hyperclaw 5.2.8 → 5.3.0

package/dist/tool-policy-QXF3MMxu.js

@@ -0,0 +1,189 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+
+//#region src/infra/tool-policy.ts
+function expandToToolNames(entries) {
+	const out = /* @__PURE__ */ new Set();
+	for (const e of entries) {
+		const key = e.toLowerCase().trim();
+		if (key === "*" || key === "") continue;
+		if (key.startsWith("group:")) {
+			const group = TOOL_GROUPS[key];
+			if (group) group.forEach((t) => out.add(t));
+		} else out.add(key);
+	}
+	return out;
+}
+function matchesPattern(toolName, pattern) {
+	const p = pattern.toLowerCase();
+	const t = toolName.toLowerCase();
+	if (p === "*" || p === t) return true;
+	if (p.endsWith("*")) {
+		const prefix = p.slice(0, -1);
+		return t.startsWith(prefix);
+	}
+	return false;
+}
+function isAllowed(toolName, allowSet, denySet, profileAllowSet) {
+	if (denySet.size > 0) {
+		for (const d of denySet) if (matchesPattern(toolName, d)) return false;
+	}
+	if (profileAllowSet && profileAllowSet.size > 0) {
+		let inProfile = false;
+		for (const a of profileAllowSet) if (matchesPattern(toolName, a)) {
+			inProfile = true;
+			break;
+		}
+		if (!inProfile) return false;
+	}
+	if (allowSet.size > 0) {
+		for (const a of allowSet) if (matchesPattern(toolName, a)) return true;
+		return false;
+	}
+	return true;
+}
+function applyToolPolicy(tools, config, context) {
+	if (!config) return tools;
+	let profile = config.profile ?? "full";
+	let allow = config.allow ?? [];
+	let deny = config.deny ?? [];
+	if (context?.provider && config.byProvider) {
+		const providerKey = context.provider + (context.model ? "/" + context.model : "");
+		const exact = config.byProvider[providerKey] ?? config.byProvider[context.provider];
+		if (exact) {
+			if (exact.profile) profile = exact.profile;
+			if (exact.allow?.length) allow = [...allow, ...exact.allow];
+			if (exact.deny?.length) deny = [...deny, ...exact.deny];
+		}
+	}
+	const denySet = expandToToolNames(deny);
+	const allowSet = expandToToolNames(allow);
+	const profileTools = profile === "full" ? null : new Set(PROFILE_TOOLS[profile]);
+	return tools.filter((t) => isAllowed(t.name, allowSet, denySet, profileTools));
+}
+/** For sandbox explain: return effective policy description. */
+function describeToolPolicy(config, context) {
+	if (!config) return {
+		profile: "full",
+		allow: [],
+		deny: [],
+		source: "default"
+	};
+	let profile = config.profile ?? "full";
+	let allow = config.allow ?? [];
+	let deny = config.deny ?? [];
+	let source = "tools";
+	if (context?.provider && config.byProvider) {
+		const providerKey = context.provider + (context.model ? "/" + context.model : "");
+		const exact = config.byProvider[providerKey] ?? config.byProvider[context.provider];
+		if (exact) {
+			if (exact.profile) {
+				profile = exact.profile;
+				source = `tools.byProvider[${context.provider}]`;
+			}
+			if (exact.allow?.length) allow = [...allow, ...exact.allow];
+			if (exact.deny?.length) deny = [...deny, ...exact.deny];
+		}
+	}
+	return {
+		profile,
+		allow,
+		deny,
+		source
+	};
+}
+var TOOL_GROUPS, PROFILE_TOOLS;
+var init_tool_policy = require_chunk.__esm({ "src/infra/tool-policy.ts"() {
+	TOOL_GROUPS = {
+		"group:fs": [
+			"read_file",
+			"write_file",
+			"edit_file",
+			"delete_file",
+			"list_directory"
+		],
+		"group:runtime": ["run_shell", "kill_process"],
+		"group:sessions": [
+			"sessions_list",
+			"sessions_send",
+			"sessions_history"
+		],
+		"group:memory": [
+			"read_memory",
+			"write_memory",
+			"memory_graph_add",
+			"memory_graph_query"
+		],
+		"group:ui": [
+			"canvas_add",
+			"browser_snapshot",
+			"browser_action"
+		],
+		"group:messaging": [
+			"sessions_send",
+			"sessions_list",
+			"sessions_history"
+		],
+		"group:automation": [
+			"add_reminder",
+			"list_reminders",
+			"complete_reminder",
+			"watch_website_add",
+			"watch_website_check",
+			"watch_website_list"
+		],
+		"group:pc": [
+			"run_shell",
+			"read_file",
+			"write_file",
+			"edit_file",
+			"list_directory",
+			"delete_file",
+			"kill_process",
+			"system_info",
+			"open",
+			"clipboard",
+			"search_files",
+			"screenshot",
+			"camera_capture",
+			"screen_record",
+			"contacts_list",
+			"calendar_events",
+			"photos_recent",
+			"app_updates",
+			"notify"
+		],
+		"group:extraction": ["extract_pdf", "extract_spreadsheet"],
+		"group:vision": ["analyze_image"]
+	};
+	PROFILE_TOOLS = {
+		full: [],
+		messaging: [
+			"get_current_time",
+			"sessions_list",
+			"sessions_history",
+			"sessions_send",
+			"read_memory",
+			"write_memory"
+		],
+		coding: [
+			...TOOL_GROUPS["group:fs"],
+			...TOOL_GROUPS["group:runtime"],
+			...TOOL_GROUPS["group:sessions"],
+			...TOOL_GROUPS["group:memory"],
+			"http_get",
+			"canvas_add",
+			"create_skill",
+			"get_current_time"
+		],
+		minimal: [
+			"get_current_time",
+			"sessions_list",
+			"read_memory"
+		]
+	};
+} });
+
+//#endregion
+init_tool_policy();
+exports.applyToolPolicy = applyToolPolicy;
+exports.describeToolPolicy = describeToolPolicy;

package/dist/tts-elevenlabs-y6HGWWDS.js

@@ -0,0 +1,64 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const https = require_chunk.__toESM(require("https"));
+
+//#region src/services/tts-elevenlabs.ts
+const DEFAULT_VOICE = "21m00Tcm4TlvDq8ikWAM";
+const DEFAULT_MODEL = "eleven_multilingual_v2";
+function sanitizeForLog(value) {
+	return String(value ?? "").replace(/[\r\n\t]+/g, " ").replace(/[^\x20-\x7e]+/g, "?").slice(0, 200);
+}
+/**
+
+* Convert text to speech via ElevenLabs API.
+
+* Returns base64-encoded MP3 or null on error.
+
+*/
+async function textToSpeech(text, opts) {
+	const voiceId = opts.voiceId || DEFAULT_VOICE;
+	const modelId = opts.modelId || DEFAULT_MODEL;
+	const format = opts.outputFormat || "mp3_22050_32";
+	const body = JSON.stringify({
+		text,
+		model_id: modelId
+	});
+	const path = `/v1/text-to-speech/${voiceId}?output_format=${format}`;
+	return new Promise((resolve) => {
+		const req = https.default.request({
+			hostname: "api.elevenlabs.io",
+			port: 443,
+			path,
+			method: "POST",
+			headers: {
+				"Content-Type": "application/json",
+				"xi-api-key": opts.apiKey,
+				"Content-Length": Buffer.byteLength(body)
+			}
+		}, (res) => {
+			const chunks = [];
+			res.on("data", (c) => chunks.push(c));
+			res.on("end", () => {
+				const buf = Buffer.concat(chunks);
+				if (res.statusCode !== 200) {
+					console.warn(`[tts] ElevenLabs error ${res.statusCode}: ${sanitizeForLog(buf.toString("utf8", 0, 200))}`);
+					resolve(null);
+					return;
+				}
+				resolve(buf.toString("base64"));
+			});
+		});
+		req.on("error", (e) => {
+			console.warn("[tts] ElevenLabs request error:", sanitizeForLog(e.message));
+			resolve(null);
+		});
+		req.setTimeout(3e4, () => {
+			req.destroy();
+			resolve(null);
+		});
+		req.write(body);
+		req.end();
+	});
+}
+
+//#endregion
+exports.textToSpeech = textToSpeech;

package/dist/update-check-C4te7JmY.js

@@ -0,0 +1,6 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_update_check = require('./update-check-GDue_it1.js');
+
+exports.checkForUpdates = require_update_check.checkForUpdates;
+exports.maybeShowUpdateNotice = require_update_check.maybeShowUpdateNotice;
+exports.notifyUpdateAvailable = require_update_check.notifyUpdateAvailable;

package/dist/update-check-GDue_it1.js

@@ -0,0 +1,98 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const chalk = require_chunk.__toESM(require("chalk"));
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+const https = require_chunk.__toESM(require("https"));
+
+//#region src/infra/update-check.ts
+const NPM_REGISTRY = "https://registry.npmjs.org";
+const PACKAGE_NAME = "hyperclaw";
+function parseVersion(v) {
+	const match = v.replace(/^v/, "").match(/^(\d+)\.(\d+)\.(\d+)/);
+	if (!match) return [
+		0,
+		0,
+		0
+	];
+	return [
+		parseInt(match[1], 10),
+		parseInt(match[2], 10),
+		parseInt(match[3], 10)
+	];
+}
+function isNewer(latest, current) {
+	const a = parseVersion(latest);
+	const b = parseVersion(current);
+	for (let i = 0; i < 3; i++) {
+		if (a[i] > b[i]) return true;
+		if (a[i] < b[i]) return false;
+	}
+	return false;
+}
+async function checkForUpdates(currentVersion) {
+	if (process.env.HYPERCLAW_NO_UPDATE_CHECK === "1") return null;
+	return new Promise((resolve) => {
+		const req = https.default.get(`${NPM_REGISTRY}/${PACKAGE_NAME}/latest`, { timeout: 3e3 }, (res) => {
+			let data = "";
+			res.on("data", (chunk) => data += chunk);
+			res.on("end", () => {
+				try {
+					const json = JSON.parse(data);
+					const latest = json?.version;
+					if (!latest || typeof latest !== "string") {
+						resolve(null);
+						return;
+					}
+					resolve({
+						latest,
+						available: isNewer(latest, currentVersion)
+					});
+				} catch {
+					resolve(null);
+				}
+			});
+		});
+		req.on("error", () => resolve(null));
+		req.on("timeout", () => {
+			req.destroy();
+			resolve(null);
+		});
+	});
+}
+function notifyUpdateAvailable(current, latest) {
+	console.log(chalk.default.yellow(`  🦅 Update available: ${latest} (you have ${current})`));
+	console.log(chalk.default.gray("     Run: npm i -g hyperclaw\n"));
+}
+/** Fire-and-forget: check for updates and notify user if available. Call after banner/startup. */
+function maybeShowUpdateNotice(skipInDaemon = false) {
+	if (skipInDaemon) return;
+	(async () => {
+		try {
+			const pkgPath = path.default.join(__dirname, "../package.json");
+			const pkg = await fs_extra.default.readJson(pkgPath).catch(() => null);
+			const current = pkg?.version ?? "0.0.0";
+			const result = await checkForUpdates(current);
+			if (result?.available) notifyUpdateAvailable(current, result.latest);
+		} catch {}
+	})().catch(() => {});
+}
+
+//#endregion
+Object.defineProperty(exports, 'checkForUpdates', {
+  enumerable: true,
+  get: function () {
+    return checkForUpdates;
+  }
+});
+Object.defineProperty(exports, 'maybeShowUpdateNotice', {
+  enumerable: true,
+  get: function () {
+    return maybeShowUpdateNotice;
+  }
+});
+Object.defineProperty(exports, 'notifyUpdateAvailable', {
+  enumerable: true,
+  get: function () {
+    return notifyUpdateAvailable;
+  }
+});

package/dist/vision-tools-CbVfyTZT.js

@@ -0,0 +1,5 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_vision_tools = require('./vision-tools-DieVQp6s.js');
+
+require_vision_tools.init_vision_tools();
+exports.getVisionTools = require_vision_tools.getVisionTools;

package/dist/vision-tools-DieVQp6s.js

@@ -0,0 +1,51 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+
+//#region packages/core/src/agent/vision-tools.ts
+function getVisionTools(opts = {}) {
+	const { apiKey = "", provider = "anthropic" } = opts;
+	return [{
+		name: "analyze_image",
+		description: "Analyze an image using a vision model. Describe scenes, receipts, documents, photos. Supports file path, URL, or data URI.",
+		input_schema: {
+			type: "object",
+			properties: {
+				image: {
+					type: "string",
+					description: "Image path (~/path), URL (https://...), or data:image/...;base64,..."
+				},
+				prompt: {
+					type: "string",
+					description: "What to describe or extract (e.g. \"Describe this scene\", \"List items on this receipt\")"
+				}
+			},
+			required: ["image"]
+		},
+		handler: async (input) => {
+			if (!apiKey) return "Error: No API key configured for vision. Set provider.apiKey or run hyperclaw auth add.";
+			const image = input.image?.trim();
+			const prompt = input.prompt?.trim() || "Describe this image concisely.";
+			if (!image) return "Error: image is required";
+			try {
+				const { analyzeImage } = await Promise.resolve().then(() => require("./vision-u4kMThdo.js"));
+				return await analyzeImage(image, prompt, apiKey, provider);
+			} catch (e) {
+				return `Error: ${e.message}`;
+			}
+		}
+	}];
+}
+var init_vision_tools = require_chunk.__esm({ "packages/core/src/agent/vision-tools.ts"() {} });
+
+//#endregion
+Object.defineProperty(exports, 'getVisionTools', {
+  enumerable: true,
+  get: function () {
+    return getVisionTools;
+  }
+});
+Object.defineProperty(exports, 'init_vision_tools', {
+  enumerable: true,
+  get: function () {
+    return init_vision_tools;
+  }
+});

package/dist/vision-u4kMThdo.js

@@ -0,0 +1,167 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const fs_extra = require_chunk.__toESM(require("fs-extra"));
+const path = require_chunk.__toESM(require("path"));
+const os = require_chunk.__toESM(require("os"));
+const http = require_chunk.__toESM(require("http"));
+const https = require_chunk.__toESM(require("https"));
+
+//#region src/services/vision.ts
+function inferImageMediaType(ext) {
+	return {
+		".png": "image/png",
+		".jpg": "image/jpeg",
+		".jpeg": "image/jpeg",
+		".gif": "image/gif",
+		".webp": "image/webp"
+	}[ext] ?? "image/jpeg";
+}
+async function readValidatedImageFile(filePath) {
+	const resolvedPath = path.default.resolve(filePath.replace(/^~/, os.default.homedir()));
+	const ext = path.default.extname(resolvedPath).toLowerCase();
+	if (!ALLOWED_IMAGE_EXTENSIONS.has(ext)) throw new Error(`Unsupported image file type: ${ext || "unknown"}`);
+	const buf = await fs_extra.default.readFile(resolvedPath);
+	if (buf.length === 0) throw new Error("Image input is empty");
+	if (buf.length > MAX_IMAGE_BYTES) throw new Error(`Image input exceeds ${MAX_IMAGE_BYTES} bytes`);
+	return {
+		data: buf.toString("base64"),
+		mediaType: inferImageMediaType(ext)
+	};
+}
+async function fetchValidatedRemoteImage(urlString) {
+	const url = new URL(urlString);
+	if (!["http:", "https:"].includes(url.protocol)) throw new Error(`Unsupported image URL protocol: ${url.protocol}`);
+	const mod = url.protocol === "https:" ? https.default : http.default;
+	const buf = await new Promise((resolve, reject) => {
+		const req = mod.get(url, (res) => {
+			if ((res.statusCode ?? 0) >= 400) {
+				reject(new Error(`Image download failed with status ${res.statusCode}`));
+				res.resume();
+				return;
+			}
+			const contentLength = Number(res.headers["content-length"] ?? 0);
+			if (contentLength > MAX_IMAGE_BYTES) {
+				reject(new Error(`Image download exceeds ${MAX_IMAGE_BYTES} bytes`));
+				res.destroy();
+				return;
+			}
+			const chunks = [];
+			let total = 0;
+			res.on("data", (c) => {
+				total += c.length;
+				if (total > MAX_IMAGE_BYTES) {
+					req.destroy(new Error(`Image download exceeds ${MAX_IMAGE_BYTES} bytes`));
+					return;
+				}
+				chunks.push(c);
+			});
+			res.on("end", () => resolve(Buffer.concat(chunks)));
+			res.on("error", reject);
+		});
+		req.on("error", reject);
+	});
+	const pathnameExt = path.default.extname(url.pathname).toLowerCase();
+	return {
+		data: buf.toString("base64"),
+		mediaType: inferImageMediaType(ALLOWED_IMAGE_EXTENSIONS.has(pathnameExt) ? pathnameExt : ".jpg")
+	};
+}
+async function imageToBase64(input) {
+	const trimmed = input.trim();
+	if (trimmed.startsWith("data:")) {
+		const match = trimmed.match(/^data:(image\/[^;]+);base64,(.+)$/);
+		if (match) {
+			const buffer = Buffer.from(match[2], "base64");
+			if (buffer.length === 0) throw new Error("Image input is empty");
+			if (buffer.length > MAX_IMAGE_BYTES) throw new Error(`Image input exceeds ${MAX_IMAGE_BYTES} bytes`);
+			return {
+				data: match[2],
+				mediaType: match[1]
+			};
+		}
+	}
+	if (trimmed.startsWith("http")) return fetchValidatedRemoteImage(trimmed);
+	return readValidatedImageFile(trimmed);
+}
+async function analyzeImage(imageInput, prompt, apiKey, provider = "anthropic") {
+	const { data, mediaType } = await imageToBase64(imageInput);
+	const isAnthropic = provider === "anthropic";
+	const hostname = isAnthropic ? "api.anthropic.com" : "openrouter.ai";
+	const model = isAnthropic ? "claude-sonnet-4-20250514" : "openai/gpt-4o";
+	const body = {
+		model,
+		max_tokens: 1024,
+		messages: isAnthropic ? [{
+			role: "user",
+			content: [{
+				type: "image",
+				source: {
+					type: "base64",
+					media_type: mediaType,
+					data
+				}
+			}, {
+				type: "text",
+				text: prompt || "Describe this image."
+			}]
+		}] : [{
+			role: "user",
+			content: [{
+				type: "text",
+				text: "[Image attached] " + (prompt || "Describe this image.")
+			}, {
+				type: "image_url",
+				image_url: { url: `data:${mediaType};base64,${data}` }
+			}]
+		}]
+	};
+	if (isAnthropic) body.anthropic_version = "2023-06-01";
+	return new Promise((resolve, reject) => {
+		const payload = JSON.stringify(body);
+		const req = https.default.request({
+			hostname,
+			port: 443,
+			path: isAnthropic ? "/v1/messages" : "/api/v1/chat/completions",
+			method: "POST",
+			headers: {
+				"Authorization": `Bearer ${apiKey}`,
+				"Content-Type": "application/json",
+				...isAnthropic ? { "anthropic-version": "2023-06-01" } : { "HTTP-Referer": "https://hyperclaw.ai" }
+			}
+		}, (res) => {
+			let raw = "";
+			res.on("data", (c) => raw += c);
+			res.on("end", () => {
+				try {
+					const j = JSON.parse(raw);
+					if (isAnthropic) {
+						const text = j.content?.[0]?.text;
+						resolve(text || j.error?.message || "(no description)");
+					} else {
+						const text = j.choices?.[0]?.message?.content;
+						resolve(text || j.error?.message || "(no description)");
+					}
+				} catch {
+					resolve(raw || "(parse error)");
+				}
+			});
+		});
+		req.on("error", reject);
+		req.write(payload);
+		req.end();
+	});
+}
+var MAX_IMAGE_BYTES, ALLOWED_IMAGE_EXTENSIONS;
+var init_vision = require_chunk.__esm({ "src/services/vision.ts"() {
+	MAX_IMAGE_BYTES = 15 * 1024 * 1024;
+	ALLOWED_IMAGE_EXTENSIONS = new Set([
+		".png",
+		".jpg",
+		".jpeg",
+		".gif",
+		".webp"
+	]);
+} });
+
+//#endregion
+init_vision();
+exports.analyzeImage = analyzeImage;