npm - hyperclaw - Versions diffs - 5.0.0 → 5.0.2 - Mend

hyperclaw 5.0.0 → 5.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (199) hide show

package/LICENSE +2 -1
package/README.md +449 -99
package/dist/a2ui-protocol-Gzm29Gaw.js +75 -0
package/dist/agents-routing-Biy5ew4a.js +4 -0
package/dist/agents-routing-CL3HQNoM.js +327 -0
package/dist/api-keys-guide-CGn5BSF7.js +149 -0
package/dist/api-keys-guide-ChbThbPj.js +149 -0
package/dist/audit-BJohI_vC.js +441 -0
package/dist/audit-NPIMmOSq.js +441 -0
package/dist/bounty-tools-BUqUKjt0.js +211 -0
package/dist/bounty-tools-CY_i91DU.js +211 -0
package/dist/browser-tools-CxJY6pAn.js +5 -0
package/dist/browser-tools-JZ9ji6AW.js +179 -0
package/dist/chat-qVuqhlPu.js +258 -0
package/dist/claw-tasks-B-8RRMdq.js +80 -0
package/dist/claw-tasks-Cyzdbhz_.js +80 -0
package/dist/connector-1x1rCBHz.js +162 -0
package/dist/connector-B4jeCULG.js +305 -0
package/dist/connector-B7qngfkT.js +286 -0
package/dist/connector-B8BK0GBo.js +531 -0
package/dist/connector-BE9eJs8-.js +182 -0
package/dist/connector-BEe-DTGQ.js +189 -0
package/dist/connector-BU7p5ZgB.js +167 -0
package/dist/connector-BUzzq7Ij.js +568 -0
package/dist/connector-BpDqLgnW.js +419 -0
package/dist/connector-BpW88ut2.js +189 -0
package/dist/connector-Bxv-gy8U.js +167 -0
package/dist/connector-Bz14zcJv.js +213 -0
package/dist/connector-C1zP5-5q.js +85 -0
package/dist/connector-CAcpcovF.js +498 -0
package/dist/connector-CJgVjS58.js +181 -0
package/dist/connector-Cf53D6qV.js +425 -0
package/dist/connector-CyHmlbNz.js +508 -0
package/dist/connector-D22mJGVu.js +340 -0
package/dist/connector-D6RtMmlL.js +225 -0
package/dist/connector-D9EnT8A4.js +280 -0
package/dist/connector-DNDwIh37.js +239 -0
package/dist/connector-Di27MeO4.js +350 -0
package/dist/connector-Do0BPiHt.js +194 -0
package/dist/connector-DvLwOfJy.js +192 -0
package/dist/connector-DvU83NSq.js +181 -0
package/dist/connector-DxskpDc_.js +173 -0
package/dist/connector-byy3eISx.js +552 -0
package/dist/connector-vV89hsyd.js +218 -0
package/dist/cost-tracker-Ca1UPZ33.js +103 -0
package/dist/cost-tracker-fnaj_6M9.js +103 -0
package/dist/credentials-store-BxijEirw.js +77 -0
package/dist/credentials-store-CA8UtK0T.js +77 -0
package/dist/credentials-store-CPkVO6-z.js +4 -0
package/dist/credentials-store-Cm7DH-kh.js +4 -0
package/dist/cron-tasks-L0mz1yyU.js +82 -0
package/dist/cron-tasks-_pqQCmxc.js +82 -0
package/dist/daemon-7ViroziB.js +5 -0
package/dist/daemon-BfyKmZhr.js +318 -0
package/dist/daemon-CNyunwkR.js +5 -0
package/dist/daemon-CindY8OK.js +318 -0
package/dist/delivery-DVHmv1IR.js +4 -0
package/dist/delivery-DgiZcJBp.js +4 -0
package/dist/delivery-DpMX0Yyc.js +95 -0
package/dist/delivery-otAU4alM.js +95 -0
package/dist/destructive-gate-CA0DtA5K.js +101 -0
package/dist/destructive-gate-DZt71UZR.js +101 -0
package/dist/developer-keys-Cnd1kswV.js +127 -0
package/dist/developer-keys-DENo3ZA6.js +8 -0
package/dist/doctor-Dgjoc3DG.js +230 -0
package/dist/doctor-RwsOhtAl.js +6 -0
package/dist/engine-B0kLfRL0.js +256 -0
package/dist/engine-BJUpRUOv.js +7 -0
package/dist/engine-D_VeoZHw.js +305 -0
package/dist/engine-JjRnhlsE.js +7 -0
package/dist/env-resolve-17ekEU6p.js +10 -0
package/dist/env-resolve-BFJXWl94.js +115 -0
package/dist/env-resolve-Z2XF6leB.js +115 -0
package/dist/env-resolve-bDYssfih.js +10 -0
package/dist/extraction-tools-DbxnxIco.js +5 -0
package/dist/extraction-tools-Dg7AHS35.js +91 -0
package/dist/form_data-CGAy4HE0.js +8657 -0
package/dist/gmail-watch-setup-C3uSWznp.js +40 -0
package/dist/health-DUjluWHQ.js +6 -0
package/dist/health-DVfkpUQW.js +152 -0
package/dist/heartbeat-engine-CrgL4mrP.js +83 -0
package/dist/heartbeat-engine-Ut6pXBD6.js +83 -0
package/dist/hub-9LaKnLjY.js +6 -0
package/dist/hub-BO6bj8Yj.js +515 -0
package/dist/hub-Bu52YZqW.js +6 -0
package/dist/hub-CfwUz9YW.js +515 -0
package/dist/hyperclawbot-BrcoYLOp.js +505 -0
package/dist/hyperclawbot-CBiDSKsa.js +505 -0
package/dist/inference-0mlFQqIm.js +922 -0
package/dist/inference-DHR82Gh7.js +6 -0
package/dist/inference-DhA8jpfH.js +2692 -0
package/dist/inference-SzqFe_nk.js +6 -0
package/dist/knowledge-graph-BrYpSgxW.js +131 -0
package/dist/knowledge-graph-DE5lSF02.js +131 -0
package/dist/loader-9JqY6Nlq.js +4 -0
package/dist/loader-BkDi8MD9.js +400 -0
package/dist/loader-Cjdd1kw4.js +400 -0
package/dist/loader-DI2qDRPC.js +4 -0
package/dist/logger-Cp8wC7F8.js +83 -0
package/dist/logger-DCT2l9GV.js +83 -0
package/dist/manager-3cq3DydI.js +4 -0
package/dist/manager-B2Gls5RG.js +218 -0
package/dist/manager-BUrFrPuq.js +117 -0
package/dist/manager-Bi9UYyVR.js +105 -0
package/dist/manager-Biz9ixWJ.js +40 -0
package/dist/manager-CBUHJiY7.js +6 -0
package/dist/manager-CVLLaKmq.js +218 -0
package/dist/manager-CWNSML5D.js +117 -0
package/dist/manager-SJe9gt-q.js +4 -0
package/dist/mcp-CUoTCMw-.js +139 -0
package/dist/mcp-loader-BIz-450x.js +94 -0
package/dist/mcp-loader-CvxRDtPC.js +94 -0
package/dist/memory-OL77OMOr.js +270 -0
package/dist/memory-auto-CpQHZlEJ.js +306 -0
package/dist/memory-auto-D-L2q21G.js +306 -0
package/dist/memory-auto-DTcy5VBy.js +5 -0
package/dist/memory-auto-Z6LCf-iK.js +5 -0
package/dist/memory-gUi4VaIf.js +4 -0
package/dist/memory-integration-B8RSN4pr.js +91 -0
package/dist/memory-integration-g2vxwgoE.js +91 -0
package/dist/moltbook-B-40gQOL.js +81 -0
package/dist/moltbook-Cl8cQfxJ.js +81 -0
package/dist/node-TWxRm84k.js +222 -0
package/dist/nodes-registry-C9dCFwjh.js +52 -0
package/dist/nodes-registry-DKRtsbNg.js +52 -0
package/dist/oauth-flow-CeaaGAz0.js +150 -0
package/dist/oauth-flow-JCfporKq.js +150 -0
package/dist/oauth-provider-4R0EJlsT.js +110 -0
package/dist/oauth-provider-B4dzn56l.js +110 -0
package/dist/observability-CDZmeHfa.js +89 -0
package/dist/observability-nZ3CBIxG.js +89 -0
package/dist/onboard-BBBWcfhp.js +10 -0
package/dist/onboard-BVOtKQdh.js +3641 -0
package/dist/onboard-Bw28IRQ3.js +4070 -0
package/dist/onboard-CGNIw27w.js +11 -0
package/dist/orchestrator-BovkM63z.js +6 -0
package/dist/orchestrator-CcKx1Ovk.js +189 -0
package/dist/orchestrator-DSbpkP1X.js +189 -0
package/dist/orchestrator-DcFfDLTX.js +6 -0
package/dist/osint-B4_m3VHQ.js +277 -0
package/dist/osint-B6BZKQAD.js +277 -0
package/dist/pairing-B6RArWhD.js +196 -0
package/dist/pairing-BsQ08DLq.js +4 -0
package/dist/pc-access-B0KocJNe.js +819 -0
package/dist/pc-access-DkzmugZ7.js +8 -0
package/dist/pending-approval-BgNjjuI2.js +22 -0
package/dist/pending-approval-C_HkX1QL.js +22 -0
package/dist/providers-DxiamZSL.js +5 -0
package/dist/providers-Dy15rDb7.js +657 -0
package/dist/reminders-store-CzUY0zYx.js +58 -0
package/dist/renderer-ANNfXsHn.js +225 -0
package/dist/rules-BSQwwAYC.js +103 -0
package/dist/run-main.js +142 -132
package/dist/runner-BHRSOPEU.js +1271 -0
package/dist/runner-CJFJUtPm.js +1271 -0
package/dist/sdk/index.js +2 -2
package/dist/sdk/index.mjs +2 -2
package/dist/security--oQObeJO.js +4 -0
package/dist/security-wBOg0TA8.js +73 -0
package/dist/server-Brl_HQUB.js +1255 -0
package/dist/server-CbTTpB5m.js +1255 -0
package/dist/server-DP_bPzvI.js +4 -0
package/dist/server-DhfipkwN.js +4 -0
package/dist/session-store-B09r5HgB.js +5 -0
package/dist/session-store-DCTQIVur.js +113 -0
package/dist/sessions-tools-BdlN6Pb6.js +95 -0
package/dist/sessions-tools-JVLDKSJ_.js +5 -0
package/dist/skill-loader-B5oeliGu.js +7 -0
package/dist/skill-loader-Wf3brNOj.js +160 -0
package/dist/skill-runtime-BGlvly2s.js +102 -0
package/dist/skill-runtime-BXWd-Ktf.js +102 -0
package/dist/skill-runtime-DhL2T76p.js +5 -0
package/dist/skill-runtime-jgklm02e.js +5 -0
package/dist/src-BbPa6Q8p.js +63 -0
package/dist/src-BeXtfkK2.js +458 -0
package/dist/src-Bhybpk1J.js +63 -0
package/dist/src-CGQjRI4N.js +20 -0
package/dist/src-DMJ4-uqk.js +458 -0
package/dist/sub-agent-tools-CmE345s_.js +39 -0
package/dist/sub-agent-tools-DHY-4WWM.js +39 -0
package/dist/theme-D0smfC_l.js +8 -0
package/dist/theme-DajRRZbA.js +180 -0
package/dist/tool-policy-DZvF8xlQ.js +189 -0
package/dist/tool-policy-DgNqFWYn.js +189 -0
package/dist/tts-elevenlabs-C06nUxMK.js +61 -0
package/dist/tts-elevenlabs-JeFaGNJU.js +61 -0
package/dist/update-check-BVEqHhFY.js +83 -0
package/dist/update-check-w4XuxVl7.js +81 -0
package/dist/vision-JOtOS1Br.js +121 -0
package/dist/vision-fky3elEo.js +121 -0
package/dist/vision-tools-C8B3776g.js +5 -0
package/dist/vision-tools-CB28ZCO_.js +5 -0
package/dist/vision-tools-dwn9p4el.js +51 -0
package/dist/vision-tools-vPPwQ-0N.js +51 -0
package/dist/voice-transcription-B6RtplmN.js +138 -0
package/dist/voice-transcription-DBo5hXmu.js +138 -0
package/dist/website-watch-tools-B-jRAeTe.js +139 -0
package/dist/website-watch-tools-BC9xAL67.js +5 -0
package/package.json +1 -1

package/dist/osint-B6BZKQAD.js ADDED Viewed

@@ -0,0 +1,277 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const chalk = require_chunk.__toESM(require("chalk"));
+const inquirer = require_chunk.__toESM(require("inquirer"));
+const ora = require_chunk.__toESM(require("ora"));
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+const os = require_chunk.__toESM(require("os"));
+//#region src/commands/osint.ts
+const HC_DIR = path.default.join(os.default.homedir(), ".hyperclaw");
+const CONFIG_FILE = path.default.join(HC_DIR, "hyperclaw.json");
+const OSINT_PROFILE_FILE = path.default.join(HC_DIR, "osint-profile.json");
+const MODE_DESCRIPTIONS = {
+	recon: "Passive reconnaissance — WHOIS, DNS, subdomains, public info gathering",
+	bugbounty: "Bug bounty workflow — target scope, vulnerability research, report drafting",
+	pentest: "Penetration testing — active recon, service enumeration, exploit research",
+	footprint: "Digital footprint — social media, email leaks, username tracking",
+	custom: "Custom — configure your own tools and system prompt"
+};
+const MODE_SYSTEM_PROMPTS = {
+	recon: `You are a professional OSINT analyst specializing in passive reconnaissance.
+Your goal is to gather publicly available information about the target without triggering detection.
+Use DNS lookups, WHOIS data, web scraping, and public databases.
+Always cite sources and stay within legal boundaries.
+Never attempt active exploitation — only passive information gathering.`,
+	bugbounty: `You are an experienced bug bounty hunter working within an authorized scope.
+Your goal is to identify security vulnerabilities in web applications and infrastructure.
+Follow responsible disclosure principles. Report findings clearly with reproduction steps.
+Focus on: XSS, SQLi, SSRF, authentication issues, business logic flaws, IDOR.
+Use tools methodically. Document everything for your report.`,
+	pentest: `You are a professional penetration tester with explicit written authorization.
+Conduct a thorough security assessment following the PTES methodology.
+Phases: Intelligence Gathering → Scanning → Exploitation → Post-Exploitation → Reporting.
+Document all findings with CVSS scores. Stay within defined scope at all times.
+Never exfiltrate real data — only demonstrate access.`,
+	footprint: `You are a digital forensics investigator mapping a target's online presence.
+Your goal is to build a comprehensive profile using only public sources.
+Search social media, data breach databases (HaveIBeenPwned, Dehashed), LinkedIn, GitHub.
+Create a timeline of online activity. Identify connected accounts, email patterns, usernames.
+This is for defensive intelligence gathering and authorized investigations only.`,
+	custom: `You are a security researcher with access to OSINT and analysis tools.
+Use available tools to assist with the research task.`
+};
+const MODE_MCP_SERVERS = {
+	recon: ["mcp-browser", "mcp-filesystem"],
+	bugbounty: [
+		"mcp-browser",
+		"mcp-filesystem",
+		"mcp-github"
+	],
+	pentest: [
+		"mcp-browser",
+		"mcp-filesystem",
+		"mcp-terminal",
+		"mcp-github"
+	],
+	footprint: ["mcp-browser", "mcp-filesystem"],
+	custom: ["mcp-browser", "mcp-filesystem"]
+};
+function printBanner() {
+	console.log();
+	console.log(chalk.default.red.bold("  ██████╗ ███████╗██╗███╗   ██╗████████╗"));
+	console.log(chalk.default.red.bold("  ██╔═══██╗██╔════╝██║████╗  ██║╚══██╔══╝"));
+	console.log(chalk.default.yellow.bold("  ██║   ██║███████╗██║██╔██╗ ██║   ██║   "));
+	console.log(chalk.default.yellow.bold("  ██║   ██║╚════██║██║██║╚██╗██║   ██║   "));
+	console.log(chalk.default.red.bold("  ╚██████╔╝███████║██║██║ ╚████║   ██║   "));
+	console.log(chalk.default.red.bold("   ╚═════╝ ╚══════╝╚═╝╚═╝  ╚═══╝   ╚═╝   "));
+	console.log();
+	console.log(chalk.default.gray("  HyperClaw OSINT / Ethical Hacking Mode"));
+	console.log(chalk.default.gray("  ────────────────────────────────────────────"));
+	console.log(chalk.default.yellow("  ⚠️  For authorized security research only."));
+	console.log(chalk.default.yellow("  ⚠️  Always have explicit written permission."));
+	console.log();
+}
+async function osintSetup(options) {
+	printBanner();
+	if (options.show) {
+		try {
+			const profile$1 = await fs_extra.default.readJson(OSINT_PROFILE_FILE);
+			console.log(chalk.default.cyan.bold("  Current OSINT Profile:\n"));
+			console.log(`  Mode:    ${chalk.default.yellow(profile$1.mode)}`);
+			console.log(`  Target:  ${chalk.default.white(profile$1.target || "(not set)")}`);
+			console.log(`  Type:    ${profile$1.targetType || "N/A"}`);
+			console.log(`  MCP:     ${profile$1.mcpServers.join(", ")}`);
+			console.log(`  Created: ${profile$1.createdAt}`);
+			if (profile$1.notes) console.log(`  Notes:   ${profile$1.notes}`);
+			console.log();
+		} catch {
+			console.log(chalk.default.gray("  No OSINT profile saved yet. Run: hyperclaw osint setup\n"));
+		}
+		return;
+	}
+	if (options.reset) {
+		await fs_extra.default.remove(OSINT_PROFILE_FILE);
+		console.log(chalk.default.green("  ✔  OSINT profile cleared.\n"));
+		return;
+	}
+	console.log(chalk.default.bold("  Select OSINT workflow:\n"));
+	for (const [mode$1, desc] of Object.entries(MODE_DESCRIPTIONS)) console.log(`  ${chalk.default.cyan(mode$1.padEnd(12))} ${chalk.default.gray(desc)}`);
+	console.log();
+	const { mode } = await inquirer.default.prompt([{
+		type: "list",
+		name: "mode",
+		message: "Workflow:",
+		choices: Object.keys(MODE_DESCRIPTIONS).map((m) => ({
+			name: `${m.padEnd(12)} — ${MODE_DESCRIPTIONS[m]}`,
+			value: m
+		})),
+		default: options.mode || "recon"
+	}]);
+	const { hasTarget } = await inquirer.default.prompt([{
+		type: "confirm",
+		name: "hasTarget",
+		message: "Set a target for this session?",
+		default: true
+	}]);
+	let target;
+	let targetType;
+	if (hasTarget) {
+		const resp = await inquirer.default.prompt([{
+			type: "list",
+			name: "targetType",
+			message: "Target type:",
+			choices: [
+				"domain",
+				"ip",
+				"username",
+				"email",
+				"org",
+				"custom"
+			]
+		}, {
+			type: "input",
+			name: "target",
+			message: "Target value (e.g. example.com):",
+			validate: (v) => v.trim().length > 0 || "Required"
+		}]);
+		target = resp.target.trim();
+		targetType = resp.targetType;
+	}
+	const { notes } = await inquirer.default.prompt([{
+		type: "input",
+		name: "notes",
+		message: "Session notes (optional, e.g. \"HackerOne program XYZ\"):"
+	}]);
+	console.log();
+	const { confirmed } = await inquirer.default.prompt([{
+		type: "confirm",
+		name: "confirmed",
+		message: chalk.default.yellow("I confirm I have explicit written authorization to test this target."),
+		default: false
+	}]);
+	if (!confirmed) {
+		console.log(chalk.default.red("\n  Aborted. OSINT mode requires authorization confirmation.\n"));
+		return;
+	}
+	const spinner = (0, ora.default)("Applying OSINT configuration...").start();
+	const mcpServers = MODE_MCP_SERVERS[mode];
+	const systemPrompt = MODE_SYSTEM_PROMPTS[mode];
+	const profile = {
+		mode,
+		target,
+		targetType,
+		notes: notes || void 0,
+		createdAt: (/* @__PURE__ */ new Date()).toISOString(),
+		mcpServers,
+		systemPromptOverride: systemPrompt
+	};
+	await fs_extra.default.ensureDir(HC_DIR);
+	await fs_extra.default.writeJson(OSINT_PROFILE_FILE, profile, { spaces: 2 });
+	let config = {};
+	try {
+		config = await fs_extra.default.readJson(CONFIG_FILE);
+	} catch {}
+	if (!config.agent) config.agent = {};
+	const agent = config.agent;
+	agent.systemPromptOverride = systemPrompt;
+	agent.osintMode = mode;
+	if (target) agent.osintTarget = `${targetType}: ${target}`;
+	const mcpFile = path.default.join(HC_DIR, "mcp-servers.json");
+	let mcpServersJson = [];
+	try {
+		mcpServersJson = await fs_extra.default.readJson(mcpFile);
+	} catch {}
+	const extensionsDir = path.default.join(path.default.dirname(CONFIG_FILE), "..", "..");
+	const serverDefs = {
+		"mcp-filesystem": {
+			command: `node ${path.default.join(process.cwd(), "extensions/mcp-filesystem/server.mjs")}`,
+			label: "Filesystem (OSINT)"
+		},
+		"mcp-browser": {
+			command: `node ${path.default.join(process.cwd(), "extensions/mcp-browser/server.mjs")}`,
+			label: "Browser/Web (OSINT)"
+		},
+		"mcp-terminal": {
+			command: `node ${path.default.join(process.cwd(), "extensions/mcp-terminal/server.mjs")}`,
+			label: "Terminal (OSINT)"
+		},
+		"mcp-github": {
+			command: `node ${path.default.join(process.cwd(), "extensions/mcp-github/server.mjs")}`,
+			label: "GitHub (OSINT)"
+		}
+	};
+	for (const serverId of mcpServers) {
+		const already = mcpServersJson.find((s) => s.id === serverId);
+		if (!already && serverDefs[serverId]) mcpServersJson.push({
+			id: serverId,
+			name: serverDefs[serverId].label,
+			transport: "stdio",
+			command: serverDefs[serverId].command,
+			enabled: true,
+			addedAt: (/* @__PURE__ */ new Date()).toISOString()
+		});
+		else if (already) already.enabled = true;
+	}
+	await fs_extra.default.ensureDir(path.default.dirname(mcpFile));
+	await fs_extra.default.writeJson(mcpFile, mcpServersJson, { spaces: 2 });
+	await fs_extra.default.writeJson(CONFIG_FILE, config, { spaces: 2 });
+	spinner.succeed("OSINT configuration applied");
+	console.log();
+	console.log(chalk.default.bold.cyan("  ✔  HyperClaw is now in OSINT mode:\n"));
+	console.log(`  Workflow: ${chalk.default.yellow(mode)}`);
+	if (target) console.log(`  Target:   ${chalk.default.white(target)} ${chalk.default.gray(`(${targetType})`)}`);
+	console.log(`  MCP:      ${chalk.default.cyan(mcpServers.join(", "))}`);
+	console.log();
+	console.log(chalk.default.bold("  Start your session:"));
+	console.log(`  ${chalk.default.cyan("hyperclaw daemon start")}           — start the assistant`);
+	console.log(`  ${chalk.default.cyan("hyperclaw agent --message \"...\"")} — send a message from CLI`);
+	console.log();
+	console.log(chalk.default.bold("  Example prompts:"));
+	if (mode === "recon" && target) {
+		console.log(chalk.default.gray(`  "Perform passive recon on ${target}: WHOIS, DNS, subdomains"`));
+		console.log(chalk.default.gray(`  "Find all public GitHub repos for ${target}"`));
+		console.log(chalk.default.gray(`  "Search for email addresses associated with ${target}"`));
+	} else if (mode === "bugbounty") {
+		console.log(chalk.default.gray(`  "What are common vulnerabilities in web login forms?"`));
+		console.log(chalk.default.gray(`  "Draft a bug bounty report for an XSS vulnerability"`));
+		console.log(chalk.default.gray(`  "Help me test for SSRF on the /api/fetch endpoint"`));
+	} else if (mode === "pentest") {
+		console.log(chalk.default.gray(`  "Create a pentest report template for a web application"`));
+		console.log(chalk.default.gray(`  "What ports should I check on a Linux server?"`));
+		console.log(chalk.default.gray(`  "Explain how to test for SQLi safely in a controlled environment"`));
+	} else if (mode === "footprint") {
+		console.log(chalk.default.gray(`  "Search for the digital footprint of the username 'target_user'"`));
+		console.log(chalk.default.gray(`  "Check HaveIBeenPwned for emails from domain example.com"`));
+	}
+	console.log();
+	console.log(chalk.default.gray("  To view profile: hyperclaw osint --show"));
+	console.log(chalk.default.gray("  To reset:        hyperclaw osint --reset"));
+	console.log();
+}
+async function osintQuickStart(mode) {
+	printBanner();
+	console.log(chalk.default.bold("  Available OSINT workflows:\n"));
+	for (const [m, desc] of Object.entries(MODE_DESCRIPTIONS)) {
+		const isActive = m === mode;
+		const bullet = isActive ? chalk.default.green("▶") : chalk.default.gray("○");
+		console.log(`  ${bullet} ${chalk.default.cyan(m.padEnd(12))} ${chalk.default.white(desc)}`);
+	}
+	console.log();
+	console.log(chalk.default.bold("  Commands:\n"));
+	console.log(`  ${chalk.default.cyan("hyperclaw osint setup")}           — interactive OSINT session setup`);
+	console.log(`  ${chalk.default.cyan("hyperclaw osint --show")}          — show current profile`);
+	console.log(`  ${chalk.default.cyan("hyperclaw osint --reset")}         — clear OSINT profile`);
+	console.log();
+	console.log(chalk.default.bold("  MCP servers for OSINT:\n"));
+	console.log(`  ${chalk.default.cyan("mcp-browser")}    — web_fetch, web_search, dns_lookup, whois_lookup, extract_links`);
+	console.log(`  ${chalk.default.cyan("mcp-filesystem")} — read_file, write_file, search_files (for saving reports)`);
+	console.log(`  ${chalk.default.cyan("mcp-github")}     — list_repos, search_code, get_file`);
+	console.log(`  ${chalk.default.cyan("mcp-terminal")}   — run_command (pentest mode only, requires authorization)`);
+	console.log();
+	console.log(chalk.default.yellow("  ⚠️  Always operate within authorized scope and applicable laws.\n"));
+}
+//#endregion
+exports.osintQuickStart = osintQuickStart;
+exports.osintSetup = osintSetup;

package/dist/pairing-B6RArWhD.js ADDED Viewed

@@ -0,0 +1,196 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const chalk = require_chunk.__toESM(require("chalk"));
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+const os = require_chunk.__toESM(require("os"));
+const crypto = require_chunk.__toESM(require("crypto"));
+//#region src/channels/pairing.ts
+const CREDENTIALS_DIR = path.default.join(os.default.homedir(), ".hyperclaw", "credentials");
+const CODE_ALPHABET = "ABCDEFGHJKLMNPQRSTUVWXYZ23456789";
+const CODE_LENGTH = 8;
+const EXPIRY_MS = 60 * 60 * 1e3;
+const MAX_PENDING_PER_CHANNEL = 3;
+function generateCode() {
+	const bytes = crypto.default.randomBytes(CODE_LENGTH);
+	return Array.from(bytes).map((b) => CODE_ALPHABET[b % CODE_ALPHABET.length]).join("");
+}
+function pendingFile(channelId) {
+	return path.default.join(CREDENTIALS_DIR, `${channelId}-pairing.json`);
+}
+function allowFromFile(channelId, accountId = "default") {
+	const suffix = accountId === "default" ? "" : `-${accountId}`;
+	return path.default.join(CREDENTIALS_DIR, `${channelId}${suffix}-allowFrom.json`);
+}
+async function readPending(channelId) {
+	try {
+		const data = await fs_extra.default.readJson(pendingFile(channelId));
+		return Array.isArray(data) ? data : [];
+	} catch {
+		return [];
+	}
+}
+async function writePending(channelId, entries) {
+	await fs_extra.default.ensureDir(CREDENTIALS_DIR);
+	await fs_extra.default.writeJson(pendingFile(channelId), entries, {
+		spaces: 2,
+		mode: 384
+	});
+}
+async function readAllowFrom(channelId, accountId = "default") {
+	try {
+		return await fs_extra.default.readJson(allowFromFile(channelId, accountId));
+	} catch {
+		return {
+			senderIds: [],
+			updatedAt: (/* @__PURE__ */ new Date()).toISOString()
+		};
+	}
+}
+async function writeAllowFrom(channelId, store, accountId = "default") {
+	await fs_extra.default.ensureDir(CREDENTIALS_DIR);
+	await fs_extra.default.writeJson(allowFromFile(channelId, accountId), store, {
+		spaces: 2,
+		mode: 384
+	});
+}
+var PairingStore = class {
+	channelId;
+	accountId;
+	constructor(channelId, accountId = "default") {
+		this.channelId = channelId;
+		this.accountId = accountId;
+	}
+	async isApproved(senderId) {
+		const store = await readAllowFrom(this.channelId, this.accountId);
+		return store.senderIds.includes(senderId);
+	}
+	/**
+	* Returns the pairing code to send to the user, or null if already pending
+	* (code is resent only once per hour per sender).
+	*/
+	async createRequest(senderId) {
+		const now = Date.now();
+		const entries = (await readPending(this.channelId)).filter((e) => {
+			return new Date(e.expiresAt).getTime() > now;
+		});
+		const existing = entries.find((e) => e.senderId === senderId && e.channelId === this.channelId);
+		if (existing) return existing.code;
+		const channelPending = entries.filter((e) => e.channelId === this.channelId && e.accountId === this.accountId);
+		if (channelPending.length >= MAX_PENDING_PER_CHANNEL) return null;
+		const code = generateCode();
+		const entry = {
+			code,
+			channelId: this.channelId,
+			accountId: this.accountId,
+			senderId,
+			createdAt: (/* @__PURE__ */ new Date()).toISOString(),
+			expiresAt: new Date(now + EXPIRY_MS).toISOString()
+		};
+		entries.push(entry);
+		await writePending(this.channelId, entries);
+		return code;
+	}
+	/**
+	* Called when a sender submits a code.
+	* Returns true if the code was valid and the sender is now approved.
+	*/
+	async verify(code, senderId) {
+		const now = Date.now();
+		const entries = await readPending(this.channelId);
+		const idx = entries.findIndex((e) => e.code === code.toUpperCase() && e.channelId === this.channelId && e.accountId === this.accountId && new Date(e.expiresAt).getTime() > now);
+		if (idx === -1) return false;
+		const entry = entries[idx];
+		entries.splice(idx, 1);
+		await writePending(this.channelId, entries);
+		const store = await readAllowFrom(this.channelId, this.accountId);
+		if (!store.senderIds.includes(entry.senderId)) store.senderIds.push(entry.senderId);
+		store.updatedAt = (/* @__PURE__ */ new Date()).toISOString();
+		await writeAllowFrom(this.channelId, store, this.accountId);
+		return true;
+	}
+	async listPending() {
+		const now = Date.now();
+		const entries = await readPending(this.channelId);
+		return entries.filter((e) => e.channelId === this.channelId && e.accountId === this.accountId && new Date(e.expiresAt).getTime() > now);
+	}
+	async cliApprove(code) {
+		const now = Date.now();
+		const entries = await readPending(this.channelId);
+		const idx = entries.findIndex((e) => e.code === code.toUpperCase() && e.channelId === this.channelId && e.accountId === this.accountId && new Date(e.expiresAt).getTime() > now);
+		if (idx === -1) return false;
+		const entry = entries[idx];
+		entries.splice(idx, 1);
+		await writePending(this.channelId, entries);
+		const store = await readAllowFrom(this.channelId, this.accountId);
+		if (!store.senderIds.includes(entry.senderId)) store.senderIds.push(entry.senderId);
+		store.updatedAt = (/* @__PURE__ */ new Date()).toISOString();
+		await writeAllowFrom(this.channelId, store, this.accountId);
+		return true;
+	}
+};
+const SUPPORTED_CHANNELS = [
+	"telegram",
+	"whatsapp",
+	"signal",
+	"imessage",
+	"discord",
+	"slack",
+	"feishu"
+];
+var GlobalPairingManager = class {
+	async showList(channelFilter) {
+		const now = Date.now();
+		const channels = channelFilter ? [channelFilter] : SUPPORTED_CHANNELS;
+		console.log(chalk.default.bold.cyan("\n  🔑 PAIRING CODES\n"));
+		let total = 0;
+		for (const ch of channels) {
+			let pending = [];
+			try {
+				const raw = await readPending(ch);
+				pending = raw.filter((e) => new Date(e.expiresAt).getTime() > now);
+			} catch {}
+			if (pending.length === 0) continue;
+			total += pending.length;
+			console.log(chalk.default.yellow(`  ─── ${ch} ───`));
+			for (const e of pending) {
+				const expiresIn = Math.round((new Date(e.expiresAt).getTime() - now) / 6e4);
+				const acctSuffix = e.accountId !== "default" ? chalk.default.gray(` [${e.accountId}]`) : "";
+				console.log(`  ${chalk.default.yellow("○")} ${chalk.default.bold(e.code)}  sender: ${chalk.default.white(e.senderId)}${acctSuffix}  expires: ${chalk.default.gray(`${expiresIn}m`)}`);
+			}
+			console.log();
+		}
+		if (total === 0) console.log(chalk.default.gray(`  No pending pairing requests${channelFilter ? ` for ${channelFilter}` : ""}.\n`));
+	}
+	async cliApprove(channelId, code, accountId = "default") {
+		if (!SUPPORTED_CHANNELS.includes(channelId)) {
+			console.log(chalk.default.red(`\n  ✖  Unknown channel: ${channelId}`));
+			console.log(chalk.default.gray(`     Supported: ${SUPPORTED_CHANNELS.join(", ")}\n`));
+			return;
+		}
+		const store = new PairingStore(channelId, accountId);
+		const ok = await store.cliApprove(code);
+		if (ok) {
+			console.log(chalk.default.green(`\n  ✔  Pairing approved — ${channelId} code ${code.toUpperCase()}`));
+			console.log(chalk.default.gray(`  Sender added to ${channelId}${accountId !== "default" ? `-${accountId}` : ""}-allowFrom.json\n`));
+		} else console.log(chalk.default.red(`\n  ✖  Code not found, expired, or already used: ${channelId} ${code.toUpperCase()}\n`));
+	}
+	async getApprovedSenders(channelId, accountId = "default") {
+		const store = await readAllowFrom(channelId, accountId);
+		return store.senderIds;
+	}
+};
+//#endregion
+Object.defineProperty(exports, 'GlobalPairingManager', {
+  enumerable: true,
+  get: function () {
+    return GlobalPairingManager;
+  }
+});
+Object.defineProperty(exports, 'PairingStore', {
+  enumerable: true,
+  get: function () {
+    return PairingStore;
+  }
+});

package/dist/pairing-BsQ08DLq.js ADDED Viewed

@@ -0,0 +1,4 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_pairing = require('./pairing-B6RArWhD.js');
+exports.PairingStore = require_pairing.PairingStore;