hyperclaw 4.0.0 → 4.0.2

package/README.md

@@ -6,10 +6,11 @@
 
 <p align="center">
   <img src="https://img.shields.io/badge/build-passing-brightgreen?style=flat-square" alt="build">
-  <img src="https://img.shields.io/badge/release-v4.0.0-blue?style=flat-square" alt="release">
+  <img src="https://img.shields.io/badge/release-v4.0.2-blue?style=flat-square" alt="release">
   <img src="https://img.shields.io/badge/node-%E2%89%A522-green?style=flat-square" alt="node">
   <img src="https://img.shields.io/badge/license-MIT-gray?style=flat-square" alt="license">
   <img src="https://img.shields.io/badge/typescript-5.4-3178c6?style=flat-square&logo=typescript&logoColor=white" alt="typescript">
+  <img src="https://img.shields.io/badge/security-ethical%20hacking-red?style=flat-square&logo=hackthebox&logoColor=white" alt="security">
 </p>
 
 <p align="center">
@@ -21,7 +22,8 @@
 </p>
 
 <p align="center">
-  <em>If you want a personal, single-user assistant that feels local, fast, and always-on, this is it.</em>
+  <em>If you want a personal, single-user assistant that feels local, fast, and always-on, this is it.</em><br>
+  <em>Built for developers, security researchers, and power users who want full control.</em>
 </p>
 
 <p align="center">
@@ -36,23 +38,41 @@
 
 ---
 
+## Use cases
+
+| Use case | How |
+|----------|-----|
+| **Personal assistant** | Chat via Telegram/Discord, voice on macOS/iOS, always-on daemon |
+| **Bug bounty & OSINT** | HackerOne/Bugcrowd/Synack API keys, web-search skill, clipboard & screenshot tools |
+| **Ethical hacking / pentest** | PC access tools (bash, file read/write), sandboxed execution, MCP tool servers |
+| **Cybersecurity research** | Automate recon, triage findings, draft reports — all from your phone via Telegram |
+| **Developer productivity** | Code review, GitHub integration, local shell access, memory across sessions |
+| **Home automation** | Cron skills, morning briefing, calendar events, device commands (macOS/Android) |
+
+> HyperClaw runs **locally on your machine** — your data, your keys, your control.
+
+---
+
 ## Install
 
-Runtime: Node ≥ 22.
+Runtime: Node ≥ 22. Runs **natively on Windows, macOS, and Linux** — no WSL2 required.
 
 ```bash
-npm install -g github:hyperclaw-ai/hyperclaw
-# ή
-npm install -g https://github.com/hyperclaw-ai/hyperclaw
 npm install -g hyperclaw@latest
 # or: pnpm add -g hyperclaw@latest
-hyperclaw onboard --install deamon 
 
+# First-time setup wizard
 hyperclaw onboard
+
+# Or install with daemon (auto-start on boot, full PC access)
+hyperclaw onboard --install-daemon
 ```
 
+> **Windows users**: HyperClaw runs natively via Node.js. No WSL2, no admin rights needed.
+> The daemon uses **Task Scheduler** and runs as your user account with full desktop access.
+
 The wizard guides you step by step — provider, model, gateway, channels, and skills.
-Works on **macOS, Linux, and Windows** (via WSL2 recommended). Compatible with npm, pnpm, and bun.
+Works on **macOS, Linux, and Windows** (native — no WSL2 required). Compatible with npm, pnpm, and bun.
 
 ---
 
@@ -62,17 +82,20 @@ Works on **macOS, Linux, and Windows** (via WSL2 recommended). Compatible with n
 # 1. Run the onboarding wizard (first time)
 hyperclaw onboard
 
-# 2. Start the gateway (stays running in foreground)
+# 2a. Start the gateway in foreground
 hyperclaw gateway --port 18789 --verbose
 
-# 3. Or install as a background daemon (launchd / systemd)
-hyperclaw daemon install && hyperclaw daemon start
+# 2b. Or run as a background daemon (auto-start on boot)
+hyperclaw daemon start
 
-# 4. Talk to your assistant
+# 3. Talk to your assistant
 hyperclaw agent --message "What can you do?"
 
-# 5. Send a message to a connected channel
-hyperclaw message send --to +1234567890 --message "Hello from HyperClaw"
+# 4. Security / bug bounty — run recon from your phone
+# Just message your Telegram bot: "search HackerOne for targets on acme.com"
+
+# 5. Check status
+hyperclaw doctor
 ```
 
 Upgrading? Run `hyperclaw doctor` to check and migrate.
@@ -213,7 +236,7 @@ Full guide: [docs/security.md](docs/security.md)
 ## Features
 
 - **Local-first Gateway** — single control plane for sessions, channels, tools, and events
-- **Multi-channel inbox** — 14+ channels, unified session model
+- **Multi-channel inbox** — 27+ channels, unified session model
 - **Multi-agent routing** — route channels/accounts to isolated agent workspaces
 - **Extended thinking** — Claude extended thinking with `/think high` in chat
 - **Voice** — Talk Mode with ElevenLabs TTS + system TTS fallback
@@ -312,10 +335,19 @@ docker build -f Dockerfile.sandbox -t hyperclaw:sandbox .
 ```
 hyperclaw/
 ├── src/                    # Core CLI, gateway, channels, tools
-│   ├── cli/                # CLI entry point + commands
+│   ├── cli/                # CLI entry point + onboarding wizard
 │   ├── gateway/            # Gateway server + manager (re-exports)
 │   ├── channels/           # Channel connectors + registry
-│   └── services/           # MCP, memory, heartbeat, cron
+│   ├── services/           # MCP, memory, heartbeat, cron
+│   ├── agent/              # Agent loop, orchestrator, tool dispatch
+│   ├── canvas/             # A2UI Canvas renderer
+│   ├── commands/           # CLI sub-commands (channels, pairing…)
+│   ├── hooks/              # Lifecycle hooks (boot, cron, memory)
+│   ├── infra/              # Tool policy, destructive gate, secrets
+│   ├── media/              # Voice, TTS, STT, audio
+│   ├── routing/            # Session routing + multi-agent dispatch
+│   ├── security/           # Auth, sandboxing, DM policy
+│   └── …                  # (sdk, types, webhooks, logging, plugins…)
 ├── packages/
 │   ├── core/               # Inference engine, agent loop
 │   ├── gateway/            # Gateway package (standalone)
@@ -324,9 +356,12 @@ hyperclaw/
 │   ├── ios/                # iOS node app
 │   ├── android/            # Android node app
 │   ├── macos/              # macOS menu bar app
-│   └── macos-menubar/      # Tauri macOS menu bar
+│   ├── macos-menubar/      # Tauri macOS menu bar
+│   └── web/                # Web UI (React + Vite)
 ├── extensions/             # Channel connectors (Telegram, Discord…)
 ├── skills/                 # Bundled skills (reminders, translator)
+├── workspace-templates/    # Agent config templates (AGENTS.md, SOUL.md, TOOLS.md…)
+├── scripts/                # Build + utility scripts
 ├── tests/                  # Vitest — unit / integration / e2e
 └── docs/                   # Full documentation
 ```

package/dist/a2ui-protocol-CT_jDEU9.js

@@ -0,0 +1,75 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+
+//#region src/canvas/a2ui-protocol.ts
+/** Map HyperClaw component type to A2UI-compatible type. */
+function toA2UIType(t) {
+	const map = {
+		chart: "chart",
+		table: "table",
+		form: "form",
+		markdown: "markdown",
+		image: "image",
+		custom: "custom",
+		script: "script"
+	};
+	return map[t] || "custom";
+}
+/** Convert a CanvasComponent to A2UI surface. */
+function componentToSurface(c) {
+	return {
+		id: c.id,
+		type: toA2UIType(c.type),
+		props: {
+			title: c.title,
+			width: c.width || "half"
+		},
+		data: c.data
+	};
+}
+/** Generate beginRendering from canvas state (full sync). */
+function toBeginRendering(canvas) {
+	const surfaces = canvas.components.map(componentToSurface);
+	const dataModel = {};
+	for (const c of canvas.components) if (c.data != null) dataModel[c.id] = c.data;
+	return {
+		type: "beginRendering",
+		surfaceId: canvas.id,
+		surfaces,
+		dataModel: Object.keys(dataModel).length ? dataModel : void 0
+	};
+}
+/** Generate surfaceUpdate for newly added component. */
+function toSurfaceUpdate(canvasId, component) {
+	return {
+		type: "surfaceUpdate",
+		surfaceId: canvasId,
+		surfaces: [componentToSurface(component)]
+	};
+}
+/** Generate dataModelUpdate when component data changes. */
+function toDataModelUpdate(canvasId, componentId, data) {
+	return {
+		type: "dataModelUpdate",
+		surfaceId: canvasId,
+		updates: { [componentId]: data }
+	};
+}
+/** Generate deleteSurface for removed components. */
+function toDeleteSurface(canvasId, componentIds) {
+	return {
+		type: "deleteSurface",
+		surfaceId: canvasId,
+		surfaceIds: componentIds
+	};
+}
+/** Serialize A2UI messages to JSONL (one message per line). */
+function toJSONL(messages) {
+	return messages.map((m) => JSON.stringify(m)).join("\n");
+}
+
+//#endregion
+exports.toBeginRendering = toBeginRendering;
+exports.toDataModelUpdate = toDataModelUpdate;
+exports.toDeleteSurface = toDeleteSurface;
+exports.toJSONL = toJSONL;
+exports.toSurfaceUpdate = toSurfaceUpdate;

package/dist/agents-routing-683Q2JGp.js

@@ -0,0 +1,129 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const chalk = require_chunk.__toESM(require("chalk"));
+const inquirer = require_chunk.__toESM(require("inquirer"));
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+const os = require_chunk.__toESM(require("os"));
+
+//#region src/routing/agents-routing.ts
+var AgentRouter = class {
+	stateFile;
+	agents = [];
+	constructor() {
+		this.stateFile = path.default.join(os.default.homedir(), ".hyperclaw", "agents.json");
+		this.load();
+	}
+	load() {
+		try {
+			this.agents = fs_extra.default.readJsonSync(this.stateFile);
+		} catch {
+			this.agents = [{
+				workspace: path.default.join(os.default.homedir(), ".hyperclaw", "workspace"),
+				name: "default",
+				model: void 0,
+				bindings: []
+			}];
+		}
+	}
+	save() {
+		fs_extra.default.ensureDirSync(path.default.dirname(this.stateFile));
+		fs_extra.default.writeJsonSync(this.stateFile, this.agents, { spaces: 2 });
+	}
+	listBindings() {
+		console.log(chalk.default.bold.cyan("\n  🦅 AGENT BINDINGS\n"));
+		if (this.agents.length === 0) {
+			console.log(chalk.default.gray("  No agents configured."));
+			return;
+		}
+		for (const agent of this.agents) {
+			console.log(`  ${chalk.default.bold(agent.name)}  ${chalk.default.gray(agent.workspace)}`);
+			if (agent.bindings.length === 0) console.log(`    ${chalk.default.gray("No channel bindings — receives from all channels")}`);
+			else for (const b of agent.bindings) {
+				const acct = b.accountId ? chalk.default.gray(`@${b.accountId}`) : chalk.default.gray("(all accounts)");
+				const role = b.role === "primary" ? chalk.default.green("[primary]") : chalk.default.gray("[secondary]");
+				console.log(`    ${chalk.default.cyan(b.channelId)} ${acct} ${role}`);
+			}
+			console.log();
+		}
+	}
+	async bind() {
+		console.log(chalk.default.cyan("\n  Bind a channel to an agent workspace\n"));
+		const { channel, workspace, role } = await inquirer.default.prompt([
+			{
+				type: "input",
+				name: "channel",
+				message: "Channel ID (e.g. telegram, discord, slack):",
+				validate: (v) => v.trim().length > 0 || "Required"
+			},
+			{
+				type: "input",
+				name: "workspace",
+				message: "Agent workspace (directory or name):",
+				default: "default"
+			},
+			{
+				type: "list",
+				name: "role",
+				message: "Binding role:",
+				choices: [{
+					name: "primary — routes all traffic from this channel",
+					value: "primary"
+				}, {
+					name: "secondary — fallback if primary is busy",
+					value: "secondary"
+				}]
+			}
+		]);
+		let agent = this.agents.find((a) => a.name === workspace || a.workspace === workspace);
+		if (!agent) {
+			agent = {
+				workspace,
+				name: workspace,
+				bindings: []
+			};
+			this.agents.push(agent);
+		}
+		agent.bindings.push({
+			channelId: channel,
+			agentWorkspace: agent.workspace,
+			role,
+			createdAt: (/* @__PURE__ */ new Date()).toISOString()
+		});
+		this.save();
+		console.log(chalk.default.green(`\n  ✔  Bound ${channel} → ${workspace} (${role})\n`));
+	}
+	async unbind() {
+		const allBindings = [];
+		for (const agent of this.agents) for (const b of agent.bindings) allBindings.push({
+			agent: agent.name,
+			channel: b.channelId
+		});
+		if (allBindings.length === 0) {
+			console.log(chalk.default.gray("\n  No bindings to remove.\n"));
+			return;
+		}
+		const { toRemove } = await inquirer.default.prompt([{
+			type: "checkbox",
+			name: "toRemove",
+			message: "Select bindings to remove:",
+			choices: allBindings.map((b) => ({
+				name: `${b.channel} → ${b.agent}`,
+				value: b
+			}))
+		}]);
+		for (const { agent: agentName, channel } of toRemove) {
+			const agent = this.agents.find((a) => a.name === agentName);
+			if (agent) agent.bindings = agent.bindings.filter((b) => b.channelId !== channel);
+		}
+		this.save();
+		console.log(chalk.default.green(`\n  ✔  Removed ${toRemove.length} binding(s)\n`));
+	}
+};
+
+//#endregion
+Object.defineProperty(exports, 'AgentRouter', {
+  enumerable: true,
+  get: function () {
+    return AgentRouter;
+  }
+});

package/dist/agents-routing-BpZBswBH.js

@@ -0,0 +1,4 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_agents_routing = require('./agents-routing-683Q2JGp.js');
+
+exports.AgentRouter = require_agents_routing.AgentRouter;

package/dist/api-keys-guide-Bzig1R5W.js

@@ -0,0 +1,149 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+
+//#region src/infra/api-keys-guide.ts
+const API_KEYS_GUIDE = [
+	{
+		serviceId: "anthropic",
+		name: "Anthropic (Claude)",
+		envVar: "ANTHROPIC_API_KEY",
+		url: "platform.anthropic.com",
+		setupSteps: [
+			"1. Go to platform.anthropic.com → API Keys.",
+			"2. Sign up / sign in with an Anthropic account.",
+			"3. Create Key — copy it (starts with sk-ant-). Not shown again!",
+			"",
+			"  🔗 platform.anthropic.com/settings/keys"
+		]
+	},
+	{
+		serviceId: "openai",
+		name: "OpenAI (GPT)",
+		envVar: "OPENAI_API_KEY",
+		url: "platform.openai.com",
+		setupSteps: [
+			"1. Go to platform.openai.com → API keys.",
+			"2. Create new secret key — copy it (starts with sk-). Not shown again!",
+			"3. You need billing enabled for production use.",
+			"",
+			"  🔗 platform.openai.com/api-keys"
+		]
+	},
+	{
+		serviceId: "openrouter",
+		name: "OpenRouter",
+		envVar: "OPENROUTER_API_KEY",
+		url: "openrouter.ai",
+		setupSteps: [
+			"1. Go to openrouter.ai → Keys.",
+			"2. Sign in (Google/GitHub).",
+			"3. Create Key — copy it. OpenRouter provides access to many models (Claude, GPT etc.).",
+			"",
+			"  🔗 openrouter.ai/keys"
+		]
+	},
+	{
+		serviceId: "tavily",
+		name: "Tavily (Web Search)",
+		envVar: "TAVILY_API_KEY",
+		url: "tavily.com",
+		setupSteps: [
+			"1. Go to tavily.com → Sign up.",
+			"2. Dashboard → API Keys → Create API Key.",
+			"3. Copy the key. Used for the web-search skill.",
+			"",
+			"  🔗 app.tavily.com"
+		]
+	},
+	{
+		serviceId: "elevenlabs",
+		name: "ElevenLabs (TTS)",
+		envVar: "ELEVENLABS_API_KEY",
+		url: "elevenlabs.io",
+		setupSteps: [
+			"1. Go to elevenlabs.io → Profile → API Key.",
+			"2. Copy the API key (or create a new one).",
+			"3. Used for talk mode (voice responses).",
+			"",
+			"  🔗 elevenlabs.io/app/settings/api-keys"
+		]
+	},
+	{
+		serviceId: "deepl",
+		name: "DeepL (Translation)",
+		envVar: "DEEPL_API_KEY",
+		url: "deepl.com",
+		setupSteps: [
+			"1. Go to deepl.com/pro-api → Get API key.",
+			"2. Sign up (free tier available).",
+			"3. Account → API keys — copy the Authentication Key.",
+			"",
+			"  🔗 deepl.com/pro-api"
+		]
+	},
+	{
+		serviceId: "github",
+		name: "GitHub (PAT)",
+		envVar: "GITHUB_TOKEN",
+		url: "github.com",
+		setupSteps: [
+			"1. GitHub → Settings → Developer settings → Personal access tokens.",
+			"2. Generate new token (classic or fine-grained).",
+			"3. Select scopes: repo, read:user etc. depending on use case.",
+			"",
+			"  🔗 github.com/settings/tokens"
+		]
+	},
+	{
+		serviceId: "xai",
+		name: "xAI (Grok)",
+		envVar: "XAI_API_KEY",
+		url: "x.ai",
+		setupSteps: [
+			"1. Go to console.x.ai → API keys.",
+			"2. Sign in and create a new key.",
+			"3. Copy the key.",
+			"",
+			"  🔗 console.x.ai"
+		]
+	},
+	{
+		serviceId: "google",
+		name: "Google AI (Gemini)",
+		envVar: "GOOGLE_AI_API_KEY",
+		url: "ai.google.dev",
+		setupSteps: [
+			"1. Go to aistudio.google.com/apikey.",
+			"2. Get API key or Create API key.",
+			"3. Copy the key.",
+			"",
+			"  🔗 aistudio.google.com/apikey"
+		]
+	}
+];
+const SERVICE_ID_MAP = new Map(API_KEYS_GUIDE.map((g) => [g.serviceId.toLowerCase(), g]));
+/** Known name aliases (e.g. anthropic, claude -> anthropic) */
+const ALIASES = {
+	claude: "anthropic",
+	gpt: "openai",
+	xai: "xai",
+	google: "google"
+};
+function getApiKeyGuide(serviceId) {
+	const id = serviceId.toLowerCase().replace(/[^a-z0-9-]/g, "");
+	return SERVICE_ID_MAP.get(id) ?? SERVICE_ID_MAP.get(ALIASES[id] ?? "") ?? null;
+}
+/** For unknown services — generic API key instructions */
+const GENERIC_API_KEY_STEPS = [
+	"For an unknown service:",
+	"1. Go to the official service website (e.g. developers.xxx.com).",
+	"2. Sign up / sign in. An account is usually required.",
+	"3. Look for \"API Keys\", \"Credentials\", \"Developer\" or \"Integrations\" section.",
+	"4. Create a new API key or token. Copy it immediately — many services do not show it again.",
+	"5. Keep it secret — do not share it or commit it to a repo.",
+	"",
+	"  💡 Known services: anthropic, openai, openrouter, tavily, elevenlabs, deepl, github, xai, google"
+];
+
+//#endregion
+exports.GENERIC_API_KEY_STEPS = GENERIC_API_KEY_STEPS;
+exports.getApiKeyGuide = getApiKeyGuide;

package/dist/api-keys-guide-Dq5Obbp4.js

@@ -0,0 +1,149 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+
+//#region src/infra/api-keys-guide.ts
+const API_KEYS_GUIDE = [
+	{
+		serviceId: "anthropic",
+		name: "Anthropic (Claude)",
+		envVar: "ANTHROPIC_API_KEY",
+		url: "platform.anthropic.com",
+		setupSteps: [
+			"1. Go to platform.anthropic.com → API Keys.",
+			"2. Sign up / sign in with an Anthropic account.",
+			"3. Create Key — copy it (starts with sk-ant-). Not shown again!",
+			"",
+			"  🔗 platform.anthropic.com/settings/keys"
+		]
+	},
+	{
+		serviceId: "openai",
+		name: "OpenAI (GPT)",
+		envVar: "OPENAI_API_KEY",
+		url: "platform.openai.com",
+		setupSteps: [
+			"1. Go to platform.openai.com → API keys.",
+			"2. Create new secret key — copy it (starts with sk-). Not shown again!",
+			"3. You need billing enabled for production use.",
+			"",
+			"  🔗 platform.openai.com/api-keys"
+		]
+	},
+	{
+		serviceId: "openrouter",
+		name: "OpenRouter",
+		envVar: "OPENROUTER_API_KEY",
+		url: "openrouter.ai",
+		setupSteps: [
+			"1. Go to openrouter.ai → Keys.",
+			"2. Sign in (Google/GitHub).",
+			"3. Create Key — copy it. OpenRouter provides access to many models (Claude, GPT etc.).",
+			"",
+			"  🔗 openrouter.ai/keys"
+		]
+	},
+	{
+		serviceId: "tavily",
+		name: "Tavily (Web Search)",
+		envVar: "TAVILY_API_KEY",
+		url: "tavily.com",
+		setupSteps: [
+			"1. Go to tavily.com → Sign up.",
+			"2. Dashboard → API Keys → Create API Key.",
+			"3. Copy the key. Used for the web-search skill.",
+			"",
+			"  🔗 app.tavily.com"
+		]
+	},
+	{
+		serviceId: "elevenlabs",
+		name: "ElevenLabs (TTS)",
+		envVar: "ELEVENLABS_API_KEY",
+		url: "elevenlabs.io",
+		setupSteps: [
+			"1. Go to elevenlabs.io → Profile → API Key.",
+			"2. Copy the API key (or create a new one).",
+			"3. Used for talk mode (voice responses).",
+			"",
+			"  🔗 elevenlabs.io/app/settings/api-keys"
+		]
+	},
+	{
+		serviceId: "deepl",
+		name: "DeepL (Translation)",
+		envVar: "DEEPL_API_KEY",
+		url: "deepl.com",
+		setupSteps: [
+			"1. Go to deepl.com/pro-api → Get API key.",
+			"2. Sign up (free tier available).",
+			"3. Account → API keys — copy the Authentication Key.",
+			"",
+			"  🔗 deepl.com/pro-api"
+		]
+	},
+	{
+		serviceId: "github",
+		name: "GitHub (PAT)",
+		envVar: "GITHUB_TOKEN",
+		url: "github.com",
+		setupSteps: [
+			"1. GitHub → Settings → Developer settings → Personal access tokens.",
+			"2. Generate new token (classic or fine-grained).",
+			"3. Select scopes: repo, read:user etc. depending on use case.",
+			"",
+			"  🔗 github.com/settings/tokens"
+		]
+	},
+	{
+		serviceId: "xai",
+		name: "xAI (Grok)",
+		envVar: "XAI_API_KEY",
+		url: "x.ai",
+		setupSteps: [
+			"1. Go to console.x.ai → API keys.",
+			"2. Sign in and create a new key.",
+			"3. Copy the key.",
+			"",
+			"  🔗 console.x.ai"
+		]
+	},
+	{
+		serviceId: "google",
+		name: "Google AI (Gemini)",
+		envVar: "GOOGLE_AI_API_KEY",
+		url: "ai.google.dev",
+		setupSteps: [
+			"1. Go to aistudio.google.com/apikey.",
+			"2. Get API key or Create API key.",
+			"3. Copy the key.",
+			"",
+			"  🔗 aistudio.google.com/apikey"
+		]
+	}
+];
+const SERVICE_ID_MAP = new Map(API_KEYS_GUIDE.map((g) => [g.serviceId.toLowerCase(), g]));
+/** Known name aliases (e.g. anthropic, claude -> anthropic) */
+const ALIASES = {
+	claude: "anthropic",
+	gpt: "openai",
+	xai: "xai",
+	google: "google"
+};
+function getApiKeyGuide(serviceId) {
+	const id = serviceId.toLowerCase().replace(/[^a-z0-9-]/g, "");
+	return SERVICE_ID_MAP.get(id) ?? SERVICE_ID_MAP.get(ALIASES[id] ?? "") ?? null;
+}
+/** For unknown services — generic API key instructions */
+const GENERIC_API_KEY_STEPS = [
+	"For an unknown service:",
+	"1. Go to the official service website (e.g. developers.xxx.com).",
+	"2. Sign up / sign in. An account is usually required.",
+	"3. Look for \"API Keys\", \"Credentials\", \"Developer\" or \"Integrations\" section.",
+	"4. Create a new API key or token. Copy it immediately — many services do not show it again.",
+	"5. Keep it secret — do not share it or commit it to a repo.",
+	"",
+	"  💡 Known services: anthropic, openai, openrouter, tavily, elevenlabs, deepl, github, xai, google"
+];
+
+//#endregion
+exports.GENERIC_API_KEY_STEPS = GENERIC_API_KEY_STEPS;
+exports.getApiKeyGuide = getApiKeyGuide;