hyperclaw 5.3.45 → 5.4.1

package/dist/delivery-DP0d4_A4.js

@@ -0,0 +1,95 @@
+
+//#region src/channels/delivery.ts
+/**
+
+* src/channels/delivery.ts
+
+* Delivery pipeline: queue retry, per-channel chunking, media handling.
+
+*/
+const CHANNEL_MAX_LENGTH = {
+	telegram: 4096,
+	discord: 2e3,
+	whatsapp: 4096,
+	"whatsapp-baileys": 4096,
+	slack: 4e4,
+	googlechat: 4096,
+	msteams: 28e3,
+	matrix: 32768,
+	irc: 512,
+	mattermost: 16383,
+	signal: 4096,
+	line: 2e3,
+	twitch: 490,
+	viber: 7e3,
+	default: 4e3
+};
+function chunkForChannel(text, channelId) {
+	const max = CHANNEL_MAX_LENGTH[channelId] ?? CHANNEL_MAX_LENGTH.default;
+	if (text.length <= max) return [text];
+	const chunks = [];
+	let i = 0;
+	while (i < text.length) {
+		let end = Math.min(i + max, text.length);
+		if (end < text.length) {
+			const nl = text.lastIndexOf("\n", end);
+			if (nl > i) end = nl + 1;
+		}
+		chunks.push(text.slice(i, end));
+		i = end;
+	}
+	return chunks;
+}
+const DEFAULT_RETRIES = 3;
+const DEFAULT_BACKOFF_MS = 1e3;
+async function withRetry(fn, opts) {
+	const retries = opts?.retries ?? DEFAULT_RETRIES;
+	const backoff = opts?.backoffMs ?? DEFAULT_BACKOFF_MS;
+	let lastErr = null;
+	for (let i = 0; i <= retries; i++) try {
+		return await fn();
+	} catch (e) {
+		lastErr = e;
+		opts?.onRetry?.(i + 1, lastErr);
+		if (i < retries) await new Promise((r) => setTimeout(r, backoff * Math.pow(2, i)));
+	}
+	throw lastErr;
+}
+/** Enrich message text from voice note (transcribe if audioPath/audioBuffer provided). */
+async function enrichVoiceNote(msg) {
+	if (!msg.audioPath && !msg.audioBuffer) return msg.text;
+	if (msg.text && msg.text !== "[voice note]") return msg.text;
+	try {
+		const { transcribeVoiceNote } = await Promise.resolve().then(() => require("./voice-transcription-Bz2y0nPK.js"));
+		const text = await transcribeVoiceNote(msg.audioBuffer ?? msg.audioPath);
+		return text || msg.text;
+	} catch (e) {
+		return `[Voice note — transcription failed: ${e.message}]`;
+	}
+}
+
+//#endregion
+Object.defineProperty(exports, 'CHANNEL_MAX_LENGTH', {
+  enumerable: true,
+  get: function () {
+    return CHANNEL_MAX_LENGTH;
+  }
+});
+Object.defineProperty(exports, 'chunkForChannel', {
+  enumerable: true,
+  get: function () {
+    return chunkForChannel;
+  }
+});
+Object.defineProperty(exports, 'enrichVoiceNote', {
+  enumerable: true,
+  get: function () {
+    return enrichVoiceNote;
+  }
+});
+Object.defineProperty(exports, 'withRetry', {
+  enumerable: true,
+  get: function () {
+    return withRetry;
+  }
+});

package/dist/delivery-DXYt4aMO.js

@@ -0,0 +1,4 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_delivery = require('./delivery-CfMljOwk.js');
+
+exports.enrichVoiceNote = require_delivery.enrichVoiceNote;

package/dist/delivery-DXxP2UL4.js

@@ -0,0 +1,4 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+const require_delivery = require('./delivery-CF2Q4hb1.js');
+
+exports.enrichVoiceNote = require_delivery.enrichVoiceNote;

package/dist/delivery-jT2UIDlU.js

@@ -0,0 +1,95 @@
+
+//#region src/channels/delivery.ts
+/**
+
+* src/channels/delivery.ts
+
+* Delivery pipeline: queue retry, per-channel chunking, media handling.
+
+*/
+const CHANNEL_MAX_LENGTH = {
+	telegram: 4096,
+	discord: 2e3,
+	whatsapp: 4096,
+	"whatsapp-baileys": 4096,
+	slack: 4e4,
+	googlechat: 4096,
+	msteams: 28e3,
+	matrix: 32768,
+	irc: 512,
+	mattermost: 16383,
+	signal: 4096,
+	line: 2e3,
+	twitch: 490,
+	viber: 7e3,
+	default: 4e3
+};
+function chunkForChannel(text, channelId) {
+	const max = CHANNEL_MAX_LENGTH[channelId] ?? CHANNEL_MAX_LENGTH.default;
+	if (text.length <= max) return [text];
+	const chunks = [];
+	let i = 0;
+	while (i < text.length) {
+		let end = Math.min(i + max, text.length);
+		if (end < text.length) {
+			const nl = text.lastIndexOf("\n", end);
+			if (nl > i) end = nl + 1;
+		}
+		chunks.push(text.slice(i, end));
+		i = end;
+	}
+	return chunks;
+}
+const DEFAULT_RETRIES = 3;
+const DEFAULT_BACKOFF_MS = 1e3;
+async function withRetry(fn, opts) {
+	const retries = opts?.retries ?? DEFAULT_RETRIES;
+	const backoff = opts?.backoffMs ?? DEFAULT_BACKOFF_MS;
+	let lastErr = null;
+	for (let i = 0; i <= retries; i++) try {
+		return await fn();
+	} catch (e) {
+		lastErr = e;
+		opts?.onRetry?.(i + 1, lastErr);
+		if (i < retries) await new Promise((r) => setTimeout(r, backoff * Math.pow(2, i)));
+	}
+	throw lastErr;
+}
+/** Enrich message text from voice note (transcribe if audioPath/audioBuffer provided). */
+async function enrichVoiceNote(msg) {
+	if (!msg.audioPath && !msg.audioBuffer) return msg.text;
+	if (msg.text && msg.text !== "[voice note]") return msg.text;
+	try {
+		const { transcribeVoiceNote } = await Promise.resolve().then(() => require("./voice-transcription-YqndiLA7.js"));
+		const text = await transcribeVoiceNote(msg.audioBuffer ?? msg.audioPath);
+		return text || msg.text;
+	} catch (e) {
+		return `[Voice note — transcription failed: ${e.message}]`;
+	}
+}
+
+//#endregion
+Object.defineProperty(exports, 'CHANNEL_MAX_LENGTH', {
+  enumerable: true,
+  get: function () {
+    return CHANNEL_MAX_LENGTH;
+  }
+});
+Object.defineProperty(exports, 'chunkForChannel', {
+  enumerable: true,
+  get: function () {
+    return chunkForChannel;
+  }
+});
+Object.defineProperty(exports, 'enrichVoiceNote', {
+  enumerable: true,
+  get: function () {
+    return enrichVoiceNote;
+  }
+});
+Object.defineProperty(exports, 'withRetry', {
+  enumerable: true,
+  get: function () {
+    return withRetry;
+  }
+});

package/dist/destructive-gate-5LYh6brt.js

@@ -0,0 +1,116 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+
+//#region src/infra/destructive-gate.ts
+/**
+
+* Escape invisible Unicode format characters to visible \u{...} escapes.
+
+* Prevents zero-width characters from spoofing displayed commands in approval prompts.
+
+*/
+function sanitizeApprovalText(text) {
+	return text.replace(INVISIBLE_UNICODE_RE, (ch) => `\\u{${ch.codePointAt(0).toString(16)}}`);
+}
+function isDangerousShellCommand(cmd) {
+	const c = (cmd || "").trim();
+	for (const re of DANGEROUS_SHELL_PATTERNS) if (re.test(c)) return true;
+	return false;
+}
+function buildPendingMsg(toolName, cmd) {
+	const safeTool = sanitizeApprovalText(toolName);
+	const cmdInfo = cmd ? ` Command: \`${sanitizeApprovalText(cmd)}\`` : "";
+	return `This action requires confirmation. Tool: \`${safeTool}\`.${cmdInfo} Reply "confirm" to proceed.`;
+}
+/**
+
+* Wrap tools so destructive ones are gated. When sessionId set, stores pending for confirm flow.
+
+*/
+function applyDestructiveGate(tools, opts) {
+	const { elevated, source, sessionId } = opts;
+	const fromChannel = source && CHANNEL_SOURCES.has(source);
+	if (!fromChannel || elevated) return tools;
+	return tools.map((t) => {
+		if (DESTRUCTIVE_TOOLS.includes(t.name)) {
+			const orig = t.handler;
+			return {
+				...t,
+				handler: async (input) => {
+					if (sessionId) {
+						const { setPending } = await Promise.resolve().then(() => require("./pending-approval-DaXi7otO.js"));
+						setPending(sessionId, {
+							toolName: t.name,
+							input,
+							execute: () => orig(input)
+						});
+						return buildPendingMsg(t.name);
+					}
+					return BLOCKED_MSG;
+				}
+			};
+		}
+		if (t.name === "run_shell") {
+			const orig = t.handler;
+			return {
+				...t,
+				handler: async (input) => {
+					const cmd = input.command || "";
+					if (isDangerousShellCommand(cmd)) {
+						if (sessionId) {
+							const { setPending } = await Promise.resolve().then(() => require("./pending-approval-DaXi7otO.js"));
+							setPending(sessionId, {
+								toolName: "run_shell",
+								input,
+								execute: () => orig(input)
+							});
+							return buildPendingMsg("run_shell", cmd);
+						}
+						return BLOCKED_MSG;
+					}
+					return orig(input);
+				}
+			};
+		}
+		return t;
+	});
+}
+var INVISIBLE_UNICODE_RE, DESTRUCTIVE_TOOLS, DANGEROUS_SHELL_PATTERNS, CHANNEL_SOURCES, BLOCKED_MSG;
+var init_destructive_gate = require_chunk.__esm({ "src/infra/destructive-gate.ts"() {
+	INVISIBLE_UNICODE_RE = /[\u00AD\u034F\u061C\u115F\u1160\u17B4\u17B5\u180B-\u180F\u200B-\u200F\u202A-\u202E\u2060-\u206F\u3164\uFEFF\uFFA0]/gu;
+	DESTRUCTIVE_TOOLS = ["delete_file", "kill_process"];
+	DANGEROUS_SHELL_PATTERNS = [
+		/\brm\s+-[rf]\b|\brm\s+--recursive|\brm\s+-rf\b/,
+		/\bmkfs\.|format\s+/i,
+		/\bdd\s+if=/,
+		/\b>\/dev\/sd[a-z]/,
+		/\bshutdown\s+-/,
+		/\breboot\b/i,
+		/\b:\(\)\s*\{\s*:\s*\|\s*:\s*&\s*\}/,
+		/\bcurl\s+.*\s*\|\s*sh\b/,
+		/\bwget\s+.*\s*\|\s*(bash|sh)\b/
+	];
+	CHANNEL_SOURCES = new Set([
+		"telegram",
+		"discord",
+		"whatsapp",
+		"slack",
+		"signal",
+		"matrix",
+		"line",
+		"nostr",
+		"feishu",
+		"msteams",
+		"teams",
+		"instagram",
+		"messenger",
+		"twitter",
+		"viber",
+		"zalo",
+		"webhook:inbound"
+	]);
+	BLOCKED_MSG = "Blocked: destructive action requires elevated session. Use \"elevate\" or run from CLI with full access.";
+} });
+
+//#endregion
+init_destructive_gate();
+exports.applyDestructiveGate = applyDestructiveGate;

package/dist/destructive-gate-B_hNKtu6.js

@@ -0,0 +1,116 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+
+//#region src/infra/destructive-gate.ts
+/**
+
+* Escape invisible Unicode format characters to visible \u{...} escapes.
+
+* Prevents zero-width characters from spoofing displayed commands in approval prompts.
+
+*/
+function sanitizeApprovalText(text) {
+	return text.replace(INVISIBLE_UNICODE_RE, (ch) => `\\u{${ch.codePointAt(0).toString(16)}}`);
+}
+function isDangerousShellCommand(cmd) {
+	const c = (cmd || "").trim();
+	for (const re of DANGEROUS_SHELL_PATTERNS) if (re.test(c)) return true;
+	return false;
+}
+function buildPendingMsg(toolName, cmd) {
+	const safeTool = sanitizeApprovalText(toolName);
+	const cmdInfo = cmd ? ` Command: \`${sanitizeApprovalText(cmd)}\`` : "";
+	return `This action requires confirmation. Tool: \`${safeTool}\`.${cmdInfo} Reply "confirm" to proceed.`;
+}
+/**
+
+* Wrap tools so destructive ones are gated. When sessionId set, stores pending for confirm flow.
+
+*/
+function applyDestructiveGate(tools, opts) {
+	const { elevated, source, sessionId } = opts;
+	const fromChannel = source && CHANNEL_SOURCES.has(source);
+	if (!fromChannel || elevated) return tools;
+	return tools.map((t) => {
+		if (DESTRUCTIVE_TOOLS.includes(t.name)) {
+			const orig = t.handler;
+			return {
+				...t,
+				handler: async (input) => {
+					if (sessionId) {
+						const { setPending } = await Promise.resolve().then(() => require("./pending-approval-CzMNCTfZ.js"));
+						setPending(sessionId, {
+							toolName: t.name,
+							input,
+							execute: () => orig(input)
+						});
+						return buildPendingMsg(t.name);
+					}
+					return BLOCKED_MSG;
+				}
+			};
+		}
+		if (t.name === "run_shell") {
+			const orig = t.handler;
+			return {
+				...t,
+				handler: async (input) => {
+					const cmd = input.command || "";
+					if (isDangerousShellCommand(cmd)) {
+						if (sessionId) {
+							const { setPending } = await Promise.resolve().then(() => require("./pending-approval-CzMNCTfZ.js"));
+							setPending(sessionId, {
+								toolName: "run_shell",
+								input,
+								execute: () => orig(input)
+							});
+							return buildPendingMsg("run_shell", cmd);
+						}
+						return BLOCKED_MSG;
+					}
+					return orig(input);
+				}
+			};
+		}
+		return t;
+	});
+}
+var INVISIBLE_UNICODE_RE, DESTRUCTIVE_TOOLS, DANGEROUS_SHELL_PATTERNS, CHANNEL_SOURCES, BLOCKED_MSG;
+var init_destructive_gate = require_chunk.__esm({ "src/infra/destructive-gate.ts"() {
+	INVISIBLE_UNICODE_RE = /[\u00AD\u034F\u061C\u115F\u1160\u17B4\u17B5\u180B-\u180F\u200B-\u200F\u202A-\u202E\u2060-\u206F\u3164\uFEFF\uFFA0]/gu;
+	DESTRUCTIVE_TOOLS = ["delete_file", "kill_process"];
+	DANGEROUS_SHELL_PATTERNS = [
+		/\brm\s+-[rf]\b|\brm\s+--recursive|\brm\s+-rf\b/,
+		/\bmkfs\.|format\s+/i,
+		/\bdd\s+if=/,
+		/\b>\/dev\/sd[a-z]/,
+		/\bshutdown\s+-/,
+		/\breboot\b/i,
+		/\b:\(\)\s*\{\s*:\s*\|\s*:\s*&\s*\}/,
+		/\bcurl\s+.*\s*\|\s*sh\b/,
+		/\bwget\s+.*\s*\|\s*(bash|sh)\b/
+	];
+	CHANNEL_SOURCES = new Set([
+		"telegram",
+		"discord",
+		"whatsapp",
+		"slack",
+		"signal",
+		"matrix",
+		"line",
+		"nostr",
+		"feishu",
+		"msteams",
+		"teams",
+		"instagram",
+		"messenger",
+		"twitter",
+		"viber",
+		"zalo",
+		"webhook:inbound"
+	]);
+	BLOCKED_MSG = "Blocked: destructive action requires elevated session. Use \"elevate\" or run from CLI with full access.";
+} });
+
+//#endregion
+init_destructive_gate();
+exports.applyDestructiveGate = applyDestructiveGate;

package/dist/destructive-gate-DvxPSDMR.js

@@ -0,0 +1,116 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+
+//#region src/infra/destructive-gate.ts
+/**
+
+* Escape invisible Unicode format characters to visible \u{...} escapes.
+
+* Prevents zero-width characters from spoofing displayed commands in approval prompts.
+
+*/
+function sanitizeApprovalText(text) {
+	return text.replace(INVISIBLE_UNICODE_RE, (ch) => `\\u{${ch.codePointAt(0).toString(16)}}`);
+}
+function isDangerousShellCommand(cmd) {
+	const c = (cmd || "").trim();
+	for (const re of DANGEROUS_SHELL_PATTERNS) if (re.test(c)) return true;
+	return false;
+}
+function buildPendingMsg(toolName, cmd) {
+	const safeTool = sanitizeApprovalText(toolName);
+	const cmdInfo = cmd ? ` Command: \`${sanitizeApprovalText(cmd)}\`` : "";
+	return `This action requires confirmation. Tool: \`${safeTool}\`.${cmdInfo} Reply "confirm" to proceed.`;
+}
+/**
+
+* Wrap tools so destructive ones are gated. When sessionId set, stores pending for confirm flow.
+
+*/
+function applyDestructiveGate(tools, opts) {
+	const { elevated, source, sessionId } = opts;
+	const fromChannel = source && CHANNEL_SOURCES.has(source);
+	if (!fromChannel || elevated) return tools;
+	return tools.map((t) => {
+		if (DESTRUCTIVE_TOOLS.includes(t.name)) {
+			const orig = t.handler;
+			return {
+				...t,
+				handler: async (input) => {
+					if (sessionId) {
+						const { setPending } = await Promise.resolve().then(() => require("./pending-approval-KcyeiifE.js"));
+						setPending(sessionId, {
+							toolName: t.name,
+							input,
+							execute: () => orig(input)
+						});
+						return buildPendingMsg(t.name);
+					}
+					return BLOCKED_MSG;
+				}
+			};
+		}
+		if (t.name === "run_shell") {
+			const orig = t.handler;
+			return {
+				...t,
+				handler: async (input) => {
+					const cmd = input.command || "";
+					if (isDangerousShellCommand(cmd)) {
+						if (sessionId) {
+							const { setPending } = await Promise.resolve().then(() => require("./pending-approval-KcyeiifE.js"));
+							setPending(sessionId, {
+								toolName: "run_shell",
+								input,
+								execute: () => orig(input)
+							});
+							return buildPendingMsg("run_shell", cmd);
+						}
+						return BLOCKED_MSG;
+					}
+					return orig(input);
+				}
+			};
+		}
+		return t;
+	});
+}
+var INVISIBLE_UNICODE_RE, DESTRUCTIVE_TOOLS, DANGEROUS_SHELL_PATTERNS, CHANNEL_SOURCES, BLOCKED_MSG;
+var init_destructive_gate = require_chunk.__esm({ "src/infra/destructive-gate.ts"() {
+	INVISIBLE_UNICODE_RE = /[\u00AD\u034F\u061C\u115F\u1160\u17B4\u17B5\u180B-\u180F\u200B-\u200F\u202A-\u202E\u2060-\u206F\u3164\uFEFF\uFFA0]/gu;
+	DESTRUCTIVE_TOOLS = ["delete_file", "kill_process"];
+	DANGEROUS_SHELL_PATTERNS = [
+		/\brm\s+-[rf]\b|\brm\s+--recursive|\brm\s+-rf\b/,
+		/\bmkfs\.|format\s+/i,
+		/\bdd\s+if=/,
+		/\b>\/dev\/sd[a-z]/,
+		/\bshutdown\s+-/,
+		/\breboot\b/i,
+		/\b:\(\)\s*\{\s*:\s*\|\s*:\s*&\s*\}/,
+		/\bcurl\s+.*\s*\|\s*sh\b/,
+		/\bwget\s+.*\s*\|\s*(bash|sh)\b/
+	];
+	CHANNEL_SOURCES = new Set([
+		"telegram",
+		"discord",
+		"whatsapp",
+		"slack",
+		"signal",
+		"matrix",
+		"line",
+		"nostr",
+		"feishu",
+		"msteams",
+		"teams",
+		"instagram",
+		"messenger",
+		"twitter",
+		"viber",
+		"zalo",
+		"webhook:inbound"
+	]);
+	BLOCKED_MSG = "Blocked: destructive action requires elevated session. Use \"elevate\" or run from CLI with full access.";
+} });
+
+//#endregion
+init_destructive_gate();
+exports.applyDestructiveGate = applyDestructiveGate;

package/dist/destructive-gate-Qd2y7x1B.js

@@ -0,0 +1,116 @@
+const require_chunk = require('./chunk-jS-bbMI5.js');
+
+//#region src/infra/destructive-gate.ts
+/**
+
+* Escape invisible Unicode format characters to visible \u{...} escapes.
+
+* Prevents zero-width characters from spoofing displayed commands in approval prompts.
+
+*/
+function sanitizeApprovalText(text) {
+	return text.replace(INVISIBLE_UNICODE_RE, (ch) => `\\u{${ch.codePointAt(0).toString(16)}}`);
+}
+function isDangerousShellCommand(cmd) {
+	const c = (cmd || "").trim();
+	for (const re of DANGEROUS_SHELL_PATTERNS) if (re.test(c)) return true;
+	return false;
+}
+function buildPendingMsg(toolName, cmd) {
+	const safeTool = sanitizeApprovalText(toolName);
+	const cmdInfo = cmd ? ` Command: \`${sanitizeApprovalText(cmd)}\`` : "";
+	return `This action requires confirmation. Tool: \`${safeTool}\`.${cmdInfo} Reply "confirm" to proceed.`;
+}
+/**
+
+* Wrap tools so destructive ones are gated. When sessionId set, stores pending for confirm flow.
+
+*/
+function applyDestructiveGate(tools, opts) {
+	const { elevated, source, sessionId } = opts;
+	const fromChannel = source && CHANNEL_SOURCES.has(source);
+	if (!fromChannel || elevated) return tools;
+	return tools.map((t) => {
+		if (DESTRUCTIVE_TOOLS.includes(t.name)) {
+			const orig = t.handler;
+			return {
+				...t,
+				handler: async (input) => {
+					if (sessionId) {
+						const { setPending } = await Promise.resolve().then(() => require("./pending-approval-CJPyt8U5.js"));
+						setPending(sessionId, {
+							toolName: t.name,
+							input,
+							execute: () => orig(input)
+						});
+						return buildPendingMsg(t.name);
+					}
+					return BLOCKED_MSG;
+				}
+			};
+		}
+		if (t.name === "run_shell") {
+			const orig = t.handler;
+			return {
+				...t,
+				handler: async (input) => {
+					const cmd = input.command || "";
+					if (isDangerousShellCommand(cmd)) {
+						if (sessionId) {
+							const { setPending } = await Promise.resolve().then(() => require("./pending-approval-CJPyt8U5.js"));
+							setPending(sessionId, {
+								toolName: "run_shell",
+								input,
+								execute: () => orig(input)
+							});
+							return buildPendingMsg("run_shell", cmd);
+						}
+						return BLOCKED_MSG;
+					}
+					return orig(input);
+				}
+			};
+		}
+		return t;
+	});
+}
+var INVISIBLE_UNICODE_RE, DESTRUCTIVE_TOOLS, DANGEROUS_SHELL_PATTERNS, CHANNEL_SOURCES, BLOCKED_MSG;
+var init_destructive_gate = require_chunk.__esm({ "src/infra/destructive-gate.ts"() {
+	INVISIBLE_UNICODE_RE = /[\u00AD\u034F\u061C\u115F\u1160\u17B4\u17B5\u180B-\u180F\u200B-\u200F\u202A-\u202E\u2060-\u206F\u3164\uFEFF\uFFA0]/gu;
+	DESTRUCTIVE_TOOLS = ["delete_file", "kill_process"];
+	DANGEROUS_SHELL_PATTERNS = [
+		/\brm\s+-[rf]\b|\brm\s+--recursive|\brm\s+-rf\b/,
+		/\bmkfs\.|format\s+/i,
+		/\bdd\s+if=/,
+		/\b>\/dev\/sd[a-z]/,
+		/\bshutdown\s+-/,
+		/\breboot\b/i,
+		/\b:\(\)\s*\{\s*:\s*\|\s*:\s*&\s*\}/,
+		/\bcurl\s+.*\s*\|\s*sh\b/,
+		/\bwget\s+.*\s*\|\s*(bash|sh)\b/
+	];
+	CHANNEL_SOURCES = new Set([
+		"telegram",
+		"discord",
+		"whatsapp",
+		"slack",
+		"signal",
+		"matrix",
+		"line",
+		"nostr",
+		"feishu",
+		"msteams",
+		"teams",
+		"instagram",
+		"messenger",
+		"twitter",
+		"viber",
+		"zalo",
+		"webhook:inbound"
+	]);
+	BLOCKED_MSG = "Blocked: destructive action requires elevated session. Use \"elevate\" or run from CLI with full access.";
+} });
+
+//#endregion
+init_destructive_gate();
+exports.applyDestructiveGate = applyDestructiveGate;