npm - clawvault - Versions diffs - 3.1.0 → 3.2.0 - Mend

clawvault 3.1.0 → 3.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (289) hide show

package/README.md +422 -141
package/bin/clawvault.js +10 -2
package/bin/command-registration.test.js +3 -1
package/bin/command-runtime.js +9 -1
package/bin/register-core-commands.js +23 -28
package/bin/register-maintenance-commands.js +39 -3
package/bin/register-query-commands.js +58 -29
package/bin/register-tailscale-commands.js +106 -0
package/bin/register-task-commands.js +18 -1
package/bin/register-task-commands.test.js +16 -0
package/bin/register-vault-operations-commands.js +29 -1
package/bin/register-workgraph-commands.js +1368 -0
package/dashboard/lib/graph-diff.js +104 -0
package/dashboard/lib/graph-diff.test.js +75 -0
package/dashboard/lib/vault-parser.js +556 -0
package/dashboard/lib/vault-parser.test.js +254 -0
package/dashboard/public/app.js +796 -0
package/dashboard/public/index.html +52 -0
package/dashboard/public/styles.css +221 -0
package/dashboard/server.js +374 -0
package/dist/{chunk-F2JEUD4J.js → chunk-23YDQ3QU.js} +6 -8
package/dist/{chunk-C7OK5WKP.js → chunk-2JQ3O2YL.js} +4 -4
package/dist/{chunk-VR5NE7PZ.js → chunk-2RAZ4ZFE.js} +1 -1
package/dist/chunk-2ZDO52B4.js +52 -0
package/dist/{chunk-ZZA73MFY.js → chunk-33DOSHTA.js} +176 -36
package/dist/chunk-33VSQP4J.js +37 -0
package/dist/chunk-4BQTQMJP.js +93 -0
package/dist/{chunk-GUKMRGM7.js → chunk-4OXMU5S2.js} +1 -1
package/dist/{chunk-62YTUT6J.js → chunk-4PY655YM.js} +15 -3
package/dist/chunk-6FH3IULF.js +352 -0
package/dist/{chunk-3NSBOUT3.js → chunk-77Q5CSPJ.js} +404 -80
package/dist/{chunk-4VQTUVH7.js → chunk-7YZWHM36.js} +52 -26
package/dist/chunk-BSJ6RIT7.js +447 -0
package/dist/chunk-BUEW6IIK.js +364 -0
package/dist/{chunk-LI4O6NVK.js → chunk-CLJTREDS.js} +74 -14
package/dist/chunk-EK6S23ZB.js +469 -0
package/dist/{chunk-LNJA2UGL.js → chunk-ESFLMDRB.js} +9 -86
package/dist/{chunk-H34S76MB.js → chunk-ESVS6K2B.js} +6 -6
package/dist/{chunk-WAZ3NLWL.js → chunk-F55HGNU4.js} +0 -47
package/dist/{chunk-QK3UCXWL.js → chunk-FHFUXL6G.js} +2 -2
package/dist/{chunk-H62BP7RI.js → chunk-GAOWA7GR.js} +212 -46
package/dist/chunk-GGA32J2R.js +784 -0
package/dist/chunk-GNJL4YGR.js +79 -0
package/dist/chunk-IVRIKYFE.js +520 -0
package/dist/chunk-MDIH26GC.js +183 -0
package/dist/{chunk-LYHGEHXG.js → chunk-MFAWT5O5.js} +0 -1
package/dist/chunk-MM6QGW3P.js +207 -0
package/dist/{chunk-P5EPF6MB.js → chunk-MW5C6ZQA.js} +110 -13
package/dist/chunk-NCKFNBHJ.js +257 -0
package/dist/{chunk-QBLMXKF2.js → chunk-OIWVQYQF.js} +1 -1
package/dist/{chunk-42MXU7A6.js → chunk-P62WHA27.js} +58 -47
package/dist/chunk-PBACDKKP.js +66 -0
package/dist/{chunk-VGLOTGAS.js → chunk-QSHD36LH.js} +2 -2
package/dist/{chunk-OZ7RIXTO.js → chunk-QSRRMEYM.js} +2 -2
package/dist/chunk-QVEERJSP.js +152 -0
package/dist/{chunk-N2AXRYLC.js → chunk-QWQ3TIKS.js} +1 -1
package/dist/{chunk-3DHXQHYG.js → chunk-R2MIW5G7.js} +1 -1
package/dist/{chunk-SJSFRIYS.js → chunk-SLXOR3CC.js} +2 -2
package/dist/chunk-SS4B7P7V.js +99 -0
package/dist/{chunk-JY6FYXIT.js → chunk-STCQGCEQ.js} +6 -11
package/dist/chunk-TIGW564L.js +628 -0
package/dist/chunk-U4O6C46S.js +154 -0
package/dist/{chunk-ITPEXLHA.js → chunk-URXDAUVH.js} +24 -5
package/dist/chunk-VSL7KY3M.js +189 -0
package/dist/{chunk-U55BGUAU.js → chunk-W4SPAEE7.js} +6 -6
package/dist/chunk-WMGIIABP.js +15 -0
package/dist/{chunk-33UGEQRT.js → chunk-X3SPPUFG.js} +151 -64
package/dist/chunk-Y6VJKXGL.js +373 -0
package/dist/{chunk-3WRJEKN4.js → chunk-ZN54U2OZ.js} +123 -10
package/dist/cli/index.js +34 -24
package/dist/commands/archive.js +3 -3
package/dist/commands/backlog.js +3 -3
package/dist/commands/blocked.js +3 -3
package/dist/commands/canvas.d.ts +15 -0
package/dist/commands/canvas.js +200 -0
package/dist/commands/checkpoint.js +2 -2
package/dist/commands/compat.js +2 -2
package/dist/commands/context.js +8 -6
package/dist/commands/doctor.d.ts +11 -7
package/dist/commands/doctor.js +18 -16
package/dist/commands/embed.js +5 -6
package/dist/commands/entities.js +2 -2
package/dist/commands/graph.js +4 -4
package/dist/commands/inject.d.ts +1 -1
package/dist/commands/inject.js +5 -6
package/dist/commands/kanban.js +4 -4
package/dist/commands/link.js +5 -5
package/dist/commands/migrate-observations.js +4 -4
package/dist/commands/observe.d.ts +0 -1
package/dist/commands/observe.js +14 -13
package/dist/commands/project.js +5 -5
package/dist/commands/rebuild-embeddings.d.ts +21 -0
package/dist/commands/rebuild-embeddings.js +91 -0
package/dist/commands/rebuild.js +12 -11
package/dist/commands/recover.js +3 -3
package/dist/commands/reflect.js +6 -7
package/dist/commands/repair-session.js +1 -1
package/dist/commands/replay.js +14 -14
package/dist/commands/session-recap.js +1 -1
package/dist/commands/setup.d.ts +2 -89
package/dist/commands/setup.js +3 -21
package/dist/commands/shell-init.js +1 -1
package/dist/commands/sleep.d.ts +1 -1
package/dist/commands/sleep.js +20 -19
package/dist/commands/status.d.ts +2 -0
package/dist/commands/status.js +57 -35
package/dist/commands/sync-bd.d.ts +10 -0
package/dist/commands/sync-bd.js +10 -0
package/dist/commands/tailscale.d.ts +52 -0
package/dist/commands/tailscale.js +26 -0
package/dist/commands/task.js +4 -4
package/dist/commands/template.js +2 -2
package/dist/commands/wake.d.ts +1 -1
package/dist/commands/wake.js +11 -10
package/dist/commands/workgraph.d.ts +124 -0
package/dist/commands/workgraph.js +38 -0
package/dist/index.d.ts +341 -191
package/dist/index.js +446 -116
package/dist/{inject-Bzi5E-By.d.ts → inject-DYUrDqQO.d.ts} +3 -3
package/dist/ledger-B7g7jhqG.d.ts +44 -0
package/dist/lib/auto-linker.js +2 -2
package/dist/lib/canvas-layout.d.ts +115 -0
package/dist/lib/canvas-layout.js +35 -0
package/dist/lib/config.d.ts +27 -3
package/dist/lib/config.js +4 -2
package/dist/lib/entity-index.js +1 -1
package/dist/lib/project-utils.js +4 -4
package/dist/lib/session-repair.js +1 -1
package/dist/lib/session-utils.js +1 -1
package/dist/lib/tailscale.d.ts +225 -0
package/dist/lib/tailscale.js +50 -0
package/dist/lib/task-utils.js +3 -3
package/dist/lib/template-engine.js +1 -1
package/dist/lib/webdav.d.ts +109 -0
package/dist/lib/webdav.js +35 -0
package/dist/onnxruntime_binding-5QEF3SUC.node +0 -0
package/dist/onnxruntime_binding-BKPKNEGC.node +0 -0
package/dist/onnxruntime_binding-FMOXGIUT.node +0 -0
package/dist/onnxruntime_binding-OI2KMXC5.node +0 -0
package/dist/onnxruntime_binding-UX44MLAZ.node +0 -0
package/dist/onnxruntime_binding-Y2W7N7WY.node +0 -0
package/dist/openclaw-plugin.d.ts +8 -0
package/dist/openclaw-plugin.js +14 -0
package/dist/registry-BR4326o0.d.ts +30 -0
package/dist/store-CA-6sKCJ.d.ts +34 -0
package/dist/thread-B9LhXNU0.d.ts +41 -0
package/dist/transformers.node-A2ZRORSQ.js +46775 -0
package/dist/{types-Y2_Um2Ls.d.ts → types-BbWJoC1c.d.ts} +1 -44
package/dist/workgraph/index.d.ts +5 -0
package/dist/workgraph/index.js +23 -0
package/dist/workgraph/ledger.d.ts +2 -0
package/dist/workgraph/ledger.js +25 -0
package/dist/workgraph/registry.d.ts +2 -0
package/dist/workgraph/registry.js +19 -0
package/dist/workgraph/store.d.ts +2 -0
package/dist/workgraph/store.js +25 -0
package/dist/workgraph/thread.d.ts +2 -0
package/dist/workgraph/thread.js +25 -0
package/dist/workgraph/types.d.ts +54 -0
package/dist/workgraph/types.js +7 -0
package/hooks/clawvault/HOOK.md +113 -0
package/hooks/clawvault/handler.js +1561 -0
package/hooks/clawvault/handler.test.js +510 -0
package/hooks/clawvault/openclaw.plugin.json +72 -0
package/openclaw.plugin.json +65 -38
package/package.json +25 -22
package/dist/chunk-3RG5ZIWI.js +0 -10
package/dist/chunk-3ZIH425O.js +0 -871
package/dist/chunk-6U6MK36V.js +0 -205
package/dist/chunk-CMB7UL7C.js +0 -327
package/dist/chunk-D2H45LON.js +0 -1074
package/dist/chunk-E7MFQB6D.js +0 -163
package/dist/chunk-GQSLDZTS.js +0 -560
package/dist/chunk-MFM6K7PU.js +0 -374
package/dist/chunk-MXSSG3QU.js +0 -42
package/dist/chunk-OCGVIN3L.js +0 -88
package/dist/chunk-PAH27GSN.js +0 -108
package/dist/chunk-YCUNCH2I.js +0 -78
package/dist/cli/index.cjs +0 -8584
package/dist/cli/index.d.cts +0 -5
package/dist/commands/archive.cjs +0 -287
package/dist/commands/archive.d.cts +0 -11
package/dist/commands/backlog.cjs +0 -721
package/dist/commands/backlog.d.cts +0 -53
package/dist/commands/blocked.cjs +0 -204
package/dist/commands/blocked.d.cts +0 -26
package/dist/commands/checkpoint.cjs +0 -244
package/dist/commands/checkpoint.d.cts +0 -41
package/dist/commands/compat.cjs +0 -294
package/dist/commands/compat.d.cts +0 -28
package/dist/commands/context.cjs +0 -2990
package/dist/commands/context.d.cts +0 -2
package/dist/commands/doctor.cjs +0 -2986
package/dist/commands/doctor.d.cts +0 -21
package/dist/commands/embed.cjs +0 -232
package/dist/commands/embed.d.cts +0 -17
package/dist/commands/entities.cjs +0 -141
package/dist/commands/entities.d.cts +0 -7
package/dist/commands/graph.cjs +0 -501
package/dist/commands/graph.d.cts +0 -21
package/dist/commands/inject.cjs +0 -1636
package/dist/commands/inject.d.cts +0 -2
package/dist/commands/kanban.cjs +0 -884
package/dist/commands/kanban.d.cts +0 -63
package/dist/commands/link.cjs +0 -965
package/dist/commands/link.d.cts +0 -11
package/dist/commands/migrate-observations.cjs +0 -362
package/dist/commands/migrate-observations.d.cts +0 -19
package/dist/commands/observe.cjs +0 -4099
package/dist/commands/observe.d.cts +0 -23
package/dist/commands/project.cjs +0 -1341
package/dist/commands/project.d.cts +0 -85
package/dist/commands/rebuild.cjs +0 -3136
package/dist/commands/rebuild.d.cts +0 -11
package/dist/commands/recover.cjs +0 -361
package/dist/commands/recover.d.cts +0 -38
package/dist/commands/reflect.cjs +0 -1008
package/dist/commands/reflect.d.cts +0 -11
package/dist/commands/repair-session.cjs +0 -457
package/dist/commands/repair-session.d.cts +0 -38
package/dist/commands/replay.cjs +0 -4103
package/dist/commands/replay.d.cts +0 -16
package/dist/commands/session-recap.cjs +0 -353
package/dist/commands/session-recap.d.cts +0 -27
package/dist/commands/setup.cjs +0 -1278
package/dist/commands/setup.d.cts +0 -99
package/dist/commands/shell-init.cjs +0 -75
package/dist/commands/shell-init.d.cts +0 -7
package/dist/commands/sleep.cjs +0 -6029
package/dist/commands/sleep.d.cts +0 -36
package/dist/commands/status.cjs +0 -2737
package/dist/commands/status.d.cts +0 -52
package/dist/commands/task.cjs +0 -1236
package/dist/commands/task.d.cts +0 -97
package/dist/commands/template.cjs +0 -457
package/dist/commands/template.d.cts +0 -36
package/dist/commands/wake.cjs +0 -2627
package/dist/commands/wake.d.cts +0 -22
package/dist/context-BUGaWpyL.d.cts +0 -46
package/dist/index.cjs +0 -12373
package/dist/index.d.cts +0 -854
package/dist/inject-Bzi5E-By.d.cts +0 -137
package/dist/lib/auto-linker.cjs +0 -176
package/dist/lib/auto-linker.d.cts +0 -26
package/dist/lib/config.cjs +0 -78
package/dist/lib/config.d.cts +0 -11
package/dist/lib/entity-index.cjs +0 -84
package/dist/lib/entity-index.d.cts +0 -26
package/dist/lib/project-utils.cjs +0 -864
package/dist/lib/project-utils.d.cts +0 -97
package/dist/lib/session-repair.cjs +0 -239
package/dist/lib/session-repair.d.cts +0 -110
package/dist/lib/session-utils.cjs +0 -209
package/dist/lib/session-utils.d.cts +0 -63
package/dist/lib/task-utils.cjs +0 -1137
package/dist/lib/task-utils.d.cts +0 -208
package/dist/lib/template-engine.cjs +0 -47
package/dist/lib/template-engine.d.cts +0 -11
package/dist/plugin/index.cjs +0 -1907
package/dist/plugin/index.d.cts +0 -36
package/dist/plugin/index.d.ts +0 -36
package/dist/plugin/index.js +0 -572
package/dist/plugin/inject.cjs +0 -356
package/dist/plugin/inject.d.cts +0 -54
package/dist/plugin/inject.d.ts +0 -54
package/dist/plugin/inject.js +0 -17
package/dist/plugin/observe.cjs +0 -631
package/dist/plugin/observe.d.cts +0 -39
package/dist/plugin/observe.d.ts +0 -39
package/dist/plugin/observe.js +0 -18
package/dist/plugin/templates.cjs +0 -593
package/dist/plugin/templates.d.cts +0 -52
package/dist/plugin/templates.d.ts +0 -52
package/dist/plugin/templates.js +0 -25
package/dist/plugin/types.cjs +0 -18
package/dist/plugin/types.d.cts +0 -209
package/dist/plugin/types.d.ts +0 -209
package/dist/plugin/types.js +0 -0
package/dist/plugin/vault.cjs +0 -927
package/dist/plugin/vault.d.cts +0 -68
package/dist/plugin/vault.d.ts +0 -68
package/dist/plugin/vault.js +0 -22
package/dist/types-Y2_Um2Ls.d.cts +0 -205
package/templates/memory-event.md +0 -67
package/templates/party.md +0 -63
package/templates/primitive-registry.yaml +0 -551
package/templates/run.md +0 -68
package/templates/trigger.md +0 -68
package/templates/workspace.md +0 -50

package/dist/chunk-GNJL4YGR.js ADDED Viewed

@@ -0,0 +1,79 @@
+// src/lib/config.ts
+import * as fs from "fs";
+import * as path from "path";
+function getVaultPath() {
+  const vaultPath = process.env.CLAWVAULT_PATH;
+  if (!vaultPath) {
+    throw new Error("CLAWVAULT_PATH environment variable not set");
+  }
+  return path.resolve(vaultPath);
+}
+function findNearestVaultPath(startPath = process.cwd()) {
+  let current = path.resolve(startPath);
+  while (true) {
+    if (fs.existsSync(path.join(current, ".clawvault.json"))) {
+      return current;
+    }
+    const parent = path.dirname(current);
+    if (parent === current) {
+      return null;
+    }
+    current = parent;
+  }
+}
+function validateVaultPath(vaultPath) {
+  if (!vaultPath || typeof vaultPath !== "string") return null;
+  const resolved = path.resolve(vaultPath);
+  if (!path.isAbsolute(resolved)) return null;
+  try {
+    const stat = fs.statSync(resolved);
+    if (!stat.isDirectory()) return null;
+  } catch {
+    return null;
+  }
+  const configPath = path.join(resolved, ".clawvault.json");
+  if (!fs.existsSync(configPath)) return null;
+  return resolved;
+}
+function resolveAgentVaultPath(agentVaults, agentId) {
+  if (!agentId || typeof agentId !== "string") return null;
+  if (!agentVaults || typeof agentVaults !== "object" || Array.isArray(agentVaults)) {
+    return null;
+  }
+  const agentPath = agentVaults[agentId];
+  if (!agentPath || typeof agentPath !== "string") return null;
+  return validateVaultPath(agentPath);
+}
+function resolveVaultPath(options = {}) {
+  if (options.explicitPath) {
+    return path.resolve(options.explicitPath);
+  }
+  if (options.agentId && options.pluginConfig?.agentVaults) {
+    const agentVaultPath = resolveAgentVaultPath(
+      options.pluginConfig.agentVaults,
+      options.agentId
+    );
+    if (agentVaultPath) {
+      return agentVaultPath;
+    }
+  }
+  if (options.pluginConfig?.vaultPath) {
+    const validated = validateVaultPath(options.pluginConfig.vaultPath);
+    if (validated) return validated;
+  }
+  if (process.env.CLAWVAULT_PATH) {
+    return path.resolve(process.env.CLAWVAULT_PATH);
+  }
+  const discovered = findNearestVaultPath(options.cwd ?? process.cwd());
+  if (discovered) {
+    return discovered;
+  }
+  throw new Error("No vault path found. Set CLAWVAULT_PATH, use --vault, or run inside a vault.");
+}
+export {
+  getVaultPath,
+  findNearestVaultPath,
+  resolveAgentVaultPath,
+  resolveVaultPath
+};

package/dist/chunk-IVRIKYFE.js ADDED Viewed

@@ -0,0 +1,520 @@
+// src/lib/webdav.ts
+import * as fs from "fs";
+import * as path from "path";
+var WEBDAV_PREFIX = "/webdav";
+var BLOCKED_PATHS = [
+  ".clawvault",
+  ".git",
+  ".obsidian",
+  "node_modules"
+];
+var SUPPORTED_METHODS = ["GET", "PUT", "DELETE", "MKCOL", "PROPFIND", "OPTIONS", "HEAD", "MOVE", "COPY"];
+function toRequestSegments(requestPath) {
+  return requestPath.replace(/\\/g, "/").split("/").filter(Boolean);
+}
+function isWithinRoot(fullPath, rootPath) {
+  const resolvedRoot = path.resolve(rootPath);
+  const relative2 = path.relative(resolvedRoot, fullPath);
+  return !(relative2.startsWith("..") || path.isAbsolute(relative2));
+}
+function isPathSafe(requestPath, rootPath) {
+  const pathParts = toRequestSegments(requestPath);
+  if (pathParts.includes("..")) {
+    return false;
+  }
+  const normalizedRelativePath = path.normalize(pathParts.join(path.sep));
+  const fullPath = path.resolve(rootPath, normalizedRelativePath);
+  if (!isWithinRoot(fullPath, rootPath)) {
+    return false;
+  }
+  for (const part of pathParts) {
+    if (BLOCKED_PATHS.includes(part)) {
+      return false;
+    }
+  }
+  return true;
+}
+function resolveWebDAVPath(requestPath, rootPath) {
+  const pathParts = toRequestSegments(requestPath);
+  if (pathParts.includes("..")) {
+    return null;
+  }
+  const normalizedRelativePath = path.normalize(pathParts.join(path.sep));
+  const fullPath = path.resolve(rootPath, normalizedRelativePath);
+  if (!isWithinRoot(fullPath, rootPath)) {
+    return null;
+  }
+  return fullPath;
+}
+function checkAuth(req, auth) {
+  if (!auth) {
+    return true;
+  }
+  const authHeader = req.headers.authorization;
+  if (!authHeader || !authHeader.startsWith("Basic ")) {
+    return false;
+  }
+  const base64Credentials = authHeader.slice(6);
+  const credentials = Buffer.from(base64Credentials, "base64").toString("utf-8");
+  const [username, password] = credentials.split(":");
+  return username === auth.username && password === auth.password;
+}
+function escapeXml(str) {
+  return str.replace(/&/g, "&amp;").replace(/</g, "&lt;").replace(/>/g, "&gt;").replace(/"/g, "&quot;").replace(/'/g, "&apos;");
+}
+function formatWebDAVDate(date) {
+  return date.toUTCString();
+}
+function generatePropfindEntry(href, stats, isCollection) {
+  const resourceType = isCollection ? "<D:resourcetype><D:collection/></D:resourcetype>" : "<D:resourcetype/>";
+  const contentLength = stats && !isCollection ? `<D:getcontentlength>${stats.size}</D:getcontentlength>` : "";
+  const lastModified = stats ? `<D:getlastmodified>${formatWebDAVDate(stats.mtime)}</D:getlastmodified>` : "";
+  const etag = stats ? `<D:getetag>"${stats.mtime.getTime().toString(16)}-${stats.size.toString(16)}"</D:getetag>` : "";
+  const contentType = !isCollection ? "<D:getcontenttype>application/octet-stream</D:getcontenttype>" : "";
+  return `  <D:response>
+    <D:href>${escapeXml(href)}</D:href>
+    <D:propstat>
+      <D:prop>
+        ${resourceType}
+        ${contentLength}
+        ${lastModified}
+        ${etag}
+        ${contentType}
+      </D:prop>
+      <D:status>HTTP/1.1 200 OK</D:status>
+    </D:propstat>
+  </D:response>`;
+}
+function generatePropfindResponse(entries) {
+  const responseEntries = entries.map(
+    (e) => generatePropfindEntry(e.href, e.stats, e.isCollection)
+  ).join("\n");
+  return `<?xml version="1.0" encoding="utf-8"?>
+<D:multistatus xmlns:D="DAV:">
+${responseEntries}
+</D:multistatus>`;
+}
+function handleOptions(res, prefix) {
+  res.writeHead(200, {
+    "Allow": SUPPORTED_METHODS.join(", "),
+    "DAV": "1, 2",
+    "Content-Length": "0",
+    "Access-Control-Allow-Origin": "*",
+    "Access-Control-Allow-Methods": SUPPORTED_METHODS.join(", "),
+    "Access-Control-Allow-Headers": "Content-Type, Depth, Destination, Overwrite, Authorization",
+    "MS-Author-Via": "DAV"
+  });
+  res.end();
+}
+function handleHead(res, filePath) {
+  try {
+    const stats = fs.statSync(filePath);
+    if (stats.isDirectory()) {
+      res.writeHead(200, {
+        "Content-Type": "httpd/unix-directory",
+        "Last-Modified": formatWebDAVDate(stats.mtime),
+        "ETag": `"${stats.mtime.getTime().toString(16)}"`,
+        "Access-Control-Allow-Origin": "*"
+      });
+    } else {
+      res.writeHead(200, {
+        "Content-Type": "application/octet-stream",
+        "Content-Length": stats.size.toString(),
+        "Last-Modified": formatWebDAVDate(stats.mtime),
+        "ETag": `"${stats.mtime.getTime().toString(16)}-${stats.size.toString(16)}"`,
+        "Access-Control-Allow-Origin": "*"
+      });
+    }
+    res.end();
+  } catch (err) {
+    res.writeHead(404, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+    res.end("Not Found");
+  }
+}
+function handleGet(res, filePath) {
+  try {
+    const stats = fs.statSync(filePath);
+    if (stats.isDirectory()) {
+      const entries = fs.readdirSync(filePath);
+      const listing = entries.join("\n");
+      res.writeHead(200, {
+        "Content-Type": "text/plain",
+        "Content-Length": Buffer.byteLength(listing).toString(),
+        "Access-Control-Allow-Origin": "*"
+      });
+      res.end(listing);
+    } else {
+      const content = fs.readFileSync(filePath);
+      res.writeHead(200, {
+        "Content-Type": "application/octet-stream",
+        "Content-Length": content.length.toString(),
+        "Last-Modified": formatWebDAVDate(stats.mtime),
+        "ETag": `"${stats.mtime.getTime().toString(16)}-${stats.size.toString(16)}"`,
+        "Access-Control-Allow-Origin": "*"
+      });
+      res.end(content);
+    }
+  } catch (err) {
+    res.writeHead(404, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+    res.end("Not Found");
+  }
+}
+function handlePut(res, filePath, body) {
+  try {
+    const exists = fs.existsSync(filePath);
+    const dir = path.dirname(filePath);
+    if (!fs.existsSync(dir)) {
+      fs.mkdirSync(dir, { recursive: true });
+    }
+    fs.writeFileSync(filePath, body);
+    const status = exists ? 204 : 201;
+    res.writeHead(status, {
+      "Content-Length": "0",
+      "Access-Control-Allow-Origin": "*"
+    });
+    res.end();
+  } catch (err) {
+    res.writeHead(500, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+    res.end(`Error: ${err}`);
+  }
+}
+function handleDelete(res, filePath) {
+  try {
+    if (!fs.existsSync(filePath)) {
+      res.writeHead(404, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Not Found");
+      return;
+    }
+    const stats = fs.statSync(filePath);
+    if (stats.isDirectory()) {
+      fs.rmSync(filePath, { recursive: true });
+    } else {
+      fs.unlinkSync(filePath);
+    }
+    res.writeHead(204, {
+      "Content-Length": "0",
+      "Access-Control-Allow-Origin": "*"
+    });
+    res.end();
+  } catch (err) {
+    res.writeHead(500, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+    res.end(`Error: ${err}`);
+  }
+}
+function handleMkcol(res, filePath) {
+  try {
+    if (fs.existsSync(filePath)) {
+      res.writeHead(405, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Resource already exists");
+      return;
+    }
+    const parent = path.dirname(filePath);
+    if (!fs.existsSync(parent)) {
+      res.writeHead(409, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Parent directory does not exist");
+      return;
+    }
+    fs.mkdirSync(filePath);
+    res.writeHead(201, {
+      "Content-Length": "0",
+      "Access-Control-Allow-Origin": "*"
+    });
+    res.end();
+  } catch (err) {
+    res.writeHead(500, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+    res.end(`Error: ${err}`);
+  }
+}
+function handlePropfind(res, filePath, webdavPath, prefix, depth) {
+  try {
+    if (!fs.existsSync(filePath)) {
+      res.writeHead(404, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Not Found");
+      return;
+    }
+    const stats = fs.statSync(filePath);
+    const entries = [];
+    const normalizedWebdavPath = webdavPath.startsWith("/") ? webdavPath : "/" + webdavPath;
+    const href = prefix + normalizedWebdavPath;
+    entries.push({
+      href: href.endsWith("/") || stats.isDirectory() ? href : href,
+      stats,
+      isCollection: stats.isDirectory()
+    });
+    if (stats.isDirectory() && depth !== "0") {
+      try {
+        const children = fs.readdirSync(filePath);
+        for (const child of children) {
+          if (BLOCKED_PATHS.includes(child)) {
+            continue;
+          }
+          const childPath = path.join(filePath, child);
+          const childWebdavPath = normalizedWebdavPath.endsWith("/") ? normalizedWebdavPath + child : normalizedWebdavPath + "/" + child;
+          try {
+            const childStats = fs.statSync(childPath);
+            entries.push({
+              href: prefix + childWebdavPath,
+              stats: childStats,
+              isCollection: childStats.isDirectory()
+            });
+          } catch {
+          }
+        }
+      } catch {
+      }
+    }
+    const xml = generatePropfindResponse(entries);
+    res.writeHead(207, {
+      "Content-Type": "application/xml; charset=utf-8",
+      "Content-Length": Buffer.byteLength(xml).toString(),
+      "Access-Control-Allow-Origin": "*"
+    });
+    res.end(xml);
+  } catch (err) {
+    res.writeHead(500, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+    res.end(`Error: ${err}`);
+  }
+}
+function handleMove(res, sourcePath, destinationPath, overwrite) {
+  try {
+    if (!fs.existsSync(sourcePath)) {
+      res.writeHead(404, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Source not found");
+      return;
+    }
+    if (!destinationPath) {
+      res.writeHead(400, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Destination header required");
+      return;
+    }
+    const destExists = fs.existsSync(destinationPath);
+    if (destExists && !overwrite) {
+      res.writeHead(412, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Destination exists and Overwrite is F");
+      return;
+    }
+    const destDir = path.dirname(destinationPath);
+    if (!fs.existsSync(destDir)) {
+      fs.mkdirSync(destDir, { recursive: true });
+    }
+    if (destExists) {
+      const destStats = fs.statSync(destinationPath);
+      if (destStats.isDirectory()) {
+        fs.rmSync(destinationPath, { recursive: true });
+      } else {
+        fs.unlinkSync(destinationPath);
+      }
+    }
+    fs.renameSync(sourcePath, destinationPath);
+    const status = destExists ? 204 : 201;
+    res.writeHead(status, {
+      "Content-Length": "0",
+      "Access-Control-Allow-Origin": "*"
+    });
+    res.end();
+  } catch (err) {
+    res.writeHead(500, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+    res.end(`Error: ${err}`);
+  }
+}
+function handleCopy(res, sourcePath, destinationPath, overwrite) {
+  try {
+    if (!fs.existsSync(sourcePath)) {
+      res.writeHead(404, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Source not found");
+      return;
+    }
+    if (!destinationPath) {
+      res.writeHead(400, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Destination header required");
+      return;
+    }
+    const destExists = fs.existsSync(destinationPath);
+    if (destExists && !overwrite) {
+      res.writeHead(412, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Destination exists and Overwrite is F");
+      return;
+    }
+    const destDir = path.dirname(destinationPath);
+    if (!fs.existsSync(destDir)) {
+      fs.mkdirSync(destDir, { recursive: true });
+    }
+    const sourceStats = fs.statSync(sourcePath);
+    if (sourceStats.isDirectory()) {
+      copyDirRecursive(sourcePath, destinationPath);
+    } else {
+      fs.copyFileSync(sourcePath, destinationPath);
+    }
+    const status = destExists ? 204 : 201;
+    res.writeHead(status, {
+      "Content-Length": "0",
+      "Access-Control-Allow-Origin": "*"
+    });
+    res.end();
+  } catch (err) {
+    res.writeHead(500, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+    res.end(`Error: ${err}`);
+  }
+}
+function copyDirRecursive(src, dest) {
+  if (!fs.existsSync(dest)) {
+    fs.mkdirSync(dest, { recursive: true });
+  }
+  const entries = fs.readdirSync(src, { withFileTypes: true });
+  for (const entry of entries) {
+    const srcPath = path.join(src, entry.name);
+    const destPath = path.join(dest, entry.name);
+    if (entry.isDirectory()) {
+      copyDirRecursive(srcPath, destPath);
+    } else {
+      fs.copyFileSync(srcPath, destPath);
+    }
+  }
+}
+function parseDestinationHeader(destinationHeader, prefix, rootPath) {
+  if (!destinationHeader) {
+    return null;
+  }
+  try {
+    let destPath;
+    if (destinationHeader.startsWith("http://") || destinationHeader.startsWith("https://")) {
+      const url = new URL(destinationHeader);
+      destPath = decodeURIComponent(url.pathname);
+    } else {
+      destPath = decodeURIComponent(destinationHeader);
+    }
+    if (destPath.startsWith(prefix)) {
+      destPath = destPath.slice(prefix.length);
+    }
+    return resolveWebDAVPath(destPath, rootPath);
+  } catch {
+    return null;
+  }
+}
+function createWebDAVHandler(config) {
+  const { rootPath, prefix = WEBDAV_PREFIX, auth } = config;
+  return async (req, res) => {
+    const rawUrl = req.url || "/";
+    if (rawUrl.includes("..")) {
+      if (rawUrl.startsWith(prefix)) {
+        res.writeHead(403, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+        res.end("Forbidden");
+        return true;
+      }
+    }
+    const url = new URL(rawUrl, `http://${req.headers.host || "localhost"}`);
+    const pathname = decodeURIComponent(url.pathname);
+    if (!pathname.startsWith(prefix)) {
+      return false;
+    }
+    let webdavPath = pathname.slice(prefix.length);
+    if (!webdavPath.startsWith("/")) {
+      webdavPath = "/" + webdavPath;
+    }
+    if (req.method === "OPTIONS") {
+      handleOptions(res, prefix);
+      return true;
+    }
+    if (!checkAuth(req, auth)) {
+      res.writeHead(401, {
+        "WWW-Authenticate": 'Basic realm="ClawVault WebDAV"',
+        "Content-Type": "text/plain",
+        "Access-Control-Allow-Origin": "*"
+      });
+      res.end("Unauthorized");
+      return true;
+    }
+    if (!isPathSafe(webdavPath, rootPath)) {
+      res.writeHead(403, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Forbidden");
+      return true;
+    }
+    const filePath = resolveWebDAVPath(webdavPath, rootPath);
+    if (!filePath) {
+      res.writeHead(403, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+      res.end("Forbidden");
+      return true;
+    }
+    const depth = req.headers.depth || "infinity";
+    const overwrite = req.headers.overwrite?.toUpperCase() !== "F";
+    const destinationHeader = req.headers.destination;
+    switch (req.method) {
+      case "HEAD":
+        handleHead(res, filePath);
+        return true;
+      case "GET":
+        handleGet(res, filePath);
+        return true;
+      case "PUT": {
+        const chunks = [];
+        for await (const chunk of req) {
+          chunks.push(Buffer.isBuffer(chunk) ? chunk : Buffer.from(chunk));
+        }
+        const body = Buffer.concat(chunks);
+        handlePut(res, filePath, body);
+        return true;
+      }
+      case "DELETE":
+        handleDelete(res, filePath);
+        return true;
+      case "MKCOL":
+        handleMkcol(res, filePath);
+        return true;
+      case "PROPFIND":
+        handlePropfind(res, filePath, webdavPath, prefix, depth);
+        return true;
+      case "MOVE": {
+        const destPath = parseDestinationHeader(destinationHeader, prefix, rootPath);
+        if (destPath && destinationHeader) {
+          const destWebdavPath = destinationHeader.includes(prefix) ? destinationHeader.slice(destinationHeader.indexOf(prefix) + prefix.length) : destinationHeader;
+          if (!isPathSafe(destWebdavPath, rootPath)) {
+            res.writeHead(403, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+            res.end("Forbidden");
+            return true;
+          }
+        }
+        handleMove(res, filePath, destPath, overwrite);
+        return true;
+      }
+      case "COPY": {
+        const destPath = parseDestinationHeader(destinationHeader, prefix, rootPath);
+        if (destPath && destinationHeader) {
+          const destWebdavPath = destinationHeader.includes(prefix) ? destinationHeader.slice(destinationHeader.indexOf(prefix) + prefix.length) : destinationHeader;
+          if (!isPathSafe(destWebdavPath, rootPath)) {
+            res.writeHead(403, { "Content-Type": "text/plain", "Access-Control-Allow-Origin": "*" });
+            res.end("Forbidden");
+            return true;
+          }
+        }
+        handleCopy(res, filePath, destPath, overwrite);
+        return true;
+      }
+      default:
+        res.writeHead(405, {
+          "Allow": SUPPORTED_METHODS.join(", "),
+          "Content-Type": "text/plain",
+          "Access-Control-Allow-Origin": "*"
+        });
+        res.end("Method Not Allowed");
+        return true;
+    }
+  };
+}
+export {
+  WEBDAV_PREFIX,
+  isPathSafe,
+  resolveWebDAVPath,
+  checkAuth,
+  generatePropfindResponse,
+  handleOptions,
+  handleHead,
+  handleGet,
+  handlePut,
+  handleDelete,
+  handleMkcol,
+  handlePropfind,
+  handleMove,
+  handleCopy,
+  createWebDAVHandler
+};