npm - cowork-os - Versions diffs - 0.3.21 - Mend

cowork-os 0.3.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (526) hide show

package/LICENSE +21 -0
package/README.md +1638 -0
package/bin/cowork.js +42 -0
package/build/entitlements.mac.plist +16 -0
package/build/icon.icns +0 -0
package/build/icon.png +0 -0
package/dist/electron/electron/activity/ActivityRepository.js +190 -0
package/dist/electron/electron/agent/browser/browser-service.js +639 -0
package/dist/electron/electron/agent/context-manager.js +225 -0
package/dist/electron/electron/agent/custom-skill-loader.js +566 -0
package/dist/electron/electron/agent/daemon.js +975 -0
package/dist/electron/electron/agent/executor.js +3561 -0
package/dist/electron/electron/agent/llm/anthropic-provider.js +155 -0
package/dist/electron/electron/agent/llm/bedrock-provider.js +202 -0
package/dist/electron/electron/agent/llm/gemini-provider.js +375 -0
package/dist/electron/electron/agent/llm/index.js +34 -0
package/dist/electron/electron/agent/llm/ollama-provider.js +263 -0
package/dist/electron/electron/agent/llm/openai-oauth.js +101 -0
package/dist/electron/electron/agent/llm/openai-provider.js +657 -0
package/dist/electron/electron/agent/llm/openrouter-provider.js +232 -0
package/dist/electron/electron/agent/llm/pricing.js +160 -0
package/dist/electron/electron/agent/llm/provider-factory.js +880 -0
package/dist/electron/electron/agent/llm/types.js +178 -0
package/dist/electron/electron/agent/queue-manager.js +378 -0
package/dist/electron/electron/agent/sandbox/docker-sandbox.js +402 -0
package/dist/electron/electron/agent/sandbox/macos-sandbox.js +407 -0
package/dist/electron/electron/agent/sandbox/runner.js +410 -0
package/dist/electron/electron/agent/sandbox/sandbox-factory.js +228 -0
package/dist/electron/electron/agent/sandbox/security-utils.js +258 -0
package/dist/electron/electron/agent/search/brave-provider.js +119 -0
package/dist/electron/electron/agent/search/google-provider.js +100 -0
package/dist/electron/electron/agent/search/index.js +28 -0
package/dist/electron/electron/agent/search/provider-factory.js +395 -0
package/dist/electron/electron/agent/search/serpapi-provider.js +112 -0
package/dist/electron/electron/agent/search/tavily-provider.js +90 -0
package/dist/electron/electron/agent/search/types.js +40 -0
package/dist/electron/electron/agent/security/index.js +12 -0
package/dist/electron/electron/agent/security/input-sanitizer.js +303 -0
package/dist/electron/electron/agent/security/output-filter.js +217 -0
package/dist/electron/electron/agent/skill-eligibility.js +281 -0
package/dist/electron/electron/agent/skill-registry.js +396 -0
package/dist/electron/electron/agent/skills/document.js +878 -0
package/dist/electron/electron/agent/skills/image-generator.js +225 -0
package/dist/electron/electron/agent/skills/organizer.js +141 -0
package/dist/electron/electron/agent/skills/presentation.js +367 -0
package/dist/electron/electron/agent/skills/spreadsheet.js +165 -0
package/dist/electron/electron/agent/tools/browser-tools.js +523 -0
package/dist/electron/electron/agent/tools/builtin-settings.js +384 -0
package/dist/electron/electron/agent/tools/canvas-tools.js +530 -0
package/dist/electron/electron/agent/tools/cron-tools.js +577 -0
package/dist/electron/electron/agent/tools/edit-tools.js +194 -0
package/dist/electron/electron/agent/tools/file-tools.js +719 -0
package/dist/electron/electron/agent/tools/glob-tools.js +283 -0
package/dist/electron/electron/agent/tools/grep-tools.js +387 -0
package/dist/electron/electron/agent/tools/image-tools.js +111 -0
package/dist/electron/electron/agent/tools/mention-tools.js +282 -0
package/dist/electron/electron/agent/tools/node-tools.js +476 -0
package/dist/electron/electron/agent/tools/registry.js +2719 -0
package/dist/electron/electron/agent/tools/search-tools.js +91 -0
package/dist/electron/electron/agent/tools/shell-tools.js +574 -0
package/dist/electron/electron/agent/tools/skill-tools.js +274 -0
package/dist/electron/electron/agent/tools/system-tools.js +578 -0
package/dist/electron/electron/agent/tools/web-fetch-tools.js +444 -0
package/dist/electron/electron/agent/tools/x-tools.js +264 -0
package/dist/electron/electron/agents/AgentRoleRepository.js +420 -0
package/dist/electron/electron/agents/HeartbeatService.js +356 -0
package/dist/electron/electron/agents/MentionRepository.js +197 -0
package/dist/electron/electron/agents/TaskSubscriptionRepository.js +168 -0
package/dist/electron/electron/agents/WorkingStateRepository.js +229 -0
package/dist/electron/electron/canvas/canvas-manager.js +714 -0
package/dist/electron/electron/canvas/canvas-preload.js +53 -0
package/dist/electron/electron/canvas/canvas-protocol.js +195 -0
package/dist/electron/electron/canvas/canvas-store.js +174 -0
package/dist/electron/electron/canvas/index.js +13 -0
package/dist/electron/electron/control-plane/client.js +364 -0
package/dist/electron/electron/control-plane/handlers.js +572 -0
package/dist/electron/electron/control-plane/index.js +41 -0
package/dist/electron/electron/control-plane/node-manager.js +264 -0
package/dist/electron/electron/control-plane/protocol.js +194 -0
package/dist/electron/electron/control-plane/remote-client.js +437 -0
package/dist/electron/electron/control-plane/server.js +640 -0
package/dist/electron/electron/control-plane/settings.js +369 -0
package/dist/electron/electron/control-plane/ssh-tunnel.js +549 -0
package/dist/electron/electron/cron/index.js +30 -0
package/dist/electron/electron/cron/schedule.js +190 -0
package/dist/electron/electron/cron/service.js +614 -0
package/dist/electron/electron/cron/store.js +155 -0
package/dist/electron/electron/cron/types.js +82 -0
package/dist/electron/electron/cron/webhook.js +258 -0
package/dist/electron/electron/database/SecureSettingsRepository.js +444 -0
package/dist/electron/electron/database/TaskLabelRepository.js +120 -0
package/dist/electron/electron/database/repositories.js +1781 -0
package/dist/electron/electron/database/schema.js +978 -0
package/dist/electron/electron/extensions/index.js +33 -0
package/dist/electron/electron/extensions/loader.js +313 -0
package/dist/electron/electron/extensions/registry.js +485 -0
package/dist/electron/electron/extensions/types.js +11 -0
package/dist/electron/electron/gateway/channel-registry.js +1102 -0
package/dist/electron/electron/gateway/channels/bluebubbles-client.js +479 -0
package/dist/electron/electron/gateway/channels/bluebubbles.js +432 -0
package/dist/electron/electron/gateway/channels/discord.js +975 -0
package/dist/electron/electron/gateway/channels/email-client.js +593 -0
package/dist/electron/electron/gateway/channels/email.js +443 -0
package/dist/electron/electron/gateway/channels/google-chat.js +631 -0
package/dist/electron/electron/gateway/channels/imessage-client.js +363 -0
package/dist/electron/electron/gateway/channels/imessage.js +465 -0
package/dist/electron/electron/gateway/channels/index.js +36 -0
package/dist/electron/electron/gateway/channels/line-client.js +470 -0
package/dist/electron/electron/gateway/channels/line.js +479 -0
package/dist/electron/electron/gateway/channels/matrix-client.js +432 -0
package/dist/electron/electron/gateway/channels/matrix.js +592 -0
package/dist/electron/electron/gateway/channels/mattermost-client.js +394 -0
package/dist/electron/electron/gateway/channels/mattermost.js +496 -0
package/dist/electron/electron/gateway/channels/signal-client.js +500 -0
package/dist/electron/electron/gateway/channels/signal.js +582 -0
package/dist/electron/electron/gateway/channels/slack.js +415 -0
package/dist/electron/electron/gateway/channels/teams.js +596 -0
package/dist/electron/electron/gateway/channels/telegram.js +1390 -0
package/dist/electron/electron/gateway/channels/twitch-client.js +502 -0
package/dist/electron/electron/gateway/channels/twitch.js +396 -0
package/dist/electron/electron/gateway/channels/types.js +8 -0
package/dist/electron/electron/gateway/channels/whatsapp.js +953 -0
package/dist/electron/electron/gateway/context-policy.js +268 -0
package/dist/electron/electron/gateway/index.js +1063 -0
package/dist/electron/electron/gateway/infrastructure.js +496 -0
package/dist/electron/electron/gateway/router.js +2700 -0
package/dist/electron/electron/gateway/security.js +375 -0
package/dist/electron/electron/gateway/session.js +115 -0
package/dist/electron/electron/gateway/tunnel.js +503 -0
package/dist/electron/electron/guardrails/guardrail-manager.js +348 -0
package/dist/electron/electron/hooks/gmail-watcher.js +300 -0
package/dist/electron/electron/hooks/index.js +46 -0
package/dist/electron/electron/hooks/mappings.js +381 -0
package/dist/electron/electron/hooks/server.js +480 -0
package/dist/electron/electron/hooks/settings.js +447 -0
package/dist/electron/electron/hooks/types.js +41 -0
package/dist/electron/electron/ipc/canvas-handlers.js +158 -0
package/dist/electron/electron/ipc/handlers.js +3138 -0
package/dist/electron/electron/ipc/mission-control-handlers.js +141 -0
package/dist/electron/electron/main.js +448 -0
package/dist/electron/electron/mcp/client/MCPClientManager.js +330 -0
package/dist/electron/electron/mcp/client/MCPServerConnection.js +437 -0
package/dist/electron/electron/mcp/client/transports/SSETransport.js +304 -0
package/dist/electron/electron/mcp/client/transports/StdioTransport.js +307 -0
package/dist/electron/electron/mcp/client/transports/WebSocketTransport.js +329 -0
package/dist/electron/electron/mcp/host/MCPHostServer.js +354 -0
package/dist/electron/electron/mcp/host/ToolAdapter.js +100 -0
package/dist/electron/electron/mcp/registry/MCPRegistryManager.js +497 -0
package/dist/electron/electron/mcp/settings.js +446 -0
package/dist/electron/electron/mcp/types.js +59 -0
package/dist/electron/electron/memory/MemoryService.js +435 -0
package/dist/electron/electron/notifications/index.js +17 -0
package/dist/electron/electron/notifications/service.js +118 -0
package/dist/electron/electron/notifications/store.js +144 -0
package/dist/electron/electron/preload.js +842 -0
package/dist/electron/electron/reports/StandupReportService.js +272 -0
package/dist/electron/electron/security/concurrency.js +293 -0
package/dist/electron/electron/security/index.js +15 -0
package/dist/electron/electron/security/policy-manager.js +435 -0
package/dist/electron/electron/settings/appearance-manager.js +193 -0
package/dist/electron/electron/settings/personality-manager.js +724 -0
package/dist/electron/electron/settings/x-manager.js +58 -0
package/dist/electron/electron/tailscale/exposure.js +188 -0
package/dist/electron/electron/tailscale/index.js +28 -0
package/dist/electron/electron/tailscale/settings.js +205 -0
package/dist/electron/electron/tailscale/tailscale.js +355 -0
package/dist/electron/electron/tray/QuickInputWindow.js +568 -0
package/dist/electron/electron/tray/TrayManager.js +895 -0
package/dist/electron/electron/tray/index.js +9 -0
package/dist/electron/electron/updater/index.js +6 -0
package/dist/electron/electron/updater/update-manager.js +418 -0
package/dist/electron/electron/utils/env-migration.js +209 -0
package/dist/electron/electron/utils/process.js +102 -0
package/dist/electron/electron/utils/rate-limiter.js +104 -0
package/dist/electron/electron/utils/validation.js +419 -0
package/dist/electron/electron/utils/x-cli.js +177 -0
package/dist/electron/electron/voice/VoiceService.js +507 -0
package/dist/electron/electron/voice/index.js +14 -0
package/dist/electron/electron/voice/voice-settings-manager.js +359 -0
package/dist/electron/shared/channelMessages.js +170 -0
package/dist/electron/shared/types.js +1185 -0
package/package.json +159 -0
package/resources/skills/1password.json +10 -0
package/resources/skills/add-documentation.json +31 -0
package/resources/skills/analyze-csv.json +17 -0
package/resources/skills/apple-notes.json +10 -0
package/resources/skills/apple-reminders.json +10 -0
package/resources/skills/auto-commenter.json +10 -0
package/resources/skills/bear-notes.json +10 -0
package/resources/skills/bird.json +35 -0
package/resources/skills/blogwatcher.json +10 -0
package/resources/skills/blucli.json +10 -0
package/resources/skills/bluebubbles.json +10 -0
package/resources/skills/camsnap.json +10 -0
package/resources/skills/clean-imports.json +18 -0
package/resources/skills/code-review.json +18 -0
package/resources/skills/coding-agent.json +10 -0
package/resources/skills/compare-files.json +23 -0
package/resources/skills/convert-code.json +34 -0
package/resources/skills/create-changelog.json +24 -0
package/resources/skills/debug-error.json +17 -0
package/resources/skills/dependency-check.json +10 -0
package/resources/skills/discord.json +10 -0
package/resources/skills/eightctl.json +10 -0
package/resources/skills/explain-code.json +29 -0
package/resources/skills/extract-todos.json +18 -0
package/resources/skills/food-order.json +10 -0
package/resources/skills/gemini.json +10 -0
package/resources/skills/generate-readme.json +10 -0
package/resources/skills/gifgrep.json +10 -0
package/resources/skills/git-commit.json +10 -0
package/resources/skills/github.json +10 -0
package/resources/skills/gog.json +10 -0
package/resources/skills/goplaces.json +10 -0
package/resources/skills/himalaya.json +10 -0
package/resources/skills/imsg.json +10 -0
package/resources/skills/karpathy-guidelines.json +12 -0
package/resources/skills/last30days.json +26 -0
package/resources/skills/local-places.json +10 -0
package/resources/skills/mcporter.json +10 -0
package/resources/skills/model-usage.json +10 -0
package/resources/skills/nano-banana-pro.json +10 -0
package/resources/skills/nano-pdf.json +10 -0
package/resources/skills/notion.json +10 -0
package/resources/skills/obsidian.json +10 -0
package/resources/skills/openai-image-gen.json +10 -0
package/resources/skills/openai-whisper-api.json +10 -0
package/resources/skills/openai-whisper.json +10 -0
package/resources/skills/openhue.json +10 -0
package/resources/skills/oracle.json +10 -0
package/resources/skills/ordercli.json +10 -0
package/resources/skills/peekaboo.json +10 -0
package/resources/skills/project-structure.json +10 -0
package/resources/skills/proofread.json +17 -0
package/resources/skills/refactor-code.json +31 -0
package/resources/skills/rename-symbol.json +23 -0
package/resources/skills/sag.json +10 -0
package/resources/skills/security-audit.json +18 -0
package/resources/skills/session-logs.json +10 -0
package/resources/skills/sherpa-onnx-tts.json +10 -0
package/resources/skills/skill-creator.json +15 -0
package/resources/skills/skill-hub.json +29 -0
package/resources/skills/slack.json +10 -0
package/resources/skills/songsee.json +10 -0
package/resources/skills/sonoscli.json +10 -0
package/resources/skills/spotify-player.json +10 -0
package/resources/skills/startup-cfo.json +55 -0
package/resources/skills/summarize-folder.json +18 -0
package/resources/skills/summarize.json +10 -0
package/resources/skills/things-mac.json +10 -0
package/resources/skills/tmux.json +10 -0
package/resources/skills/translate.json +36 -0
package/resources/skills/trello.json +10 -0
package/resources/skills/video-frames.json +10 -0
package/resources/skills/voice-call.json +10 -0
package/resources/skills/wacli.json +10 -0
package/resources/skills/weather.json +10 -0
package/resources/skills/write-tests.json +31 -0
package/src/electron/activity/ActivityRepository.ts +238 -0
package/src/electron/agent/browser/browser-service.ts +721 -0
package/src/electron/agent/context-manager.ts +257 -0
package/src/electron/agent/custom-skill-loader.ts +634 -0
package/src/electron/agent/daemon.ts +1097 -0
package/src/electron/agent/executor.ts +4017 -0
package/src/electron/agent/llm/anthropic-provider.ts +175 -0
package/src/electron/agent/llm/bedrock-provider.ts +236 -0
package/src/electron/agent/llm/gemini-provider.ts +422 -0
package/src/electron/agent/llm/index.ts +9 -0
package/src/electron/agent/llm/ollama-provider.ts +347 -0
package/src/electron/agent/llm/openai-oauth.ts +127 -0
package/src/electron/agent/llm/openai-provider.ts +686 -0
package/src/electron/agent/llm/openrouter-provider.ts +273 -0
package/src/electron/agent/llm/pricing.ts +180 -0
package/src/electron/agent/llm/provider-factory.ts +971 -0
package/src/electron/agent/llm/types.ts +291 -0
package/src/electron/agent/queue-manager.ts +408 -0
package/src/electron/agent/sandbox/docker-sandbox.ts +453 -0
package/src/electron/agent/sandbox/macos-sandbox.ts +426 -0
package/src/electron/agent/sandbox/runner.ts +453 -0
package/src/electron/agent/sandbox/sandbox-factory.ts +337 -0
package/src/electron/agent/sandbox/security-utils.ts +251 -0
package/src/electron/agent/search/brave-provider.ts +141 -0
package/src/electron/agent/search/google-provider.ts +131 -0
package/src/electron/agent/search/index.ts +6 -0
package/src/electron/agent/search/provider-factory.ts +450 -0
package/src/electron/agent/search/serpapi-provider.ts +138 -0
package/src/electron/agent/search/tavily-provider.ts +108 -0
package/src/electron/agent/search/types.ts +118 -0
package/src/electron/agent/security/index.ts +20 -0
package/src/electron/agent/security/input-sanitizer.ts +380 -0
package/src/electron/agent/security/output-filter.ts +259 -0
package/src/electron/agent/skill-eligibility.ts +334 -0
package/src/electron/agent/skill-registry.ts +457 -0
package/src/electron/agent/skills/document.ts +1070 -0
package/src/electron/agent/skills/image-generator.ts +272 -0
package/src/electron/agent/skills/organizer.ts +131 -0
package/src/electron/agent/skills/presentation.ts +418 -0
package/src/electron/agent/skills/spreadsheet.ts +166 -0
package/src/electron/agent/tools/browser-tools.ts +546 -0
package/src/electron/agent/tools/builtin-settings.ts +422 -0
package/src/electron/agent/tools/canvas-tools.ts +572 -0
package/src/electron/agent/tools/cron-tools.ts +723 -0
package/src/electron/agent/tools/edit-tools.ts +196 -0
package/src/electron/agent/tools/file-tools.ts +811 -0
package/src/electron/agent/tools/glob-tools.ts +303 -0
package/src/electron/agent/tools/grep-tools.ts +432 -0
package/src/electron/agent/tools/image-tools.ts +126 -0
package/src/electron/agent/tools/mention-tools.ts +371 -0
package/src/electron/agent/tools/node-tools.ts +550 -0
package/src/electron/agent/tools/registry.ts +3052 -0
package/src/electron/agent/tools/search-tools.ts +111 -0
package/src/electron/agent/tools/shell-tools.ts +651 -0
package/src/electron/agent/tools/skill-tools.ts +340 -0
package/src/electron/agent/tools/system-tools.ts +665 -0
package/src/electron/agent/tools/web-fetch-tools.ts +528 -0
package/src/electron/agent/tools/x-tools.ts +267 -0
package/src/electron/agents/AgentRoleRepository.ts +557 -0
package/src/electron/agents/HeartbeatService.ts +469 -0
package/src/electron/agents/MentionRepository.ts +242 -0
package/src/electron/agents/TaskSubscriptionRepository.ts +231 -0
package/src/electron/agents/WorkingStateRepository.ts +278 -0
package/src/electron/canvas/canvas-manager.ts +818 -0
package/src/electron/canvas/canvas-preload.ts +102 -0
package/src/electron/canvas/canvas-protocol.ts +174 -0
package/src/electron/canvas/canvas-store.ts +200 -0
package/src/electron/canvas/index.ts +8 -0
package/src/electron/control-plane/client.ts +527 -0
package/src/electron/control-plane/handlers.ts +723 -0
package/src/electron/control-plane/index.ts +51 -0
package/src/electron/control-plane/node-manager.ts +322 -0
package/src/electron/control-plane/protocol.ts +269 -0
package/src/electron/control-plane/remote-client.ts +517 -0
package/src/electron/control-plane/server.ts +853 -0
package/src/electron/control-plane/settings.ts +401 -0
package/src/electron/control-plane/ssh-tunnel.ts +624 -0
package/src/electron/cron/index.ts +9 -0
package/src/electron/cron/schedule.ts +217 -0
package/src/electron/cron/service.ts +743 -0
package/src/electron/cron/store.ts +165 -0
package/src/electron/cron/types.ts +291 -0
package/src/electron/cron/webhook.ts +303 -0
package/src/electron/database/SecureSettingsRepository.ts +514 -0
package/src/electron/database/TaskLabelRepository.ts +148 -0
package/src/electron/database/repositories.ts +2397 -0
package/src/electron/database/schema.ts +1017 -0
package/src/electron/extensions/index.ts +18 -0
package/src/electron/extensions/loader.ts +336 -0
package/src/electron/extensions/registry.ts +546 -0
package/src/electron/extensions/types.ts +372 -0
package/src/electron/gateway/channel-registry.ts +1267 -0
package/src/electron/gateway/channels/bluebubbles-client.ts +641 -0
package/src/electron/gateway/channels/bluebubbles.ts +509 -0
package/src/electron/gateway/channels/discord.ts +1150 -0
package/src/electron/gateway/channels/email-client.ts +708 -0
package/src/electron/gateway/channels/email.ts +516 -0
package/src/electron/gateway/channels/google-chat.ts +760 -0
package/src/electron/gateway/channels/imessage-client.ts +473 -0
package/src/electron/gateway/channels/imessage.ts +520 -0
package/src/electron/gateway/channels/index.ts +21 -0
package/src/electron/gateway/channels/line-client.ts +598 -0
package/src/electron/gateway/channels/line.ts +559 -0
package/src/electron/gateway/channels/matrix-client.ts +632 -0
package/src/electron/gateway/channels/matrix.ts +655 -0
package/src/electron/gateway/channels/mattermost-client.ts +526 -0
package/src/electron/gateway/channels/mattermost.ts +550 -0
package/src/electron/gateway/channels/signal-client.ts +722 -0
package/src/electron/gateway/channels/signal.ts +666 -0
package/src/electron/gateway/channels/slack.ts +458 -0
package/src/electron/gateway/channels/teams.ts +681 -0
package/src/electron/gateway/channels/telegram.ts +1727 -0
package/src/electron/gateway/channels/twitch-client.ts +665 -0
package/src/electron/gateway/channels/twitch.ts +468 -0
package/src/electron/gateway/channels/types.ts +1002 -0
package/src/electron/gateway/channels/whatsapp.ts +1101 -0
package/src/electron/gateway/context-policy.ts +382 -0
package/src/electron/gateway/index.ts +1274 -0
package/src/electron/gateway/infrastructure.ts +645 -0
package/src/electron/gateway/router.ts +3206 -0
package/src/electron/gateway/security.ts +422 -0
package/src/electron/gateway/session.ts +144 -0
package/src/electron/gateway/tunnel.ts +626 -0
package/src/electron/guardrails/guardrail-manager.ts +380 -0
package/src/electron/hooks/gmail-watcher.ts +355 -0
package/src/electron/hooks/index.ts +30 -0
package/src/electron/hooks/mappings.ts +404 -0
package/src/electron/hooks/server.ts +574 -0
package/src/electron/hooks/settings.ts +466 -0
package/src/electron/hooks/types.ts +245 -0
package/src/electron/ipc/canvas-handlers.ts +223 -0
package/src/electron/ipc/handlers.ts +3661 -0
package/src/electron/ipc/mission-control-handlers.ts +182 -0
package/src/electron/main.ts +496 -0
package/src/electron/mcp/client/MCPClientManager.ts +406 -0
package/src/electron/mcp/client/MCPServerConnection.ts +514 -0
package/src/electron/mcp/client/transports/SSETransport.ts +360 -0
package/src/electron/mcp/client/transports/StdioTransport.ts +355 -0
package/src/electron/mcp/client/transports/WebSocketTransport.ts +384 -0
package/src/electron/mcp/host/MCPHostServer.ts +388 -0
package/src/electron/mcp/host/ToolAdapter.ts +140 -0
package/src/electron/mcp/registry/MCPRegistryManager.ts +565 -0
package/src/electron/mcp/settings.ts +468 -0
package/src/electron/mcp/types.ts +371 -0
package/src/electron/memory/MemoryService.ts +523 -0
package/src/electron/notifications/index.ts +16 -0
package/src/electron/notifications/service.ts +161 -0
package/src/electron/notifications/store.ts +163 -0
package/src/electron/preload.ts +2845 -0
package/src/electron/reports/StandupReportService.ts +356 -0
package/src/electron/security/concurrency.ts +333 -0
package/src/electron/security/index.ts +17 -0
package/src/electron/security/policy-manager.ts +539 -0
package/src/electron/settings/appearance-manager.ts +182 -0
package/src/electron/settings/personality-manager.ts +800 -0
package/src/electron/settings/x-manager.ts +62 -0
package/src/electron/tailscale/exposure.ts +262 -0
package/src/electron/tailscale/index.ts +34 -0
package/src/electron/tailscale/settings.ts +218 -0
package/src/electron/tailscale/tailscale.ts +379 -0
package/src/electron/tray/QuickInputWindow.ts +609 -0
package/src/electron/tray/TrayManager.ts +1005 -0
package/src/electron/tray/index.ts +6 -0
package/src/electron/updater/index.ts +1 -0
package/src/electron/updater/update-manager.ts +447 -0
package/src/electron/utils/env-migration.ts +203 -0
package/src/electron/utils/process.ts +124 -0
package/src/electron/utils/rate-limiter.ts +130 -0
package/src/electron/utils/validation.ts +493 -0
package/src/electron/utils/x-cli.ts +198 -0
package/src/electron/voice/VoiceService.ts +583 -0
package/src/electron/voice/index.ts +9 -0
package/src/electron/voice/voice-settings-manager.ts +403 -0
package/src/renderer/App.tsx +775 -0
package/src/renderer/components/ActivityFeed.tsx +407 -0
package/src/renderer/components/ActivityFeedItem.tsx +285 -0
package/src/renderer/components/AgentRoleCard.tsx +343 -0
package/src/renderer/components/AgentRoleEditor.tsx +805 -0
package/src/renderer/components/AgentSquadSettings.tsx +295 -0
package/src/renderer/components/AgentWorkingStatePanel.tsx +411 -0
package/src/renderer/components/AppearanceSettings.tsx +122 -0
package/src/renderer/components/ApprovalDialog.tsx +100 -0
package/src/renderer/components/BlueBubblesSettings.tsx +505 -0
package/src/renderer/components/BuiltinToolsSettings.tsx +307 -0
package/src/renderer/components/CanvasPreview.tsx +1189 -0
package/src/renderer/components/CommandOutput.tsx +202 -0
package/src/renderer/components/ContextPolicySettings.tsx +523 -0
package/src/renderer/components/ControlPlaneSettings.tsx +1134 -0
package/src/renderer/components/DisclaimerModal.tsx +124 -0
package/src/renderer/components/DiscordSettings.tsx +436 -0
package/src/renderer/components/EmailSettings.tsx +606 -0
package/src/renderer/components/ExtensionsSettings.tsx +542 -0
package/src/renderer/components/FileViewer.tsx +224 -0
package/src/renderer/components/GoogleChatSettings.tsx +535 -0
package/src/renderer/components/GuardrailSettings.tsx +487 -0
package/src/renderer/components/HooksSettings.tsx +581 -0
package/src/renderer/components/ImessageSettings.tsx +484 -0
package/src/renderer/components/LineSettings.tsx +483 -0
package/src/renderer/components/MCPRegistryBrowser.tsx +386 -0
package/src/renderer/components/MCPSettings.tsx +943 -0
package/src/renderer/components/MainContent.tsx +2433 -0
package/src/renderer/components/MatrixSettings.tsx +510 -0
package/src/renderer/components/MattermostSettings.tsx +473 -0
package/src/renderer/components/MemorySettings.tsx +247 -0
package/src/renderer/components/MentionBadge.tsx +87 -0
package/src/renderer/components/MentionInput.tsx +409 -0
package/src/renderer/components/MentionList.tsx +476 -0
package/src/renderer/components/MissionControlPanel.tsx +1995 -0
package/src/renderer/components/NodesSettings.tsx +316 -0
package/src/renderer/components/NotificationPanel.tsx +481 -0
package/src/renderer/components/Onboarding/AwakeningOrb.tsx +44 -0
package/src/renderer/components/Onboarding/Onboarding.tsx +443 -0
package/src/renderer/components/Onboarding/TypewriterText.tsx +102 -0
package/src/renderer/components/Onboarding/index.ts +3 -0
package/src/renderer/components/OnboardingModal.tsx +698 -0
package/src/renderer/components/PairingCodeDisplay.tsx +324 -0
package/src/renderer/components/PersonalitySettings.tsx +597 -0
package/src/renderer/components/QueueSettings.tsx +119 -0
package/src/renderer/components/QuickTaskFAB.tsx +71 -0
package/src/renderer/components/RightPanel.tsx +413 -0
package/src/renderer/components/ScheduledTasksSettings.tsx +1328 -0
package/src/renderer/components/SearchSettings.tsx +328 -0
package/src/renderer/components/Settings.tsx +1504 -0
package/src/renderer/components/Sidebar.tsx +344 -0
package/src/renderer/components/SignalSettings.tsx +673 -0
package/src/renderer/components/SkillHubBrowser.tsx +458 -0
package/src/renderer/components/SkillParameterModal.tsx +185 -0
package/src/renderer/components/SkillsSettings.tsx +451 -0
package/src/renderer/components/SlackSettings.tsx +442 -0
package/src/renderer/components/StandupReportViewer.tsx +614 -0
package/src/renderer/components/TaskBoard.tsx +498 -0
package/src/renderer/components/TaskBoardCard.tsx +357 -0
package/src/renderer/components/TaskBoardColumn.tsx +211 -0
package/src/renderer/components/TaskLabelManager.tsx +472 -0
package/src/renderer/components/TaskQueuePanel.tsx +144 -0
package/src/renderer/components/TaskQuickActions.tsx +492 -0
package/src/renderer/components/TaskTimeline.tsx +216 -0
package/src/renderer/components/TaskView.tsx +162 -0
package/src/renderer/components/TeamsSettings.tsx +518 -0
package/src/renderer/components/TelegramSettings.tsx +421 -0
package/src/renderer/components/Toast.tsx +76 -0
package/src/renderer/components/TraySettings.tsx +189 -0
package/src/renderer/components/TwitchSettings.tsx +511 -0
package/src/renderer/components/UpdateSettings.tsx +295 -0
package/src/renderer/components/VoiceIndicator.tsx +270 -0
package/src/renderer/components/VoiceSettings.tsx +867 -0
package/src/renderer/components/WhatsAppSettings.tsx +721 -0
package/src/renderer/components/WorkingStateEditor.tsx +309 -0
package/src/renderer/components/WorkingStateHistory.tsx +481 -0
package/src/renderer/components/WorkspaceSelector.tsx +150 -0
package/src/renderer/components/XSettings.tsx +311 -0
package/src/renderer/global.d.ts +9 -0
package/src/renderer/hooks/useAgentContext.ts +153 -0
package/src/renderer/hooks/useOnboardingFlow.ts +548 -0
package/src/renderer/hooks/useVoiceInput.ts +268 -0
package/src/renderer/index.html +12 -0
package/src/renderer/main.tsx +10 -0
package/src/renderer/public/cowork-os-logo.png +0 -0
package/src/renderer/quick-input.html +164 -0
package/src/renderer/styles/index.css +14504 -0
package/src/renderer/utils/agentMessages.ts +749 -0
package/src/renderer/utils/voice-directives.ts +169 -0
package/src/shared/channelMessages.ts +213 -0
package/src/shared/types.ts +3608 -0
package/tsconfig.electron.json +26 -0
package/tsconfig.json +26 -0
package/tsconfig.node.json +10 -0
package/vite.config.ts +23 -0

package/src/electron/agent/tools/shell-tools.ts ADDED Viewed

@@ -0,0 +1,651 @@
+import { spawn, ChildProcess, execSync } from 'child_process';
+import { Workspace, CommandTerminationReason } from '../../../shared/types';
+import { AgentDaemon } from '../daemon';
+import { GuardrailManager } from '../../guardrails/guardrail-manager';
+// Limits to prevent runaway commands
+const MAX_TIMEOUT = 5 * 60 * 1000; // 5 minutes max
+const DEFAULT_TIMEOUT = 60 * 1000; // 1 minute default
+const MAX_OUTPUT_SIZE = 100 * 1024; // 100KB max output
+/**
+ * Validate that a PID is a safe positive integer
+ * Prevents command injection if PID is somehow not a number
+ */
+function isValidPid(pid: unknown): pid is number {
+  return typeof pid === 'number' &&
+    Number.isInteger(pid) &&
+    pid > 0 &&
+    pid <= 4194304; // Max PID on Linux (can be configured higher, but this is safe default)
+}
+/**
+ * Check if a process with the given PID exists and is owned by the current user
+ * Returns false if the process doesn't exist or is owned by another user
+ */
+function isProcessOwnedByCurrentUser(pid: number): boolean {
+  if (!isValidPid(pid)) return false;
+  try {
+    // Use kill with signal 0 to check if process exists and we have permission to signal it
+    // This will throw EPERM if process exists but is owned by another user
+    // This will throw ESRCH if process doesn't exist
+    process.kill(pid, 0);
+    return true;
+  } catch (error: any) {
+    // ESRCH = no such process (that's fine, process exited)
+    // EPERM = permission denied (process exists but owned by another user - DON'T KILL)
+    if (error.code === 'EPERM') {
+      console.warn(`[ShellTools] Process ${pid} exists but is owned by another user, skipping`);
+      return false;
+    }
+    // Process doesn't exist, that's fine
+    return false;
+  }
+}
+/**
+ * Validate username for safe use in shell commands
+ * Prevents command injection via USER environment variable
+ */
+function isValidUsername(username: string | undefined): username is string {
+  if (!username) return false;
+  // Username must be alphanumeric, underscore, or dash (standard POSIX username chars)
+  // Max length 32 chars (common limit)
+  return /^[a-zA-Z0-9_-]{1,32}$/.test(username);
+}
+/**
+ * Get all descendant process IDs for a given parent PID
+ * Uses pgrep to find child processes recursively
+ * Only returns processes owned by the current user for security
+ */
+function getDescendantPids(parentPid: number): number[] {
+  if (!isValidPid(parentPid)) {
+    console.error(`[ShellTools] Invalid parent PID: ${parentPid}`);
+    return [];
+  }
+  const currentUser = process.env.USER;
+  // Validate username to prevent command injection
+  const safeUser = isValidUsername(currentUser) ? currentUser : undefined;
+  if (currentUser && !safeUser) {
+    console.warn(`[ShellTools] Invalid USER env var: ${currentUser}, skipping user filter`);
+  }
+  const descendants: number[] = [];
+  const toProcess: number[] = [parentPid];
+  const seen = new Set<number>(); // Prevent infinite loops from circular references
+  while (toProcess.length > 0) {
+    const pid = toProcess.pop()!;
+    if (seen.has(pid)) continue;
+    seen.add(pid);
+    try {
+      // pgrep -P finds direct children of the given PID
+      // Add -U $USER to only find processes owned by current user (security)
+      const pgrepCmd = safeUser
+        ? `pgrep -P ${pid} -U ${safeUser}`
+        : `pgrep -P ${pid}`;
+      const output = execSync(pgrepCmd, {
+        encoding: 'utf-8',
+        timeout: 1000,
+        // Don't inherit env to avoid any injection via environment
+        env: { PATH: '/usr/bin:/bin' },
+      });
+      const childPids = output.trim().split('\n')
+        .filter(line => line.length > 0)
+        .map(line => parseInt(line, 10))
+        .filter(childPid => isValidPid(childPid) && !seen.has(childPid));
+      descendants.push(...childPids);
+      toProcess.push(...childPids);
+    } catch {
+      // pgrep returns non-zero if no children found, which is fine
+    }
+  }
+  return descendants;
+}
+/**
+ * Kill a process and all its descendants
+ * Sends the signal to children first, then to the parent (bottom-up killing)
+ * Only kills processes owned by the current user for security
+ */
+function killProcessTree(pid: number, signal: NodeJS.Signals): void {
+  if (!isValidPid(pid)) {
+    console.error(`[ShellTools] Refusing to kill invalid PID: ${pid}`);
+    return;
+  }
+  const descendants = getDescendantPids(pid);
+  // Kill descendants first (in reverse order, deepest children first)
+  for (const descendantPid of descendants.reverse()) {
+    // Double-check ownership before killing each process
+    if (isProcessOwnedByCurrentUser(descendantPid)) {
+      try {
+        process.kill(descendantPid, signal);
+      } catch {
+        // Process may have already exited
+      }
+    }
+  }
+  // Kill the parent process (also verify ownership)
+  if (isProcessOwnedByCurrentUser(pid)) {
+    try {
+      process.kill(pid, signal);
+    } catch {
+      // Process may have already exited
+    }
+  }
+}
+/**
+ * ShellTools implements shell command execution with user approval
+ */
+export class ShellTools {
+  private readonly recentApprovals = new Map<string, { approvedAt: number; count: number }>();
+  private readonly approvalWindowMs = 2 * 60 * 1000;
+  // Track the currently running child process for stdin support
+  private activeProcess: ChildProcess | null = null;
+  // Track escalation timeouts so we can cancel them when process exits
+  private escalationTimeouts: ReturnType<typeof setTimeout>[] = [];
+  // Prevent multiple concurrent kill attempts
+  private killInProgress = false;
+  // Unique identifier for the current process session (prevents PID reuse issues)
+  private processSessionId = 0;
+  // Track user-initiated kills to signal termination reason to agent
+  private userKillRequested = false;
+  constructor(
+    private workspace: Workspace,
+    private daemon: AgentDaemon,
+    private taskId: string
+  ) {}
+  /**
+   * Update the workspace for this tool
+   */
+  setWorkspace(workspace: Workspace): void {
+    this.workspace = workspace;
+  }
+  /**
+   * Clear all pending escalation timeouts
+   * Called when process exits to prevent killing reused PIDs
+   */
+  private clearEscalationTimeouts(): void {
+    for (const timeout of this.escalationTimeouts) {
+      clearTimeout(timeout);
+    }
+    this.escalationTimeouts = [];
+    this.killInProgress = false;
+  }
+  /**
+   * Send input to the currently running command's stdin
+   */
+  sendStdin(input: string): boolean {
+    if (!this.activeProcess || !this.activeProcess.stdin || this.activeProcess.killed) {
+      return false;
+    }
+    try {
+      this.activeProcess.stdin.write(input);
+      // Echo the input to show it was sent
+      this.daemon.logEvent(this.taskId, 'command_output', {
+        type: 'stdin',
+        output: input,
+      });
+      return true;
+    } catch (error) {
+      console.error('Failed to write to stdin:', error);
+      return false;
+    }
+  }
+  /**
+   * Check if a command is currently running
+   */
+  hasActiveProcess(): boolean {
+    return this.activeProcess !== null && !this.activeProcess.killed;
+  }
+  /**
+   * Kill the currently running command and all its child processes
+   * @param force - If true, send SIGKILL immediately. Otherwise, try SIGINT first, then SIGTERM, then SIGKILL.
+   */
+  killProcess(force: boolean = false): boolean {
+    if (!this.activeProcess || this.activeProcess.killed) {
+      return false;
+    }
+    const pid = this.activeProcess.pid;
+    if (!isValidPid(pid)) {
+      console.error(`[ShellTools] Invalid PID for kill: ${pid}`);
+      return false;
+    }
+    // Prevent multiple concurrent kill chains (security: avoid race conditions)
+    if (this.killInProgress && !force) {
+      console.log(`[ShellTools] Kill already in progress, ignoring duplicate request`);
+      return true; // Return true since a kill is already underway
+    }
+    // Capture session ID to verify we're killing the right process in escalation timeouts
+    const currentSessionId = this.processSessionId;
+    // Mark this as a user-initiated kill so the close handler can signal the agent
+    this.userKillRequested = true;
+    if (force) {
+      // Force kill - immediate SIGKILL to entire process tree
+      // Clear any pending escalation timeouts first
+      this.clearEscalationTimeouts();
+      try {
+        killProcessTree(pid, 'SIGKILL');
+        this.daemon.logEvent(this.taskId, 'command_output', {
+          type: 'error',
+          output: '\n[Process tree force killed by user]\n',
+        });
+        return true;
+      } catch (error) {
+        console.error('Failed to force kill process tree:', error);
+        return false;
+      }
+    }
+    // Mark kill as in progress to prevent duplicate escalation chains
+    this.killInProgress = true;
+    try {
+      // Send SIGINT (Ctrl+C) to gracefully interrupt the process tree
+      killProcessTree(pid, 'SIGINT');
+      this.daemon.logEvent(this.taskId, 'command_output', {
+        type: 'error',
+        output: '\n^C [Process tree interrupted by user]\n',
+      });
+      // Set up escalation: if still running after 2s, send SIGTERM to tree
+      // If still running after 4s, send SIGKILL to tree
+      // These timeouts are tracked so they can be cancelled if process exits
+      const childProcess = this.activeProcess;
+      const sigtermTimeout = setTimeout(() => {
+        // Verify this is still the same process session (prevents PID reuse attacks)
+        if (currentSessionId !== this.processSessionId) {
+          console.log(`[ShellTools] Session ID mismatch, skipping SIGTERM escalation`);
+          return;
+        }
+        if (childProcess && !childProcess.killed && childProcess.pid === pid) {
+          // Additional safety: verify we own this process before killing
+          if (!isProcessOwnedByCurrentUser(pid)) {
+            console.warn(`[ShellTools] Process ${pid} no longer owned by current user, skipping SIGTERM`);
+            return;
+          }
+          try {
+            killProcessTree(pid, 'SIGTERM');
+            this.daemon.logEvent(this.taskId, 'command_output', {
+              type: 'error',
+              output: '[Escalating to SIGTERM for process tree...]\n',
+            });
+          } catch { /* Process may have exited */ }
+        }
+      }, 2000);
+      this.escalationTimeouts.push(sigtermTimeout);
+      const sigkillTimeout = setTimeout(() => {
+        // Verify this is still the same process session (prevents PID reuse attacks)
+        if (currentSessionId !== this.processSessionId) {
+          console.log(`[ShellTools] Session ID mismatch, skipping SIGKILL escalation`);
+          return;
+        }
+        if (childProcess && !childProcess.killed && childProcess.pid === pid) {
+          // Additional safety: verify we own this process before killing
+          if (!isProcessOwnedByCurrentUser(pid)) {
+            console.warn(`[ShellTools] Process ${pid} no longer owned by current user, skipping SIGKILL`);
+            return;
+          }
+          try {
+            killProcessTree(pid, 'SIGKILL');
+            this.daemon.logEvent(this.taskId, 'command_output', {
+              type: 'error',
+              output: '[Escalating to SIGKILL for process tree...]\n',
+            });
+          } catch { /* Process may have exited */ }
+        }
+      }, 4000);
+      this.escalationTimeouts.push(sigkillTimeout);
+      return true;
+    } catch (error) {
+      console.error('Failed to kill process tree:', error);
+      this.killInProgress = false;
+      // Try SIGTERM as fallback
+      try {
+        killProcessTree(pid, 'SIGTERM');
+        return true;
+      } catch {
+        // Last resort: SIGKILL
+        try {
+          killProcessTree(pid, 'SIGKILL');
+          return true;
+        } catch {
+          return false;
+        }
+      }
+    }
+  }
+  /**
+   * Execute a shell command (requires user approval)
+   * Note: We don't check workspace.permissions.shell here because
+   * shell commands always require explicit user approval via requestApproval()
+   */
+  async runCommand(
+    command: string,
+    options?: {
+      cwd?: string;
+      timeout?: number;
+      env?: Record<string, string>;
+    }
+  ): Promise<{
+    success: boolean;
+    stdout: string;
+    stderr: string;
+    exitCode: number | null;
+    truncated?: boolean;
+    terminationReason?: CommandTerminationReason;
+  }> {
+    // Check if command is blocked by guardrails BEFORE anything else
+    const blockCheck = GuardrailManager.isCommandBlocked(command);
+    if (blockCheck.blocked) {
+      throw new Error(
+        `Command blocked by guardrails: "${command}"\n` +
+        `Matched pattern: ${blockCheck.pattern}\n` +
+        `This command has been blocked for safety. You can modify blocked patterns in Settings > Guardrails.`
+      );
+    }
+    // Check if command is trusted (auto-approve without user confirmation)
+    const trustCheck = GuardrailManager.isCommandTrusted(command);
+    let approved = false;
+    if (trustCheck.trusted) {
+      // Auto-approve trusted commands
+      approved = true;
+      this.daemon.logEvent(this.taskId, 'log', {
+        message: `Auto-approved trusted command (matched: ${trustCheck.pattern})`,
+        command,
+      });
+    } else {
+      const signature = this.getCommandSignature(command);
+      const previousApproval = signature ? this.recentApprovals.get(signature) : undefined;
+      const now = Date.now();
+      if (
+        signature &&
+        previousApproval &&
+        now - previousApproval.approvedAt <= this.approvalWindowMs &&
+        this.isAutoApprovalSafe(command)
+      ) {
+        approved = true;
+        previousApproval.count += 1;
+        previousApproval.approvedAt = now;
+        this.recentApprovals.set(signature, previousApproval);
+        this.daemon.logEvent(this.taskId, 'log', {
+          message: `Auto-approved similar command (approved ${previousApproval.count}x in last ${Math.round(this.approvalWindowMs / 1000)}s)`,
+          command,
+        });
+      } else {
+        // Request user approval before executing
+        approved = await this.daemon.requestApproval(
+          this.taskId,
+          'run_command',
+          `Run command: ${command}`,
+          {
+            command,
+            cwd: options?.cwd || this.workspace.path,
+            timeout: options?.timeout || DEFAULT_TIMEOUT,
+          }
+        );
+        if (approved && signature) {
+          this.recentApprovals.set(signature, { approvedAt: now, count: 1 });
+        }
+      }
+    }
+    if (!approved) {
+      throw new Error('User denied command execution');
+    }
+    // Log the command execution attempt
+    this.daemon.logEvent(this.taskId, 'tool_call', {
+      tool: 'run_command',
+      command,
+      cwd: options?.cwd || this.workspace.path,
+    });
+    const timeout = Math.min(options?.timeout || DEFAULT_TIMEOUT, MAX_TIMEOUT);
+    // Create a minimal, safe environment (don't leak sensitive process.env vars like API keys)
+    const safeEnv: Record<string, string> = {
+      // Essential system variables only
+      PATH: process.env.PATH || '/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin',
+      HOME: process.env.HOME || '',
+      USER: process.env.USER || '',
+      SHELL: process.env.SHELL || '/bin/bash',
+      LANG: process.env.LANG || 'en_US.UTF-8',
+      TERM: process.env.TERM || 'xterm-256color',
+      TMPDIR: process.env.TMPDIR || '/tmp',
+      // Add any user-provided env vars (explicitly passed by caller)
+      ...options?.env,
+    };
+    const cwd = options?.cwd || this.workspace.path;
+    // Emit the command being executed
+    this.daemon.logEvent(this.taskId, 'command_output', {
+      command,
+      cwd,
+      type: 'start',
+      output: `$ ${command}\n`,
+    });
+    return new Promise((resolve) => {
+      let stdout = '';
+      let stderr = '';
+      let killed = false;
+      // Increment session ID to invalidate any pending escalation timeouts from previous commands
+      this.processSessionId++;
+      // Clear any leftover escalation timeouts from previous commands
+      this.clearEscalationTimeouts();
+      // Use shell to handle complex commands with pipes, redirects, etc.
+      const shell = process.env.SHELL || '/bin/bash';
+      const child = spawn(shell, ['-c', command], {
+        cwd,
+        env: safeEnv,
+        stdio: ['pipe', 'pipe', 'pipe'],  // Enable stdin for interactive commands
+      });
+      // Store reference to active process for stdin support
+      this.activeProcess = child;
+      // Set timeout
+      const timeoutId = setTimeout(() => {
+        killed = true;
+        child.kill('SIGTERM');
+        this.daemon.logEvent(this.taskId, 'command_output', {
+          command,
+          type: 'error',
+          output: `\n[Command timed out after ${timeout / 1000}s]\n`,
+        });
+      }, timeout);
+      // Stream stdout
+      child.stdout.on('data', (data: Buffer) => {
+        const chunk = data.toString('utf-8');
+        stdout += chunk;
+        // Emit live output
+        this.daemon.logEvent(this.taskId, 'command_output', {
+          command,
+          type: 'stdout',
+          output: chunk,
+        });
+      });
+      // Stream stderr
+      child.stderr.on('data', (data: Buffer) => {
+        const chunk = data.toString('utf-8');
+        stderr += chunk;
+        // Emit live output
+        this.daemon.logEvent(this.taskId, 'command_output', {
+          command,
+          type: 'stderr',
+          output: chunk,
+        });
+      });
+      child.on('close', (code: number | null) => {
+        clearTimeout(timeoutId);
+        this.activeProcess = null;  // Clear active process reference
+        // Clear any pending escalation timeouts to prevent killing reused PIDs
+        this.clearEscalationTimeouts();
+        // Determine termination reason to signal the agent
+        let terminationReason: CommandTerminationReason = 'normal';
+        if (this.userKillRequested) {
+          terminationReason = 'user_stopped';
+        } else if (killed) {
+          terminationReason = 'timeout';
+        }
+        // Reset for next command
+        this.userKillRequested = false;
+        const success = terminationReason === 'normal' && code === 0;
+        const truncatedStdout = this.truncateOutput(stdout);
+        const truncatedStderr = this.truncateOutput(stderr);
+        const exitCodeLabel = code === null ? 'unknown' : String(code);
+        const errorMessage = terminationReason === 'timeout'
+          ? 'Command timed out'
+          : terminationReason === 'user_stopped'
+            ? 'Command stopped by user'
+            : !success
+              ? `Command exited with code ${exitCodeLabel}`
+              : undefined;
+        // Emit command completion with termination reason
+        this.daemon.logEvent(this.taskId, 'command_output', {
+          command,
+          type: 'end',
+          exitCode: code,
+          success,
+          terminationReason,
+        });
+        this.daemon.logEvent(this.taskId, 'tool_result', {
+          tool: 'run_command',
+          success,
+          exitCode: code,
+          terminationReason,
+          error: errorMessage,
+        });
+        resolve({
+          success,
+          stdout: truncatedStdout,
+          stderr: truncatedStderr,
+          exitCode: code,
+          truncated: stdout.length > MAX_OUTPUT_SIZE || stderr.length > MAX_OUTPUT_SIZE,
+          terminationReason,
+        });
+      });
+      child.on('error', (error: Error) => {
+        clearTimeout(timeoutId);
+        this.activeProcess = null;  // Clear active process reference
+        // Clear any pending escalation timeouts to prevent killing reused PIDs
+        this.clearEscalationTimeouts();
+        // Reset user kill flag
+        this.userKillRequested = false;
+        const terminationReason: CommandTerminationReason = 'error';
+        this.daemon.logEvent(this.taskId, 'command_output', {
+          command,
+          type: 'error',
+          output: `\n[Error: ${error.message}]\n`,
+          terminationReason,
+        });
+        this.daemon.logEvent(this.taskId, 'tool_result', {
+          tool: 'run_command',
+          success: false,
+          error: error.message,
+          terminationReason,
+        });
+        resolve({
+          success: false,
+          stdout: this.truncateOutput(stdout),
+          stderr: error.message,
+          exitCode: null,
+          terminationReason,
+        });
+      });
+    });
+  }
+  /**
+   * Generate a normalized signature for a command to detect similar repeats
+   */
+  private getCommandSignature(command: string): string {
+    if (!command) return '';
+    let signature = command.trim();
+    signature = signature.replace(/\s+/g, ' ');
+    signature = signature.replace(/"(?:[^"\\]|\\.)*"/g, '"<arg>"');
+    signature = signature.replace(/'(?:[^'\\]|\\.)*'/g, "'<arg>'");
+    signature = signature.replace(/(?:\/Users\/[^\s]+|~\/[^\s]+|\/[^\s]+)/g, '<path>');
+    return signature;
+  }
+  /**
+   * Safety check for auto-approving similar commands
+   */
+  private isAutoApprovalSafe(command: string): boolean {
+    return !/(^|\s)(sudo|rm|dd|mkfs|diskutil|shutdown|reboot|killall)\b/i.test(command);
+  }
+  /**
+   * Truncate output to prevent context overflow
+   */
+  private truncateOutput(output: string): string {
+    if (output.length <= MAX_OUTPUT_SIZE) {
+      return output;
+    }
+    return (
+      output.slice(0, MAX_OUTPUT_SIZE) +
+      `\n\n[... Output truncated. Showing first ${Math.round(MAX_OUTPUT_SIZE / 1024)}KB ...]`
+    );
+  }
+}
+// Export validation functions for testing
+export const _testUtils = {
+  isValidPid,
+  isValidUsername,
+  isProcessOwnedByCurrentUser,
+  getDescendantPids,
+  killProcessTree,
+};