codex-to-im 1.0.42 → 1.0.44

package/dist/ui-server.mjs

@@ -4593,6 +4593,9 @@ function normalizeChannelId(value) {
 }
 
 // src/config.ts
+function isSupportedChannelProvider(value) {
+  return value === "feishu" || value === "weixin";
+}
 function toFeishuConfig(channel) {
   return channel?.provider === "feishu" ? channel.config : void 0;
 }
@@ -4668,6 +4671,8 @@ function readConfigV2File() {
   try {
     const parsed = JSON.parse(fs.readFileSync(CONFIG_V2_PATH, "utf-8"));
     if (parsed && parsed.schemaVersion === 2 && parsed.runtime && Array.isArray(parsed.channels)) {
+      parsed.runtime.provider = normalizeRuntimeProvider(parsed.runtime.provider);
+      parsed.channels = normalizeChannelInstances(parsed.channels);
       return parsed;
     }
     return null;
@@ -4687,9 +4692,32 @@ function defaultAliasForProvider(provider) {
 function buildDefaultChannelId(provider) {
   return `${provider}-default`;
 }
+function normalizeRuntimeProvider(_value) {
+  return "codex";
+}
+function normalizeChannelInstances(value) {
+  if (!Array.isArray(value)) return [];
+  return value.flatMap((entry) => {
+    if (!entry || typeof entry !== "object") return [];
+    const record = entry;
+    if (!isSupportedChannelProvider(record.provider)) return [];
+    const provider = record.provider;
+    const config = record.config && typeof record.config === "object" ? record.config : {};
+    const timestamp = nowIso();
+    return [{
+      id: normalizeChannelId(
+        typeof record.id === "string" && record.id.trim() ? record.id : buildDefaultChannelId(provider)
+      ),
+      alias: typeof record.alias === "string" && record.alias.trim() ? record.alias.trim() : defaultAliasForProvider(provider),
+      provider,
+      enabled: record.enabled === true,
+      createdAt: typeof record.createdAt === "string" ? record.createdAt : timestamp,
+      updatedAt: typeof record.updatedAt === "string" ? record.updatedAt : timestamp,
+      config
+    }];
+  });
+}
 function migrateLegacyEnvToV2(env) {
-  const rawRuntime = env.get("CTI_RUNTIME") || "codex";
-  const runtime = ["claude", "codex", "auto"].includes(rawRuntime) ? rawRuntime : "codex";
   const enabledChannels = splitCsv(env.get("CTI_ENABLED_CHANNELS")) ?? ["feishu"];
   const timestamp = nowIso();
   const channels = [];
@@ -4736,7 +4764,7 @@ function migrateLegacyEnvToV2(env) {
   return {
     schemaVersion: 2,
     runtime: {
-      provider: runtime,
+      provider: "codex",
       defaultWorkspaceRoot: expandHomePath(env.get("CTI_DEFAULT_WORKSPACE_ROOT")) || void 0,
       defaultModel: env.get("CTI_DEFAULT_MODEL") || void 0,
       defaultMode: env.get("CTI_DEFAULT_MODE") || "code",
@@ -4747,8 +4775,7 @@ function migrateLegacyEnvToV2(env) {
       codexSandboxMode: parseSandboxMode(env.get("CTI_CODEX_SANDBOX_MODE")) ?? "workspace-write",
       codexReasoningEffort: parseReasoningEffort(env.get("CTI_CODEX_REASONING_EFFORT")) ?? "medium",
       uiAllowLan: env.get("CTI_UI_ALLOW_LAN") === "true",
-      uiAccessToken: env.get("CTI_UI_ACCESS_TOKEN") || void 0,
-      autoApprove: env.get("CTI_AUTO_APPROVE") === "true"
+      uiAccessToken: env.get("CTI_UI_ACCESS_TOKEN") || void 0
     },
     channels
   };
@@ -4775,13 +4802,13 @@ function expandConfig(v2) {
     codexSandboxMode: v2.runtime.codexSandboxMode ?? "workspace-write",
     codexReasoningEffort: v2.runtime.codexReasoningEffort ?? "medium",
     uiAllowLan: v2.runtime.uiAllowLan === true,
-    uiAccessToken: v2.runtime.uiAccessToken || void 0,
-    autoApprove: v2.runtime.autoApprove === true
+    uiAccessToken: v2.runtime.uiAccessToken || void 0
   };
 }
 function buildV2FileFromExpandedConfig(config, current) {
   const hasExplicitChannels = Array.isArray(config.channels);
   let channels = hasExplicitChannels ? [...config.channels || []] : [...current?.channels || []];
+  channels = normalizeChannelInstances(channels);
   return {
     schemaVersion: 2,
     runtime: {
@@ -4796,8 +4823,7 @@ function buildV2FileFromExpandedConfig(config, current) {
       codexSandboxMode: config.codexSandboxMode,
       codexReasoningEffort: config.codexReasoningEffort,
       uiAllowLan: config.uiAllowLan,
-      uiAccessToken: config.uiAccessToken,
-      autoApprove: config.autoApprove
+      uiAccessToken: config.uiAccessToken
     },
     channels: channels.map((channel) => ({
       ...channel,
@@ -4827,8 +4853,7 @@ function loadConfig() {
       codexSkipGitRepoCheck: true,
       codexSandboxMode: "workspace-write",
       codexReasoningEffort: "medium",
-      uiAllowLan: false,
-      autoApprove: false
+      uiAllowLan: false
     },
     channels: []
   };
@@ -4894,7 +4919,6 @@ function saveConfig(config) {
       out += formatEnvLine("CTI_WEIXIN_COMMAND_MARKDOWN_ENABLED", String(weixinConfig.feedbackMarkdownEnabled));
     }
   }
-  out += formatEnvLine("CTI_AUTO_APPROVE", String(next.runtime.autoApprove === true));
   ensureConfigDir();
   const tmpPath = CONFIG_PATH + ".tmp";
   fs.writeFileSync(tmpPath, out, { mode: 384 });
@@ -4908,13 +4932,14 @@ function findChannelInstance(channelId, config) {
 }
 function configToSettings(config) {
   const m = /* @__PURE__ */ new Map();
+  const channels = normalizeChannelInstances(config.channels || []);
   const current = {
     schemaVersion: 2,
     runtime: {
       provider: config.runtime,
       defaultMode: config.defaultMode
     },
-    channels: config.channels || []
+    channels
   };
   const feishu = getChannelByProvider(current, "feishu");
   const weixin = getChannelByProvider(current, "weixin");
@@ -4959,23 +4984,8 @@ function configToSettings(config) {
   );
   m.set(
     "bridge_channel_instances_json",
-    JSON.stringify(config.channels || [])
-  );
-  m.set(
-    "bridge_telegram_enabled",
-    config.enabledChannels.includes("telegram") ? "true" : "false"
-  );
-  if (config.tgBotToken) m.set("telegram_bot_token", config.tgBotToken);
-  if (config.tgAllowedUsers) m.set("telegram_bridge_allowed_users", config.tgAllowedUsers.join(","));
-  if (config.tgChatId) m.set("telegram_chat_id", config.tgChatId);
-  m.set(
-    "bridge_discord_enabled",
-    config.enabledChannels.includes("discord") ? "true" : "false"
+    JSON.stringify(channels)
   );
-  if (config.discordBotToken) m.set("bridge_discord_bot_token", config.discordBotToken);
-  if (config.discordAllowedUsers) m.set("bridge_discord_allowed_users", config.discordAllowedUsers.join(","));
-  if (config.discordAllowedChannels) m.set("bridge_discord_allowed_channels", config.discordAllowedChannels.join(","));
-  if (config.discordAllowedGuilds) m.set("bridge_discord_allowed_guilds", config.discordAllowedGuilds.join(","));
   m.set(
     "bridge_feishu_enabled",
     feishu?.enabled === true ? "true" : "false"
@@ -4992,19 +5002,6 @@ function configToSettings(config) {
     "bridge_feishu_command_markdown_enabled",
     feishuConfig?.feedbackMarkdownEnabled === false ? "false" : "true"
   );
-  m.set(
-    "bridge_qq_enabled",
-    config.enabledChannels.includes("qq") ? "true" : "false"
-  );
-  if (config.qqAppId) m.set("bridge_qq_app_id", config.qqAppId);
-  if (config.qqAppSecret) m.set("bridge_qq_app_secret", config.qqAppSecret);
-  if (config.qqAllowedUsers) m.set("bridge_qq_allowed_users", config.qqAllowedUsers.join(","));
-  if (config.qqImageEnabled !== void 0) {
-    m.set("bridge_qq_image_enabled", String(config.qqImageEnabled));
-  }
-  if (config.qqMaxImageSize !== void 0) {
-    m.set("bridge_qq_max_image_size", String(config.qqMaxImageSize));
-  }
   m.set(
     "bridge_weixin_enabled",
     weixin?.enabled === true ? "true" : "false"
@@ -5414,6 +5411,42 @@ function isArchivedDesktopThread(threadId) {
 
 // src/session-bindings.ts
 import path3 from "node:path";
+
+// src/lib/bridge/binding-audit.ts
+function describeBinding(binding) {
+  if (!binding) return "none";
+  const parts = [
+    `session=${binding.codepilotSessionId}`,
+    `sdk=${binding.sdkSessionId || "-"}`,
+    `mode=${binding.mode}`
+  ];
+  if (binding.workingDirectory) {
+    parts.push(`cwd=${binding.workingDirectory}`);
+  }
+  return parts.join(", ");
+}
+function recordBindingChange(store, input) {
+  const from = describeBinding(input.fromBinding);
+  const to = describeBinding(input.toBinding);
+  const details = [
+    `action=${input.action}`,
+    `from=[${from}]`,
+    `to=[${to}]`
+  ];
+  if (input.source) details.push(`source=${input.source}`);
+  if (input.reason) details.push(`reason=${input.reason}`);
+  store.insertAuditLog({
+    channelType: input.address.channelType,
+    channelProvider: input.address.channelProvider || input.toBinding?.channelProvider || input.fromBinding?.channelProvider,
+    channelAlias: input.address.channelAlias || input.toBinding?.channelAlias || input.fromBinding?.channelAlias,
+    chatId: input.address.chatId,
+    direction: "inbound",
+    messageId: input.messageId || `binding-change:${Date.now()}`,
+    summary: `Binding change: ${details.join("; ")}`
+  });
+}
+
+// src/session-bindings.ts
 function asChannelProvider(value) {
   return value === "feishu" || value === "weixin" ? value : void 0;
 }
@@ -5591,6 +5624,7 @@ function updateBindingTarget(store, bindingId, targetKey) {
   if (!binding) {
     throw new Error("Binding not found.");
   }
+  const fromBinding = { ...binding };
   if (targetKey.startsWith("desktop:")) {
     const threadId = targetKey.slice("desktop:".length);
     const desktop = getDesktopSessionByThreadId(threadId);
@@ -5616,6 +5650,20 @@ function updateBindingTarget(store, bindingId, targetKey) {
   } else {
     throw new Error("Unsupported target.");
   }
+  const toBinding = store.getChannelBinding(binding.channelType, binding.chatId);
+  recordBindingChange(store, {
+    action: "web_switch",
+    address: {
+      channelType: binding.channelType,
+      channelProvider: binding.channelProvider,
+      channelAlias: binding.channelAlias,
+      chatId: binding.chatId
+    },
+    fromBinding,
+    toBinding,
+    source: "web_ui",
+    reason: `target=${targetKey}`
+  });
   const updated = listBindingSummaries(store).find((item) => item.id === bindingId);
   if (!updated) {
     throw new Error("Updated binding not found.");
@@ -5627,7 +5675,20 @@ function removeBinding(store, bindingId) {
   if (!binding) {
     throw new Error("Binding not found.");
   }
+  const fromBinding = { ...binding };
   store.deleteChannelBinding(bindingId);
+  recordBindingChange(store, {
+    action: "web_unbind",
+    address: {
+      channelType: binding.channelType,
+      channelProvider: binding.channelProvider,
+      channelAlias: binding.channelAlias,
+      chatId: binding.chatId
+    },
+    fromBinding,
+    toBinding: null,
+    source: "web_ui"
+  });
 }
 
 // src/service-manager.ts
@@ -6471,7 +6532,7 @@ var JsonFileStore = class {
       this.persistSessions();
     }
   }
-  updateSession(sessionId, updates) {
+  updateSession(sessionId, updates, options) {
     this.reloadSessions();
     const session = this.sessions.get(sessionId);
     if (!session) return;
@@ -6479,7 +6540,7 @@ var JsonFileStore = class {
       ...session,
       ...updates,
       id: session.id,
-      updated_at: now()
+      updated_at: options?.touch === false ? session.updated_at : now()
     };
     this.sessions.set(sessionId, next);
     this.persistSessions();
@@ -7712,8 +7773,7 @@ function configToPayload(config) {
     codexReasoningEffort: config.codexReasoningEffort || "medium",
     uiAllowLan: config.uiAllowLan === true,
     uiAccessToken: config.uiAccessToken || "",
-    autoApprove: config.autoApprove === true,
-    channels: (config.channels || []).map(channelToPayload)
+    channels: (config.channels || []).filter((channel) => isSupportedChannelProvider(channel.provider)).map(channelToPayload)
   };
 }
 function mergeConfig(payload) {
@@ -7724,7 +7784,7 @@ function mergeConfig(payload) {
   const uiAccessToken = requestedUiAccessToken || current.uiAccessToken || (uiAllowLan ? generateAccessToken() : void 0);
   return {
     ...current,
-    runtime: payload.runtime === "claude" || payload.runtime === "auto" ? payload.runtime : "codex",
+    runtime: "codex",
     enabledChannels: current.enabledChannels,
     defaultWorkspaceRoot: asString(payload.defaultWorkspaceRoot),
     defaultModel: rawDefaultModel === void 0 ? current.defaultModel : rawDefaultModel === "" ? void 0 : availableCodexModelSlugs.has(rawDefaultModel) ? rawDefaultModel : current.defaultModel,
@@ -7737,7 +7797,6 @@ function mergeConfig(payload) {
     codexReasoningEffort: payload.codexReasoningEffort === "minimal" || payload.codexReasoningEffort === "low" || payload.codexReasoningEffort === "high" || payload.codexReasoningEffort === "xhigh" ? payload.codexReasoningEffort : "medium",
     uiAllowLan,
     uiAccessToken,
-    autoApprove: payload.autoApprove === true,
     channels: current.channels
   };
 }
@@ -9553,8 +9612,6 @@ function renderHtml() {
                   Runtime
                   <select id="runtime">
                     <option value="codex" selected>codex</option>
-                    <option value="auto">auto</option>
-                    <option value="claude">claude</option>
                   </select>
                 </label>
                 <label>
@@ -9570,11 +9627,11 @@ function renderHtml() {
                   <input id="historyMessageLimit" type="number" min="1" max="20" value="8" />
                 </label>
                 <label>
-                  \u9759\u9ED8\u68C0\u6D4B\u542F\u52A8\u65F6\u957F\uFF08\u79D2\uFF09
+                  \u4E0A\u6B21\u54CD\u5E94\u8DDD\u4ECA\u663E\u793A\u542F\u52A8\u65F6\u957F\uFF08\u79D2\uFF09
                   <input id="streamStatusIdleStartSeconds" type="number" min="1" value="180" />
                 </label>
                 <label>
-                  \u9759\u9ED8\u68C0\u6D4B\u95F4\u9694\uFF08\u79D2\uFF09
+                  \u4E0A\u6B21\u54CD\u5E94\u8DDD\u4ECA\u68C0\u67E5\u95F4\u9694\uFF08\u79D2\uFF09
                   <input id="streamStatusCheckIntervalSeconds" type="number" min="1" value="10" />
                 </label>
               </div>
@@ -9606,11 +9663,8 @@ function renderHtml() {
                   </select>
                 </label>
               </div>
-              <div class="small">\u672A\u7ED1\u5B9A\u7684 IM \u804A\u5929\u4F1A\u5148\u8FDB\u5165\u4E34\u65F6\u8349\u7A3F\u7EBF\u7A0B\uFF08\u7B49\u540C <code>/t 0</code>\uFF09\uFF1B\u201C\u9ED8\u8BA4\u5DE5\u4F5C\u7A7A\u95F4\u201D\u53EA\u7528\u4E8E <code>/new proj1</code> \u8FD9\u7C7B\u76F8\u5BF9\u9879\u76EE\u540D\u3002\u7559\u7A7A\u65F6\u4F1A\u6309\u5F53\u524D\u7CFB\u7EDF\u81EA\u52A8\u56DE\u9000\u5230 <code>~/cx2im</code>\u3002\u9ED8\u8BA4\u6A21\u578B\u5019\u9009\u9879\u6765\u81EA\u542F\u52A8\u65F6\u8BFB\u53D6\u7684 Codex \u6A21\u578B\u7F13\u5B58\uFF1A\u9690\u85CF\u6A21\u578B\u4E0D\u4F1A\u5C55\u793A\uFF0CCLI only \u6A21\u578B\u4F1A\u6807\u6210\u201C\u4EC5 IM / CLI\u201D\u3002\u7559\u7A7A\u5219\u7EE7\u7EED\u8DDF\u968F Codex \u5F53\u524D\u9ED8\u8BA4\u6A21\u578B\u3002\u6587\u4EF6\u7CFB\u7EDF\u6743\u9650\u662F\u5168\u5C40\u9ED8\u8BA4\u503C\uFF0C\u601D\u8003\u7EA7\u522B\u53EF\u5728 IM \u4F1A\u8BDD\u91CC\u518D\u5355\u72EC\u8986\u76D6\u3002\u9759\u9ED8\u68C0\u6D4B\u914D\u7F6E\u53EA\u5F71\u54CD\u98DE\u4E66\u957F\u4EFB\u52A1\u5E95\u90E8\u201C\u6700\u8FD1 X \u65E0\u65B0\u8F93\u51FA\u201D\u7684\u51FA\u73B0\u65F6\u673A\u3002</div>
-              <div class="small">\u5F53\u524D\u9700\u8981\u91CD\u542F Bridge \u7684\u914D\u7F6E\uFF1A<code>Runtime</code>\u3001<code>\u81EA\u52A8\u6279\u51C6\u5DE5\u5177\u6743\u9650</code>\u3001<code>\u5141\u8BB8\u5728\u672A\u4FE1\u4EFB Git \u76EE\u5F55\u8FD0\u884C Codex</code>\u3002\u901A\u9053\u5B9E\u4F8B\u7684\u63A5\u5165\u914D\u7F6E\u8BF7\u5728\u201C\u901A\u9053\u201D\u9875\u7EF4\u62A4\u3002</div>
-              <div class="checkbox-row">
-                <label class="checkbox"><input id="autoApprove" type="checkbox" /> \u81EA\u52A8\u6279\u51C6\u5DE5\u5177\u6743\u9650</label>
-              </div>
+              <div class="small">\u672A\u7ED1\u5B9A\u7684 IM \u804A\u5929\u4F1A\u5148\u8FDB\u5165\u4E34\u65F6\u8349\u7A3F\u7EBF\u7A0B\uFF08\u7B49\u540C <code>/t 0</code>\uFF09\uFF1B\u201C\u9ED8\u8BA4\u5DE5\u4F5C\u7A7A\u95F4\u201D\u53EA\u7528\u4E8E <code>/new proj1</code> \u8FD9\u7C7B\u76F8\u5BF9\u9879\u76EE\u540D\u3002\u7559\u7A7A\u65F6\u4F1A\u6309\u5F53\u524D\u7CFB\u7EDF\u81EA\u52A8\u56DE\u9000\u5230 <code>~/cx2im</code>\u3002\u9ED8\u8BA4\u6A21\u578B\u5019\u9009\u9879\u6765\u81EA\u542F\u52A8\u65F6\u8BFB\u53D6\u7684 Codex \u6A21\u578B\u7F13\u5B58\uFF1A\u9690\u85CF\u6A21\u578B\u4E0D\u4F1A\u5C55\u793A\uFF0CCLI only \u6A21\u578B\u4F1A\u6807\u6210\u201C\u4EC5 IM / CLI\u201D\u3002\u7559\u7A7A\u5219\u7EE7\u7EED\u8DDF\u968F Codex \u5F53\u524D\u9ED8\u8BA4\u6A21\u578B\u3002\u6587\u4EF6\u7CFB\u7EDF\u6743\u9650\u662F\u5168\u5C40\u9ED8\u8BA4\u503C\uFF0C\u601D\u8003\u7EA7\u522B\u53EF\u5728 IM \u4F1A\u8BDD\u91CC\u518D\u5355\u72EC\u8986\u76D6\u3002\u4E0A\u6B21\u54CD\u5E94\u8DDD\u4ECA\u914D\u7F6E\u53EA\u5F71\u54CD\u98DE\u4E66\u957F\u4EFB\u52A1\u5E95\u90E8\u201C\u4E0A\u6B21\u54CD\u5E94\u8DDD\u4ECA X\u201D\u7684\u51FA\u73B0\u65F6\u673A\u3002</div>
+              <div class="small">\u5F53\u524D\u9700\u8981\u91CD\u542F Bridge \u7684\u914D\u7F6E\uFF1A<code>Runtime</code>\u3001<code>\u5141\u8BB8\u5728\u672A\u4FE1\u4EFB Git \u76EE\u5F55\u8FD0\u884C Codex</code>\u3002\u901A\u9053\u5B9E\u4F8B\u7684\u63A5\u5165\u914D\u7F6E\u8BF7\u5728\u201C\u901A\u9053\u201D\u9875\u7EF4\u62A4\u3002</div>
               <div class="checkbox-row">
                 <label class="checkbox"><input id="codexSkipGitRepoCheck" type="checkbox" checked /> \u5141\u8BB8\u5728\u672A\u4FE1\u4EFB Git \u76EE\u5F55\u8FD0\u884C Codex</label>
               </div>
@@ -9935,7 +9989,6 @@ function renderHtml() {
           codexReasoningEffort: document.getElementById('codexReasoningEffort').value,
           uiAllowLan: document.getElementById('uiAllowLan').checked,
           uiAccessToken: document.getElementById('uiAccessToken').value,
-          autoApprove: document.getElementById('autoApprove').checked,
         };
       }
 
@@ -10105,20 +10158,18 @@ function renderHtml() {
         defaultModel: '\u9ED8\u8BA4\u6A21\u578B',
         defaultMode: '\u9ED8\u8BA4\u6A21\u5F0F',
         historyMessageLimit: '/history \u8FD4\u56DE\u6761\u6570',
-        streamStatusIdleStartSeconds: '\u9759\u9ED8\u68C0\u6D4B\u542F\u52A8\u65F6\u957F',
-        streamStatusCheckIntervalSeconds: '\u9759\u9ED8\u68C0\u6D4B\u95F4\u9694',
+        streamStatusIdleStartSeconds: '\u4E0A\u6B21\u54CD\u5E94\u8DDD\u4ECA\u663E\u793A\u542F\u52A8\u65F6\u957F',
+        streamStatusCheckIntervalSeconds: '\u4E0A\u6B21\u54CD\u5E94\u8DDD\u4ECA\u68C0\u67E5\u95F4\u9694',
         codexSkipGitRepoCheck: '\u5141\u8BB8\u5728\u672A\u4FE1\u4EFB Git \u76EE\u5F55\u8FD0\u884C Codex',
         codexSandboxMode: 'Codex \u6587\u4EF6\u7CFB\u7EDF\u6743\u9650',
         codexReasoningEffort: 'Codex \u601D\u8003\u7EA7\u522B',
         uiAllowLan: '\u5141\u8BB8\u5C40\u57DF\u7F51\u8BBF\u95EE Web \u63A7\u5236\u53F0',
         uiAccessToken: '\u5C40\u57DF\u7F51\u8BBF\u95EE token',
-        autoApprove: '\u81EA\u52A8\u6279\u51C6\u5DE5\u5177\u6743\u9650',
       };
 
       const BRIDGE_RESTART_FIELDS = new Set([
         'runtime',
         'codexSkipGitRepoCheck',
-        'autoApprove',
       ]);
 
       const AUTO_SYNC_FIELDS = new Set([]);
@@ -10710,7 +10761,6 @@ function renderHtml() {
         document.getElementById('codexReasoningEffort').value = config.codexReasoningEffort || 'medium';
         document.getElementById('uiAllowLan').checked = config.uiAllowLan === true;
         document.getElementById('uiAccessToken').value = config.uiAccessToken || '';
-        document.getElementById('autoApprove').checked = config.autoApprove === true;
         renderUiAccess();
         ensureActiveChannelId();
         renderChannelsWorkspace();

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "codex-to-im",
-  "version": "1.0.42",
+  "version": "1.0.44",
   "description": "Installable Codex-to-IM bridge with local setup UI and background service",
   "license": "MIT",
   "homepage": "https://github.com/zhangle1987/codex-to-im#readme",
@@ -40,10 +40,8 @@
     "prepublishOnly": "npm run typecheck && npm run build"
   },
   "dependencies": {
-    "@anthropic-ai/claude-agent-sdk": "^0.2.62",
     "@larksuiteoapi/node-sdk": "^1.59.0",
-    "@openai/codex-sdk": "^0.122.0",
-    "discord.js": "^14.25.1",
+    "@openai/codex-sdk": "^0.124.0",
     "markdown-it": "^14.1.1",
     "qrcode": "^1.5.4",
     "ws": "^8.18.0"

package/references/setup-guides.md

@@ -4,97 +4,6 @@ Detailed step-by-step guides for each IM platform. Referenced by the `setup` and
 
 ---
 
-## Telegram
-
-### Bot Token
-
-**How to get a Telegram Bot Token:**
-1. Open Telegram and search for `@BotFather`
-2. Send `/newbot` to create a new bot
-3. Follow the prompts: choose a display name and a username (must end in `bot`)
-4. BotFather will reply with a token like `7823456789:AAF-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx`
-5. Copy the full token and paste it here
-
-**Recommended bot settings** (send these commands to @BotFather):
-- `/setprivacy` → choose your bot → `Disable` (so the bot can read group messages, only needed for group use)
-- `/setcommands` → set commands like `new - Start new session`, `mode - Switch mode`
-
-Token format: `数字:字母数字字符串` (e.g. `7823456789:AAF-xxx...xxx`)
-
-### Chat ID
-
-**How to get your Telegram Chat ID:**
-1. Start a chat with your bot (search for the bot's username and click **Start**)
-2. Send any message to the bot (e.g. "hello")
-3. Open this URL in your browser (replace `YOUR_BOT_TOKEN` with your actual bot token):
-   `https://api.telegram.org/botYOUR_BOT_TOKEN/getUpdates`
-4. In the JSON response, find `"chat":{"id":123456789,...}` — that number is your Chat ID
-5. For group chats, the Chat ID is a negative number (e.g. `-1001234567890`)
-
-**Why this matters:** The bot uses Chat ID for authorization. If neither Chat ID nor Allowed User IDs are configured, the bot will reject all incoming messages.
-
-### Allowed User IDs (optional)
-
-**How to find your Telegram User ID:**
-1. Search for `@userinfobot` on Telegram and start a chat
-2. It will reply with your User ID (a number like `123456789`)
-3. Alternatively, forward a message from yourself to `@userinfobot`
-
-Enter comma-separated IDs to restrict access (recommended for security).
-Leave empty to allow anyone who can message the bot.
-
----
-
-## Discord
-
-### Bot Token
-
-**How to create a Discord Bot and get the token:**
-1. Go to https://discord.com/developers/applications
-2. Click **"New Application"** → give it a name → click **"Create"**
-3. Go to the **"Bot"** tab on the left sidebar
-4. Click **"Reset Token"** → copy the token (you can only see it once!)
-
-**Required bot settings (on the Bot tab):**
-- Under **Privileged Gateway Intents**, enable:
-  - ✅ **Message Content Intent** (required to read message text)
-
-**Invite the bot to your server:**
-1. Go to the **"OAuth2"** tab → **"URL Generator"**
-2. Under **Scopes**, check: `bot`
-3. Under **Bot Permissions**, check: `Send Messages`, `Read Message History`, `View Channels`
-4. Copy the generated URL at the bottom and open it in your browser
-5. Select the server and click **"Authorize"**
-
-Token format: a long base64-like string (e.g. `MTIzNDU2Nzg5.Gxxxxx.xxxxxxxxxxxxxxxxxxxxxxxx`)
-
-### Allowed User IDs
-
-**How to find Discord User IDs:**
-1. In Discord, go to Settings → Advanced → enable **Developer Mode**
-2. Right-click on any user → **"Copy User ID"**
-
-Enter comma-separated IDs.
-
-**Why this matters:** The bot uses a default-deny policy. If neither Allowed User IDs nor Allowed Channel IDs are configured, the bot will silently reject all incoming messages. You must set at least one.
-
-### Allowed Channel IDs (optional)
-
-**How to find Discord Channel IDs:**
-1. With Developer Mode enabled, right-click on any channel → **"Copy Channel ID"**
-
-Enter comma-separated IDs to restrict the bot to specific channels.
-Leave empty to allow all channels the bot can see.
-
-### Allowed Guild (Server) IDs (optional)
-
-**How to find Discord Server IDs:**
-1. With Developer Mode enabled, right-click on the server icon → **"Copy Server ID"**
-
-Enter comma-separated IDs. Leave empty to allow all servers the bot is in.
-
----
-
 ## Feishu / Lark
 
 ### App ID and App Secret
@@ -138,11 +47,11 @@ Enter comma-separated IDs. Leave empty to allow all servers the bot is in.
 }
 ```
 
-4. Click **"Save"** to apply all permissions
-
-If the batch import UI is not available, add each scope manually via the search box.
-
-> **Important:** If `cardkit:card:write` is missing, enabling Feishu streaming in the local workbench will not work. The bridge will log Feishu error `99991672` and fall back to a normal final-result message.
+4. Click **"Save"** to apply all permissions
+
+If the batch import UI is not available, add each scope manually via the search box.
+
+> **Important:** If `cardkit:card:write` is missing, enabling Feishu streaming in the local workbench will not work. The bridge will log Feishu error `99991672` and fall back to a normal final-result message.
 
 **Step B — Enable the bot**
 
@@ -161,9 +70,9 @@ If the batch import UI is not available, add each scope manually via the search
 
 > The bridge service must be running before configuring events. Feishu validates the WebSocket connection when saving event subscription — if the bridge is not running, you'll get "未检测到应用连接信息" (connection not detected) error.
 
-**Step D — Start the bridge service**
-
-Start the bridge from the local `codex-to-im` workbench. This establishes the WebSocket long connection that Feishu needs to detect.
+**Step D — Start the bridge service**
+
+Start the bridge from the local `codex-to-im` workbench. This establishes the WebSocket long connection that Feishu needs to detect.
 
 **Step E — Configure Events & Callbacks (long connection)**
 
@@ -192,21 +101,21 @@ If you already have a Feishu app configured, you need to:
    - `im:message:update` — Real-time card content updates
    - `im:message.reactions:read`, `im:message.reactions:write_only` — Typing indicator
 2. **Publish a new version** — Permission changes only take effect after a new version is approved
-3. **Start (or restart) the bridge** — Start it from the local `codex-to-im` workbench so the WebSocket connection is active
+3. **Start (or restart) the bridge** — Start it from the local `codex-to-im` workbench so the WebSocket connection is active
 4. **Add callback**: Go to Events & Callbacks, add `card.action.trigger` callback (card interaction for permission buttons). This step requires the bridge to be running — Feishu validates the WebSocket connection when saving.
 5. **Publish again** — The new callback requires another version publish + admin approval
-6. **Restart the bridge** — Stop and start it again from the local `codex-to-im` workbench to pick up the new capabilities
-
-### Current Feishu streaming behavior with Codex runtime
-
-Even after the Feishu permissions are correct, the current `codex` runtime does **not** guarantee token-by-token text streaming into the Feishu card.
-
-As of **2026-03-24**, the `Codex CLI / SDK` event stream typically emits assistant text when the `agent_message` item completes, rather than as token deltas. In practice, Feishu streaming cards are best understood as:
-
-- early `Thinking` / tool progress updates
-- final response text written into the card at completion
-
-So if you see the final answer appear all at once after the card was created successfully, that is currently expected behavior with `codex`.
+6. **Restart the bridge** — Stop and start it again from the local `codex-to-im` workbench to pick up the new capabilities
+
+### Current Feishu streaming behavior with Codex runtime
+
+Even after the Feishu permissions are correct, the current `codex` runtime does **not** guarantee token-by-token text streaming into the Feishu card.
+
+As of **2026-03-24**, the `Codex CLI / SDK` event stream typically emits assistant text when the `agent_message` item completes, rather than as token deltas. In practice, Feishu streaming cards are best understood as:
+
+- early `Thinking` / tool progress updates
+- final response text written into the card at completion
+
+So if you see the final answer appear all at once after the card was created successfully, that is currently expected behavior with `codex`.
 
 ### Domain (optional)
 
@@ -222,37 +131,6 @@ Leave empty to allow all users who can message the bot.
 
 ---
 
-## QQ
-
-> **Note:** QQ first version only supports **C2C private chat** (sandbox access). Group chat and channel are not supported yet.
-
-### App ID and App Secret (required)
-
-**How to get QQ Bot credentials:**
-1. Go to https://q.qq.com/qqbot/openclaw
-2. Log in and enter the QQ Bot / OpenClaw management page
-3. Create a new QQ Bot or select an existing one
-4. Find **App ID** and **App Secret** on the bot's credential page
-5. Copy both values
-
-These are the only two required fields for QQ.
-
-### Sandbox private chat setup
-
-1. In the QQ Bot management page, configure sandbox access
-2. Scan the QR code with QQ to add the bot as a friend
-3. Send a message to the bot via QQ private chat to start using it
-
-### Allowed User OpenIDs (optional)
-
-**Important:** The value is `user_openid`, NOT QQ number.
-
-`user_openid` is an opaque identifier assigned by the QQ Bot platform to each user. You can obtain it from the bot's message logs after a user sends a message to the bot.
-
-If you don't have the openid yet, leave this field empty. You can add it later via `reconfigure`.
-
----
-
 ## Weixin / 微信
 
 > Risk note: this integration follows the same OpenClaw-style WeChat plugin protocol used by CodePilot. Because it connects a non-OpenClaw product to WeChat, there may be account risk. Use with caution.
@@ -261,28 +139,28 @@ If you don't have the openid yet, leave this field empty. You can add it later v
 
 Weixin does **not** use a static bot token in `config.env`.
 
-Instead, run the local QR helper from the local app directory:
+Instead, run the local QR helper from the local app directory:
+
+- Repo checkout or app install:
+
+```bash
+cd /path/to/codex-to-im
+npm run weixin:login
+```
 
-- Repo checkout or app install:
-
-```bash
-cd /path/to/codex-to-im
-npm run weixin:login
-```
-
-If you are running from a checked-out repo, use that repo's `codex-to-im` directory.
+If you are running from a checked-out repo, use that repo's `codex-to-im` directory.
 
 What happens next:
 
 1. The helper requests a fresh WeChat QR code
 2. It writes a local HTML file to:
-  `~/.codex-to-im/runtime/weixin-login.html`
+  `~/.codex-to-im/runtime/weixin-login.html`
 3. It tries to open that HTML file in your default browser automatically
 4. You scan the QR code with the WeChat app and confirm on your phone
 5. On success, the helper stores the linked account in:
-  `~/.codex-to-im/data/weixin-accounts.json`
+  `~/.codex-to-im/data/weixin-accounts.json`
 
-The filename stays plural for backward compatibility. Multiple linked Weixin accounts can coexist in the same store.
+The filename stays plural for backward compatibility. Multiple linked Weixin accounts can coexist in the same store.
 
 If the browser does not open automatically, open the HTML file manually.
 
@@ -319,4 +197,4 @@ Weixin voice messages are handled differently from image/file/video media:
 - If WeChat does **not** include a transcript, the bridge returns a user-visible error asking the sender to enable WeChat voice transcription and resend.
 - The bridge does **not** download, decrypt, or transcribe raw voice audio on its own.
 
-This rule applies in both Claude Code and Codex runtimes.
+This rule applies to the Codex runtime.