botinabox 0.5.1 → 0.5.3

package/dist/connectors/google/index.js

@@ -1,296 +1,13 @@
-// src/connectors/google/oauth.ts
-var _google;
-async function getGoogle() {
-  if (!_google) {
-    try {
-      const mod = await import("googleapis");
-      _google = mod.google;
-    } catch {
-      throw new Error(
-        "googleapis is required for Google connectors. Install it: npm install googleapis"
-      );
-    }
-  }
-  return _google;
-}
-async function createOAuth2Client(config) {
-  const google = await getGoogle();
-  return new google.auth.OAuth2(
-    config.clientId,
-    config.clientSecret,
-    config.redirectUri
-  );
-}
-function getAuthUrl(client, scopes) {
-  return client.generateAuthUrl({
-    access_type: "offline",
-    prompt: "consent",
-    scope: scopes
-  });
-}
-async function exchangeCode(client, code) {
-  const { tokens } = await client.getToken(code);
-  return tokens;
-}
-async function loadTokens(getter, accountKey) {
-  const raw = await getter(`google_tokens:${accountKey}`);
-  if (!raw) return null;
-  try {
-    return JSON.parse(raw);
-  } catch {
-    return null;
-  }
-}
-async function saveTokens(setter, accountKey, tokens) {
-  await setter(`google_tokens:${accountKey}`, JSON.stringify(tokens));
-}
-async function refreshIfNeeded(client, tokens, saver) {
-  const buffer = 6e4;
-  const isExpired = tokens.expiry_date != null && Date.now() >= tokens.expiry_date - buffer;
-  if (!isExpired) return tokens;
-  client.setCredentials(tokens);
-  const { credentials } = await client.refreshAccessToken();
-  const refreshed = {
-    access_token: credentials.access_token,
-    refresh_token: credentials.refresh_token ?? tokens.refresh_token,
-    expiry_date: credentials.expiry_date ?? void 0,
-    token_type: credentials.token_type ?? "Bearer"
-  };
-  if (saver) {
-    await saver(refreshed);
-  }
-  return refreshed;
-}
-
-// src/connectors/google/gmail-connector.ts
-var GoogleGmailConnector = class {
-  id = "google-gmail";
-  meta = {
-    displayName: "Google Gmail",
-    provider: "google",
-    dataType: "email"
-  };
-  tokenLoader;
-  tokenSaver;
-  client = null;
-  config = null;
-  tokens = null;
-  // eslint-disable-next-line @typescript-eslint/no-explicit-any
-  gmail = null;
-  constructor(opts) {
-    this.tokenLoader = opts.tokenLoader;
-    this.tokenSaver = opts.tokenSaver;
-  }
-  // ── Lifecycle ──────────────────────────────────────────────────
-  async connect(config) {
-    this.config = config;
-    this.client = await createOAuth2Client(config.oauth);
-    this.tokens = await loadTokens(this.tokenLoader, config.account);
-    if (!this.tokens) {
-      throw new Error(
-        `No stored tokens for account ${config.account}. Complete the OAuth flow first.`
-      );
-    }
-    this.tokens = await refreshIfNeeded(
-      this.client,
-      this.tokens,
-      async (t) => saveTokens(this.tokenSaver, config.account, t)
-    );
-    this.client.setCredentials(this.tokens);
-    const { google } = await import("googleapis");
-    this.gmail = google.gmail({ version: "v1", auth: this.client });
-  }
-  async disconnect() {
-    this.client = null;
-    this.gmail = null;
-    this.tokens = null;
-    this.config = null;
-  }
-  async healthCheck() {
-    try {
-      this.ensureConnected();
-      const res = await this.gmail.users.getProfile({ userId: "me" });
-      return { ok: true, account: res.data.emailAddress };
-    } catch (err) {
-      return { ok: false, error: errorMessage(err) };
-    }
-  }
-  // ── Sync ───────────────────────────────────────────────────────
-  async sync(options) {
-    this.ensureConnected();
-    if (options?.cursor) {
-      return this.syncIncremental(options.cursor, options.limit);
-    }
-    return this.syncFull(options);
-  }
-  /** Incremental sync using Gmail history API. */
-  async syncIncremental(startHistoryId, limit) {
-    const records = [];
-    const errors = [];
-    const seenIds = /* @__PURE__ */ new Set();
-    let pageToken;
-    let latestHistoryId = startHistoryId;
-    do {
-      const res = await this.gmail.users.history.list({
-        userId: "me",
-        startHistoryId,
-        historyTypes: ["messageAdded"],
-        ...pageToken ? { pageToken } : {}
-      });
-      latestHistoryId = res.data.historyId ?? latestHistoryId;
-      const histories = res.data.history ?? [];
-      for (const h of histories) {
-        for (const added of h.messagesAdded ?? []) {
-          const msgId = added.message?.id;
-          if (!msgId || seenIds.has(msgId)) continue;
-          seenIds.add(msgId);
-          try {
-            const record = await this.fetchMessage(msgId);
-            records.push(record);
-          } catch (err) {
-            errors.push({ id: msgId, error: errorMessage(err) });
-          }
-          if (limit && records.length >= limit) {
-            return { records, cursor: latestHistoryId, hasMore: true, errors };
-          }
-        }
-      }
-      pageToken = res.data.nextPageToken ?? void 0;
-    } while (pageToken);
-    return { records, cursor: latestHistoryId, hasMore: false, errors };
-  }
-  /** Full sync — list messages and fetch each one. */
-  async syncFull(options) {
-    const records = [];
-    const errors = [];
-    const maxResults = options?.limit ?? 100;
-    let query = "";
-    if (options?.since) {
-      const epoch = Math.floor(new Date(options.since).getTime() / 1e3);
-      query = `after:${epoch}`;
-    }
-    if (options?.filters?.q) {
-      query = query ? `${query} ${options.filters.q}` : String(options.filters.q);
-    }
-    let pageToken;
-    let collected = 0;
-    do {
-      const res = await this.gmail.users.messages.list({
-        userId: "me",
-        maxResults: Math.min(maxResults - collected, 100),
-        ...query ? { q: query } : {},
-        ...pageToken ? { pageToken } : {}
-      });
-      const messages = res.data.messages ?? [];
-      for (const msg of messages) {
-        try {
-          const record = await this.fetchMessage(msg.id);
-          records.push(record);
-        } catch (err) {
-          errors.push({ id: msg.id, error: errorMessage(err) });
-        }
-        collected++;
-        if (collected >= maxResults) break;
-      }
-      pageToken = res.data.nextPageToken ?? void 0;
-    } while (pageToken && collected < maxResults);
-    const profile = await this.gmail.users.getProfile({ userId: "me" });
-    const cursor = profile.data.historyId ?? void 0;
-    return {
-      records,
-      cursor,
-      hasMore: !!pageToken,
-      errors
-    };
-  }
-  // ── Push (send email) ─────────────────────────────────────────
-  async push(payload) {
-    this.ensureConnected();
-    try {
-      const toHeader = payload.to.map(formatAddress).join(", ");
-      const ccHeader = payload.cc.length ? `Cc: ${payload.cc.map(formatAddress).join(", ")}\r
-` : "";
-      const bccHeader = payload.bcc.length ? `Bcc: ${payload.bcc.map(formatAddress).join(", ")}\r
-` : "";
-      const mime = [
-        `To: ${toHeader}\r
-`,
-        ccHeader,
-        bccHeader,
-        `Subject: ${payload.subject}\r
-`,
-        `Content-Type: text/plain; charset="UTF-8"\r
-`,
-        `\r
-`,
-        payload.body ?? ""
-      ].join("");
-      const encoded = Buffer.from(mime).toString("base64").replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
-      const res = await this.gmail.users.messages.send({
-        userId: "me",
-        requestBody: { raw: encoded }
-      });
-      return { success: true, externalId: res.data.id };
-    } catch (err) {
-      return { success: false, error: errorMessage(err) };
-    }
-  }
-  // ── Internals ─────────────────────────────────────────────────
-  ensureConnected() {
-    if (!this.gmail || !this.config) {
-      throw new Error("GoogleGmailConnector is not connected. Call connect() first.");
-    }
-  }
-  /** Fetch a single message by ID and parse into an EmailRecord. */
-  async fetchMessage(messageId) {
-    const res = await this.gmail.users.messages.get({
-      userId: "me",
-      id: messageId,
-      format: "metadata",
-      metadataHeaders: ["From", "To", "Cc", "Bcc", "Subject", "Date"]
-    });
-    const msg = res.data;
-    const headers = msg.payload?.headers ?? [];
-    const getHeader = (name) => headers.find((h) => h.name.toLowerCase() === name.toLowerCase())?.value ?? "";
-    return {
-      gmailId: msg.id,
-      threadId: msg.threadId,
-      account: this.config.account,
-      subject: getHeader("Subject"),
-      from: parseAddress(getHeader("From")),
-      to: parseAddressList(getHeader("To")),
-      cc: parseAddressList(getHeader("Cc")),
-      bcc: parseAddressList(getHeader("Bcc")),
-      date: new Date(getHeader("Date")).toISOString(),
-      snippet: msg.snippet ?? "",
-      labels: msg.labelIds ?? [],
-      isRead: !(msg.labelIds ?? []).includes("UNREAD")
-    };
-  }
-};
-function parseAddress(raw) {
-  const match = raw.match(/^(.+?)\s*<([^>]+)>$/);
-  if (match) {
-    return { name: match[1].replace(/^["']|["']$/g, "").trim(), email: match[2] };
-  }
-  return { email: raw.trim() };
-}
-function parseAddressList(raw) {
-  if (!raw.trim()) return [];
-  const results = [];
-  const parts = raw.split(/,(?=(?:[^<]*<[^>]*>)*[^>]*$)/);
-  for (const part of parts) {
-    const trimmed = part.trim();
-    if (trimmed) results.push(parseAddress(trimmed));
-  }
-  return results;
-}
-function formatAddress(addr) {
-  return addr.name ? `${addr.name} <${addr.email}>` : addr.email;
-}
-function errorMessage(err) {
-  return err instanceof Error ? err.message : String(err);
-}
+import {
+  GoogleGmailConnector,
+  createOAuth2Client,
+  createServiceAccountClient,
+  exchangeCode,
+  getAuthUrl,
+  loadTokens,
+  refreshIfNeeded,
+  saveTokens
+} from "../../chunk-3X3YKI4T.js";
 
 // src/connectors/google/calendar-connector.ts
 var GoogleCalendarConnector = class {
@@ -307,26 +24,38 @@ var GoogleCalendarConnector = class {
   tokens = null;
   // eslint-disable-next-line @typescript-eslint/no-explicit-any
   calendar = null;
-  constructor(opts) {
+  constructor(opts = {}) {
     this.tokenLoader = opts.tokenLoader;
     this.tokenSaver = opts.tokenSaver;
   }
   // ── Lifecycle ──────────────────────────────────────────────────
   async connect(config) {
     this.config = config;
-    this.client = await createOAuth2Client(config.oauth);
-    this.tokens = await loadTokens(this.tokenLoader, config.account);
-    if (!this.tokens) {
-      throw new Error(
-        `No stored tokens for account ${config.account}. Complete the OAuth flow first.`
+    const scopes = config.scopes ?? [
+      "https://www.googleapis.com/auth/calendar.readonly"
+    ];
+    if (config.serviceAccount) {
+      this.client = await createServiceAccountClient(config.serviceAccount, scopes);
+    } else if (config.oauth) {
+      this.client = await createOAuth2Client(config.oauth);
+      if (!this.tokenLoader) {
+        throw new Error("tokenLoader required for OAuth2 flow");
+      }
+      this.tokens = await loadTokens(this.tokenLoader, config.account);
+      if (!this.tokens) {
+        throw new Error(
+          `No stored tokens for account ${config.account}. Complete the OAuth flow first.`
+        );
+      }
+      this.tokens = await refreshIfNeeded(
+        this.client,
+        this.tokens,
+        this.tokenSaver ? async (t) => saveTokens(this.tokenSaver, config.account, t) : void 0
       );
+      this.client.setCredentials(this.tokens);
+    } else {
+      throw new Error("Either serviceAccount or oauth config is required");
     }
-    this.tokens = await refreshIfNeeded(
-      this.client,
-      this.tokens,
-      async (t) => saveTokens(this.tokenSaver, config.account, t)
-    );
-    this.client.setCredentials(this.tokens);
     const { google } = await import("googleapis");
     this.calendar = google.calendar({ version: "v3", auth: this.client });
   }
@@ -346,7 +75,37 @@ var GoogleCalendarConnector = class {
       );
       return { ok: true, account: primary?.id ?? this.config.account };
     } catch (err) {
-      return { ok: false, error: errorMessage2(err) };
+      return { ok: false, error: errorMessage(err) };
+    }
+  }
+  // ── Auth ───────────────────────────────────────────────────────
+  async authenticate(codeProvider) {
+    if (!this.config) {
+      return { success: false, error: "Call connect() first to set config, or pass config and call authenticate() before connect()." };
+    }
+    try {
+      if (!this.config.oauth) {
+        return { success: false, error: "OAuth config required for browser-based authenticate(). Use serviceAccount for headless auth." };
+      }
+      if (!this.tokenSaver) {
+        return { success: false, error: "tokenSaver required for authenticate() flow." };
+      }
+      const client = await createOAuth2Client(this.config.oauth);
+      const scopes = this.config.scopes ?? [
+        "https://www.googleapis.com/auth/calendar.readonly"
+      ];
+      const authUrl = getAuthUrl(client, scopes);
+      const code = await codeProvider(authUrl);
+      const tokens = await exchangeCode(client, code);
+      await saveTokens(this.tokenSaver, this.config.account, tokens);
+      this.tokens = tokens;
+      this.client = client;
+      this.client.setCredentials(tokens);
+      const { google } = await import("googleapis");
+      this.calendar = google.calendar({ version: "v3", auth: this.client });
+      return { success: true, account: this.config.account };
+    } catch (err) {
+      return { success: false, error: errorMessage(err) };
     }
   }
   // ── Sync ───────────────────────────────────────────────────────
@@ -376,7 +135,7 @@ var GoogleCalendarConnector = class {
           try {
             records.push(this.mapEvent(event, calendarId));
           } catch (err) {
-            errors.push({ id: event.id, error: errorMessage2(err) });
+            errors.push({ id: event.id, error: errorMessage(err) });
           }
           if (options?.limit && records.length >= options.limit) break;
         }
@@ -418,7 +177,7 @@ var GoogleCalendarConnector = class {
         try {
           records.push(this.mapEvent(event, calendarId));
         } catch (err) {
-          errors.push({ id: event.id, error: errorMessage2(err) });
+          errors.push({ id: event.id, error: errorMessage(err) });
         }
         if (records.length >= maxResults) break;
       }
@@ -472,13 +231,14 @@ var GoogleCalendarConnector = class {
     };
   }
 };
-function errorMessage2(err) {
+function errorMessage(err) {
   return err instanceof Error ? err.message : String(err);
 }
 export {
   GoogleCalendarConnector,
   GoogleGmailConnector,
   createOAuth2Client,
+  createServiceAccountClient,
   exchangeCode,
   getAuthUrl,
   loadTokens,

package/dist/gmail-connector-2FVYTQJH.js

@@ -0,0 +1,6 @@
+import {
+  GoogleGmailConnector
+} from "./chunk-DSNJKNEW.js";
+export {
+  GoogleGmailConnector
+};

package/dist/gmail-connector-MNUBRNFM.js

@@ -0,0 +1,6 @@
+import {
+  GoogleGmailConnector
+} from "./chunk-3X3YKI4T.js";
+export {
+  GoogleGmailConnector
+};

package/dist/gmail-connector-URRFX6A3.js

@@ -0,0 +1,6 @@
+import {
+  GoogleGmailConnector
+} from "./chunk-D47AIFOD.js";
+export {
+  GoogleGmailConnector
+};

package/dist/index.d.ts

@@ -2,8 +2,8 @@ import { C as ChannelAdapter, H as HealthStatus, I as InboundMessage } from './c
 export { A as Attachment, a as ChannelCapabilities, b as ChannelConfig, c as ChannelMeta, d as ChatType, F as FormattingMode, O as OutboundPayload, S as SendResult } from './channel-06G0vbIn.js';
 import { T as TokenUsage, L as LLMProvider, M as ModelInfo, R as ResolvedModel, C as ChatMessage } from './provider-qqJYv9nv.js';
 export { a as ChatParams, b as ChatResult, c as ContentBlock, d as ToolDefinition, e as ToolUse } from './provider-qqJYv9nv.js';
-import { C as ConnectorConfig } from './connector-DDahQw-2.js';
-export { a as Connector, b as ConnectorMeta, P as PushResult, S as SyncOptions, c as SyncResult } from './connector-DDahQw-2.js';
+import { C as ConnectorConfig } from './connector-B4Mj0P1b.js';
+export { A as AuthResult, a as Connector, b as ConnectorMeta, P as PushResult, S as SyncOptions, c as SyncResult } from './connector-B4Mj0P1b.js';
 import * as better_sqlite3 from 'better-sqlite3';
 
 /** Execution adapter types — Story 1.5 / 3.4 / 3.5 */

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "botinabox",
-  "version": "0.5.1",
+  "version": "0.5.3",
   "description": "Bot in a Box — framework for building multi-agent bots",
   "type": "module",
   "main": "./dist/index.js",
@@ -42,10 +42,18 @@
   "bin": {
     "botinabox": "./bin/botinabox.mjs"
   },
+  "files": [
+    "dist",
+    "bin"
+  ],
+  "engines": {
+    "node": ">=18"
+  },
   "scripts": {
     "build": "tsup",
     "test": "vitest run",
-    "typecheck": "tsc --noEmit"
+    "typecheck": "tsc --noEmit",
+    "prepublishOnly": "npm run build && npm run typecheck && npm test"
   },
   "dependencies": {
     "@types/uuid": "^10.0.0",

package/CHANGELOG.md

@@ -1,68 +0,0 @@
-# Changelog
-
-All notable changes to `botinabox` are documented here.
-
-Format: [Keep a Changelog](https://keepachangelog.com/en/1.1.0/). Versioning: [SemVer](https://semver.org/).
-
----
-
-## [0.5.1] — 2026-04-04
-
-### Fixed
-
-- **cron-parser ESM import** — cron-parser v4 is CommonJS-only; fixed named import to default import (`import cronParser from "cron-parser"`).
-
-## [0.5.0] — 2026-04-04
-
-### Added
-
-- **Connector interface** — Generic `Connector<T>` abstraction for external service integrations (Gmail, Calendar, Trello, Jira, Salesforce, etc.). Pull-based `sync()` returns typed records; optional `push()` writes back. Connectors produce data — consumers decide where to store it. New `connectors` config key in `BotConfig`.
-- **Google connectors** — `GoogleGmailConnector` and `GoogleCalendarConnector` implementing `Connector<EmailRecord>` and `Connector<CalendarEventRecord>`. Incremental sync (Gmail historyId, Calendar syncToken), full sync with pagination, email sending via `push()`. OAuth2 helpers with callback-based token persistence. Exported from `botinabox/google`. `googleapis` as optional peer dependency.
-- **Scheduler** — Database-backed `Scheduler` class with `schedules` core table. Supports recurring (cron expressions via `cron-parser`) and one-time schedules. Hook-based actions: when a schedule fires, it emits the configured action as a hook event. Methods: `register()`, `update()`, `unregister()`, `list()`, `tick()`.
-- **`schedules` core table** — id, name, type (recurring/one_time), cron, run_at, timezone, enabled, action, action_config, last_fired_at, next_fire_at.
-
-### Deprecated
-
-- **HeartbeatScheduler** — Replaced by `Scheduler`. HeartbeatScheduler uses in-memory `setInterval` which loses state on restart. Kept for backward compatibility but marked `@deprecated`.
-
-### Dependencies
-
-- Added `cron-parser` ^4.9.0.
-- Added `googleapis` >=140.0.0 as optional peer dependency.
-
-## [0.3.0] — 2026-04-03
-
-### Added
-
-- **Domain tables** — `defineDomainTables(db, options?)` creates standard multi-agent app tables: org, project, client, invoice, repository, file, channel, rule, event + junction tables. Configurable: disable clients, repos, files, channels, rules, or events.
-- **Domain entity contexts** — `defineDomainEntityContexts(db, options?)` renders per-entity context directories for all domain tables. Projects get REPOS.md + RULES.md. Clients get REPOS.md + AGENTS.md + INVOICES.md.
-- **Claude stream parser** — `parseClaudeStream(stdout)` parses Claude CLI NDJSON output into structured results (session, model, cost, tokens, text, errors). Plus `isMaxTurns()`, `isLoginRequired()`, `deactivateLocalImagePaths()`.
-- **Process env builder** — `buildProcessEnv(allowedKeys?, inject?)` creates a clean subprocess environment with only safe variables. Strips all secrets.
-
-## [0.2.0] — 2026-04-03
-
-### Added
-
-- **Users primitive** — `users` and `user_identities` core tables. Users are protected objects (never auto-rendered into other entities' context). `UserRegistry` class: `register()`, `getById()`, `getByEmail()`, `resolveByIdentity()`, `resolveOrCreate()`, `addIdentity()`.
-- **Secrets primitive** — `secrets` core table for encrypted credential storage. Protected by default. `SecretStore` class: `set()`, `get()`, `getMeta()`, `list()`, `rotate()`, `delete()`.
-- **Message pipeline user resolution** — `MessagePipeline` accepts optional `UserRegistry`. When provided, resolves `InboundMessage.from` to a user ID via `resolveOrCreate()` before task creation. `InboundMessage.userId` field added.
-- **`user_id` on messages table** — Tracks resolved user alongside raw `peer_id`.
-- **Protected/encrypted passthrough** — `EntityContextDef` now supports `protected` and `encrypted` fields, passed through to Lattice's entity context system.
-
-### Changed
-
-- Core table count: 15 → 18 (added `users`, `user_identities`, `secrets`).
-- `messages` table gains `user_id` column.
-
-## [0.1.1] — 2026-03-28
-
-### Fixed
-
-- Initial release bug fixes and stability improvements.
-
-## [0.1.0] — 2026-03-25
-
-### Added
-
-- Initial release: DataStore, HookBus, AgentRegistry, TaskQueue, RunManager, WakeupQueue, BudgetController, WorkflowEngine, SessionManager, ChannelRegistry, MessagePipeline.
-- 15 core tables, LLM provider routing, channel adapters (Slack, Discord, Webhook).

package/CONTRIBUTING.md

@@ -1,92 +0,0 @@
-# Contributing
-
-Thanks for your interest in contributing to Bot in a Box.
-
-## Development Setup
-
-```bash
-git clone https://github.com/automated-industries/botinabox.git
-cd botinabox
-pnpm install
-pnpm build
-```
-
-## Project Structure
-
-This is a pnpm monorepo. Packages are in `packages/`:
-
-- `shared/` — Types and constants (zero dependencies)
-- `core/` — Core framework
-- `cli/` — CLI scaffolding tool
-- `providers/` — LLM provider adapters
-- `channels/` — Messaging channel adapters
-
-## Running Tests
-
-```bash
-# All packages
-pnpm test:run
-
-# Single package
-cd packages/core && pnpm test
-```
-
-Tests use [Vitest](https://vitest.dev/). Each package has its own `vitest.config.ts`.
-
-## Building
-
-```bash
-# All packages
-pnpm build
-
-# Single package
-cd packages/core && pnpm build
-```
-
-Build uses [tsup](https://tsup.egoist.dev/) targeting ESM with declaration files.
-
-## Type Checking
-
-```bash
-pnpm typecheck
-```
-
-## Code Style
-
-- TypeScript with strict mode
-- ESM modules (`"type": "module"`)
-- ES2022 target
-- No default exports except for provider/channel factory functions
-
-## Making Changes
-
-1. Create a branch from `main`
-2. Make your changes
-3. Add or update tests
-4. Run `pnpm test:run` and `pnpm typecheck`
-5. Open a pull request
-
-## Adding a Provider
-
-1. Create `packages/providers/your-provider/`
-2. Implement the `LLMProvider` interface from `@botinabox/shared`
-3. Export a default factory function
-4. Add `"botinabox": { "type": "provider" }` to `package.json`
-5. Add tests
-
-## Adding a Channel Adapter
-
-1. Create `packages/channels/your-channel/`
-2. Implement the `ChannelAdapter` interface from `@botinabox/shared`
-3. Export a default factory function
-4. Add `"botinabox": { "type": "channel" }` to `package.json`
-5. Add tests
-
-## Reporting Issues
-
-Open an issue on GitHub with:
-
-- Steps to reproduce
-- Expected behavior
-- Actual behavior
-- Node.js and pnpm versions