npm - codexui-android - Versions diffs - 0.1.109 → 0.1.110 - Mend

codexui-android 0.1.109 → 0.1.110

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (21) hide show

package/dist/assets/{index.esm--s_sgTDk.js → index.esm-Bh22Jgzp.js} RENAMED Viewed

@@ -1,4 +1,4 @@
-import{t as te,u as ne,v as J,w as h,x as Be,y as Xe,z as qn,g as I,e as Kt,A as $t,B as Gn,m as zn,C as v,E as Kn,G as $n,S as he,H as Bn,F as Qe,I as Ze,L as jn,J as Bt,K as Yn,M as Jn,N as Xn,O as Qn,i as Tt,P as wt,r as yt,Q as Zn}from"./index.esm-DvadSfWE.js";/**
+import{t as te,u as ne,v as J,w as h,x as Be,y as Xe,z as qn,g as I,e as Kt,A as $t,B as Gn,m as zn,C as v,E as Kn,G as $n,S as he,H as Bn,F as Qe,I as Ze,L as jn,J as Bt,K as Yn,M as Jn,N as Xn,O as Qn,i as Tt,P as wt,r as yt,Q as Zn}from"./index.esm-aDL62PRZ.js";/**
  * @license
  * Copyright 2021 Google LLC
  *
@@ -1603,7 +1603,7 @@ import{t as te,u as ne,v as J,w as h,x as Be,y as Xe,z as qn,g as I,e as Kt,A as
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
- */const $e="webStorageSupport";class Us{constructor(){this.eventManagers={},this.iframes={},this.originValidationPromises={},this._redirectPersistence=Nn,this._completeRedirectFn=Un,this._overrideRedirectResult=is}async _openPopup(e,t,i,r){var o;C((o=this.eventManagers[e._key()])==null?void 0:o.manager,"_initialize() not called before _openPopup()");const s=await Wt(e,t,i,ae(),r);return Cs(e,s,Ue())}async _openRedirect(e,t,i,r){await this._originValidation(e);const s=await Wt(e,t,i,ae(),r);return br(s),new Promise(()=>{})}_initialize(e){const t=e._key();if(this.eventManagers[t]){const{manager:r,promise:s}=this.eventManagers[t];return r?Promise.resolve(r):(C(s,"If manager is not set, promise should be"),s)}const i=this.initAndGetManager(e);return this.eventManagers[t]={promise:i},i.catch(()=>{delete this.eventManagers[t]}),i}async initAndGetManager(e){const t=await As(e),i=new cs(e);return t.register("authEvent",r=>(u(r==null?void 0:r.authEvent,e,"invalid-auth-event"),{status:i.onEvent(r.authEvent)?"ACK":"ERROR"}),gapi.iframes.CROSS_ORIGIN_IFRAMES_FILTER),this.eventManagers[e._key()]={manager:i},this.iframes[e._key()]=t,i}_isIframeWebStorageSupported(e,t){this.iframes[e._key()].send($e,{type:$e},r=>{var o;const s=(o=r==null?void 0:r[0])==null?void 0:o[$e];s!==void 0&&t(!!s),y(e,"internal-error")},gapi.iframes.CROSS_ORIGIN_IFRAMES_FILTER)}_originValidation(e){const t=e._key();return this.originValidationPromises[t]||(this.originValidationPromises[t]=fs(e)),this.originValidationPromises[t]}get _shouldInitProactively(){return dn()||sn()||rt()}}const Vs=Us;class xn{constructor(e){this.factorId=e}_process(e,t,i){switch(t.type){case"enroll":return this._finalizeEnroll(e,t.credential,i);case"signin":return this._finalizeSignIn(e,t.credential);default:return P("unexpected MultiFactorSessionType")}}}class It extends xn{constructor(e){super("phone"),this.credential=e}static _fromCredential(e){return new It(e)}_finalizeEnroll(e,t,i){return yr(e,{idToken:t,displayName:i,phoneVerificationInfo:this.credential._makeVerificationRequest()})}_finalizeSignIn(e,t){return qr(e,{mfaPendingCredential:t,phoneVerificationInfo:this.credential._makeVerificationRequest()})}}class Fs{constructor(){}static assertion(e){return It._fromCredential(e)}}Fs.FACTOR_ID="phone";class xs{static assertionForEnrollment(e,t){return de._fromSecret(e,t)}static assertionForSignIn(e,t){return de._fromEnrollmentId(e,t)}static async generateSecret(e){var r;const t=e;u(typeof((r=t.user)==null?void 0:r.auth)<"u","internal-error");const i=await vr(t.user.auth,{idToken:t.credential,totpEnrollmentInfo:{}});return _t._fromStartTotpMfaEnrollmentResponse(i,t.user.auth)}}xs.FACTOR_ID="totp";class de extends xn{constructor(e,t,i){super("totp"),this.otp=e,this.enrollmentId=t,this.secret=i}static _fromSecret(e,t){return new de(t,void 0,e)}static _fromEnrollmentId(e,t){return new de(t,e)}async _finalizeEnroll(e,t,i){return u(typeof this.secret<"u",e,"argument-error"),Ar(e,{idToken:t,displayName:i,totpVerificationInfo:this.secret._makeTotpVerificationInfo(this.otp)})}async _finalizeSignIn(e,t){u(this.enrollmentId!==void 0&&this.otp!==void 0,e,"argument-error");const i={verificationCode:this.otp};return Gr(e,{mfaPendingCredential:t,mfaEnrollmentId:this.enrollmentId,totpVerificationInfo:i})}}class _t{constructor(e,t,i,r,s,o,a){this.sessionInfo=o,this.auth=a,this.secretKey=e,this.hashingAlgorithm=t,this.codeLength=i,this.codeIntervalSeconds=r,this.enrollmentCompletionDeadline=s}static _fromStartTotpMfaEnrollmentResponse(e,t){return new _t(e.totpSessionInfo.sharedSecretKey,e.totpSessionInfo.hashingAlgorithm,e.totpSessionInfo.verificationCodeLength,e.totpSessionInfo.periodSec,new Date(e.totpSessionInfo.finalizeEnrollmentTime).toUTCString(),e.totpSessionInfo.sessionInfo,t)}_makeTotpVerificationInfo(e){return{sessionInfo:this.sessionInfo,verificationCode:e}}generateQrCodeUrl(e,t){var r;let i=!1;return(Te(e)||Te(t))&&(i=!0),i&&(Te(e)&&(e=((r=this.auth.currentUser)==null?void 0:r.email)||"unknownuser"),Te(t)&&(t=this.auth.name)),`otpauth://totp/${t}:${e}?secret=${this.secretKey}&issuer=${t}&algorithm=${this.hashingAlgorithm}&digits=${this.codeLength}`}}function Te(n){return typeof n>"u"||(n==null?void 0:n.length)===0}var qt="@firebase/auth",Gt="1.12.2";/**
+ */const $e="webStorageSupport";class Us{constructor(){this.eventManagers={},this.iframes={},this.originValidationPromises={},this._redirectPersistence=Nn,this._completeRedirectFn=Un,this._overrideRedirectResult=is}async _openPopup(e,t,i,r){var o;C((o=this.eventManagers[e._key()])==null?void 0:o.manager,"_initialize() not called before _openPopup()");const s=await Wt(e,t,i,ae(),r);return Cs(e,s,Ue())}async _openRedirect(e,t,i,r){await this._originValidation(e);const s=await Wt(e,t,i,ae(),r);return br(s),new Promise(()=>{})}_initialize(e){const t=e._key();if(this.eventManagers[t]){const{manager:r,promise:s}=this.eventManagers[t];return r?Promise.resolve(r):(C(s,"If manager is not set, promise should be"),s)}const i=this.initAndGetManager(e);return this.eventManagers[t]={promise:i},i.catch(()=>{delete this.eventManagers[t]}),i}async initAndGetManager(e){const t=await As(e),i=new cs(e);return t.register("authEvent",r=>(u(r==null?void 0:r.authEvent,e,"invalid-auth-event"),{status:i.onEvent(r.authEvent)?"ACK":"ERROR"}),gapi.iframes.CROSS_ORIGIN_IFRAMES_FILTER),this.eventManagers[e._key()]={manager:i},this.iframes[e._key()]=t,i}_isIframeWebStorageSupported(e,t){this.iframes[e._key()].send($e,{type:$e},r=>{var o;const s=(o=r==null?void 0:r[0])==null?void 0:o[$e];s!==void 0&&t(!!s),y(e,"internal-error")},gapi.iframes.CROSS_ORIGIN_IFRAMES_FILTER)}_originValidation(e){const t=e._key();return this.originValidationPromises[t]||(this.originValidationPromises[t]=fs(e)),this.originValidationPromises[t]}get _shouldInitProactively(){return dn()||sn()||rt()}}const Vs=Us;class xn{constructor(e){this.factorId=e}_process(e,t,i){switch(t.type){case"enroll":return this._finalizeEnroll(e,t.credential,i);case"signin":return this._finalizeSignIn(e,t.credential);default:return P("unexpected MultiFactorSessionType")}}}class It extends xn{constructor(e){super("phone"),this.credential=e}static _fromCredential(e){return new It(e)}_finalizeEnroll(e,t,i){return yr(e,{idToken:t,displayName:i,phoneVerificationInfo:this.credential._makeVerificationRequest()})}_finalizeSignIn(e,t){return qr(e,{mfaPendingCredential:t,phoneVerificationInfo:this.credential._makeVerificationRequest()})}}class Fs{constructor(){}static assertion(e){return It._fromCredential(e)}}Fs.FACTOR_ID="phone";class xs{static assertionForEnrollment(e,t){return de._fromSecret(e,t)}static assertionForSignIn(e,t){return de._fromEnrollmentId(e,t)}static async generateSecret(e){var r;const t=e;u(typeof((r=t.user)==null?void 0:r.auth)<"u","internal-error");const i=await vr(t.user.auth,{idToken:t.credential,totpEnrollmentInfo:{}});return _t._fromStartTotpMfaEnrollmentResponse(i,t.user.auth)}}xs.FACTOR_ID="totp";class de extends xn{constructor(e,t,i){super("totp"),this.otp=e,this.enrollmentId=t,this.secret=i}static _fromSecret(e,t){return new de(t,void 0,e)}static _fromEnrollmentId(e,t){return new de(t,e)}async _finalizeEnroll(e,t,i){return u(typeof this.secret<"u",e,"argument-error"),Ar(e,{idToken:t,displayName:i,totpVerificationInfo:this.secret._makeTotpVerificationInfo(this.otp)})}async _finalizeSignIn(e,t){u(this.enrollmentId!==void 0&&this.otp!==void 0,e,"argument-error");const i={verificationCode:this.otp};return Gr(e,{mfaPendingCredential:t,mfaEnrollmentId:this.enrollmentId,totpVerificationInfo:i})}}class _t{constructor(e,t,i,r,s,o,a){this.sessionInfo=o,this.auth=a,this.secretKey=e,this.hashingAlgorithm=t,this.codeLength=i,this.codeIntervalSeconds=r,this.enrollmentCompletionDeadline=s}static _fromStartTotpMfaEnrollmentResponse(e,t){return new _t(e.totpSessionInfo.sharedSecretKey,e.totpSessionInfo.hashingAlgorithm,e.totpSessionInfo.verificationCodeLength,e.totpSessionInfo.periodSec,new Date(e.totpSessionInfo.finalizeEnrollmentTime).toUTCString(),e.totpSessionInfo.sessionInfo,t)}_makeTotpVerificationInfo(e){return{sessionInfo:this.sessionInfo,verificationCode:e}}generateQrCodeUrl(e,t){var r;let i=!1;return(Te(e)||Te(t))&&(i=!0),i&&(Te(e)&&(e=((r=this.auth.currentUser)==null?void 0:r.email)||"unknownuser"),Te(t)&&(t=this.auth.name)),`otpauth://totp/${t}:${e}?secret=${this.secretKey}&issuer=${t}&algorithm=${this.hashingAlgorithm}&digits=${this.codeLength}`}}function Te(n){return typeof n>"u"||(n==null?void 0:n.length)===0}var qt="@firebase/auth",Gt="1.13.1";/**
  * @license
  * Copyright 2020 Google LLC
  *

package/dist/assets/{index.esm-D_uN0D-X.js → index.esm-D7eMWmxV.js} RENAMED Viewed

@@ -1,4 +1,4 @@
-import{r as e}from"./index.esm-DvadSfWE.js";import{F as o,S as t,D as n,_,a as v,b as m,c as A,d as g,e as S,f as d,g as b,h as l,i as F,j as c,k as E,l as f,m as C,n as L,o as D,p as N,q as O,s as x}from"./index.esm-DvadSfWE.js";var s="firebase",a="12.11.0";/**
+import{r as e}from"./index.esm-aDL62PRZ.js";import{F as o,S as t,D as n,_,a as v,b as m,c as A,d as g,e as S,f as d,g as b,h as l,i as F,j as c,k as E,l as f,m as C,n as L,o as D,p as N,q as O,s as x}from"./index.esm-aDL62PRZ.js";var s="firebase",a="12.13.0";/**
  * @license
  * Copyright 2020 Google LLC
  *

package/dist/assets/{index.esm-DvadSfWE.js → index.esm-aDL62PRZ.js} RENAMED Viewed

@@ -208,7 +208,7 @@ const pe=()=>{};var U={};/**
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
- */class Xe{constructor(e){this.container=e}getPlatformInfoString(){return this.container.getProviders().map(n=>{if(Qe(n)){const r=n.getImmediate();return`${r.library}/${r.version}`}else return null}).filter(n=>n).join(" ")}}function Qe(t){const e=t.getComponent();return(e==null?void 0:e.type)==="VERSION"}const S="@firebase/app",x="0.14.10";/**
+ */class Xe{constructor(e){this.container=e}getPlatformInfoString(){return this.container.getProviders().map(n=>{if(Qe(n)){const r=n.getImmediate();return`${r.library}/${r.version}`}else return null}).filter(n=>n).join(" ")}}function Qe(t){const e=t.getComponent();return(e==null?void 0:e.type)==="VERSION"}const S="@firebase/app",x="0.14.12";/**
  * @license
  * Copyright 2019 Google LLC
  *
@@ -223,7 +223,7 @@ const pe=()=>{};var U={};/**
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
- */const d=new Pe("@firebase/app"),Ze="@firebase/app-compat",et="@firebase/analytics-compat",tt="@firebase/analytics",nt="@firebase/app-check-compat",rt="@firebase/app-check",st="@firebase/auth",it="@firebase/auth-compat",ot="@firebase/database",at="@firebase/data-connect",ct="@firebase/database-compat",lt="@firebase/functions",ht="@firebase/functions-compat",ft="@firebase/installations",dt="@firebase/installations-compat",ut="@firebase/messaging",pt="@firebase/messaging-compat",mt="@firebase/performance",gt="@firebase/performance-compat",bt="@firebase/remote-config",yt="@firebase/remote-config-compat",Et="@firebase/storage",vt="@firebase/storage-compat",_t="@firebase/firestore",Ct="@firebase/ai",Dt="@firebase/firestore-compat",wt="firebase",It="12.11.0";/**
+ */const d=new Pe("@firebase/app"),Ze="@firebase/app-compat",et="@firebase/analytics-compat",tt="@firebase/analytics",nt="@firebase/app-check-compat",rt="@firebase/app-check",st="@firebase/auth",it="@firebase/auth-compat",ot="@firebase/database",at="@firebase/data-connect",ct="@firebase/database-compat",lt="@firebase/functions",ht="@firebase/functions-compat",ft="@firebase/installations",dt="@firebase/installations-compat",ut="@firebase/messaging",pt="@firebase/messaging-compat",mt="@firebase/performance",gt="@firebase/performance-compat",bt="@firebase/remote-config",yt="@firebase/remote-config-compat",Et="@firebase/storage",vt="@firebase/storage-compat",_t="@firebase/firestore",Ct="@firebase/ai",Dt="@firebase/firestore-compat",wt="firebase",It="12.13.0";/**
  * @license
  * Copyright 2019 Google LLC
  *

package/dist/index.html CHANGED Viewed

@@ -12,8 +12,8 @@
     <link rel="icon" type="image/png" sizes="192x192" href="/icons/pwa-192x192.png" />
     <link rel="apple-touch-icon" sizes="180x180" href="/icons/apple-touch-icon.png" />
     <title>Codex Web</title>
-    <script type="module" crossorigin src="/assets/index-ZXDbBStq.js"></script>
-    <link rel="stylesheet" crossorigin href="/assets/index-AFrh-w0S.css">
+    <script type="module" crossorigin src="/assets/index-xzqof2OU.js"></script>
+    <link rel="stylesheet" crossorigin href="/assets/index-BZZznPCP.css">
   </head>
   <body class="bg-slate-950">
     <div id="app"></div>

package/dist-cli/index.js CHANGED Viewed

@@ -4264,8 +4264,8 @@ function createDefaultOpenCodeZenFreeModeState() {
     providerKeys: {}
   };
 }
-function shouldCreateDefaultFreeModeStateForMissingAuth(current, hasUsableCodexAuth) {
-  return current == null && !hasUsableCodexAuth;
+function shouldCreateDefaultFreeModeStateForMissingAuth(current, hasUsableCodexAuth2) {
+  return current == null && !hasUsableCodexAuth2;
 }
 function getFreeModeEnvVars(state) {
   if (!state.enabled) return {};
@@ -5232,6 +5232,29 @@ function shellQuote(value) {
   return `'${value.replace(/'/g, `'\\''`)}'`;
 }
+// src/pathUtils.ts
+function stripWindowsDevicePathPrefix(value) {
+  const trimmed = value.trim();
+  if (!trimmed) return "";
+  if (trimmed.startsWith("\\\\?\\UNC\\")) {
+    return `\\\\${trimmed.slice("\\\\?\\UNC\\".length)}`;
+  }
+  if (trimmed.startsWith("\\\\?\\")) {
+    return trimmed.slice("\\\\?\\".length);
+  }
+  return trimmed;
+}
+function normalizePathForUi(value) {
+  return stripWindowsDevicePathPrefix(value);
+}
+function isWindowsLikePath(value) {
+  return /^[a-z]:[\\/]/iu.test(value) || value.startsWith("\\\\");
+}
+function isAbsoluteLikePath(value) {
+  const normalized = normalizePathForUi(value);
+  return normalized.startsWith("/") || isWindowsLikePath(normalized);
+}
 // src/server/codexAppServerBridge.ts
 var COMPOSIO_CONNECTORS_PAGE_LIMIT_MAX = 1e3;
 var PROVIDER_MODELS_FETCH_TIMEOUT_MS = 5e3;
@@ -5763,6 +5786,37 @@ function getErrorMessage5(payload, fallback) {
   }
   return fallback;
 }
+function isUnauthenticatedRateLimitError(error) {
+  const message = getErrorMessage5(error, "").toLowerCase();
+  return message.includes("authentication required") && message.includes("rate limits");
+}
+var warnedCodexAuthReadFailures = /* @__PURE__ */ new Set();
+function getErrorCode(error) {
+  return typeof error === "object" && error !== null && "code" in error ? String(error.code ?? "") : null;
+}
+function getCodexAuthReadErrorMessage(error) {
+  return error instanceof Error && error.message.trim().length > 0 ? error.message : String(error);
+}
+function warnCodexAuthReadFailure(authPath, error) {
+  const message = getCodexAuthReadErrorMessage(error);
+  const warningKey = `${authPath}:${message}`;
+  if (warnedCodexAuthReadFailures.has(warningKey)) return;
+  warnedCodexAuthReadFailures.add(warningKey);
+  console.warn("[codex-auth] Unable to read Codex auth state", { path: authPath, error: message });
+}
+async function hasUsableCodexAuth() {
+  const authPath = getCodexAuthPath();
+  try {
+    const raw = await readFile3(authPath, "utf8");
+    const auth = JSON.parse(raw);
+    return Boolean(auth.tokens?.access_token?.trim() || auth.tokens?.refresh_token?.trim());
+  } catch (error) {
+    if (getErrorCode(error) !== "ENOENT") {
+      warnCodexAuthReadFailure(authPath, error);
+    }
+    return false;
+  }
+}
 function setJson4(res, statusCode, payload) {
   res.statusCode = statusCode;
   res.setHeader("Content-Type", "application/json; charset=utf-8");
@@ -7674,23 +7728,70 @@ function readTomlString(value) {
 function serializeTomlString(value) {
   return JSON.stringify(value);
 }
+function parseTomlStringArray(value) {
+  const trimmed = value.trim();
+  if (!trimmed.startsWith("[") || !trimmed.endsWith("]")) return [];
+  try {
+    const parsed = JSON.parse(trimmed);
+    return Array.isArray(parsed) ? parsed.filter((item) => typeof item === "string" && item.trim().length > 0) : [];
+  } catch {
+    return [];
+  }
+}
+function serializeTomlStringArray(values) {
+  return `[${values.map((value) => serializeTomlString(value)).join(", ")}]`;
+}
 function parseAutomationToml(raw) {
   const values = {};
+  const extraTomlLines = [];
+  const knownKeys = /* @__PURE__ */ new Set([
+    "version",
+    "id",
+    "kind",
+    "name",
+    "prompt",
+    "status",
+    "rrule",
+    "target_thread_id",
+    "cwds",
+    "created_at",
+    "updated_at"
+  ]);
+  let isInsideExtraTable = false;
   for (const line of raw.split(/\r?\n/u)) {
     const trimmed = line.trim();
-    if (!trimmed || trimmed.startsWith("#") || !trimmed.includes("=")) continue;
+    if (!trimmed || trimmed.startsWith("#")) continue;
+    if (trimmed.startsWith("[") && trimmed.endsWith("]")) {
+      isInsideExtraTable = true;
+      extraTomlLines.push(trimmed);
+      continue;
+    }
+    if (isInsideExtraTable) {
+      extraTomlLines.push(trimmed);
+      continue;
+    }
+    if (!trimmed.includes("=")) {
+      extraTomlLines.push(trimmed);
+      continue;
+    }
     const separatorIndex = trimmed.indexOf("=");
     const key = trimmed.slice(0, separatorIndex).trim();
     const value = trimmed.slice(separatorIndex + 1).trim();
-    if (key) values[key] = value;
+    if (!key) continue;
+    if (knownKeys.has(key)) {
+      values[key] = value;
+    } else {
+      extraTomlLines.push(trimmed);
+    }
   }
   const id = readTomlString(values.id ?? "");
-  const kindValue = readTomlString(values.kind ?? "heartbeat");
+  const kindValue = readTomlString(values.kind ?? (values.cwds ? "cron" : "heartbeat"));
   const name = readTomlString(values.name ?? "");
   const prompt = readTomlString(values.prompt ?? "");
   const rrule = readTomlString(values.rrule ?? "");
   const statusValue = readTomlString(values.status ?? "ACTIVE");
   const targetThreadId = readTomlString(values.target_thread_id ?? "") || null;
+  const cwds = parseTomlStringArray(values.cwds ?? "");
   const createdAtMs = Number.parseInt(values.created_at ?? "", 10);
   const updatedAtMs = Number.parseInt(values.updated_at ?? "", 10);
   if (!id || !name || !prompt || !rrule) return null;
@@ -7704,6 +7805,8 @@ function parseAutomationToml(raw) {
     rrule,
     status: statusValue,
     targetThreadId,
+    cwds,
+    extraTomlLines,
     createdAtMs: Number.isFinite(createdAtMs) ? createdAtMs : null,
     updatedAtMs: Number.isFinite(updatedAtMs) ? updatedAtMs : null,
     nextRunAtMs: null
@@ -7717,11 +7820,19 @@ function serializeAutomationToml(record) {
     `name = ${serializeTomlString(record.name)}`,
     `prompt = ${serializeTomlString(record.prompt)}`,
     `status = ${serializeTomlString(record.status)}`,
-    `rrule = ${serializeTomlString(record.rrule)}`,
-    `target_thread_id = ${serializeTomlString(record.targetThreadId ?? "")}`,
+    `rrule = ${serializeTomlString(record.rrule)}`
+  ];
+  if (record.targetThreadId) {
+    lines.push(`target_thread_id = ${serializeTomlString(record.targetThreadId)}`);
+  }
+  if (record.cwds.length > 0) {
+    lines.push(`cwds = ${serializeTomlStringArray(record.cwds)}`);
+  }
+  lines.push(
     `created_at = ${String(record.createdAtMs ?? Date.now())}`,
     `updated_at = ${String(record.updatedAtMs ?? Date.now())}`
-  ];
+  );
+  lines.push(...record.extraTomlLines);
   return `${lines.join("\n")}
 `;
 }
@@ -7805,6 +7916,8 @@ async function writeThreadHeartbeatAutomation(input) {
     rrule,
     status: input.status,
     targetThreadId: threadId,
+    cwds: [],
+    extraTomlLines: existing?.extraTomlLines ?? [],
     createdAtMs: existing?.createdAtMs ?? now,
     updatedAtMs: now,
     nextRunAtMs: null
@@ -7833,6 +7946,114 @@ async function deleteThreadHeartbeatAutomation(threadId, automationId = "") {
   await Promise.all(automations.map((automation) => rm4(join6(getCodexAutomationsDir(), automation.id), { recursive: true, force: true })));
   return true;
 }
+async function listProjectCronAutomations() {
+  const automationRoot = getCodexAutomationsDir();
+  const next = {};
+  let entries;
+  try {
+    entries = await readdir2(automationRoot, { withFileTypes: true });
+  } catch {
+    return next;
+  }
+  for (const entry of entries) {
+    if (!entry.isDirectory()) continue;
+    const automation = await readAutomationRecordFromFile(join6(automationRoot, entry.name, "automation.toml"));
+    if (!automation || automation.kind !== "cron" || automation.cwds.length === 0) continue;
+    for (const cwd of automation.cwds) {
+      next[cwd] = [...next[cwd] ?? [], automation];
+    }
+  }
+  for (const automations of Object.values(next)) {
+    automations.sort((first, second) => {
+      const firstCreatedAt = first.createdAtMs ?? 0;
+      const secondCreatedAt = second.createdAtMs ?? 0;
+      if (firstCreatedAt !== secondCreatedAt) return firstCreatedAt - secondCreatedAt;
+      return first.id.localeCompare(second.id);
+    });
+  }
+  return next;
+}
+async function readProjectCronAutomations(projectName) {
+  const all = await listProjectCronAutomations();
+  return all[projectName] ?? [];
+}
+async function readProjectCronAutomation(projectName, automationId = "") {
+  const automations = await readProjectCronAutomations(projectName);
+  if (automationId) return automations.find((automation) => automation.id === automationId) ?? null;
+  return automations[0] ?? null;
+}
+async function writeProjectCronAutomation(input) {
+  const projectName = input.projectName.trim();
+  const name = input.name.trim();
+  const prompt = input.prompt.trim();
+  const rrule = input.rrule.trim();
+  if (!projectName || !name || !prompt || !rrule) {
+    throw new Error("projectName, name, prompt, and rrule are required");
+  }
+  if (!isAbsoluteLikePath(projectName)) {
+    throw new Error("Project automation cwd must be an absolute path");
+  }
+  const automationRoot = getCodexAutomationsDir();
+  await mkdir4(automationRoot, { recursive: true });
+  const existing = input.id ? await readProjectCronAutomation(projectName, input.id.trim()) : null;
+  const entries = await readdir2(automationRoot, { withFileTypes: true }).catch(() => []);
+  const existingIds = new Set(entries.filter((entry) => entry.isDirectory()).map((entry) => entry.name));
+  const id = existing?.id ?? resolveUniqueAutomationId(existingIds, projectName, name);
+  const automationDir = join6(automationRoot, id);
+  const now = Date.now();
+  const record = {
+    id,
+    kind: "cron",
+    name,
+    prompt,
+    rrule,
+    status: input.status,
+    targetThreadId: null,
+    cwds: Array.from(/* @__PURE__ */ new Set([...existing?.cwds ?? [], projectName])),
+    extraTomlLines: existing?.extraTomlLines ?? [],
+    createdAtMs: existing?.createdAtMs ?? now,
+    updatedAtMs: now,
+    nextRunAtMs: null
+  };
+  await mkdir4(automationDir, { recursive: true });
+  await writeFile4(join6(automationDir, "automation.toml"), serializeAutomationToml(record), "utf8");
+  const memoryPath = join6(automationDir, "memory.md");
+  try {
+    await stat4(memoryPath);
+  } catch {
+    await writeFile4(memoryPath, "", "utf8");
+  }
+  return record;
+}
+async function deleteProjectCronAutomation(projectName, automationId = "") {
+  const normalizedProjectName = projectName.trim();
+  const normalizedAutomationId = automationId.trim();
+  if (!normalizedProjectName || !isAbsoluteLikePath(normalizedProjectName)) return false;
+  if (normalizedAutomationId) {
+    const automation = await readProjectCronAutomation(normalizedProjectName, normalizedAutomationId);
+    if (!automation) return false;
+    const remainingCwds = automation.cwds.filter((cwd) => cwd !== normalizedProjectName);
+    if (remainingCwds.length > 0) {
+      const record = { ...automation, cwds: remainingCwds, updatedAtMs: Date.now() };
+      await writeFile4(join6(getCodexAutomationsDir(), automation.id, "automation.toml"), serializeAutomationToml(record), "utf8");
+    } else {
+      await rm4(join6(getCodexAutomationsDir(), automation.id), { recursive: true, force: true });
+    }
+    return true;
+  }
+  const automations = await readProjectCronAutomations(normalizedProjectName);
+  if (automations.length === 0) return false;
+  await Promise.all(automations.map(async (automation) => {
+    const remainingCwds = automation.cwds.filter((cwd) => cwd !== normalizedProjectName);
+    if (remainingCwds.length > 0) {
+      const record = { ...automation, cwds: remainingCwds, updatedAtMs: Date.now() };
+      await writeFile4(join6(getCodexAutomationsDir(), automation.id, "automation.toml"), serializeAutomationToml(record), "utf8");
+      return;
+    }
+    await rm4(join6(getCodexAutomationsDir(), automation.id), { recursive: true, force: true });
+  }));
+  return true;
+}
 var MAX_THREAD_TITLES = 500;
 var EMPTY_THREAD_TITLE_CACHE = { titles: {}, order: [] };
 var PINNED_THREAD_IDS_KEY = "pinned-thread-ids";
@@ -9842,7 +10063,20 @@ function createCodexBridgeMiddleware() {
           setJson4(res, 400, { error: "Invalid body: expected { method, params? }" });
           return;
         }
-        const rpcResult = await callRpcWithArchiveRecovery(appServer, body.method, body.params ?? null);
+        if (body.method === "account/rateLimits/read" && !await hasUsableCodexAuth()) {
+          setJson4(res, 200, { result: null });
+          return;
+        }
+        let rpcResult;
+        try {
+          rpcResult = await callRpcWithArchiveRecovery(appServer, body.method, body.params ?? null);
+        } catch (error) {
+          if (body.method === "account/rateLimits/read" && isUnauthenticatedRateLimitError(error)) {
+            setJson4(res, 200, { result: null });
+            return;
+          }
+          throw error;
+        }
         const trimmedResult = trimThreadTurnsInRpcResult(body.method, rpcResult);
         const sanitizedResult = await sanitizeThreadTurnsInlinePayloads(body.method, trimmedResult);
         const result = THREAD_METHODS_WITH_TURNS.has(body.method) ? await mergeSessionSkillInputsIntoThreadResult(sanitizedResult) : sanitizedResult;
@@ -10918,6 +11152,11 @@ function createCodexBridgeMiddleware() {
         setJson4(res, 200, { data: automationsByThreadId });
         return;
       }
+      if (req.method === "GET" && url.pathname === "/codex-api/project-automations") {
+        const automationsByProjectName = await listProjectCronAutomations();
+        setJson4(res, 200, { data: automationsByProjectName });
+        return;
+      }
       if (req.method === "GET" && url.pathname === "/codex-api/thread-automation") {
         const threadId = url.searchParams.get("threadId")?.trim() ?? "";
         const automationId = url.searchParams.get("automationId")?.trim() ?? "";
@@ -10929,6 +11168,17 @@ function createCodexBridgeMiddleware() {
         setJson4(res, 200, { data: automation });
         return;
       }
+      if (req.method === "GET" && url.pathname === "/codex-api/project-automation") {
+        const projectName = url.searchParams.get("projectName")?.trim() ?? "";
+        const automationId = url.searchParams.get("automationId")?.trim() ?? "";
+        if (!projectName) {
+          setJson4(res, 400, { error: "Missing projectName" });
+          return;
+        }
+        const automation = automationId ? await readProjectCronAutomation(projectName, automationId) : await readProjectCronAutomations(projectName);
+        setJson4(res, 200, { data: automation });
+        return;
+      }
       if (req.method === "POST" && url.pathname === "/codex-api/thread-search") {
         const payload = asRecord5(await readJsonBody2(req));
         const query = typeof payload?.query === "string" ? payload.query.trim() : "";
@@ -10987,6 +11237,26 @@ function createCodexBridgeMiddleware() {
         setJson4(res, 200, { data: automation });
         return;
       }
+      if (req.method === "PUT" && url.pathname === "/codex-api/project-automation") {
+        const payload = asRecord5(await readJsonBody2(req));
+        const projectName = typeof payload?.projectName === "string" ? payload.projectName.trim() : "";
+        const id = typeof payload?.id === "string" ? payload.id.trim() : "";
+        const name = typeof payload?.name === "string" ? payload.name.trim() : "";
+        const prompt = typeof payload?.prompt === "string" ? payload.prompt.trim() : "";
+        const rrule = typeof payload?.rrule === "string" ? payload.rrule.trim() : "";
+        const status = payload?.status === "PAUSED" ? "PAUSED" : "ACTIVE";
+        if (!projectName || !name || !prompt || !rrule) {
+          setJson4(res, 400, { error: "projectName, name, prompt, and rrule are required" });
+          return;
+        }
+        if (!isAbsoluteLikePath(projectName)) {
+          setJson4(res, 400, { error: "Project automation cwd must be an absolute path" });
+          return;
+        }
+        const automation = await writeProjectCronAutomation({ projectName, id, name, prompt, rrule, status });
+        setJson4(res, 200, { data: automation });
+        return;
+      }
       if (req.method === "POST" && url.pathname === "/codex-api/thread-automation/run") {
         const payload = asRecord5(await readJsonBody2(req));
         const threadId = typeof payload?.threadId === "string" ? payload.threadId.trim() : "";
@@ -11016,6 +11286,17 @@ function createCodexBridgeMiddleware() {
         setJson4(res, 200, { data: { removed } });
         return;
       }
+      if (req.method === "DELETE" && url.pathname === "/codex-api/project-automation") {
+        const projectName = url.searchParams.get("projectName")?.trim() ?? "";
+        const automationId = url.searchParams.get("automationId")?.trim() ?? "";
+        if (!projectName) {
+          setJson4(res, 400, { error: "Missing projectName" });
+          return;
+        }
+        const removed = await deleteProjectCronAutomation(projectName, automationId);
+        setJson4(res, 200, { data: { removed } });
+        return;
+      }
       if (req.method === "POST" && url.pathname === "/codex-api/telegram/configure-bot") {
         const payload = asRecord5(await readJsonBody2(req));
         const botToken = typeof payload?.botToken === "string" ? payload.botToken.trim() : "";