Effect.void))
+              if (!result) return
+              s.status[key] = result.status
+              if (result.mcpClient) {
+                s.clients[key] = result.mcpClient
+                s.defs[key] = result.defs!
+                watch(s, key, result.mcpClient, bridge, mcp.timeout)
+              }
+            }),
+          { concurrency: "unbounded" },
+        )
+        yield* Effect.addFinalizer(() =>
+          Effect.gen(function* () {
+            yield* Effect.forEach(
+              Object.values(s.clients),
+              (client) =>
+                Effect.gen(function* () {
+                  const pid = client.transport instanceof StdioClientTransport ? client.transport.pid : null
+                  if (typeof pid === "number") {
+                    const pids = yield* descendants(pid)
+                    for (const dpid of pids) {
+                      try {
+                        process.kill(dpid, "SIGTERM")
+                      } catch {}
+                    }
+                  }
+                  yield* Effect.tryPromise(() => client.close()).pipe(Effect.ignore)
+                }),
+              { concurrency: "unbounded" },
+            )
+            pendingOAuthTransports.clear()
+          }),
+        )
+        return s
+      }),
+    )
+    function closeClient(s: State, name: string) {
+      const client = s.clients[name]
+      delete s.defs[name]
+      if (!client) return Effect.void
+      return Effect.tryPromise(() => client.close()).pipe(Effect.ignore)
+    }
+    const storeClient = Effect.fnUntraced(function* (
+      s: State,
+      name: string,
+      client: MCPClient,
+      listed: MCPToolDef[],
+      timeout?: number,
+    ) {
+      const bridge = yield* EffectBridge.make()
+      yield* closeClient(s, name)
+      s.status[name] = { status: "connected" }
+      s.clients[name] = client
+      s.defs[name] = listed
+      watch(s, name, client, bridge, timeout)
+      return s.status[name]
+    })
+    const status = Effect.fn("MCP.status")(function* () {
+      const s = yield* InstanceState.get(state)
+      const cfg = yield* cfgSvc.get()
+      const config = cfg.mcp ?? {}
+      const result: Record<string, Status> = {}
+      for (const [key, mcp] of Object.entries(config)) {
+        if (!isMcpConfigured(mcp)) continue
+        result[key] = s.status[key] ?? { status: "disabled" }
+      }
+      return result
+    })
+    const clients = Effect.fn("MCP.clients")(function* () {
+      const s = yield* InstanceState.get(state)
+      return s.clients
+    })
+    const createAndStore = Effect.fn("MCP.createAndStore")(function* (name: string, mcp: ConfigMCP.Info) {
+      const s = yield* InstanceState.get(state)
+      const result = yield* create(name, mcp)
+      s.status[name] = result.status
+      if (!result.mcpClient) {
+        yield* closeClient(s, name)
+        delete s.clients[name]
+        return result.status
+      }
+      return yield* storeClient(s, name, result.mcpClient, result.defs!, mcp.timeout)
+    })
+    const add = Effect.fn("MCP.add")(function* (name: string, mcp: ConfigMCP.Info) {
+      yield* createAndStore(name, mcp)
+      const s = yield* InstanceState.get(state)
+      return { status: s.status }
+    })
+    const connect = Effect.fn("MCP.connect")(function* (name: string) {
+      const mcp = yield* getMcpConfig(name)
+      if (!mcp) {
+        log.error("MCP config not found or invalid", { name })
+        return
+      }
+      yield* createAndStore(name, { ...mcp, enabled: true })
+    })
+    const disconnect = Effect.fn("MCP.disconnect")(function* (name: string) {
+      const s = yield* InstanceState.get(state)
+      yield* closeClient(s, name)
+      delete s.clients[name]
+      s.status[name] = { status: "disabled" }
+    })
+    const tools = Effect.fn("MCP.tools")(function* () {
+      const result: Record<string, Tool> = {}
+      const s = yield* InstanceState.get(state)
+      const cfg = yield* cfgSvc.get()
+      const config = cfg.mcp ?? {}
+      const defaultTimeout = cfg.experimental?.mcp_timeout
+      const connectedClients = Object.entries(s.clients).filter(
+        ([clientName]) => s.status[clientName]?.status === "connected",
+      )
+      yield* Effect.forEach(
+        connectedClients,
+        ([clientName, client]) =>
+          Effect.gen(function* () {
+            const mcpConfig = config[clientName]
+            const entry = mcpConfig && isMcpConfigured(mcpConfig) ? mcpConfig : undefined
+            const listed = s.defs[clientName]
+            if (!listed) {
+              log.warn("missing cached tools for connected server", { clientName })
+              return
+            }
+            const timeout = entry?.timeout ?? defaultTimeout
+            for (const mcpTool of listed) {
+              result[sanitize(clientName) + "_" + sanitize(mcpTool.name)] = convertMcpTool(mcpTool, client, timeout)
+            }
+          }),
+        { concurrency: "unbounded" },
+      )
+      return result
+    })
+    function collectFromConnected<T extends { name: string }>(
+      s: State,
+      listFn: (c: Client) => Promise<T[]>,
+      label: string,
+    ) {
+      return Effect.forEach(
+        Object.entries(s.clients).filter(([name]) => s.status[name]?.status === "connected"),
+        ([clientName, client]) =>
+          fetchFromClient(clientName, client, listFn, label).pipe(Effect.map((items) => Object.entries(items ?? {}))),
+        { concurrency: "unbounded" },
+      ).pipe(Effect.map((results) => Object.fromEntries<T & { client: string }>(results.flat())))
+    }
+    const prompts = Effect.fn("MCP.prompts")(function* () {
+      const s = yield* InstanceState.get(state)
+      return yield* collectFromConnected(s, (c) => c.listPrompts().then((r) => r.prompts), "prompts")
+    })
+    const resources = Effect.fn("MCP.resources")(function* () {
+      const s = yield* InstanceState.get(state)
+      return yield* collectFromConnected(s, (c) => c.listResources().then((r) => r.resources), "resources")
+    })
+    const withClient = Effect.fnUntraced(function* <A>(
+      clientName: string,
+      fn: (client: MCPClient) => Promise<A>,
+      label: string,
+      meta?: Record<string, unknown>,
+    ) {
+      const s = yield* InstanceState.get(state)
+      const client = s.clients[clientName]
+      if (!client) {
+        log.warn(`client not found for ${label}`, { clientName })
+        return undefined
+      }
+      return yield* Effect.tryPromise({
+        try: () => fn(client),
+        catch: (e: any) => {
+          log.error(`failed to ${label}`, { clientName, ...meta, error: e?.message })
+          return e
+        },
+      }).pipe(Effect.orElseSucceed(() => undefined))
+    })
+    const getPrompt = Effect.fn("MCP.getPrompt")(function* (
+      clientName: string,
+      name: string,
+      args?: Record<string, string>,
+    ) {
+      return yield* withClient(clientName, (client) => client.getPrompt({ name, arguments: args }), "getPrompt", {
+        promptName: name,
+      })
+    })
+    const readResource = Effect.fn("MCP.readResource")(function* (clientName: string, resourceUri: string) {
+      return yield* withClient(clientName, (client) => client.readResource({ uri: resourceUri }), "readResource", {
+        resourceUri,
+      })
+    })
+    const getMcpConfig = Effect.fnUntraced(function* (mcpName: string) {
+      const cfg = yield* cfgSvc.get()
+      const mcpConfig = cfg.mcp?.[mcpName]
+      if (!mcpConfig || !isMcpConfigured(mcpConfig)) return undefined
+      return mcpConfig
+    })
+    const startAuth = Effect.fn("MCP.startAuth")(function* (mcpName: string) {
+      const mcpConfig = yield* getMcpConfig(mcpName)
+      if (!mcpConfig) throw new Error(`MCP server ${mcpName} not found or disabled`)
+      if (mcpConfig.type !== "remote") throw new Error(`MCP server ${mcpName} is not a remote server`)
+      if (mcpConfig.oauth === false) throw new Error(`MCP server ${mcpName} has OAuth explicitly disabled`)
+      const url = remoteURL(mcpName, mcpConfig.url)
+      if (!url) throw new Error(`Invalid MCP URL for "${mcpName}"`)
+      // OAuth config is optional - if not provided, we'll use auto-discovery
+      const oauthConfig = typeof mcpConfig.oauth === "object" ? mcpConfig.oauth : undefined
+      // Start the callback server with custom redirectUri if configured
+      yield* Effect.promise(() => McpOAuthCallback.ensureRunning(oauthConfig?.redirectUri))
+      const oauthState = Array.from(crypto.getRandomValues(new Uint8Array(32)))
+        .map((b) => b.toString(16).padStart(2, "0"))
+        .join("")
+      yield* auth.updateOAuthState(mcpName, oauthState)
+      let capturedUrl: URL | undefined
+      const authProvider = new McpOAuthProvider(
+        mcpName,
+        mcpConfig.url,
+        {
+          clientId: oauthConfig?.clientId,
+          clientSecret: oauthConfig?.clientSecret,
+          scope: oauthConfig?.scope,
+          redirectUri: oauthConfig?.redirectUri,
+        },
+        {
+          onRedirect: async (url) => {
+            capturedUrl = url
+          },
+        },
+        auth,
+      )
+      const transport = new StreamableHTTPClientTransport(url, { authProvider })
+      return yield* Effect.tryPromise({
+        try: () => {
+          const client = new Client({ name: "opencode", version: InstallationVersion })
+          return client
+            .connect(transport)
+            .then(() => ({ authorizationUrl: "", oauthState, client }) satisfies AuthResult)
+        },
+        catch: (error) => error,
+      }).pipe(
+        Effect.catch((error) => {
+          if (error instanceof UnauthorizedError && capturedUrl) {
+            pendingOAuthTransports.set(mcpName, transport)
+            return Effect.succeed({ authorizationUrl: capturedUrl.toString(), oauthState } satisfies AuthResult)
+          }
+          return Effect.die(error)
+        }),
+      )
+    })
+    const authenticate = Effect.fn("MCP.authenticate")(function* (mcpName: string) {
+      const result = yield* startAuth(mcpName)
+      if (!result.authorizationUrl) {
+        const client = "client" in result ? result.client : undefined
+        const mcpConfig = yield* getMcpConfig(mcpName)
+        if (!mcpConfig) {
+          yield* Effect.tryPromise(() => client?.close() ?? Promise.resolve()).pipe(Effect.ignore)
+          return { status: "failed", error: "MCP config not found after auth" } as Status
+        }
+        const listed = client ? yield* defs(mcpName, client, mcpConfig.timeout) : undefined
+        if (!client || !listed) {
+          yield* Effect.tryPromise(() => client?.close() ?? Promise.resolve()).pipe(Effect.ignore)
+          return { status: "failed", error: "Failed to get tools" } as Status
+        }
+        const s = yield* InstanceState.get(state)
+        yield* auth.clearOAuthState(mcpName)
+        return yield* storeClient(s, mcpName, client, listed, mcpConfig.timeout)
+      }
+      log.info("opening browser for oauth", { mcpName, url: result.authorizationUrl, state: result.oauthState })
+      const callbackPromise = McpOAuthCallback.waitForCallback(result.oauthState, mcpName)
+      yield* Effect.tryPromise(() => open(result.authorizationUrl)).pipe(
+        Effect.flatMap((subprocess) =>
+          Effect.callback<void, Error>((resume) => {
+            const timer = setTimeout(() => resume(Effect.void), 500)
+            subprocess.on("error", (err) => {
+              clearTimeout(timer)
+              resume(Effect.fail(err))
+            })
+            subprocess.on("exit", (code) => {
+              if (code !== null && code !== 0) {
+                clearTimeout(timer)
+                resume(Effect.fail(new Error(`Browser open failed with exit code ${code}`)))
+              }
+            })
+          }),
+        ),
+        Effect.catch(() => {
+          log.warn("failed to open browser, user must open URL manually", { mcpName })
+          return bus.publish(BrowserOpenFailed, { mcpName, url: result.authorizationUrl }).pipe(Effect.ignore)
+        }),
+      )
+      const code = yield* Effect.promise(() => callbackPromise)
+      const storedState = yield* auth.getOAuthState(mcpName)
+      if (storedState !== result.oauthState) {
+        yield* auth.clearOAuthState(mcpName)
+        throw new Error("OAuth state mismatch - potential CSRF attack")
+      }
+      yield* auth.clearOAuthState(mcpName)
+      return yield* finishAuth(mcpName, code)
+    })
+    const finishAuth = Effect.fn("MCP.finishAuth")(function* (mcpName: string, authorizationCode: string) {
+      const transport = pendingOAuthTransports.get(mcpName)
+      if (!transport) throw new Error(`No pending OAuth flow for MCP server: ${mcpName}`)
+      const result = yield* Effect.tryPromise({
+        try: () => transport.finishAuth(authorizationCode).then(() => true as const),
+        catch: (error) => {
+          log.error("failed to finish oauth", { mcpName, error })
+          return error
+        },
+      }).pipe(Effect.option)
+      if (Option.isNone(result)) {
+        return { status: "failed", error: "OAuth completion failed" } as Status
+      }
+      yield* auth.clearCodeVerifier(mcpName)
+      pendingOAuthTransports.delete(mcpName)
+      const mcpConfig = yield* getMcpConfig(mcpName)
+      if (!mcpConfig) return { status: "failed", error: "MCP config not found after auth" } as Status
+      return yield* createAndStore(mcpName, mcpConfig)
+    })
+    const removeAuth = Effect.fn("MCP.removeAuth")(function* (mcpName: string) {
+      yield* auth.remove(mcpName)
+      McpOAuthCallback.cancelPending(mcpName)
+      pendingOAuthTransports.delete(mcpName)
+      log.info("removed oauth credentials", { mcpName })
+    })
+    const supportsOAuth = Effect.fn("MCP.supportsOAuth")(function* (mcpName: string) {
+      const mcpConfig = yield* getMcpConfig(mcpName)
+      if (!mcpConfig) return false
+      return mcpConfig.type === "remote" && mcpConfig.oauth !== false
+    })
+    const hasStoredTokens = Effect.fn("MCP.hasStoredTokens")(function* (mcpName: string) {
+      const entry = yield* auth.get(mcpName)
+      return !!entry?.tokens
+    })
+    const getAuthStatus = Effect.fn("MCP.getAuthStatus")(function* (mcpName: string) {
+      const entry = yield* auth.get(mcpName)
+      if (!entry?.tokens) return "not_authenticated" as AuthStatus
+      const expired = yield* auth.isTokenExpired(mcpName)
+      return (expired ? "expired" : "authenticated") as AuthStatus
+    })
+    return Service.of({
+      status,
+      clients,
+      tools,
+      prompts,
+      resources,
+      add,
+      connect,
+      disconnect,
+      getPrompt,
+      readResource,
+      startAuth,
+      authenticate,
+      finishAuth,
+      removeAuth,
+      supportsOAuth,
+      hasStoredTokens,
+      getAuthStatus,
+    })
+  }),
+)
+export type AuthStatus = "authenticated" | "expired" | "not_authenticated"
+// --- Per-service runtime ---
+export const defaultLayer = layer.pipe(
+  Layer.provide(McpAuth.layer),
+  Layer.provide(Bus.layer),
+  Layer.provide(Config.defaultLayer),
+  Layer.provide(CrossSpawnSpawner.defaultLayer),
+  Layer.provide(AppFileSystem.defaultLayer),
+)
+export * as MCP from "."