npm - cowork-os - Versions diffs - 0.3.21 - Mend

cowork-os 0.3.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (526) hide show

package/LICENSE +21 -0
package/README.md +1638 -0
package/bin/cowork.js +42 -0
package/build/entitlements.mac.plist +16 -0
package/build/icon.icns +0 -0
package/build/icon.png +0 -0
package/dist/electron/electron/activity/ActivityRepository.js +190 -0
package/dist/electron/electron/agent/browser/browser-service.js +639 -0
package/dist/electron/electron/agent/context-manager.js +225 -0
package/dist/electron/electron/agent/custom-skill-loader.js +566 -0
package/dist/electron/electron/agent/daemon.js +975 -0
package/dist/electron/electron/agent/executor.js +3561 -0
package/dist/electron/electron/agent/llm/anthropic-provider.js +155 -0
package/dist/electron/electron/agent/llm/bedrock-provider.js +202 -0
package/dist/electron/electron/agent/llm/gemini-provider.js +375 -0
package/dist/electron/electron/agent/llm/index.js +34 -0
package/dist/electron/electron/agent/llm/ollama-provider.js +263 -0
package/dist/electron/electron/agent/llm/openai-oauth.js +101 -0
package/dist/electron/electron/agent/llm/openai-provider.js +657 -0
package/dist/electron/electron/agent/llm/openrouter-provider.js +232 -0
package/dist/electron/electron/agent/llm/pricing.js +160 -0
package/dist/electron/electron/agent/llm/provider-factory.js +880 -0
package/dist/electron/electron/agent/llm/types.js +178 -0
package/dist/electron/electron/agent/queue-manager.js +378 -0
package/dist/electron/electron/agent/sandbox/docker-sandbox.js +402 -0
package/dist/electron/electron/agent/sandbox/macos-sandbox.js +407 -0
package/dist/electron/electron/agent/sandbox/runner.js +410 -0
package/dist/electron/electron/agent/sandbox/sandbox-factory.js +228 -0
package/dist/electron/electron/agent/sandbox/security-utils.js +258 -0
package/dist/electron/electron/agent/search/brave-provider.js +119 -0
package/dist/electron/electron/agent/search/google-provider.js +100 -0
package/dist/electron/electron/agent/search/index.js +28 -0
package/dist/electron/electron/agent/search/provider-factory.js +395 -0
package/dist/electron/electron/agent/search/serpapi-provider.js +112 -0
package/dist/electron/electron/agent/search/tavily-provider.js +90 -0
package/dist/electron/electron/agent/search/types.js +40 -0
package/dist/electron/electron/agent/security/index.js +12 -0
package/dist/electron/electron/agent/security/input-sanitizer.js +303 -0
package/dist/electron/electron/agent/security/output-filter.js +217 -0
package/dist/electron/electron/agent/skill-eligibility.js +281 -0
package/dist/electron/electron/agent/skill-registry.js +396 -0
package/dist/electron/electron/agent/skills/document.js +878 -0
package/dist/electron/electron/agent/skills/image-generator.js +225 -0
package/dist/electron/electron/agent/skills/organizer.js +141 -0
package/dist/electron/electron/agent/skills/presentation.js +367 -0
package/dist/electron/electron/agent/skills/spreadsheet.js +165 -0
package/dist/electron/electron/agent/tools/browser-tools.js +523 -0
package/dist/electron/electron/agent/tools/builtin-settings.js +384 -0
package/dist/electron/electron/agent/tools/canvas-tools.js +530 -0
package/dist/electron/electron/agent/tools/cron-tools.js +577 -0
package/dist/electron/electron/agent/tools/edit-tools.js +194 -0
package/dist/electron/electron/agent/tools/file-tools.js +719 -0
package/dist/electron/electron/agent/tools/glob-tools.js +283 -0
package/dist/electron/electron/agent/tools/grep-tools.js +387 -0
package/dist/electron/electron/agent/tools/image-tools.js +111 -0
package/dist/electron/electron/agent/tools/mention-tools.js +282 -0
package/dist/electron/electron/agent/tools/node-tools.js +476 -0
package/dist/electron/electron/agent/tools/registry.js +2719 -0
package/dist/electron/electron/agent/tools/search-tools.js +91 -0
package/dist/electron/electron/agent/tools/shell-tools.js +574 -0
package/dist/electron/electron/agent/tools/skill-tools.js +274 -0
package/dist/electron/electron/agent/tools/system-tools.js +578 -0
package/dist/electron/electron/agent/tools/web-fetch-tools.js +444 -0
package/dist/electron/electron/agent/tools/x-tools.js +264 -0
package/dist/electron/electron/agents/AgentRoleRepository.js +420 -0
package/dist/electron/electron/agents/HeartbeatService.js +356 -0
package/dist/electron/electron/agents/MentionRepository.js +197 -0
package/dist/electron/electron/agents/TaskSubscriptionRepository.js +168 -0
package/dist/electron/electron/agents/WorkingStateRepository.js +229 -0
package/dist/electron/electron/canvas/canvas-manager.js +714 -0
package/dist/electron/electron/canvas/canvas-preload.js +53 -0
package/dist/electron/electron/canvas/canvas-protocol.js +195 -0
package/dist/electron/electron/canvas/canvas-store.js +174 -0
package/dist/electron/electron/canvas/index.js +13 -0
package/dist/electron/electron/control-plane/client.js +364 -0
package/dist/electron/electron/control-plane/handlers.js +572 -0
package/dist/electron/electron/control-plane/index.js +41 -0
package/dist/electron/electron/control-plane/node-manager.js +264 -0
package/dist/electron/electron/control-plane/protocol.js +194 -0
package/dist/electron/electron/control-plane/remote-client.js +437 -0
package/dist/electron/electron/control-plane/server.js +640 -0
package/dist/electron/electron/control-plane/settings.js +369 -0
package/dist/electron/electron/control-plane/ssh-tunnel.js +549 -0
package/dist/electron/electron/cron/index.js +30 -0
package/dist/electron/electron/cron/schedule.js +190 -0
package/dist/electron/electron/cron/service.js +614 -0
package/dist/electron/electron/cron/store.js +155 -0
package/dist/electron/electron/cron/types.js +82 -0
package/dist/electron/electron/cron/webhook.js +258 -0
package/dist/electron/electron/database/SecureSettingsRepository.js +444 -0
package/dist/electron/electron/database/TaskLabelRepository.js +120 -0
package/dist/electron/electron/database/repositories.js +1781 -0
package/dist/electron/electron/database/schema.js +978 -0
package/dist/electron/electron/extensions/index.js +33 -0
package/dist/electron/electron/extensions/loader.js +313 -0
package/dist/electron/electron/extensions/registry.js +485 -0
package/dist/electron/electron/extensions/types.js +11 -0
package/dist/electron/electron/gateway/channel-registry.js +1102 -0
package/dist/electron/electron/gateway/channels/bluebubbles-client.js +479 -0
package/dist/electron/electron/gateway/channels/bluebubbles.js +432 -0
package/dist/electron/electron/gateway/channels/discord.js +975 -0
package/dist/electron/electron/gateway/channels/email-client.js +593 -0
package/dist/electron/electron/gateway/channels/email.js +443 -0
package/dist/electron/electron/gateway/channels/google-chat.js +631 -0
package/dist/electron/electron/gateway/channels/imessage-client.js +363 -0
package/dist/electron/electron/gateway/channels/imessage.js +465 -0
package/dist/electron/electron/gateway/channels/index.js +36 -0
package/dist/electron/electron/gateway/channels/line-client.js +470 -0
package/dist/electron/electron/gateway/channels/line.js +479 -0
package/dist/electron/electron/gateway/channels/matrix-client.js +432 -0
package/dist/electron/electron/gateway/channels/matrix.js +592 -0
package/dist/electron/electron/gateway/channels/mattermost-client.js +394 -0
package/dist/electron/electron/gateway/channels/mattermost.js +496 -0
package/dist/electron/electron/gateway/channels/signal-client.js +500 -0
package/dist/electron/electron/gateway/channels/signal.js +582 -0
package/dist/electron/electron/gateway/channels/slack.js +415 -0
package/dist/electron/electron/gateway/channels/teams.js +596 -0
package/dist/electron/electron/gateway/channels/telegram.js +1390 -0
package/dist/electron/electron/gateway/channels/twitch-client.js +502 -0
package/dist/electron/electron/gateway/channels/twitch.js +396 -0
package/dist/electron/electron/gateway/channels/types.js +8 -0
package/dist/electron/electron/gateway/channels/whatsapp.js +953 -0
package/dist/electron/electron/gateway/context-policy.js +268 -0
package/dist/electron/electron/gateway/index.js +1063 -0
package/dist/electron/electron/gateway/infrastructure.js +496 -0
package/dist/electron/electron/gateway/router.js +2700 -0
package/dist/electron/electron/gateway/security.js +375 -0
package/dist/electron/electron/gateway/session.js +115 -0
package/dist/electron/electron/gateway/tunnel.js +503 -0
package/dist/electron/electron/guardrails/guardrail-manager.js +348 -0
package/dist/electron/electron/hooks/gmail-watcher.js +300 -0
package/dist/electron/electron/hooks/index.js +46 -0
package/dist/electron/electron/hooks/mappings.js +381 -0
package/dist/electron/electron/hooks/server.js +480 -0
package/dist/electron/electron/hooks/settings.js +447 -0
package/dist/electron/electron/hooks/types.js +41 -0
package/dist/electron/electron/ipc/canvas-handlers.js +158 -0
package/dist/electron/electron/ipc/handlers.js +3138 -0
package/dist/electron/electron/ipc/mission-control-handlers.js +141 -0
package/dist/electron/electron/main.js +448 -0
package/dist/electron/electron/mcp/client/MCPClientManager.js +330 -0
package/dist/electron/electron/mcp/client/MCPServerConnection.js +437 -0
package/dist/electron/electron/mcp/client/transports/SSETransport.js +304 -0
package/dist/electron/electron/mcp/client/transports/StdioTransport.js +307 -0
package/dist/electron/electron/mcp/client/transports/WebSocketTransport.js +329 -0
package/dist/electron/electron/mcp/host/MCPHostServer.js +354 -0
package/dist/electron/electron/mcp/host/ToolAdapter.js +100 -0
package/dist/electron/electron/mcp/registry/MCPRegistryManager.js +497 -0
package/dist/electron/electron/mcp/settings.js +446 -0
package/dist/electron/electron/mcp/types.js +59 -0
package/dist/electron/electron/memory/MemoryService.js +435 -0
package/dist/electron/electron/notifications/index.js +17 -0
package/dist/electron/electron/notifications/service.js +118 -0
package/dist/electron/electron/notifications/store.js +144 -0
package/dist/electron/electron/preload.js +842 -0
package/dist/electron/electron/reports/StandupReportService.js +272 -0
package/dist/electron/electron/security/concurrency.js +293 -0
package/dist/electron/electron/security/index.js +15 -0
package/dist/electron/electron/security/policy-manager.js +435 -0
package/dist/electron/electron/settings/appearance-manager.js +193 -0
package/dist/electron/electron/settings/personality-manager.js +724 -0
package/dist/electron/electron/settings/x-manager.js +58 -0
package/dist/electron/electron/tailscale/exposure.js +188 -0
package/dist/electron/electron/tailscale/index.js +28 -0
package/dist/electron/electron/tailscale/settings.js +205 -0
package/dist/electron/electron/tailscale/tailscale.js +355 -0
package/dist/electron/electron/tray/QuickInputWindow.js +568 -0
package/dist/electron/electron/tray/TrayManager.js +895 -0
package/dist/electron/electron/tray/index.js +9 -0
package/dist/electron/electron/updater/index.js +6 -0
package/dist/electron/electron/updater/update-manager.js +418 -0
package/dist/electron/electron/utils/env-migration.js +209 -0
package/dist/electron/electron/utils/process.js +102 -0
package/dist/electron/electron/utils/rate-limiter.js +104 -0
package/dist/electron/electron/utils/validation.js +419 -0
package/dist/electron/electron/utils/x-cli.js +177 -0
package/dist/electron/electron/voice/VoiceService.js +507 -0
package/dist/electron/electron/voice/index.js +14 -0
package/dist/electron/electron/voice/voice-settings-manager.js +359 -0
package/dist/electron/shared/channelMessages.js +170 -0
package/dist/electron/shared/types.js +1185 -0
package/package.json +159 -0
package/resources/skills/1password.json +10 -0
package/resources/skills/add-documentation.json +31 -0
package/resources/skills/analyze-csv.json +17 -0
package/resources/skills/apple-notes.json +10 -0
package/resources/skills/apple-reminders.json +10 -0
package/resources/skills/auto-commenter.json +10 -0
package/resources/skills/bear-notes.json +10 -0
package/resources/skills/bird.json +35 -0
package/resources/skills/blogwatcher.json +10 -0
package/resources/skills/blucli.json +10 -0
package/resources/skills/bluebubbles.json +10 -0
package/resources/skills/camsnap.json +10 -0
package/resources/skills/clean-imports.json +18 -0
package/resources/skills/code-review.json +18 -0
package/resources/skills/coding-agent.json +10 -0
package/resources/skills/compare-files.json +23 -0
package/resources/skills/convert-code.json +34 -0
package/resources/skills/create-changelog.json +24 -0
package/resources/skills/debug-error.json +17 -0
package/resources/skills/dependency-check.json +10 -0
package/resources/skills/discord.json +10 -0
package/resources/skills/eightctl.json +10 -0
package/resources/skills/explain-code.json +29 -0
package/resources/skills/extract-todos.json +18 -0
package/resources/skills/food-order.json +10 -0
package/resources/skills/gemini.json +10 -0
package/resources/skills/generate-readme.json +10 -0
package/resources/skills/gifgrep.json +10 -0
package/resources/skills/git-commit.json +10 -0
package/resources/skills/github.json +10 -0
package/resources/skills/gog.json +10 -0
package/resources/skills/goplaces.json +10 -0
package/resources/skills/himalaya.json +10 -0
package/resources/skills/imsg.json +10 -0
package/resources/skills/karpathy-guidelines.json +12 -0
package/resources/skills/last30days.json +26 -0
package/resources/skills/local-places.json +10 -0
package/resources/skills/mcporter.json +10 -0
package/resources/skills/model-usage.json +10 -0
package/resources/skills/nano-banana-pro.json +10 -0
package/resources/skills/nano-pdf.json +10 -0
package/resources/skills/notion.json +10 -0
package/resources/skills/obsidian.json +10 -0
package/resources/skills/openai-image-gen.json +10 -0
package/resources/skills/openai-whisper-api.json +10 -0
package/resources/skills/openai-whisper.json +10 -0
package/resources/skills/openhue.json +10 -0
package/resources/skills/oracle.json +10 -0
package/resources/skills/ordercli.json +10 -0
package/resources/skills/peekaboo.json +10 -0
package/resources/skills/project-structure.json +10 -0
package/resources/skills/proofread.json +17 -0
package/resources/skills/refactor-code.json +31 -0
package/resources/skills/rename-symbol.json +23 -0
package/resources/skills/sag.json +10 -0
package/resources/skills/security-audit.json +18 -0
package/resources/skills/session-logs.json +10 -0
package/resources/skills/sherpa-onnx-tts.json +10 -0
package/resources/skills/skill-creator.json +15 -0
package/resources/skills/skill-hub.json +29 -0
package/resources/skills/slack.json +10 -0
package/resources/skills/songsee.json +10 -0
package/resources/skills/sonoscli.json +10 -0
package/resources/skills/spotify-player.json +10 -0
package/resources/skills/startup-cfo.json +55 -0
package/resources/skills/summarize-folder.json +18 -0
package/resources/skills/summarize.json +10 -0
package/resources/skills/things-mac.json +10 -0
package/resources/skills/tmux.json +10 -0
package/resources/skills/translate.json +36 -0
package/resources/skills/trello.json +10 -0
package/resources/skills/video-frames.json +10 -0
package/resources/skills/voice-call.json +10 -0
package/resources/skills/wacli.json +10 -0
package/resources/skills/weather.json +10 -0
package/resources/skills/write-tests.json +31 -0
package/src/electron/activity/ActivityRepository.ts +238 -0
package/src/electron/agent/browser/browser-service.ts +721 -0
package/src/electron/agent/context-manager.ts +257 -0
package/src/electron/agent/custom-skill-loader.ts +634 -0
package/src/electron/agent/daemon.ts +1097 -0
package/src/electron/agent/executor.ts +4017 -0
package/src/electron/agent/llm/anthropic-provider.ts +175 -0
package/src/electron/agent/llm/bedrock-provider.ts +236 -0
package/src/electron/agent/llm/gemini-provider.ts +422 -0
package/src/electron/agent/llm/index.ts +9 -0
package/src/electron/agent/llm/ollama-provider.ts +347 -0
package/src/electron/agent/llm/openai-oauth.ts +127 -0
package/src/electron/agent/llm/openai-provider.ts +686 -0
package/src/electron/agent/llm/openrouter-provider.ts +273 -0
package/src/electron/agent/llm/pricing.ts +180 -0
package/src/electron/agent/llm/provider-factory.ts +971 -0
package/src/electron/agent/llm/types.ts +291 -0
package/src/electron/agent/queue-manager.ts +408 -0
package/src/electron/agent/sandbox/docker-sandbox.ts +453 -0
package/src/electron/agent/sandbox/macos-sandbox.ts +426 -0
package/src/electron/agent/sandbox/runner.ts +453 -0
package/src/electron/agent/sandbox/sandbox-factory.ts +337 -0
package/src/electron/agent/sandbox/security-utils.ts +251 -0
package/src/electron/agent/search/brave-provider.ts +141 -0
package/src/electron/agent/search/google-provider.ts +131 -0
package/src/electron/agent/search/index.ts +6 -0
package/src/electron/agent/search/provider-factory.ts +450 -0
package/src/electron/agent/search/serpapi-provider.ts +138 -0
package/src/electron/agent/search/tavily-provider.ts +108 -0
package/src/electron/agent/search/types.ts +118 -0
package/src/electron/agent/security/index.ts +20 -0
package/src/electron/agent/security/input-sanitizer.ts +380 -0
package/src/electron/agent/security/output-filter.ts +259 -0
package/src/electron/agent/skill-eligibility.ts +334 -0
package/src/electron/agent/skill-registry.ts +457 -0
package/src/electron/agent/skills/document.ts +1070 -0
package/src/electron/agent/skills/image-generator.ts +272 -0
package/src/electron/agent/skills/organizer.ts +131 -0
package/src/electron/agent/skills/presentation.ts +418 -0
package/src/electron/agent/skills/spreadsheet.ts +166 -0
package/src/electron/agent/tools/browser-tools.ts +546 -0
package/src/electron/agent/tools/builtin-settings.ts +422 -0
package/src/electron/agent/tools/canvas-tools.ts +572 -0
package/src/electron/agent/tools/cron-tools.ts +723 -0
package/src/electron/agent/tools/edit-tools.ts +196 -0
package/src/electron/agent/tools/file-tools.ts +811 -0
package/src/electron/agent/tools/glob-tools.ts +303 -0
package/src/electron/agent/tools/grep-tools.ts +432 -0
package/src/electron/agent/tools/image-tools.ts +126 -0
package/src/electron/agent/tools/mention-tools.ts +371 -0
package/src/electron/agent/tools/node-tools.ts +550 -0
package/src/electron/agent/tools/registry.ts +3052 -0
package/src/electron/agent/tools/search-tools.ts +111 -0
package/src/electron/agent/tools/shell-tools.ts +651 -0
package/src/electron/agent/tools/skill-tools.ts +340 -0
package/src/electron/agent/tools/system-tools.ts +665 -0
package/src/electron/agent/tools/web-fetch-tools.ts +528 -0
package/src/electron/agent/tools/x-tools.ts +267 -0
package/src/electron/agents/AgentRoleRepository.ts +557 -0
package/src/electron/agents/HeartbeatService.ts +469 -0
package/src/electron/agents/MentionRepository.ts +242 -0
package/src/electron/agents/TaskSubscriptionRepository.ts +231 -0
package/src/electron/agents/WorkingStateRepository.ts +278 -0
package/src/electron/canvas/canvas-manager.ts +818 -0
package/src/electron/canvas/canvas-preload.ts +102 -0
package/src/electron/canvas/canvas-protocol.ts +174 -0
package/src/electron/canvas/canvas-store.ts +200 -0
package/src/electron/canvas/index.ts +8 -0
package/src/electron/control-plane/client.ts +527 -0
package/src/electron/control-plane/handlers.ts +723 -0
package/src/electron/control-plane/index.ts +51 -0
package/src/electron/control-plane/node-manager.ts +322 -0
package/src/electron/control-plane/protocol.ts +269 -0
package/src/electron/control-plane/remote-client.ts +517 -0
package/src/electron/control-plane/server.ts +853 -0
package/src/electron/control-plane/settings.ts +401 -0
package/src/electron/control-plane/ssh-tunnel.ts +624 -0
package/src/electron/cron/index.ts +9 -0
package/src/electron/cron/schedule.ts +217 -0
package/src/electron/cron/service.ts +743 -0
package/src/electron/cron/store.ts +165 -0
package/src/electron/cron/types.ts +291 -0
package/src/electron/cron/webhook.ts +303 -0
package/src/electron/database/SecureSettingsRepository.ts +514 -0
package/src/electron/database/TaskLabelRepository.ts +148 -0
package/src/electron/database/repositories.ts +2397 -0
package/src/electron/database/schema.ts +1017 -0
package/src/electron/extensions/index.ts +18 -0
package/src/electron/extensions/loader.ts +336 -0
package/src/electron/extensions/registry.ts +546 -0
package/src/electron/extensions/types.ts +372 -0
package/src/electron/gateway/channel-registry.ts +1267 -0
package/src/electron/gateway/channels/bluebubbles-client.ts +641 -0
package/src/electron/gateway/channels/bluebubbles.ts +509 -0
package/src/electron/gateway/channels/discord.ts +1150 -0
package/src/electron/gateway/channels/email-client.ts +708 -0
package/src/electron/gateway/channels/email.ts +516 -0
package/src/electron/gateway/channels/google-chat.ts +760 -0
package/src/electron/gateway/channels/imessage-client.ts +473 -0
package/src/electron/gateway/channels/imessage.ts +520 -0
package/src/electron/gateway/channels/index.ts +21 -0
package/src/electron/gateway/channels/line-client.ts +598 -0
package/src/electron/gateway/channels/line.ts +559 -0
package/src/electron/gateway/channels/matrix-client.ts +632 -0
package/src/electron/gateway/channels/matrix.ts +655 -0
package/src/electron/gateway/channels/mattermost-client.ts +526 -0
package/src/electron/gateway/channels/mattermost.ts +550 -0
package/src/electron/gateway/channels/signal-client.ts +722 -0
package/src/electron/gateway/channels/signal.ts +666 -0
package/src/electron/gateway/channels/slack.ts +458 -0
package/src/electron/gateway/channels/teams.ts +681 -0
package/src/electron/gateway/channels/telegram.ts +1727 -0
package/src/electron/gateway/channels/twitch-client.ts +665 -0
package/src/electron/gateway/channels/twitch.ts +468 -0
package/src/electron/gateway/channels/types.ts +1002 -0
package/src/electron/gateway/channels/whatsapp.ts +1101 -0
package/src/electron/gateway/context-policy.ts +382 -0
package/src/electron/gateway/index.ts +1274 -0
package/src/electron/gateway/infrastructure.ts +645 -0
package/src/electron/gateway/router.ts +3206 -0
package/src/electron/gateway/security.ts +422 -0
package/src/electron/gateway/session.ts +144 -0
package/src/electron/gateway/tunnel.ts +626 -0
package/src/electron/guardrails/guardrail-manager.ts +380 -0
package/src/electron/hooks/gmail-watcher.ts +355 -0
package/src/electron/hooks/index.ts +30 -0
package/src/electron/hooks/mappings.ts +404 -0
package/src/electron/hooks/server.ts +574 -0
package/src/electron/hooks/settings.ts +466 -0
package/src/electron/hooks/types.ts +245 -0
package/src/electron/ipc/canvas-handlers.ts +223 -0
package/src/electron/ipc/handlers.ts +3661 -0
package/src/electron/ipc/mission-control-handlers.ts +182 -0
package/src/electron/main.ts +496 -0
package/src/electron/mcp/client/MCPClientManager.ts +406 -0
package/src/electron/mcp/client/MCPServerConnection.ts +514 -0
package/src/electron/mcp/client/transports/SSETransport.ts +360 -0
package/src/electron/mcp/client/transports/StdioTransport.ts +355 -0
package/src/electron/mcp/client/transports/WebSocketTransport.ts +384 -0
package/src/electron/mcp/host/MCPHostServer.ts +388 -0
package/src/electron/mcp/host/ToolAdapter.ts +140 -0
package/src/electron/mcp/registry/MCPRegistryManager.ts +565 -0
package/src/electron/mcp/settings.ts +468 -0
package/src/electron/mcp/types.ts +371 -0
package/src/electron/memory/MemoryService.ts +523 -0
package/src/electron/notifications/index.ts +16 -0
package/src/electron/notifications/service.ts +161 -0
package/src/electron/notifications/store.ts +163 -0
package/src/electron/preload.ts +2845 -0
package/src/electron/reports/StandupReportService.ts +356 -0
package/src/electron/security/concurrency.ts +333 -0
package/src/electron/security/index.ts +17 -0
package/src/electron/security/policy-manager.ts +539 -0
package/src/electron/settings/appearance-manager.ts +182 -0
package/src/electron/settings/personality-manager.ts +800 -0
package/src/electron/settings/x-manager.ts +62 -0
package/src/electron/tailscale/exposure.ts +262 -0
package/src/electron/tailscale/index.ts +34 -0
package/src/electron/tailscale/settings.ts +218 -0
package/src/electron/tailscale/tailscale.ts +379 -0
package/src/electron/tray/QuickInputWindow.ts +609 -0
package/src/electron/tray/TrayManager.ts +1005 -0
package/src/electron/tray/index.ts +6 -0
package/src/electron/updater/index.ts +1 -0
package/src/electron/updater/update-manager.ts +447 -0
package/src/electron/utils/env-migration.ts +203 -0
package/src/electron/utils/process.ts +124 -0
package/src/electron/utils/rate-limiter.ts +130 -0
package/src/electron/utils/validation.ts +493 -0
package/src/electron/utils/x-cli.ts +198 -0
package/src/electron/voice/VoiceService.ts +583 -0
package/src/electron/voice/index.ts +9 -0
package/src/electron/voice/voice-settings-manager.ts +403 -0
package/src/renderer/App.tsx +775 -0
package/src/renderer/components/ActivityFeed.tsx +407 -0
package/src/renderer/components/ActivityFeedItem.tsx +285 -0
package/src/renderer/components/AgentRoleCard.tsx +343 -0
package/src/renderer/components/AgentRoleEditor.tsx +805 -0
package/src/renderer/components/AgentSquadSettings.tsx +295 -0
package/src/renderer/components/AgentWorkingStatePanel.tsx +411 -0
package/src/renderer/components/AppearanceSettings.tsx +122 -0
package/src/renderer/components/ApprovalDialog.tsx +100 -0
package/src/renderer/components/BlueBubblesSettings.tsx +505 -0
package/src/renderer/components/BuiltinToolsSettings.tsx +307 -0
package/src/renderer/components/CanvasPreview.tsx +1189 -0
package/src/renderer/components/CommandOutput.tsx +202 -0
package/src/renderer/components/ContextPolicySettings.tsx +523 -0
package/src/renderer/components/ControlPlaneSettings.tsx +1134 -0
package/src/renderer/components/DisclaimerModal.tsx +124 -0
package/src/renderer/components/DiscordSettings.tsx +436 -0
package/src/renderer/components/EmailSettings.tsx +606 -0
package/src/renderer/components/ExtensionsSettings.tsx +542 -0
package/src/renderer/components/FileViewer.tsx +224 -0
package/src/renderer/components/GoogleChatSettings.tsx +535 -0
package/src/renderer/components/GuardrailSettings.tsx +487 -0
package/src/renderer/components/HooksSettings.tsx +581 -0
package/src/renderer/components/ImessageSettings.tsx +484 -0
package/src/renderer/components/LineSettings.tsx +483 -0
package/src/renderer/components/MCPRegistryBrowser.tsx +386 -0
package/src/renderer/components/MCPSettings.tsx +943 -0
package/src/renderer/components/MainContent.tsx +2433 -0
package/src/renderer/components/MatrixSettings.tsx +510 -0
package/src/renderer/components/MattermostSettings.tsx +473 -0
package/src/renderer/components/MemorySettings.tsx +247 -0
package/src/renderer/components/MentionBadge.tsx +87 -0
package/src/renderer/components/MentionInput.tsx +409 -0
package/src/renderer/components/MentionList.tsx +476 -0
package/src/renderer/components/MissionControlPanel.tsx +1995 -0
package/src/renderer/components/NodesSettings.tsx +316 -0
package/src/renderer/components/NotificationPanel.tsx +481 -0
package/src/renderer/components/Onboarding/AwakeningOrb.tsx +44 -0
package/src/renderer/components/Onboarding/Onboarding.tsx +443 -0
package/src/renderer/components/Onboarding/TypewriterText.tsx +102 -0
package/src/renderer/components/Onboarding/index.ts +3 -0
package/src/renderer/components/OnboardingModal.tsx +698 -0
package/src/renderer/components/PairingCodeDisplay.tsx +324 -0
package/src/renderer/components/PersonalitySettings.tsx +597 -0
package/src/renderer/components/QueueSettings.tsx +119 -0
package/src/renderer/components/QuickTaskFAB.tsx +71 -0
package/src/renderer/components/RightPanel.tsx +413 -0
package/src/renderer/components/ScheduledTasksSettings.tsx +1328 -0
package/src/renderer/components/SearchSettings.tsx +328 -0
package/src/renderer/components/Settings.tsx +1504 -0
package/src/renderer/components/Sidebar.tsx +344 -0
package/src/renderer/components/SignalSettings.tsx +673 -0
package/src/renderer/components/SkillHubBrowser.tsx +458 -0
package/src/renderer/components/SkillParameterModal.tsx +185 -0
package/src/renderer/components/SkillsSettings.tsx +451 -0
package/src/renderer/components/SlackSettings.tsx +442 -0
package/src/renderer/components/StandupReportViewer.tsx +614 -0
package/src/renderer/components/TaskBoard.tsx +498 -0
package/src/renderer/components/TaskBoardCard.tsx +357 -0
package/src/renderer/components/TaskBoardColumn.tsx +211 -0
package/src/renderer/components/TaskLabelManager.tsx +472 -0
package/src/renderer/components/TaskQueuePanel.tsx +144 -0
package/src/renderer/components/TaskQuickActions.tsx +492 -0
package/src/renderer/components/TaskTimeline.tsx +216 -0
package/src/renderer/components/TaskView.tsx +162 -0
package/src/renderer/components/TeamsSettings.tsx +518 -0
package/src/renderer/components/TelegramSettings.tsx +421 -0
package/src/renderer/components/Toast.tsx +76 -0
package/src/renderer/components/TraySettings.tsx +189 -0
package/src/renderer/components/TwitchSettings.tsx +511 -0
package/src/renderer/components/UpdateSettings.tsx +295 -0
package/src/renderer/components/VoiceIndicator.tsx +270 -0
package/src/renderer/components/VoiceSettings.tsx +867 -0
package/src/renderer/components/WhatsAppSettings.tsx +721 -0
package/src/renderer/components/WorkingStateEditor.tsx +309 -0
package/src/renderer/components/WorkingStateHistory.tsx +481 -0
package/src/renderer/components/WorkspaceSelector.tsx +150 -0
package/src/renderer/components/XSettings.tsx +311 -0
package/src/renderer/global.d.ts +9 -0
package/src/renderer/hooks/useAgentContext.ts +153 -0
package/src/renderer/hooks/useOnboardingFlow.ts +548 -0
package/src/renderer/hooks/useVoiceInput.ts +268 -0
package/src/renderer/index.html +12 -0
package/src/renderer/main.tsx +10 -0
package/src/renderer/public/cowork-os-logo.png +0 -0
package/src/renderer/quick-input.html +164 -0
package/src/renderer/styles/index.css +14504 -0
package/src/renderer/utils/agentMessages.ts +749 -0
package/src/renderer/utils/voice-directives.ts +169 -0
package/src/shared/channelMessages.ts +213 -0
package/src/shared/types.ts +3608 -0
package/tsconfig.electron.json +26 -0
package/tsconfig.json +26 -0
package/tsconfig.node.json +10 -0
package/vite.config.ts +23 -0

package/src/electron/agent/search/types.ts ADDED Viewed

@@ -0,0 +1,118 @@
+/**
+ * Search Provider abstraction types
+ * Allows switching between Tavily, Brave Search, SerpAPI, and Google Custom Search
+ */
+export type SearchProviderType = 'tavily' | 'brave' | 'serpapi' | 'google';
+export type SearchType = 'web' | 'news' | 'images';
+export interface SearchProviderConfig {
+  type: SearchProviderType;
+  // Tavily-specific
+  tavilyApiKey?: string;
+  // Brave-specific
+  braveApiKey?: string;
+  // SerpAPI-specific
+  serpApiKey?: string;
+  // Google Custom Search-specific
+  googleApiKey?: string;
+  googleSearchEngineId?: string;
+}
+export interface SearchQuery {
+  query: string;
+  searchType?: SearchType;
+  maxResults?: number;
+  // Optional filters
+  dateRange?: 'day' | 'week' | 'month' | 'year';
+  region?: string; // e.g., 'us', 'uk', 'de'
+  language?: string; // e.g., 'en', 'de', 'fr'
+  safeSearch?: boolean;
+  // Override provider for this query
+  provider?: SearchProviderType;
+}
+export interface SearchResult {
+  title: string;
+  url: string;
+  snippet: string;
+  // Optional metadata
+  publishedDate?: string;
+  source?: string;
+  // For image search
+  thumbnailUrl?: string;
+  imageUrl?: string;
+  width?: number;
+  height?: number;
+}
+export interface SearchResponse {
+  results: SearchResult[];
+  query: string;
+  searchType: SearchType;
+  totalResults?: number;
+  provider: SearchProviderType | 'none';
+  // Optional metadata for additional info (e.g., errors, configuration status)
+  metadata?: {
+    error?: string;
+    notConfigured?: boolean;
+    [key: string]: unknown;
+  };
+}
+/**
+ * Abstract Search Provider interface
+ */
+export interface SearchProvider {
+  readonly type: SearchProviderType;
+  /**
+   * Supported search types for this provider
+   */
+  readonly supportedSearchTypes: SearchType[];
+  /**
+   * Perform a search query
+   */
+  search(query: SearchQuery): Promise<SearchResponse>;
+  /**
+   * Test the provider connection/API key validity
+   */
+  testConnection(): Promise<{ success: boolean; error?: string }>;
+}
+/**
+ * Provider capabilities for UI display
+ */
+export const SEARCH_PROVIDER_INFO = {
+  tavily: {
+    displayName: 'Tavily',
+    description: 'AI-focused search API with structured results',
+    supportedTypes: ['web', 'news'] as SearchType[],
+    envVar: 'TAVILY_API_KEY',
+    signupUrl: 'https://tavily.com/',
+  },
+  brave: {
+    displayName: 'Brave Search',
+    description: 'Privacy-focused web, news, and image search',
+    supportedTypes: ['web', 'news', 'images'] as SearchType[],
+    envVar: 'BRAVE_API_KEY',
+    signupUrl: 'https://brave.com/search/api/',
+  },
+  serpapi: {
+    displayName: 'SerpAPI',
+    description: 'Aggregates Google, Bing, DuckDuckGo results',
+    supportedTypes: ['web', 'news', 'images'] as SearchType[],
+    envVar: 'SERPAPI_KEY',
+    signupUrl: 'https://serpapi.com/',
+  },
+  google: {
+    displayName: 'Google Custom Search',
+    description: 'Official Google Search API',
+    supportedTypes: ['web', 'images'] as SearchType[],
+    envVars: ['GOOGLE_API_KEY', 'GOOGLE_SEARCH_ENGINE_ID'],
+    signupUrl: 'https://developers.google.com/custom-search/v1/introduction',
+  },
+} as const;

package/src/electron/agent/security/index.ts ADDED Viewed

@@ -0,0 +1,20 @@
+/**
+ * Security Module
+ *
+ * Exports all security-related utilities for the agent system.
+ */
+export { InputSanitizer } from './input-sanitizer';
+export type {
+  EncodedContentResult,
+  ImpersonationResult,
+  ContentInjectionResult,
+  CodeInjectionResult,
+  SanitizationReport,
+} from './input-sanitizer';
+export { OutputFilter } from './output-filter';
+export type {
+  ComplianceCheckResult,
+  PromptLeakageResult,
+} from './output-filter';

package/src/electron/agent/security/input-sanitizer.ts ADDED Viewed

@@ -0,0 +1,380 @@
+/**
+ * Input Sanitizer
+ *
+ * Preprocesses user input before LLM processing to detect and handle
+ * potentially malicious patterns like:
+ * - Encoded instructions (base64, ROT13)
+ * - System impersonation attempts
+ * - Document/content injection
+ * - Hidden instructions in various formats
+ *
+ * This is a defense-in-depth layer that runs transparently without
+ * restricting legitimate user capabilities.
+ */
+export interface EncodedContentResult {
+  hasEncoded: boolean;
+  decodedPayload?: string;
+  encodingType?: 'base64' | 'rot13' | 'hex' | 'unicode';
+}
+export interface ImpersonationResult {
+  detected: boolean;
+  type?: 'system' | 'admin' | 'directive' | 'mode';
+  pattern?: string;
+}
+export interface ContentInjectionResult {
+  detected: boolean;
+  type?: 'document' | 'email' | 'code' | 'html';
+  location?: string;
+}
+export interface CodeInjectionResult {
+  detected: boolean;
+  patterns: string[];
+  sanitized: string;
+}
+export interface SanitizationReport {
+  originalLength: number;
+  hasEncodedContent: EncodedContentResult;
+  hasImpersonation: ImpersonationResult;
+  hasContentInjection: ContentInjectionResult;
+  threatLevel: 'none' | 'low' | 'medium' | 'high';
+}
+export class InputSanitizer {
+  // Patterns that indicate injection attempts when decoded
+  private static readonly INJECTION_PATTERNS = [
+    /say\s+["'][^"']+["']/i,
+    /respond\s+with/i,
+    /your\s+response/i,
+    /ignore\s+(all\s+)?previous/i,
+    /disregard\s+(all\s+)?previous/i,
+    /forget\s+(all\s+)?previous/i,
+    /new\s+instructions?/i,
+    /system\s*:/i,
+    /override/i,
+  ];
+  // System impersonation patterns
+  private static readonly IMPERSONATION_PATTERNS: Array<{
+    pattern: RegExp;
+    type: 'system' | 'admin' | 'directive' | 'mode';
+  }> = [
+    { pattern: /\[SYSTEM\]/i, type: 'system' },
+    { pattern: /\[\/SYSTEM\]/i, type: 'system' },
+    { pattern: /<SYSTEM>/i, type: 'system' },
+    { pattern: /<\/SYSTEM>/i, type: 'system' },
+    { pattern: /\[ADMIN\s*OVERRIDE\]/i, type: 'admin' },
+    { pattern: /\[NEW\s*DIRECTIVE\]/i, type: 'directive' },
+    { pattern: /\[PRIORITY\s*INSTRUCTION\]/i, type: 'directive' },
+    { pattern: /INITIATING\s+\w+\s+MODE/i, type: 'mode' },
+    { pattern: /ACTIVATING\s+\w+\s+MODE/i, type: 'mode' },
+    { pattern: /<<\s*SYS\s*>>/i, type: 'system' },
+    { pattern: /<\|im_start\|>system/i, type: 'system' },
+    { pattern: /<\|system\|>/i, type: 'system' },
+    { pattern: /\[INST\]/i, type: 'system' },
+    { pattern: /###\s*System/i, type: 'system' },
+  ];
+  // Document injection patterns (hidden instructions in content)
+  private static readonly CONTENT_INJECTION_PATTERNS: Array<{
+    pattern: RegExp;
+    type: 'document' | 'email' | 'code' | 'html';
+  }> = [
+    {
+      pattern: /---\s*BEGIN\s*DOCUMENT\s*---[\s\S]*?(?:AI|ASSISTANT|SYSTEM)\s*:/gi,
+      type: 'document',
+    },
+    { pattern: /<!--[\s\S]*?(?:AI|ASSISTANT)\s*:[\s\S]*?-->/gi, type: 'html' },
+    {
+      pattern: /\[(?:AI|ASSISTANT|SYSTEM)[\s_]*(?:INSTRUCTION|NOTE|COMMAND)\s*:/gi,
+      type: 'document',
+    },
+    { pattern: /From:.*\nSubject:.*\n[\s\S]*?(?:AI|ASSISTANT)\s*:/gi, type: 'email' },
+  ];
+  // Patterns for hidden instructions in code
+  private static readonly CODE_INJECTION_PATTERNS = [
+    /(?:AI|ASSISTANT|SYSTEM)_?INSTRUCTION\s*:/gi,
+    /\/\*\s*(?:AI|ASSISTANT)\s*:/gi,
+    /<!--\s*(?:AI|ASSISTANT)\s*:/gi,
+    /\/\/\s*(?:AI|ASSISTANT)\s*:/gi,
+    /#\s*(?:AI|ASSISTANT)\s*:/gi,
+    /['"](?:AI|ASSISTANT)_?(?:INSTRUCTION|COMMAND)['"]?\s*:/gi,
+    /(?:HIDDEN|SECRET)_?INSTRUCTION\s*:/gi,
+  ];
+  /**
+   * Perform full sanitization analysis on input
+   */
+  static analyze(input: string): SanitizationReport {
+    const hasEncodedContent = this.detectEncodedContent(input);
+    const hasImpersonation = this.detectImpersonation(input);
+    const hasContentInjection = this.detectContentInjection(input);
+    // Calculate threat level
+    let threatLevel: 'none' | 'low' | 'medium' | 'high' = 'none';
+    if (hasImpersonation.detected) {
+      threatLevel = 'high';
+    } else if (hasEncodedContent.hasEncoded && hasEncodedContent.decodedPayload) {
+      threatLevel = 'high';
+    } else if (hasContentInjection.detected) {
+      threatLevel = 'medium';
+    } else if (hasEncodedContent.hasEncoded) {
+      threatLevel = 'low';
+    }
+    return {
+      originalLength: input.length,
+      hasEncodedContent,
+      hasImpersonation,
+      hasContentInjection,
+      threatLevel,
+    };
+  }
+  /**
+   * Detect and decode potentially encoded instructions
+   */
+  static detectEncodedContent(input: string): EncodedContentResult {
+    // Base64 detection - look for decode requests with base64 content
+    const base64Pattern = /(?:decode|base64|b64)\s*[:\s]*([A-Za-z0-9+/=]{20,})/gi;
+    let match: RegExpExecArray | null;
+    while ((match = base64Pattern.exec(input)) !== null) {
+      try {
+        const decoded = Buffer.from(match[1], 'base64').toString('utf8');
+        // Check if decoded content is readable text (not binary garbage)
+        if (/^[\x20-\x7E\s]+$/.test(decoded) && this.containsInjectionPatterns(decoded)) {
+          return {
+            hasEncoded: true,
+            decodedPayload: decoded,
+            encodingType: 'base64',
+          };
+        }
+      } catch {
+        /* Invalid base64, continue */
+      }
+    }
+    // ROT13 / backwards text detection
+    const rot13Patterns = [
+      /(?:read|decode)\s*(?:this\s*)?backwards/gi,
+      /rot13/gi,
+      /reverse\s*(?:this|the\s*text)/gi,
+    ];
+    for (const pattern of rot13Patterns) {
+      if (pattern.test(input)) {
+        return { hasEncoded: true, encodingType: 'rot13' };
+      }
+    }
+    // Hex encoding detection
+    const hexPattern = /(?:hex|0x)\s*[:\s]*([0-9A-Fa-f]{20,})/gi;
+    while ((match = hexPattern.exec(input)) !== null) {
+      try {
+        const decoded = Buffer.from(match[1], 'hex').toString('utf8');
+        if (/^[\x20-\x7E\s]+$/.test(decoded) && this.containsInjectionPatterns(decoded)) {
+          return {
+            hasEncoded: true,
+            decodedPayload: decoded,
+            encodingType: 'hex',
+          };
+        }
+      } catch {
+        /* Invalid hex, continue */
+      }
+    }
+    return { hasEncoded: false };
+  }
+  /**
+   * Detect system impersonation attempts
+   */
+  static detectImpersonation(input: string): ImpersonationResult {
+    for (const { pattern, type } of this.IMPERSONATION_PATTERNS) {
+      const match = input.match(pattern);
+      if (match) {
+        return {
+          detected: true,
+          type,
+          pattern: match[0],
+        };
+      }
+    }
+    return { detected: false };
+  }
+  /**
+   * Detect document/content injection attempts
+   */
+  static detectContentInjection(input: string): ContentInjectionResult {
+    for (const { pattern, type } of this.CONTENT_INJECTION_PATTERNS) {
+      if (pattern.test(input)) {
+        return { detected: true, type };
+      }
+    }
+    return { detected: false };
+  }
+  /**
+   * Sanitize code content for review (annotate suspicious patterns)
+   * For code that will be REVIEWED (not executed), we annotate suspicious patterns
+   */
+  static sanitizeCodeForReview(code: string): CodeInjectionResult {
+    const detectedPatterns: string[] = [];
+    let sanitized = code;
+    for (const pattern of this.CODE_INJECTION_PATTERNS) {
+      const matches = code.match(pattern);
+      if (matches) {
+        detectedPatterns.push(...matches);
+        // Replace with annotation that flags the suspicious content
+        sanitized = sanitized.replace(
+          pattern,
+          '[SUSPICIOUS_INJECTION_PATTERN_DETECTED: $&]'
+        );
+      }
+    }
+    return {
+      detected: detectedPatterns.length > 0,
+      patterns: detectedPatterns,
+      sanitized,
+    };
+  }
+  /**
+   * Add security context to user message if threats detected
+   * This doesn't block the message, just adds awareness for the LLM
+   */
+  static addSecurityContext(input: string, report: SanitizationReport): string {
+    if (report.threatLevel === 'none') {
+      return input;
+    }
+    const warnings: string[] = [];
+    if (report.hasImpersonation.detected) {
+      warnings.push(
+        `system impersonation attempt detected (${report.hasImpersonation.type})`
+      );
+    }
+    if (report.hasEncodedContent.hasEncoded) {
+      warnings.push(
+        `encoded content detected (${report.hasEncodedContent.encodingType})`
+      );
+    }
+    if (report.hasContentInjection.detected) {
+      warnings.push(
+        `content injection pattern detected (${report.hasContentInjection.type})`
+      );
+    }
+    if (warnings.length === 0) {
+      return input;
+    }
+    // Add security note as metadata, not blocking the content
+    return `[Security Analysis: ${warnings.join('; ')}]\n\n${input}`;
+  }
+  /**
+   * Check if text contains patterns typically used in injection attacks
+   */
+  private static containsInjectionPatterns(text: string): boolean {
+    return this.INJECTION_PATTERNS.some((p) => p.test(text));
+  }
+  /**
+   * Sanitize memory content before injection into system prompt
+   * Removes patterns that could be used to manipulate the agent
+   */
+  static sanitizeMemoryContent(memory: string): string {
+    if (!memory) return '';
+    let sanitized = memory;
+    // Remove instruction-override patterns that may have been stored
+    const memoryDangerousPatterns = [
+      /NEW\s+INSTRUCTIONS?\s*:/gi,
+      /SYSTEM\s*:/gi,
+      /IGNORE\s+(ALL\s+)?PREVIOUS\s+(INSTRUCTIONS?|PROMPTS?)/gi,
+      /DISREGARD\s+(ALL\s+)?PREVIOUS/gi,
+      /OVERRIDE\s+(?:SYSTEM|INSTRUCTIONS?)/gi,
+      /\[INST\]/gi,
+      /<<SYS>>/gi,
+      /<\|im_start\|>/gi,
+    ];
+    for (const pattern of memoryDangerousPatterns) {
+      sanitized = sanitized.replace(pattern, '[filtered_memory_content]');
+    }
+    return sanitized;
+  }
+  /**
+   * Validate and sanitize skill guidelines before injection
+   */
+  static validateSkillGuidelines(guidelines: string): {
+    valid: boolean;
+    issues: string[];
+    sanitized: string;
+  } {
+    const issues: string[] = [];
+    let sanitized = guidelines;
+    const dangerousPatterns: Array<{ pattern: RegExp; issue: string }> = [
+      {
+        pattern: /ignore\s+(all\s+)?previous\s+(instructions?|prompts?)/gi,
+        issue: 'Contains "ignore previous instructions" pattern',
+      },
+      {
+        pattern: /disregard\s+(all\s+)?previous/gi,
+        issue: 'Contains "disregard previous" pattern',
+      },
+      {
+        pattern: /your\s+system\s+prompt/gi,
+        issue: 'References system prompt',
+      },
+      {
+        pattern: /reveal\s+your\s+(instructions?|configuration)/gi,
+        issue: 'Attempts to request instruction disclosure',
+      },
+      {
+        pattern: /output\s+your\s+(system\s+)?prompt/gi,
+        issue: 'Attempts to extract prompt',
+      },
+      {
+        pattern: /new\s+instructions?\s*:/gi,
+        issue: 'Contains instruction override marker',
+      },
+      {
+        pattern: /<<SYS>>|<\|im_start\|>|\[INST\]/gi,
+        issue: 'Contains model-specific injection markers',
+      },
+    ];
+    for (const { pattern, issue } of dangerousPatterns) {
+      if (pattern.test(guidelines)) {
+        issues.push(issue);
+        sanitized = sanitized.replace(pattern, '[filtered_guideline]');
+      }
+    }
+    return {
+      valid: issues.length === 0,
+      issues,
+      sanitized,
+    };
+  }
+}