hyperclaw 5.0.0 → 5.0.2

package/dist/claw-tasks-B-8RRMdq.js

@@ -0,0 +1,80 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const https = require_chunk.__toESM(require("https"));
+
+//#region src/services/claw-tasks.ts
+/** List open bounties. */
+async function listBounties(limit = 20, status = "open") {
+	if (!CLAW_TASKS_API) return [];
+	try {
+		const q = new URLSearchParams({ limit: String(limit) });
+		if (status === "open") q.set("status", "open");
+		const body = await fetchJson(`${CLAW_TASKS_API}/api/bounties?${q}`);
+		return Array.isArray(body.bounties) ? body.bounties : [];
+	} catch {
+		return [];
+	}
+}
+/** Claim a bounty (requires agent auth). */
+async function claimBounty(bountyId, agentToken) {
+	if (!CLAW_TASKS_API) return null;
+	try {
+		const body = await postJson(`${CLAW_TASKS_API}/api/bounties/${encodeURIComponent(bountyId)}/claim`, {}, agentToken);
+		return body.bounty || null;
+	} catch {
+		return null;
+	}
+}
+function fetchJson(url) {
+	return new Promise((resolve, reject) => {
+		https.default.get(url, (res) => {
+			let data = "";
+			res.on("data", (c) => data += c);
+			res.on("end", () => {
+				try {
+					resolve(JSON.parse(data));
+				} catch {
+					reject(new Error("Invalid JSON"));
+				}
+			});
+		}).on("error", reject);
+	});
+}
+function postJson(url, payload, token) {
+	return new Promise((resolve, reject) => {
+		const u = new URL(url);
+		const body = JSON.stringify(payload);
+		const req = https.default.request({
+			hostname: u.hostname,
+			port: 443,
+			path: u.pathname,
+			method: "POST",
+			headers: {
+				"Content-Type": "application/json",
+				"Content-Length": Buffer.byteLength(body),
+				...token ? { Authorization: `Bearer ${token}` } : {}
+			}
+		}, (res) => {
+			let data = "";
+			res.on("data", (c) => data += c);
+			res.on("end", () => {
+				try {
+					resolve(JSON.parse(data || "{}"));
+				} catch {
+					resolve({});
+				}
+			});
+		});
+		req.on("error", reject);
+		req.write(body);
+		req.end();
+	});
+}
+var CLAW_TASKS_API;
+var init_claw_tasks = require_chunk.__esm({ "src/services/claw-tasks.ts"() {
+	CLAW_TASKS_API = process.env.CLAW_TASKS_API_URL || "";
+} });
+
+//#endregion
+init_claw_tasks();
+exports.claimBounty = claimBounty;
+exports.listBounties = listBounties;

package/dist/claw-tasks-Cyzdbhz_.js

@@ -0,0 +1,80 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const https = require_chunk.__toESM(require("https"));
+
+//#region src/services/claw-tasks.ts
+/** List open bounties. */
+async function listBounties(limit = 20, status = "open") {
+	if (!CLAW_TASKS_API) return [];
+	try {
+		const q = new URLSearchParams({ limit: String(limit) });
+		if (status === "open") q.set("status", "open");
+		const body = await fetchJson(`${CLAW_TASKS_API}/api/bounties?${q}`);
+		return Array.isArray(body.bounties) ? body.bounties : [];
+	} catch {
+		return [];
+	}
+}
+/** Claim a bounty (requires agent auth). */
+async function claimBounty(bountyId, agentToken) {
+	if (!CLAW_TASKS_API) return null;
+	try {
+		const body = await postJson(`${CLAW_TASKS_API}/api/bounties/${encodeURIComponent(bountyId)}/claim`, {}, agentToken);
+		return body.bounty || null;
+	} catch {
+		return null;
+	}
+}
+function fetchJson(url) {
+	return new Promise((resolve, reject) => {
+		https.default.get(url, (res) => {
+			let data = "";
+			res.on("data", (c) => data += c);
+			res.on("end", () => {
+				try {
+					resolve(JSON.parse(data));
+				} catch {
+					reject(new Error("Invalid JSON"));
+				}
+			});
+		}).on("error", reject);
+	});
+}
+function postJson(url, payload, token) {
+	return new Promise((resolve, reject) => {
+		const u = new URL(url);
+		const body = JSON.stringify(payload);
+		const req = https.default.request({
+			hostname: u.hostname,
+			port: 443,
+			path: u.pathname,
+			method: "POST",
+			headers: {
+				"Content-Type": "application/json",
+				"Content-Length": Buffer.byteLength(body),
+				...token ? { Authorization: `Bearer ${token}` } : {}
+			}
+		}, (res) => {
+			let data = "";
+			res.on("data", (c) => data += c);
+			res.on("end", () => {
+				try {
+					resolve(JSON.parse(data || "{}"));
+				} catch {
+					resolve({});
+				}
+			});
+		});
+		req.on("error", reject);
+		req.write(body);
+		req.end();
+	});
+}
+var CLAW_TASKS_API;
+var init_claw_tasks = require_chunk.__esm({ "src/services/claw-tasks.ts"() {
+	CLAW_TASKS_API = process.env.CLAW_TASKS_API_URL || "";
+} });
+
+//#endregion
+init_claw_tasks();
+exports.claimBounty = claimBounty;
+exports.listBounties = listBounties;

package/dist/connector-1x1rCBHz.js

@@ -0,0 +1,162 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const chalk = require_chunk.__toESM(require("chalk"));
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+const os = require_chunk.__toESM(require("os"));
+const https = require_chunk.__toESM(require("https"));
+const events = require_chunk.__toESM(require("events"));
+
+//#region extensions/instagram/src/connector.ts
+const STATE_FILE = path.default.join(os.default.homedir(), ".hyperclaw", "instagram-state.json");
+function igReq(token, method, endpoint, body) {
+	return new Promise((resolve, reject) => {
+		const payload = body ? JSON.stringify(body) : null;
+		const req = https.default.request({
+			hostname: "graph.facebook.com",
+			port: 443,
+			path: `/v18.0${endpoint}`,
+			method,
+			headers: {
+				"Authorization": `Bearer ${token}`,
+				...payload ? {
+					"Content-Type": "application/json",
+					"Content-Length": Buffer.byteLength(payload)
+				} : {}
+			}
+		}, (res) => {
+			let data = "";
+			res.on("data", (c) => data += c);
+			res.on("end", () => {
+				try {
+					const r = JSON.parse(data);
+					if (r.error) reject(new Error(r.error.message));
+					else resolve(r);
+				} catch {
+					reject(new Error("Invalid JSON"));
+				}
+			});
+		});
+		req.on("error", reject);
+		if (payload) req.write(payload);
+		req.end();
+	});
+}
+var InstagramConnector = class extends events.EventEmitter {
+	config;
+	running = false;
+	processedIds = /* @__PURE__ */ new Set();
+	constructor(config) {
+		super();
+		this.config = {
+			dmPolicy: "allowlist",
+			allowFrom: [],
+			approvedPairings: [],
+			pendingPairings: {},
+			...config
+		};
+	}
+	async connect() {
+		const info = await igReq(this.config.pageAccessToken, "GET", `/${this.config.instagramAccountId}?fields=name,username`);
+		await this.loadState();
+		this.running = true;
+		console.log(chalk.default.green(`  🦅 Instagram: @${info.username || info.name} connected`));
+		this.emit("connected", {
+			accountId: this.config.instagramAccountId,
+			username: info.username
+		});
+	}
+	disconnect() {
+		this.running = false;
+	}
+	verifyWebhook(mode, token, challenge) {
+		return mode === "subscribe" && token === this.config.verifyToken ? challenge : null;
+	}
+	async handleWebhook(body) {
+		let payload;
+		try {
+			payload = JSON.parse(body);
+		} catch {
+			return;
+		}
+		for (const entry of payload.entry || []) for (const messaging of entry.messaging || []) {
+			if (!messaging.message || messaging.message.is_echo) continue;
+			const msgId = messaging.message.mid;
+			if (this.processedIds.has(msgId)) continue;
+			this.processedIds.add(msgId);
+			const senderId = messaging.sender.id;
+			const text = messaging.message.text;
+			if (!text) continue;
+			const allowed = await this.checkDMPolicy(senderId, text);
+			if (!allowed) continue;
+			this.emit("message", {
+				id: msgId,
+				channelId: "instagram",
+				from: senderId,
+				chatId: senderId,
+				text,
+				timestamp: new Date(messaging.timestamp).toISOString(),
+				isDM: true
+			});
+		}
+	}
+	async checkDMPolicy(from, text) {
+		if (this.config.dmPolicy === "none") return false;
+		if (this.config.dmPolicy === "open") return true;
+		if (this.config.dmPolicy === "allowlist") {
+			if (this.config.allowFrom.includes(from)) return true;
+			await this.sendMessage(from, "🦅 HyperClaw: You are not on the allowlist.");
+			return false;
+		}
+		if (this.config.dmPolicy === "pairing") {
+			if (this.config.approvedPairings.includes(from)) return true;
+			const upper = text.trim().toUpperCase();
+			if (this.config.pendingPairings[upper]) {
+				this.config.approvedPairings.push(from);
+				delete this.config.pendingPairings[upper];
+				await this.saveState();
+				await this.sendMessage(from, "🦅 Paired! You can now send messages.");
+				return true;
+			}
+			const code = Array.from({ length: 6 }, () => "ABCDEFGHJKLMNPQRSTUVWXYZ23456789"[Math.floor(Math.random() * 32)]).join("");
+			this.config.pendingPairings[code] = from;
+			await this.saveState();
+			await this.sendMessage(from, `🦅 HyperClaw Pairing\nCode: ${code}\nApprove: hyperclaw pairing approve instagram ${code}`);
+			return false;
+		}
+		return false;
+	}
+	async sendMessage(recipientId, text) {
+		await igReq(this.config.pageAccessToken, "POST", `/${this.config.instagramAccountId}/messages`, {
+			recipient: { id: recipientId },
+			message: { text: text.slice(0, 2e3) }
+		});
+	}
+	approvePairing(code) {
+		const upper = code.toUpperCase();
+		if (!this.config.pendingPairings[upper]) return false;
+		this.config.approvedPairings.push(this.config.pendingPairings[upper]);
+		delete this.config.pendingPairings[upper];
+		this.saveState();
+		return true;
+	}
+	async loadState() {
+		try {
+			const s = await fs_extra.default.readJson(STATE_FILE);
+			if (s.p) this.config.pendingPairings = s.p;
+			if (s.a) this.config.approvedPairings = s.a;
+		} catch {}
+	}
+	async saveState() {
+		await fs_extra.default.ensureDir(path.default.dirname(STATE_FILE));
+		await fs_extra.default.writeJson(STATE_FILE, {
+			p: this.config.pendingPairings,
+			a: this.config.approvedPairings
+		}, { spaces: 2 });
+	}
+	isRunning() {
+		return this.running;
+	}
+};
+
+//#endregion
+exports.InstagramConnector = InstagramConnector;

package/dist/connector-B4jeCULG.js

@@ -0,0 +1,305 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const chalk = require_chunk.__toESM(require("chalk"));
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+const os = require_chunk.__toESM(require("os"));
+const http = require_chunk.__toESM(require("http"));
+const https = require_chunk.__toESM(require("https"));
+const events = require_chunk.__toESM(require("events"));
+
+//#region extensions/synology-chat/src/connector.ts
+function resolveAllowedIds(raw, envVal) {
+	if (Array.isArray(raw) && raw.length) return raw;
+	if (typeof raw === "string" && raw.trim()) return raw.split(",").map((s) => s.trim()).filter(Boolean);
+	if (envVal) return envVal.split(",").map((s) => s.trim()).filter(Boolean);
+	return [];
+}
+function resolveAccount(id, raw, state) {
+	const token = raw.token || process.env["SYNOLOGY_CHAT_TOKEN"] || "";
+	const incomingUrl = raw.incomingUrl || process.env["SYNOLOGY_CHAT_INCOMING_URL"] || "";
+	const allowedUserIds = resolveAllowedIds(raw.allowedUserIds, process.env["SYNOLOGY_ALLOWED_USER_IDS"]);
+	const rateLimitPerMinute = raw.rateLimitPerMinute ?? (process.env["SYNOLOGY_RATE_LIMIT"] ? parseInt(process.env["SYNOLOGY_RATE_LIMIT"], 10) : 30);
+	return {
+		id,
+		name: raw.name ?? process.env["OPENCLAW_BOT_NAME"] ?? id,
+		token,
+		incomingUrl,
+		webhookPath: raw.webhookPath ?? "/webhook/synology",
+		dmPolicy: raw.dmPolicy ?? "allowlist",
+		allowedUserIds,
+		rateLimitPerMinute,
+		allowInsecureSsl: raw.allowInsecureSsl ?? false,
+		approvedPairings: state.approved,
+		pendingPairings: state.pending
+	};
+}
+var RateLimiter = class {
+	windows = /* @__PURE__ */ new Map();
+	constructor(limitPerMinute) {
+		this.limitPerMinute = limitPerMinute;
+	}
+	allow(senderId) {
+		if (this.limitPerMinute <= 0) return true;
+		const now = Date.now();
+		const cutoff = now - 6e4;
+		const timestamps = (this.windows.get(senderId) ?? []).filter((t) => t > cutoff);
+		if (timestamps.length >= this.limitPerMinute) return false;
+		timestamps.push(now);
+		this.windows.set(senderId, timestamps);
+		return true;
+	}
+};
+function postToSynology(incomingUrl, text, userId, allowInsecureSsl = false) {
+	return new Promise((resolve, reject) => {
+		const u = new URL(incomingUrl);
+		const isHttps = u.protocol === "https:";
+		const mod = isHttps ? https.default : http.default;
+		const payloadObj = { text };
+		if (userId) payloadObj.user_ids = [parseInt(userId, 10)].filter((n) => !isNaN(n));
+		const encoded = `payload=${encodeURIComponent(JSON.stringify(payloadObj))}`;
+		const options = {
+			hostname: u.hostname,
+			port: u.port || (isHttps ? 443 : 80),
+			path: u.pathname + u.search,
+			method: "POST",
+			headers: {
+				"Content-Type": "application/x-www-form-urlencoded",
+				"Content-Length": Buffer.byteLength(encoded)
+			}
+		};
+		if (isHttps && allowInsecureSsl) options.rejectUnauthorized = false;
+		const req = (isHttps ? https.default : http.default).request(options, (res) => {
+			res.resume();
+			res.on("end", resolve);
+		});
+		req.on("error", reject);
+		req.write(encoded);
+		req.end();
+	});
+}
+const STATE_DIR = path.default.join(os.default.homedir(), ".hyperclaw");
+var SingleAccountConnector = class extends events.EventEmitter {
+	acc;
+	rateLimiter;
+	constructor(acc) {
+		super();
+		this.acc = acc;
+		this.rateLimiter = new RateLimiter(acc.rateLimitPerMinute);
+	}
+	validate() {
+		const { dmPolicy, allowedUserIds, token, incomingUrl } = this.acc;
+		if (!token) throw new Error(`Synology Chat[${this.acc.id}]: 'token' is required (set SYNOLOGY_CHAT_TOKEN or config)`);
+		if (!incomingUrl) throw new Error(`Synology Chat[${this.acc.id}]: 'incomingUrl' is required`);
+		if (dmPolicy === "allowlist" && allowedUserIds.length === 0) throw new Error(`Synology Chat[${this.acc.id}]: dmPolicy="allowlist" requires at least one allowedUserId. Use dmPolicy="open" to allow all senders.`);
+	}
+	async handleWebhook(body) {
+		let params;
+		try {
+			params = new URLSearchParams(body);
+		} catch {
+			return {
+				status: 400,
+				body: "Bad Request"
+			};
+		}
+		const inboundToken = params.get("token");
+		if (inboundToken !== this.acc.token) {
+			console.log(chalk.default.yellow(`  ⚠ Synology Chat[${this.acc.id}]: invalid token`));
+			return {
+				status: 403,
+				body: "Forbidden"
+			};
+		}
+		const text = (params.get("text") ?? "").trim();
+		const userId = params.get("user_id") ?? "";
+		const username = params.get("username") ?? userId;
+		const channelId = params.get("channel_id") ?? "";
+		const timestamp = params.get("timestamp") ?? String(Date.now());
+		if (!text || !userId) return {
+			status: 200,
+			body: "{}"
+		};
+		if (!this.rateLimiter.allow(userId)) {
+			console.log(chalk.default.gray(`  synology-chat[${this.acc.id}]: rate-limited sender ${userId}`));
+			return {
+				status: 429,
+				body: "Too Many Requests"
+			};
+		}
+		const allowed = await this._checkPolicy(userId, channelId, text);
+		if (!allowed) return {
+			status: 200,
+			body: "{}"
+		};
+		const msg = {
+			accountId: this.acc.id,
+			id: `syno-${timestamp}-${Math.random().toString(36).slice(2, 7)}`,
+			from: username,
+			userId,
+			chatId: userId,
+			text,
+			timestamp: (/* @__PURE__ */ new Date()).toISOString()
+		};
+		this.emit("message", msg);
+		return {
+			status: 200,
+			body: "{}"
+		};
+	}
+	async _checkPolicy(userId, channelId, text) {
+		const acc = this.acc;
+		if (acc.dmPolicy === "disabled") return false;
+		if (acc.dmPolicy === "open") return true;
+		if (acc.dmPolicy === "allowlist") {
+			if (acc.allowedUserIds.includes(userId)) return true;
+			console.log(chalk.default.gray(`  synology-chat[${acc.id}]: drop sender ${userId} (dmPolicy=allowlist)`));
+			return false;
+		}
+		if (acc.dmPolicy === "pairing") {
+			if (acc.approvedPairings.includes(userId)) return true;
+			const upper = text.trim().toUpperCase();
+			if (acc.pendingPairings[upper] === userId) {
+				acc.approvedPairings.push(userId);
+				delete acc.pendingPairings[upper];
+				await this._saveState();
+				await this.sendMessage(userId, "🦅 Paired! You can now send messages to the assistant.");
+				this.emit("pairing:approved", {
+					accountId: acc.id,
+					userId
+				});
+				return true;
+			}
+			const code = Array.from({ length: 6 }, () => "ABCDEFGHJKLMNPQRSTUVWXYZ23456789"[Math.floor(Math.random() * 32)]).join("");
+			acc.pendingPairings[code] = userId;
+			await this._saveState();
+			await this.sendMessage(userId, `🦅 Pairing required. Your code: \`${code}\`\nApprove: hyperclaw pairing approve synology-chat ${code}`);
+			return false;
+		}
+		return false;
+	}
+	async sendMessage(userId, text) {
+		try {
+			await postToSynology(this.acc.incomingUrl, text, userId, this.acc.allowInsecureSsl);
+		} catch (e) {
+			console.log(chalk.default.yellow(`  ⚠ Synology Chat[${this.acc.id}] send error: ${e.message}`));
+		}
+	}
+	/** Resolve outbound target. Accepts: numeric ID, "synology-chat:<id>", "user:<id>" */
+	resolveTarget(target) {
+		if (target.startsWith("synology-chat:")) return target.slice(14);
+		if (target.startsWith("user:")) return target.slice(5);
+		return target;
+	}
+	approvePairing(code) {
+		const upper = code.toUpperCase();
+		if (!this.acc.pendingPairings[upper]) return false;
+		this.acc.approvedPairings.push(this.acc.pendingPairings[upper]);
+		delete this.acc.pendingPairings[upper];
+		this._saveState();
+		return true;
+	}
+	listPendingPairings() {
+		return { ...this.acc.pendingPairings };
+	}
+	_stateFile() {
+		return path.default.join(STATE_DIR, `synology-chat-state-${this.acc.id}.json`);
+	}
+	async loadState() {
+		try {
+			const s = await fs_extra.default.readJson(this._stateFile());
+			if (Array.isArray(s.approvedPairings)) this.acc.approvedPairings = s.approvedPairings;
+			if (s.pendingPairings && typeof s.pendingPairings === "object") this.acc.pendingPairings = s.pendingPairings;
+		} catch {}
+	}
+	async _saveState() {
+		await fs_extra.default.ensureDir(STATE_DIR);
+		await fs_extra.default.writeJson(this._stateFile(), {
+			approvedPairings: this.acc.approvedPairings,
+			pendingPairings: this.acc.pendingPairings
+		}, { spaces: 2 });
+	}
+};
+var SynologyChatConnector = class extends events.EventEmitter {
+	accounts = /* @__PURE__ */ new Map();
+	/** webhookPath → accountId index for fast routing */
+	pathIndex = /* @__PURE__ */ new Map();
+	rawConfig;
+	constructor(config) {
+		super();
+		this.rawConfig = config;
+	}
+	async connect() {
+		const cfg = this.rawConfig;
+		const accountDefs = cfg.accounts ?? { default: cfg };
+		for (const [id, rawAcc] of Object.entries(accountDefs)) {
+			const merged = {
+				...cfg,
+				...rawAcc
+			};
+			const state = {
+				approved: cfg.approvedPairings ?? [],
+				pending: cfg.pendingPairings ?? {}
+			};
+			const acc = resolveAccount(id, merged, state);
+			const conn = new SingleAccountConnector(acc);
+			try {
+				conn.validate();
+			} catch (e) {
+				console.log(chalk.default.red(`  ✗ ${e.message} — account skipped`));
+				continue;
+			}
+			await conn.loadState();
+			conn.on("message", (msg) => this.emit("message", msg));
+			conn.on("pairing:approved", (info) => this.emit("pairing:approved", info));
+			this.accounts.set(id, conn);
+			this.pathIndex.set(acc.webhookPath, id);
+			console.log(chalk.default.green(`  🦅 Synology Chat[${id}]: ready — inbound path ${acc.webhookPath}`));
+		}
+		this.emit("connected", { accountIds: Array.from(this.accounts.keys()) });
+	}
+	disconnect() {
+		this.accounts.clear();
+		this.pathIndex.clear();
+	}
+	/** Called by the gateway's HTTP server for inbound POST requests. */
+	async handleWebhook(requestPath, body) {
+		const accountId = this.pathIndex.get(requestPath);
+		if (!accountId) return {
+			status: 404,
+			body: "Not Found"
+		};
+		return this._acc(accountId).handleWebhook(body);
+	}
+	/** Returns all registered webhook paths (for gateway route registration). */
+	getWebhookPaths() {
+		return Array.from(this.pathIndex.keys());
+	}
+	_acc(accountId = "default") {
+		const conn = this.accounts.get(accountId);
+		if (!conn) throw new Error(`Synology Chat: account '${accountId}' not found`);
+		return conn;
+	}
+	async sendMessage(userId, text, accountId) {
+		const conn = this._acc(accountId);
+		const resolved = conn.resolveTarget(userId);
+		return conn.sendMessage(resolved, text);
+	}
+	resolveTarget(target, accountId) {
+		return this._acc(accountId).resolveTarget(target);
+	}
+	approvePairing(code, accountId) {
+		return this._acc(accountId).approvePairing(code);
+	}
+	listPendingPairings(accountId) {
+		return this._acc(accountId).listPendingPairings();
+	}
+	getAccountIds() {
+		return Array.from(this.accounts.keys());
+	}
+	isRunning() {
+		return this.accounts.size > 0;
+	}
+};
+
+//#endregion
+exports.SynologyChatConnector = SynologyChatConnector;