hovclaw 0.1.0 → 0.1.2

package/dist/{login-Ca1_XRup.js → login-BwvBMKdz.js}

@@ -1,5 +1,5 @@
-import { I as saveCredentials, M as loadCredentials } from "./hovclaw.js";
-import { n as runOAuthLogin, t as SUPPORTED_OAUTH_PROVIDERS } from "./oauth-6sxOTr3f.js";
+import { H as saveCredentials, R as loadCredentials } from "./hovclaw.js";
+import { n as runOAuthLogin, t as SUPPORTED_OAUTH_PROVIDERS } from "./oauth-CQsXP0kP.js";
 import path from "node:path";
 import { fileURLToPath } from "node:url";
 import { cancel, intro, isCancel, note, outro, select } from "@clack/prompts";

package/dist/{onboard-Cgbgh2Jn.js → onboard-DL6VDf50.js}

@@ -1,20 +1,29 @@
-import { D as getDefaultFileConfig, E as getCredentialsPath, F as saveConfigFile, I as saveCredentials, M as loadCredentials, O as getHovclawHome, S as config, T as getConfigPath, j as loadConfig, k as hasConfigFile, l as ensureWorkspaceBootstrapForConfig, p as listAvailableSkills } from "./hovclaw.js";
-import { n as runOAuthLogin } from "./oauth-6sxOTr3f.js";
+import { F as hasConfigFile, H as saveCredentials, L as loadConfig, M as getCredentialsPath, N as getDefaultFileConfig, O as config, P as getHovclawHome, R as loadCredentials, V as saveConfigFile, j as getConfigPath, m as ensureWorkspaceBootstrapForConfig, y as listAvailableSkills } from "./hovclaw.js";
+import { n as runOAuthLogin } from "./oauth-CQsXP0kP.js";
 import path from "node:path";
 import { fileURLToPath } from "node:url";
 import { cancel, confirm, intro, isCancel, log, multiselect, note, outro, password, select, text } from "@clack/prompts";
+import { randomBytes } from "node:crypto";
 import fs from "node:fs/promises";
 
 //#region src/cli/onboard/agent-skills.ts
 const DEFAULT_ONBOARD_MAIN_SKILLS = ["web-search"];
-async function readAgentJson(agentFilePath) {
-	const raw = await fs.readFile(agentFilePath, "utf8");
+async function readAgentJson(agentFilePath, options = {}) {
+	let raw;
+	try {
+		raw = await fs.readFile(agentFilePath, "utf8");
+	} catch (error) {
+		const code = error.code;
+		if (options.allowMissing && code === "ENOENT") return null;
+		throw error;
+	}
 	const parsed = JSON.parse(raw);
 	if (!parsed || typeof parsed !== "object" || Array.isArray(parsed)) throw new Error("main agent config must be a JSON object.");
 	return parsed;
 }
 async function loadMainAgentSkills(agentsDir) {
-	const parsed = await readAgentJson(path.join(agentsDir, "main", "agent.json"));
+	const parsed = await readAgentJson(path.join(agentsDir, "main", "agent.json"), { allowMissing: true });
+	if (!parsed) return [];
 	return Array.isArray(parsed.skills) ? parsed.skills.filter((value) => typeof value === "string") : [];
 }
 function resolveInitialMainAgentSkills(params) {
@@ -29,8 +38,8 @@ async function updateMainAgentSkills(agentsDir, selectedSkills, availableSkills)
 	const unknown = selectedSkills.filter((skill) => !validSkillSet.has(skill));
 	if (unknown.length > 0) throw new Error(`Unknown skills selected: ${unknown.join(", ")}`);
 	const agentPath = path.join(agentsDir, "main", "agent.json");
-	const parsed = await readAgentJson(agentPath);
-	const previousSkills = Array.isArray(parsed.skills) ? parsed.skills.filter((value) => typeof value === "string") : [];
+	const existingAgent = await readAgentJson(agentPath, { allowMissing: true }) ?? {};
+	const previousSkills = Array.isArray(existingAgent.skills) ? existingAgent.skills.filter((value) => typeof value === "string") : [];
 	const nextSkills = Array.from(new Set(selectedSkills));
 	if (!(previousSkills.length !== nextSkills.length || previousSkills.some((skill, index) => skill !== nextSkills[index]))) return {
 		changed: false,
@@ -39,9 +48,10 @@ async function updateMainAgentSkills(agentsDir, selectedSkills, availableSkills)
 		path: agentPath
 	};
 	const updated = {
-		...parsed,
+		...existingAgent,
 		skills: nextSkills
 	};
+	await fs.mkdir(path.dirname(agentPath), { recursive: true });
 	await fs.writeFile(agentPath, `${JSON.stringify(updated, null, 2)}\n`, "utf8");
 	return {
 		changed: true,
@@ -154,6 +164,7 @@ function applySectionEdits(base, draft, selectedSections, resetSections, default
 		agents: choose("assistant", base.agents, draft.agents, defaults.agents),
 		bindings: choose("channels", base.bindings, draft.bindings, defaults.bindings),
 		models: choose("models", base.models, draft.models, defaults.models),
+		commands: choose("runtime", base.commands, draft.commands, defaults.commands),
 		runtime: choose("runtime", base.runtime, draft.runtime, defaults.runtime),
 		channels: choose("channels", base.channels, draft.channels, defaults.channels),
 		gateway: choose("runtime", base.gateway, draft.gateway, defaults.gateway),
@@ -694,6 +705,18 @@ function asFileConfig(appConfig) {
 			aliases: appConfig.models.aliases,
 			allowlist: appConfig.models.allowlist
 		},
+		commands: {
+			native: appConfig.commands.native,
+			nativeSkills: appConfig.commands.nativeSkills,
+			defaultThinkingLevel: appConfig.commands.defaultThinkingLevel,
+			text: appConfig.commands.text,
+			config: appConfig.commands.config,
+			debug: appConfig.commands.debug,
+			bash: appConfig.commands.bash,
+			restart: appConfig.commands.restart,
+			useAccessGroups: appConfig.commands.useAccessGroups,
+			allowFrom: appConfig.commands.allowFrom
+		},
 		runtime: {
 			mode: appConfig.runtime.mode,
 			containerImage: appConfig.runtime.containerImage,
@@ -703,7 +726,8 @@ function asFileConfig(appConfig) {
 			maxOutputBytes: appConfig.runtime.maxOutputBytes,
 			allowedReadRoots: [...appConfig.runtime.allowedReadRoots],
 			allowedWriteRoots: [...appConfig.runtime.allowedWriteRoots],
-			allowedCommandPrefixes: [...appConfig.runtime.allowedCommandPrefixes]
+			allowedCommandPrefixes: [...appConfig.runtime.allowedCommandPrefixes],
+			tools: { bashEnabled: appConfig.runtime.tools.bashEnabled }
 		},
 		channels: {
 			discord: {
@@ -737,7 +761,9 @@ function asFileConfig(appConfig) {
 			},
 			auth: {
 				token: appConfig.gateway.auth.token,
-				password: appConfig.gateway.auth.password
+				password: appConfig.gateway.auth.password,
+				allowUnauthenticated: appConfig.gateway.auth.allowUnauthenticated,
+				allowedOrigins: [...appConfig.gateway.auth.allowedOrigins]
 			},
 			remote: {
 				url: appConfig.gateway.remote.url,
@@ -1162,9 +1188,9 @@ async function main() {
 			}
 			if (stepId === "main-skills") {
 				stats.sectionsVisited.add("skills");
-				if (availableSkills.length === 0) log.warn("No installed skills found in skills/*/SKILL.md; keeping existing main agent skills.");
+				if (availableSkills.length === 0) log.warn(`No installed skills found in ${path.join(config.skillsDir, "*/SKILL.md")}; keeping existing main agent skills.`);
 				else {
-					selectedSkills = await askMultiSelect("Select skills for agents/main/agent.json", availableSkills.map((skill) => ({
+					selectedSkills = await askMultiSelect(`Select skills for ${path.join(config.agentsDir, "main", "agent.json")}`, availableSkills.map((skill) => ({
 						value: skill,
 						label: skill
 					})), initialSelectedSkills, false);
@@ -1192,7 +1218,7 @@ async function main() {
 					const webhookPortRaw = await askText("Telegram webhook local port", String(runtimeState.config.channels.telegram.webhook.port), "8788");
 					const parsedWebhookPort = Number.parseInt(webhookPortRaw, 10);
 					runtimeState.config.channels.telegram.webhook.port = Number.isFinite(parsedWebhookPort) && parsedWebhookPort > 0 ? parsedWebhookPort : runtimeState.config.channels.telegram.webhook.port;
-					runtimeState.config.channels.telegram.webhook.secret = await askOptional("Telegram webhook secret (optional but recommended)", runtimeState.config.channels.telegram.webhook.secret);
+					runtimeState.config.channels.telegram.webhook.secret = await askText("Telegram webhook secret", runtimeState.config.channels.telegram.webhook.secret, "required when webhook mode is enabled");
 				}
 				continue;
 			}
@@ -1235,6 +1261,10 @@ async function main() {
 			await configureCredentials(runtimeState, stats, false);
 		}
 		const finalConfig = hasExisting ? applySectionEdits(baseConfig, runtimeState.config, selectedSections, resetSections, defaults) : runtimeState.config;
+		if (finalConfig.gateway.enabled && !finalConfig.gateway.auth.allowUnauthenticated && !finalConfig.gateway.auth.token.trim() && !finalConfig.gateway.auth.password.trim()) {
+			finalConfig.gateway.auth.token = randomBytes(24).toString("base64url");
+			log.info("Generated a gateway auth token because strict gateway auth is enabled.");
+		}
 		const beforeProviders = providerNamesFromCredentials(baseCredentials);
 		const afterProviders = providerNamesFromCredentials(runtimeState.credentials);
 		note(summaryLines(baseConfig, finalConfig, beforeProviders, afterProviders, baseSkills, runtimeState.selectedSkills).join("\n"), "Review before write");

package/dist/reset-BJUhrojJ.js

@@ -0,0 +1,165 @@
+import { L as loadConfig, M as getCredentialsPath, P as getHovclawHome, j as getConfigPath, n as stopDaemon } from "./hovclaw.js";
+import fs from "node:fs";
+import path from "node:path";
+import { cancel, confirm, isCancel, log, select } from "@clack/prompts";
+import os from "node:os";
+
+//#region src/cli/reset.ts
+const defaultResetDeps = { stopService: async (env) => stopDaemon(env) };
+function parseResetScope(raw) {
+	if (!raw) return null;
+	if (raw === "config" || raw === "config+creds+sessions" || raw === "full") return raw;
+	return null;
+}
+function collectWorkspaceDirs(loadedConfig) {
+	const dirs = /* @__PURE__ */ new Set();
+	const fallback = loadedConfig.agents.defaults.workspace;
+	dirs.add(fallback);
+	for (const agent of loadedConfig.agents.list) dirs.add(agent.workspace?.trim() || fallback);
+	return Array.from(dirs);
+}
+function addDbArtifacts(paths, baseDir) {
+	paths.add(path.join(baseDir, "hovclaw.db"));
+	paths.add(path.join(baseDir, "hovclaw.db-shm"));
+	paths.add(path.join(baseDir, "hovclaw.db-wal"));
+}
+function removeIfNested(paths, target) {
+	const resolvedTarget = path.resolve(target);
+	for (const existing of paths) {
+		const resolvedExisting = path.resolve(existing);
+		if (resolvedTarget === resolvedExisting || resolvedTarget.startsWith(`${resolvedExisting}${path.sep}`)) return;
+	}
+	paths.add(resolvedTarget);
+}
+function assertSafeRemovalPath(targetPath) {
+	const resolved = path.resolve(targetPath);
+	if (resolved === path.parse(resolved).root) throw new Error(`Refusing to reset root path: ${resolved}`);
+	if (resolved === path.resolve(os.homedir())) throw new Error(`Refusing to reset user home path: ${resolved}`);
+}
+function collectResetPaths(scope, env = process.env) {
+	const paths = /* @__PURE__ */ new Set();
+	const hovclawHome = getHovclawHome(env);
+	const configPath = getConfigPath(env);
+	const credentialsPath = getCredentialsPath(env);
+	let loadedConfig = null;
+	try {
+		loadedConfig = loadConfig(env);
+	} catch {
+		loadedConfig = null;
+	}
+	if (scope === "config") paths.add(path.resolve(configPath));
+	if (scope === "config+creds+sessions") {
+		paths.add(path.resolve(configPath));
+		paths.add(path.resolve(credentialsPath));
+		addDbArtifacts(paths, hovclawHome);
+		const storeDir = path.resolve(loadedConfig?.storeDir ?? path.join(hovclawHome, "store"));
+		addDbArtifacts(paths, storeDir);
+		paths.add(path.resolve(path.join(storeDir, "telegram-pairing.json")));
+	}
+	if (scope === "full") {
+		removeIfNested(paths, hovclawHome);
+		if (loadedConfig) {
+			removeIfNested(paths, loadedConfig.storeDir);
+			removeIfNested(paths, loadedConfig.dataDir);
+			for (const workspaceDir of collectWorkspaceDirs(loadedConfig)) removeIfNested(paths, workspaceDir);
+		}
+	}
+	return Array.from(paths);
+}
+async function chooseScopeInteractively() {
+	const selected = await select({
+		message: "Reset scope",
+		options: [
+			{
+				value: "config",
+				label: "Config only",
+				hint: "~/.hovclaw/config.json"
+			},
+			{
+				value: "config+creds+sessions",
+				label: "Config + credentials + sessions",
+				hint: "Keeps agents/shared skills/workspace definitions"
+			},
+			{
+				value: "full",
+				label: "Full reset",
+				hint: "Config + credentials + sessions + workspace"
+			}
+		],
+		initialValue: "config+creds+sessions"
+	});
+	if (isCancel(selected)) {
+		cancel("Reset cancelled.");
+		return null;
+	}
+	return selected;
+}
+async function confirmProceed(scope) {
+	const accepted = await confirm({
+		message: `Proceed with ${scope} reset?`,
+		initialValue: false
+	});
+	if (isCancel(accepted)) {
+		cancel("Reset cancelled.");
+		return false;
+	}
+	return accepted;
+}
+function removePath(targetPath) {
+	if (!fs.existsSync(targetPath)) return false;
+	fs.rmSync(targetPath, {
+		recursive: true,
+		force: true
+	});
+	return true;
+}
+async function runResetCommand(options, env = process.env, deps = defaultResetDeps) {
+	const nonInteractive = Boolean(options.nonInteractive);
+	const yes = Boolean(options.yes);
+	const dryRun = Boolean(options.dryRun);
+	if (nonInteractive && !yes) throw new Error("Non-interactive mode requires --yes.");
+	let scope = parseResetScope(options.scope);
+	if (!scope) {
+		if (options.scope) throw new Error("Invalid --scope. Expected \"config\", \"config+creds+sessions\", or \"full\".");
+		if (nonInteractive) throw new Error("Non-interactive mode requires --scope.");
+		scope = await chooseScopeInteractively();
+		if (!scope) throw new Error("reset_cancelled");
+	}
+	if (!nonInteractive && !yes) {
+		if (!await confirmProceed(scope)) throw new Error("reset_cancelled");
+	}
+	if (scope !== "config") if (dryRun) log.info("[dry-run] stop daemon service");
+	else await deps.stopService(env);
+	const paths = collectResetPaths(scope, env);
+	const removed = [];
+	const missing = [];
+	for (const targetPath of paths) {
+		assertSafeRemovalPath(targetPath);
+		if (dryRun) {
+			if (fs.existsSync(targetPath)) removed.push(targetPath);
+			else missing.push(targetPath);
+			continue;
+		}
+		if (removePath(targetPath)) removed.push(targetPath);
+		else missing.push(targetPath);
+	}
+	return {
+		scope,
+		dryRun,
+		removed,
+		missing
+	};
+}
+function renderResetResult(result) {
+	const lines = [];
+	lines.push(`Scope: ${result.scope}`);
+	lines.push(`Mode: ${result.dryRun ? "dry-run" : "apply"}`);
+	lines.push(`Removed: ${result.removed.length}`);
+	if (result.removed.length > 0) lines.push(...result.removed.map((entry) => `  - ${entry}`));
+	lines.push(`Missing/skipped: ${result.missing.length}`);
+	if (result.missing.length > 0) lines.push(...result.missing.map((entry) => `  - ${entry}`));
+	return lines.join("\n");
+}
+
+//#endregion
+export { renderResetResult, runResetCommand };