npm - fengming - Versions diffs - 0.3.3 → 0.3.4 - Mend

fengming 0.3.3 → 0.3.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (43) hide show

package/dist/postinstall-inventory.json CHANGED Viewed

@@ -400,7 +400,7 @@
   "dist/bundled-CrjoAisB.js",
   "dist/bundled-capability-runtime-CZQb-ZAX.js",
   "dist/bundled-channel-config-schema-BrGYOHFf.js",
-  "dist/bundled-channel-config-schema-DpdKMATU.d.ts",
+  "dist/bundled-channel-config-schema-Bte--ZlY.d.ts",
   "dist/bundled-compat-CaniuKBf.js",
   "dist/bundled-dir-BAh7mvXE.js",
   "dist/bundled-dir-BVueUQUl.js",
@@ -847,30 +847,30 @@
   "dist/control-ui-links-DxnAapN0.js",
   "dist/control-ui-shared-AfP1FlbS.js",
   "dist/control-ui/apple-touch-icon.png",
-  "dist/control-ui/assets/activity-B7yRLbf3.js",
-  "dist/control-ui/assets/agents-E-3DAkaW.js",
+  "dist/control-ui/assets/activity-CCu43qU8.js",
+  "dist/control-ui/assets/agents-DCvsB0yO.js",
   "dist/control-ui/assets/channel-config-extras-GDGUjA2T.js",
-  "dist/control-ui/assets/channels-D0c7A9OX.js",
+  "dist/control-ui/assets/channels-CpM2j5xT.js",
   "dist/control-ui/assets/config-runtime-CCw2hptH.js",
-  "dist/control-ui/assets/cron-B54j2Vmo.js",
-  "dist/control-ui/assets/debug-CRcGYNA9.js",
+  "dist/control-ui/assets/cron-CLXNfwYa.js",
+  "dist/control-ui/assets/debug-BcJ34lrC.js",
   "dist/control-ui/assets/gateway-runtime-CMyVbEq5.js",
   "dist/control-ui/assets/i18n-BWPaSddY.js",
   "dist/control-ui/assets/index-CA6DU6Rq.css",
-  "dist/control-ui/assets/index-bZJJ7U8q.js",
-  "dist/control-ui/assets/instances-RcBeqNzx.js",
+  "dist/control-ui/assets/index-CuBn2YpX.js",
+  "dist/control-ui/assets/instances-Bu6NM_Hs.js",
   "dist/control-ui/assets/lit-runtime-DA0-mbwP.js",
   "dist/control-ui/assets/logs-atEFsTJJ.js",
   "dist/control-ui/assets/markdown-runtime-C9Jq8Bu5.js",
-  "dist/control-ui/assets/nodes-BoWRh42t.js",
+  "dist/control-ui/assets/nodes-Bd1WzVLK.js",
   "dist/control-ui/assets/preview-BBw3vauN.js",
   "dist/control-ui/assets/push-subscription-CY8GxC_U.js",
   "dist/control-ui/assets/rolldown-runtime-QTnfLwEv.js",
-  "dist/control-ui/assets/sessions-BmRQ932H.js",
-  "dist/control-ui/assets/skills-BDn45kHZ.js",
+  "dist/control-ui/assets/sessions-C2r8pbt7.js",
+  "dist/control-ui/assets/skills-DIjn93ee.js",
   "dist/control-ui/assets/skills-shared-lQxAuc7D.js",
   "dist/control-ui/assets/string-coerce-BuYUxt7q.js",
-  "dist/control-ui/assets/workboard-BwbcNuC5.js",
+  "dist/control-ui/assets/workboard-CHb0if1l.js",
   "dist/control-ui/favicon-32.png",
   "dist/control-ui/favicon.ico",
   "dist/control-ui/favicon.svg",
@@ -1935,11 +1935,11 @@
   "dist/includes-C7LBtYMm.js",
   "dist/includes-scan-CA6ruuex.js",
   "dist/index-4u9MHter.d.ts",
+  "dist/index-AZzJCgph.d.ts",
   "dist/index-B0VJdRJQ.d.ts",
   "dist/index-BVVgDSdq.d.ts",
   "dist/index-B_h1B9_Z.d.ts",
   "dist/index-DUn76vuX.d.ts",
-  "dist/index-DhOQs6M_.d.ts",
   "dist/index.d.ts",
   "dist/index.js",
   "dist/infra-runtime-CGD3RE_2.js",
@@ -2424,8 +2424,8 @@
   "dist/models-pctWuOlw.js",
   "dist/module-export-COvD9dVR.js",
   "dist/module-loader-BF97Ap2W.js",
+  "dist/monitor-2_c2Ttjf.js",
   "dist/monitor-7tD_FE_5.js",
-  "dist/monitor-HjEwlqJs.js",
   "dist/monitor.account-D0F9tnWD.js",
   "dist/monitor.state-DY2Uh_tH.js",
   "dist/moonshot-thinking-BuCk-RcD.d.ts",
@@ -2785,7 +2785,7 @@
   "dist/plugin-sdk/browser-config.js",
   "dist/plugin-sdk/btw-command-DSA7-cRy.d.ts",
   "dist/plugin-sdk/bundle-mcp-DABlFCpS.d.ts",
-  "dist/plugin-sdk/bundled-channel-config-schema-C3pWWvwG.d.ts",
+  "dist/plugin-sdk/bundled-channel-config-schema-UtIBjviA.d.ts",
   "dist/plugin-sdk/bundled-channel-config-schema.d.ts",
   "dist/plugin-sdk/bundled-channel-config-schema.js",
   "dist/plugin-sdk/call-CNN79zs_.d.ts",
@@ -2949,7 +2949,7 @@
   "dist/plugin-sdk/config-runtime-DvKiQ9x5.d.ts",
   "dist/plugin-sdk/config-runtime.d.ts",
   "dist/plugin-sdk/config-runtime.js",
-  "dist/plugin-sdk/config-schema-D7cABQ6o.d.ts",
+  "dist/plugin-sdk/config-schema-DUddICQM.d.ts",
   "dist/plugin-sdk/config-schema-DuJUjn6k.d.ts",
   "dist/plugin-sdk/config-schema.d.ts",
   "dist/plugin-sdk/config-schema.js",
@@ -3915,7 +3915,7 @@
   "dist/plugin-sdk/zalouser.d.ts",
   "dist/plugin-sdk/zalouser.js",
   "dist/plugin-sdk/zod-schema.agent-runtime-DWbjdB_w.d.ts",
-  "dist/plugin-sdk/zod-schema.core-CwBNqcXp.d.ts",
+  "dist/plugin-sdk/zod-schema.core-B4_b2R5K.d.ts",
   "dist/plugin-sdk/zod-schema.proxy-B1XBkex5.d.ts",
   "dist/plugin-sdk/zod.d.ts",
   "dist/plugin-sdk/zod.js",
@@ -4601,7 +4601,7 @@
   "dist/send-aTxtLkJm.js",
   "dist/send-deps-B-rmeTVl.js",
   "dist/send-deps-BaEC80iY.d.ts",
-  "dist/send-media-Bl2ryo6a.js",
+  "dist/send-media-OG5Gd31l.js",
   "dist/send-policy-cLIJehRZ.js",
   "dist/send-qwDMMnM6.js",
   "dist/send-result-BWRKr16H.js",
@@ -5395,8 +5395,8 @@
   "dist/zod-schema.agent-runtime-CggBNRtv.d.ts",
   "dist/zod-schema.agent-runtime-DBnyDRDh.js",
   "dist/zod-schema.channels-config-CxeJaJgn.js",
+  "dist/zod-schema.core-BGLctDlK.d.ts",
   "dist/zod-schema.core-CNYeC3G7.js",
-  "dist/zod-schema.core-Cuz0lz6m.d.ts",
   "dist/zod-schema.installs-DdHilcIY.js",
   "dist/zod-schema.proxy-C9xClpkh.d.ts",
   "dist/zod-schema.sensitive-C6BBiAxv.js"

package/dist/{send-media-Bl2ryo6a.js → send-media-OG5Gd31l.js} RENAMED Viewed

@@ -909,6 +909,160 @@ function assertSessionActive(accountId) {
 	}
 }
 //#endregion
+//#region extensions/weixin/src/cdn/aes-ecb.ts
+/**
+* Shared AES-128-ECB crypto utilities for CDN upload and download.
+*/
+/** Encrypt buffer with AES-128-ECB (PKCS7 padding is default). */
+function encryptAesEcb(plaintext, key) {
+	const cipher = createCipheriv("aes-128-ecb", key, null);
+	return Buffer.concat([cipher.update(plaintext), cipher.final()]);
+}
+/** Decrypt buffer with AES-128-ECB (PKCS7 padding). */
+function decryptAesEcb(ciphertext, key) {
+	const decipher = createDecipheriv("aes-128-ecb", key, null);
+	return Buffer.concat([decipher.update(ciphertext), decipher.final()]);
+}
+/** Compute AES-128-ECB ciphertext size (PKCS7 padding to 16-byte boundary). */
+function aesEcbPaddedSize(plaintextSize) {
+	return Math.ceil((plaintextSize + 1) / 16) * 16;
+}
+//#endregion
+//#region extensions/weixin/src/cdn/cdn-url.ts
+/** Build a CDN download URL from encrypt_query_param. */
+function buildCdnDownloadUrl(encryptedQueryParam, cdnBaseUrl) {
+	return `${cdnBaseUrl}/download?encrypted_query_param=${encodeURIComponent(encryptedQueryParam)}`;
+}
+/** Build a CDN upload URL from upload_param and filekey. */
+function buildCdnUploadUrl(params) {
+	return `${params.cdnBaseUrl}/upload?encrypted_query_param=${encodeURIComponent(params.uploadParam)}&filekey=${encodeURIComponent(params.filekey)}`;
+}
+//#endregion
+//#region extensions/weixin/src/cdn/cdn-upload.ts
+/** Maximum retry attempts for CDN upload. */
+const UPLOAD_MAX_RETRIES = 3;
+/**
+* Upload one buffer to the Weixin CDN with AES-128-ECB encryption.
+* Returns the download encrypted_query_param from the CDN response.
+* Retries up to UPLOAD_MAX_RETRIES times on server errors; client errors (4xx) abort immediately.
+*/
+async function uploadBufferToCdn(params) {
+	const { buf, uploadFullUrl, uploadParam, filekey, cdnBaseUrl, label, aeskey } = params;
+	const ciphertext = encryptAesEcb(buf, aeskey);
+	const trimmedFull = uploadFullUrl?.trim();
+	let cdnUrl;
+	if (trimmedFull) cdnUrl = trimmedFull;
+	else if (uploadParam) cdnUrl = buildCdnUploadUrl({
+		cdnBaseUrl,
+		uploadParam,
+		filekey
+	});
+	else throw new Error(`${label}: CDN upload URL missing (need upload_full_url or upload_param)`);
+	logger.debug(`${label}: CDN POST url=${redactUrl(cdnUrl)} ciphertextSize=${ciphertext.length}`);
+	let downloadParam;
+	let lastError;
+	for (let attempt = 1; attempt <= UPLOAD_MAX_RETRIES; attempt++) try {
+		const res = await fetch(cdnUrl, {
+			method: "POST",
+			headers: { "Content-Type": "application/octet-stream" },
+			body: new Uint8Array(ciphertext)
+		});
+		if (res.status >= 400 && res.status < 500) {
+			const errMsg = res.headers.get("x-error-message") ?? await res.text();
+			logger.error(`${label}: CDN client error attempt=${attempt} status=${res.status} errMsg=${errMsg}`);
+			throw new Error(`CDN upload client error ${res.status}: ${errMsg}`);
+		}
+		if (res.status !== 200) {
+			const errMsg = res.headers.get("x-error-message") ?? `status ${res.status}`;
+			logger.error(`${label}: CDN server error attempt=${attempt} status=${res.status} errMsg=${errMsg}`);
+			throw new Error(`CDN upload server error: ${errMsg}`);
+		}
+		downloadParam = res.headers.get("x-encrypted-param") ?? void 0;
+		if (!downloadParam) {
+			logger.error(`${label}: CDN response missing x-encrypted-param header attempt=${attempt}`);
+			throw new Error("CDN upload response missing x-encrypted-param header");
+		}
+		logger.debug(`${label}: CDN upload success attempt=${attempt}`);
+		break;
+	} catch (err) {
+		lastError = err;
+		if (err instanceof Error && err.message.includes("client error")) throw err;
+		if (attempt < UPLOAD_MAX_RETRIES) logger.error(`${label}: attempt ${attempt} failed, retrying... err=${String(err)}`);
+		else logger.error(`${label}: all ${UPLOAD_MAX_RETRIES} attempts failed err=${String(err)}`);
+	}
+	if (!downloadParam) throw lastError instanceof Error ? lastError : /* @__PURE__ */ new Error(`CDN upload failed after ${UPLOAD_MAX_RETRIES} attempts`);
+	return { downloadParam };
+}
+//#endregion
+//#region extensions/weixin/src/media/mime.ts
+const EXTENSION_TO_MIME = {
+	".pdf": "application/pdf",
+	".doc": "application/msword",
+	".docx": "application/vnd.openxmlformats-officedocument.wordprocessingml.document",
+	".xls": "application/vnd.ms-excel",
+	".xlsx": "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet",
+	".ppt": "application/vnd.ms-powerpoint",
+	".pptx": "application/vnd.openxmlformats-officedocument.presentationml.presentation",
+	".txt": "text/plain",
+	".csv": "text/csv",
+	".zip": "application/zip",
+	".tar": "application/x-tar",
+	".gz": "application/gzip",
+	".mp3": "audio/mpeg",
+	".ogg": "audio/ogg",
+	".wav": "audio/wav",
+	".mp4": "video/mp4",
+	".mov": "video/quicktime",
+	".webm": "video/webm",
+	".mkv": "video/x-matroska",
+	".avi": "video/x-msvideo",
+	".png": "image/png",
+	".jpg": "image/jpeg",
+	".jpeg": "image/jpeg",
+	".gif": "image/gif",
+	".webp": "image/webp",
+	".bmp": "image/bmp"
+};
+const MIME_TO_EXTENSION = {
+	"image/jpeg": ".jpg",
+	"image/jpg": ".jpg",
+	"image/png": ".png",
+	"image/gif": ".gif",
+	"image/webp": ".webp",
+	"image/bmp": ".bmp",
+	"video/mp4": ".mp4",
+	"video/quicktime": ".mov",
+	"video/webm": ".webm",
+	"video/x-matroska": ".mkv",
+	"video/x-msvideo": ".avi",
+	"audio/mpeg": ".mp3",
+	"audio/ogg": ".ogg",
+	"audio/wav": ".wav",
+	"application/pdf": ".pdf",
+	"application/zip": ".zip",
+	"application/x-tar": ".tar",
+	"application/gzip": ".gz",
+	"text/plain": ".txt",
+	"text/csv": ".csv"
+};
+/** Get MIME type from filename extension. Returns "application/octet-stream" for unknown extensions. */
+function getMimeFromFilename(filename) {
+	return EXTENSION_TO_MIME[path.extname(filename).toLowerCase()] ?? "application/octet-stream";
+}
+/** Get file extension from MIME type. Returns ".bin" for unknown types. */
+function getExtensionFromMime(mimeType) {
+	return MIME_TO_EXTENSION[mimeType.split(";")[0].trim().toLowerCase()] ?? ".bin";
+}
+/** Get file extension from Content-Type header or URL path. Returns ".bin" for unknown. */
+function getExtensionFromContentTypeOrUrl(contentType, url) {
+	if (contentType) {
+		const ext = getExtensionFromMime(contentType);
+		if (ext !== ".bin") return ext;
+	}
+	const ext = path.extname(new URL(url).pathname).toLowerCase();
+	return new Set(Object.keys(EXTENSION_TO_MIME)).has(ext) ? ext : ".bin";
+}
+//#endregion
 //#region extensions/weixin/src/util/random.ts
 /**
 * Generate a prefixed unique ID using timestamp + crypto random bytes.
@@ -959,6 +1113,103 @@ const TypingStatus = {
 	CANCEL: 2
 };
 //#endregion
+//#region extensions/weixin/src/cdn/upload.ts
+/**
+* Download a remote media URL (image, video, file) to a local temp file in destDir.
+* Returns the local file path; extension is inferred from Content-Type / URL.
+*/
+async function downloadRemoteImageToTemp(url, destDir) {
+	logger.debug(`downloadRemoteImageToTemp: fetching url=${url}`);
+	const res = await fetch(url);
+	if (!res.ok) {
+		const msg = `remote media download failed: ${res.status} ${res.statusText} url=${url}`;
+		logger.error(`downloadRemoteImageToTemp: ${msg}`);
+		throw new Error(msg);
+	}
+	const buf = Buffer.from(await res.arrayBuffer());
+	logger.debug(`downloadRemoteImageToTemp: downloaded ${buf.length} bytes`);
+	await fs$1.mkdir(destDir, { recursive: true });
+	const ext = getExtensionFromContentTypeOrUrl(res.headers.get("content-type"), url);
+	const name = tempFileName("weixin-remote", ext);
+	const filePath = path.join(destDir, name);
+	await fs$1.writeFile(filePath, buf);
+	logger.debug(`downloadRemoteImageToTemp: saved to ${filePath} ext=${ext}`);
+	return filePath;
+}
+/**
+* Common upload pipeline: read file → hash → gen aeskey → getUploadUrl → uploadBufferToCdn → return info.
+*/
+async function uploadMediaToCdn(params) {
+	const { filePath, toUserId, opts, cdnBaseUrl, mediaType, label } = params;
+	const plaintext = await fs$1.readFile(filePath);
+	const rawsize = plaintext.length;
+	const rawfilemd5 = crypto.createHash("md5").update(plaintext).digest("hex");
+	const filesize = aesEcbPaddedSize(rawsize);
+	const filekey = crypto.randomBytes(16).toString("hex");
+	const aeskey = crypto.randomBytes(16);
+	logger.debug(`${label}: file=${filePath} rawsize=${rawsize} filesize=${filesize} md5=${rawfilemd5} filekey=${filekey}`);
+	const uploadUrlResp = await getUploadUrl({
+		...opts,
+		filekey,
+		media_type: mediaType,
+		to_user_id: toUserId,
+		rawsize,
+		rawfilemd5,
+		filesize,
+		no_need_thumb: true,
+		aeskey: aeskey.toString("hex")
+	});
+	const uploadFullUrl = uploadUrlResp.upload_full_url?.trim();
+	const uploadParam = uploadUrlResp.upload_param;
+	if (!uploadFullUrl && !uploadParam) {
+		logger.error(`${label}: getUploadUrl returned no upload URL (need upload_full_url or upload_param), resp=${JSON.stringify(uploadUrlResp)}`);
+		throw new Error(`${label}: getUploadUrl returned no upload URL`);
+	}
+	const { downloadParam: downloadEncryptedQueryParam } = await uploadBufferToCdn({
+		buf: plaintext,
+		uploadFullUrl: uploadFullUrl || void 0,
+		uploadParam: uploadParam ?? void 0,
+		filekey,
+		cdnBaseUrl,
+		aeskey,
+		label: `${label}[orig filekey=${filekey}]`
+	});
+	return {
+		filekey,
+		downloadEncryptedQueryParam,
+		aeskey: aeskey.toString("hex"),
+		fileSize: rawsize,
+		fileSizeCiphertext: filesize
+	};
+}
+/** Upload a local image file to the Weixin CDN with AES-128-ECB encryption. */
+async function uploadFileToWeixin(params) {
+	return uploadMediaToCdn({
+		...params,
+		mediaType: UploadMediaType.IMAGE,
+		label: "uploadFileToWeixin"
+	});
+}
+/** Upload a local video file to the Weixin CDN. */
+async function uploadVideoToWeixin(params) {
+	return uploadMediaToCdn({
+		...params,
+		mediaType: UploadMediaType.VIDEO,
+		label: "uploadVideoToWeixin"
+	});
+}
+/**
+* Upload a local file attachment (non-image, non-video) to the Weixin CDN.
+* Uses media_type=FILE; no thumbnail required.
+*/
+async function uploadFileAttachmentToWeixin(params) {
+	return uploadMediaToCdn({
+		...params,
+		mediaType: UploadMediaType.FILE,
+		label: "uploadFileAttachmentToWeixin"
+	});
+}
+//#endregion
 //#region extensions/weixin/src/messaging/inbound.ts
 /**
 * contextToken is issued per-message by the Weixin getupdates API and must
@@ -1174,75 +1425,6 @@ function emitWeixinMessageSent(params) {
 	fireAndForgetHook(Promise.resolve(hookRunner.runMessageSent(toPluginMessageSentEvent(canonical), toPluginMessageContext(canonical))), "weixin: message_sent plugin hook failed");
 }
 //#endregion
-//#region extensions/weixin/src/media/mime.ts
-const EXTENSION_TO_MIME = {
-	".pdf": "application/pdf",
-	".doc": "application/msword",
-	".docx": "application/vnd.openxmlformats-officedocument.wordprocessingml.document",
-	".xls": "application/vnd.ms-excel",
-	".xlsx": "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet",
-	".ppt": "application/vnd.ms-powerpoint",
-	".pptx": "application/vnd.openxmlformats-officedocument.presentationml.presentation",
-	".txt": "text/plain",
-	".csv": "text/csv",
-	".zip": "application/zip",
-	".tar": "application/x-tar",
-	".gz": "application/gzip",
-	".mp3": "audio/mpeg",
-	".ogg": "audio/ogg",
-	".wav": "audio/wav",
-	".mp4": "video/mp4",
-	".mov": "video/quicktime",
-	".webm": "video/webm",
-	".mkv": "video/x-matroska",
-	".avi": "video/x-msvideo",
-	".png": "image/png",
-	".jpg": "image/jpeg",
-	".jpeg": "image/jpeg",
-	".gif": "image/gif",
-	".webp": "image/webp",
-	".bmp": "image/bmp"
-};
-const MIME_TO_EXTENSION = {
-	"image/jpeg": ".jpg",
-	"image/jpg": ".jpg",
-	"image/png": ".png",
-	"image/gif": ".gif",
-	"image/webp": ".webp",
-	"image/bmp": ".bmp",
-	"video/mp4": ".mp4",
-	"video/quicktime": ".mov",
-	"video/webm": ".webm",
-	"video/x-matroska": ".mkv",
-	"video/x-msvideo": ".avi",
-	"audio/mpeg": ".mp3",
-	"audio/ogg": ".ogg",
-	"audio/wav": ".wav",
-	"application/pdf": ".pdf",
-	"application/zip": ".zip",
-	"application/x-tar": ".tar",
-	"application/gzip": ".gz",
-	"text/plain": ".txt",
-	"text/csv": ".csv"
-};
-/** Get MIME type from filename extension. Returns "application/octet-stream" for unknown extensions. */
-function getMimeFromFilename(filename) {
-	return EXTENSION_TO_MIME[path.extname(filename).toLowerCase()] ?? "application/octet-stream";
-}
-/** Get file extension from MIME type. Returns ".bin" for unknown types. */
-function getExtensionFromMime(mimeType) {
-	return MIME_TO_EXTENSION[mimeType.split(";")[0].trim().toLowerCase()] ?? ".bin";
-}
-/** Get file extension from Content-Type header or URL path. Returns ".bin" for unknown. */
-function getExtensionFromContentTypeOrUrl(contentType, url) {
-	if (contentType) {
-		const ext = getExtensionFromMime(contentType);
-		if (ext !== ".bin") return ext;
-	}
-	const ext = path.extname(new URL(url).pathname).toLowerCase();
-	return new Set(Object.keys(EXTENSION_TO_MIME)).has(ext) ? ext : ".bin";
-}
-//#endregion
 //#region extensions/weixin/src/messaging/markdown-filter.ts
 /**
 * Streaming markdown filter — character-level state machine that strips
@@ -1819,188 +2001,6 @@ async function sendFileMessageWeixin(params) {
 	});
 }
 //#endregion
-//#region extensions/weixin/src/cdn/aes-ecb.ts
-/**
-* Shared AES-128-ECB crypto utilities for CDN upload and download.
-*/
-/** Encrypt buffer with AES-128-ECB (PKCS7 padding is default). */
-function encryptAesEcb(plaintext, key) {
-	const cipher = createCipheriv("aes-128-ecb", key, null);
-	return Buffer.concat([cipher.update(plaintext), cipher.final()]);
-}
-/** Decrypt buffer with AES-128-ECB (PKCS7 padding). */
-function decryptAesEcb(ciphertext, key) {
-	const decipher = createDecipheriv("aes-128-ecb", key, null);
-	return Buffer.concat([decipher.update(ciphertext), decipher.final()]);
-}
-/** Compute AES-128-ECB ciphertext size (PKCS7 padding to 16-byte boundary). */
-function aesEcbPaddedSize(plaintextSize) {
-	return Math.ceil((plaintextSize + 1) / 16) * 16;
-}
-//#endregion
-//#region extensions/weixin/src/cdn/cdn-url.ts
-/** Build a CDN download URL from encrypt_query_param. */
-function buildCdnDownloadUrl(encryptedQueryParam, cdnBaseUrl) {
-	return `${cdnBaseUrl}/download?encrypted_query_param=${encodeURIComponent(encryptedQueryParam)}`;
-}
-/** Build a CDN upload URL from upload_param and filekey. */
-function buildCdnUploadUrl(params) {
-	return `${params.cdnBaseUrl}/upload?encrypted_query_param=${encodeURIComponent(params.uploadParam)}&filekey=${encodeURIComponent(params.filekey)}`;
-}
-//#endregion
-//#region extensions/weixin/src/cdn/cdn-upload.ts
-/** Maximum retry attempts for CDN upload. */
-const UPLOAD_MAX_RETRIES = 3;
-/**
-* Upload one buffer to the Weixin CDN with AES-128-ECB encryption.
-* Returns the download encrypted_query_param from the CDN response.
-* Retries up to UPLOAD_MAX_RETRIES times on server errors; client errors (4xx) abort immediately.
-*/
-async function uploadBufferToCdn(params) {
-	const { buf, uploadFullUrl, uploadParam, filekey, cdnBaseUrl, label, aeskey } = params;
-	const ciphertext = encryptAesEcb(buf, aeskey);
-	const trimmedFull = uploadFullUrl?.trim();
-	let cdnUrl;
-	if (trimmedFull) cdnUrl = trimmedFull;
-	else if (uploadParam) cdnUrl = buildCdnUploadUrl({
-		cdnBaseUrl,
-		uploadParam,
-		filekey
-	});
-	else throw new Error(`${label}: CDN upload URL missing (need upload_full_url or upload_param)`);
-	logger.debug(`${label}: CDN POST url=${redactUrl(cdnUrl)} ciphertextSize=${ciphertext.length}`);
-	let downloadParam;
-	let lastError;
-	for (let attempt = 1; attempt <= UPLOAD_MAX_RETRIES; attempt++) try {
-		const res = await fetch(cdnUrl, {
-			method: "POST",
-			headers: { "Content-Type": "application/octet-stream" },
-			body: new Uint8Array(ciphertext)
-		});
-		if (res.status >= 400 && res.status < 500) {
-			const errMsg = res.headers.get("x-error-message") ?? await res.text();
-			logger.error(`${label}: CDN client error attempt=${attempt} status=${res.status} errMsg=${errMsg}`);
-			throw new Error(`CDN upload client error ${res.status}: ${errMsg}`);
-		}
-		if (res.status !== 200) {
-			const errMsg = res.headers.get("x-error-message") ?? `status ${res.status}`;
-			logger.error(`${label}: CDN server error attempt=${attempt} status=${res.status} errMsg=${errMsg}`);
-			throw new Error(`CDN upload server error: ${errMsg}`);
-		}
-		downloadParam = res.headers.get("x-encrypted-param") ?? void 0;
-		if (!downloadParam) {
-			logger.error(`${label}: CDN response missing x-encrypted-param header attempt=${attempt}`);
-			throw new Error("CDN upload response missing x-encrypted-param header");
-		}
-		logger.debug(`${label}: CDN upload success attempt=${attempt}`);
-		break;
-	} catch (err) {
-		lastError = err;
-		if (err instanceof Error && err.message.includes("client error")) throw err;
-		if (attempt < UPLOAD_MAX_RETRIES) logger.error(`${label}: attempt ${attempt} failed, retrying... err=${String(err)}`);
-		else logger.error(`${label}: all ${UPLOAD_MAX_RETRIES} attempts failed err=${String(err)}`);
-	}
-	if (!downloadParam) throw lastError instanceof Error ? lastError : /* @__PURE__ */ new Error(`CDN upload failed after ${UPLOAD_MAX_RETRIES} attempts`);
-	return { downloadParam };
-}
-//#endregion
-//#region extensions/weixin/src/cdn/upload.ts
-/**
-* Download a remote media URL (image, video, file) to a local temp file in destDir.
-* Returns the local file path; extension is inferred from Content-Type / URL.
-*/
-async function downloadRemoteImageToTemp(url, destDir) {
-	logger.debug(`downloadRemoteImageToTemp: fetching url=${url}`);
-	const res = await fetch(url);
-	if (!res.ok) {
-		const msg = `remote media download failed: ${res.status} ${res.statusText} url=${url}`;
-		logger.error(`downloadRemoteImageToTemp: ${msg}`);
-		throw new Error(msg);
-	}
-	const buf = Buffer.from(await res.arrayBuffer());
-	logger.debug(`downloadRemoteImageToTemp: downloaded ${buf.length} bytes`);
-	await fs$1.mkdir(destDir, { recursive: true });
-	const ext = getExtensionFromContentTypeOrUrl(res.headers.get("content-type"), url);
-	const name = tempFileName("weixin-remote", ext);
-	const filePath = path.join(destDir, name);
-	await fs$1.writeFile(filePath, buf);
-	logger.debug(`downloadRemoteImageToTemp: saved to ${filePath} ext=${ext}`);
-	return filePath;
-}
-/**
-* Common upload pipeline: read file → hash → gen aeskey → getUploadUrl → uploadBufferToCdn → return info.
-*/
-async function uploadMediaToCdn(params) {
-	const { filePath, toUserId, opts, cdnBaseUrl, mediaType, label } = params;
-	const plaintext = await fs$1.readFile(filePath);
-	const rawsize = plaintext.length;
-	const rawfilemd5 = crypto.createHash("md5").update(plaintext).digest("hex");
-	const filesize = aesEcbPaddedSize(rawsize);
-	const filekey = crypto.randomBytes(16).toString("hex");
-	const aeskey = crypto.randomBytes(16);
-	logger.debug(`${label}: file=${filePath} rawsize=${rawsize} filesize=${filesize} md5=${rawfilemd5} filekey=${filekey}`);
-	const uploadUrlResp = await getUploadUrl({
-		...opts,
-		filekey,
-		media_type: mediaType,
-		to_user_id: toUserId,
-		rawsize,
-		rawfilemd5,
-		filesize,
-		no_need_thumb: true,
-		aeskey: aeskey.toString("hex")
-	});
-	const uploadFullUrl = uploadUrlResp.upload_full_url?.trim();
-	const uploadParam = uploadUrlResp.upload_param;
-	if (!uploadFullUrl && !uploadParam) {
-		logger.error(`${label}: getUploadUrl returned no upload URL (need upload_full_url or upload_param), resp=${JSON.stringify(uploadUrlResp)}`);
-		throw new Error(`${label}: getUploadUrl returned no upload URL`);
-	}
-	const { downloadParam: downloadEncryptedQueryParam } = await uploadBufferToCdn({
-		buf: plaintext,
-		uploadFullUrl: uploadFullUrl || void 0,
-		uploadParam: uploadParam ?? void 0,
-		filekey,
-		cdnBaseUrl,
-		aeskey,
-		label: `${label}[orig filekey=${filekey}]`
-	});
-	return {
-		filekey,
-		downloadEncryptedQueryParam,
-		aeskey: aeskey.toString("hex"),
-		fileSize: rawsize,
-		fileSizeCiphertext: filesize
-	};
-}
-/** Upload a local image file to the Weixin CDN with AES-128-ECB encryption. */
-async function uploadFileToWeixin(params) {
-	return uploadMediaToCdn({
-		...params,
-		mediaType: UploadMediaType.IMAGE,
-		label: "uploadFileToWeixin"
-	});
-}
-/** Upload a local video file to the Weixin CDN. */
-async function uploadVideoToWeixin(params) {
-	return uploadMediaToCdn({
-		...params,
-		mediaType: UploadMediaType.VIDEO,
-		label: "uploadVideoToWeixin"
-	});
-}
-/**
-* Upload a local file attachment (non-image, non-video) to the Weixin CDN.
-* Uses media_type=FILE; no thumbnail required.
-*/
-async function uploadFileAttachmentToWeixin(params) {
-	return uploadMediaToCdn({
-		...params,
-		mediaType: UploadMediaType.FILE,
-		label: "uploadFileAttachmentToWeixin"
-	});
-}
-//#endregion
 //#region extensions/weixin/src/messaging/send-media.ts
 /**
 * Upload a local file and send it as a weixin message, routing by MIME type:
@@ -2069,4 +2069,4 @@ async function sendWeixinMediaFile(params) {
 	});
 }
 //#endregion
-export { sendTyping as A, registerWeixinAccountId as B, pauseSession as C, getUpdates as D, getConfig as E, clearStaleAccountsForUserId as F, logger as G, saveWeixinAccount as H, deriveRawAccountId as I, resolveStateDir as K, listIndexedWeixinAccountIds as L, redactToken as M, CDN_BASE_URL as N, notifyStart as O, DEFAULT_BASE_URL as P, listWeixinAccountIds as R, getRemainingPauseMs as S, apiPostFetch as T, triggerWeixinChannelReload as U, resolveWeixinAccount as V, readFrameworkAllowFromList as W, setContextToken as _, sendMessageItemWeixin as a, TypingStatus as b, getMimeFromFilename as c, clearContextTokensForAccount as d, findAccountIdsByContextToken as f, restoreContextTokens as g, isMediaItem as h, decryptAesEcb as i, redactBody as j, notifyStop as k, applyWeixinMessageSendingHook as l, getContextTokenFromMsgContext as m, downloadRemoteImageToTemp as n, sendMessageWeixin as o, getContextToken as p, buildCdnDownloadUrl as r, StreamingMarkdownFilter as s, sendWeixinMediaFile as t, emitWeixinMessageSent as u, weixinMessageToMsgContext as v, apiGetFetch as w, assertSessionActive as x, MessageItemType as y, loadWeixinAccount as z };
+export { sendTyping as A, registerWeixinAccountId as B, pauseSession as C, getUpdates as D, getConfig as E, clearStaleAccountsForUserId as F, logger as G, saveWeixinAccount as H, deriveRawAccountId as I, resolveStateDir as K, listIndexedWeixinAccountIds as L, redactToken as M, CDN_BASE_URL as N, notifyStart as O, DEFAULT_BASE_URL as P, listWeixinAccountIds as R, getRemainingPauseMs as S, apiPostFetch as T, triggerWeixinChannelReload as U, resolveWeixinAccount as V, readFrameworkAllowFromList as W, TypingStatus as _, applyWeixinMessageSendingHook as a, decryptAesEcb as b, findAccountIdsByContextToken as c, isMediaItem as d, restoreContextTokens as f, MessageItemType as g, downloadRemoteImageToTemp as h, StreamingMarkdownFilter as i, redactBody as j, notifyStop as k, getContextToken as l, weixinMessageToMsgContext as m, sendMessageItemWeixin as n, emitWeixinMessageSent as o, setContextToken as p, sendMessageWeixin as r, clearContextTokensForAccount as s, sendWeixinMediaFile as t, getContextTokenFromMsgContext as u, getMimeFromFilename as v, apiGetFetch as w, assertSessionActive as x, buildCdnDownloadUrl as y, loadWeixinAccount as z };

package/dist/{zod-schema.core-Cuz0lz6m.d.ts → zod-schema.core-BGLctDlK.d.ts} RENAMED Viewed

@@ -53,8 +53,8 @@ declare const ReplyRuntimeConfigSchemaShape: {
 declare const MarkdownConfigSchema: ZodOptional<ZodObject<{
   tables: ZodOptional<ZodEnum<{
     code: "code";
-    off: "off";
     block: "block";
+    off: "off";
     bullets: "bullets";
   }>>;
 }, $strict>>;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "fengming",
-  "version": "0.3.3",
+  "version": "0.3.4",
   "description": "Multi-channel AI gateway with extensible messaging integrations",
   "keywords": [],
   "homepage": "https://github.com/fengming/fengming#readme",