clawpowers 2.2.5 → 2.2.7

package/SECURITY.md

@@ -1,52 +1,52 @@
-# Security Policy
-
-## Supported Versions
-
-| Version | Supported |
-| ------- | --------- |
-| 2.2.x   | ✅ |
-| 2.1.x   | ✅ |
-| < 2.1.0 | ❌ |
-
-## Reporting a Vulnerability
-
-Please report security issues privately to **bill@ai-agent-economy.com**.
-
-Include:
-- affected version
-- reproduction steps
-- impact assessment
-- whether the issue affects native, WASM, or TypeScript fallback paths
-
-Please do not open public GitHub issues for unpatched vulnerabilities.
-
-## Response Expectations
-
-- initial acknowledgement: within 3 business days
-- severity triage: within 5 business days
-- fix target: depends on impact and exploitability
-
-## Scope Notes
-
-ClawPowers ships wallet, payment, memory, and RSI primitives. Security-sensitive areas include:
-- private key generation and storage
-- payment policy enforcement
-- x402 header creation and parsing
-- native and WASM crypto fallbacks
-- local file-backed memory stores
-
-## Data Handling
-
-ClawPowers is designed for local-first operation.
-
-- no telemetry is sent by the library itself
-- secrets are not intentionally exfiltrated by package code
-- payment, wallet, and memory data storage behavior depends on the consuming application configuration
-
-## Disclosure Policy
-
-We prefer coordinated disclosure. After a fix is available, we may publish:
-- affected versions
-- impact summary
-- remediation guidance
-- CVE or advisory references when applicable
+# Security Policy
+
+## Supported Versions
+
+| Version | Supported |
+| ------- | --------- |
+| 2.2.x   | ✅ |
+| 2.1.x   | ✅ |
+| < 2.1.0 | ❌ |
+
+## Reporting a Vulnerability
+
+Please report security issues privately to **bill@ai-agent-economy.com**.
+
+Include:
+- affected version
+- reproduction steps
+- impact assessment
+- whether the issue affects native, WASM, or TypeScript fallback paths
+
+Please do not open public GitHub issues for unpatched vulnerabilities.
+
+## Response Expectations
+
+- initial acknowledgement: within 3 business days
+- severity triage: within 5 business days
+- fix target: depends on impact and exploitability
+
+## Scope Notes
+
+ClawPowers ships wallet, payment, memory, and RSI primitives. Security-sensitive areas include:
+- private key generation and storage
+- payment policy enforcement
+- x402 header creation and parsing
+- native and WASM crypto fallbacks
+- local file-backed memory stores
+
+## Data Handling
+
+ClawPowers is designed for local-first operation.
+
+- no telemetry is sent by the library itself
+- secrets are not intentionally exfiltrated by package code
+- payment, wallet, and memory data storage behavior depends on the consuming application configuration
+
+## Disclosure Policy
+
+We prefer coordinated disclosure. After a fix is available, we may publish:
+- affected versions
+- impact summary
+- remediation guidance
+- CVE or advisory references when applicable

package/dist/index.d.ts

@@ -347,7 +347,7 @@ declare function setConfigValue(config: ConfigFile, key: string, value: string):
  * Default paths, version, config values, RSI tier boundaries.
  */
 
-declare const VERSION = "2.2.0";
+declare const VERSION = "2.2.7";
 declare const PACKAGE_NAME = "clawpowers";
 declare const CLAWPOWERS_HOME: string;
 declare const DEFAULT_CONFIG: ConfigFile;
@@ -1085,14 +1085,26 @@ declare class SkillExecutor {
 }
 
 interface WalletConfig {
-    readonly chain: 'base' | 'ethereum' | 'polygon';
+    readonly chain: 'base' | 'ethereum' | 'polygon' | 'local';
     readonly dataDir: string;
+    /**
+     * Passphrase used to encrypt newly generated/imported wallet key files.
+     * If omitted, ClawPowers generates a high-entropy passphrase and returns it
+     * on the WalletInfo object from generateWallet()/importWallet().
+     */
+    readonly passphrase?: string;
 }
 interface WalletInfo {
     readonly address: string;
     readonly chain: string;
     readonly createdAt: string;
     readonly keyFile: string;
+    /**
+     * Encryption passphrase for the key file. Present on WalletInfo returned by
+     * generateWallet()/importWallet(); intentionally absent from listWallets()
+     * because the passphrase is never persisted in plaintext.
+     */
+    readonly passphrase?: string;
 }
 interface SignedMessage {
     readonly message: string;
@@ -1123,7 +1135,8 @@ declare class WalletManager {
 
 /**
  * Generate a new Ethereum-compatible wallet.
- * Private key is encrypted with a random passphrase and stored to disk.
+ * Private key is encrypted with config.passphrase or a generated high-entropy passphrase.
+ * The returned WalletInfo includes the passphrase needed for later key-file signing.
  */
 declare function generateWallet(config: WalletConfig): Promise<WalletInfo>;
 /**
@@ -1132,8 +1145,7 @@ declare function generateWallet(config: WalletConfig): Promise<WalletInfo>;
 declare function importWallet(privateKeyHex: string, config: WalletConfig): Promise<WalletInfo>;
 /**
  * Sign a message using an encrypted key file and passphrase (returns structured result).
- * Uses secp256k1 ECDSA over Keccak-256(UTF-8 message) when native/WASM tiers provide it;
- * otherwise falls back to HMAC-SHA256 for backward compatibility.
+ * Uses secp256k1 ECDSA over Keccak-256(UTF-8 message) when native/WASM tiers provide it.
  */
 declare function signMessage(message: string, keyFile: string, passphrase: string): Promise<SignedMessage>;
 /**

package/dist/index.js

@@ -448,7 +448,7 @@ import { z } from "zod";
 // src/constants.ts
 import { join } from "path";
 import { homedir } from "os";
-var VERSION = "2.2.0";
+var VERSION = "2.2.7";
 var PACKAGE_NAME = "clawpowers";
 var CLAWPOWERS_HOME = join(homedir(), ".clawpowers");
 var CONFIG_PATH = join(CLAWPOWERS_HOME, "config.json");
@@ -2287,12 +2287,60 @@ var RSIAuditLog = class {
 
 // src/rsi/auto-research.ts
 import { randomUUID as randomUUID4 } from "crypto";
-import { execSync } from "child_process";
-import { mkdirSync as mkdirSync2, existsSync as existsSync8, writeFileSync as writeFileSync2 } from "fs";
+import { execFileSync } from "child_process";
+import { mkdirSync as mkdirSync2, existsSync as existsSync8, rmSync, writeFileSync as writeFileSync2 } from "fs";
 import { join as join4 } from "path";
 import { tmpdir } from "os";
 var MIN_CONFIDENCE = 0.3;
 var REQUIRED_PASSING_RUNS = 3;
+function tokenizeWords(value) {
+  const tokens = [];
+  let current = "";
+  for (const char of value.toLowerCase()) {
+    const isAlphaNum = char >= "a" && char <= "z" || char >= "0" && char <= "9";
+    if (isAlphaNum) {
+      current += char;
+      continue;
+    }
+    if (current.length > 3) {
+      tokens.push(current);
+    }
+    current = "";
+  }
+  if (current.length > 3) {
+    tokens.push(current);
+  }
+  return tokens;
+}
+function splitSearchTerms(value) {
+  return value.split(" ").map((part) => part.trim()).filter((part) => part.length > 3);
+}
+function slugify(value) {
+  let slug = "";
+  let lastWasDash = false;
+  for (const char of value.toLowerCase()) {
+    const isAlphaNum = char >= "a" && char <= "z" || char >= "0" && char <= "9";
+    if (isAlphaNum) {
+      slug += char;
+      lastWasDash = false;
+      continue;
+    }
+    if (!lastWasDash && slug.length > 0) {
+      slug += "-";
+      lastWasDash = true;
+    }
+  }
+  if (slug.endsWith("-")) {
+    slug = slug.slice(0, -1);
+  }
+  return slug.slice(0, 40);
+}
+function sanitizeShellComment(value, maxLength) {
+  return value.replace(/[\r\n]+/g, " ").replace(/[\x00-\x08\x0b\x0c\x0e-\x1f\x7f]/g, "").slice(0, maxLength);
+}
+function shellSingleQuote(value) {
+  return `'${value.replace(/'/g, `'"'"'`)}'`;
+}
 function buildSearchQuery(failure) {
   const clean = failure.error.replace(/\x1b\[[0-9;]*m/g, "");
   const firstLine = clean.split("\n")[0]?.trim() ?? clean.trim();
@@ -2318,9 +2366,9 @@ function scoreConfidence(candidate, failure) {
       break;
   }
   const failureWords = new Set(
-    failure.taskDescription.toLowerCase().split(/\W+/).filter((w) => w.length > 3)
+    tokenizeWords(failure.taskDescription)
   );
-  const approachWords = candidate.approach.toLowerCase().split(/\W+/);
+  const approachWords = tokenizeWords(candidate.approach);
   const matches = approachWords.filter((w) => failureWords.has(w)).length;
   const overlap = Math.min(matches / Math.max(failureWords.size, 1), 0.25);
   base += overlap;
@@ -2367,7 +2415,7 @@ var AutoResearcher = class {
       const testScript = this.buildTestScript(candidate, task, sandboxDir);
       const scriptPath = join4(sandboxDir, "test.sh");
       writeFileSync2(scriptPath, testScript, { mode: 493 });
-      const output = execSync(`bash "${scriptPath}"`, {
+      const output = execFileSync("bash", ["./test.sh"], {
         cwd: sandboxDir,
         timeout: 3e4,
         encoding: "utf-8",
@@ -2389,7 +2437,7 @@ var AutoResearcher = class {
       };
     } finally {
       try {
-        execSync(`rm -rf "${sandboxDir}"`, { timeout: 5e3, stdio: "ignore" });
+        rmSync(sandboxDir, { recursive: true, force: true });
       } catch {
       }
     }
@@ -2445,8 +2493,8 @@ var AutoResearcher = class {
   searchSkillCatalog(failure) {
     try {
       const { SKILLS_CATALOG: SKILLS_CATALOG2 } = (init_catalog(), __toCommonJS(catalog_exports));
-      const errorTokens = failure.error.toLowerCase().split(/\W+/).filter((t) => t.length > 3);
-      const taskTokens = failure.taskDescription.toLowerCase().split(/\W+/).filter((t) => t.length > 3);
+      const errorTokens = tokenizeWords(failure.error);
+      const taskTokens = tokenizeWords(failure.taskDescription);
       const relevantTokens = /* @__PURE__ */ new Set([...errorTokens, ...taskTokens]);
       return SKILLS_CATALOG2.filter((skill) => {
         const haystack = `${skill.name} ${skill.description}`.toLowerCase();
@@ -2468,16 +2516,16 @@ var AutoResearcher = class {
   }
   async searchNpmRegistry(failure) {
     const query = buildSearchQuery(failure);
-    const keywords = query.split(/\s+/).filter((w) => w.length > 3).slice(0, 5).join("+");
+    const keywords = splitSearchTerms(query).slice(0, 5);
+    if (keywords.length === 0) {
+      return [];
+    }
     try {
-      const raw = execSync(
-        `npm search ${keywords} --json --no-description 2>/dev/null`,
-        {
-          timeout: 15e3,
-          encoding: "utf-8",
-          stdio: ["ignore", "pipe", "ignore"]
-        }
-      );
+      const raw = execFileSync("npm", ["search", ...keywords, "--json", "--no-description"], {
+        timeout: 15e3,
+        encoding: "utf-8",
+        stdio: ["ignore", "pipe", "ignore"]
+      });
       const results = JSON.parse(raw);
       return results.slice(0, 3).map((pkg) => {
         const base = {
@@ -2519,9 +2567,9 @@ var AutoResearcher = class {
       "set -euo pipefail",
       "",
       "# AutoResearch sandbox test",
-      `# Task: ${task.description.replace(/'/g, "'\\''").slice(0, 200)}`,
+      `# Task: ${sanitizeShellComment(task.description, 200)}`,
       `# Candidate source: ${candidate.source}`,
-      `# Candidate: ${candidate.description.replace(/'/g, "'\\''").slice(0, 200)}`,
+      `# Candidate: ${sanitizeShellComment(candidate.description, 200)}`,
       ""
     ];
     if (candidate.source === "npm-registry") {
@@ -2548,7 +2596,7 @@ var AutoResearcher = class {
     } else {
       const q = buildSearchQuery({ error: candidate.description, taskDescription: task.description, executionSteps: [], skillsUsed: [], attemptCount: 1 });
       if (q.trim().length > 0) {
-        lines.push(`echo "web-search candidate: query is '${q.replace(/'/g, "").slice(0, 100)}'"`);
+        lines.push(`echo ${shellSingleQuote(`web-search candidate: query is ${q.slice(0, 100)}`)}`);
         lines.push("exit 0");
       } else {
         lines.push('echo "web-search candidate: empty query" >&2');
@@ -2558,13 +2606,13 @@ var AutoResearcher = class {
     lines.push("");
     lines.push("# Success criteria check");
     for (const criterion of task.successCriteria.slice(0, 2)) {
-      lines.push(`echo "Criterion: ${criterion.replace(/'/g, "").slice(0, 100)}"`);
+      lines.push(`echo ${shellSingleQuote(`Criterion: ${criterion.slice(0, 100)}`)}`);
     }
     lines.push('echo "Test passed"');
     return lines.join("\n") + "\n";
   }
   deriveSkillName(candidate) {
-    const slug = candidate.description.toLowerCase().replace(/[^a-z0-9]+/g, "-").replace(/^-+|-+$/g, "").slice(0, 40);
+    const slug = slugify(candidate.description);
     return `auto-${slug}`;
   }
   renderSkillMd(def) {
@@ -2616,12 +2664,66 @@ async function runAutoResearch(failure, task, skillsDir) {
 // src/skills/loader.ts
 import { readdirSync, readFileSync as readFileSync2, existsSync as existsSync9, statSync } from "fs";
 import { join as join5 } from "path";
+function stripQuotes(value) {
+  if (value.length >= 2) {
+    const first = value[0];
+    const last = value[value.length - 1];
+    if (first === '"' && last === '"' || first === "'" && last === "'") {
+      return value.slice(1, -1);
+    }
+  }
+  return value;
+}
+function splitYamlKeyValue(line) {
+  const colonIndex = line.indexOf(":");
+  if (colonIndex <= 0) {
+    return null;
+  }
+  const key = line.slice(0, colonIndex).trim();
+  if (!key) {
+    return null;
+  }
+  for (const char of key) {
+    const isAlphaNum = char >= "a" && char <= "z" || char >= "A" && char <= "Z" || char >= "0" && char <= "9" || char === "_";
+    if (!isAlphaNum) {
+      return null;
+    }
+  }
+  return {
+    key,
+    value: line.slice(colonIndex + 1).trim()
+  };
+}
+function parseInlineArray(value) {
+  if (!value.startsWith("[") || !value.endsWith("]")) {
+    return null;
+  }
+  const inner = value.slice(1, -1).trim();
+  if (!inner) {
+    return [];
+  }
+  return inner.split(",").map((item) => stripQuotes(item.trim())).filter(Boolean);
+}
+function parseListItem(line) {
+  if (!line.startsWith("-")) {
+    return null;
+  }
+  const value = line.slice(1).trim();
+  if (!value) {
+    return null;
+  }
+  return stripQuotes(value);
+}
 function parseFrontmatter(content) {
-  const match = content.match(/^---\n([\s\S]*?)\n---/);
-  if (!match?.[1]) {
+  const normalized = content.replace(/\r\n/g, "\n");
+  if (!normalized.startsWith("---\n")) {
+    return {};
+  }
+  const endIndex = normalized.indexOf("\n---", 4);
+  if (endIndex === -1) {
     return {};
   }
-  const yamlText = match[1];
+  const yamlText = normalized.slice(4, endIndex);
   const result = {};
   const lines = yamlText.split("\n");
   let currentKey = "";
@@ -2631,10 +2733,10 @@ function parseFrontmatter(content) {
   for (const line of lines) {
     const trimmed = line.trim();
     if (trimmed === "" || trimmed.startsWith("#")) continue;
-    const topLevel = line.match(/^(\w+):\s*(.*)$/);
-    if (topLevel?.[1]) {
-      currentKey = topLevel[1];
-      const val = topLevel[2]?.trim().replace(/^["']|["']$/g, "") ?? "";
+    const topLevel = line === trimmed ? splitYamlKeyValue(trimmed) : null;
+    if (topLevel) {
+      currentKey = topLevel.key;
+      const val = stripQuotes(topLevel.value);
       if (currentKey === "name" && val) result.name = val;
       if (currentKey === "description" && val) result.description = val;
       inRequires = false;
@@ -2646,31 +2748,30 @@ function parseFrontmatter(content) {
       continue;
     }
     if (inRequires) {
-      const reqKey = trimmed.match(/^(\w+):\s*(.*)$/);
-      if (reqKey?.[1]) {
-        requiresKey = reqKey[1];
-        const inlineArr = reqKey[2]?.match(/\[(.*)\]/);
-        if (inlineArr?.[1]) {
-          const items = inlineArr[1].split(",").map((s) => s.trim().replace(/^["']|["']$/g, ""));
+      const reqKey = splitYamlKeyValue(trimmed);
+      if (reqKey) {
+        requiresKey = reqKey.key;
+        const items = parseInlineArray(reqKey.value);
+        if (items) {
           if (requiresKey === "bins") requires.bins = items;
           if (requiresKey === "env") requires.env = items;
           if (requiresKey === "config") requires.config = items;
         }
         continue;
       }
-      const listItem = trimmed.match(/^-\s*["']?(.+?)["']?$/);
-      if (listItem?.[1] && requiresKey) {
+      const listItem = parseListItem(trimmed);
+      if (listItem && requiresKey) {
         if (requiresKey === "bins") {
           requires.bins = requires.bins ?? [];
-          requires.bins.push(listItem[1]);
+          requires.bins.push(listItem);
         }
         if (requiresKey === "env") {
           requires.env = requires.env ?? [];
-          requires.env.push(listItem[1]);
+          requires.env.push(listItem);
         }
         if (requiresKey === "config") {
           requires.config = requires.config ?? [];
-          requires.config.push(listItem[1]);
+          requires.config.push(listItem);
         }
       }
     }
@@ -2791,6 +2892,7 @@ var SCRYPT_P = 1;
 var KEY_LENGTH = 32;
 var IV_LENGTH = 12;
 var AUTH_TAG_LENGTH = 16;
+var GENERATED_PASSPHRASE_BYTES = 32;
 function addressFromKeyMaterial(keyMaterial) {
   const digestHex = digestForWalletAddress(keyMaterial);
   const hash = Buffer.from(digestHex.replace(/^0x/, ""), "hex");
@@ -2803,6 +2905,13 @@ function deriveKey(passphrase, salt) {
     p: SCRYPT_P
   });
 }
+function resolvePassphrase(config) {
+  const passphrase = config.passphrase ?? randomBytes2(GENERATED_PASSPHRASE_BYTES).toString("hex");
+  if (passphrase.length === 0) {
+    throw new Error("Wallet passphrase must not be empty");
+  }
+  return passphrase;
+}
 function encryptPrivateKey(privateKey, passphrase) {
   const salt = randomBytes2(32);
   const key = deriveKey(passphrase, salt);
@@ -2845,7 +2954,32 @@ async function ensureDir(dir) {
     await mkdir7(dir, { recursive: true });
   }
 }
+async function writeEncryptedWallet(privateKey, address, config, createdAt, passphrase) {
+  const encrypted = encryptPrivateKey(privateKey, passphrase);
+  const keyFileData = {
+    version: 1,
+    address,
+    chain: config.chain,
+    createdAt,
+    crypto: {
+      cipher: "aes-256-gcm",
+      ciphertext: encrypted.ciphertext,
+      iv: encrypted.iv,
+      authTag: encrypted.authTag,
+      salt: encrypted.salt,
+      scryptParams: { N: SCRYPT_N, r: SCRYPT_R, p: SCRYPT_P }
+    }
+  };
+  await ensureDir(config.dataDir);
+  const keyFileName = `${address.slice(2, 10)}-${Date.now()}.json`;
+  const keyFilePath = join6(config.dataDir, keyFileName);
+  await writeFile4(keyFilePath, JSON.stringify(keyFileData, null, 2) + "\n", "utf-8");
+  return keyFilePath;
+}
 async function signMessageFromKeyFile(message, keyFile, passphrase) {
+  if (passphrase.length === 0) {
+    throw new Error("Wallet passphrase must not be empty");
+  }
   const content = await readFile7(keyFile, "utf-8");
   const keyFileData = JSON.parse(content);
   const privateKey = decryptPrivateKey(
@@ -2866,14 +3000,9 @@ async function signMessageFromKeyFile(message, keyFile, passphrase) {
       address: keyFileData.address
     };
   }
-  const { createHmac } = await import("crypto");
-  dlog("signMessage (keyfile): HMAC-SHA256 legacy (no secp256k1/keccak tier)");
-  const signature = createHmac("sha256", privateKey).update(message).digest("hex");
-  return {
-    message,
-    signature: "0x" + signature,
-    address: keyFileData.address
-  };
+  throw new Error(
+    `Ethereum signing requires Keccak-256 + secp256k1 (Tier 1 native or Tier 2 WASM). Current active tier is "${getActiveTier()}" which cannot produce a valid EVM signature. Install the native addon or enable the WASM tier before calling signMessage().`
+  );
 }
 async function signMessageFromPrivateKey(privateKeyHex, message) {
   const cleaned = privateKeyHex.replace(/^0x/i, "");
@@ -2898,31 +3027,14 @@ async function generateWallet(config) {
   const privateKeyHex = privateKey.toString("hex");
   const address = generateAddress(privateKeyHex);
   const createdAt = (/* @__PURE__ */ new Date()).toISOString();
-  const passphrase = randomBytes2(16).toString("hex");
-  const encrypted = encryptPrivateKey(privateKey, passphrase);
-  const keyFileData = {
-    version: 1,
-    address,
-    chain: config.chain,
-    createdAt,
-    crypto: {
-      cipher: "aes-256-gcm",
-      ciphertext: encrypted.ciphertext,
-      iv: encrypted.iv,
-      authTag: encrypted.authTag,
-      salt: encrypted.salt,
-      scryptParams: { N: SCRYPT_N, r: SCRYPT_R, p: SCRYPT_P }
-    }
-  };
-  await ensureDir(config.dataDir);
-  const keyFileName = `${address.slice(2, 10)}-${Date.now()}.json`;
-  const keyFilePath = join6(config.dataDir, keyFileName);
-  await writeFile4(keyFilePath, JSON.stringify(keyFileData, null, 2) + "\n", "utf-8");
+  const passphrase = resolvePassphrase(config);
+  const keyFilePath = await writeEncryptedWallet(privateKey, address, config, createdAt, passphrase);
   return {
     address,
     chain: config.chain,
     createdAt,
-    keyFile: keyFilePath
+    keyFile: keyFilePath,
+    passphrase
   };
 }
 async function importWallet(privateKeyHex, config) {
@@ -2933,31 +3045,14 @@ async function importWallet(privateKeyHex, config) {
   const privateKey = Buffer.from(cleaned, "hex");
   const address = generateAddress(cleaned);
   const createdAt = (/* @__PURE__ */ new Date()).toISOString();
-  const passphrase = randomBytes2(16).toString("hex");
-  const encrypted = encryptPrivateKey(privateKey, passphrase);
-  const keyFileData = {
-    version: 1,
-    address,
-    chain: config.chain,
-    createdAt,
-    crypto: {
-      cipher: "aes-256-gcm",
-      ciphertext: encrypted.ciphertext,
-      iv: encrypted.iv,
-      authTag: encrypted.authTag,
-      salt: encrypted.salt,
-      scryptParams: { N: SCRYPT_N, r: SCRYPT_R, p: SCRYPT_P }
-    }
-  };
-  await ensureDir(config.dataDir);
-  const keyFileName = `${address.slice(2, 10)}-${Date.now()}.json`;
-  const keyFilePath = join6(config.dataDir, keyFileName);
-  await writeFile4(keyFilePath, JSON.stringify(keyFileData, null, 2) + "\n", "utf-8");
+  const passphrase = resolvePassphrase(config);
+  const keyFilePath = await writeEncryptedWallet(privateKey, address, config, createdAt, passphrase);
   return {
     address,
     chain: config.chain,
     createdAt,
-    keyFile: keyFilePath
+    keyFile: keyFilePath,
+    passphrase
   };
 }
 async function signMessage(a, b, c) {
@@ -3457,7 +3552,7 @@ export {
  * Drop-in capability layer: payments, memory, RSI, wallet.
  * No agent control loop — bring your own agent.
  *
- * @version 2.2.0
+ * @version 2.2.6
  * @license BSL-1.1
  * @patent-pending
  */