hyperclaw 5.2.7 → 5.2.8

package/dist/engine-gnMjO743.js

@@ -0,0 +1,327 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_paths = require('./paths-AIyBxIzm.js');
+const require_src = require('./src-CbTAVbeI.js');
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+
+//#region packages/core/src/agent/engine.ts
+/**
+
+* Load workspace context: SOUL, AGENTS, MEMORY + custom .md
+
+*/
+async function loadWorkspaceContext(hcDir) {
+	const dir = hcDir || require_paths.getHyperClawDir();
+	let context = "";
+	const core = [
+		"SOUL.md",
+		"AGENTS.md",
+		"MEMORY.md"
+	];
+	for (const f of core) {
+		const fp = path.default.join(dir, f);
+		try {
+			context += `## ${f}\n${fs_extra.default.readFileSync(fp, "utf8")}\n\n`;
+		} catch {}
+	}
+	try {
+		const entries = fs_extra.default.readdirSync(dir);
+		for (const f of entries) if (f.endsWith(".md") && !core.includes(f)) {
+			const fp = path.default.join(dir, f);
+			try {
+				context += `## ${f}\n${fs_extra.default.readFileSync(fp, "utf8")}\n\n`;
+			} catch {}
+		}
+	} catch {}
+	return context;
+}
+/**
+
+* Load skills context (bundled + workspace)
+
+*/
+async function loadSkillsContext() {
+	const { loadSkills, buildSkillsContext } = await Promise.resolve().then(() => require("./skill-loader-DwbmjEDa.js"));
+	const skills = await loadSkills();
+	return skills.length > 0 ? buildSkillsContext(skills) : "";
+}
+/**
+
+* Resolve tools with policy, PC access, elevation.
+
+*/
+async function resolveTools(opts) {
+	const { config, source, elevated, sessionId, daemonMode, activeServer } = opts;
+	const cfg = config;
+	const sandboxNonMain = cfg?.agents?.defaults?.sandbox?.mode === "non-main" && source && CHANNEL_SOURCES.includes(source);
+	const { loadPCAccessConfig, getPCAccessTools } = await Promise.resolve().then(() => require("./pc-access-CaE4x3Vt.js"));
+	const pcCfg = await loadPCAccessConfig({ daemonMode });
+	const dockerSandbox = cfg?.tools?.dockerSandbox?.enabled === true;
+	const pcTools = pcCfg.enabled && (!sandboxNonMain || elevated) ? getPCAccessTools({ dockerSandbox }) : [];
+	const { getSessionsTools } = await Promise.resolve().then(() => require("./sessions-tools-B5_ow-s7.js"));
+	const sessionsTools = getSessionsTools(() => activeServer ?? null, sessionId);
+	const { InferenceEngine, getBuiltinTools } = await Promise.resolve().then(() => require("./inference-BHJFPEKL.js"));
+	const { getSubAgentTools } = await Promise.resolve().then(() => require("./sub-agent-tools-CldaMfd5.js"));
+	const { getBrowserTools } = await Promise.resolve().then(() => require("./browser-tools-DF2nQ1hi.js"));
+	const { getExtractionTools } = await Promise.resolve().then(() => require("./extraction-tools-B8F3nsLR.js"));
+	const { getWebsiteWatchTools } = await Promise.resolve().then(() => require("./website-watch-tools-UPSrnBk2.js"));
+	const { getVisionTools } = await Promise.resolve().then(() => require("./vision-tools-Cb86uMdh.js"));
+	const { getBountyTools } = await Promise.resolve().then(() => require("./bounty-tools-BoU1NN5N.js"));
+	const { loadMCPTools } = await Promise.resolve().then(() => require("./mcp-loader-9v8eUsNI.js"));
+	const { applyToolPolicy } = await Promise.resolve().then(() => require("./tool-policy-DtGf3Ifq.js"));
+	const CUSTOM_BASEURL_PROVIDERS = new Set([
+		"groq",
+		"mistral",
+		"deepseek",
+		"perplexity",
+		"huggingface",
+		"ollama",
+		"lmstudio",
+		"local",
+		"xai",
+		"openai",
+		"google",
+		"minimax",
+		"moonshot",
+		"qwen",
+		"zai",
+		"litellm",
+		"cloudflare",
+		"copilot",
+		"vercel-ai",
+		"opencode-zen"
+	]);
+	const isLocal = cfg?.provider?.providerId === "local" || cfg?.provider?.providerId === "ollama" || cfg?.provider?.providerId === "lmstudio";
+	const provider = cfg?.provider?.providerId === "anthropic" || cfg?.provider?.providerId === "anthropic-oauth" || cfg?.provider?.providerId === "anthropic-setup-token" ? "anthropic" : cfg?.provider?.providerId === "custom" || isLocal || CUSTOM_BASEURL_PROVIDERS.has(cfg?.provider?.providerId ?? "") ? "custom" : "openrouter";
+	const visionProvider = cfg?.provider?.providerId === "custom" || isLocal ? "openrouter" : provider === "anthropic" ? "anthropic" : "openrouter";
+	const apiKey = await (await Promise.resolve().then(() => require("./env-resolve-NEtsGacw.js"))).getProviderCredentialAsync(cfg);
+	const visionTools = getVisionTools({
+		apiKey: apiKey || "",
+		provider: visionProvider
+	});
+	const bountyTools = getBountyTools(cfg);
+	let skillInvokeTools = [];
+	try {
+		const { loadSkills } = await Promise.resolve().then(() => require("./skill-loader-DwbmjEDa.js"));
+		const { getSkillInvokeTools } = await Promise.resolve().then(() => require("./skill-runtime-BRp2D8Jb.js"));
+		const loaded = await loadSkills();
+		skillInvokeTools = getSkillInvokeTools(loaded);
+	} catch (e) {
+		if (typeof process !== "undefined" && process.env?.DEBUG) console.error("[engine] loadSkills failed:", e?.message ?? e);
+	}
+	let allTools = [
+		...getBuiltinTools(),
+		...getSubAgentTools(),
+		...sessionsTools,
+		...pcTools,
+		...getBrowserTools(),
+		...getExtractionTools(),
+		...getWebsiteWatchTools(),
+		...visionTools,
+		...bountyTools,
+		...skillInvokeTools
+	];
+	try {
+		const mcpTools = await loadMCPTools();
+		if (mcpTools.length > 0) allTools = [...allTools, ...mcpTools];
+	} catch {}
+	const policyConfig = cfg?.tools ? {
+		profile: cfg.tools.profile,
+		allow: cfg.tools.allow ?? cfg.tools.allowlist,
+		deny: cfg.tools.deny ?? cfg.tools.blocklist,
+		byProvider: cfg.tools.byProvider
+	} : void 0;
+	let tools = applyToolPolicy(allTools, policyConfig, {
+		provider: cfg?.provider?.providerId === "anthropic" ? "anthropic" : "openrouter",
+		model: cfg?.provider?.modelId
+	});
+	const { applyDestructiveGate } = await Promise.resolve().then(() => require("./destructive-gate-bnkroJWG.js"));
+	tools = applyDestructiveGate(tools, {
+		elevated: elevated ?? false,
+		source,
+		sessionId
+	});
+	return tools;
+}
+/**
+
+* Run agent: context + tools + inference.
+
+*/
+async function runAgentEngine(message, opts) {
+	const cfg = await fs_extra.default.readJson(require_paths.getConfigPath()).catch(() => ({}));
+	const CUSTOM_BASEURL_IDS = new Set([
+		"groq",
+		"mistral",
+		"deepseek",
+		"perplexity",
+		"huggingface",
+		"ollama",
+		"lmstudio",
+		"local",
+		"xai",
+		"openai",
+		"google",
+		"minimax",
+		"moonshot",
+		"qwen",
+		"zai",
+		"litellm",
+		"cloudflare",
+		"copilot",
+		"vercel-ai",
+		"opencode-zen"
+	]);
+	const isLocalProvider = cfg?.provider?.providerId === "local" || cfg?.provider?.providerId === "ollama" || cfg?.provider?.providerId === "lmstudio";
+	const apiKey = await (await Promise.resolve().then(() => require("./env-resolve-NEtsGacw.js"))).getProviderCredentialAsync(cfg);
+	if (!apiKey && !isLocalProvider) return {
+		text: "No API key configured. Run: hyperclaw config set-key",
+		error: "no_api_key"
+	};
+	const { getProvider } = await Promise.resolve().then(() => require("./providers-CFQC39vg.js"));
+	const providerMeta = getProvider(cfg?.provider?.providerId ?? "");
+	const registryBaseUrl = providerMeta?.baseUrl;
+	const sid = opts.sessionId;
+	const sessionKey = opts.sessionKey;
+	const effectiveKey = sessionKey || sid;
+	if (sessionKey && !opts.getTranscript && !opts.appendTranscript) console.warn("[engine] sessionKey provided but getTranscript/appendTranscript missing — session continuity disabled");
+	let messagesForInference = [{
+		role: "user",
+		content: message
+	}];
+	if (effectiveKey && opts.getTranscript) try {
+		const restored = await opts.getTranscript(effectiveKey);
+		if (restored && restored.length > 0) {
+			const valid = restored.filter((t) => (t.role === "user" || t.role === "assistant") && typeof t.content === "string");
+			messagesForInference = [...valid, {
+				role: "user",
+				content: message
+			}];
+		}
+	} catch (e) {
+		console.warn("[engine] Failed to restore transcript for", effectiveKey, e.message);
+	}
+	if (effectiveKey && opts.appendTranscript) opts.appendTranscript(effectiveKey, "user", message, opts.source);
+	let context = await loadWorkspaceContext(opts.workspace);
+	try {
+		const { getContextSummary } = await Promise.resolve().then(() => require("./knowledge-graph-yeMPBPP8.js"));
+		const kg = await getContextSummary(25);
+		if (kg) context += kg + "\n\n";
+	} catch {}
+	context += await loadSkillsContext();
+	const serviceKeys = cfg?.skills?.apiKeys ? Object.keys(cfg.skills.apiKeys) : [];
+	if (serviceKeys.length > 0) context += `\n## Service API Keys (configured)\nAvailable for research/skills: ${serviceKeys.join(", ")}. Use hackerone_list_programs, bugcrowd_list_programs, synack_list_targets when applicable, or create_skill for custom integrations.\n\n`;
+	const tools = await resolveTools({
+		config: cfg,
+		source: opts.source,
+		elevated: opts.elevated,
+		sessionId: sid,
+		daemonMode: opts.daemonMode,
+		activeServer: opts.activeServer
+	});
+	const rawModel = opts.modelOverride || cfg?.provider?.modelId || "claude-sonnet-4-5";
+	const isLocal2 = cfg?.provider?.providerId === "local" || cfg?.provider?.providerId === "ollama" || cfg?.provider?.providerId === "lmstudio";
+	const model = rawModel.startsWith("ollama/") ? rawModel.slice(7) : rawModel;
+	const isAnthropicVariant = cfg?.provider?.providerId === "anthropic" || cfg?.provider?.providerId === "anthropic-oauth" || cfg?.provider?.providerId === "anthropic-setup-token";
+	const provider = isAnthropicVariant ? "anthropic" : cfg?.provider?.providerId === "custom" || isLocal2 || CUSTOM_BASEURL_IDS.has(cfg?.provider?.providerId ?? "") ? "custom" : "openrouter";
+	const resolvedBaseUrl = cfg?.provider?.baseUrl || registryBaseUrl || (isLocal2 ? "http://localhost:11434/v1" : void 0);
+	const ollamaBaseUrl = isLocal2 ? cfg?.provider?.baseUrl || "http://localhost:11434/v1" : void 0;
+	const thinkingBudget = opts.thinkingBudget ?? 0;
+	const maxTokens = thinkingBudget > 0 ? thinkingBudget + 4096 : 4096;
+	try {
+		const { InferenceEngine } = await Promise.resolve().then(() => require("./inference-BHJFPEKL.js"));
+		const engineOpts = {
+			model,
+			apiKey,
+			provider,
+			system: context || void 0,
+			tools,
+			maxTokens,
+			onToken: opts.onToken ?? (() => {}),
+			onThinking: opts.onThinking,
+			onToolCall: opts.onToolCall,
+			onToolResult: opts.onToolResult,
+			...provider === "custom" ? { baseUrl: ollamaBaseUrl || resolvedBaseUrl || "" } : {},
+			...thinkingBudget > 0 && (model.includes("claude") || model.includes("anthropic")) ? { thinking: { budget_tokens: thinkingBudget } } : {}
+		};
+		const engine = new InferenceEngine(engineOpts);
+		const result = await engine.run(messagesForInference);
+		const text = result.text || "(empty)";
+		if (effectiveKey && opts.appendTranscript) opts.appendTranscript(effectiveKey, "assistant", text, opts.source);
+		try {
+			const { AutoMemory } = await Promise.resolve().then(() => require("./memory-auto-CgBAI8mm.js"));
+			const mem = new AutoMemory({ extractEveryNTurns: 1 });
+			mem.addTurn("user", message);
+			mem.addTurn("assistant", text);
+			await mem.extract();
+		} catch {}
+		opts.onDone?.(text);
+		opts.onRunEnd?.(result.usage);
+		return {
+			text,
+			usage: result.usage
+		};
+	} catch (e) {
+		const errText = `Error: ${e.message}`;
+		opts.onDone?.(errText);
+		opts.onRunEnd?.(void 0, e.message);
+		return {
+			text: errText,
+			error: e.message
+		};
+	}
+}
+var CHANNEL_SOURCES;
+var init_engine = require_chunk.__esm({ "packages/core/src/agent/engine.ts"() {
+	require_src.init_src();
+	CHANNEL_SOURCES = [
+		"telegram",
+		"discord",
+		"whatsapp",
+		"slack",
+		"signal",
+		"matrix",
+		"line",
+		"nostr",
+		"feishu",
+		"msteams",
+		"teams",
+		"instagram",
+		"messenger",
+		"twitter",
+		"viber",
+		"zalo"
+	];
+} });
+
+//#endregion
+Object.defineProperty(exports, 'init_engine', {
+  enumerable: true,
+  get: function () {
+    return init_engine;
+  }
+});
+Object.defineProperty(exports, 'loadSkillsContext', {
+  enumerable: true,
+  get: function () {
+    return loadSkillsContext;
+  }
+});
+Object.defineProperty(exports, 'loadWorkspaceContext', {
+  enumerable: true,
+  get: function () {
+    return loadWorkspaceContext;
+  }
+});
+Object.defineProperty(exports, 'resolveTools', {
+  enumerable: true,
+  get: function () {
+    return resolveTools;
+  }
+});
+Object.defineProperty(exports, 'runAgentEngine', {
+  enumerable: true,
+  get: function () {
+    return runAgentEngine;
+  }
+});

package/dist/env-resolve-BdagnXhK.js

@@ -0,0 +1,151 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+
+//#region src/infra/env-resolve.ts
+function resolveGatewayToken(authTokenFromConfig) {
+	return authTokenFromConfig || process.env.HYPERCLAW_GATEWAY_TOKEN || "";
+}
+function resolveProviderApiKey(cfg) {
+	if (!cfg) return "";
+	const key = cfg.provider?.apiKey;
+	if (key) return key;
+	const pid = cfg.provider?.providerId || "openrouter";
+	switch (pid) {
+		case "openrouter": return process.env.OPENROUTER_API_KEY || "";
+		case "anthropic": return process.env.ANTHROPIC_API_KEY || "";
+		case "openai": return process.env.OPENAI_API_KEY || "";
+		case "xai": return process.env.XAI_API_KEY || "";
+		case "google": return process.env.GOOGLE_AI_API_KEY || "";
+		case "custom": return "";
+		default: return process.env.OPENROUTER_API_KEY || process.env.ANTHROPIC_API_KEY || "";
+	}
+}
+/**
+
+* H-2: Resolve API key or OAuth access token (async).
+
+* Resolution order:
+
+*   1. cfg.provider.apiKey (in config file)
+
+*   2. CredentialsStore  (~/.hyperclaw/credentials/<providerId>.json)
+
+*   3. AuthStore         (~/.hyperclaw/auth.json providers map)
+
+*   4. Environment variables (per-provider mapping in resolveProviderApiKey)
+
+* Also handles authType === 'oauth' via the oauth-provider service.
+
+*/
+async function getProviderCredentialAsync(cfg) {
+	if (!cfg?.provider) return "";
+	if (cfg.provider.authType === "oauth") {
+		const { getProviderCredentialAsync: getOAuth } = await Promise.resolve().then(() => require("./oauth-provider-CVTKgj35.js"));
+		return getOAuth(cfg);
+	}
+	if (cfg.provider.apiKey) return cfg.provider.apiKey;
+	const pid = cfg.provider.providerId || "openrouter";
+	try {
+		const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-BFxEJR00.js"));
+		const { getHyperClawDir } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
+		const credStore = new CredentialsStore(getHyperClawDir());
+		const cred = await credStore.get(pid);
+		if (cred?.apiKey) return cred.apiKey;
+	} catch (e) {
+		if (process.env.DEBUG) console.error("[env-resolve] CredentialsStore:", e?.message);
+	}
+	try {
+		const { AuthStore } = await Promise.resolve().then(() => require("./device-auth-store-DgSabRGa.js"));
+		const { getHyperClawDir } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
+		const authStore = new AuthStore(getHyperClawDir());
+		const key = await authStore.getProviderKey(pid);
+		if (key) return key;
+	} catch (e) {
+		if (process.env.DEBUG) console.error("[env-resolve] AuthStore:", e?.message);
+	}
+	return resolveProviderApiKey(cfg);
+}
+/** Resolve API key for a service (bug bounty, research apps, etc.). Config first, then env. */
+function resolveServiceApiKey(serviceId, cfg) {
+	const key = cfg?.skills?.apiKeys?.[serviceId];
+	if (key) return key;
+	const envKey = SERVICE_ENV[serviceId] || `${serviceId.toUpperCase().replace(/-/g, "_")}_API_KEY`;
+	return process.env[envKey] || process.env[envKey.replace(/-/g, "_")] || "";
+}
+function resolveChannelToken(channelId, tokenFromConfig) {
+	if (tokenFromConfig) return tokenFromConfig;
+	const envKey = CHANNEL_ENV[channelId] || `${channelId.toUpperCase().replace(/-/g, "_")}_BOT_TOKEN`;
+	return process.env[envKey] || process.env[`${channelId.toUpperCase()}_BOT_TOKEN`] || "";
+}
+/**
+
+* Returns a summary of active path environment overrides.
+
+* Useful for `hyperclaw health -v` and `hyperclaw status --all`.
+
+*/
+function resolvePathEnvOverrides() {
+	return {
+		...process.env.HYPERCLAW_HOME ? { hyperclawHome: process.env.HYPERCLAW_HOME } : {},
+		...process.env.HYPERCLAW_STATE_DIR ? { stateDir: process.env.HYPERCLAW_STATE_DIR } : {},
+		...process.env.HYPERCLAW_CONFIG_PATH ? { configPath: process.env.HYPERCLAW_CONFIG_PATH } : {},
+		...process.env.HYPERCLAW_GATEWAY_TOKEN ? { gatewayToken: "(set)" } : {}
+	};
+}
+var CHANNEL_ENV, SERVICE_ENV;
+var init_env_resolve = require_chunk.__esm({ "src/infra/env-resolve.ts"() {
+	CHANNEL_ENV = {
+		telegram: "TELEGRAM_BOT_TOKEN",
+		discord: "DISCORD_BOT_TOKEN",
+		slack: "SLACK_BOT_TOKEN"
+	};
+	SERVICE_ENV = {
+		hackerone: "HACKERONE_API_USERNAME",
+		"hackerone-token": "HACKERONE_API_TOKEN",
+		bugcrowd: "BUGCROWD_API_TOKEN",
+		synack: "SYNACK_API_TOKEN"
+	};
+} });
+
+//#endregion
+Object.defineProperty(exports, 'getProviderCredentialAsync', {
+  enumerable: true,
+  get: function () {
+    return getProviderCredentialAsync;
+  }
+});
+Object.defineProperty(exports, 'init_env_resolve', {
+  enumerable: true,
+  get: function () {
+    return init_env_resolve;
+  }
+});
+Object.defineProperty(exports, 'resolveChannelToken', {
+  enumerable: true,
+  get: function () {
+    return resolveChannelToken;
+  }
+});
+Object.defineProperty(exports, 'resolveGatewayToken', {
+  enumerable: true,
+  get: function () {
+    return resolveGatewayToken;
+  }
+});
+Object.defineProperty(exports, 'resolvePathEnvOverrides', {
+  enumerable: true,
+  get: function () {
+    return resolvePathEnvOverrides;
+  }
+});
+Object.defineProperty(exports, 'resolveProviderApiKey', {
+  enumerable: true,
+  get: function () {
+    return resolveProviderApiKey;
+  }
+});
+Object.defineProperty(exports, 'resolveServiceApiKey', {
+  enumerable: true,
+  get: function () {
+    return resolveServiceApiKey;
+  }
+});

package/dist/env-resolve-NEtsGacw.js

@@ -0,0 +1,10 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_env_resolve = require('./env-resolve-BdagnXhK.js');
+
+require_env_resolve.init_env_resolve();
+exports.getProviderCredentialAsync = require_env_resolve.getProviderCredentialAsync;
+exports.resolveChannelToken = require_env_resolve.resolveChannelToken;
+exports.resolveGatewayToken = require_env_resolve.resolveGatewayToken;
+exports.resolvePathEnvOverrides = require_env_resolve.resolvePathEnvOverrides;
+exports.resolveProviderApiKey = require_env_resolve.resolveProviderApiKey;
+exports.resolveServiceApiKey = require_env_resolve.resolveServiceApiKey;

package/dist/gmail-watch-setup-Brkj94Sy.js

@@ -0,0 +1,42 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_paths = require('./paths-AIyBxIzm.js');
+const require_paths$1 = require('./paths-DPovhojT.js');
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+
+//#region src/commands/gmail-watch-setup.ts
+require_paths$1.init_paths();
+async function getGmailAccessToken() {
+	const hcDir = require_paths.getHyperClawDir();
+	const paths = [path.default.join(hcDir, "oauth-google-gmail.json"), path.default.join(hcDir, "oauth-google.json")];
+	for (const p of paths) {
+		if (!await fs_extra.default.pathExists(p)) continue;
+		const data = await fs_extra.default.readJson(p);
+		if (data.access_token) return data.access_token;
+	}
+	throw new Error("No Gmail OAuth token found. Run: hyperclaw auth oauth google-gmail");
+}
+async function setupGmailWatch(opts) {
+	const token = await getGmailAccessToken();
+	const body = JSON.stringify({
+		topicName: opts.topicName,
+		labelIds: opts.labelIds || ["INBOX"],
+		labelFilterBehavior: "INCLUDE"
+	});
+	const res = await fetch("https://gmail.googleapis.com/gmail/v1/users/me/watch", {
+		method: "POST",
+		headers: {
+			Authorization: `Bearer ${token}`,
+			"Content-Type": "application/json"
+		},
+		body
+	});
+	if (!res.ok) {
+		const err = await res.text();
+		throw new Error(`Gmail API error ${res.status}: ${err}`);
+	}
+	return res.json();
+}
+
+//#endregion
+exports.setupGmailWatch = setupGmailWatch;

package/dist/heartbeat-engine-D6oSpgxx.js

@@ -0,0 +1,89 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_paths = require('./paths-AIyBxIzm.js');
+const require_paths$1 = require('./paths-DPovhojT.js');
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+const http = require_chunk.__toESM(require("http"));
+
+//#region src/services/heartbeat-engine.ts
+require_paths$1.init_paths();
+const HC_DIR = require_paths.getHyperClawDir();
+async function getGatewayConfig() {
+	try {
+		const cfg = await fs_extra.default.readJson(require_paths.getConfigPath());
+		const authToken = cfg?.gateway?.authToken || process.env.HYPERCLAW_GATEWAY_TOKEN || "";
+		return {
+			port: cfg?.gateway?.port ?? 18789,
+			authToken: authToken || void 0
+		};
+	} catch {
+		return { port: 18789 };
+	}
+}
+function sanitizeBriefing(text) {
+	return text.replace(/\r\n/g, "\n").replace(/[^\x09\x0a\x0d\x20-\x7e]+/g, "").trim().slice(0, 12e3);
+}
+/** Generate morning briefing via agent (POST /api/chat). */
+async function runMorningBriefing() {
+	const { port, authToken } = await getGatewayConfig();
+	const prompt = `Generate a brief morning briefing (3-5 bullets) for the user based on:
+- MEMORY.md and knowledge graph (projects, preferences, recent facts)
+- Today's reminders (list_reminders)
+- Any relevant context
+
+Be concise. Format as markdown bullets. No preamble.`;
+	return new Promise((resolve, reject) => {
+		const payload = JSON.stringify({ message: prompt });
+		const headers = {
+			"Content-Type": "application/json",
+			"Content-Length": String(Buffer.byteLength(payload))
+		};
+		if (authToken) headers["Authorization"] = `Bearer ${authToken}`;
+		const req = http.default.request({
+			hostname: "127.0.0.1",
+			port,
+			path: "/api/chat",
+			method: "POST",
+			headers
+		}, (res) => {
+			let data = "";
+			res.on("data", (c) => data += c);
+			res.on("end", () => {
+				try {
+					const j = JSON.parse(data);
+					resolve(j.response || j.error || "(no response)");
+				} catch {
+					resolve(data || "(parse error)");
+				}
+			});
+		});
+		req.on("error", reject);
+		req.setTimeout(6e4, () => {
+			req.destroy();
+			reject(new Error("Briefing timeout"));
+		});
+		req.write(payload);
+		req.end();
+	});
+}
+/** Persist briefing to HEARTBEAT.md and daily log. */
+async function persistBriefing(text) {
+	const today = (/* @__PURE__ */ new Date()).toISOString().slice(0, 10);
+	const ts = (/* @__PURE__ */ new Date()).toISOString();
+	const sanitized = sanitizeBriefing(text);
+	const heartbeatPath = path.default.join(HC_DIR, "HEARTBEAT.md");
+	const content = `## Morning Briefing — ${today}\n\n${sanitized}\n\n---\n*Generated ${ts}*\n`;
+	await fs_extra.default.ensureDir(HC_DIR);
+	if (await fs_extra.default.pathExists(heartbeatPath)) {
+		const existing = await fs_extra.default.readFile(heartbeatPath, "utf8");
+		await fs_extra.default.writeFile(heartbeatPath, content + "\n" + existing.slice(0, 8e3), "utf8");
+	} else await fs_extra.default.writeFile(heartbeatPath, `# HEARTBEAT.md — Proactive Briefings\n\n${content}`, "utf8");
+	const logDir = path.default.join(HC_DIR, "logs");
+	const logPath = path.default.join(logDir, `heartbeat-${today}.md`);
+	await fs_extra.default.ensureDir(logDir);
+	await fs_extra.default.appendFile(logPath, `\n## ${ts}\n\n${sanitized}\n`, "utf8");
+}
+
+//#endregion
+exports.persistBriefing = persistBriefing;
+exports.runMorningBriefing = runMorningBriefing;