cclawd 2026.3.27 → 2026.3.28

package/dist/.buildstamp

@@ -1 +1 @@
-{"builtAt":1775637451867,"head":"843e6a14abe65fe2a4a053fdc32d029755e1bb67"}
+{"builtAt":1775727523888,"head":"eb993539ed3bdef773db4ffc7adb3e6399a0f57d"}

package/dist/build-info.json

@@ -1,5 +1,5 @@
 {
-  "version": "2026.3.27",
-  "commit": "843e6a14abe65fe2a4a053fdc32d029755e1bb67",
-  "builtAt": "2026-04-08T08:40:38.891Z"
+  "version": "2026.3.28",
+  "commit": "eb993539ed3bdef773db4ffc7adb3e6399a0f57d",
+  "builtAt": "2026-04-09T09:39:10.419Z"
 }

package/dist/extensions/cclawd-guard/dashboard-launcher.js

@@ -1,5 +1,5 @@
 import { a as openclawHome } from "../../env-CcGPS0ln.js";
-import { i as setDashboardPort, l as loadJsonSync } from "../../gateway-manager-D_f5cQVk.js";
+import { c as loadJsonSync, i as setDashboardPort } from "../../gateway-manager-D66ezIC1.js";
 import { fileURLToPath } from "node:url";
 import fs from "node:fs";
 import path from "node:path";

package/dist/extensions/cclawd-guard/index.js

@@ -1,5 +1,5 @@
 import { a as openclawHome, n as envApiKey, t as defaultCoreUrl } from "../../env-CcGPS0ln.js";
-import { a as setGatewayActivityCallback, c as loadJsonSafe, d as loadTextSync, i as setDashboardPort, l as loadJsonSync, n as enableGateway, o as startGateway, r as getGatewayStatus, s as stopGateway, t as disableGateway, u as loadTextSafe } from "../../gateway-manager-D_f5cQVk.js";
+import { a as startGateway, c as loadJsonSync, i as setDashboardPort, l as loadTextSafe, n as enableGateway, o as stopGateway, r as getGatewayStatus, s as loadJsonSafe, t as disableGateway, u as loadTextSync } from "../../gateway-manager-D66ezIC1.js";
 import fs, { existsSync, mkdirSync, readdirSync, unlinkSync, writeFileSync } from "node:fs";
 import path from "node:path";
 import os, { networkInterfaces } from "node:os";
@@ -379,6 +379,33 @@ function sanitizeContent(content) {
 	};
 }
 //#endregion
+//#region extensions/cclawd-guard/agent/machine-id.ts
+let cachedMachineInfo = null;
+/**
+* Build a stable per-device ID from hostname + first non-internal MAC.
+* Hashing avoids sending raw MAC addresses.
+*/
+function getMachineInfo() {
+	if (cachedMachineInfo) return cachedMachineInfo;
+	const machineName = os.hostname();
+	const interfaces = networkInterfaces();
+	let mac = "";
+	for (const iface of Object.values(interfaces)) {
+		if (!iface) continue;
+		for (const info of iface) if (!info.internal && info.mac && info.mac !== "00:00:00:00:00:00") {
+			mac = info.mac;
+			break;
+		}
+		if (mac) break;
+	}
+	const input = `${machineName}:${mac || "unknown"}`;
+	cachedMachineInfo = {
+		machineId: createHash("sha256").update(input).digest("hex").slice(0, 16),
+		machineName
+	};
+	return cachedMachineInfo;
+}
+//#endregion
 //#region extensions/cclawd-guard/agent/behavior-detector.ts
 /**
 * Behavioral anomaly detector — runs at before_tool_call.
@@ -389,28 +416,9 @@ function sanitizeContent(content) {
 *   3. Core does all classification, signal computation, and risk decisions
 *   4. Fail-open: if Core is unavailable, allow execution
 */
-const FILE_READ_TOOLS = new Set([
-	"Read",
-	"read_file",
-	"read",
-	"cat",
-	"head",
-	"tail",
-	"view",
-	"get_file_contents",
-	"open_file"
-]);
-const WEB_FETCH_TOOLS = new Set([
-	"WebFetch",
-	"web_fetch",
-	"fetch",
-	"http_request",
-	"get_url",
-	"browser_navigate",
-	"navigate"
-]);
 /** Module-level secret detection callback (set by BehaviorDetector) */
 let secretDetectionCallback = null;
+const machineInfo$1 = getMachineInfo();
 function sanitizeParams(params) {
 	const result = {};
 	const allRedactions = {};
@@ -495,7 +503,9 @@ var BehaviorDetector = class {
 			},
 			meta: {
 				pluginVersion: this.config.pluginVersion,
-				clientTimestamp: (/* @__PURE__ */ new Date()).toISOString()
+				clientTimestamp: (/* @__PURE__ */ new Date()).toISOString(),
+				machineId: machineInfo$1.machineId,
+				machineName: machineInfo$1.machineName
 			}
 		};
 		const verdict = await this.callAssessApi(req);
@@ -537,6 +547,7 @@ var BehaviorDetector = class {
 	*/
 	async scanContent(sessionKey, toolName, content) {
 		if (!this.coreCredentials) return null;
+		const state = this.getOrCreate(sessionKey);
 		const maxSize = 100 * 1024;
 		const truncatedContent = content.length > maxSize ? content.slice(0, maxSize) : content;
 		const controller = new AbortController();
@@ -551,7 +562,15 @@ var BehaviorDetector = class {
 				body: JSON.stringify({
 					content: truncatedContent,
 					toolName,
-					sessionKey
+					sessionKey,
+					runId: state.runId,
+					userIntent: state.userIntent,
+					meta: {
+						machineId: machineInfo$1.machineId,
+						machineName: machineInfo$1.machineName,
+						pluginVersion: this.config.pluginVersion,
+						clientTimestamp: (/* @__PURE__ */ new Date()).toISOString()
+					}
 				}),
 				signal: controller.signal
 			});
@@ -663,7 +682,8 @@ const BATCH_FLUSH_INTERVAL_MS = 100;
 /** Maximum events per batch */
 const MAX_BATCH_SIZE = 50;
 /** Timeout for Core API calls */
-const API_TIMEOUT_MS$2 = 3e3;
+const API_TIMEOUT_MS$1 = 3e3;
+const machineInfo = getMachineInfo();
 var EventReporter = class {
 	constructor(config, log) {
 		this.credentials = null;
@@ -675,7 +695,7 @@ var EventReporter = class {
 		this.config = {
 			coreUrl: config.coreUrl,
 			pluginVersion: config.pluginVersion,
-			timeoutMs: config.timeoutMs ?? API_TIMEOUT_MS$2,
+			timeoutMs: config.timeoutMs ?? API_TIMEOUT_MS$1,
 			enableBatching: config.enableBatching ?? true
 		};
 		this.log = log;
@@ -726,7 +746,9 @@ var EventReporter = class {
 			events: [event],
 			meta: {
 				pluginVersion: this.config.pluginVersion,
-				clientTimestamp: (/* @__PURE__ */ new Date()).toISOString()
+				clientTimestamp: (/* @__PURE__ */ new Date()).toISOString(),
+				machineId: machineInfo.machineId,
+				machineName: machineInfo.machineName
 			}
 		};
 		const controller = new AbortController();
@@ -830,7 +852,9 @@ var EventReporter = class {
 			events,
 			meta: {
 				pluginVersion: this.config.pluginVersion,
-				clientTimestamp: (/* @__PURE__ */ new Date()).toISOString()
+				clientTimestamp: (/* @__PURE__ */ new Date()).toISOString(),
+				machineId: machineInfo.machineId,
+				machineName: machineInfo.machineName
 			}
 		};
 		const controller = new AbortController();
@@ -897,285 +921,6 @@ var EventReporter = class {
 	}
 };
 //#endregion
-//#region extensions/cclawd-guard/agent/business-reporter.ts
-/**
-* BusinessReporter - Reports telemetry data to Core's Business Dashboard.
-*
-* Only active when the agent's account is on the "business" plan.
-* Accumulates events and agentic hours locally, then flushes to Core
-* every 60 seconds via POST /api/v1/business/telemetry.
-*/
-function debugLog$1(msg) {
-	try {
-		const logPath = path.join(openclawHome, "logs", "cclawd-guard-debug.log");
-		fs.appendFileSync(logPath, `[${(/* @__PURE__ */ new Date()).toISOString()}] [BusinessReporter] ${msg}\n`);
-	} catch {}
-}
-/** Flush interval in ms (60 seconds) */
-const FLUSH_INTERVAL_MS = 6e4;
-/** Maximum events to buffer before forced flush */
-const MAX_BUFFERED_EVENTS = 500;
-/** Timeout for Core API calls */
-const API_TIMEOUT_MS$1 = 5e3;
-var BusinessReporter = class {
-	constructor(config, log) {
-		this.enabled = false;
-		this.credentials = null;
-		this.ownerName = "";
-		this.agentName = "";
-		this.provider = "";
-		this.model = "";
-		this.pendingEvents = [];
-		this.hoursAccum = this.emptyAccum();
-		this.scanAccum = [];
-		this.gatewayAccum = this.emptyGatewayAccum();
-		this.secretAccum = this.emptySecretAccum();
-		this.flushInterval = null;
-		this.flushing = false;
-		this.config = config;
-		this.log = log;
-		this.machineName = os.hostname();
-		this.machineId = generateMachineId();
-	}
-	/**
-	* Initialize the reporter. Only enables if the account plan is "business".
-	* Call this after fetching the account info from Core.
-	*/
-	initialize(plan) {
-		if (plan !== "business") {
-			this.log.debug?.(`BusinessReporter: plan is "${plan}", not enabling`);
-			return;
-		}
-		this.enabled = true;
-		this.startPeriodicFlush();
-		this.log.info(`BusinessReporter: enabled for business plan (machine: ${this.machineName})`);
-	}
-	/** Set Core credentials */
-	setCredentials(credentials) {
-		this.credentials = credentials;
-	}
-	/** Update agent profile info (called when profile changes) */
-	setProfile(profile) {
-		if (profile.ownerName !== void 0) this.ownerName = profile.ownerName;
-		if (profile.agentName !== void 0) this.agentName = profile.agentName;
-		if (profile.provider !== void 0) this.provider = profile.provider;
-		if (profile.model !== void 0) this.model = profile.model;
-	}
-	/** Whether the reporter is active */
-	isEnabled() {
-		return this.enabled;
-	}
-	/** Stop the reporter and flush remaining data */
-	async stop() {
-		if (this.flushInterval) {
-			clearInterval(this.flushInterval);
-			this.flushInterval = null;
-		}
-		if (this.enabled) await this.flush();
-		this.enabled = false;
-	}
-	/** Record a tool call */
-	recordToolCall(toolName, category, durationMs, blocked) {
-		if (!this.enabled) return;
-		this.pendingEvents.push({
-			type: blocked ? "block" : "tool_call",
-			toolName,
-			category,
-			durationMs,
-			blocked
-		});
-		this.hoursAccum.toolCallDurationMs += durationMs;
-		this.hoursAccum.toolCallCount += 1;
-		this.hoursAccum.totalDurationMs += durationMs;
-		if (blocked) this.hoursAccum.blockCount += 1;
-		this.maybeFlush();
-	}
-	/** Record an LLM call */
-	recordLlmCall(durationMs, model) {
-		if (!this.enabled) return;
-		if (model) this.model = model;
-		this.hoursAccum.llmDurationMs += durationMs;
-		this.hoursAccum.llmCallCount += 1;
-		this.hoursAccum.totalDurationMs += durationMs;
-	}
-	/** Record a detection event */
-	recordDetection(riskLevel, blocked, summary) {
-		if (!this.enabled) return;
-		this.pendingEvents.push({
-			type: "detection",
-			riskLevel,
-			blocked,
-			summary
-		});
-		if (riskLevel !== "no_risk" && riskLevel !== "low") this.hoursAccum.riskEventCount += 1;
-		if (blocked) this.hoursAccum.blockCount += 1;
-		this.maybeFlush();
-	}
-	/** Record a session start/end */
-	recordSession(type, durationMs) {
-		if (!this.enabled) return;
-		this.pendingEvents.push({
-			type: type === "start" ? "session_start" : "session_end",
-			durationMs
-		});
-		if (type === "start") this.hoursAccum.sessionCount += 1;
-		if (durationMs) this.hoursAccum.totalDurationMs += durationMs;
-	}
-	/** Record a scan result (static or dynamic) */
-	recordScanResult(scanType, categories, risky) {
-		if (!this.enabled) return;
-		let accum = this.scanAccum.find((s) => s.scanType === scanType);
-		if (!accum) {
-			accum = {
-				scanType,
-				totalScans: 0,
-				riskyScans: 0,
-				categoryCounts: {}
-			};
-			this.scanAccum.push(accum);
-		}
-		accum.totalScans += 1;
-		if (risky) accum.riskyScans += 1;
-		for (const cat of categories) accum.categoryCounts[cat] = (accum.categoryCounts[cat] ?? 0) + 1;
-	}
-	/** Record gateway sanitization activity */
-	recordGatewayActivity(redactionCount, typeCounts) {
-		if (!this.enabled) return;
-		this.gatewayAccum.totalRequests += 1;
-		this.gatewayAccum.totalRedactions += redactionCount;
-		for (const [k, v] of Object.entries(typeCounts)) this.gatewayAccum.typeCounts[k] = (this.gatewayAccum.typeCounts[k] ?? 0) + v;
-	}
-	/** Record secret detection */
-	recordSecretDetection(typeCounts) {
-		if (!this.enabled) return;
-		const total = Object.values(typeCounts).reduce((a, b) => a + b, 0);
-		this.secretAccum.totalDetections += total;
-		for (const [k, v] of Object.entries(typeCounts)) this.secretAccum.typeCounts[k] = (this.secretAccum.typeCounts[k] ?? 0) + v;
-	}
-	startPeriodicFlush() {
-		if (this.flushInterval) return;
-		this.flushInterval = setInterval(() => {
-			this.flush().catch((err) => {
-				this.log.debug?.(`BusinessReporter: flush error: ${err}`);
-			});
-		}, FLUSH_INTERVAL_MS);
-		this.flushInterval.unref();
-	}
-	maybeFlush() {
-		if (this.pendingEvents.length >= MAX_BUFFERED_EVENTS) this.flush().catch((err) => {
-			this.log.debug?.(`BusinessReporter: forced flush error: ${err}`);
-		});
-	}
-	async flush() {
-		if (this.flushing || !this.enabled || !this.credentials) return;
-		const hasEvents = this.pendingEvents.length > 0;
-		const hasHours = this.hoursAccum.totalDurationMs > 0 || this.hoursAccum.toolCallCount > 0 || this.hoursAccum.llmCallCount > 0 || this.hoursAccum.sessionCount > 0;
-		const hasScans = this.scanAccum.length > 0;
-		const hasGateway = this.gatewayAccum.totalRequests > 0;
-		const hasSecrets = this.secretAccum.totalDetections > 0;
-		if (!hasEvents && !hasHours && !hasScans && !hasGateway && !hasSecrets) return;
-		this.flushing = true;
-		const events = this.pendingEvents.splice(0);
-		const hours = { ...this.hoursAccum };
-		this.hoursAccum = this.emptyAccum();
-		const scans = this.scanAccum.splice(0);
-		const gateway = { ...this.gatewayAccum };
-		this.gatewayAccum = this.emptyGatewayAccum();
-		const secrets = { ...this.secretAccum };
-		this.secretAccum = this.emptySecretAccum();
-		const controller = new AbortController();
-		const timer = setTimeout(() => controller.abort(), API_TIMEOUT_MS$1);
-		try {
-			const body = {
-				agentId: this.credentials.agentId,
-				ownerName: this.ownerName || void 0,
-				machineName: this.machineName,
-				machineId: this.machineId,
-				agentName: this.agentName || void 0,
-				provider: this.provider || void 0,
-				model: this.model || void 0,
-				events: events.length > 0 ? events : void 0,
-				agenticHours: hasHours ? hours : void 0,
-				heartbeat: true,
-				scanSummary: scans.length > 0 ? scans : void 0,
-				gatewaySummary: hasGateway ? gateway : void 0,
-				secretSummary: hasSecrets ? secrets : void 0
-			};
-			debugLog$1(`flush: POSTing to ${this.config.coreUrl}/api/v1/business/telemetry events=${events.length} hours=${JSON.stringify(hours)}`);
-			const response = await fetch(`${this.config.coreUrl}/api/v1/business/telemetry`, {
-				method: "POST",
-				headers: {
-					"Content-Type": "application/json",
-					Authorization: `Bearer ${this.credentials.apiKey}`
-				},
-				body: JSON.stringify(body),
-				signal: controller.signal
-			});
-			if (!response.ok) {
-				debugLog$1(`flush: POST failed with ${response.status}`);
-				this.log.debug?.(`BusinessReporter: telemetry request failed with ${response.status}`);
-				this.pendingEvents.unshift(...events);
-				if (this.pendingEvents.length > MAX_BUFFERED_EVENTS) this.pendingEvents.length = MAX_BUFFERED_EVENTS;
-			} else {
-				debugLog$1(`flush: POST success`);
-				this.log.debug?.(`BusinessReporter: flushed ${events.length} events`);
-			}
-		} catch (err) {
-			debugLog$1(`flush: POST error: ${err}`);
-			if (err.name !== "AbortError") this.log.debug?.(`BusinessReporter: telemetry error: ${err}`);
-			this.pendingEvents.unshift(...events);
-			if (this.pendingEvents.length > MAX_BUFFERED_EVENTS) this.pendingEvents.length = MAX_BUFFERED_EVENTS;
-		} finally {
-			clearTimeout(timer);
-			this.flushing = false;
-		}
-	}
-	emptyAccum() {
-		return {
-			toolCallDurationMs: 0,
-			llmDurationMs: 0,
-			totalDurationMs: 0,
-			toolCallCount: 0,
-			llmCallCount: 0,
-			sessionCount: 0,
-			blockCount: 0,
-			riskEventCount: 0
-		};
-	}
-	emptyGatewayAccum() {
-		return {
-			totalRequests: 0,
-			totalRedactions: 0,
-			typeCounts: {}
-		};
-	}
-	emptySecretAccum() {
-		return {
-			totalDetections: 0,
-			typeCounts: {}
-		};
-	}
-};
-/**
-* Generate a stable machine ID from hostname + first MAC address.
-* This identifies a specific machine across restarts.
-*/
-function generateMachineId() {
-	const hostname = os.hostname();
-	const interfaces = networkInterfaces();
-	let mac = "";
-	for (const iface of Object.values(interfaces)) {
-		if (!iface) continue;
-		for (const info of iface) if (!info.internal && info.mac && info.mac !== "00:00:00:00:00:00") {
-			mac = info.mac;
-			break;
-		}
-		if (mac) break;
-	}
-	const input = `${hostname}:${mac || "unknown"}`;
-	return createHash("sha256").update(input).digest("hex").slice(0, 16);
-}
-//#endregion
 //#region extensions/cclawd-guard/agent/config-sync.ts
 /** Poll interval in ms (5 minutes) */
 const POLL_INTERVAL_MS = 5 * 6e4;
@@ -1638,26 +1383,6 @@ function debugLog(msg) {
 		fs.appendFileSync(DEBUG_LOG_PATH, `[${ts}] ${msg}\n`);
 	} catch {}
 }
-/** Infer tool category from tool name for business reporting */
-function inferToolCategory(toolName) {
-	const name = toolName.toLowerCase();
-	if (FILE_READ_TOOLS.has(toolName) || FILE_READ_TOOLS.has(name)) return "file_read";
-	if (WEB_FETCH_TOOLS.has(toolName) || WEB_FETCH_TOOLS.has(name)) return "web_fetch";
-	if ([
-		"bash",
-		"shell",
-		"run_command",
-		"execute"
-	].some((t) => name.includes(t))) return "shell";
-	if ([
-		"write",
-		"edit",
-		"create_file",
-		"delete"
-	].some((t) => name.includes(t))) return "file_write";
-	if (name.includes("agent") || name.includes("subagent")) return "agent";
-	return "other";
-}
 /**
 * Replace all injection matches in `text` with `__REDACTED_BY_CCLAWD_GUARD_DUE_TO_{riskType}__`.
 */
@@ -1733,7 +1458,6 @@ function createLogger(baseLogger) {
 let globalCoreCredentials = null;
 let globalBehaviorDetector = null;
 let globalEventReporter = null;
-let globalBusinessReporter = null;
 let globalConfigSync = null;
 let globalDashboardClient = null;
 let globalFileWatcher = null;
@@ -1969,30 +1693,6 @@ const openClawGuardPlugin = {
 					log.debug?.(`Account plan is "${plan}", business features not enabled`);
 					return;
 				}
-				if (!globalBusinessReporter) {
-					globalBusinessReporter = new BusinessReporter({
-						coreUrl,
-						pluginVersion: PLUGIN_VERSION
-					}, log);
-					globalBusinessReporter.setCredentials(globalCoreCredentials);
-					const profile = readAgentProfile();
-					globalBusinessReporter.setProfile({
-						ownerName: profile.ownerName,
-						agentName: config.agentName,
-						provider: profile.provider,
-						model: profile.model
-					});
-					globalBusinessReporter.initialize(plan);
-					debugLog(`BusinessReporter initialized, enabled=${globalBusinessReporter.isEnabled()}`);
-					if (globalBusinessReporter.isEnabled()) {
-						setGatewayActivityCallback((redactionCount, typeCounts) => {
-							globalBusinessReporter?.recordGatewayActivity(redactionCount, typeCounts);
-						});
-						globalBehaviorDetector?.setOnSecretDetected((typeCounts) => {
-							globalBusinessReporter?.recordSecretDetection(typeCounts);
-						});
-					}
-				}
 				if (!globalConfigSync) {
 					globalConfigSync = new ConfigSync({
 						coreUrl,
@@ -2057,7 +1757,6 @@ const openClawGuardPlugin = {
 				sessionId: event.sessionId ?? sessionKey,
 				durationMs: event.durationMs
 			});
-			globalBusinessReporter?.recordSession("end", event.durationMs);
 			globalBehaviorDetector?.clearSession(sessionKey);
 			globalEventReporter?.clearSession(sessionKey);
 		});
@@ -2091,7 +1790,6 @@ const openClawGuardPlugin = {
 				log.debug?.(`Dashboard: report failed (before ${event.toolName}) — ${err}`);
 			});
 			if (blocked) {
-				globalBusinessReporter?.recordToolCall(event.toolName, inferToolCategory(event.toolName), 0, true);
 				globalDashboardClient?.recordToolCallDuration(0, true);
 				return {
 					block: true,
@@ -2150,8 +1848,6 @@ const openClawGuardPlugin = {
 						const scanResult = await globalBehaviorDetector.scanContent(ctx.sessionKey ?? "", event.toolName, resultText);
 						if (scanResult?.detected) {
 							log.warn(`Core: injection detected in "${event.toolName}" result: ${scanResult.summary}`);
-							globalBusinessReporter?.recordDetection(scanResult.detected ? "high" : "no_risk", false, scanResult.summary);
-							globalBusinessReporter?.recordScanResult("dynamic", scanResult.categories ?? [], true);
 							globalDashboardClient?.recordRiskEvent();
 						}
 						if (scanResult && globalDashboardClient) {
@@ -2194,8 +1890,7 @@ const openClawGuardPlugin = {
 			}).catch((err) => {
 				log.debug?.(`Dashboard: report failed (after ${event.toolName}) — ${err}`);
 			});
-			debugLog(`after_tool_call: tool=${event.toolName} durationMs=${event.durationMs} dashboardClient=${!!globalDashboardClient} businessReporter=${!!globalBusinessReporter} businessEnabled=${globalBusinessReporter?.isEnabled()}`);
-			globalBusinessReporter?.recordToolCall(event.toolName, inferToolCategory(event.toolName), event.durationMs ?? 0, false);
+			debugLog(`after_tool_call: tool=${event.toolName} durationMs=${event.durationMs} dashboardClient=${!!globalDashboardClient}`);
 			globalDashboardClient?.recordToolCallDuration(event.durationMs ?? 0);
 		});
 		const apiAny = api;
@@ -2220,8 +1915,7 @@ const openClawGuardPlugin = {
 				sessionId,
 				isNew: event?.isNew ?? true
 			});
-			debugLog(`session_start: sessionKey=${sessionKey} dashboardClient=${!!globalDashboardClient} businessReporter=${!!globalBusinessReporter}`);
-			globalBusinessReporter?.recordSession("start");
+			debugLog(`session_start: sessionKey=${sessionKey} dashboardClient=${!!globalDashboardClient}`);
 			globalDashboardClient?.recordSessionStart();
 		});
 		apiAny.on("before_model_resolve", async (event, ctx) => {
@@ -2269,11 +1963,8 @@ const openClawGuardPlugin = {
 				latencyMs: llmDuration,
 				stopReason: event?.stopReason ?? event?.stop_reason
 			});
-			debugLog(`llm_output: model=${event?.model} latencyMs=${event?.latencyMs} durationMs=${event?.durationMs} computed=${llmDuration} dashboardClient=${!!globalDashboardClient} businessReporter=${!!globalBusinessReporter}`);
-			if (llmDuration > 0) {
-				globalBusinessReporter?.recordLlmCall(llmDuration, event?.model);
-				globalDashboardClient?.recordLlmDuration(llmDuration);
-			}
+			debugLog(`llm_output: model=${event?.model} latencyMs=${event?.latencyMs} durationMs=${event?.durationMs} computed=${llmDuration} dashboardClient=${!!globalDashboardClient}`);
+			if (llmDuration > 0) globalDashboardClient?.recordLlmDuration(llmDuration);
 		});
 		api.on("message_sending", async (event, ctx) => {
 			const sessionKey = ctx.sessionKey ?? "";
@@ -2791,10 +2482,6 @@ const openClawGuardPlugin = {
 								log.warn(`Failed to report detection to dashboard: ${err}`);
 							});
 						} else if (!globalDashboardClient) log.warn("Dashboard client not initialized - scan results not reported to dashboard");
-						if (globalBusinessReporter && batchResult.results) for (const fileResult of batchResult.results) {
-							const categories = fileResult.findings?.map((f) => f.scanner) ?? [];
-							globalBusinessReporter.recordScanResult("static", categories, fileResult.riskLevel !== "safe");
-						}
 					}
 					const result = {
 						filesScanned: totalFilesScanned,
@@ -2896,10 +2583,6 @@ const openClawGuardPlugin = {
 							const riskCount = result.results.filter((r) => r.riskLevel !== "safe").length;
 							if (riskCount > 0) log.info(`Auto-scan found ${riskCount} file(s) with security risks`);
 						}
-						if (globalBusinessReporter && result.results) for (const fileResult of result.results) {
-							const categories = fileResult.findings?.map((f) => f.scanner) ?? [];
-							globalBusinessReporter.recordScanResult("static", categories, fileResult.riskLevel !== "safe");
-						}
 					} catch (err) {
 						log.debug?.(`Auto-scan failed: ${err}`);
 					}
@@ -3028,10 +2711,6 @@ const openClawGuardPlugin = {
 			await globalEventReporter.stop();
 			globalEventReporter = null;
 		}
-		if (globalBusinessReporter) {
-			await globalBusinessReporter.stop();
-			globalBusinessReporter = null;
-		}
 		if (globalConfigSync) {
 			globalConfigSync.stop();
 			globalConfigSync = null;

package/dist/extensions/discord/node_modules/.package-lock.json

@@ -90,9 +90,9 @@
       }
     },
     "node_modules/@napi-rs/wasm-runtime": {
-      "version": "1.1.2",
-      "resolved": "https://registry.npmjs.org/@napi-rs/wasm-runtime/-/wasm-runtime-1.1.2.tgz",
-      "integrity": "sha512-sNXv5oLJ7ob93xkZ1XnxisYhGYXfaG9f65/ZgYuAu3qt7b3NadcOEhLvx28hv31PgX8SZJRYrAIPQilQmFpLVw==",
+      "version": "1.1.3",
+      "resolved": "https://registry.npmjs.org/@napi-rs/wasm-runtime/-/wasm-runtime-1.1.3.tgz",
+      "integrity": "sha512-xK9sGVbJWYb08+mTJt3/YV24WxvxpXcXtP6B172paPZ+Ts69Re9dAr7lKwJoeIx8OoeuimEiRZ7umkiUVClmmQ==",
       "ideallyInert": true,
       "license": "MIT",
       "optional": true,

package/dist/extensions/feishu/node_modules/.package-lock.json

@@ -497,9 +497,9 @@
       "license": "MIT"
     },
     "node_modules/qs": {
-      "version": "6.15.0",
-      "resolved": "https://registry.npmjs.org/qs/-/qs-6.15.0.tgz",
-      "integrity": "sha512-mAZTtNCeetKMH+pSjrb76NAM8V9a05I9aBZOHztWy/UqcJdQYNsf59vrRKWnojAT9Y+GbIvoTBC++CPHqpDBhQ==",
+      "version": "6.15.1",
+      "resolved": "https://registry.npmjs.org/qs/-/qs-6.15.1.tgz",
+      "integrity": "sha512-6YHEFRL9mfgcAvql/XhwTvf5jKcOiiupt2FiJxHkiX1z4j7WL8J/jRHYLluORvc1XxB5rV20KoeK00gVJamspg==",
       "license": "BSD-3-Clause",
       "dependencies": {
         "side-channel": "^1.1.0"
@@ -531,13 +531,13 @@
       }
     },
     "node_modules/side-channel-list": {
-      "version": "1.0.0",
-      "resolved": "https://registry.npmjs.org/side-channel-list/-/side-channel-list-1.0.0.tgz",
-      "integrity": "sha512-FCLHtRD/gnpCiCHEiJLOwdmFP+wzCmDEkc9y7NsYxeF4u7Btsn1ZuwgwJGxImImHicJArLP4R0yX4c2KCrMrTA==",
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/side-channel-list/-/side-channel-list-1.0.1.tgz",
+      "integrity": "sha512-mjn/0bi/oUURjc5Xl7IaWi/OJJJumuoJFQJfDDyO46+hBWsfaVM65TBHq2eoZBhzl9EchxOijpkbRC8SVBQU0w==",
       "license": "MIT",
       "dependencies": {
         "es-errors": "^1.3.0",
-        "object-inspect": "^1.13.3"
+        "object-inspect": "^1.13.4"
       },
       "engines": {
         "node": ">= 0.4"

package/dist/extensions/feishu/node_modules/qs/CHANGELOG.md

@@ -1,3 +1,9 @@
+## **6.15.1**
+- [Fix] `parse`: `parameterLimit: Infinity` with `throwOnLimitExceeded: true` silently drops all parameters
+- [Deps] update `@ljharb/eslint-config`
+- [Dev Deps] update `@ljharb/eslint-config`, `iconv-lite`
+- [Tests] increase coverage
+
 ## **6.15.0**
 - [New] `parse`: add `strictMerge` option to wrap object/primitive conflicts in an array (#425, #122)
 - [Fix] `duplicates` option should not apply to bracket notation keys (#514)