npm - cli-claw-kit - Versions diffs - 0.0.1 - Mend

cli-claw-kit 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (295) hide show

package/LICENSE +21 -0
package/README.md +245 -0
package/config/default-groups.json +1 -0
package/config/global-agents-md.template.md +37 -0
package/config/mount-allowlist.json +11 -0
package/container/Dockerfile +160 -0
package/container/agent-runner/dist/.tsbuildinfo +1 -0
package/container/agent-runner/dist/agent-definitions.js +22 -0
package/container/agent-runner/dist/channel-prefixes.js +16 -0
package/container/agent-runner/dist/codex-config.js +29 -0
package/container/agent-runner/dist/image-detector.js +96 -0
package/container/agent-runner/dist/index.js +2587 -0
package/container/agent-runner/dist/mcp-tools.js +1076 -0
package/container/agent-runner/dist/stream-event.types.js +5 -0
package/container/agent-runner/dist/stream-processor.js +867 -0
package/container/agent-runner/dist/types.js +6 -0
package/container/agent-runner/dist/utils.js +115 -0
package/container/agent-runner/package.json +36 -0
package/container/agent-runner/prompts/security-rules.md +31 -0
package/container/agent-runner/src/agent-definitions.ts +27 -0
package/container/agent-runner/src/channel-prefixes.ts +16 -0
package/container/agent-runner/src/codex-config.ts +40 -0
package/container/agent-runner/src/image-detector.ts +116 -0
package/container/agent-runner/src/index.ts +3107 -0
package/container/agent-runner/src/mcp-tools.ts +1295 -0
package/container/agent-runner/src/stream-event.types.ts +10 -0
package/container/agent-runner/src/stream-processor.ts +932 -0
package/container/agent-runner/src/types.ts +75 -0
package/container/agent-runner/src/utils.ts +114 -0
package/container/agent-runner/tsconfig.json +17 -0
package/container/build.sh +28 -0
package/container/entrypoint.sh +64 -0
package/container/skills/agent-browser/SKILL.md +159 -0
package/container/skills/install-skill/SKILL.md +64 -0
package/container/skills/post-test-cleanup/SKILL.md +121 -0
package/dist/.tsbuildinfo +1 -0
package/dist/agent-output-parser.js +459 -0
package/dist/app-root.js +52 -0
package/dist/assistant-meta-footer.js +1 -0
package/dist/auth.js +91 -0
package/dist/billing.js +694 -0
package/dist/channel-prefixes.js +16 -0
package/dist/cli.js +86 -0
package/dist/commands.js +79 -0
package/dist/config.js +120 -0
package/dist/container-runner.js +981 -0
package/dist/daily-summary.js +210 -0
package/dist/db.js +3683 -0
package/dist/dingtalk.js +1347 -0
package/dist/feishu-markdown-style.js +97 -0
package/dist/feishu-streaming-card.js +1875 -0
package/dist/feishu.js +1628 -0
package/dist/file-manager.js +270 -0
package/dist/group-queue.js +1070 -0
package/dist/group-runtime.js +35 -0
package/dist/host-workspace-cwd.js +85 -0
package/dist/im-channel.js +384 -0
package/dist/im-command-utils.js +142 -0
package/dist/im-downloader.js +45 -0
package/dist/im-manager.js +527 -0
package/dist/im-utils.js +53 -0
package/dist/image-detector.js +96 -0
package/dist/index.js +5828 -0
package/dist/logger.js +22 -0
package/dist/mcp-utils.js +66 -0
package/dist/message-attachments.js +69 -0
package/dist/message-notifier.js +36 -0
package/dist/middleware/auth.js +85 -0
package/dist/mount-security.js +315 -0
package/dist/permissions.js +67 -0
package/dist/project-memory.js +6 -0
package/dist/provider-pool.js +189 -0
package/dist/qq.js +826 -0
package/dist/reset-admin.js +42 -0
package/dist/routes/admin.js +543 -0
package/dist/routes/agent-definitions.js +241 -0
package/dist/routes/agents.js +533 -0
package/dist/routes/auth.js +675 -0
package/dist/routes/billing.js +490 -0
package/dist/routes/browse.js +210 -0
package/dist/routes/bug-report.js +387 -0
package/dist/routes/config.js +1868 -0
package/dist/routes/files.js +671 -0
package/dist/routes/groups.js +1367 -0
package/dist/routes/mcp-servers.js +320 -0
package/dist/routes/memory.js +523 -0
package/dist/routes/monitor.js +307 -0
package/dist/routes/skills.js +777 -0
package/dist/routes/tasks.js +509 -0
package/dist/routes/usage.js +64 -0
package/dist/routes/workspace-config.js +458 -0
package/dist/runtime-build.js +112 -0
package/dist/runtime-command-handler.js +189 -0
package/dist/runtime-command-registry.js +1 -0
package/dist/runtime-config.js +1777 -0
package/dist/runtime-identity.js +52 -0
package/dist/schemas.js +590 -0
package/dist/script-runner.js +64 -0
package/dist/sdk-query.js +82 -0
package/dist/skill-utils.js +145 -0
package/dist/sqlite-compat.js +19 -0
package/dist/stream-event.types.js +5 -0
package/dist/streaming-runtime-meta.js +29 -0
package/dist/task-scheduler.js +695 -0
package/dist/task-utils.js +13 -0
package/dist/telegram-pairing.js +59 -0
package/dist/telegram.js +897 -0
package/dist/terminal-manager.js +307 -0
package/dist/tool-step-display.js +1 -0
package/dist/types.js +1 -0
package/dist/utils.js +85 -0
package/dist/web-context.js +161 -0
package/dist/web.js +1377 -0
package/dist/wechat-crypto.js +182 -0
package/dist/wechat.js +589 -0
package/dist/workspace-runtime-reset.js +35 -0
package/package.json +107 -0
package/shared/assistant-meta-footer.ts +127 -0
package/shared/channel-prefixes.ts +16 -0
package/shared/dist/assistant-meta-footer.d.ts +29 -0
package/shared/dist/assistant-meta-footer.js +85 -0
package/shared/dist/channel-prefixes.d.ts +4 -0
package/shared/dist/channel-prefixes.js +16 -0
package/shared/dist/image-detector.d.ts +20 -0
package/shared/dist/image-detector.js +96 -0
package/shared/dist/runtime-command-registry.d.ts +38 -0
package/shared/dist/runtime-command-registry.js +185 -0
package/shared/dist/stream-event.d.ts +65 -0
package/shared/dist/stream-event.js +8 -0
package/shared/dist/tool-step-display.d.ts +4 -0
package/shared/dist/tool-step-display.js +11 -0
package/shared/image-detector.ts +116 -0
package/shared/runtime-command-registry.ts +252 -0
package/shared/stream-event.ts +67 -0
package/shared/tool-step-display.ts +21 -0
package/shared/tsconfig.json +24 -0
package/web/dist/assets/BillingPage-B1wBR_o-.js +52 -0
package/web/dist/assets/ChatPage-6GBZ9nXN.css +32 -0
package/web/dist/assets/ChatPage-BOJcXtaj.js +161 -0
package/web/dist/assets/KaTeX_AMS-Regular-BQhdFMY1.woff2 +0 -0
package/web/dist/assets/KaTeX_AMS-Regular-DMm9YOAa.woff +0 -0
package/web/dist/assets/KaTeX_AMS-Regular-DRggAlZN.ttf +0 -0
package/web/dist/assets/KaTeX_Caligraphic-Bold-ATXxdsX0.ttf +0 -0
package/web/dist/assets/KaTeX_Caligraphic-Bold-BEiXGLvX.woff +0 -0
package/web/dist/assets/KaTeX_Caligraphic-Bold-Dq_IR9rO.woff2 +0 -0
package/web/dist/assets/KaTeX_Caligraphic-Regular-CTRA-rTL.woff +0 -0
package/web/dist/assets/KaTeX_Caligraphic-Regular-Di6jR-x-.woff2 +0 -0
package/web/dist/assets/KaTeX_Caligraphic-Regular-wX97UBjC.ttf +0 -0
package/web/dist/assets/KaTeX_Fraktur-Bold-BdnERNNW.ttf +0 -0
package/web/dist/assets/KaTeX_Fraktur-Bold-BsDP51OF.woff +0 -0
package/web/dist/assets/KaTeX_Fraktur-Bold-CL6g_b3V.woff2 +0 -0
package/web/dist/assets/KaTeX_Fraktur-Regular-CB_wures.ttf +0 -0
package/web/dist/assets/KaTeX_Fraktur-Regular-CTYiF6lA.woff2 +0 -0
package/web/dist/assets/KaTeX_Fraktur-Regular-Dxdc4cR9.woff +0 -0
package/web/dist/assets/KaTeX_Main-Bold-Cx986IdX.woff2 +0 -0
package/web/dist/assets/KaTeX_Main-Bold-Jm3AIy58.woff +0 -0
package/web/dist/assets/KaTeX_Main-Bold-waoOVXN0.ttf +0 -0
package/web/dist/assets/KaTeX_Main-BoldItalic-DxDJ3AOS.woff2 +0 -0
package/web/dist/assets/KaTeX_Main-BoldItalic-DzxPMmG6.ttf +0 -0
package/web/dist/assets/KaTeX_Main-BoldItalic-SpSLRI95.woff +0 -0
package/web/dist/assets/KaTeX_Main-Italic-3WenGoN9.ttf +0 -0
package/web/dist/assets/KaTeX_Main-Italic-BMLOBm91.woff +0 -0
package/web/dist/assets/KaTeX_Main-Italic-NWA7e6Wa.woff2 +0 -0
package/web/dist/assets/KaTeX_Main-Regular-B22Nviop.woff2 +0 -0
package/web/dist/assets/KaTeX_Main-Regular-Dr94JaBh.woff +0 -0
package/web/dist/assets/KaTeX_Main-Regular-ypZvNtVU.ttf +0 -0
package/web/dist/assets/KaTeX_Math-BoldItalic-B3XSjfu4.ttf +0 -0
package/web/dist/assets/KaTeX_Math-BoldItalic-CZnvNsCZ.woff2 +0 -0
package/web/dist/assets/KaTeX_Math-BoldItalic-iY-2wyZ7.woff +0 -0
package/web/dist/assets/KaTeX_Math-Italic-DA0__PXp.woff +0 -0
package/web/dist/assets/KaTeX_Math-Italic-flOr_0UB.ttf +0 -0
package/web/dist/assets/KaTeX_Math-Italic-t53AETM-.woff2 +0 -0
package/web/dist/assets/KaTeX_SansSerif-Bold-CFMepnvq.ttf +0 -0
package/web/dist/assets/KaTeX_SansSerif-Bold-D1sUS0GD.woff2 +0 -0
package/web/dist/assets/KaTeX_SansSerif-Bold-DbIhKOiC.woff +0 -0
package/web/dist/assets/KaTeX_SansSerif-Italic-C3H0VqGB.woff2 +0 -0
package/web/dist/assets/KaTeX_SansSerif-Italic-DN2j7dab.woff +0 -0
package/web/dist/assets/KaTeX_SansSerif-Italic-YYjJ1zSn.ttf +0 -0
package/web/dist/assets/KaTeX_SansSerif-Regular-BNo7hRIc.ttf +0 -0
package/web/dist/assets/KaTeX_SansSerif-Regular-CS6fqUqJ.woff +0 -0
package/web/dist/assets/KaTeX_SansSerif-Regular-DDBCnlJ7.woff2 +0 -0
package/web/dist/assets/KaTeX_Script-Regular-C5JkGWo-.ttf +0 -0
package/web/dist/assets/KaTeX_Script-Regular-D3wIWfF6.woff2 +0 -0
package/web/dist/assets/KaTeX_Script-Regular-D5yQViql.woff +0 -0
package/web/dist/assets/KaTeX_Size1-Regular-C195tn64.woff +0 -0
package/web/dist/assets/KaTeX_Size1-Regular-Dbsnue_I.ttf +0 -0
package/web/dist/assets/KaTeX_Size1-Regular-mCD8mA8B.woff2 +0 -0
package/web/dist/assets/KaTeX_Size2-Regular-B7gKUWhC.ttf +0 -0
package/web/dist/assets/KaTeX_Size2-Regular-Dy4dx90m.woff2 +0 -0
package/web/dist/assets/KaTeX_Size2-Regular-oD1tc_U0.woff +0 -0
package/web/dist/assets/KaTeX_Size3-Regular-CTq5MqoE.woff +0 -0
package/web/dist/assets/KaTeX_Size3-Regular-DgpXs0kz.ttf +0 -0
package/web/dist/assets/KaTeX_Size4-Regular-BF-4gkZK.woff +0 -0
package/web/dist/assets/KaTeX_Size4-Regular-DWFBv043.ttf +0 -0
package/web/dist/assets/KaTeX_Size4-Regular-Dl5lxZxV.woff2 +0 -0
package/web/dist/assets/KaTeX_Typewriter-Regular-C0xS9mPB.woff +0 -0
package/web/dist/assets/KaTeX_Typewriter-Regular-CO6r4hn1.woff2 +0 -0
package/web/dist/assets/KaTeX_Typewriter-Regular-D3Ib7_Hf.ttf +0 -0
package/web/dist/assets/SettingsPage-DoY7FoZ_.js +153 -0
package/web/dist/assets/ShareImageDialog-C1ga8b7l.js +22 -0
package/web/dist/assets/TasksPage-CRivnNsx.js +14 -0
package/web/dist/assets/_basePickBy-Bf-bSoS9.js +1 -0
package/web/dist/assets/_baseUniq-zAOaCuKw.js +1 -0
package/web/dist/assets/arc-Dm9mVQ9U.js +1 -0
package/web/dist/assets/architectureDiagram-2XIMDMQ5-BLmzX1wr.js +36 -0
package/web/dist/assets/band-CquvqAHh.js +1 -0
package/web/dist/assets/blockDiagram-WCTKOSBZ-B9pcqm3j.js +132 -0
package/web/dist/assets/c4Diagram-IC4MRINW-Cytx1q3b.js +10 -0
package/web/dist/assets/channel-BOVj73LR.js +1 -0
package/web/dist/assets/channel-meta-CQD0Pei-.js +41 -0
package/web/dist/assets/chunk-4BX2VUAB-0ToDr6RE.js +1 -0
package/web/dist/assets/chunk-55IACEB6-DQDjnXfS.js +1 -0
package/web/dist/assets/chunk-FMBD7UC4-Di8ABm6c.js +15 -0
package/web/dist/assets/chunk-JSJVCQXG-BZQN6rnX.js +1 -0
package/web/dist/assets/chunk-KX2RTZJC-zBbcpaN_.js +1 -0
package/web/dist/assets/chunk-NQ4KR5QH-BCrLoU88.js +220 -0
package/web/dist/assets/chunk-QZHKN3VN-Bqk8juan.js +1 -0
package/web/dist/assets/chunk-WL4C6EOR-D2YX-MHY.js +189 -0
package/web/dist/assets/classDiagram-VBA2DB6C-DUUoMyaK.js +1 -0
package/web/dist/assets/classDiagram-v2-RAHNMMFH-DUUoMyaK.js +1 -0
package/web/dist/assets/clone-BmaCesfa.js +1 -0
package/web/dist/assets/cose-bilkent-S5V4N54A-CTsv6qQA.js +1 -0
package/web/dist/assets/cytoscape.esm-BQaXIfA_.js +331 -0
package/web/dist/assets/dagre-KLK3FWXG-Ci4Jh9nu.js +4 -0
package/web/dist/assets/defaultLocale-DX6XiGOO.js +1 -0
package/web/dist/assets/diagram-E7M64L7V-BFRnfTI2.js +24 -0
package/web/dist/assets/diagram-IFDJBPK2-B7Zhnp0b.js +43 -0
package/web/dist/assets/diagram-P4PSJMXO-BVyP7nwq.js +24 -0
package/web/dist/assets/erDiagram-INFDFZHY-NorKdTOF.js +70 -0
package/web/dist/assets/error-CGD5mp5f.js +1 -0
package/web/dist/assets/flowDiagram-PKNHOUZH-Ch97nABF.js +162 -0
package/web/dist/assets/ganttDiagram-A5KZAMGK-BQ2pLWsy.js +292 -0
package/web/dist/assets/gitGraphDiagram-K3NZZRJ6-bcvnBsD2.js +65 -0
package/web/dist/assets/graph-CeAEckur.js +1 -0
package/web/dist/assets/index-CPnL1_qC.js +768 -0
package/web/dist/assets/index-DVevCbcO.css +10 -0
package/web/dist/assets/infoDiagram-LFFYTUFH-CcsrFdj-.js +2 -0
package/web/dist/assets/init-Dmth1JHB.js +1 -0
package/web/dist/assets/ishikawaDiagram-PHBUUO56-1upyMfHN.js +70 -0
package/web/dist/assets/journeyDiagram-4ABVD52K-CKUi-V0c.js +139 -0
package/web/dist/assets/kanban-definition-K7BYSVSG-DOnQwXfL.js +89 -0
package/web/dist/assets/layout-BmMMqTnJ.js +1 -0
package/web/dist/assets/linear-DiaJloY5.js +1 -0
package/web/dist/assets/mermaid.core-BWLV1B2v.js +254 -0
package/web/dist/assets/mindmap-definition-YRQLILUH-BeAKHVWP.js +68 -0
package/web/dist/assets/ordinal-DILIJJjt.js +1 -0
package/web/dist/assets/pieDiagram-SKSYHLDU-DfiMSfWo.js +30 -0
package/web/dist/assets/quadrantDiagram-337W2JSQ-wZxZOJxd.js +7 -0
package/web/dist/assets/requirementDiagram-Z7DCOOCP-BK4HHm17.js +73 -0
package/web/dist/assets/sankeyDiagram-WA2Y5GQK-BX6t2avX.js +10 -0
package/web/dist/assets/sequenceDiagram-2WXFIKYE-BPQlkbAa.js +145 -0
package/web/dist/assets/sheet-rI0FfB1g.js +6 -0
package/web/dist/assets/sliders-horizontal-CuijWFNK.js +6 -0
package/web/dist/assets/sparkles-BsMYXJoT.js +11 -0
package/web/dist/assets/square-0CqMX1Q3.js +11 -0
package/web/dist/assets/stateDiagram-RAJIS63D-DxkV0Vwd.js +1 -0
package/web/dist/assets/stateDiagram-v2-FVOUBMTO-qLYoiOPe.js +1 -0
package/web/dist/assets/step-D51IIHGA.js +1 -0
package/web/dist/assets/tasks-D8JjBTwx.js +1 -0
package/web/dist/assets/time-O8zIGux3.js +1 -0
package/web/dist/assets/timeline-definition-YZTLITO2-kNp1DyFc.js +61 -0
package/web/dist/assets/treemap-KZPCXAKY-CkrClVhk.js +162 -0
package/web/dist/assets/utils-KGAn0XTg.js +11 -0
package/web/dist/assets/vennDiagram-LZ73GAT5-CgdzEZz4.js +34 -0
package/web/dist/assets/xychartDiagram-JWTSCODW-DfYGPfNB.js +7 -0
package/web/dist/assets/zap-_hKJYy7J.js +6 -0
package/web/dist/favicon.svg +332 -0
package/web/dist/fonts/AlibabaPuHuiTi-3-55-Regular.woff2 +0 -0
package/web/dist/fonts/AlibabaPuHuiTi-3-65-Medium.woff2 +0 -0
package/web/dist/fonts/AlibabaPuHuiTi-3-75-SemiBold.woff2 +0 -0
package/web/dist/fonts/DMSans-latin-ext.woff2 +0 -0
package/web/dist/fonts/DMSans-latin.woff2 +0 -0
package/web/dist/icons/README.md +20 -0
package/web/dist/icons/apple-touch-icon-180.png +0 -0
package/web/dist/icons/icon-128.png +0 -0
package/web/dist/icons/icon-144.png +0 -0
package/web/dist/icons/icon-152.png +0 -0
package/web/dist/icons/icon-192.png +0 -0
package/web/dist/icons/icon-192.svg +332 -0
package/web/dist/icons/icon-384.png +0 -0
package/web/dist/icons/icon-48.png +0 -0
package/web/dist/icons/icon-512-maskable.png +0 -0
package/web/dist/icons/icon-512.png +0 -0
package/web/dist/icons/icon-512.svg +332 -0
package/web/dist/icons/icon-72.png +0 -0
package/web/dist/icons/icon-96.png +0 -0
package/web/dist/icons/loading-logo.svg +332 -0
package/web/dist/icons/logo-1024.png +0 -0
package/web/dist/icons/logo-icon.svg +332 -0
package/web/dist/icons/logo-text.svg +332 -0
package/web/dist/index.html +30 -0
package/web/dist/manifest.webmanifest +1 -0
package/web/dist/registerSW.js +1 -0
package/web/dist/sw.js +1 -0
package/web/dist/workbox-08d6266a.js +1 -0

package/dist/routes/billing.js ADDED Viewed

@@ -0,0 +1,490 @@
+/**
+ * Billing API routes: user-facing + admin management.
+ */
+import { Hono } from 'hono';
+import { authMiddleware, requirePermission } from '../middleware/auth.js';
+import { getActiveBillingPlans, getAllBillingPlans, getBillingPlan, createBillingPlan, updateBillingPlan, deleteBillingPlan, getUserActiveSubscription, getUserBalance, getBalanceTransactions, getMonthlyUsage, getUserMonthlyUsageHistory, getUserDailyUsageHistory, getSubscriptionHistory, getRedeemCodeUsageDetails, getDashboardStats, getRevenueTrend, getAllRedeemCodes, getAllPlanSubscriberCounts, createRedeemCode as dbCreateRedeemCode, deleteRedeemCode as dbDeleteRedeemCode, logBillingAudit, getBillingAuditLog, getAllUserBillingOverview, getRevenueStats, getUserById, getDailyUsage, getWeeklyUsageSummary, } from '../db.js';
+import { isBillingEnabled, checkBillingAccess, getUserEffectivePlan, checkQuota, assignPlan, applyAdminBalanceAdjustment, batchAssignPlans, cancelSubscription, redeemCode, generateRedeemCode, invalidateAllBillingCaches, } from '../billing.js';
+import { BillingPlanCreateSchema, BillingPlanPatchSchema, AssignPlanSchema, AdjustBalanceSchema, BatchAssignPlanSchema, RedeemCodeCreateSchema, RedeemCodeSchema, } from '../schemas.js';
+import { getSystemSettings } from '../runtime-config.js';
+const billingRoutes = new Hono();
+const billingManageMiddleware = requirePermission('manage_billing');
+// ==================== User-facing endpoints ====================
+// GET /plans — list available plans
+billingRoutes.get('/plans', authMiddleware, async (c) => {
+    const plans = getActiveBillingPlans();
+    return c.json({ plans });
+});
+// GET /my/subscription — current subscription + plan details
+billingRoutes.get('/my/subscription', authMiddleware, async (c) => {
+    const user = c.get('user');
+    const effective = getUserEffectivePlan(user.id);
+    if (!effective) {
+        return c.json({ subscription: null, plan: null });
+    }
+    return c.json({
+        subscription: effective.subscription,
+        plan: effective.plan,
+    });
+});
+// GET /my/balance — current balance
+billingRoutes.get('/my/balance', authMiddleware, async (c) => {
+    const user = c.get('user');
+    const balance = getUserBalance(user.id);
+    return c.json(balance);
+});
+// GET /my/usage — current month usage + quota progress
+billingRoutes.get('/my/usage', authMiddleware, async (c) => {
+    const user = c.get('user');
+    const month = new Date().toISOString().slice(0, 7);
+    const usage = getMonthlyUsage(user.id, month);
+    const effective = getUserEffectivePlan(user.id);
+    const history = getUserMonthlyUsageHistory(user.id, 6);
+    return c.json({
+        currentMonth: month,
+        usage: usage ?? {
+            user_id: user.id,
+            month,
+            total_input_tokens: 0,
+            total_output_tokens: 0,
+            total_cost_usd: 0,
+            message_count: 0,
+            updated_at: new Date().toISOString(),
+        },
+        plan: effective?.plan ?? null,
+        history,
+    });
+});
+// GET /my/transactions — balance change history (paginated)
+billingRoutes.get('/my/transactions', authMiddleware, async (c) => {
+    const user = c.get('user');
+    const limit = Math.min(parseInt(c.req.query('limit') || '50'), 100);
+    const offset = parseInt(c.req.query('offset') || '0');
+    const result = getBalanceTransactions(user.id, limit, offset);
+    return c.json(result);
+});
+// GET /my/quota — enhanced current quota status (daily/weekly/monthly)
+billingRoutes.get('/my/quota', authMiddleware, async (c) => {
+    const user = c.get('user');
+    const result = checkQuota(user.id, user.role);
+    return c.json(result);
+});
+// GET /my/access — current billing access status (wallet-first)
+billingRoutes.get('/my/access', authMiddleware, async (c) => {
+    const user = c.get('user');
+    const result = checkBillingAccess(user.id, user.role);
+    return c.json(result);
+});
+// POST /my/redeem — use a redeem code
+billingRoutes.post('/my/redeem', authMiddleware, async (c) => {
+    const user = c.get('user');
+    const body = await c.req.json().catch(() => ({}));
+    const validation = RedeemCodeSchema.safeParse(body);
+    if (!validation.success) {
+        return c.json({ error: 'Invalid request body' }, 400);
+    }
+    const result = redeemCode(user.id, validation.data.code);
+    if (!result.success) {
+        return c.json({ error: result.message }, 400);
+    }
+    return c.json({ message: result.message });
+});
+// PATCH /my/auto-renew — toggle auto-renew
+billingRoutes.patch('/my/auto-renew', authMiddleware, async (c) => {
+    return c.json({ error: '余额优先模式下不支持用户自助自动续费，请联系管理员处理套餐' }, 409);
+});
+// POST /my/cancel-subscription — user self-cancel
+billingRoutes.post('/my/cancel-subscription', authMiddleware, async (c) => {
+    return c.json({ error: '余额优先模式下不支持用户自助取消套餐，请联系管理员处理' }, 409);
+});
+// ==================== Admin endpoints ====================
+// POST /admin/plans — create plan
+billingRoutes.post('/admin/plans', authMiddleware, billingManageMiddleware, async (c) => {
+    const body = await c.req.json().catch(() => ({}));
+    const validation = BillingPlanCreateSchema.safeParse(body);
+    if (!validation.success) {
+        return c.json({ error: 'Invalid request body', details: validation.error.format() }, 400);
+    }
+    const existing = getBillingPlan(validation.data.id);
+    if (existing) {
+        return c.json({ error: 'Plan ID already exists' }, 409);
+    }
+    const now = new Date().toISOString();
+    const plan = {
+        id: validation.data.id,
+        name: validation.data.name,
+        description: validation.data.description ?? null,
+        tier: validation.data.tier ?? 0,
+        monthly_cost_usd: validation.data.monthly_cost_usd ?? 0,
+        monthly_token_quota: validation.data.monthly_token_quota ?? null,
+        monthly_cost_quota: validation.data.monthly_cost_quota ?? null,
+        daily_cost_quota: validation.data.daily_cost_quota ?? null,
+        weekly_cost_quota: validation.data.weekly_cost_quota ?? null,
+        daily_token_quota: validation.data.daily_token_quota ?? null,
+        weekly_token_quota: validation.data.weekly_token_quota ?? null,
+        rate_multiplier: validation.data.rate_multiplier ?? 1.0,
+        trial_days: validation.data.trial_days ?? null,
+        sort_order: validation.data.sort_order ?? 0,
+        display_price: validation.data.display_price ?? null,
+        highlight: validation.data.highlight ?? false,
+        max_groups: validation.data.max_groups ?? null,
+        max_concurrent_containers: validation.data.max_concurrent_containers ?? null,
+        max_im_channels: validation.data.max_im_channels ?? null,
+        max_mcp_servers: validation.data.max_mcp_servers ?? null,
+        max_storage_mb: validation.data.max_storage_mb ?? null,
+        allow_overage: validation.data.allow_overage ?? false,
+        features: validation.data.features ?? [],
+        is_default: validation.data.is_default ?? false,
+        is_active: validation.data.is_active ?? true,
+        created_at: now,
+        updated_at: now,
+    };
+    createBillingPlan(plan);
+    const actor = c.get('user');
+    logBillingAudit('plan_created', actor.id, actor.id, {
+        planId: plan.id,
+        planName: plan.name,
+    });
+    return c.json(plan, 201);
+});
+// PATCH /admin/plans/:id — update plan
+billingRoutes.patch('/admin/plans/:id', authMiddleware, billingManageMiddleware, async (c) => {
+    const id = c.req.param('id');
+    const existing = getBillingPlan(id);
+    if (!existing)
+        return c.json({ error: 'Plan not found' }, 404);
+    const body = await c.req.json().catch(() => ({}));
+    const validation = BillingPlanPatchSchema.safeParse(body);
+    if (!validation.success) {
+        return c.json({ error: 'Invalid request body', details: validation.error.format() }, 400);
+    }
+    updateBillingPlan(id, validation.data);
+    invalidateAllBillingCaches();
+    const actor = c.get('user');
+    logBillingAudit('plan_updated', actor.id, actor.id, {
+        planId: id,
+        updates: validation.data,
+    });
+    const updated = getBillingPlan(id);
+    return c.json(updated);
+});
+// DELETE /admin/plans/:id — delete plan
+billingRoutes.delete('/admin/plans/:id', authMiddleware, billingManageMiddleware, async (c) => {
+    const id = c.req.param('id');
+    const plan = getBillingPlan(id);
+    if (!plan)
+        return c.json({ error: 'Plan not found' }, 404);
+    if (plan.is_default) {
+        return c.json({ error: 'Cannot delete the default plan' }, 400);
+    }
+    const deleted = deleteBillingPlan(id);
+    if (!deleted) {
+        return c.json({ error: 'Cannot delete plan with active subscribers' }, 409);
+    }
+    const actor = c.get('user');
+    logBillingAudit('plan_deleted', actor.id, actor.id, {
+        planId: id,
+        planName: plan.name,
+    });
+    return c.json({ success: true });
+});
+// GET /admin/users — all users billing overview
+billingRoutes.get('/admin/users', authMiddleware, billingManageMiddleware, async (c) => {
+    const users = getAllUserBillingOverview().map((u) => {
+        // Fill in fallback plan info for users without a real subscription
+        const access = checkBillingAccess(u.user_id, u.role);
+        if (!u.plan_id) {
+            const effective = getUserEffectivePlan(u.user_id);
+            if (effective) {
+                return {
+                    ...u,
+                    plan_id: effective.plan.id,
+                    plan_name: effective.plan.name,
+                    is_fallback: true,
+                    access_allowed: access.allowed,
+                    access_block_type: access.blockType ?? null,
+                    access_reason: access.reason ?? null,
+                    min_balance_usd: access.minBalanceUsd,
+                };
+            }
+        }
+        return {
+            ...u,
+            is_fallback: false,
+            access_allowed: access.allowed,
+            access_block_type: access.blockType ?? null,
+            access_reason: access.reason ?? null,
+            min_balance_usd: access.minBalanceUsd,
+        };
+    });
+    return c.json({ users });
+});
+// GET /admin/users/:id/detail — user billing detail (flat structure for drawer)
+billingRoutes.get('/admin/users/:id/detail', authMiddleware, billingManageMiddleware, async (c) => {
+    const userId = c.req.param('id');
+    const user = getUserById(userId);
+    if (!user) {
+        return c.json({ error: '用户不存在' }, 404);
+    }
+    const effective = getUserEffectivePlan(userId);
+    const realSubscription = getUserActiveSubscription(userId);
+    const balance = getUserBalance(userId);
+    const month = new Date().toISOString().slice(0, 7);
+    const today = new Date().toISOString().slice(0, 10);
+    const usage = getMonthlyUsage(userId, month);
+    const dailyUsage = getDailyUsage(userId, today);
+    const weeklySummary = getWeeklyUsageSummary(userId);
+    const plan = effective?.plan ?? null;
+    const isFallback = !realSubscription && !!effective;
+    const access = checkBillingAccess(userId, user.role);
+    return c.json({
+        // User info
+        user_id: user.id,
+        username: user.username,
+        display_name: user.display_name,
+        role: user.role,
+        // Plan info
+        plan_id: plan?.id ?? null,
+        plan_name: plan?.name ?? null,
+        subscription_status: realSubscription?.status ?? (isFallback ? 'default' : null),
+        is_fallback: isFallback,
+        has_real_subscription: !!realSubscription,
+        access_allowed: access.allowed,
+        access_block_type: access.blockType ?? null,
+        access_reason: access.reason ?? null,
+        min_balance_usd: access.minBalanceUsd,
+        // Balance
+        balance_usd: balance.balance_usd,
+        // Usage
+        current_month_cost: usage?.total_cost_usd ?? 0,
+        daily_cost_used: dailyUsage?.total_cost_usd ?? 0,
+        daily_cost_quota: plan?.daily_cost_quota ?? null,
+        weekly_cost_used: weeklySummary.totalCost,
+        weekly_cost_quota: plan?.weekly_cost_quota ?? null,
+        monthly_cost_quota: plan?.monthly_cost_quota ?? null,
+    });
+});
+// GET /admin/users/:id/transactions — user balance transactions
+billingRoutes.get('/admin/users/:id/transactions', authMiddleware, billingManageMiddleware, async (c) => {
+    const userId = c.req.param('id');
+    const limit = Math.min(parseInt(c.req.query('limit') || '20'), 100);
+    const offset = parseInt(c.req.query('offset') || '0');
+    const result = getBalanceTransactions(userId, limit, offset);
+    return c.json(result);
+});
+// POST /admin/users/:id/assign-plan — assign plan to user
+billingRoutes.post('/admin/users/:id/assign-plan', authMiddleware, billingManageMiddleware, async (c) => {
+    const userId = c.req.param('id');
+    const body = await c.req.json().catch(() => ({}));
+    const validation = AssignPlanSchema.safeParse(body);
+    if (!validation.success) {
+        return c.json({ error: 'Invalid request body', details: validation.error.format() }, 400);
+    }
+    const actor = c.get('user');
+    try {
+        assignPlan(userId, validation.data.plan_id, actor.id, validation.data.duration_days);
+        return c.json({ success: true });
+    }
+    catch (err) {
+        const message = err instanceof Error ? err.message : 'Failed to assign plan';
+        return c.json({ error: message }, 400);
+    }
+});
+// POST /admin/users/:id/adjust-balance — adjust user balance
+billingRoutes.post('/admin/users/:id/adjust-balance', authMiddleware, billingManageMiddleware, async (c) => {
+    const userId = c.req.param('id');
+    const body = await c.req.json().catch(() => ({}));
+    const validation = AdjustBalanceSchema.safeParse(body);
+    if (!validation.success) {
+        return c.json({ error: 'Invalid request body', details: validation.error.format() }, 400);
+    }
+    const actor = c.get('user');
+    try {
+        const tx = applyAdminBalanceAdjustment(userId, validation.data.amount_usd, validation.data.description, actor.id, validation.data.idempotency_key);
+        return c.json(tx);
+    }
+    catch (err) {
+        const message = err instanceof Error ? err.message : '调整余额失败';
+        return c.json({ error: message }, 400);
+    }
+});
+// GET /admin/redeem-codes — list all redeem codes
+billingRoutes.get('/admin/redeem-codes', authMiddleware, billingManageMiddleware, async (c) => {
+    const codes = getAllRedeemCodes();
+    return c.json({ codes });
+});
+// POST /admin/redeem-codes — create redeem code(s)
+billingRoutes.post('/admin/redeem-codes', authMiddleware, billingManageMiddleware, async (c) => {
+    const body = await c.req.json().catch(() => ({}));
+    const validation = RedeemCodeCreateSchema.safeParse(body);
+    if (!validation.success) {
+        return c.json({ error: 'Invalid request body', details: validation.error.format() }, 400);
+    }
+    const actor = c.get('user');
+    const count = validation.data.count ?? 1;
+    const prefix = validation.data.prefix ?? '';
+    const now = new Date();
+    const expiresAt = validation.data.expires_in_hours
+        ? new Date(now.getTime() + validation.data.expires_in_hours * 60 * 60 * 1000).toISOString()
+        : null;
+    const batchId = count > 1 ? `batch_${Date.now()}` : null;
+    const codes = [];
+    for (let i = 0; i < count; i++) {
+        const rawCode = generateRedeemCode();
+        const code = {
+            code: prefix ? `${prefix}-${rawCode}` : rawCode,
+            type: validation.data.type,
+            value_usd: validation.data.value_usd ?? null,
+            plan_id: validation.data.plan_id ?? null,
+            duration_days: validation.data.duration_days ?? null,
+            max_uses: validation.data.max_uses ?? 1,
+            used_count: 0,
+            expires_at: expiresAt,
+            created_by: actor.id,
+            notes: validation.data.notes ?? null,
+            batch_id: batchId,
+            created_at: now.toISOString(),
+        };
+        dbCreateRedeemCode(code);
+        codes.push(code);
+    }
+    logBillingAudit('code_created', actor.id, actor.id, {
+        count,
+        type: validation.data.type,
+        codes: codes.map((c) => c.code),
+    });
+    return c.json({ codes }, 201);
+});
+// DELETE /admin/redeem-codes/:code — delete redeem code
+billingRoutes.delete('/admin/redeem-codes/:code', authMiddleware, billingManageMiddleware, async (c) => {
+    const code = c.req.param('code');
+    const deleted = dbDeleteRedeemCode(code);
+    if (!deleted)
+        return c.json({ error: 'Code not found' }, 404);
+    const actor = c.get('user');
+    logBillingAudit('code_deleted', actor.id, actor.id, { code });
+    return c.json({ success: true });
+});
+// GET /admin/audit-log — billing audit log
+billingRoutes.get('/admin/audit-log', authMiddleware, billingManageMiddleware, async (c) => {
+    const limit = Math.min(parseInt(c.req.query('limit') || '50'), 200);
+    const offset = parseInt(c.req.query('offset') || '0');
+    const userId = c.req.query('user_id');
+    const eventType = c.req.query('event_type');
+    const result = getBillingAuditLog(limit, offset, userId || undefined, eventType || undefined);
+    return c.json(result);
+});
+// GET /admin/revenue — revenue summary
+billingRoutes.get('/admin/revenue', authMiddleware, billingManageMiddleware, async (c) => {
+    const stats = getRevenueStats();
+    return c.json(stats);
+});
+// GET /admin/plans — all plans (including inactive)
+billingRoutes.get('/admin/plans', authMiddleware, billingManageMiddleware, async (c) => {
+    const plans = getAllBillingPlans();
+    const subscriberCounts = getAllPlanSubscriberCounts();
+    const plansWithCount = plans.map((p) => ({
+        ...p,
+        subscriber_count: subscriberCounts[p.id] ?? 0,
+    }));
+    return c.json({ plans: plansWithCount });
+});
+// POST /admin/users/batch-assign-plan — batch assign plan
+billingRoutes.post('/admin/users/batch-assign-plan', authMiddleware, billingManageMiddleware, async (c) => {
+    const body = await c.req.json().catch(() => ({}));
+    const validation = BatchAssignPlanSchema.safeParse(body);
+    if (!validation.success) {
+        return c.json({ error: 'Invalid request body', details: validation.error.format() }, 400);
+    }
+    const actor = c.get('user');
+    try {
+        const count = batchAssignPlans(validation.data.user_ids, validation.data.plan_id, actor.id, validation.data.duration_days);
+        return c.json({ success: true, count });
+    }
+    catch (err) {
+        const message = err instanceof Error ? err.message : 'Failed to batch assign';
+        return c.json({ error: message }, 400);
+    }
+});
+// POST /admin/users/:id/cancel-subscription — cancel user subscription
+billingRoutes.post('/admin/users/:id/cancel-subscription', authMiddleware, billingManageMiddleware, async (c) => {
+    const userId = c.req.param('id');
+    const actor = c.get('user');
+    cancelSubscription(userId, actor.id);
+    return c.json({ success: true });
+});
+// GET /admin/users/:id/subscription-history — user subscription history
+billingRoutes.get('/admin/users/:id/subscription-history', authMiddleware, billingManageMiddleware, async (c) => {
+    const userId = c.req.param('id');
+    const history = getSubscriptionHistory(userId);
+    return c.json({ history });
+});
+// GET /admin/redeem-codes/export — CSV export
+billingRoutes.get('/admin/redeem-codes/export', authMiddleware, billingManageMiddleware, async (c) => {
+    const codes = getAllRedeemCodes();
+    const header = 'code,type,value_usd,plan_id,duration_days,max_uses,used_count,expires_at,notes,batch_id,created_at\n';
+    const csvEscape = (val) => {
+        const s = String(val ?? '');
+        if (s.includes(',') || s.includes('"') || s.includes('\n')) {
+            return `"${s.replace(/"/g, '""')}"`;
+        }
+        return s;
+    };
+    const rows = codes.map((rc) => [
+        csvEscape(rc.code),
+        csvEscape(rc.type),
+        csvEscape(rc.value_usd ?? ''),
+        csvEscape(rc.plan_id ?? ''),
+        csvEscape(rc.duration_days ?? ''),
+        csvEscape(rc.max_uses),
+        csvEscape(rc.used_count),
+        csvEscape(rc.expires_at ?? ''),
+        csvEscape(rc.notes ?? ''),
+        csvEscape(rc.batch_id ?? ''),
+        csvEscape(rc.created_at ?? ''),
+    ].join(','));
+    const csv = '\uFEFF' + header + rows.join('\n');
+    return new Response(csv, {
+        headers: {
+            'Content-Type': 'text/csv; charset=utf-8',
+            'Content-Disposition': `attachment; filename=redeem-codes-${new Date().toISOString().slice(0, 10)}.csv`,
+        },
+    });
+});
+// GET /admin/redeem-codes/:code/usage — redeem code usage details
+billingRoutes.get('/admin/redeem-codes/:code/usage', authMiddleware, billingManageMiddleware, async (c) => {
+    const code = c.req.param('code');
+    const details = getRedeemCodeUsageDetails(code);
+    return c.json({ details });
+});
+// GET /admin/dashboard — dashboard stats
+billingRoutes.get('/admin/dashboard', authMiddleware, billingManageMiddleware, async (c) => {
+    const stats = getDashboardStats();
+    return c.json(stats);
+});
+// GET /admin/revenue/trend — revenue trend by month
+billingRoutes.get('/admin/revenue/trend', authMiddleware, billingManageMiddleware, async (c) => {
+    const months = Math.min(parseInt(c.req.query('months') || '6'), 24);
+    const trend = getRevenueTrend(months);
+    return c.json({ trend });
+});
+// GET /my/usage/daily — daily usage history for charts
+billingRoutes.get('/my/usage/daily', authMiddleware, async (c) => {
+    const user = c.get('user');
+    const days = Math.min(parseInt(c.req.query('days') || '14'), 90);
+    const history = getUserDailyUsageHistory(user.id, days);
+    return c.json({ history });
+});
+// GET /status — billing enabled status + currency settings (no manage_billing required)
+billingRoutes.get('/status', authMiddleware, async (c) => {
+    const enabled = isBillingEnabled();
+    const settings = getSystemSettings();
+    return c.json({
+        enabled,
+        mode: settings.billingMode ?? 'wallet_first',
+        minStartBalanceUsd: settings.billingMinStartBalanceUsd ?? 0.01,
+        currency: settings.billingCurrency ?? 'USD',
+        currencyRate: settings.billingCurrencyRate ?? 1,
+    });
+});
+export default billingRoutes;