hyperclaw 4.0.1 → 4.0.2

package/dist/run-main.js

@@ -1,17 +1,20 @@
 const require_chunk = require('./chunk-jS-bbMI5.js');
-const require_paths = require('./paths-AIyBxIzm.js');
-const require_paths$1 = require('./paths-DPovhojT.js');
-require('./env-resolve-BzDlV2CS.js');
-const require_onboard = require('./onboard-DnegOHMh.js');
-require('./server-CCI1hv45.js');
+require('./paths-AIyBxIzm.js');
+require('./paths-DPovhojT.js');
+require('./env-resolve-szSWl0UF.js');
+const require_onboard = require('./onboard-Bd_wsYdi.js');
+require('./server-BRlCEjyT.js');
 require('./theme-LUTKWUWd.js');
-const require_manager = require('./manager-DWQSp1oL.js');
-const require_manager$1 = require('./manager-C4ZdCiPx.js');
-const require_memory = require('./memory-DvsoY6nv.js');
-const require_loader = require('./loader-BR-QFJOm.js');
-const require_pairing = require('./pairing-tNnYsLWG.js');
-const require_security = require('./security-CVzgwvDN.js');
-const require_developer_keys = require('./developer-keys-BNo6wlFV.js');
+const require_hub = require('./hub-FrPTA33j.js');
+const require_manager = require('./manager-Dm8nrMFx.js');
+const require_manager$1 = require('./manager-Cwzj7w5R.js');
+const require_memory = require('./memory-BVFGkxxK.js');
+const require_loader = require('./loader-CISCqBto.js');
+const require_agents_routing = require('./agents-routing-683Q2JGp.js');
+const require_pairing = require('./pairing-DU0_J28n.js');
+const require_doctor = require('./doctor-3oi89QIc.js');
+const require_security = require('./security-C-5URby1.js');
+const require_developer_keys = require('./developer-keys-JaJK3T27.js');
 const commander = require_chunk.__toESM(require("commander"));
 const chalk = require_chunk.__toESM(require("chalk"));
 const inquirer = require_chunk.__toESM(require("inquirer"));
@@ -21,505 +24,9 @@ const path = require_chunk.__toESM(require("path"));
 const os = require_chunk.__toESM(require("os"));
 const child_process = require_chunk.__toESM(require("child_process"));
 const util = require_chunk.__toESM(require("util"));
-const http = require_chunk.__toESM(require("http"));
-const https = require_chunk.__toESM(require("https"));
-const readline = require_chunk.__toESM(require("readline"));
-const tar = require_chunk.__toESM(require("tar"));
 const fs = require_chunk.__toESM(require("fs"));
-const net = require_chunk.__toESM(require("net"));
-
-//#region src/skills/clawhub.ts
-require_paths$1.init_paths();
-const CLAWHUB_API = process.env.CLAWHUB_API_URL || "https://clawhub.com";
-const WORKSPACE_SKILLS$1 = path.default.join(require_paths.getHyperClawDir(), "workspace", "skills");
-async function searchSkills(query, category) {
-	const q = new URLSearchParams({ q: query });
-	if (category) q.set("category", category);
-	const url = `${CLAWHUB_API}/api/skills/search?${q}`;
-	try {
-		const body = await fetchJson(url);
-		return Array.isArray(body.skills) ? body.skills : Array.isArray(body) ? body : [];
-	} catch (e) {
-		return [];
-	}
-}
-async function installSkill(skillId, version) {
-	const ver = version ? `@${version}` : "";
-	const url = `${CLAWHUB_API}/api/skills/${encodeURIComponent(skillId)}/download${ver}`;
-	try {
-		const body = await fetchJson(url);
-		const tarballUrl = body.url || body.tarball;
-		if (!tarballUrl) throw new Error("No download URL in registry response");
-		await fs_extra.default.ensureDir(WORKSPACE_SKILLS$1);
-		const destDir = path.default.join(WORKSPACE_SKILLS$1, skillId);
-		await fs_extra.default.ensureDir(destDir);
-		if (body.content || body.skillMarkdown) {
-			const content = body.content || body.skillMarkdown;
-			await fs_extra.default.writeFile(path.default.join(destDir, "SKILL.md"), content, "utf8");
-			return destDir;
-		}
-		const tarballBuffer = await fetchBuffer(tarballUrl);
-		const extractDir = path.default.join(path.default.dirname(destDir), `.skill-extract-${skillId}-${Date.now()}`);
-		await fs_extra.default.ensureDir(extractDir);
-		try {
-			const tarPath = path.default.join(extractDir, "skill.tar.gz");
-			await fs_extra.default.writeFile(tarPath, tarballBuffer);
-			await tar.default.x({
-				file: tarPath,
-				cwd: extractDir
-			});
-			await fs_extra.default.remove(tarPath);
-			const entries = await fs_extra.default.readdir(extractDir);
-			let skillDir = extractDir;
-			const topSkill = path.default.join(extractDir, "SKILL.md");
-			if (!await fs_extra.default.pathExists(topSkill)) {
-				const sub = entries.find((e) => e !== "package.json" && !e.startsWith("."));
-				if (sub) {
-					const subPath = path.default.join(extractDir, sub);
-					if ((await fs_extra.default.stat(subPath)).isDirectory() && await fs_extra.default.pathExists(path.default.join(subPath, "SKILL.md"))) skillDir = subPath;
-				}
-			}
-			await fs_extra.default.copy(skillDir, destDir, { filter: (src) => !src.includes("node_modules") });
-			if (!await fs_extra.default.pathExists(path.default.join(destDir, "SKILL.md"))) throw new Error("Tarball did not contain SKILL.md");
-			return destDir;
-		} finally {
-			await fs_extra.default.remove(extractDir).catch(() => {});
-		}
-	} catch (e) {
-		if (e.message?.includes("ENOTFOUND") || e.code === "ENOTFOUND") throw new Error(`ClawHub registry unavailable. Install manually: mkdir -p ~/.hyperclaw/workspace/skills/${skillId} && add SKILL.md`);
-		throw e;
-	}
-}
-async function listInstalledFromClawHub() {
-	if (!await fs_extra.default.pathExists(WORKSPACE_SKILLS$1)) return [];
-	const dirs = await fs_extra.default.readdir(WORKSPACE_SKILLS$1);
-	const out = [];
-	for (const id of dirs) {
-		const p = path.default.join(WORKSPACE_SKILLS$1, id, "SKILL.md");
-		if (await fs_extra.default.pathExists(p)) out.push(id);
-	}
-	return out;
-}
-function fetchBuffer(url) {
-	return new Promise((resolve, reject) => {
-		const parsed = new URL(url);
-		const mod = parsed.protocol === "https:" ? https.default : http.default;
-		const req = mod.request({
-			hostname: parsed.hostname,
-			port: parsed.port || (parsed.protocol === "https:" ? 443 : 80),
-			path: parsed.pathname + parsed.search,
-			method: "GET",
-			headers: { "User-Agent": "HyperClaw/4.0.1" }
-		}, (res) => {
-			const chunks = [];
-			res.on("data", (c) => chunks.push(c));
-			res.on("end", () => resolve(Buffer.concat(chunks)));
-		});
-		req.on("error", reject);
-		req.setTimeout(3e4, () => {
-			req.destroy();
-			reject(new Error("Tarball download timeout"));
-		});
-		req.end();
-	});
-}
-function fetchJson(url) {
-	return new Promise((resolve, reject) => {
-		const parsed = new URL(url);
-		const req = https.default.request({
-			hostname: parsed.hostname,
-			port: 443,
-			path: parsed.pathname + parsed.search,
-			method: "GET",
-			headers: { "User-Agent": "HyperClaw/4.0.1" }
-		}, (res) => {
-			let data = "";
-			res.on("data", (c) => data += c);
-			res.on("end", () => {
-				try {
-					resolve(JSON.parse(data));
-				} catch {
-					reject(new Error("Invalid JSON from registry"));
-				}
-			});
-		});
-		req.on("error", reject);
-		req.setTimeout(15e3, () => {
-			req.destroy();
-			reject(new Error("Timeout"));
-		});
-		req.end();
-	});
-}
-
-//#endregion
-//#region src/plugins/hub.ts
-require_paths$1.init_paths();
-const SKILL_REGISTRY = [
-	{
-		id: "web-search",
-		name: "Web Search (Tavily)",
-		version: "2.1.0",
-		description: "Real-time web search via Tavily API. Powers research and news queries.",
-		author: "hyperclaw-team",
-		category: "utility",
-		downloads: 48200,
-		rating: 4.8,
-		risk: "clean",
-		requiresKeys: ["TAVILY_API_KEY"],
-		tags: [
-			"search",
-			"internet",
-			"tavily"
-		]
-	},
-	{
-		id: "calendar",
-		name: "Google Calendar",
-		version: "1.4.0",
-		description: "Read and create Google Calendar events via OAuth.",
-		author: "hyperclaw-team",
-		category: "productivity",
-		downloads: 32100,
-		rating: 4.6,
-		risk: "clean",
-		requiresKeys: ["GOOGLE_CALENDAR_CREDS"],
-		tags: [
-			"calendar",
-			"schedule",
-			"google"
-		],
-		npmPackage: "googleapis"
-	},
-	{
-		id: "github",
-		name: "GitHub Integration",
-		version: "1.2.0",
-		description: "Create issues, PRs, read repos. Requires GitHub PAT.",
-		author: "hyperclaw-team",
-		category: "integration",
-		downloads: 27800,
-		rating: 4.7,
-		risk: "clean",
-		requiresKeys: ["GITHUB_TOKEN"],
-		tags: [
-			"github",
-			"git",
-			"code"
-		],
-		npmPackage: "@octokit/rest"
-	},
-	{
-		id: "home-assistant",
-		name: "Home Assistant",
-		version: "1.5.0",
-		description: "Control smart home devices via Home Assistant REST API.",
-		author: "hyperclaw-team",
-		category: "automation",
-		downloads: 19400,
-		rating: 4.5,
-		risk: "clean",
-		requiresKeys: ["HA_URL", "HA_TOKEN"],
-		tags: [
-			"smart-home",
-			"iot",
-			"automation"
-		]
-	},
-	{
-		id: "code-executor",
-		name: "Code Executor (Sandbox)",
-		version: "3.0.1",
-		description: "Execute Python/JS/Bash code in a sandboxed Docker container.",
-		author: "hyperclaw-team",
-		category: "utility",
-		downloads: 41e3,
-		rating: 4.9,
-		risk: "clean",
-		tags: [
-			"code",
-			"sandbox",
-			"python",
-			"bash"
-		],
-		npmPackage: "dockerode"
-	},
-	{
-		id: "translator",
-		name: "Real-time Translator",
-		version: "2.0.0",
-		description: "DeepL + Google Translate integration for 90+ languages.",
-		author: "hyperclaw-team",
-		category: "utility",
-		downloads: 38500,
-		rating: 4.7,
-		risk: "clean",
-		requiresKeys: ["DEEPL_API_KEY"],
-		tags: [
-			"translate",
-			"language",
-			"deepl"
-		],
-		installed: true
-	},
-	{
-		id: "reminders",
-		name: "Smart Reminders",
-		version: "2.1.0",
-		description: "Natural language reminders with cron scheduling.",
-		author: "hyperclaw-team",
-		category: "productivity",
-		downloads: 29e3,
-		rating: 4.6,
-		risk: "clean",
-		tags: [
-			"reminders",
-			"cron",
-			"schedule"
-		],
-		installed: true
-	},
-	{
-		id: "weather",
-		name: "Weather Forecast",
-		version: "1.3.0",
-		description: "OpenWeatherMap integration. Current + 7-day forecast.",
-		author: "hyperclaw-team",
-		category: "utility",
-		downloads: 22100,
-		rating: 4.4,
-		risk: "clean",
-		requiresKeys: ["OPENWEATHER_API_KEY"],
-		tags: ["weather", "forecast"]
-	},
-	{
-		id: "stealth-browser",
-		name: "Stealth Browser",
-		version: "1.0.3",
-		description: "Headless browser with fingerprint evasion. Can bypass bot detection.",
-		author: "unknown-dev",
-		category: "utility",
-		downloads: 3200,
-		rating: 3.1,
-		risk: "suspicious",
-		riskReason: "Fingerprint evasion may violate ToS on some sites. VirusTotal: 2/72 engines flagged.",
-		tags: [
-			"browser",
-			"puppeteer",
-			"stealth"
-		],
-		npmPackage: "puppeteer-extra-plugin-stealth"
-	},
-	{
-		id: "db-reader",
-		name: "Database Reader",
-		version: "1.1.0",
-		description: "Read from PostgreSQL/MySQL/SQLite databases.",
-		author: "hyperclaw-team",
-		category: "integration",
-		downloads: 15600,
-		rating: 4.5,
-		risk: "clean",
-		requiresKeys: ["DATABASE_URL"],
-		tags: [
-			"database",
-			"sql",
-			"postgres"
-		],
-		npmPackage: "pg"
-	},
-	{
-		id: "keylogger-util",
-		name: "Input Monitor Pro",
-		version: "0.9.1",
-		description: "Monitors keyboard events for automation triggers.",
-		author: "shadowy-scripts",
-		category: "automation",
-		downloads: 890,
-		rating: 1.8,
-		risk: "dangerous",
-		riskReason: "Detected keylogging behavior. VirusTotal: 31/72 engines flagged as malware.",
-		tags: ["keyboard", "monitor"]
-	}
-];
-const WORKSPACE_SKILLS = () => path.default.join(require_paths.getHyperClawDir(), "workspace", "skills");
-var SkillHub = class {
-	installed = /* @__PURE__ */ new Set();
-	/** Sync installed set from workspace disk (persisted installs). */
-	async refreshInstalledFromDisk() {
-		const ids = await listInstalledFromClawHub();
-		this.installed = new Set(ids);
-	}
-	/** Persist bundled skill to workspace so it survives restarts and is loaded by skill-loader. */
-	async persistBundledSkill(skill) {
-		const destDir = path.default.join(WORKSPACE_SKILLS(), skill.id);
-		await fs_extra.default.ensureDir(destDir);
-		const skillPath = path.default.join(destDir, "SKILL.md");
-		const repoSkillPath = path.default.join(process.cwd(), "skills", skill.id, "SKILL.md");
-		const altRepoPath = path.default.join(__dirname, "..", "..", "skills", skill.id, "SKILL.md");
-		if (await fs_extra.default.pathExists(repoSkillPath)) await fs_extra.default.copy(repoSkillPath, skillPath);
-		else if (await fs_extra.default.pathExists(altRepoPath)) await fs_extra.default.copy(altRepoPath, skillPath);
-		else {
-			const content = `# ${skill.name}\n\n${skill.description}\n\n## Usage\n\nWhen the user needs ${skill.description.toLowerCase()}, use this skill.${skill.requiresKeys?.length ? `\n\nRequires: ${skill.requiresKeys.join(", ")}` : ""}\n`;
-			await fs_extra.default.writeFile(skillPath, content, "utf8");
-		}
-		this.installed.add(skill.id);
-	}
-	async showHub(hideSuspicious = false) {
-		await this.refreshInstalledFromDisk();
-		console.log(chalk.default.bold.cyan("\n╔═══════════════════════════════════════════╗"));
-		console.log(chalk.default.bold.cyan("║           🧩 HYPERCLAW SKILL HUB          ║"));
-		console.log(chalk.default.bold.cyan("╚═══════════════════════════════════════════╝\n"));
-		const skills = hideSuspicious ? SKILL_REGISTRY.filter((s) => s.risk === "clean") : SKILL_REGISTRY;
-		for (const skill of skills) this.printSkillCard(skill);
-	}
-	printSkillCard(skill) {
-		const riskBadge = {
-			"clean": chalk.default.green("✔ CLEAN"),
-			"suspicious": chalk.default.yellow("⚠ SUSPICIOUS"),
-			"dangerous": chalk.default.red("✖ DANGEROUS")
-		}[skill.risk];
-		const instBadge = this.installed.has(skill.id) ? chalk.default.green("[installed]") : chalk.default.gray("[available]");
-		const stars = "★".repeat(Math.round(skill.rating)) + "☆".repeat(5 - Math.round(skill.rating));
-		console.log(`  ${chalk.default.bold(skill.name)} ${chalk.default.gray(`v${skill.version}`)} ${instBadge}`);
-		console.log(`  ${chalk.default.gray(skill.description)}`);
-		console.log(`  ${riskBadge}  ${chalk.default.yellow(stars)} ${chalk.default.gray(`${(skill.downloads / 1e3).toFixed(1)}k downloads`)}`);
-		if (skill.riskReason) console.log(`  ${chalk.default.yellow("⚠")} ${chalk.default.yellow(skill.riskReason)}`);
-		if (skill.requiresKeys?.length) console.log(`  🔑 Requires: ${chalk.default.cyan(skill.requiresKeys.join(", "))}`);
-		console.log();
-	}
-	async install(skillId, force = false) {
-		const skill = SKILL_REGISTRY.find((s) => s.id === skillId);
-		if (!skill) {
-			console.log(chalk.default.red(`❌ Skill not found: ${skillId}`));
-			return;
-		}
-		if (skill.risk === "dangerous" && !force) {
-			console.log(chalk.default.red(`\n🚨 DANGEROUS SKILL BLOCKED: ${skill.name}`));
-			console.log(chalk.default.red(`   ${skill.riskReason}`));
-			console.log(chalk.default.gray("   Use --force to override (NOT RECOMMENDED)\n"));
-			return;
-		}
-		if (skill.risk === "suspicious" && !force) {
-			console.log(chalk.default.yellow(`\n⚠️  SUSPICIOUS SKILL: ${skill.name}`));
-			console.log(chalk.default.yellow(`   ${skill.riskReason}`));
-			console.log(chalk.default.gray("   Use --force to install anyway\n"));
-			return;
-		}
-		const spinner = (0, ora.default)(`Installing ${skill.name}...`).start();
-		if (skill.npmPackage) {
-			spinner.text = `Installing npm package: ${skill.npmPackage}`;
-			await new Promise((r) => setTimeout(r, 800));
-		}
-		await this.persistBundledSkill(skill);
-		spinner.succeed(`${skill.name} installed ✓`);
-		if (skill.requiresKeys?.length) {
-			console.log(chalk.default.yellow(`\n📋 Required API keys to activate:`));
-			skill.requiresKeys.forEach((k) => {
-				console.log(chalk.default.cyan(`   hyperclaw config set-key ${k}`));
-			});
-		}
-		console.log();
-	}
-	async scan(skillId) {
-		const skill = SKILL_REGISTRY.find((s) => s.id === skillId);
-		if (!skill) return;
-		const spinner = (0, ora.default)(`Scanning ${skill.name}...`).start();
-		const stages = [
-			"Checking manifest...",
-			"Scanning for malicious patterns...",
-			"Checking VirusTotal...",
-			"Verifying author..."
-		];
-		for (const stage of stages) {
-			spinner.text = stage;
-			await new Promise((r) => setTimeout(r, 600));
-		}
-		const result = {
-			"clean": chalk.default.green("✅ All green — safe to install"),
-			"suspicious": chalk.default.yellow("⚠️  Suspicious patterns detected — proceed with caution"),
-			"dangerous": chalk.default.red("🚨 Malicious patterns detected — do NOT install")
-		}[skill.risk];
-		spinner.stop();
-		console.log(`\n🔬 Scan results for ${chalk.default.bold(skill.name)}:`);
-		console.log(`   ${result}`);
-		if (skill.riskReason) console.log(chalk.default.gray(`   Detail: ${skill.riskReason}`));
-		console.log();
-	}
-	async checkEligibility() {
-		const spinner = (0, ora.default)("Checking system eligibility...").start();
-		await new Promise((r) => setTimeout(r, 1e3));
-		spinner.succeed("Eligibility check complete");
-		console.log(chalk.default.green("\n✅ All installed skills are eligible on this system\n"));
-	}
-	async getInstalled() {
-		await this.refreshInstalledFromDisk();
-		const ids = this.installed;
-		const fromRegistry = SKILL_REGISTRY.filter((s) => ids.has(s.id));
-		const fromWorkspace = (await listInstalledFromClawHub()).filter((id) => !SKILL_REGISTRY.some((s) => s.id === id));
-		return [...fromRegistry, ...fromWorkspace.map((id) => ({
-			id,
-			name: id,
-			version: "0",
-			description: "",
-			author: "",
-			category: "utility",
-			downloads: 0,
-			rating: 0,
-			risk: "clean",
-			tags: []
-		}))];
-	}
-	/** ClawHub integration: search remote registry, fallback to bundled when remote unavailable */
-	async searchClawHub(query, category) {
-		let remote = await searchSkills(query, category);
-		if (remote.length === 0) {
-			const q = (query || "").toLowerCase();
-			const filtered = SKILL_REGISTRY.filter((s) => !q || s.id.includes(q) || s.name.toLowerCase().includes(q) || s.tags.some((t) => t.includes(q))).filter((s) => !category || s.category === category);
-			remote = filtered.map((s) => ({
-				id: s.id,
-				name: s.name,
-				author: s.author,
-				description: s.description,
-				rating: s.rating,
-				downloads: s.downloads,
-				version: s.version,
-				categories: [s.category]
-			}));
-		}
-		return remote;
-	}
-	/** ClawHub integration: install from remote registry */
-	async installFromClawHub(skillId, version) {
-		return installSkill(skillId, version);
-	}
-	/** ClawHub marketplace UX: unified browse (bundled + remote) */
-	async showMarketplace(opts) {
-		await this.refreshInstalledFromDisk();
-		const installedClawHub = await listInstalledFromClawHub();
-		const bundled = (opts?.hideSuspicious ? SKILL_REGISTRY.filter((s) => s.risk === "clean") : SKILL_REGISTRY).filter((s) => !opts?.category || s.category === opts.category);
-		console.log(chalk.default.bold.cyan("\n╔══════════════════════════════════════════════════════════╗"));
-		console.log(chalk.default.bold.cyan("║           🧩 CLAWHUB MARKETPLACE                         ║"));
-		console.log(chalk.default.bold.cyan("╚══════════════════════════════════════════════════════════╝\n"));
-		if (installedClawHub.length > 0) {
-			console.log(chalk.default.bold.green("  Installed (ClawHub):"));
-			installedClawHub.forEach((id) => console.log(chalk.default.gray(`    • ${id}`)));
-			console.log();
-		}
-		console.log(chalk.default.bold("  Bundled skills:"));
-		for (const skill of bundled) {
-			const inst = this.installed.has(skill.id) || installedClawHub.includes(skill.id);
-			const badge = inst ? chalk.default.green("✓ installed") : chalk.default.cyan("hyperclaw skill install " + skill.id);
-			const risk = skill.risk === "clean" ? "" : chalk.default.yellow(` [${skill.risk}]`);
-			console.log(`    ${chalk.default.bold(skill.name)} ${chalk.default.gray(`v${skill.version}`)} ${badge}${risk}`);
-			console.log(chalk.default.gray(`      ${skill.description}`));
-		}
-		console.log(chalk.default.gray("\n  Search remote: hyperclaw skill search <query>"));
-		console.log(chalk.default.gray("  Install:       hyperclaw skill install <id>\n"));
-	}
-};
+const readline = require_chunk.__toESM(require("readline"));
 
-//#endregion
 //#region src/cli/dashboard.ts
 var Dashboard = class {
 	async launch(live) {
@@ -533,7 +40,7 @@ var Dashboard = class {
 	async drawDashboard() {
 		const cfg = await new require_onboard.ConfigStore().load();
 		const gm = new require_onboard.GatewayManager();
-		const hub = new SkillHub();
+		const hub = new require_hub.SkillHub();
 		const installed = await hub.getInstalled();
 		const port = cfg?.gateway?.port || 1515;
 		const agent = cfg?.identity?.agentName || "Hyper";
@@ -552,7 +59,7 @@ var Dashboard = class {
 			return c(`║ `) + content + " ".repeat(pad) + c(`║`);
 		};
 		console.log(c(`╔${line}╗`));
-		console.log(c(`║`) + chalk.default.bold.hex("#06b6d4")(`${"🦅 HYPERCLAW v4.0.1 — GATEWAY DASHBOARD".padStart(45).padEnd(w)}`) + c(`║`));
+		console.log(c(`║`) + chalk.default.bold.hex("#06b6d4")(`${"🦅 HYPERCLAW v4.0.2 — GATEWAY DASHBOARD".padStart(45).padEnd(w)}`) + c(`║`));
 		console.log(c(`╠${line}╣`));
 		console.log(row(`${statusDot} Gateway  ${statusText}   ${chalk.default.gray("│")}  ws://localhost:${port}   ${chalk.default.gray("│")}  Agent: ${c(agent)}`));
 		console.log(row(`${c("◆")} Model     ${chalk.default.gray(model.slice(0, 30))}   ${chalk.default.gray("│")}  User: ${c(user)}`));
@@ -633,7 +140,7 @@ async function recordAudio(outFile, seconds) {
 async function transcribeWhisper(filePath, lang) {
 	const apiKey = process.env.OPENAI_API_KEY || process.env.ANTHROPIC_API_KEY;
 	if (!apiKey) throw new Error("No OPENAI_API_KEY set");
-	const FormData = (await Promise.resolve().then(() => require_chunk.__toDynamicImportESM()(require("./form_data-fpopMWNo.js"))).catch(() => null))?.default;
+	const FormData = (await Promise.resolve().then(() => require_chunk.__toDynamicImportESM()(require("./form_data-B_hIUrxU.js"))).catch(() => null))?.default;
 	if (!FormData) throw new Error("form-data not installed");
 	const form = new FormData();
 	form.append("file", fs.createReadStream(filePath), {
@@ -777,283 +284,6 @@ var VoiceEngine = class {
 	}
 };
 
-//#endregion
-//#region src/routing/agents-routing.ts
-var AgentRouter = class {
-	stateFile;
-	agents = [];
-	constructor() {
-		this.stateFile = path.default.join(os.default.homedir(), ".hyperclaw", "agents.json");
-		this.load();
-	}
-	load() {
-		try {
-			this.agents = fs_extra.default.readJsonSync(this.stateFile);
-		} catch {
-			this.agents = [{
-				workspace: path.default.join(os.default.homedir(), ".hyperclaw", "workspace"),
-				name: "default",
-				model: void 0,
-				bindings: []
-			}];
-		}
-	}
-	save() {
-		fs_extra.default.ensureDirSync(path.default.dirname(this.stateFile));
-		fs_extra.default.writeJsonSync(this.stateFile, this.agents, { spaces: 2 });
-	}
-	listBindings() {
-		console.log(chalk.default.bold.cyan("\n  🦅 AGENT BINDINGS\n"));
-		if (this.agents.length === 0) {
-			console.log(chalk.default.gray("  No agents configured."));
-			return;
-		}
-		for (const agent of this.agents) {
-			console.log(`  ${chalk.default.bold(agent.name)}  ${chalk.default.gray(agent.workspace)}`);
-			if (agent.bindings.length === 0) console.log(`    ${chalk.default.gray("No channel bindings — receives from all channels")}`);
-			else for (const b of agent.bindings) {
-				const acct = b.accountId ? chalk.default.gray(`@${b.accountId}`) : chalk.default.gray("(all accounts)");
-				const role = b.role === "primary" ? chalk.default.green("[primary]") : chalk.default.gray("[secondary]");
-				console.log(`    ${chalk.default.cyan(b.channelId)} ${acct} ${role}`);
-			}
-			console.log();
-		}
-	}
-	async bind() {
-		console.log(chalk.default.cyan("\n  Bind a channel to an agent workspace\n"));
-		const { channel, workspace, role } = await inquirer.default.prompt([
-			{
-				type: "input",
-				name: "channel",
-				message: "Channel ID (e.g. telegram, discord, slack):",
-				validate: (v) => v.trim().length > 0 || "Required"
-			},
-			{
-				type: "input",
-				name: "workspace",
-				message: "Agent workspace (directory or name):",
-				default: "default"
-			},
-			{
-				type: "list",
-				name: "role",
-				message: "Binding role:",
-				choices: [{
-					name: "primary — routes all traffic from this channel",
-					value: "primary"
-				}, {
-					name: "secondary — fallback if primary is busy",
-					value: "secondary"
-				}]
-			}
-		]);
-		let agent = this.agents.find((a) => a.name === workspace || a.workspace === workspace);
-		if (!agent) {
-			agent = {
-				workspace,
-				name: workspace,
-				bindings: []
-			};
-			this.agents.push(agent);
-		}
-		agent.bindings.push({
-			channelId: channel,
-			agentWorkspace: agent.workspace,
-			role,
-			createdAt: (/* @__PURE__ */ new Date()).toISOString()
-		});
-		this.save();
-		console.log(chalk.default.green(`\n  ✔  Bound ${channel} → ${workspace} (${role})\n`));
-	}
-	async unbind() {
-		const allBindings = [];
-		for (const agent of this.agents) for (const b of agent.bindings) allBindings.push({
-			agent: agent.name,
-			channel: b.channelId
-		});
-		if (allBindings.length === 0) {
-			console.log(chalk.default.gray("\n  No bindings to remove.\n"));
-			return;
-		}
-		const { toRemove } = await inquirer.default.prompt([{
-			type: "checkbox",
-			name: "toRemove",
-			message: "Select bindings to remove:",
-			choices: allBindings.map((b) => ({
-				name: `${b.channel} → ${b.agent}`,
-				value: b
-			}))
-		}]);
-		for (const { agent: agentName, channel } of toRemove) {
-			const agent = this.agents.find((a) => a.name === agentName);
-			if (agent) agent.bindings = agent.bindings.filter((b) => b.channelId !== channel);
-		}
-		this.save();
-		console.log(chalk.default.green(`\n  ✔  Removed ${toRemove.length} binding(s)\n`));
-	}
-};
-
-//#endregion
-//#region src/commands/doctor.ts
-async function isPortOpen(port) {
-	return new Promise((resolve) => {
-		const s = new net.default.Socket();
-		s.setTimeout(500);
-		s.on("connect", () => {
-			s.destroy();
-			resolve(true);
-		});
-		s.on("error", () => resolve(false));
-		s.on("timeout", () => resolve(false));
-		try {
-			s.connect(port, "127.0.0.1");
-		} catch {
-			resolve(false);
-		}
-	});
-}
-async function runDoctor(fix = false) {
-	const spinner = (0, ora.default)("Running health checks...").start();
-	await new Promise((r) => setTimeout(r, 800));
-	spinner.stop();
-	const configDir = path.default.join(os.default.homedir(), ".hyperclaw");
-	const configFile = path.default.join(configDir, "config.json");
-	const agentsFile = path.default.join(configDir, "AGENTS.md");
-	const authFile = path.default.join(configDir, "auth.json");
-	const pairingFile = path.default.join(configDir, "pairing-store.json");
-	let cfg = null;
-	try {
-		cfg = fs_extra.default.readJsonSync(configFile);
-	} catch {}
-	const issues = [];
-	if (!cfg) issues.push({
-		id: "no-config",
-		severity: "error",
-		title: "No configuration found",
-		detail: "Run: hyperclaw init",
-		fixable: false
-	});
-	else {
-		const hasToken = !!cfg.gateway?.authToken;
-		issues.push({
-			id: "gateway-token",
-			severity: hasToken ? "ok" : "warn",
-			title: hasToken ? "Gateway auth token set" : "Gateway auth token missing",
-			detail: hasToken ? "Token is configured" : "Set a strong token in gateway config",
-			fixable: !hasToken,
-			fix: async () => {
-				const crypto = await import("crypto");
-				cfg.gateway = cfg.gateway || {};
-				cfg.gateway.authToken = crypto.randomBytes(32).toString("hex");
-				fs_extra.default.writeJsonSync(configFile, cfg, { spaces: 2 });
-				console.log(chalk.default.green("  ✔  Generated and saved gateway auth token"));
-			}
-		});
-		const channels = cfg.channels || [];
-		const channelConfigs = cfg.channelConfigs || {};
-		for (const ch of channels) {
-			const dmPolicy = channelConfigs[ch]?.dmPolicy?.policy;
-			if (dmPolicy === "open") issues.push({
-				id: `dm-open-${ch}`,
-				severity: "warn",
-				title: `DM policy is "open" on ${ch}`,
-				detail: `Anyone can DM your agent on ${ch}. Consider using "pairing" or "allowlist".`,
-				fixable: false
-			});
-			if (dmPolicy === "allowlist") {
-				const allowFrom = channelConfigs[ch]?.dmPolicy?.allowFrom || [];
-				if (allowFrom.length === 0) issues.push({
-					id: `dm-empty-allowlist-${ch}`,
-					severity: "error",
-					title: `Empty allowlist on ${ch} — DMs will be silently dropped`,
-					detail: `channel.${ch}.dmPolicy.allowFrom is empty. Add users or change policy.`,
-					fixable: true,
-					fix: async () => {
-						try {
-							const pairingEntries = fs_extra.default.readJsonSync(pairingFile);
-							const approved = pairingEntries.filter((e) => e.channelId === ch && e.status === "approved" && e.userId);
-							if (approved.length > 0) {
-								channelConfigs[ch].dmPolicy.allowFrom = approved.map((e) => e.userId);
-								cfg.channelConfigs = channelConfigs;
-								fs_extra.default.writeJsonSync(configFile, cfg, { spaces: 2 });
-								console.log(chalk.default.green(`  ✔  Restored ${approved.length} user(s) from pairing store to ${ch} allowlist`));
-							}
-						} catch {}
-					}
-				});
-			}
-		}
-		const hasApiKey = !!cfg.provider?.apiKey;
-		const isLocal = cfg.provider?.providerId === "local";
-		if (!hasApiKey && !isLocal) issues.push({
-			id: "no-api-key",
-			severity: "error",
-			title: "No AI provider API key configured",
-			detail: "Run: hyperclaw config set-key",
-			fixable: false
-		});
-		else issues.push({
-			id: "api-key",
-			severity: "ok",
-			title: "AI provider key configured",
-			detail: `Provider: ${cfg.provider?.providerId}`,
-			fixable: false
-		});
-		issues.push({
-			id: "agents-md",
-			severity: await fs_extra.default.pathExists(agentsFile) ? "ok" : "warn",
-			title: await fs_extra.default.pathExists(agentsFile) ? "AGENTS.md exists" : "AGENTS.md missing",
-			detail: await fs_extra.default.pathExists(agentsFile) ? agentsFile : "Run: hyperclaw memory init to generate",
-			fixable: false
-		});
-		const port = cfg.gateway?.port || 1515;
-		const running = await isPortOpen(port);
-		issues.push({
-			id: "gateway-running",
-			severity: running ? "ok" : "warn",
-			title: running ? `Gateway running on port ${port}` : `Gateway not running on port ${port}`,
-			detail: running ? `ws://127.0.0.1:${port}` : "Run: hyperclaw daemon start",
-			fixable: false
-		});
-		if (await fs_extra.default.pathExists(authFile)) {
-			const stat = await fs_extra.default.stat(authFile);
-			const unsafe = (stat.mode & 63) !== 0;
-			issues.push({
-				id: "auth-permissions",
-				severity: unsafe ? "warn" : "ok",
-				title: unsafe ? "Auth store has unsafe permissions" : "Auth store permissions OK",
-				detail: unsafe ? `chmod 600 ${authFile}` : `Mode: 600`,
-				fixable: unsafe,
-				fix: async () => {
-					await fs_extra.default.chmod(authFile, 384);
-					console.log(chalk.default.green(`  ✔  Fixed permissions on ${authFile}`));
-				}
-			});
-		}
-	}
-	console.log(chalk.default.bold.cyan("\n  🩺 HYPERCLAW DOCTOR\n"));
-	let errorCount = 0, warnCount = 0;
-	for (const issue of issues) {
-		const icon = {
-			error: chalk.default.red("✖"),
-			warn: chalk.default.yellow("⚠"),
-			ok: chalk.default.green("✔")
-		}[issue.severity];
-		console.log(`  ${icon} ${chalk.default.white(issue.title)}`);
-		console.log(`     ${chalk.default.gray(issue.detail)}`);
-		if (issue.fixable && fix && issue.fix) await issue.fix();
-		else if (issue.fixable && !fix) console.log(chalk.default.gray("     Run with --fix to auto-repair"));
-		if (issue.severity === "error") errorCount++;
-		if (issue.severity === "warn") warnCount++;
-		console.log();
-	}
-	const total = issues.length;
-	const okCount = total - errorCount - warnCount;
-	console.log(`  ${chalk.default.bold("Summary:")} ${chalk.default.green(`${okCount} ok`)}  ${chalk.default.yellow(`${warnCount} warnings`)}  ${chalk.default.red(`${errorCount} errors`)}`);
-	if (errorCount > 0 || warnCount > 0) console.log(chalk.default.gray("\n  Run: hyperclaw doctor --fix   to auto-repair fixable issues\n"));
-	else console.log(chalk.default.green("\n  ✔  All checks passed!\n"));
-}
-
 //#endregion
 //#region src/commands/message-send.ts
 async function sendMessage(opts) {
@@ -2266,7 +1496,7 @@ var init_queue = require_chunk.__esm({ "src/delivery/queue.ts"() {
 //#endregion
 //#region src/cli/run-main.ts
 const program = new commander.Command();
-program.name("hyperclaw").description("⚡ HyperClaw — AI Gateway Platform. The Lobster Evolution 🦅").version("4.0.1");
+program.name("hyperclaw").description("⚡ HyperClaw — AI Gateway Platform. The Lobster Evolution 🦅").version("4.0.2");
 program.command("init").description("Initialize HyperClaw with interactive wizard").option("-a, --auto-config", "Auto-configure with defaults").option("-d, --daemon", "Install as system daemon").option("-s, --start-now", "Start gateway after setup").action(async (opts) => {
 	await new require_onboard.Banner().showNeonBanner(false);
 	await new require_onboard.HyperClawWizard().run(opts);
@@ -2275,22 +1505,22 @@ program.command("init").description("Initialize HyperClaw with interactive wizar
 program.command("onboard").description("Full onboarding wizard — preferred setup path").option("--install-daemon", "Auto-install system daemon (starts on boot, grants full PC access)").option("--quick", "Use QuickStart mode (skip advanced options)").action(async (opts) => {
 	await new require_onboard.Banner().showNeonBanner(false);
 	if (opts.installDaemon) {
-		const chalk$13 = require("chalk");
-		console.log(chalk$13.yellow("\n  ⚠  --install-daemon mode\n"));
-		console.log(chalk$13.gray("  The daemon will run as a background system service and will have:\n"));
-		console.log(chalk$13.white("    • Full shell / command execution on this machine"));
-		console.log(chalk$13.white("    • File system read & write access"));
-		console.log(chalk$13.white("    • Network access (gateway WebSocket)"));
-		console.log(chalk$13.white("    • Auto-start on every system boot\n"));
-		const inquirer$3 = require("inquirer");
-		const { confirmed } = await inquirer$3.prompt([{
+		const chalk$10 = require("chalk");
+		console.log(chalk$10.yellow("\n  ⚠  --install-daemon mode\n"));
+		console.log(chalk$10.gray("  The daemon will run as a background system service and will have:\n"));
+		console.log(chalk$10.white("    • Full shell / command execution on this machine"));
+		console.log(chalk$10.white("    • File system read & write access"));
+		console.log(chalk$10.white("    • Network access (gateway WebSocket)"));
+		console.log(chalk$10.white("    • Auto-start on every system boot\n"));
+		const inquirer$2 = require("inquirer");
+		const { confirmed } = await inquirer$2.prompt([{
 			type: "confirm",
 			name: "confirmed",
 			message: "I understand and want to continue with full PC access:",
 			default: false
 		}]);
 		if (!confirmed) {
-			console.log(chalk$13.gray("\n  Cancelled. Run without --install-daemon to choose during setup.\n"));
+			console.log(chalk$10.gray("\n  Cancelled. Run without --install-daemon to choose during setup.\n"));
 			process.exit(0);
 		}
 	}
@@ -2332,7 +1562,7 @@ gatewayCmd.command("restart").description("Restart the gateway service").action(
 	const dm = new require_onboard.DaemonManager();
 	await dm.restart();
 });
-program.command("daemon").description("Manage HyperClaw system service (alias: gateway)").argument("<action>", "start|stop|restart|status|logs").action(async (action) => {
+program.command("daemon").description("Manage HyperClaw system service (alias: gateway)").argument("<action>", "start|stop|restart|status|logs|install|uninstall").action(async (action) => {
 	const dm = new require_onboard.DaemonManager();
 	if (action === "start") await new require_onboard.Banner().showNeonBanner(true);
 	await dm.handle(action);
@@ -2341,20 +1571,20 @@ program.command("daemon").description("Manage HyperClaw system service (alias: g
 });
 const sandboxCmd = program.command("sandbox").description("Debug sandbox and tool policy");
 sandboxCmd.command("explain").description("Show effective sandbox mode, tool policy, and allowed tools").option("--json", "Output as JSON").action(async (opts) => {
-	const chalk$13 = require("chalk");
-	const fs$10 = require("fs-extra");
-	const path$10 = require("path");
-	const os$9 = require("os");
+	const chalk$10 = require("chalk");
+	const fs$6 = require("fs-extra");
+	const path$6 = require("path");
+	const os$7 = require("os");
 	const { getConfigPath } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
 	const cfgPath = getConfigPath();
 	let cfg = {};
 	try {
-		cfg = await fs$10.readJson(cfgPath);
+		cfg = await fs$6.readJson(cfgPath);
 	} catch {}
 	const sandboxMode = cfg?.agents?.defaults?.sandbox?.mode ?? "non-main";
 	const toolsCfg = cfg?.tools ?? {};
-	const { describeToolPolicy, applyToolPolicy } = await Promise.resolve().then(() => require("./tool-policy-CFF-d5fs.js"));
-	const { getBuiltinTools, getSessionsTools, getPCAccessTools, getBrowserTools, getExtractionTools, getWebsiteWatchTools, getVisionTools } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { describeToolPolicy, applyToolPolicy } = await Promise.resolve().then(() => require("./tool-policy-DNvNRnve.js"));
+	const { getBuiltinTools, getSessionsTools, getPCAccessTools, getBrowserTools, getExtractionTools, getWebsiteWatchTools, getVisionTools } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	const allTools = [
 		...getBuiltinTools(),
 		...getSessionsTools(() => null),
@@ -2382,15 +1612,15 @@ sandboxCmd.command("explain").description("Show effective sandbox mode, tool pol
 		}, null, 2));
 		process.exit(0);
 	}
-	console.log(chalk$13.bold.hex("#06b6d4")("\n  🔒 SANDBOX EXPLAIN\n"));
+	console.log(chalk$10.bold.hex("#06b6d4")("\n  🔒 SANDBOX EXPLAIN\n"));
 	console.log(`  Sandbox mode:  ${sandboxMode} (non-main sessions get restricted pcTools)`);
 	console.log(`  Tool profile:  ${policy.profile}`);
 	console.log(`  Policy source: ${policy.source}`);
 	if (policy.allow?.length) console.log(`  Allow:         ${policy.allow.join(", ")}`);
 	if (policy.deny?.length) console.log(`  Deny:          ${policy.deny.join(", ")}`);
 	console.log(`  Tools:         ${filtered.length} / ${allTools.length} allowed`);
-	console.log(chalk$13.gray("\n  Allowed: " + filtered.map((t) => t.name).join(", ")));
-	console.log(chalk$13.gray("\n  Elevated: " + ((cfg?.tools?.elevated)?.enabled ? "enabled" : "disabled")));
+	console.log(chalk$10.gray("\n  Allowed: " + filtered.map((t) => t.name).join(", ")));
+	console.log(chalk$10.gray("\n  Elevated: " + ((cfg?.tools?.elevated)?.enabled ? "enabled" : "disabled")));
 	console.log();
 	process.exit(0);
 });
@@ -2430,15 +1660,15 @@ hooksCmd.command("install <pack>").description("Install a hook pack").action(asy
 });
 const agentsCmd = program.command("agents").description("Multi-agent routing");
 agentsCmd.command("bindings").description("List agent ↔ channel bindings").action(() => {
-	new AgentRouter().listBindings();
+	new require_agents_routing.AgentRouter().listBindings();
 	process.exit(0);
 });
 agentsCmd.command("bind").description("Bind a channel to an agent workspace").action(async () => {
-	await new AgentRouter().bind();
+	await new require_agents_routing.AgentRouter().bind();
 	process.exit(0);
 });
 agentsCmd.command("unbind").description("Remove channel ↔ agent bindings").action(async () => {
-	await new AgentRouter().unbind();
+	await new require_agents_routing.AgentRouter().unbind();
 	process.exit(0);
 });
 const pairingCmd = program.command("pairing").description("DM pairing codes");
@@ -2456,7 +1686,7 @@ msgCmd.command("send").description("Send a message via a configured channel").op
 	process.exit(0);
 });
 program.command("hub").description("Skill hub — browse marketplace, install, scan skills").option("-i, --install <id>", "Install skill").option("-s, --scan <id>", "Security scan a skill").option("-m, --marketplace", "ClawHub-style marketplace view (installed + bundled)").option("--force", "Force install (bypass risk block)").option("--hide-suspicious", "Hide suspicious/dangerous skills").action(async (opts) => {
-	const hub = new SkillHub();
+	const hub = new require_hub.SkillHub();
 	if (opts.scan) await hub.scan(opts.scan);
 	else if (opts.install) await hub.install(opts.install, opts.force);
 	else if (opts.marketplace) await hub.showMarketplace({ hideSuspicious: opts.hideSuspicious });
@@ -2465,7 +1695,7 @@ program.command("hub").description("Skill hub — browse marketplace, install, s
 });
 const skillCmd = program.command("skill").description("ClawHub — search and install skills from registry");
 skillCmd.command("search [query]").description("Search ClawHub for skills").option("-c, --category <cat>", "Filter by category").action(async (query, opts) => {
-	const hub = new SkillHub();
+	const hub = new require_hub.SkillHub();
 	const q = query || "";
 	const skills = await hub.searchClawHub(q, opts.category);
 	if (skills.length === 0) {
@@ -2483,11 +1713,11 @@ skillCmd.command("search [query]").description("Search ClawHub for skills").opti
 	process.exit(0);
 });
 skillCmd.command("list").description("List installed skills (bundled + ClawHub)").action(async () => {
-	const hub = new SkillHub();
+	const hub = new require_hub.SkillHub();
 	const installed = await hub.getInstalled();
 	console.log(chalk.default.bold.hex("#06b6d4")("\n  Installed skills:\n"));
 	for (const s of installed) {
-		const src = SKILL_REGISTRY.some((r) => r.id === s.id) ? "" : " (ClawHub)";
+		const src = require_hub.SKILL_REGISTRY.some((r) => r.id === s.id) ? "" : " (ClawHub)";
 		console.log(`  ${chalk.default.hex("#06b6d4")("✓")} ${s.name} ${chalk.default.gray(`(${s.id})${src}`)}`);
 	}
 	if (installed.length === 0) console.log(chalk.default.gray("  No skills installed. Run: hyperclaw hub or hyperclaw skill search <query>\n"));
@@ -2495,14 +1725,14 @@ skillCmd.command("list").description("List installed skills (bundled + ClawHub)"
 	process.exit(0);
 });
 skillCmd.command("install <id>").description("Install skill from ClawHub (or bundled when registry unavailable)").option("-v, --version <ver>", "Pin version (e.g. 2.0.0)").option("--force", "Force install (bypass risk block for bundled)").action(async (id, opts) => {
-	const hub = new SkillHub();
-	const ora$6 = (await import("ora")).default;
-	const s = ora$6(`Installing ${id}...`).start();
+	const hub = new require_hub.SkillHub();
+	const ora$4 = (await import("ora")).default;
+	const s = ora$4(`Installing ${id}...`).start();
 	try {
 		const dest = await hub.installFromClawHub(id, opts.version);
 		s.succeed(`Installed to ${dest}`);
 	} catch (e) {
-		const match = SKILL_REGISTRY.find((x) => x.id === id);
+		const match = require_hub.SKILL_REGISTRY.find((x) => x.id === id);
 		if (match) {
 			await hub.install(id, !!opts?.force);
 			s.succeed(`Installed bundled skill: ${match.name}`);
@@ -2511,13 +1741,13 @@ skillCmd.command("install <id>").description("Install skill from ClawHub (or bun
 	process.exit(0);
 });
 program.command("menu-bar").description("Launch macOS menu bar companion (Electron tray app)").action(async () => {
-	const path$10 = await import("path");
+	const path$6 = await import("path");
 	const { spawn } = await import("child_process");
-	const fs$10 = await import("fs-extra");
-	const root = path$10.join(process.cwd(), "apps", "macos");
-	const altRoot = path$10.join(__dirname, "..", "..", "apps", "macos");
-	const macosDir = await fs$10.pathExists(root) ? root : await fs$10.pathExists(altRoot) ? altRoot : null;
-	if (!macosDir || !await fs$10.pathExists(path$10.join(macosDir, "package.json"))) {
+	const fs$6 = await import("fs-extra");
+	const root = path$6.join(process.cwd(), "apps", "macos");
+	const altRoot = path$6.join(__dirname, "..", "..", "apps", "macos");
+	const macosDir = await fs$6.pathExists(root) ? root : await fs$6.pathExists(altRoot) ? altRoot : null;
+	if (!macosDir || !await fs$6.pathExists(path$6.join(macosDir, "package.json"))) {
 		console.log(chalk.default.gray("\n  macOS menu bar app not found."));
 		console.log(chalk.default.gray("  Run from HyperClaw repo root, or: cd apps/macos && npm start\n"));
 		process.exit(1);
@@ -2545,7 +1775,7 @@ program.command("update").description("Update HyperClaw").option("-c, --channel
 	process.exit(0);
 });
 program.command("doctor").description("Health check — surfaces misconfigs and risky DM policies").option("--fix", "Auto-repair fixable issues").action(async (opts) => {
-	await runDoctor(opts.fix);
+	await require_doctor.runDoctor(opts.fix);
 	process.exit(0);
 });
 const memCmd = program.command("memory").description("Agent memory management");
@@ -2591,12 +1821,12 @@ cfgCmd.command("set-key <KEY=value>").description("Set an API key or config valu
 	process.exit(0);
 });
 cfgCmd.command("set-service-key <serviceId> [apiKey]").description("Set API key for a service (hackerone, bugcrowd, synack, or custom). Prompts if apiKey omitted.").action(async (serviceId, apiKey) => {
-	const inquirer$3 = (await import("inquirer")).default;
+	const inquirer$2 = (await import("inquirer")).default;
 	const config = new require_manager.ConfigManager();
 	const cfg = await config.load();
 	let key = apiKey;
 	if (!key || key.trim().length === 0) {
-		const r = await inquirer$3.prompt([{
+		const r = await inquirer$2.prompt([{
 			type: "password",
 			name: "k",
 			message: `API key for ${serviceId}:`,
@@ -2627,7 +1857,7 @@ cfgCmd.command("set-service-key <serviceId> [apiKey]").description("Set API key
 cfgCmd.command("schema").description("Show configuration schema").action(() => {
 	console.log(chalk.default.bold.hex("#06b6d4")("\n  Config schema: ~/.hyperclaw/config.json\n"));
 	const schema = {
-		version: "string (e.g. \"4.0.1\")",
+		version: "string (e.g. \"4.0.2\")",
 		workspaceName: "string",
 		provider: {
 			providerId: "string",
@@ -2720,17 +1950,17 @@ program.command("deploy").description("Deploy gateway to cloud (Fly.io or Render
 program.command("voice-call").description("Start voice call session — terminal mode, talks to gateway").option("-u, --gateway-url <url>", "Gateway URL", "http://localhost:18789").action(async (opts) => {
 	const axios = (await import("axios")).default;
 	const readline$2 = await import("readline");
-	const chalk$13 = require("chalk");
+	const chalk$10 = require("chalk");
 	const url = opts.gatewayUrl || "http://localhost:18789";
-	console.log(chalk$13.bold.cyan("\n  🎙️  HYPERCLAW VOICE CALL\n"));
-	console.log(chalk$13.gray(`  Gateway: ${url}`));
-	console.log(chalk$13.gray("  Type a message and press Enter. Ctrl+C to exit.\n"));
+	console.log(chalk$10.bold.cyan("\n  🎙️  HYPERCLAW VOICE CALL\n"));
+	console.log(chalk$10.gray(`  Gateway: ${url}`));
+	console.log(chalk$10.gray("  Type a message and press Enter. Ctrl+C to exit.\n"));
 	const rl = readline$2.createInterface({
 		input: process.stdin,
 		output: process.stdout
 	});
 	const ask = () => {
-		rl.question(chalk$13.cyan("  You: "), async (input) => {
+		rl.question(chalk$10.cyan("  You: "), async (input) => {
 			if (!input?.trim()) {
 				ask();
 				return;
@@ -2740,9 +1970,9 @@ program.command("voice-call").description("Start voice call session — terminal
 					message: input.trim(),
 					thinking: "none"
 				}, { timeout: 6e4 });
-				console.log(chalk$13.green(`  🦅 Agent: ${(res.data?.response || "").slice(0, 500)}\n`));
+				console.log(chalk$10.green(`  🦅 Agent: ${(res.data?.response || "").slice(0, 500)}\n`));
 			} catch (e) {
-				console.log(chalk$13.red(`  Error: ${e.response?.data?.error || e.message}\n`));
+				console.log(chalk$10.red(`  Error: ${e.response?.data?.error || e.message}\n`));
 			}
 			ask();
 		});
@@ -2809,45 +2039,45 @@ themeCmd.command("preview").description("Preview all themes side-by-side").actio
 });
 const secretsCmd = program.command("secrets").description("External secrets management");
 secretsCmd.command("audit").description("Audit all required secrets").option("--required-by <ids>", "Filter by skill/provider IDs (comma-separated)").action(async (opts) => {
-	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DOWs9lLX.js"));
+	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DgyF52mg.js"));
 	const filter = opts.requiredBy?.split(",");
 	await new SecretsManager().audit(filter);
 	process.exit(0);
 });
 secretsCmd.command("set <KEY=value>").description("Set a secret in .env file").action(async (kv) => {
-	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DOWs9lLX.js"));
+	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DgyF52mg.js"));
 	await new SecretsManager().set(kv);
 	process.exit(0);
 });
 secretsCmd.command("apply").description("Write secrets from .env to shell config (~/.bashrc, ~/.zshrc)").action(async () => {
-	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DOWs9lLX.js"));
+	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DgyF52mg.js"));
 	await new SecretsManager().apply();
 	process.exit(0);
 });
 secretsCmd.command("reload").description("Reload secrets into running gateway").action(async () => {
-	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DOWs9lLX.js"));
+	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DgyF52mg.js"));
 	await new SecretsManager().reload();
 	process.exit(0);
 });
 secretsCmd.command("remove <key>").description("Remove a secret from .env").action(async (key) => {
-	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DOWs9lLX.js"));
+	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DgyF52mg.js"));
 	await new SecretsManager().remove(key);
 	process.exit(0);
 });
 secretsCmd.command("credentials").description("List provider credential files (credentials/*.json)").action(async () => {
-	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-B3anVuZD.js"));
+	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-BvnMPJwi.js"));
 	await new CredentialsStore().showList();
 	process.exit(0);
 });
 const securityCmd = program.command("security").description("Security tools");
 securityCmd.command("audit").description("Security audit — file permissions, DM policies, embedded secrets").option("--deep", "Full deep scan including token entropy and installed skill risks").action(async (opts) => {
-	const { runSecurityAudit } = await Promise.resolve().then(() => require("./audit-BTLzQBk-.js"));
+	const { runSecurityAudit } = await Promise.resolve().then(() => require("./audit-BYxPlnTQ.js"));
 	await runSecurityAudit(opts.deep);
 	process.exit(0);
 });
 const agentRunCmd = program.command("agent").description("Run agent with thinking control");
 agentRunCmd.requiredOption("-m, --message <text>", "Message to send to the agent").option("--thinking <level>", "Thinking level: high|medium|low|none", "none").option("--model <model>", "Override model").option("--session <id>", "Session/thread ID").option("--multi-step", "Decompose into steps and run each (sequential)").option("--parallel", "Run sub-agents in parallel for independent subtasks").option("--verbose", "Show thinking blocks and request details").option("--workspace <dir>", "Override workspace directory").action(async (opts) => {
-	const { runAgent } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { runAgent } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	await runAgent({
 		message: opts.message,
 		thinking: opts.thinking,
@@ -2863,7 +2093,7 @@ agentRunCmd.requiredOption("-m, --message <text>", "Message to send to the agent
 });
 const threadsCmd = program.command("threads").description("ACP thread-bound agent sessions");
 threadsCmd.command("list").description("List agent threads").option("--channel <id>", "Filter by channel").option("--active", "Show only active threads").action(async (opts) => {
-	const { ACPThreadManager } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { ACPThreadManager } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	const mgr = new ACPThreadManager();
 	const threads = await mgr.list({
 		channelId: opts.channel,
@@ -2873,33 +2103,33 @@ threadsCmd.command("list").description("List agent threads").option("--channel <
 	process.exit(0);
 });
 threadsCmd.command("terminate <id>").description("Terminate a thread").action(async (id) => {
-	const { ACPThreadManager } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { ACPThreadManager } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	await new ACPThreadManager().terminate(id);
 	console.log(require("chalk").green(`\n  ✔  Thread terminated: ${id}\n`));
 	process.exit(0);
 });
 const canvasCmd = program.command("canvas").description("Live AI-driven UI canvas");
 canvasCmd.command("show").description("Show current canvas components").action(async () => {
-	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-CN8ePGog.js"));
+	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-pqlDRKbH.js"));
 	await new CanvasRenderer().show();
 	process.exit(0);
 });
 canvasCmd.command("add <type> <title>").description("Add a canvas component (type: chart|table|form|markdown|image|custom)").action(async (type, title) => {
-	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-CN8ePGog.js"));
+	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-pqlDRKbH.js"));
 	await new CanvasRenderer().addComponent(type, title);
 	process.exit(0);
 });
 canvasCmd.command("clear").description("Clear all canvas components").action(async () => {
-	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-CN8ePGog.js"));
+	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-pqlDRKbH.js"));
 	await new CanvasRenderer().clear();
 	process.exit(0);
 });
 canvasCmd.command("export").description("Export canvas as HTML file").action(async () => {
-	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-CN8ePGog.js"));
-	const fs$10 = require("fs-extra");
+	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-pqlDRKbH.js"));
+	const fs$6 = require("fs-extra");
 	const html = await new CanvasRenderer().exportHtml();
 	const outFile = require("path").join(require("os").homedir(), ".hyperclaw", "canvas", "export.html");
-	await fs$10.writeFile(outFile, html);
+	await fs$6.writeFile(outFile, html);
 	console.log(require("chalk").green(`\n  ✔  Canvas exported to ${outFile}\n`));
 	process.exit(0);
 });
@@ -2916,167 +2146,167 @@ deliveryCmd.command("retry <id>").description("Retry a dead-lettered delivery it
 });
 const mcpCmd = program.command("mcp").description("MCP (Model Context Protocol) server management");
 mcpCmd.command("list").action(async () => {
-	const { mcpList } = await Promise.resolve().then(() => require("./mcp-D0qVYL4A.js"));
+	const { mcpList } = await Promise.resolve().then(() => require("./mcp-B_9Ber63.js"));
 	await mcpList();
 	process.exit(0);
 });
 mcpCmd.command("add").action(async () => {
-	const { mcpAdd } = await Promise.resolve().then(() => require("./mcp-D0qVYL4A.js"));
+	const { mcpAdd } = await Promise.resolve().then(() => require("./mcp-B_9Ber63.js"));
 	await mcpAdd();
 	process.exit(0);
 });
 mcpCmd.command("remove <id>").action(async (id) => {
-	const { mcpRemove } = await Promise.resolve().then(() => require("./mcp-D0qVYL4A.js"));
+	const { mcpRemove } = await Promise.resolve().then(() => require("./mcp-B_9Ber63.js"));
 	await mcpRemove(id);
 	process.exit(0);
 });
 mcpCmd.command("probe [id]").action(async (id) => {
-	const { mcpProbe } = await Promise.resolve().then(() => require("./mcp-D0qVYL4A.js"));
+	const { mcpProbe } = await Promise.resolve().then(() => require("./mcp-B_9Ber63.js"));
 	await mcpProbe(id);
 	process.exit(0);
 });
 const nodeCmd = program.command("node").description("HyperClaw node management (local, remote, android)");
 nodeCmd.command("list").action(async () => {
-	const { nodeList } = await Promise.resolve().then(() => require("./node-CHBOeMvu.js"));
+	const { nodeList } = await Promise.resolve().then(() => require("./node-pwL6O_KX.js"));
 	await nodeList();
 	process.exit(0);
 });
 nodeCmd.command("add").action(async () => {
-	const { nodeAdd } = await Promise.resolve().then(() => require("./node-CHBOeMvu.js"));
+	const { nodeAdd } = await Promise.resolve().then(() => require("./node-pwL6O_KX.js"));
 	await nodeAdd();
 	process.exit(0);
 });
 nodeCmd.command("probe [id]").action(async (id) => {
-	const { nodeProbe } = await Promise.resolve().then(() => require("./node-CHBOeMvu.js"));
+	const { nodeProbe } = await Promise.resolve().then(() => require("./node-pwL6O_KX.js"));
 	await nodeProbe(id);
 	process.exit(0);
 });
 nodeCmd.command("remove <id>").action(async (id) => {
-	const { nodeRemove } = await Promise.resolve().then(() => require("./node-CHBOeMvu.js"));
+	const { nodeRemove } = await Promise.resolve().then(() => require("./node-pwL6O_KX.js"));
 	await nodeRemove(id);
 	process.exit(0);
 });
 const arCmd = program.command("auto-reply").description("Auto-reply rule engine");
 arCmd.command("list").action(async () => {
-	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-Dp4iYVQ4.js"));
+	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-BooT_qFP.js"));
 	const e = new AutoReplyEngine();
 	await e.load();
 	e.showList();
 	process.exit(0);
 });
 arCmd.command("toggle <id>").action(async (id) => {
-	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-Dp4iYVQ4.js"));
+	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-BooT_qFP.js"));
 	const e = new AutoReplyEngine();
 	await e.toggle(id);
 	process.exit(0);
 });
 arCmd.command("remove <id>").action(async (id) => {
-	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-Dp4iYVQ4.js"));
+	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-BooT_qFP.js"));
 	const e = new AutoReplyEngine();
 	await e.remove(id);
 	process.exit(0);
 });
 const gmailCmd = program.command("gmail").description("Gmail Pub/Sub real-time notifications");
 gmailCmd.command("watch-setup").description("Register Gmail watch for push notifications. Requires: hyperclaw auth oauth google-gmail").requiredOption("-t, --topic <name>", "Pub/Sub topic (e.g. projects/myproject/topics/gmail-push)").option("-l, --labels <ids>", "Label IDs to watch (comma-separated)", "INBOX").action(async (opts) => {
-	const chalk$13 = require("chalk");
+	const chalk$10 = require("chalk");
 	try {
-		const { setupGmailWatch } = await Promise.resolve().then(() => require("./gmail-watch-setup-C6_zNpp1.js"));
+		const { setupGmailWatch } = await Promise.resolve().then(() => require("./gmail-watch-setup-Czt8rXaX.js"));
 		const labelIds = opts.labels.split(",").map((s) => s.trim()).filter(Boolean);
 		const result = await setupGmailWatch({
 			topicName: opts.topic,
 			labelIds
 		});
-		console.log(chalk$13.hex("#06b6d4")("\n  ✔  Gmail watch registered"));
-		console.log(chalk$13.gray(`     historyId: ${result.historyId}`));
-		console.log(chalk$13.gray(`     expiration: ${new Date(parseInt(result.expiration, 10)).toISOString()}`));
-		console.log(chalk$13.gray("\n  Push endpoint: https://<your-server>/webhook/gmail-pubsub"));
-		console.log(chalk$13.gray("  Ensure email channel is enabled and gateway is publicly accessible.\n"));
+		console.log(chalk$10.hex("#06b6d4")("\n  ✔  Gmail watch registered"));
+		console.log(chalk$10.gray(`     historyId: ${result.historyId}`));
+		console.log(chalk$10.gray(`     expiration: ${new Date(parseInt(result.expiration, 10)).toISOString()}`));
+		console.log(chalk$10.gray("\n  Push endpoint: https://<your-server>/webhook/gmail-pubsub"));
+		console.log(chalk$10.gray("  Ensure email channel is enabled and gateway is publicly accessible.\n"));
 	} catch (e) {
-		console.error(chalk$13.red("\n  ✖  " + e.message + "\n"));
+		console.error(chalk$10.red("\n  ✖  " + e.message + "\n"));
 		process.exit(1);
 	}
 	process.exit(0);
 });
 const cronCmd = program.command("cron").description("Scheduled tasks (cron → agent prompt)");
 cronCmd.command("list").action(async () => {
-	const chalk$13 = require("chalk");
-	const { loadCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-Bl9yuyCa.js"));
+	const chalk$10 = require("chalk");
+	const { loadCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-BvDFNyiE.js"));
 	const tasks = await loadCronTasks();
-	console.log(chalk$13.bold.cyan("\n  ⏰ CRON TASKS\n"));
+	console.log(chalk$10.bold.cyan("\n  ⏰ CRON TASKS\n"));
 	if (tasks.length === 0) {
-		console.log(chalk$13.gray("  No tasks. Add: hyperclaw cron add \"0 9 * * 1-5\" \"Check calendar\"\n"));
+		console.log(chalk$10.gray("  No tasks. Add: hyperclaw cron add \"0 9 * * 1-5\" \"Check calendar\"\n"));
 		process.exit(0);
 		return;
 	}
 	for (const t of tasks) {
-		const dot = t.enabled ? chalk$13.green("●") : chalk$13.gray("○");
-		console.log(`  ${dot} ${chalk$13.white(t.name || t.id)}`);
-		console.log(`     ${chalk$13.gray("Schedule:")} ${t.schedule}`);
-		console.log(`     ${chalk$13.gray("Prompt:")} ${t.prompt.slice(0, 60)}${t.prompt.length > 60 ? "..." : ""}`);
-		if (t.lastRunAt) console.log(`     ${chalk$13.gray("Last run:")} ${t.lastRunAt}`);
+		const dot = t.enabled ? chalk$10.green("●") : chalk$10.gray("○");
+		console.log(`  ${dot} ${chalk$10.white(t.name || t.id)}`);
+		console.log(`     ${chalk$10.gray("Schedule:")} ${t.schedule}`);
+		console.log(`     ${chalk$10.gray("Prompt:")} ${t.prompt.slice(0, 60)}${t.prompt.length > 60 ? "..." : ""}`);
+		if (t.lastRunAt) console.log(`     ${chalk$10.gray("Last run:")} ${t.lastRunAt}`);
 		console.log();
 	}
 	process.exit(0);
 });
 cronCmd.command("add").arguments("<schedule> <prompt>").option("-n, --name <name>", "Task name").action(async (schedule, prompt, opts) => {
-	const chalk$13 = require("chalk");
-	const { loadCronTasks, addCronTask, saveCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-Bl9yuyCa.js"));
+	const chalk$10 = require("chalk");
+	const { loadCronTasks, addCronTask, saveCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-BvDFNyiE.js"));
 	await loadCronTasks();
 	addCronTask(schedule, prompt, opts.name);
 	await saveCronTasks();
-	console.log(chalk$13.green(`\n  ✔  Cron task added: ${schedule} → "${prompt.slice(0, 40)}..."\n`));
-	console.log(chalk$13.gray("  Restart gateway to apply.\n"));
+	console.log(chalk$10.green(`\n  ✔  Cron task added: ${schedule} → "${prompt.slice(0, 40)}..."\n`));
+	console.log(chalk$10.gray("  Restart gateway to apply.\n"));
 	process.exit(0);
 });
 cronCmd.command("remove <id>").action(async (id) => {
-	const chalk$13 = require("chalk");
-	const { loadCronTasks, removeCronTask, saveCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-Bl9yuyCa.js"));
+	const chalk$10 = require("chalk");
+	const { loadCronTasks, removeCronTask, saveCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-BvDFNyiE.js"));
 	await loadCronTasks();
 	if (removeCronTask(id)) {
 		await saveCronTasks();
-		console.log(chalk$13.green(`\n  ✔  Task removed\n`));
-	} else console.log(chalk$13.red(`\n  ✖  Task not found: ${id}\n`));
+		console.log(chalk$10.green(`\n  ✔  Task removed\n`));
+	} else console.log(chalk$10.red(`\n  ✖  Task not found: ${id}\n`));
 	process.exit(0);
 });
 program.command("nodes").description("List connected mobile nodes (iOS/Android Connect tab)").action(async () => {
-	const chalk$13 = require("chalk");
-	const http$2 = await import("http");
-	const fs$10 = await import("fs-extra");
-	const path$10 = await import("path");
-	const os$9 = await import("os");
+	const chalk$10 = require("chalk");
+	const http = await import("http");
+	const fs$6 = await import("fs-extra");
+	const path$6 = await import("path");
+	const os$7 = await import("os");
 	let port = 18789;
 	try {
-		const cfg = await fs$10.readJson(path$10.join(os$9.homedir(), ".hyperclaw", "hyperclaw.json"));
+		const cfg = await fs$6.readJson(path$6.join(os$7.homedir(), ".hyperclaw", "hyperclaw.json"));
 		port = cfg?.gateway?.port ?? 18789;
 	} catch {}
 	return new Promise((resolve, reject) => {
-		const req = http$2.get(`http://127.0.0.1:${port}/api/nodes`, (res) => {
+		const req = http.get(`http://127.0.0.1:${port}/api/nodes`, (res) => {
 			let data = "";
 			res.on("data", (c) => data += c);
 			res.on("end", () => {
 				try {
 					const j = JSON.parse(data);
 					const nodes = j.nodes || [];
-					console.log(chalk$13.bold.cyan("\n  📱 CONNECTED NODES\n"));
+					console.log(chalk$10.bold.cyan("\n  📱 CONNECTED NODES\n"));
 					if (nodes.length === 0) {
-						console.log(chalk$13.gray("  No mobile nodes. Open iOS/Android app → Connect tab → pair with gateway."));
-						console.log(chalk$13.gray(`  Gateway: ws://localhost:${port}\n`));
+						console.log(chalk$10.gray("  No mobile nodes. Open iOS/Android app → Connect tab → pair with gateway."));
+						console.log(chalk$10.gray(`  Gateway: ws://localhost:${port}\n`));
 					} else {
 						for (const n of nodes) {
-							console.log(`  ${chalk$13.green("●")} ${n.nodeId} ${chalk$13.gray(`(${n.platform || "?"})`)}`);
-							console.log(`    ${chalk$13.gray("Device:")} ${n.deviceName || "—"}`);
-							console.log(`    ${chalk$13.gray("Capabilities:")} ${Object.entries(n.capabilities || {}).filter(([, v]) => v).map(([k]) => k).join(", ") || "—"}`);
+							console.log(`  ${chalk$10.green("●")} ${n.nodeId} ${chalk$10.gray(`(${n.platform || "?"})`)}`);
+							console.log(`    ${chalk$10.gray("Device:")} ${n.deviceName || "—"}`);
+							console.log(`    ${chalk$10.gray("Capabilities:")} ${Object.entries(n.capabilities || {}).filter(([, v]) => v).map(([k]) => k).join(", ") || "—"}`);
 						}
 						console.log();
 					}
 				} catch {
-					console.log(chalk$13.red("  Could not reach gateway. Start with: hyperclaw daemon start\n"));
+					console.log(chalk$10.red("  Could not reach gateway. Start with: hyperclaw daemon start\n"));
 				}
 				resolve();
 			});
 		});
 		req.on("error", () => {
-			console.log(chalk$13.red("  Gateway offline. Start with: hyperclaw daemon start\n"));
+			console.log(chalk$10.red("  Gateway offline. Start with: hyperclaw daemon start\n"));
 			resolve();
 		});
 		req.setTimeout(3e3, () => {
@@ -3087,20 +2317,20 @@ program.command("nodes").description("List connected mobile nodes (iOS/Android C
 });
 const whCmd = program.command("webhooks").description("Webhook endpoint management");
 whCmd.command("list").action(async () => {
-	const { WebhookManager } = await Promise.resolve().then(() => require("./manager-DyEeuP9g.js"));
+	const { WebhookManager } = await Promise.resolve().then(() => require("./manager-DSGhn5i3.js"));
 	const m = new WebhookManager();
 	await m.load();
 	m.showList();
 	process.exit(0);
 });
 whCmd.command("remove <id>").action(async (id) => {
-	const { WebhookManager } = await Promise.resolve().then(() => require("./manager-DyEeuP9g.js"));
+	const { WebhookManager } = await Promise.resolve().then(() => require("./manager-DSGhn5i3.js"));
 	const m = new WebhookManager();
 	await m.remove(id);
 	process.exit(0);
 });
 whCmd.command("toggle <id>").action(async (id) => {
-	const { WebhookManager } = await Promise.resolve().then(() => require("./manager-DyEeuP9g.js"));
+	const { WebhookManager } = await Promise.resolve().then(() => require("./manager-DSGhn5i3.js"));
 	const m = new WebhookManager();
 	await m.toggle(id);
 	process.exit(0);
@@ -3109,7 +2339,7 @@ const logsCmd = program.command("logs").description("View gateway logs");
 logsCmd.option("-n, --lines <n>", "Number of lines to show", "50");
 logsCmd.option("-f, --follow", "Stream logs in real time");
 logsCmd.action(async (opts) => {
-	const { tailLog, streamLog } = await Promise.resolve().then(() => require("./logger-CWyS7qAp.js"));
+	const { tailLog, streamLog } = await Promise.resolve().then(() => require("./logger-8tEtAd3y.js"));
 	if (opts.follow) await streamLog();
 	else {
 		await tailLog(parseInt(opts.lines));
@@ -3117,7 +2347,7 @@ logsCmd.action(async (opts) => {
 	}
 });
 program.command("gateway:serve").description("Start the gateway server in the foreground (used by daemon)").action(async () => {
-	const { startGateway } = await Promise.resolve().then(() => require("./server-RBqwE_GN.js"));
+	const { startGateway } = await Promise.resolve().then(() => require("./server-DU9POoWc.js"));
 	await startGateway();
 	process.on("SIGINT", () => process.exit(0));
 	process.on("SIGTERM", () => process.exit(0));
@@ -3125,15 +2355,15 @@ program.command("gateway:serve").description("Start the gateway server in the fo
 });
 const gatewayCfgCmd = gatewayCmd.command("config").description("Configure gateway settings");
 gatewayCfgCmd.option("--set-token <token>", "Set gateway auth token").option("--regenerate-token", "Generate a new random token").option("--set-port <port>", "Set gateway port").option("--set-bind <addr>", "Set gateway bind address").action(async (opts) => {
-	const chalk$13 = require("chalk");
-	const fs$10 = require("fs-extra");
-	const path$10 = require("path");
-	const os$9 = require("os");
+	const chalk$10 = require("chalk");
+	const fs$6 = require("fs-extra");
+	const path$6 = require("path");
+	const os$7 = require("os");
 	const crypto = require("crypto");
-	const cfgFile = path$10.join(os$9.homedir(), ".hyperclaw", "hyperclaw.json");
+	const cfgFile = path$6.join(os$7.homedir(), ".hyperclaw", "hyperclaw.json");
 	let cfg = {};
 	try {
-		cfg = await fs$10.readJson(cfgFile);
+		cfg = await fs$6.readJson(cfgFile);
 	} catch {}
 	if (!cfg.gateway) cfg.gateway = {
 		port: 18789,
@@ -3145,52 +2375,52 @@ gatewayCfgCmd.option("--set-token <token>", "Set gateway auth token").option("--
 	};
 	if (opts.regenerateToken) {
 		cfg.gateway.authToken = crypto.randomBytes(32).toString("hex");
-		console.log(chalk$13.hex("#06b6d4")("\n  ✔  New gateway token generated"));
-		console.log(chalk$13.gray(`  Token: ${cfg.gateway.authToken}`));
+		console.log(chalk$10.hex("#06b6d4")("\n  ✔  New gateway token generated"));
+		console.log(chalk$10.gray(`  Token: ${cfg.gateway.authToken}`));
 	}
 	if (opts.setToken) {
 		cfg.gateway.authToken = opts.setToken;
-		console.log(chalk$13.hex("#06b6d4")(`\n  ✔  Gateway token set`));
+		console.log(chalk$10.hex("#06b6d4")(`\n  ✔  Gateway token set`));
 	}
 	if (opts.setPort) {
 		cfg.gateway.port = parseInt(opts.setPort);
-		console.log(chalk$13.hex("#06b6d4")(`\n  ✔  Port set to ${cfg.gateway.port}`));
+		console.log(chalk$10.hex("#06b6d4")(`\n  ✔  Port set to ${cfg.gateway.port}`));
 	}
 	if (opts.setBind) {
 		cfg.gateway.bind = opts.setBind;
-		console.log(chalk$13.hex("#06b6d4")(`\n  ✔  Bind set to ${cfg.gateway.bind}`));
+		console.log(chalk$10.hex("#06b6d4")(`\n  ✔  Bind set to ${cfg.gateway.bind}`));
 	}
-	await fs$10.ensureDir(path$10.dirname(cfgFile));
-	await fs$10.writeJson(cfgFile, cfg, { spaces: 2 });
-	await fs$10.chmod(cfgFile, 384);
-	console.log(chalk$13.gray(`  Saved to ${cfgFile}\n`));
+	await fs$6.ensureDir(path$6.dirname(cfgFile));
+	await fs$6.writeJson(cfgFile, cfg, { spaces: 2 });
+	await fs$6.chmod(cfgFile, 384);
+	console.log(chalk$10.gray(`  Saved to ${cfgFile}\n`));
 	process.exit(0);
 });
 const authCmd = program.command("auth").description("OAuth and provider credentials");
 authCmd.command("add <service_id>").description("Add API key for a service (any provider we do not ship). Stored in credentials/ and .env.").option("--key <api_key>", "API key (prompts if omitted)").option("--base-url <url>", "Base URL (optional, e.g. https://api.example.com)").option("--env-var <name>", "Env var name (default: <SERVICE_ID>_API_KEY)").action(async (serviceId, opts) => {
-	const chalk$13 = require("chalk");
-	const inquirer$3 = require("inquirer");
-	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-B3anVuZD.js"));
-	const { getHyperClawDir: getHyperClawDir$1, getEnvFilePath } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
-	const { getApiKeyGuide, GENERIC_API_KEY_STEPS } = await Promise.resolve().then(() => require("./api-keys-guide-Bzig1R5W.js"));
-	const fs$10 = await import("fs-extra");
-	const path$10 = await import("path");
+	const chalk$10 = require("chalk");
+	const inquirer$2 = require("inquirer");
+	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-BvnMPJwi.js"));
+	const { getHyperClawDir, getEnvFilePath } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
+	const { getApiKeyGuide, GENERIC_API_KEY_STEPS } = await Promise.resolve().then(() => require("./api-keys-guide-Dq5Obbp4.js"));
+	const fs$6 = await import("fs-extra");
+	const path$6 = await import("path");
 	const guide = getApiKeyGuide(serviceId);
 	const steps = guide?.setupSteps ?? GENERIC_API_KEY_STEPS;
-	console.log(chalk$13.bold.hex("#06b6d4")(`\n  🔑 Add API key: ${guide?.name ?? serviceId}\n`));
-	console.log(chalk$13.bold("  Steps:\n"));
-	for (const step of steps) if (step.startsWith("  🔗")) console.log(chalk$13.hex("#06b6d4")(step));
-	else if (step.startsWith("  💡")) console.log(chalk$13.gray(step));
-	else console.log(chalk$13.gray(`  ${step}`));
+	console.log(chalk$10.bold.hex("#06b6d4")(`\n  🔑 Add API key: ${guide?.name ?? serviceId}\n`));
+	console.log(chalk$10.bold("  Steps:\n"));
+	for (const step of steps) if (step.startsWith("  🔗")) console.log(chalk$10.hex("#06b6d4")(step));
+	else if (step.startsWith("  💡")) console.log(chalk$10.gray(step));
+	else console.log(chalk$10.gray(`  ${step}`));
 	console.log();
 	const safeId = serviceId.replace(/[^a-zA-Z0-9_-]/g, "_").toLowerCase();
 	if (!safeId) {
-		console.log(chalk$13.red("\n  ✖  Invalid service ID\n"));
+		console.log(chalk$10.red("\n  ✖  Invalid service ID\n"));
 		process.exit(1);
 	}
 	let apiKey = opts.key || process.env[`${safeId.toUpperCase().replace(/-/g, "_")}_API_KEY`];
 	if (!apiKey) {
-		const { key } = await inquirer$3.prompt([{
+		const { key } = await inquirer$2.prompt([{
 			type: "password",
 			name: "key",
 			message: `API key for ${serviceId}:`,
@@ -3199,7 +2429,7 @@ authCmd.command("add <service_id>").description("Add API key for a service (any
 		}]);
 		apiKey = key.trim();
 	}
-	const creds = new CredentialsStore(getHyperClawDir$1());
+	const creds = new CredentialsStore(getHyperClawDir());
 	await creds.set(safeId, {
 		apiKey,
 		...opts.baseUrl ? { baseUrl: opts.baseUrl } : {},
@@ -3207,52 +2437,52 @@ authCmd.command("add <service_id>").description("Add API key for a service (any
 	});
 	const envVar = opts.envVar || `${safeId.toUpperCase().replace(/-/g, "_")}_API_KEY`;
 	const envPath = getEnvFilePath();
-	await fs$10.ensureDir(path$10.dirname(envPath));
+	await fs$6.ensureDir(path$6.dirname(envPath));
 	let envContent = "";
-	if (await fs$10.pathExists(envPath)) envContent = await fs$10.readFile(envPath, "utf8");
+	if (await fs$6.pathExists(envPath)) envContent = await fs$6.readFile(envPath, "utf8");
 	const envLine = `${envVar}=${apiKey}`;
 	const re = new RegExp(`^${envVar}=.*$`, "m");
 	if (re.test(envContent)) envContent = envContent.replace(re, envLine);
 	else envContent = envContent.trimEnd() + (envContent ? "\n" : "") + envLine + "\n";
-	await fs$10.writeFile(envPath, envContent, { mode: 384 });
-	console.log(chalk$13.hex("#06b6d4")(`\n  ✔  Added: ${safeId}`));
-	console.log(chalk$13.gray(`     Credentials: ~/.hyperclaw/credentials/${safeId}.json`));
-	console.log(chalk$13.gray(`     Env: ${envVar} (in .env — use in skills via process.env.${envVar.replace(/-/g, "_")})`));
-	console.log(chalk$13.gray("\n  Run: hyperclaw secrets apply   to add to shell"));
-	console.log(chalk$13.gray("  Run: hyperclaw secrets reload  to inject into running gateway\n"));
+	await fs$6.writeFile(envPath, envContent, { mode: 384 });
+	console.log(chalk$10.hex("#06b6d4")(`\n  ✔  Added: ${safeId}`));
+	console.log(chalk$10.gray(`     Credentials: ~/.hyperclaw/credentials/${safeId}.json`));
+	console.log(chalk$10.gray(`     Env: ${envVar} (in .env — use in skills via process.env.${envVar.replace(/-/g, "_")})`));
+	console.log(chalk$10.gray("\n  Run: hyperclaw secrets apply   to add to shell"));
+	console.log(chalk$10.gray("  Run: hyperclaw secrets reload  to inject into running gateway\n"));
 	process.exit(0);
 });
 authCmd.command("remove <service_id>").description("Remove API key for a service from credentials and .env").action(async (serviceId) => {
-	const chalk$13 = require("chalk");
-	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-B3anVuZD.js"));
-	const { getHyperClawDir: getHyperClawDir$1, getEnvFilePath } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
-	const fs$10 = await import("fs-extra");
+	const chalk$10 = require("chalk");
+	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-BvnMPJwi.js"));
+	const { getHyperClawDir, getEnvFilePath } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
+	const fs$6 = await import("fs-extra");
 	const safeId = serviceId.replace(/[^a-zA-Z0-9_-]/g, "_").toLowerCase();
-	const creds = new CredentialsStore(getHyperClawDir$1());
+	const creds = new CredentialsStore(getHyperClawDir());
 	await creds.remove(safeId);
 	const envVar = `${safeId.toUpperCase().replace(/-/g, "_")}_API_KEY`;
 	const envPath = getEnvFilePath();
-	if (await fs$10.pathExists(envPath)) {
-		let c = await fs$10.readFile(envPath, "utf8");
+	if (await fs$6.pathExists(envPath)) {
+		let c = await fs$6.readFile(envPath, "utf8");
 		c = c.replace(new RegExp(`^${envVar}=.*\n?`, "gm"), "");
-		await fs$10.writeFile(envPath, c);
+		await fs$6.writeFile(envPath, c);
 	}
-	console.log(chalk$13.hex("#06b6d4")(`\n  ✔  Removed: ${safeId}\n`));
+	console.log(chalk$10.hex("#06b6d4")(`\n  ✔  Removed: ${safeId}\n`));
 	process.exit(0);
 });
 authCmd.command("oauth <provider>").description("Run full OAuth flow. Providers: google, google-gmail (Gmail Pub/Sub), microsoft").option("--client-id <id>", "OAuth client ID (or GOOGLE_OAUTH_CLIENT_ID)").option("--client-secret <secret>", "OAuth client secret (optional for PKCE)").action(async (provider, opts) => {
-	const chalk$13 = require("chalk");
-	const ora$6 = (await import("ora")).default;
+	const chalk$10 = require("chalk");
+	const ora$4 = (await import("ora")).default;
 	try {
-		const { runOAuthFlow } = await Promise.resolve().then(() => require("./oauth-flow-HdvMxKmZ.js"));
-		const spinner = ora$6("Starting OAuth flow...").start();
+		const { runOAuthFlow } = await Promise.resolve().then(() => require("./oauth-flow-CpWlgvNB.js"));
+		const spinner = ora$4("Starting OAuth flow...").start();
 		spinner.text = "Opening browser — complete the consent and return here.";
 		const tokens = await runOAuthFlow(provider, {
 			clientId: opts.clientId,
 			clientSecret: opts.clientSecret
 		});
 		spinner.stop();
-		const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-DfEgSucI.js"));
+		const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-BZb6qOw5.js"));
 		const now = Math.floor(Date.now() / 1e3);
 		const expires_at = tokens.expires_in ? now + tokens.expires_in : void 0;
 		const tokenUrl = provider === "google" || provider === "google-gmail" ? "https://oauth2.googleapis.com/token" : provider === "microsoft" ? "https://login.microsoftonline.com/common/oauth2/v2.0/token" : void 0;
@@ -3262,46 +2492,46 @@ authCmd.command("oauth <provider>").description("Run full OAuth flow. Providers:
 			expires_at,
 			token_url: tokenUrl
 		});
-		console.log(chalk$13.hex("#06b6d4")(`\n  ✔  OAuth tokens saved for: ${provider}`));
-		console.log(chalk$13.gray("  Set in hyperclaw.json: \"provider\": { \"authType\": \"oauth\", \"providerId\": \"" + provider + "\" }\n"));
+		console.log(chalk$10.hex("#06b6d4")(`\n  ✔  OAuth tokens saved for: ${provider}`));
+		console.log(chalk$10.gray("  Set in hyperclaw.json: \"provider\": { \"authType\": \"oauth\", \"providerId\": \"" + provider + "\" }\n"));
 	} catch (e) {
-		console.error(chalk$13.red("\n  ✖  OAuth failed: " + e.message + "\n"));
+		console.error(chalk$10.red("\n  ✖  OAuth failed: " + e.message + "\n"));
 		process.exit(1);
 	}
 	process.exit(0);
 });
 authCmd.command("setup-token <provider>").description("Save setup token (Anthropic Claude Pro/Max). Run: claude setup-token, paste result here.").action(async (provider) => {
-	const chalk$13 = require("chalk");
-	const inquirer$3 = await import("inquirer");
+	const chalk$10 = require("chalk");
+	const inquirer$2 = await import("inquirer");
 	if (provider !== "anthropic") {
-		console.log(chalk$13.yellow(`\n  Provider "${provider}" may not support setup-token. Use "hyperclaw auth add" for API keys.\n`));
+		console.log(chalk$10.yellow(`\n  Provider "${provider}" may not support setup-token. Use "hyperclaw auth add" for API keys.\n`));
 		process.exit(1);
 	}
-	const { token } = await inquirer$3.default.prompt([{
+	const { token } = await inquirer$2.default.prompt([{
 		type: "password",
 		name: "token",
 		message: "Paste setup token from `claude setup-token`:",
 		mask: "●"
 	}]);
 	if (!token?.trim()) {
-		console.log(chalk$13.red("\n  ✖  No token provided.\n"));
+		console.log(chalk$10.red("\n  ✖  No token provided.\n"));
 		process.exit(1);
 	}
-	const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-DfEgSucI.js"));
+	const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-BZb6qOw5.js"));
 	await writeOAuthToken("anthropic-setup", {
 		access_token: token.trim(),
 		token_url: "https://api.anthropic.com"
 	});
-	console.log(chalk$13.hex("#06b6d4")("\n  ✔  Anthropic setup token saved to ~/.hyperclaw/oauth-anthropic-setup.json"));
-	console.log(chalk$13.gray("  Use providerId: anthropic with authType: oauth and oauthTokenPath for Claude Pro/Max.\n"));
+	console.log(chalk$10.hex("#06b6d4")("\n  ✔  Anthropic setup token saved to ~/.hyperclaw/oauth-anthropic-setup.json"));
+	console.log(chalk$10.gray("  Use providerId: anthropic with authType: oauth and oauthTokenPath for Claude Pro/Max.\n"));
 	process.exit(0);
 });
 authCmd.command("oauth-set <provider>").description("Save OAuth tokens manually (access_token, refresh_token, etc.) to ~/.hyperclaw/oauth-<provider>.json").option("--token <access_token>", "Access token").option("--refresh <refresh_token>", "Refresh token (optional)").option("--expires-in <seconds>", "Token lifetime in seconds (optional)").option("--token-url <url>", "Refresh endpoint URL (optional)").action(async (provider, opts) => {
-	const chalk$13 = require("chalk");
-	const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-DfEgSucI.js"));
+	const chalk$10 = require("chalk");
+	const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-BZb6qOw5.js"));
 	const access_token = opts.token || process.env.OAUTH_ACCESS_TOKEN;
 	if (!access_token) {
-		console.log(chalk$13.red("\n  ✖  Provide --token <access_token> or set OAUTH_ACCESS_TOKEN\n"));
+		console.log(chalk$10.red("\n  ✖  Provide --token <access_token> or set OAUTH_ACCESS_TOKEN\n"));
 		process.exit(1);
 	}
 	const expires_at = opts.expiresIn ? Math.floor(Date.now() / 1e3) + parseInt(opts.expiresIn, 10) : void 0;
@@ -3311,22 +2541,22 @@ authCmd.command("oauth-set <provider>").description("Save OAuth tokens manually
 		expires_at,
 		token_url: opts.tokenUrl || void 0
 	});
-	console.log(chalk$13.hex("#06b6d4")(`\n  ✔  OAuth tokens saved for provider: ${provider}`));
-	console.log(chalk$13.gray("  Set in hyperclaw.json: \"provider\": { \"authType\": \"oauth\", \"providerId\": \"" + provider + "\" }\n"));
+	console.log(chalk$10.hex("#06b6d4")(`\n  ✔  OAuth tokens saved for provider: ${provider}`));
+	console.log(chalk$10.gray("  Set in hyperclaw.json: \"provider\": { \"authType\": \"oauth\", \"providerId\": \"" + provider + "\" }\n"));
 	process.exit(0);
 });
 const workspaceCmd = program.command("workspace").description("Manage agent workspace files");
 workspaceCmd.command("init [dir]").description("Initialize workspace files (SOUL.md, USER.md, TOOLS.md, HEARTBEAT.md, BOOTSTRAP.md) in a directory").action(async (dir) => {
-	const chalk$13 = require("chalk");
-	const fs$10 = require("fs-extra");
-	const path$10 = require("path");
-	const os$9 = require("os");
-	const targetDir = dir || path$10.join(os$9.homedir(), ".hyperclaw");
+	const chalk$10 = require("chalk");
+	const fs$6 = require("fs-extra");
+	const path$6 = require("path");
+	const os$7 = require("os");
+	const targetDir = dir || path$6.join(os$7.homedir(), ".hyperclaw");
 	let cfg = {};
 	try {
-		cfg = await fs$10.readJson(path$10.join(os$9.homedir(), ".hyperclaw", "hyperclaw.json"));
+		cfg = await fs$6.readJson(path$6.join(os$7.homedir(), ".hyperclaw", "hyperclaw.json"));
 	} catch {}
-	const { initWorkspaceFiles } = await Promise.resolve().then(() => require("./memory-DIZLpg-p.js"));
+	const { initWorkspaceFiles } = await Promise.resolve().then(() => require("./memory-BI1kPkAN.js"));
 	await initWorkspaceFiles({
 		agentName: cfg.identity?.agentName || "Hyper",
 		personality: cfg.identity?.personality || "helpful and concise",
@@ -3334,17 +2564,17 @@ workspaceCmd.command("init [dir]").description("Initialize workspace files (SOUL
 		userName: cfg.identity?.userName || "User",
 		rules: cfg.identity?.rules ?? []
 	}, targetDir);
-	console.log(chalk$13.hex("#06b6d4")(`\n  ✔  Workspace files initialized in ${targetDir}`));
-	console.log(chalk$13.gray("  Files: SOUL.md  USER.md  TOOLS.md  HEARTBEAT.md  BOOTSTRAP.md\n"));
+	console.log(chalk$10.hex("#06b6d4")(`\n  ✔  Workspace files initialized in ${targetDir}`));
+	console.log(chalk$10.gray("  Files: SOUL.md  USER.md  TOOLS.md  HEARTBEAT.md  BOOTSTRAP.md\n"));
 	process.exit(0);
 });
 workspaceCmd.command("show [dir]").description("Show workspace files summary").action(async (dir) => {
-	const chalk$13 = require("chalk");
-	const fs$10 = require("fs-extra");
-	const path$10 = require("path");
-	const os$9 = require("os");
-	const targetDir = dir || path$10.join(os$9.homedir(), ".hyperclaw");
-	console.log(chalk$13.bold.hex("#06b6d4")("\n  📁 WORKSPACE\n"));
+	const chalk$10 = require("chalk");
+	const fs$6 = require("fs-extra");
+	const path$6 = require("path");
+	const os$7 = require("os");
+	const targetDir = dir || path$6.join(os$7.homedir(), ".hyperclaw");
+	console.log(chalk$10.bold.hex("#06b6d4")("\n  📁 WORKSPACE\n"));
 	for (const fname of [
 		"SOUL.md",
 		"USER.md",
@@ -3354,45 +2584,45 @@ workspaceCmd.command("show [dir]").description("Show workspace files summary").a
 		"AGENTS.md",
 		"MEMORY.md"
 	]) {
-		const fpath = path$10.join(targetDir, fname);
-		const exists = await fs$10.pathExists(fpath);
-		const size = exists ? (await fs$10.stat(fpath)).size : 0;
-		const dot = exists ? chalk$13.hex("#06b6d4")("✔") : chalk$13.gray("○");
-		console.log(`  ${dot} ${fname.padEnd(14)} ${exists ? chalk$13.gray(`${size} bytes`) : chalk$13.gray("(missing)")}`);
+		const fpath = path$6.join(targetDir, fname);
+		const exists = await fs$6.pathExists(fpath);
+		const size = exists ? (await fs$6.stat(fpath)).size : 0;
+		const dot = exists ? chalk$10.hex("#06b6d4")("✔") : chalk$10.gray("○");
+		console.log(`  ${dot} ${fname.padEnd(14)} ${exists ? chalk$10.gray(`${size} bytes`) : chalk$10.gray("(missing)")}`);
 	}
 	console.log();
 	process.exit(0);
 });
 const botCmd = program.command("bot").description("HyperClaw Bot — companion bot for remote gateway control");
 botCmd.command("status").action(async () => {
-	const { showBotStatus } = await Promise.resolve().then(() => require("./hyperclawbot-DfMGowZC.js"));
+	const { showBotStatus } = await Promise.resolve().then(() => require("./hyperclawbot-D9KCtc4P.js"));
 	await showBotStatus();
 	process.exit(0);
 });
 botCmd.command("setup").description("Configure HyperClaw Bot (Telegram token, allowed users)").action(async () => {
-	const inquirer$3 = require("inquirer");
-	const { saveBotConfig } = await Promise.resolve().then(() => require("./hyperclawbot-DfMGowZC.js"));
-	const chalk$13 = require("chalk");
-	console.log(chalk$13.bold.hex("#06b6d4")("\n  🦅 HYPERCLAW BOT SETUP\n"));
-	console.log(chalk$13.gray("  Create a bot at t.me/BotFather, then paste the token below.\n"));
-	const { platform } = await inquirer$3.prompt([{
+	const inquirer$2 = require("inquirer");
+	const { saveBotConfig } = await Promise.resolve().then(() => require("./hyperclawbot-D9KCtc4P.js"));
+	const chalk$10 = require("chalk");
+	console.log(chalk$10.bold.hex("#06b6d4")("\n  🦅 HYPERCLAW BOT SETUP\n"));
+	console.log(chalk$10.gray("  Create a bot at t.me/BotFather, then paste the token below.\n"));
+	const { platform } = await inquirer$2.prompt([{
 		type: "list",
 		name: "platform",
 		message: "Platform:",
 		choices: ["telegram", "discord"]
 	}]);
-	const { token } = await inquirer$3.prompt([{
+	const { token } = await inquirer$2.prompt([{
 		type: "input",
 		name: "token",
 		message: platform === "telegram" ? "Bot token (from @BotFather):" : "Discord bot token:",
 		validate: (v) => v.trim().length > 10 || "Required"
 	}]);
-	const { userIds } = await inquirer$3.prompt([{
+	const { userIds } = await inquirer$2.prompt([{
 		type: "input",
 		name: "userIds",
 		message: "Allowed user IDs (comma-separated, leave empty for unrestricted):"
 	}]);
-	const { gatewayUrl } = await inquirer$3.prompt([{
+	const { gatewayUrl } = await inquirer$2.prompt([{
 		type: "input",
 		name: "gatewayUrl",
 		message: "Gateway URL:",
@@ -3408,20 +2638,20 @@ botCmd.command("setup").description("Configure HyperClaw Bot (Telegram token, al
 		createdAt: (/* @__PURE__ */ new Date()).toISOString()
 	};
 	await saveBotConfig(cfg);
-	console.log(chalk$13.hex("#06b6d4")("\n  ✔  HyperClaw Bot configured"));
+	console.log(chalk$10.hex("#06b6d4")("\n  ✔  HyperClaw Bot configured"));
 	if (platform === "discord") try {
 		require.resolve("discord.js");
 	} catch {
-		console.log(chalk$13.yellow("  ⚠  For Discord: run: npm install discord.js"));
+		console.log(chalk$10.yellow("  ⚠  For Discord: run: npm install discord.js"));
 	}
-	console.log(chalk$13.gray("  Start with: hyperclaw bot start\n"));
+	console.log(chalk$10.gray("  Start with: hyperclaw bot start\n"));
 	process.exit(0);
 });
 botCmd.command("start").description("Start HyperClaw Bot (foreground or background)").option("--background", "Run bot in background (use hyperclaw bot stop to stop)").action(async (opts) => {
 	const { spawn } = await import("child_process");
-	const path$10 = await import("path");
+	const path$6 = await import("path");
 	if (opts?.background) {
-		const entry = process.argv[1] || path$10.join(__dirname, "run-main.js");
+		const entry = process.argv[1] || path$6.join(__dirname, "run-main.js");
 		const child = spawn(process.execPath, [
 			entry,
 			"bot",
@@ -3433,14 +2663,14 @@ botCmd.command("start").description("Start HyperClaw Bot (foreground or backgrou
 			cwd: process.cwd()
 		});
 		child.unref();
-		const { writeBotPid } = await Promise.resolve().then(() => require("./hyperclawbot-DfMGowZC.js"));
+		const { writeBotPid } = await Promise.resolve().then(() => require("./hyperclawbot-D9KCtc4P.js"));
 		await writeBotPid(child.pid);
 		console.log(require("chalk").green(`\n  ✔  HyperClaw Bot started in background (PID ${child.pid})`));
 		console.log(require("chalk").gray("  Stop with: hyperclaw bot stop\n"));
 		process.exit(0);
 		return;
 	}
-	const { loadBotConfig, TelegramHyperClawBot, DiscordHyperClawBot } = await Promise.resolve().then(() => require("./hyperclawbot-DfMGowZC.js"));
+	const { loadBotConfig, TelegramHyperClawBot, DiscordHyperClawBot } = await Promise.resolve().then(() => require("./hyperclawbot-D9KCtc4P.js"));
 	const cfg = await loadBotConfig();
 	if (!cfg) {
 		console.log(require("chalk").red("\n  ✖  HyperClaw Bot not configured. Run: hyperclaw bot setup\n"));
@@ -3466,42 +2696,42 @@ botCmd.command("start").description("Start HyperClaw Bot (foreground or backgrou
 	}
 });
 botCmd.command("stop").description("Stop HyperClaw Bot (when running in background)").action(async () => {
-	const chalk$13 = require("chalk");
-	const { stopBotProcess } = await Promise.resolve().then(() => require("./hyperclawbot-DfMGowZC.js"));
+	const chalk$10 = require("chalk");
+	const { stopBotProcess } = await Promise.resolve().then(() => require("./hyperclawbot-D9KCtc4P.js"));
 	const stopped = await stopBotProcess();
-	if (stopped) console.log(chalk$13.green("\n  ✔  HyperClaw Bot stopped\n"));
-	else console.log(chalk$13.gray("\n  Bot not running in background (no PID file). Use Ctrl+C to stop foreground bot.\n"));
+	if (stopped) console.log(chalk$10.green("\n  ✔  HyperClaw Bot stopped\n"));
+	else console.log(chalk$10.gray("\n  Bot not running in background (no PID file). Use Ctrl+C to stop foreground bot.\n"));
 	process.exit(stopped ? 0 : 0);
 });
 memCmd.command("search <query>").description("Search MEMORY.md").action(async (query) => {
-	const { searchMemory } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { searchMemory } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	await searchMemory(query);
 	process.exit(0);
 });
 memCmd.command("auto-show").description("Show auto-extracted memories from MEMORY.md").action(async () => {
-	const { showMemory } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { showMemory } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	await showMemory();
 	process.exit(0);
 });
 memCmd.command("clear").description("Clear all auto-extracted memories").action(async () => {
-	const { clearMemory } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { clearMemory } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	await clearMemory();
 	process.exit(0);
 });
 memCmd.command("save <text>").description("Manually save a fact to MEMORY.md").action(async (text) => {
-	const { saveMemoryDirect } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { saveMemoryDirect } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	await saveMemoryDirect(text);
 	console.log(chalk.default.hex("#06b6d4")(`  ✅ Saved: ${text}\n`));
 	process.exit(0);
 });
 const pcCmd = program.command("pc").description("PC access — give the AI access to your computer");
 pcCmd.command("status").description("Show PC access status and config").action(async () => {
-	const { showPCAccessStatus } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { showPCAccessStatus } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	await showPCAccessStatus();
 	process.exit(0);
 });
 pcCmd.command("enable").description("Enable PC access for the AI").option("--level <level>", "Access level: read-only | sandboxed | full", "full").option("--paths <paths>", "Comma-separated allowed paths (sandboxed mode)").action(async (opts) => {
-	const { savePCAccessConfig } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { savePCAccessConfig } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	const level = opts.level;
 	const allowed = [
 		"read-only",
@@ -3528,7 +2758,7 @@ pcCmd.command("enable").description("Enable PC access for the AI").option("--lev
 	process.exit(0);
 });
 pcCmd.command("disable").description("Disable PC access").action(async () => {
-	const { savePCAccessConfig } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { savePCAccessConfig } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	await savePCAccessConfig({ enabled: false });
 	console.log(chalk.default.hex("#06b6d4")("\n  ✅ PC access disabled\n"));
 	process.exit(0);
@@ -3552,7 +2782,7 @@ pcCmd.command("log").description("Show PC access audit log").option("-n, --lines
 	process.exit(0);
 });
 pcCmd.command("run <command>").description("Run a shell command via PC access (must be enabled)").action(async (command) => {
-	const { loadPCAccessConfig, getPCAccessTools } = await Promise.resolve().then(() => require("./src-BptR-54a.js"));
+	const { loadPCAccessConfig, getPCAccessTools } = await Promise.resolve().then(() => require("./src-BEVLgaF1.js"));
 	const cfg = await loadPCAccessConfig();
 	if (!cfg.enabled) {
 		console.log(chalk.default.red("\n  ✖  PC access disabled. Run: hyperclaw pc enable\n"));
@@ -3565,14 +2795,42 @@ pcCmd.command("run <command>").description("Run a shell command via PC access (m
 	console.log(result);
 	process.exit(0);
 });
+function checkForUpdate() {
+	const { execFile: execFile$1 } = require("child_process");
+	const { readFileSync } = require("fs");
+	const path$6 = require("path");
+	try {
+		const pkgPath = path$6.resolve(__dirname, "../../package.json");
+		const current = JSON.parse(readFileSync(pkgPath, "utf8")).version;
+		execFile$1("npm", [
+			"view",
+			"hyperclaw",
+			"version",
+			"--json"
+		], { timeout: 5e3 }, (_err, stdout) => {
+			if (_err || !stdout) return;
+			try {
+				const latest = JSON.parse(stdout.trim());
+				if (latest && latest !== current) {
+					const semver = (v) => v.split(".").map(Number);
+					const [lMaj, lMin, lPat] = semver(latest);
+					const [cMaj, cMin, cPat] = semver(current);
+					const isNewer = lMaj > cMaj || lMaj === cMaj && lMin > cMin || lMaj === cMaj && lMin === cMin && lPat > cPat;
+					if (isNewer) process.stdout.write(chalk.default.yellow(`\n  ⬆  Update available: ${chalk.default.dim(current)} → ${chalk.default.green(latest)}\n`) + chalk.default.gray(`     npm install -g hyperclaw@latest\n\n`));
+				}
+			} catch {}
+		});
+	} catch {}
+}
+checkForUpdate();
 if (process.argv.length === 2) (async () => {
-	const { ConfigManager: ConfigManager$1 } = await Promise.resolve().then(() => require("./manager-BX2lIsmk.js"));
+	const { ConfigManager: ConfigManager$1 } = await Promise.resolve().then(() => require("./manager-DLmZI-9R.js"));
 	const cfg = await new ConfigManager$1().load().catch(() => null);
 	if (cfg?.provider?.apiKey || cfg?.provider?.providerId) {
 		await new require_onboard.Banner().showNeonBanner(false);
 		const { getTheme } = await Promise.resolve().then(() => require("./theme-Iefa3L63.js"));
 		const t = getTheme(false);
-		const chalk$13 = require("chalk");
+		const chalk$10 = require("chalk");
 		console.log(t.bold("  Quick actions:\n"));
 		console.log(`  ${t.c("hyperclaw onboard")}                    — re-run setup wizard`);
 		console.log(`  ${t.c("hyperclaw onboard --install-daemon")}   — wizard + daemon (full PC access)`);
@@ -3584,7 +2842,7 @@ if (process.argv.length === 2) (async () => {
 		console.log(`  ${t.c("hyperclaw --help")}                     — all commands\n`);
 	} else {
 		await new require_onboard.Banner().showNeonBanner(false);
-		const { HyperClawWizard: HyperClawWizard$1 } = await Promise.resolve().then(() => require("./onboard-3q20ZyHj.js"));
+		const { HyperClawWizard: HyperClawWizard$1 } = await Promise.resolve().then(() => require("./onboard-aTwlQs-4.js"));
 		await new HyperClawWizard$1().run({ wizard: true });
 	}
 	process.exit(0);