hyperclaw 5.2.7 → 5.2.8

package/dist/config-SgDxKyfV.js

@@ -0,0 +1,261 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_paths = require('./paths-AIyBxIzm.js');
+const require_paths$1 = require('./paths-DPovhojT.js');
+const require_env_resolve = require('./env-resolve-BdagnXhK.js');
+const chalk = require_chunk.__toESM(require("chalk"));
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+
+//#region src/cli/config.ts
+require_paths$1.init_paths();
+require_env_resolve.init_env_resolve();
+const getHC_DIR = () => require_paths.getHyperClawDir();
+const getCFG_FILE = () => require_paths.getConfigPath();
+var ConfigStore = class {
+	/** Load raw config from disk (no hydration). Use for persistence to avoid writing resolved secrets back. */
+	async loadRaw() {
+		try {
+			return await fs_extra.default.readJson(getCFG_FILE());
+		} catch (e) {
+			if (e?.code === "ENOENT") return {};
+			console.error("[config] Failed to load config:", e?.message ?? String(e));
+			throw e;
+		}
+	}
+	/** Load config with env/credentials hydration for runtime use. Do NOT pass the result to save — use patch/save with explicit values only. */
+	async load() {
+		try {
+			const cfg = await fs_extra.default.readJson(getCFG_FILE());
+			if (cfg.channelConfigs) for (const [chId, ch] of Object.entries(cfg.channelConfigs)) {
+				const tok = require_env_resolve.resolveChannelToken(chId, ch?.token || ch?.botToken);
+				if (tok && !ch?.token) ch.token = tok;
+				if (tok && !ch?.botToken) ch.botToken = tok;
+			}
+			if (cfg.provider && !cfg.provider.apiKey) {
+				const key = await require_env_resolve.getProviderCredentialAsync(cfg);
+				if (key) cfg.provider.apiKey = key;
+			}
+			return cfg;
+		} catch (e) {
+			if (e?.code === "ENOENT") return {};
+			console.error("[config] Failed to load config:", e?.message ?? String(e));
+			throw e;
+		}
+	}
+	async save(cfg) {
+		const target = getCFG_FILE();
+		const tmp = target + ".tmp";
+		await fs_extra.default.ensureDir(getHC_DIR());
+		await fs_extra.default.writeJson(tmp, cfg, { spaces: 2 });
+		await fs_extra.default.chmod(tmp, 384);
+		await fs_extra.default.rename(tmp, target);
+	}
+	/** Merge patch into raw config and save. Uses loadRaw() so hydrated secrets from env/store are never written back. */
+	async patch(patch) {
+		const raw = await this.loadRaw();
+		await this.save(deepMerge(raw, patch));
+	}
+	async setProviderKey(providerId, apiKey) {
+		const cfg = await this.load();
+		await this.patch({ provider: {
+			...cfg.provider,
+			providerId,
+			apiKey
+		} });
+		console.log(chalk.default.green(`  ✅ API key saved for ${providerId}`));
+	}
+	async setModel(modelId) {
+		const cfg = await this.load();
+		await this.patch({ provider: {
+			...cfg.provider,
+			modelId
+		} });
+		console.log(chalk.default.green(`  ✅ Model: ${modelId}`));
+	}
+	async setServiceApiKey(serviceId, apiKey) {
+		const cfg = await this.load();
+		const apiKeys = {
+			...cfg.skills?.apiKeys || {},
+			[serviceId]: apiKey
+		};
+		await this.patch({ skills: {
+			...cfg.skills,
+			installed: cfg.skills?.installed || [],
+			apiKeys
+		} });
+		console.log(chalk.default.green(`  ✅ Service API key saved for ${serviceId}`));
+	}
+	async enableChannel(channelId, channelConfig) {
+		const cfg = await this.load();
+		const gwBase = cfg.gateway ?? {
+			port: 18789,
+			bind: "127.0.0.1",
+			authToken: "",
+			runtime: "node",
+			enabledChannels: [],
+			hooks: true,
+			tailscaleExposure: "off"
+		};
+		const channels = gwBase.enabledChannels ?? [];
+		if (!channels.includes(channelId)) channels.push(channelId);
+		const patch = { gateway: {
+			...gwBase,
+			enabledChannels: channels
+		} };
+		if (channelConfig) patch.channelConfigs = {
+			...cfg.channelConfigs,
+			[channelId]: channelConfig
+		};
+		await this.patch(patch);
+		console.log(chalk.default.green(`  ✅ Channel enabled: ${channelId}`));
+	}
+	async disableChannel(channelId) {
+		const cfg = await this.load();
+		const gwBase = cfg.gateway ?? {
+			port: 18789,
+			bind: "127.0.0.1",
+			authToken: "",
+			runtime: "node",
+			enabledChannels: [],
+			hooks: true,
+			tailscaleExposure: "off"
+		};
+		const channels = (gwBase.enabledChannels ?? []).filter((c) => c !== channelId);
+		await this.patch({ gateway: {
+			...gwBase,
+			enabledChannels: channels
+		} });
+		console.log(chalk.default.green(`  ✅ Channel disabled: ${channelId}`));
+	}
+	async setGatewayPort(port) {
+		const cfg = await this.load();
+		const gwBase = cfg.gateway ?? {
+			port: 18789,
+			bind: "127.0.0.1",
+			authToken: "",
+			runtime: "node",
+			enabledChannels: [],
+			hooks: true,
+			tailscaleExposure: "off"
+		};
+		await this.patch({ gateway: {
+			...gwBase,
+			port
+		} });
+	}
+	async setGatewayBind(bind) {
+		const cfg = await this.load();
+		const gwBase = cfg.gateway ?? {
+			port: 18789,
+			bind: "127.0.0.1",
+			authToken: "",
+			runtime: "node",
+			enabledChannels: [],
+			hooks: true,
+			tailscaleExposure: "off"
+		};
+		await this.patch({ gateway: {
+			...gwBase,
+			bind
+		} });
+	}
+	async generateToken() {
+		const token = require("crypto").randomBytes(32).toString("base64url");
+		const cfg = await this.load();
+		const gwBase = cfg.gateway ?? {
+			port: 18789,
+			bind: "127.0.0.1",
+			authToken: "",
+			runtime: "node",
+			enabledChannels: [],
+			hooks: true,
+			tailscaleExposure: "off"
+		};
+		await this.patch({ gateway: {
+			...gwBase,
+			authToken: token
+		} });
+		return token;
+	}
+	async show(scrub = true) {
+		const cfg = await this.load();
+		const display = scrub ? scrubSecrets(cfg) : cfg;
+		console.log(chalk.default.bold.cyan("\n  🦅 HYPERCLAW CONFIGURATION\n"));
+		printSection("Provider", display.provider);
+		printSection("Gateway", display.gateway);
+		printSection("Identity", display.identity);
+		printSection("PC Access", display.pcAccess);
+		if (display.channelConfigs && Object.keys(display.channelConfigs).length > 0) {
+			console.log(chalk.default.bold.white("  Channel Configs:"));
+			for (const [ch, v] of Object.entries(display.channelConfigs)) {
+				const scrubbed = scrubChannelConfig(v);
+				console.log(`    ${chalk.default.cyan(ch)}: ${JSON.stringify(scrubbed).slice(0, 80)}`);
+			}
+			console.log();
+		}
+		if (display.skills?.installed?.length) {
+			console.log(chalk.default.bold.white("  Skills:"));
+			display.skills.installed.forEach((s) => console.log(`    • ${s}`));
+			console.log();
+		}
+		console.log(chalk.default.gray(`  Config file: ${getCFG_FILE()}`));
+		console.log();
+	}
+};
+function deepMerge(base, patch) {
+	const result = { ...base };
+	for (const key of Object.keys(patch || {})) {
+		if (patch[key] === void 0) continue;
+		if (patch[key] !== null && typeof patch[key] === "object" && !Array.isArray(patch[key])) result[key] = deepMerge(base[key] || {}, patch[key]);
+		else result[key] = patch[key];
+	}
+	return result;
+}
+function scrubSecrets(cfg) {
+	const s = JSON.parse(JSON.stringify(cfg));
+	if (s.provider?.apiKey) s.provider.apiKey = "●●●●●●●●";
+	if (Array.isArray(s.providers)) for (const p of s.providers) {
+		if (p.apiKey) p.apiKey = "●●●●●●●●";
+		if (Array.isArray(p.apiKeys)) p.apiKeys = p.apiKeys.map(() => "●●●●●●●●");
+	}
+	if (s.gateway?.authToken) s.gateway.authToken = "●●●●●●●●";
+	if (s.gateway?.remote?.token) s.gateway.remote.token = "●●●●●●●●";
+	if (s.gateway?.remote?.password) s.gateway.remote.password = "●●●●●●●●";
+	if (s.talkMode?.apiKey) s.talkMode.apiKey = "●●●●●●●●";
+	if (s.skills?.apiKeys) {
+		const keys = Object.keys(s.skills.apiKeys);
+		s.skills.apiKeys = Object.fromEntries(keys.map((k) => [k, "●●●●●●●●"]));
+	}
+	return s;
+}
+function scrubChannelConfig(ch) {
+	const s = { ...ch };
+	const secretFields = [
+		"token",
+		"accessToken",
+		"apiKey",
+		"appSecret",
+		"appPassword",
+		"signingSecret",
+		"channelSecret",
+		"secretKey",
+		"password",
+		"verifyToken"
+	];
+	for (const f of secretFields) if (s[f]) s[f] = "●●●●●●●●";
+	return s;
+}
+function printSection(label, data) {
+	if (!data || Object.keys(data).length === 0) return;
+	console.log(chalk.default.bold.white(`  ${label}:`));
+	for (const [k, v] of Object.entries(data)) if (Array.isArray(v)) console.log(`    ${chalk.default.gray(k)}: ${v.join(", ") || "(none)"}`);
+	else console.log(`    ${chalk.default.gray(k)}: ${v}`);
+	console.log();
+}
+
+//#endregion
+Object.defineProperty(exports, 'ConfigStore', {
+  enumerable: true,
+  get: function () {
+    return ConfigStore;
+  }
+});

package/dist/cost-tracker-CgEXyEtz.js

@@ -0,0 +1,103 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+
+//#region src/infra/cost-tracker.ts
+/** Rough cost per 1M tokens by provider/model (Claude Sonnet ballpark). */
+const DEFAULT_COST_PER_1M_INPUT = 3;
+const DEFAULT_COST_PER_1M_OUTPUT = 15;
+function estimateCost(usage, model) {
+	if (!usage) return 0;
+	const inp = (usage.input || 0) + (usage.cacheRead || 0);
+	const inputCost = inp / 1e6 * DEFAULT_COST_PER_1M_INPUT;
+	const outputCost = (usage.output || 0) / 1e6 * DEFAULT_COST_PER_1M_OUTPUT;
+	return inputCost + outputCost;
+}
+/** Path to cost log file for a session. */
+function getCostLogPath(baseDir, sessionId) {
+	return path.default.join(baseDir, "costs", `session-${sessionId}.jsonl`);
+}
+/** Append a cost entry for a session. */
+async function recordUsage(baseDir, sessionId, usage, opts) {
+	const costUsd = estimateCost(usage, opts?.model);
+	const entry = {
+		sessionId,
+		source: opts?.source,
+		tenantId: opts?.tenantId,
+		timestamp: (/* @__PURE__ */ new Date()).toISOString(),
+		usage,
+		costUsd,
+		model: opts?.model
+	};
+	const dir = path.default.join(baseDir, "costs");
+	await fs_extra.default.ensureDir(dir);
+	const fp = getCostLogPath(baseDir, sessionId);
+	await fs_extra.default.appendFile(fp, JSON.stringify(entry) + "\n");
+}
+/** Read and aggregate all entries for a session. */
+async function getSessionSummary(baseDir, sessionId) {
+	const fp = getCostLogPath(baseDir, sessionId);
+	if (!await fs_extra.default.pathExists(fp)) return {
+		input: 0,
+		output: 0,
+		cacheRead: 0,
+		costUsd: 0,
+		runs: 0
+	};
+	const lines = (await fs_extra.default.readFile(fp, "utf8")).trim().split("\n").filter(Boolean);
+	let input = 0, output = 0, cacheRead = 0, costUsd = 0;
+	for (const line of lines) try {
+		const e = JSON.parse(line);
+		input += e.usage.input || 0;
+		output += e.usage.output || 0;
+		cacheRead += e.usage.cacheRead || 0;
+		costUsd += e.costUsd || 0;
+	} catch {}
+	return {
+		input,
+		output,
+		cacheRead,
+		costUsd,
+		runs: lines.length
+	};
+}
+/** Get global summary across all sessions. */
+async function getGlobalSummary(baseDir) {
+	const dir = path.default.join(baseDir, "costs");
+	if (!await fs_extra.default.pathExists(dir)) return {
+		sessions: 0,
+		totalInput: 0,
+		totalOutput: 0,
+		totalCacheRead: 0,
+		totalCostUsd: 0,
+		totalRuns: 0
+	};
+	const files = (await fs_extra.default.readdir(dir)).filter((f) => f.startsWith("session-") && f.endsWith(".jsonl"));
+	let totalInput = 0, totalOutput = 0, totalCacheRead = 0, totalCostUsd = 0, totalRuns = 0;
+	for (const f of files) {
+		const fp = path.default.join(dir, f);
+		const content = await fs_extra.default.readFile(fp, "utf8").catch(() => "");
+		for (const line of content.trim().split("\n").filter(Boolean)) try {
+			const e = JSON.parse(line);
+			totalInput += e.usage.input || 0;
+			totalOutput += e.usage.output || 0;
+			totalCacheRead += e.usage.cacheRead || 0;
+			totalCostUsd += e.costUsd || 0;
+			totalRuns++;
+		} catch {}
+	}
+	return {
+		sessions: files.length,
+		totalInput,
+		totalOutput,
+		totalCacheRead,
+		totalCostUsd,
+		totalRuns
+	};
+}
+
+//#endregion
+exports.estimateCost = estimateCost;
+exports.getGlobalSummary = getGlobalSummary;
+exports.getSessionSummary = getSessionSummary;
+exports.recordUsage = recordUsage;

package/dist/credentials-store-1LDtNReY.js

@@ -0,0 +1,89 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_paths = require('./paths-AIyBxIzm.js');
+const require_paths$1 = require('./paths-DPovhojT.js');
+const chalk = require_chunk.__toESM(require("chalk"));
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+
+//#region src/secrets/credentials-store.ts
+var CredentialsStore;
+var init_credentials_store = require_chunk.__esm({ "src/secrets/credentials-store.ts"() {
+	require_paths$1.init_paths();
+	CredentialsStore = class {
+		credsDir;
+		constructor(baseDir) {
+			const base = baseDir ?? require_paths.getHyperClawDir();
+			this.credsDir = path.default.join(base, "credentials");
+		}
+		filePath(providerId) {
+			const safe = providerId.replace(/[^a-zA-Z0-9_-]/g, "_");
+			return path.default.join(this.credsDir, `${safe}.json`);
+		}
+		async set(providerId, creds) {
+			await fs_extra.default.ensureDir(this.credsDir);
+			await fs_extra.default.chmod(this.credsDir, 448);
+			const record = {
+				...creds,
+				providerId,
+				updatedAt: (/* @__PURE__ */ new Date()).toISOString()
+			};
+			const fpath = this.filePath(providerId);
+			await fs_extra.default.writeJson(fpath, record, { spaces: 2 });
+			await fs_extra.default.chmod(fpath, 384);
+		}
+		async get(providerId) {
+			const fpath = this.filePath(providerId);
+			if (!await fs_extra.default.pathExists(fpath)) return null;
+			const stat = await fs_extra.default.stat(fpath);
+			if (process.platform !== "win32" && (stat.mode & 63) !== 0) {
+				console.log(chalk.default.yellow(`  ⚠  Unsafe permissions on credentials/${providerId}.json — fixing...`));
+				await fs_extra.default.chmod(fpath, 384);
+			}
+			return fs_extra.default.readJson(fpath);
+		}
+		async remove(providerId) {
+			const fpath = this.filePath(providerId);
+			await fs_extra.default.remove(fpath);
+			console.log(chalk.default.green(`  ✔  Credentials removed: ${providerId}`));
+		}
+		async list() {
+			if (!await fs_extra.default.pathExists(this.credsDir)) return [];
+			const files = await fs_extra.default.readdir(this.credsDir);
+			return files.filter((f) => f.endsWith(".json")).map((f) => f.replace(".json", ""));
+		}
+		async showList() {
+			const providers = await this.list();
+			console.log(chalk.default.bold.cyan("\n  🔐 CREDENTIALS\n"));
+			if (providers.length === 0) {
+				console.log(chalk.default.gray("  No credentials stored.\n"));
+				console.log(chalk.default.gray("  Add with: hyperclaw auth add <service_id>  (for any API key)\n"));
+				console.log(chalk.default.gray("  Or:       hyperclaw secrets set KEY=value  (for .env vars)\n"));
+				return;
+			}
+			for (const p of providers) {
+				const cred = await this.get(p);
+				const hasKey = !!cred?.apiKey;
+				const hasRefresh = !!cred?.refreshToken;
+				const expiry = cred?.expiresAt ? new Date(cred.expiresAt) > /* @__PURE__ */ new Date() ? chalk.default.green("valid") : chalk.default.red("expired") : chalk.default.gray("no expiry");
+				console.log(`  ${chalk.default.green("●")} ${chalk.default.white(p.padEnd(20))} ${hasKey ? chalk.default.cyan("api_key") : ""}${hasRefresh ? chalk.default.yellow(" refresh_token") : ""} ${expiry}`);
+				console.log(`     ${chalk.default.gray(`Updated: ${cred?.updatedAt ? new Date(cred.updatedAt).toLocaleString() : "unknown"}`)}`);
+				console.log();
+			}
+			console.log(chalk.default.gray("  credentials/ — stored at ~/.hyperclaw/credentials/*.json (mode 0600)\n"));
+		}
+	};
+} });
+
+//#endregion
+Object.defineProperty(exports, 'CredentialsStore', {
+  enumerable: true,
+  get: function () {
+    return CredentialsStore;
+  }
+});
+Object.defineProperty(exports, 'init_credentials_store', {
+  enumerable: true,
+  get: function () {
+    return init_credentials_store;
+  }
+});

package/dist/credentials-store-BFxEJR00.js

@@ -0,0 +1,7 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+require('./paths-AIyBxIzm.js');
+require('./paths-DPovhojT.js');
+const require_credentials_store = require('./credentials-store-1LDtNReY.js');
+
+require_credentials_store.init_credentials_store();
+exports.CredentialsStore = require_credentials_store.CredentialsStore;

package/dist/cron-tasks-1E6wKpTv.js

@@ -0,0 +1,85 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_paths = require('./paths-AIyBxIzm.js');
+const require_paths$1 = require('./paths-DPovhojT.js');
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+
+//#region src/services/cron-tasks.ts
+require_paths$1.init_paths();
+const getCronTasksFile = () => path.default.join(require_paths.getHyperClawDir(), "cron-tasks.json");
+let tasks = [];
+async function loadCronTasks() {
+	try {
+		tasks = await fs_extra.default.readJson(getCronTasksFile());
+	} catch {
+		tasks = [];
+	}
+	return tasks;
+}
+async function saveCronTasks() {
+	const f = getCronTasksFile();
+	await fs_extra.default.ensureDir(path.default.dirname(f));
+	await fs_extra.default.writeJson(f, tasks, { spaces: 2 });
+}
+function addCronTask(schedule, prompt, name) {
+	const id = `task-${Date.now().toString(36)}`;
+	const task = {
+		id,
+		schedule,
+		prompt,
+		name,
+		enabled: true,
+		createdAt: (/* @__PURE__ */ new Date()).toISOString()
+	};
+	tasks.push(task);
+	return task;
+}
+function removeCronTask(id) {
+	const i = tasks.findIndex((t) => t.id === id);
+	if (i >= 0) {
+		tasks.splice(i, 1);
+		return true;
+	}
+	return false;
+}
+async function runCronTask(task, port = 18789) {
+	const http = await import("http");
+	return new Promise((resolve, reject) => {
+		const payload = JSON.stringify({ message: task.prompt });
+		const req = http.request({
+			hostname: "127.0.0.1",
+			port,
+			path: "/api/webhook/inbound",
+			method: "POST",
+			headers: {
+				"Content-Type": "application/json",
+				"Content-Length": Buffer.byteLength(payload)
+			}
+		}, (res) => {
+			let data = "";
+			res.on("data", (c) => data += c);
+			res.on("end", async () => {
+				task.lastRunAt = (/* @__PURE__ */ new Date()).toISOString();
+				await saveCronTasks().catch(() => {});
+				resolve();
+			});
+		});
+		req.on("error", (e) => {
+			console.error(`[cron] task ${task.id} failed:`, e.message);
+			resolve();
+		});
+		req.setTimeout(6e4, () => {
+			req.destroy();
+			resolve();
+		});
+		req.write(payload);
+		req.end();
+	});
+}
+
+//#endregion
+exports.addCronTask = addCronTask;
+exports.loadCronTasks = loadCronTasks;
+exports.removeCronTask = removeCronTask;
+exports.runCronTask = runCronTask;
+exports.saveCronTasks = saveCronTasks;

package/dist/daemon-B13UIqvL.js

@@ -0,0 +1,7 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+require('./paths-AIyBxIzm.js');
+require('./paths-DPovhojT.js');
+require('./server-DUDXqJSo.js');
+const require_daemon = require('./daemon-CzOW-1PS.js');
+
+exports.DaemonManager = require_daemon.DaemonManager;