hyperclaw 5.4.0 → 5.4.1

package/dist/run-main.js

@@ -1,21 +1,21 @@
 const require_chunk = require('./chunk-jS-bbMI5.js');
 const require_paths = require('./paths-AIyBxIzm.js');
 const require_paths$1 = require('./paths-DPovhojT.js');
-require('./env-resolve-CHxjGo8u.js');
-const require_config = require('./config-DGAAJ49A.js');
-require('./server-vbYKep6r.js');
-const require_daemon = require('./daemon-DcE6vcjH.js');
+require('./env-resolve-NNM3F6Eo.js');
+const require_config = require('./config-DN9fdLL3.js');
+require('./server-MDmdWHob.js');
+const require_daemon = require('./daemon-DBTtYx6E.js');
 const require_gateway = require('./gateway-CzI8dnlS.js');
-require('./providers-DP8T0QCR.js');
-const require_onboard = require('./onboard-CjzqTYq3.js');
+require('./providers-dHhpJo9j.js');
+const require_onboard = require('./onboard-CXSVPnP7.js');
 require('./theme-CLXvI6Hr.js');
-const require_banner = require('./banner-B2Qo91lq.js');
-const require_hub = require('./hub-Bb_dYECE.js');
+const require_banner = require('./banner-CZ2BfvQq.js');
+const require_hub = require('./hub-DAkEVTEy.js');
 const require_update_check = require('./update-check-DlUFL81n.js');
-const require_manager = require('./manager-DYfzqckn.js');
-const require_memory = require('./memory-BCYvdqwo.js');
-const require_loader = require('./loader-DIPs649t.js');
-const require_agents_routing = require('./agents-routing-Cpg20-1e.js');
+const require_manager = require('./manager-Dz2eKYqo.js');
+const require_memory = require('./memory-DPSWQBc0.js');
+const require_loader = require('./loader-D6yjBYo4.js');
+const require_agents_routing = require('./agents-routing-EwzORQQv.js');
 const require_pairing = require('./pairing-B4NoBvyE.js');
 const require_doctor = require('./doctor-C6nAGdH8.js');
 const require_health = require('./health-BMUmUNoe.js');
@@ -674,17 +674,26 @@ const CHANNELS = [
 		platforms: ["all"],
 		tokenLabel: "Telegram Bot Token",
 		tokenHint: "Get from @BotFather → /newbot",
-		extraFields: [{
-			name: "dmPolicy",
-			label: "DM policy",
-			hint: "pairing (default) | allowlist | open | disabled",
-			required: false
-		}, {
-			name: "groupActivation",
-			label: "Group activation",
-			hint: "mention (default) | always",
-			required: false
-		}],
+		extraFields: [
+			{
+				name: "dmPolicy",
+				label: "DM policy",
+				hint: "pairing (default) | allowlist | open | disabled",
+				required: false
+			},
+			{
+				name: "groupActivation",
+				label: "Group activation",
+				hint: "mention (default) | always",
+				required: false
+			},
+			{
+				name: "inlineMode",
+				label: "Inline mode",
+				hint: "Use @botname <query> in any chat. Enable via BotFather /setinline first.",
+				required: false
+			}
+		],
 		setupSteps: [
 			"1. Open Telegram → @BotFather → /newbot. Save the token.",
 			"2. Config: channels.telegram.botToken, dmPolicy (default: pairing), groups.",
@@ -734,6 +743,12 @@ const CHANNELS = [
 				label: "DM policy",
 				hint: "\"pairing\" (default) | \"allowlist\" | \"open\" | \"none\"",
 				required: false
+			},
+			{
+				name: "autoArchiveDuration",
+				label: "Thread auto-archive duration (min)",
+				hint: "60=1h (default) | 1440=1d | 4320=3d | 10080=1w",
+				required: false
 			}
 		],
 		status: "recommended",
@@ -1957,6 +1972,66 @@ const ZALO_PERSONAL = {
 	notes: "Zalo Web cookie auth. DMs only. No groups. Text chunked ~2000 chars."
 };
 CHANNELS.push(ZALO_PERSONAL);
+const NOTION = {
+	id: "notion",
+	name: "Notion",
+	emoji: "📋",
+	requiresGateway: false,
+	supportsDM: false,
+	platforms: ["all"],
+	tokenLabel: "Notion Integration Token",
+	tokenHint: "notion.so/my-integrations → New integration → Copy token",
+	extraFields: [{
+		name: "defaultDatabaseId",
+		label: "Default Database ID",
+		hint: "Paste the 32-char ID from your Notion DB URL",
+		required: false
+	}, {
+		name: "defaultPageId",
+		label: "Default Page ID",
+		hint: "Optional: page to write notes to by default",
+		required: false
+	}],
+	setupSteps: [
+		"1. Go to notion.so/my-integrations → New integration → give it a name.",
+		"2. Copy the Internal Integration Token (starts with secret_...).",
+		"3. Open the Notion page/database you want to use → Share → Invite your integration.",
+		"4. Set NOTION_TOKEN in your env or config: channels.notion.token.",
+		"5. Optional: set defaultDatabaseId to auto-create pages in a DB.",
+		"",
+		"  🔗 docs/notion.md — full setup"
+	],
+	status: "available",
+	notes: "Read/write pages, create DB entries, search workspace. Needs explicit page share."
+};
+CHANNELS.push(NOTION);
+const SHAZAM = {
+	id: "shazam",
+	name: "Shazam (Song Recognition)",
+	emoji: "🎵",
+	requiresGateway: false,
+	supportsDM: false,
+	platforms: ["all"],
+	tokenLabel: "RapidAPI Key (Shazam API)",
+	tokenHint: "rapidapi.com/apidojo/api/shazam → Subscribe → Copy X-RapidAPI-Key",
+	extraFields: [{
+		name: "autoRecognize",
+		label: "Auto-recognize on audio messages",
+		hint: "true | false (default)",
+		required: false
+	}],
+	setupSteps: [
+		"1. Sign up at rapidapi.com → search \"Shazam\" → subscribe to the free plan.",
+		"2. Copy your X-RapidAPI-Key from the API dashboard.",
+		"3. Set SHAZAM_API_KEY in your env or config: channels.shazam.apiKey.",
+		"4. Send an audio clip or hum detection query to identify a song.",
+		"",
+		"  🔗 docs/shazam.md — full setup"
+	],
+	status: "available",
+	notes: "Song recognition via Shazam API on RapidAPI. Free tier: 500 req/month."
+};
+CHANNELS.push(SHAZAM);
 
 //#endregion
 //#region src/commands/channels/add.ts
@@ -2527,6 +2602,22 @@ var init_queue = require_chunk.__esm({ "src/delivery/queue.ts"() {
 //#endregion
 //#region src/cli/run-main.ts
 require_device_auth_store.init_device_auth_store();
+function getGitShortHash() {
+	try {
+		const { execSync } = require("child_process");
+		return execSync("git rev-parse --short HEAD", { stdio: [
+			"ignore",
+			"pipe",
+			"ignore"
+		] }).toString().trim();
+	} catch {
+		return "";
+	}
+}
+const cliVersion = (() => {
+	const h = getGitShortHash();
+	return h ? `5.4.1+${h}` : "5.4.1";
+})();
 process.on("unhandledRejection", (reason) => {
 	console.error("[hyperclaw] Unhandled rejection:", reason);
 	process.exit(1);
@@ -2539,34 +2630,40 @@ function sanitizeForLog(value) {
 	return String(value ?? "").replace(/[\r\n\t]+/g, " ").replace(/[^\x20-\x7e]+/g, "?").slice(0, 200);
 }
 const program = new commander.Command();
-program.name("hyperclaw").description("⚡ HyperClaw — AI Gateway Platform. The Lobster Evolution 🦅").version("5.4.0").option("--profile <name>", "Use an isolated gateway profile. Auto-scopes HYPERCLAW_STATE_DIR and HYPERCLAW_CONFIG_PATH. Required for multi-gateway setups (rescue bot, staging, etc.). Example: hyperclaw --profile rescue gateway --port 19001").addHelpText("after", `
-  Full commands reference: READMECOMMAND.md (all commands and options)
+program.name("hyperclaw").description("⚡ HyperClaw — AI Gateway Platform. The Lobster Evolution 🦅").version(cliVersion).option("--profile <name>", "Use an isolated gateway profile. Auto-scopes HYPERCLAW_STATE_DIR and HYPERCLAW_CONFIG_PATH. Required for multi-gateway setups (rescue bot, staging, etc.). Example: hyperclaw --profile rescue gateway --port 19001").addHelpText("after", `
+  Full reference: READMECOMMAND.md (all commands + options)
 
-  Main command groups:
-    ✓ init, onboard, quickstart, setup
-    ✓ gateway status|start|stop|restart, daemon start|stop|restart|status|logs
-    ✓ web — 🌐 React Web UI (auto npm install + dev server)
-    ✓ chat — 💬 terminal chat
-    ✓ agent -m "message"
-    ✓ channels list|add|remove|login|status
-    ✓ hooks list|enable|disable|info
-    ✓ pairing list|approve, devices list|pair|approve|reject|unpair
-    ✓ hub, skill search|list|install
-    ✓ memory show|add-rule|add-fact|search|clear|save
-    ✓ config show|set-key|schema, secrets audit|set|apply|reload
-    ✓ doctor [--fix], health, security audit
-    ✓ status, dashboard
-    ✓ threads list|terminate, canvas show|add|clear|export
-    ✓ mcp list|add|remove|probe, node list|add|probe|remove
-    ✓ cron list|add|remove, webhooks list|remove|toggle, logs
-    ✓ voice, theme list|set|preview, workspace init|show
-    ✓ pc status|enable|disable|log|run
-    ✓ bot status|setup|start|stop
-    ✓ auth add|remove|oauth|setup-token
-    ✓ osint [workflow], deploy, update, message send
+  Command groups:
+    init, onboard, quickstart, setup
+    gateway status|start|stop|restart|config, daemon start|stop|restart|status|logs|install|uninstall
+    web (--port, --skip-install), chat (--session, --model, --workspace)
+    agent -m "message" (--thinking, --model, --multi-step, --parallel)
+    channels list|add|remove|login|status
+    hooks list|info|enable|disable|install
+    pairing list|approve, devices list|pair|approve|reject|unpair
+    hub, hub search [query], hub install <id>, hub list, hub scan <id>, hub marketplace
+    skill search|list|install (alias for hub)
+    memory show|add-rule|add-fact|add-image|add-audio|search|search-vector|auto-show|clear|save
+    backup create|verify <dir>|restore <dir>
+    config show|set-key|set-service-key|schema
+    secrets audit|set|apply|reload|remove|credentials
+    doctor [--fix], health, security audit
+    status (--all, --deep), dashboard
+    acp, threads create (--resume <id>)|list|terminate, canvas show|add|clear|export
+    mcp list|add|remove|probe [id], node list|add|probe [id]|remove|queue [nodeId]
+    nodes, delivery status|retry
+    cron list|add|remove (-s --skill), webhooks list|remove|toggle
+    gmail watch-setup, auto-reply list|toggle|remove
+    voice-call, voice, theme list|set|preview
+    workspace init|show, pc status|enable|disable|log|run
+    bot status|setup|start|stop
+    auth add|remove|oauth|setup-token|oauth-set
+    developer-key create|list|revoke
+    agents bindings|bind|unbind, sandbox explain
+    message send, deploy, update, osint [workflow], logs (--follow)
 
-  Examples: hyperclaw onboard | hyperclaw chat | hyperclaw gateway status
-  Run "hyperclaw" with no args for quick actions, or see READMECOMMAND.md for full list.`).hook("preAction", (thisCommand) => {
+  Examples: hyperclaw onboard | hyperclaw chat | hyperclaw hub search
+  Full list: READMECOMMAND.md`).hook("preAction", (thisCommand) => {
 	const profile = thisCommand.opts().profile;
 	if (profile) {
 		const os$2 = require("os");
@@ -2710,8 +2807,8 @@ sandboxCmd.command("explain").description("Show effective sandbox mode, tool pol
 	}
 	const sandboxMode = cfg?.agents?.defaults?.sandbox?.mode ?? "non-main";
 	const toolsCfg = cfg?.tools ?? {};
-	const { describeToolPolicy, applyToolPolicy } = await Promise.resolve().then(() => require("./tool-policy-QXF3MMxu.js"));
-	const { getBuiltinTools, getSessionsTools, getPCAccessTools, getBrowserTools, getExtractionTools, getWebsiteWatchTools, getVisionTools } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+	const { describeToolPolicy, applyToolPolicy } = await Promise.resolve().then(() => require("./tool-policy-1EBdJkSG.js"));
+	const { getBuiltinTools, getSessionsTools, getPCAccessTools, getBrowserTools, getExtractionTools, getWebsiteWatchTools, getVisionTools } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	const allTools = [
 		...getBuiltinTools(),
 		...getSessionsTools(() => null),
@@ -2875,15 +2972,70 @@ msgCmd.command("send").description("Send a message via a configured channel").op
 	await sendMessage(opts);
 	process.exit(0);
 });
-program.command("hub").description("Skill hub — browse marketplace, install, scan skills").option("-i, --install <id>", "Install skill").option("-s, --scan <id>", "Security scan a skill").option("-m, --marketplace", "ClawHub-style marketplace view (installed + bundled)").option("--force", "Force install (bypass risk block)").option("--hide-suspicious", "Hide suspicious/dangerous skills").action(async (opts) => {
+const hubCmd = program.command("hub").description("Skill marketplace — browse, search, install community skills");
+hubCmd.command("search [query]").description("Search skills (ClawHub + bundled registry)").option("-c, --category <cat>", "Filter by category").action(async (query, opts) => {
+	const hub = new require_hub.SkillHub();
+	const q = query || "";
+	const skills = await hub.searchClawHub(q, opts.category);
+	if (skills.length === 0) {
+		console.log(chalk.default.gray(q ? `No skills found for "${q}"` : "Browse: hyperclaw hub"));
+		process.exit(0);
+		return;
+	}
+	console.log(chalk.default.bold.hex("#06b6d4")("\n  Skill marketplace — search results:\n"));
+	for (const s of skills) {
+		const stars = "★".repeat(Math.round(s.rating || 0)) + "☆".repeat(5 - Math.round(s.rating || 0));
+		console.log(`  ${chalk.default.bold(s.name || s.id)}  ${chalk.default.gray(s.author || "")}  ${chalk.default.hex("#06b6d4")(stars)}  ${chalk.default.gray((s.downloads || 0).toLocaleString())} dl`);
+		console.log(`    ${chalk.default.gray(s.description || "")}`);
+		console.log(`    ${chalk.default.hex("#06b6d4")("hyperclaw hub install " + (s.id || s.name))}\n`);
+	}
+	process.exit(0);
+});
+hubCmd.command("install <id>").description("Install skill from registry (or bundled)").option("-v, --version <ver>", "Pin version").option("--force", "Force install (bypass risk block)").action(async (id, opts) => {
 	const hub = new require_hub.SkillHub();
-	if (opts.scan) await hub.scan(opts.scan);
-	else if (opts.install) await hub.install(opts.install, opts.force);
-	else if (opts.marketplace) await hub.showMarketplace({ hideSuspicious: opts.hideSuspicious });
-	else await hub.showHub(opts.hideSuspicious);
+	const ora$4 = (await import("ora")).default;
+	const s = ora$4(`Installing ${id}...`).start();
+	try {
+		const dest = await hub.installFromClawHub(id, opts.version);
+		s.succeed(`Installed to ${dest}`);
+	} catch (e) {
+		const match = require_hub.SKILL_REGISTRY.find((x) => x.id === id);
+		if (match) {
+			await hub.install(id, !!opts?.force);
+			s.succeed(`Installed bundled skill: ${match.name}`);
+		} else s.fail(e.message);
+	}
 	process.exit(0);
 });
-const skillCmd = program.command("skill").description("ClawHub — search and install skills from registry");
+hubCmd.command("list").description("List installed skills").action(async () => {
+	const hub = new require_hub.SkillHub();
+	const installed = await hub.getInstalled();
+	console.log(chalk.default.bold.hex("#06b6d4")("\n  Installed skills:\n"));
+	for (const s of installed) {
+		const src = require_hub.SKILL_REGISTRY.some((r) => r.id === s.id) ? "" : " (registry)";
+		console.log(`  ${chalk.default.hex("#06b6d4")("✓")} ${s.name} ${chalk.default.gray(`(${s.id})${src}`)}`);
+	}
+	if (installed.length === 0) console.log(chalk.default.gray("  No skills installed. Run: hyperclaw hub search <query>  or  hyperclaw hub\n"));
+	else console.log();
+	process.exit(0);
+});
+hubCmd.command("scan <id>").description("Security scan a skill").action(async (id) => {
+	const hub = new require_hub.SkillHub();
+	await hub.scan(id);
+	process.exit(0);
+});
+hubCmd.command("marketplace").description("Browse marketplace (installed + bundled)").option("--hide-suspicious", "Hide suspicious/dangerous").action(async (opts) => {
+	const hub = new require_hub.SkillHub();
+	await hub.showMarketplace({ hideSuspicious: opts.hideSuspicious });
+	process.exit(0);
+});
+hubCmd.option("--hide-suspicious", "Hide suspicious skills");
+hubCmd.action(async (opts) => {
+	const hub = new require_hub.SkillHub();
+	await hub.showHub(opts?.hideSuspicious);
+	process.exit(0);
+});
+const skillCmd = program.command("skill").description("Skills — alias for hyperclaw hub (search, install, list)");
 skillCmd.command("search [query]").description("Search ClawHub for skills").option("-c, --category <cat>", "Filter by category").action(async (query, opts) => {
 	const hub = new require_hub.SkillHub();
 	const q = query || "";
@@ -3194,8 +3346,120 @@ memCmd.command("add-rule <rule>").description("Append a global rule to AGENTS.md
 	await new require_memory.MemoryManager().appendRule(rule);
 	process.exit(0);
 });
-memCmd.command("add-fact <fact>").description("Add a fact to MEMORY.md").action(async (fact) => {
-	await new require_memory.MemoryManager().addMemory(fact);
+memCmd.command("add-image <path>").description("Add image to multimodal vector memory (requires memory-lancedb + embeddingProvider: gemini + GOOGLE_AI_API_KEY)").option("-c, --caption <text>", "Caption for the image").action(async (imagePath, opts) => {
+	try {
+		const pkg = "@hyperclaw/memory-lancedb";
+		const mod = await (async () => {
+			try {
+				return await import(pkg);
+			} catch {
+				return null;
+			}
+		})();
+		if (!mod?.VectorMemoryService) throw new Error("Install: npm install @hyperclaw/memory-lancedb vectordb");
+		const cfg = await new require_manager.ConfigManager().load();
+		const apiKey = process.env.GOOGLE_AI_API_KEY ?? (cfg?.provider?.providerId === "google" ? cfg?.provider?.apiKey : void 0);
+		if (!apiKey) throw new Error("GOOGLE_AI_API_KEY required for image indexing");
+		const path$5 = await import("path");
+		const { getHyperClawDir: getHyperClawDir$1 } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
+		const svc = new mod.VectorMemoryService({
+			dbPath: path$5.join(getHyperClawDir$1(), "memory-lancedb"),
+			apiKey,
+			embeddingProvider: "gemini"
+		});
+		await svc.addImage(imagePath, opts.caption);
+		console.log(chalk.default.green(`\n  ✓ Image indexed: ${imagePath}\n`));
+	} catch (e) {
+		console.log(chalk.default.yellow(`\n  ${e.message}\n`));
+		process.exit(1);
+	}
+	process.exit(0);
+});
+memCmd.command("add-audio <path>").description("Add audio to multimodal vector memory (requires memory-lancedb + embeddingProvider: gemini + GOOGLE_AI_API_KEY)").option("-t, --transcript <text>", "Transcript for the audio").action(async (audioPath, opts) => {
+	try {
+		const pkg = "@hyperclaw/memory-lancedb";
+		const mod = await (async () => {
+			try {
+				return await import(pkg);
+			} catch {
+				return null;
+			}
+		})();
+		if (!mod?.VectorMemoryService) throw new Error("Install: npm install @hyperclaw/memory-lancedb vectordb");
+		const cfg = await new require_manager.ConfigManager().load();
+		const apiKey = process.env.GOOGLE_AI_API_KEY ?? (cfg?.provider?.providerId === "google" ? cfg?.provider?.apiKey : void 0);
+		if (!apiKey) throw new Error("GOOGLE_AI_API_KEY required for audio indexing");
+		const path$5 = await import("path");
+		const { getHyperClawDir: getHyperClawDir$1 } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
+		const svc = new mod.VectorMemoryService({
+			dbPath: path$5.join(getHyperClawDir$1(), "memory-lancedb"),
+			apiKey,
+			embeddingProvider: "gemini"
+		});
+		await svc.addAudio(audioPath, opts.transcript);
+		console.log(chalk.default.green(`\n  ✓ Audio indexed: ${audioPath}\n`));
+	} catch (e) {
+		console.log(chalk.default.yellow(`\n  ${e.message}\n`));
+		process.exit(1);
+	}
+	process.exit(0);
+});
+memCmd.command("add-fact <fact>").description("Add a fact to MEMORY.md (and vector DB when memory-lancedb is available)").action(async (fact) => {
+	let vectorStore;
+	try {
+		const pkg = "@hyperclaw/memory-lancedb";
+		const mod = await (async () => {
+			try {
+				return await import(pkg);
+			} catch {
+				return null;
+			}
+		})();
+		const VectorMemoryService = mod?.VectorMemoryService;
+		const { getHyperClawDir: getHyperClawDir$1 } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
+		const path$5 = await import("path");
+		if (!VectorMemoryService) throw new Error("not available");
+		const svc = new VectorMemoryService({
+			dbPath: path$5.join(getHyperClawDir$1(), "memory-lancedb"),
+			apiKey: (await new require_manager.ConfigManager().load())?.provider?.apiKey
+		});
+		await svc.init();
+		vectorStore = { addMemory: (t) => svc.addMemory(t) };
+	} catch {}
+	await new require_memory.MemoryManager().addMemory(fact, vectorStore);
+	process.exit(0);
+});
+const backupCmd = program.command("backup").description("Backup and restore local HyperClaw state");
+backupCmd.command("create").description("Create a timestamped backup of hyperclaw.json, AGENTS.md, MEMORY.md, etc.").option("-o, --output <dir>", "Output directory (default: ~/.hyperclaw/backups)").action(async (opts) => {
+	const { createBackup } = await Promise.resolve().then(() => require("./backup-7l3iovkX.js"));
+	const dir = await createBackup(opts.output);
+	console.log(chalk.default.green(`\n  ✓ Backup created: ${dir}\n`));
+	process.exit(0);
+});
+backupCmd.command("verify <dir>").description("Verify backup integrity (checksums)").action(async (dir) => {
+	const { verifyBackup } = await Promise.resolve().then(() => require("./backup-7l3iovkX.js"));
+	const { ok, errors } = await verifyBackup(dir);
+	if (ok) console.log(chalk.default.green("\n  ✓ Backup OK\n"));
+	else console.log(chalk.default.red("\n  ✗ Errors:\n"), errors.map((e) => "    " + e).join("\n"), "\n");
+	process.exit(ok ? 0 : 1);
+});
+backupCmd.command("restore <dir>").description("Restore from backup (overwrites local files)").option("-y, --yes", "Skip confirmation").action(async (dir, opts) => {
+	const { restoreBackup } = await Promise.resolve().then(() => require("./backup-7l3iovkX.js"));
+	if (!opts.yes) {
+		console.log(chalk.default.yellow(`\n  This will overwrite files in ~/.hyperclaw. Confirm? (y/N) `));
+		const readline$1 = (await import("readline")).createInterface({
+			input: process.stdin,
+			output: process.stdout
+		});
+		const line = await new Promise((r) => readline$1.question("", r));
+		readline$1.close();
+		if (line?.toLowerCase() !== "y") {
+			console.log(chalk.default.gray("\n  Aborted.\n"));
+			process.exit(0);
+		}
+	}
+	await restoreBackup(dir);
+	console.log(chalk.default.green("\n  ✓ Restored.\n"));
 	process.exit(0);
 });
 const cfgCmd = program.command("config").description("Configuration management");
@@ -3253,7 +3517,7 @@ cfgCmd.command("set-key <KEY=value>").description("Set provider API key or confi
 			xai: "xai"
 		};
 		const pid = keyToProvider[key] ?? keyToProvider[key.toLowerCase()] ?? cfg?.provider?.providerId ?? key.toLowerCase();
-		const { validateApiKeyFormat } = await Promise.resolve().then(() => require("./api-key-validation-DgOBmp8Y.js"));
+		const { validateApiKeyFormat } = await Promise.resolve().then(() => require("./api-key-validation-BANgbsfO.js"));
 		const formatErr = validateApiKeyFormat(pid, value);
 		if (formatErr) {
 			console.log(chalk.default.yellow(`\n  ⚠  ${formatErr}\n`));
@@ -3315,7 +3579,7 @@ cfgCmd.command("set-service-key <serviceId> [apiKey]").description("Set API key
 cfgCmd.command("schema").description("Show configuration schema").action(() => {
 	console.log(chalk.default.bold.hex("#06b6d4")("\n  Config schema: ~/.hyperclaw/hyperclaw.json\n"));
 	const schema = {
-		version: "string (e.g. \"5.4.0\")",
+		version: "string (e.g. \"5.4.1\")",
 		workspaceName: "string",
 		provider: {
 			providerId: "string",
@@ -3370,11 +3634,11 @@ devKeyCmd.command("revoke <id>").description("Revoke a developer key").action(as
 	else console.log(chalk.default.red(`  Key not found: ${id}\n`));
 	process.exit(ok ? 0 : 1);
 });
-program.command("deploy").description("Deploy gateway to cloud (Fly.io or Render)").option("-p, --platform <platform>", "Platform: fly | render", "fly").option("--dry-run", "Show commands without running").action(async (opts) => {
+program.command("deploy").description("One-click deploy to cloud (Fly.io, Render, Railway)").option("-p, --platform <platform>", "Platform: fly | render | railway", "fly").option("--dry-run", "Show commands without running").action(async (opts) => {
 	const platform = (opts.platform ?? "fly").toLowerCase();
 	const dryRun = !!opts.dryRun;
 	if (platform === "fly") {
-		console.log(chalk.default.bold.hex("#06b6d4")("\n  Deploy to Fly.io\n"));
+		console.log(chalk.default.bold.hex("#06b6d4")("\n  🚀 Deploy to Fly.io\n"));
 		if (dryRun) {
 			console.log(chalk.default.gray("  Commands to run:"));
 			console.log(chalk.default.gray("    fly launch   # first time"));
@@ -3395,12 +3659,21 @@ program.command("deploy").description("Deploy gateway to cloud (Fly.io or Render
 			}
 		}
 	} else if (platform === "render") {
-		console.log(chalk.default.bold.hex("#06b6d4")("\n  Deploy to Render\n"));
-		console.log(chalk.default.gray("  1. Push to GitHub and connect repo at https://render.com"));
-		console.log(chalk.default.gray("  2. New Web Service → use render.yaml"));
-		console.log(chalk.default.gray("  3. Set env: OPENROUTER_API_KEY, HYPERCLAW_GATEWAY_TOKEN\n"));
+		console.log(chalk.default.bold.hex("#06b6d4")("\n  🚀 Deploy to Render\n"));
+		console.log(chalk.default.gray("  1. Push to GitHub and connect at https://render.com"));
+		console.log(chalk.default.gray("  2. New Web Service → connect repo, use render.yaml"));
+		console.log(chalk.default.gray("  3. Environment: OPENROUTER_API_KEY, HYPERCLAW_GATEWAY_TOKEN"));
+		console.log(chalk.default.cyan("\n  One-click: https://render.com/deploy\n"));
+	} else if (platform === "railway") {
+		console.log(chalk.default.bold.hex("#06b6d4")("\n  🚀 Deploy to Railway\n"));
+		console.log(chalk.default.gray("  1. Create project: https://railway.app/new"));
+		console.log(chalk.default.gray("  2. Deploy from GitHub or use Railway CLI:"));
+		console.log(chalk.default.gray("     npm i -g @railway/cli && railway login"));
+		console.log(chalk.default.gray("     railway init; railway add"));
+		console.log(chalk.default.gray("  3. Variables: OPENROUTER_API_KEY, HYPERCLAW_GATEWAY_TOKEN, PORT=18789"));
+		console.log(chalk.default.cyan("\n  One-click: https://railway.app/template (use Docker)\n"));
 	} else {
-		console.log(chalk.default.red(`  Unknown platform: ${platform}. Use fly or render.\n`));
+		console.log(chalk.default.red(`  Unknown platform: ${platform}. Use fly, render, or railway.\n`));
 		process.exit(1);
 	}
 	process.exit(0);
@@ -3593,40 +3866,40 @@ themeCmd.command("preview").description("Preview all themes side-by-side").actio
 });
 const secretsCmd = program.command("secrets").description("External secrets management");
 secretsCmd.command("audit").description("Audit all required secrets").option("--required-by <ids>", "Filter by skill/provider IDs (comma-separated)").action(async (opts) => {
-	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DWJ7WZcY.js"));
+	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-CNgdJunf.js"));
 	const filter = opts.requiredBy?.split(",");
 	await new SecretsManager().audit(filter);
 	process.exit(0);
 });
 secretsCmd.command("set <KEY=value>").description("Set a secret in .env file").action(async (kv) => {
-	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DWJ7WZcY.js"));
+	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-CNgdJunf.js"));
 	await new SecretsManager().set(kv);
 	process.exit(0);
 });
 secretsCmd.command("apply").description("Write secrets from .env to shell config (~/.bashrc, ~/.zshrc)").action(async () => {
-	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DWJ7WZcY.js"));
+	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-CNgdJunf.js"));
 	await new SecretsManager().apply();
 	process.exit(0);
 });
 secretsCmd.command("reload").description("Reload secrets into running gateway").action(async () => {
-	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DWJ7WZcY.js"));
+	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-CNgdJunf.js"));
 	await new SecretsManager().reload();
 	process.exit(0);
 });
 secretsCmd.command("remove <key>").description("Remove a secret from .env").action(async (key) => {
-	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-DWJ7WZcY.js"));
+	const { SecretsManager } = await Promise.resolve().then(() => require("./manager-CNgdJunf.js"));
 	await new SecretsManager().remove(key);
 	process.exit(0);
 });
 secretsCmd.command("credentials").description("List provider credential files (credentials/*.json)").action(async () => {
-	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-Bmm9e1SS.js"));
+	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-CR4WSDGl.js"));
 	const { getHyperClawDir: getHyperClawDir$1 } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
 	await new CredentialsStore(getHyperClawDir$1()).showList();
 	process.exit(0);
 });
 const securityCmd = program.command("security").description("Security tools");
 securityCmd.command("audit").description("Security audit — file permissions, DM policies, embedded secrets").option("--deep", "Full deep scan including token entropy and installed skill risks").option("--fix", "Auto-fix safe findings (file permissions etc.)").option("--json", "Machine-readable JSON output").action(async (opts) => {
-	const { runSecurityAudit } = await Promise.resolve().then(() => require("./audit-Dntx9fG9.js"));
+	const { runSecurityAudit } = await Promise.resolve().then(() => require("./audit-BLMB8qp7.js"));
 	await runSecurityAudit({
 		deep: opts.deep,
 		fix: opts.fix,
@@ -3635,20 +3908,20 @@ securityCmd.command("audit").description("Security audit — file permissions, D
 	process.exit(0);
 });
 program.command("osint").description("OSINT / Ethical Hacking mode — configure HyperClaw for security research").argument("[workflow]", "Workflow preset: recon | bugbounty | pentest | footprint | custom | chat").option("--show", "Show current OSINT profile").option("--reset", "Clear OSINT profile and disable OSINT mode").option("--model <model>", "Override model for OSINT chat").action(async (workflow, opts) => {
-	const { osintSetup, osintQuickStart } = await Promise.resolve().then(() => require("./osint-B5j3IuJK.js"));
+	const { osintSetup, osintQuickStart } = await Promise.resolve().then(() => require("./osint-DLYZsp1k.js"));
 	if (opts.show || opts.reset) await osintSetup({
 		show: opts.show,
 		reset: opts.reset
 	});
 	else if (workflow === "chat") {
-		const { runOsintChat } = await Promise.resolve().then(() => require("./osint-chat-xRP672b-.js"));
+		const { runOsintChat } = await Promise.resolve().then(() => require("./osint-chat-B0lc0Y6r.js"));
 		await runOsintChat({ model: opts.model });
 	} else if (workflow === "setup" || workflow) await osintSetup({ mode: workflow });
 	else await osintQuickStart();
 	process.exit(0);
 });
 program.command("chat").description("Interactive terminal chat with the agent").option("--session <id>", "Resume a named session").option("--model <model>", "Override model").option("--thinking <level>", "Thinking level: high|medium|low|none", "none").option("--workspace <dir>", "Override workspace directory").option("--daemon", "Use daemon theme (red borders & prompt)").action(async (opts) => {
-	const { runChat } = await Promise.resolve().then(() => require("./chat-BGD9AWhr.js"));
+	const { runChat } = await Promise.resolve().then(() => require("./chat-CiuT-GTs.js"));
 	const cfg = await new require_manager.ConfigManager().load().catch(() => null);
 	const port = cfg?.gateway?.port ?? 18789;
 	const gm = new GatewayManager$1();
@@ -3663,7 +3936,7 @@ program.command("chat").description("Interactive terminal chat with the agent").
 });
 const agentRunCmd = program.command("agent").description("Run agent with thinking control");
 agentRunCmd.requiredOption("-m, --message <text>", "Message to send to the agent").option("--thinking <level>", "Thinking level: high|medium|low|none", "none").option("--model <model>", "Override model").option("--session <id>", "Session/thread ID").option("--multi-step", "Decompose into steps and run each (sequential)").option("--parallel", "Run sub-agents in parallel for independent subtasks").option("--verbose", "Show thinking blocks and request details").option("--workspace <dir>", "Override workspace directory").action(async (opts) => {
-	const { runAgent } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+	const { runAgent } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	await runAgent({
 		message: opts.message,
 		thinking: opts.thinking,
@@ -3678,8 +3951,19 @@ agentRunCmd.requiredOption("-m, --message <text>", "Message to send to the agent
 	process.exit(0);
 });
 const threadsCmd = program.command("threads").description("ACP thread-bound agent sessions");
+threadsCmd.command("create").description("Create or resume an ACP thread").option("--resume <id>", "Resume existing session by thread ID (ACP resumeSessionId)").option("--name <name>", "Thread name").option("--channel <id>", "Channel ID").action(async (opts) => {
+	const { ACPThreadManager } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
+	const mgr = new ACPThreadManager();
+	const thread = await mgr.create({
+		resumeSessionId: opts.resume,
+		name: opts.name,
+		channelId: opts.channel
+	});
+	console.log(require("chalk").green(`\n  ✔  Thread: ${thread.name} (${thread.id})\n`));
+	process.exit(0);
+});
 threadsCmd.command("list").description("List agent threads").option("--channel <id>", "Filter by channel").option("--active", "Show only active threads").action(async (opts) => {
-	const { ACPThreadManager } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+	const { ACPThreadManager } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	const mgr = new ACPThreadManager();
 	const threads = await mgr.list({
 		channelId: opts.channel,
@@ -3689,29 +3973,33 @@ threadsCmd.command("list").description("List agent threads").option("--channel <
 	process.exit(0);
 });
 threadsCmd.command("terminate <id>").description("Terminate a thread").action(async (id) => {
-	const { ACPThreadManager } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+	const { ACPThreadManager } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	await new ACPThreadManager().terminate(id);
 	console.log(require("chalk").green(`\n  ✔  Thread terminated: ${id}\n`));
 	process.exit(0);
 });
+program.command("acp").description("Start ACP server on stdio for IDE integration (VS Code, Zed, Cursor, Codex)").action(async () => {
+	const { runACPStdio } = await Promise.resolve().then(() => require("./src-D-OND_62.js"));
+	await runACPStdio();
+});
 const canvasCmd = program.command("canvas").description("Live AI-driven UI canvas");
 canvasCmd.command("show").description("Show current canvas components").action(async () => {
-	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-B1ToXngl.js"));
+	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-Cg3c41A5.js"));
 	await new CanvasRenderer().show();
 	process.exit(0);
 });
 canvasCmd.command("add <type> <title>").description("Add a canvas component (type: chart|table|form|markdown|image|custom)").action(async (type, title) => {
-	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-B1ToXngl.js"));
+	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-Cg3c41A5.js"));
 	await new CanvasRenderer().addComponent(type, title);
 	process.exit(0);
 });
 canvasCmd.command("clear").description("Clear all canvas components").action(async () => {
-	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-B1ToXngl.js"));
+	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-Cg3c41A5.js"));
 	await new CanvasRenderer().clear();
 	process.exit(0);
 });
 canvasCmd.command("export").description("Export canvas as HTML file").action(async () => {
-	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-B1ToXngl.js"));
+	const { CanvasRenderer } = await Promise.resolve().then(() => require("./renderer-Cg3c41A5.js"));
 	const fs$7 = require("fs-extra");
 	const html = await new CanvasRenderer().exportHtml();
 	const { getHyperClawDir: getHyperClawDir$1 } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
@@ -3733,62 +4021,67 @@ deliveryCmd.command("retry <id>").description("Retry a dead-lettered delivery it
 });
 const mcpCmd = program.command("mcp").description("MCP (Model Context Protocol) server management");
 mcpCmd.command("list").description("List configured MCP servers").action(async () => {
-	const { mcpList } = await Promise.resolve().then(() => require("./mcp-SsMEvl28.js"));
+	const { mcpList } = await Promise.resolve().then(() => require("./mcp-CAJSA_ee.js"));
 	await mcpList();
 	process.exit(0);
 });
 mcpCmd.command("add").description("Add MCP server").action(async () => {
-	const { mcpAdd } = await Promise.resolve().then(() => require("./mcp-SsMEvl28.js"));
+	const { mcpAdd } = await Promise.resolve().then(() => require("./mcp-CAJSA_ee.js"));
 	await mcpAdd();
 	process.exit(0);
 });
 mcpCmd.command("remove <id>").description("Remove MCP server").action(async (id) => {
-	const { mcpRemove } = await Promise.resolve().then(() => require("./mcp-SsMEvl28.js"));
+	const { mcpRemove } = await Promise.resolve().then(() => require("./mcp-CAJSA_ee.js"));
 	await mcpRemove(id);
 	process.exit(0);
 });
 mcpCmd.command("probe [id]").description("Test MCP server connection").action(async (id) => {
-	const { mcpProbe } = await Promise.resolve().then(() => require("./mcp-SsMEvl28.js"));
+	const { mcpProbe } = await Promise.resolve().then(() => require("./mcp-CAJSA_ee.js"));
 	await mcpProbe(id);
 	process.exit(0);
 });
 const nodeCmd = program.command("node").description("HyperClaw node management (local, remote, android)");
 nodeCmd.command("list").description("List paired nodes").action(async () => {
-	const { nodeList } = await Promise.resolve().then(() => require("./node-C4esBfbX.js"));
+	const { nodeList } = await Promise.resolve().then(() => require("./node-CLWgPlAk.js"));
 	await nodeList();
 	process.exit(0);
 });
 nodeCmd.command("add").description("Add or pair a node").action(async () => {
-	const { nodeAdd } = await Promise.resolve().then(() => require("./node-C4esBfbX.js"));
+	const { nodeAdd } = await Promise.resolve().then(() => require("./node-CLWgPlAk.js"));
 	await nodeAdd();
 	process.exit(0);
 });
 nodeCmd.command("probe [id]").description("Probe node connection").action(async (id) => {
-	const { nodeProbe } = await Promise.resolve().then(() => require("./node-C4esBfbX.js"));
+	const { nodeProbe } = await Promise.resolve().then(() => require("./node-CLWgPlAk.js"));
 	await nodeProbe(id);
 	process.exit(0);
 });
 nodeCmd.command("remove <id>").description("Remove paired node").action(async (id) => {
-	const { nodeRemove } = await Promise.resolve().then(() => require("./node-C4esBfbX.js"));
+	const { nodeRemove } = await Promise.resolve().then(() => require("./node-CLWgPlAk.js"));
 	await nodeRemove(id);
 	process.exit(0);
 });
+nodeCmd.command("queue [nodeId]").description("List pending work queued for dormant nodes").action(async (nodeId) => {
+	const { nodeQueue } = await Promise.resolve().then(() => require("./node-CLWgPlAk.js"));
+	await nodeQueue(nodeId);
+	process.exit(0);
+});
 const arCmd = program.command("auto-reply").description("Auto-reply rule engine");
 arCmd.command("list").action(async () => {
-	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-Cqen1Mpt.js"));
+	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-D0v5nuSE.js"));
 	const e = new AutoReplyEngine();
 	await e.load();
 	e.showList();
 	process.exit(0);
 });
 arCmd.command("toggle <id>").action(async (id) => {
-	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-Cqen1Mpt.js"));
+	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-D0v5nuSE.js"));
 	const e = new AutoReplyEngine();
 	await e.toggle(id);
 	process.exit(0);
 });
 arCmd.command("remove <id>").action(async (id) => {
-	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-Cqen1Mpt.js"));
+	const { AutoReplyEngine } = await Promise.resolve().then(() => require("./rules-D0v5nuSE.js"));
 	const e = new AutoReplyEngine();
 	await e.remove(id);
 	process.exit(0);
@@ -3797,7 +4090,7 @@ const gmailCmd = program.command("gmail").description("Gmail Pub/Sub real-time n
 gmailCmd.command("watch-setup").description("Register Gmail watch for push notifications. Requires: hyperclaw auth oauth google-gmail").requiredOption("-t, --topic <name>", "Pub/Sub topic (e.g. projects/myproject/topics/gmail-push)").option("-l, --labels <ids>", "Label IDs to watch (comma-separated)", "INBOX").action(async (opts) => {
 	const chalk$11 = require("chalk");
 	try {
-		const { setupGmailWatch } = await Promise.resolve().then(() => require("./gmail-watch-setup-1RGIHNdu.js"));
+		const { setupGmailWatch } = await Promise.resolve().then(() => require("./gmail-watch-setup--eQ8raeb.js"));
 		const labelIds = opts.labels.split(",").map((s) => s.trim()).filter(Boolean);
 		const result = await setupGmailWatch({
 			topicName: opts.topic,
@@ -3817,7 +4110,7 @@ gmailCmd.command("watch-setup").description("Register Gmail watch for push notif
 const cronCmd = program.command("cron").description("Scheduled tasks (cron → agent prompt)");
 cronCmd.command("list").action(async () => {
 	const chalk$11 = require("chalk");
-	const { loadCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-OQbgmenS.js"));
+	const { loadCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-f_ieXSG2.js"));
 	const tasks = await loadCronTasks();
 	console.log(chalk$11.bold.cyan("\n  ⏰ CRON TASKS\n"));
 	if (tasks.length === 0) {
@@ -3830,16 +4123,17 @@ cronCmd.command("list").action(async () => {
 		console.log(`  ${dot} ${chalk$11.white(t.name || t.id)}`);
 		console.log(`     ${chalk$11.gray("Schedule:")} ${t.schedule}`);
 		console.log(`     ${chalk$11.gray("Prompt:")} ${t.prompt.slice(0, 60)}${t.prompt.length > 60 ? "..." : ""}`);
+		if (t.skillId) console.log(`     ${chalk$11.gray("Skill:")} ${t.skillId}`);
 		if (t.lastRunAt) console.log(`     ${chalk$11.gray("Last run:")} ${t.lastRunAt}`);
 		console.log();
 	}
 	process.exit(0);
 });
-cronCmd.command("add").arguments("<schedule> <prompt>").option("-n, --name <name>", "Task name").action(async (schedule, prompt, opts) => {
+cronCmd.command("add").arguments("<schedule> <prompt>").option("-n, --name <name>", "Task name").option("-s, --skill <skillId>", "Skill ID to route task (e.g. morning-briefing)").action(async (schedule, prompt, opts) => {
 	const chalk$11 = require("chalk");
-	const { loadCronTasks, addCronTask, saveCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-OQbgmenS.js"));
+	const { loadCronTasks, addCronTask, saveCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-f_ieXSG2.js"));
 	await loadCronTasks();
-	addCronTask(schedule, prompt, opts.name);
+	addCronTask(schedule, prompt, opts.name, opts.skill);
 	await saveCronTasks();
 	console.log(chalk$11.green(`\n  ✔  Cron task added: ${schedule} → "${prompt.slice(0, 40)}..."\n`));
 	console.log(chalk$11.gray("  Restart gateway to apply.\n"));
@@ -3847,7 +4141,7 @@ cronCmd.command("add").arguments("<schedule> <prompt>").option("-n, --name <name
 });
 cronCmd.command("remove <id>").action(async (id) => {
 	const chalk$11 = require("chalk");
-	const { loadCronTasks, removeCronTask, saveCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-OQbgmenS.js"));
+	const { loadCronTasks, removeCronTask, saveCronTasks } = await Promise.resolve().then(() => require("./cron-tasks-f_ieXSG2.js"));
 	await loadCronTasks();
 	if (removeCronTask(id)) {
 		await saveCronTasks();
@@ -3907,20 +4201,20 @@ program.command("nodes").description("List connected mobile nodes (iOS/Android C
 });
 const whCmd = program.command("webhooks").description("Webhook endpoint management");
 whCmd.command("list").action(async () => {
-	const { WebhookManager } = await Promise.resolve().then(() => require("./manager--wG9JdFW.js"));
+	const { WebhookManager } = await Promise.resolve().then(() => require("./manager-R0TlRMZy.js"));
 	const m = new WebhookManager();
 	await m.load();
 	m.showList();
 	process.exit(0);
 });
 whCmd.command("remove <id>").action(async (id) => {
-	const { WebhookManager } = await Promise.resolve().then(() => require("./manager--wG9JdFW.js"));
+	const { WebhookManager } = await Promise.resolve().then(() => require("./manager-R0TlRMZy.js"));
 	const m = new WebhookManager();
 	await m.remove(id);
 	process.exit(0);
 });
 whCmd.command("toggle <id>").action(async (id) => {
-	const { WebhookManager } = await Promise.resolve().then(() => require("./manager--wG9JdFW.js"));
+	const { WebhookManager } = await Promise.resolve().then(() => require("./manager-R0TlRMZy.js"));
 	const m = new WebhookManager();
 	await m.toggle(id);
 	process.exit(0);
@@ -3929,7 +4223,7 @@ const logsCmd = program.command("logs").description("View gateway logs");
 logsCmd.option("-n, --lines <n>", "Number of lines to show", "50");
 logsCmd.option("-f, --follow", "Stream logs in real time");
 logsCmd.action(async (opts) => {
-	const { tailLog, streamLog } = await Promise.resolve().then(() => require("./logger-CG38Idq4.js"));
+	const { tailLog, streamLog } = await Promise.resolve().then(() => require("./logger-CmphFNmW.js"));
 	if (opts.follow) await streamLog();
 	else {
 		await tailLog(parseInt(opts.lines));
@@ -3937,7 +4231,7 @@ logsCmd.action(async (opts) => {
 	}
 });
 program.command("gateway:serve").description("Start the gateway server in the foreground (used by daemon)").action(async () => {
-	const { startGateway } = await Promise.resolve().then(() => require("./server-6TIyu0mb.js"));
+	const { startGateway } = await Promise.resolve().then(() => require("./server-BlqWBbS7.js"));
 	await startGateway();
 	process.on("SIGINT", () => process.exit(0));
 	process.on("SIGTERM", () => process.exit(0));
@@ -3994,9 +4288,9 @@ const authCmd = program.command("auth").description("OAuth and provider credenti
 authCmd.command("add <service_id>").description("Add API key for a service (any provider we do not ship). Stored in credentials/ and .env.").option("--key <api_key>", "API key (prompts if omitted)").option("--base-url <url>", "Base URL (optional, e.g. https://api.example.com)").option("--env-var <name>", "Env var name (default: <SERVICE_ID>_API_KEY)").action(async (serviceId, opts) => {
 	const chalk$11 = require("chalk");
 	const inquirer$2 = require("inquirer");
-	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-Bmm9e1SS.js"));
+	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-CR4WSDGl.js"));
 	const { getHyperClawDir: getHyperClawDir$1, getEnvFilePath } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
-	const { getApiKeyGuide, GENERIC_API_KEY_STEPS } = await Promise.resolve().then(() => require("./api-keys-guide--73Bq0Ey.js"));
+	const { getApiKeyGuide, GENERIC_API_KEY_STEPS } = await Promise.resolve().then(() => require("./api-keys-guide-CFJPrgsL.js"));
 	const fs$7 = (await import("fs-extra")).default;
 	const path$5 = await import("path");
 	const guide = getApiKeyGuide(serviceId);
@@ -4049,7 +4343,7 @@ authCmd.command("add <service_id>").description("Add API key for a service (any
 });
 authCmd.command("remove <service_id>").description("Remove API key for a service from credentials and .env").action(async (serviceId) => {
 	const chalk$11 = require("chalk");
-	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-Bmm9e1SS.js"));
+	const { CredentialsStore } = await Promise.resolve().then(() => require("./credentials-store-CR4WSDGl.js"));
 	const { getHyperClawDir: getHyperClawDir$1, getEnvFilePath } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
 	const fs$7 = (await import("fs-extra")).default;
 	const safeId = serviceId.replace(/[^a-zA-Z0-9_-]/g, "_").toLowerCase();
@@ -4069,7 +4363,7 @@ authCmd.command("oauth <provider>").description("Run full OAuth flow. Providers:
 	const chalk$11 = require("chalk");
 	const ora$4 = (await import("ora")).default;
 	try {
-		const { runOAuthFlow } = await Promise.resolve().then(() => require("./oauth-flow-BbLQTzZk.js"));
+		const { runOAuthFlow } = await Promise.resolve().then(() => require("./oauth-flow-C4QSMsbl.js"));
 		const spinner = ora$4("Starting OAuth flow...").start();
 		spinner.text = "Opening browser — complete the consent and return here.";
 		const tokens = await runOAuthFlow(provider, {
@@ -4077,7 +4371,7 @@ authCmd.command("oauth <provider>").description("Run full OAuth flow. Providers:
 			clientSecret: opts.clientSecret
 		});
 		spinner.stop();
-		const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-UZyG84s7.js"));
+		const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-Bnul5A_Z.js"));
 		const now = Math.floor(Date.now() / 1e3);
 		const expires_at = tokens.expires_in ? now + tokens.expires_in : void 0;
 		const tokenUrl = provider === "google" || provider === "google-gmail" ? "https://oauth2.googleapis.com/token" : provider === "microsoft" ? "https://login.microsoftonline.com/common/oauth2/v2.0/token" : void 0;
@@ -4112,7 +4406,7 @@ authCmd.command("setup-token <provider>").description("Save setup token (Anthrop
 		console.log(chalk$11.red("\n  ✖  No token provided.\n"));
 		process.exit(1);
 	}
-	const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-UZyG84s7.js"));
+	const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-Bnul5A_Z.js"));
 	await writeOAuthToken("anthropic-setup", {
 		access_token: token.trim(),
 		token_url: "https://api.anthropic.com"
@@ -4123,7 +4417,7 @@ authCmd.command("setup-token <provider>").description("Save setup token (Anthrop
 });
 authCmd.command("oauth-set <provider>").description("Save OAuth tokens manually (access_token, refresh_token, etc.) to ~/.hyperclaw/oauth-<provider>.json").option("--token <access_token>", "Access token").option("--refresh <refresh_token>", "Refresh token (optional)").option("--expires-in <seconds>", "Token lifetime in seconds (optional)").option("--token-url <url>", "Refresh endpoint URL (optional)").action(async (provider, opts) => {
 	const chalk$11 = require("chalk");
-	const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-UZyG84s7.js"));
+	const { writeOAuthToken } = await Promise.resolve().then(() => require("./oauth-provider-Bnul5A_Z.js"));
 	const access_token = opts.token || process.env.OAUTH_ACCESS_TOKEN;
 	if (!access_token) {
 		console.log(chalk$11.red("\n  ✖  Provide --token <access_token> or set OAUTH_ACCESS_TOKEN\n"));
@@ -4151,7 +4445,7 @@ workspaceCmd.command("init [dir]").description("Initialize workspace files (SOUL
 	try {
 		cfg = await fs$7.readJson(getConfigPath$1());
 	} catch {}
-	const { initWorkspaceFiles } = await Promise.resolve().then(() => require("./memory-BGgCBSx1.js"));
+	const { initWorkspaceFiles } = await Promise.resolve().then(() => require("./memory-CyonlkTy.js"));
 	await initWorkspaceFiles({
 		agentName: cfg.identity?.agentName || "Hyper",
 		personality: cfg.identity?.personality || "helpful and concise",
@@ -4190,13 +4484,13 @@ workspaceCmd.command("show [dir]").description("Show workspace files summary").a
 });
 const botCmd = program.command("bot").description("HyperClaw Bot — companion bot for remote gateway control");
 botCmd.command("status").action(async () => {
-	const { showBotStatus } = await Promise.resolve().then(() => require("./hyperclawbot-BqyZr2GM.js"));
+	const { showBotStatus } = await Promise.resolve().then(() => require("./hyperclawbot-v65eL2U0.js"));
 	await showBotStatus();
 	process.exit(0);
 });
 botCmd.command("setup").description("Configure HyperClaw Bot (Telegram token, allowed users)").action(async () => {
 	const inquirer$2 = require("inquirer");
-	const { saveBotConfig } = await Promise.resolve().then(() => require("./hyperclawbot-BqyZr2GM.js"));
+	const { saveBotConfig } = await Promise.resolve().then(() => require("./hyperclawbot-v65eL2U0.js"));
 	const chalk$11 = require("chalk");
 	console.log(chalk$11.bold.hex("#06b6d4")("\n  🦅 HYPERCLAW BOT SETUP\n"));
 	console.log(chalk$11.gray("  Create a bot at t.me/BotFather, then paste the token below.\n"));
@@ -4258,14 +4552,14 @@ botCmd.command("start").description("Start HyperClaw Bot (foreground or backgrou
 			cwd: process.cwd()
 		});
 		child.unref();
-		const { writeBotPid } = await Promise.resolve().then(() => require("./hyperclawbot-BqyZr2GM.js"));
+		const { writeBotPid } = await Promise.resolve().then(() => require("./hyperclawbot-v65eL2U0.js"));
 		await writeBotPid(child.pid);
 		console.log(require("chalk").green(`\n  ✔  HyperClaw Bot started in background (PID ${child.pid})`));
 		console.log(require("chalk").gray("  Stop with: hyperclaw bot stop\n"));
 		process.exit(0);
 		return;
 	}
-	const { loadBotConfig, TelegramHyperClawBot, DiscordHyperClawBot } = await Promise.resolve().then(() => require("./hyperclawbot-BqyZr2GM.js"));
+	const { loadBotConfig, TelegramHyperClawBot, DiscordHyperClawBot } = await Promise.resolve().then(() => require("./hyperclawbot-v65eL2U0.js"));
 	const cfg = await loadBotConfig();
 	if (!cfg) {
 		console.log(require("chalk").red("\n  ✖  HyperClaw Bot not configured. Run: hyperclaw bot setup\n"));
@@ -4292,41 +4586,73 @@ botCmd.command("start").description("Start HyperClaw Bot (foreground or backgrou
 });
 botCmd.command("stop").description("Stop HyperClaw Bot (when running in background)").action(async () => {
 	const chalk$11 = require("chalk");
-	const { stopBotProcess } = await Promise.resolve().then(() => require("./hyperclawbot-BqyZr2GM.js"));
+	const { stopBotProcess } = await Promise.resolve().then(() => require("./hyperclawbot-v65eL2U0.js"));
 	const stopped = await stopBotProcess();
 	if (stopped) console.log(chalk$11.green("\n  ✔  HyperClaw Bot stopped\n"));
 	else console.log(chalk$11.gray("\n  Bot not running in background (no PID file). Use Ctrl+C to stop foreground bot.\n"));
 	process.exit(stopped ? 0 : 1);
 });
-memCmd.command("search <query>").description("Search MEMORY.md").action(async (query) => {
-	const { searchMemory } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+memCmd.command("search-vector <query>").description("Semantic search over vector memory (requires memory-lancedb + OPENAI_API_KEY)").option("-n, --limit <n>", "Max results", "10").action(async (query, opts) => {
+	try {
+		const pkg = "@hyperclaw/memory-lancedb";
+		const mod = await (async () => {
+			try {
+				return await import(pkg);
+			} catch {
+				return null;
+			}
+		})();
+		if (!mod?.VectorMemoryService) throw new Error("not available");
+		const { VectorMemoryService } = mod;
+		const { getHyperClawDir: getHyperClawDir$1 } = await Promise.resolve().then(() => require("./paths-D-QecARF.js"));
+		const path$5 = await import("path");
+		const cfg = await new require_manager.ConfigManager().load();
+		const svc = new VectorMemoryService({
+			dbPath: path$5.join(getHyperClawDir$1(), "memory-lancedb"),
+			apiKey: cfg?.provider?.apiKey
+		});
+		await svc.init();
+		const results = await svc.search(query, parseInt(opts.limit));
+		if (results.length === 0) console.log(chalk.default.gray("\n  No results. Add facts with: hyperclaw memory add-fact \"...\"\n"));
+		else {
+			console.log(chalk.default.bold.hex("#06b6d4")("\n  Vector memory search:\n"));
+			for (const r of results) console.log(chalk.default.gray(`  • ${r.text}`));
+			console.log();
+		}
+	} catch (e) {
+		console.log(chalk.default.yellow("\n  Vector memory not available. Install: npm install @hyperclaw/memory-lancedb vectordb openai\n"));
+	}
+	process.exit(0);
+});
+memCmd.command("search <query>").description("Search MEMORY.md (text search)").action(async (query) => {
+	const { searchMemory } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	await searchMemory(query);
 	process.exit(0);
 });
 memCmd.command("auto-show").description("Show auto-extracted memories from MEMORY.md").action(async () => {
-	const { showMemory } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+	const { showMemory } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	await showMemory();
 	process.exit(0);
 });
 memCmd.command("clear").description("Clear all auto-extracted memories").action(async () => {
-	const { clearMemory } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+	const { clearMemory } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	await clearMemory();
 	process.exit(0);
 });
 memCmd.command("save <text>").description("Manually save a fact to MEMORY.md").action(async (text) => {
-	const { saveMemoryDirect } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+	const { saveMemoryDirect } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	await saveMemoryDirect(text);
 	console.log(chalk.default.hex("#06b6d4")(`  ✅ Saved: ${text}\n`));
 	process.exit(0);
 });
 const pcCmd = program.command("pc").description("PC access — give the AI access to your computer");
 pcCmd.command("status").description("Show PC access status and config").action(async () => {
-	const { showPCAccessStatus } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+	const { showPCAccessStatus } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	await showPCAccessStatus();
 	process.exit(0);
 });
 pcCmd.command("enable").description("Enable PC access for the AI").option("--level <level>", "Access level: read-only | sandboxed | full", "full").option("--paths <paths>", "Comma-separated allowed paths (sandboxed mode)").action(async (opts) => {
-	const { savePCAccessConfig } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+	const { savePCAccessConfig } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	const level = opts.level;
 	const allowed = [
 		"read-only",
@@ -4353,7 +4679,7 @@ pcCmd.command("enable").description("Enable PC access for the AI").option("--lev
 	process.exit(0);
 });
 pcCmd.command("disable").description("Disable PC access").action(async () => {
-	const { savePCAccessConfig } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+	const { savePCAccessConfig } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	await savePCAccessConfig({ enabled: false });
 	console.log(chalk.default.hex("#06b6d4")("\n  ✅ PC access disabled\n"));
 	process.exit(0);
@@ -4378,7 +4704,7 @@ pcCmd.command("log").description("Show PC access audit log").option("-n, --lines
 	process.exit(0);
 });
 pcCmd.command("run <command>").description("Run a shell command via PC access (must be enabled)").action(async (command) => {
-	const { loadPCAccessConfig, getPCAccessTools } = await Promise.resolve().then(() => require("./src-H1I7JC2E.js"));
+	const { loadPCAccessConfig, getPCAccessTools } = await Promise.resolve().then(() => require("./src-CyCLoqIP.js"));
 	const cfg = await loadPCAccessConfig();
 	if (!cfg.enabled) {
 		console.log(chalk.default.red("\n  ✖  PC access disabled. Run: hyperclaw pc enable\n"));
@@ -4419,7 +4745,7 @@ async function runUpdateCheck() {
 	} catch {}
 }
 if (process.argv.length === 2) (async () => {
-	const { ConfigManager: ConfigManager$1 } = await Promise.resolve().then(() => require("./manager-BNc21xgG.js"));
+	const { ConfigManager: ConfigManager$1 } = await Promise.resolve().then(() => require("./manager-Bq5LApdR.js"));
 	const cfg = await new ConfigManager$1().load().catch(() => null);
 	if (cfg?.provider?.apiKey || cfg?.provider?.providerId) {
 		await new require_banner.Banner().showNeonBanner(false);
@@ -4437,7 +4763,7 @@ if (process.argv.length === 2) (async () => {
 		console.log(`  ✓ ${t.c("hyperclaw --help")}                     — 📖 all commands\n`);
 	} else {
 		await new require_banner.Banner().showNeonBanner(false);
-		const { HyperClawWizard: HyperClawWizard$1 } = await Promise.resolve().then(() => require("./onboard-ChnsqU5z.js"));
+		const { HyperClawWizard: HyperClawWizard$1 } = await Promise.resolve().then(() => require("./onboard-DPmufMqX.js"));
 		await new HyperClawWizard$1().run({ wizard: true });
 	}
 	await runUpdateCheck();