lightclawbot 1.1.2-beta.0 → 1.1.2

package/dist/public/data/scripts/manifest.json

@@ -1,11 +1,11 @@
 {
-  "generatedAt": "2026-04-09T11:45:37.286Z",
+  "generatedAt": "2026-04-10T11:27:01.831Z",
   "cdnBase": "https://cloudcache.tencent-cloud.com/qcloud/tea/app/data/scripts",
   "files": {
-    "upgrade.sh": {
-      "hashed": "upgrade.156d7999.sh",
-      "hash": "156d7999",
-      "size": 13296
+    "preflight.sh": {
+      "hashed": "preflight.9af62b39.sh",
+      "hash": "9af62b39",
+      "size": 7262
     }
   }
 }

package/dist/public/data/scripts/preflight.9af62b39.sh

@@ -0,0 +1,191 @@
+#!/bin/bash
+
+# ========== lightclawbot 插件前置检查脚本 ==========
+# 用途：快速判断 lightclawbot 插件是否可用
+# 特点：
+#   1. 减少文件 I/O 次数（一次读取配置文件，复用解析结果）
+#   2. 与 OpenClaw 源码逻辑保持一致（plugins.enabled/deny/allow/entries）
+#   3. 支持传参指定插件 ID
+#
+# 输出：最后一行固定为 RESULT:{...} JSON，供前端解析
+#   - 可用：       RESULT:{"status":"ok","version":"x.y.z"}
+#   - 缺 openclaw：RESULT:{"status":"need_openclaw","reason":"...","desc":"..."}
+#   - 需要安装/配置：RESULT:{"status":"need_install","reason":"...","desc":"..."}
+#   - reason: 固定错误码（前端用于判断分支）
+#   - desc:   检测命令的实际输出（可选，用于排查问题）
+#
+# 使用方式：
+#   本地执行：  bash preflight.sh [plugin_id]
+#   CDN 执行：  bash <(curl -fsSL https://your-cdn.com/preflight.sh) [plugin_id]
+#   默认检查：  lightclawbot
+
+# ---------- 配置 ----------
+id="${1:-lightclawbot}"           # 支持传参指定插件 ID
+cfg="$HOME/.openclaw/openclaw.json"
+plugin_dir="$HOME/.openclaw/extensions/${id}"
+
+# ---------- 加载 nvm 环境 ----------
+# bash xxx.sh 启动的是非交互式 shell，不会自动 source ~/.bashrc，
+# 如果用户通过 nvm 安装 node，脚本中的 node / openclaw 命令都找不到。
+# 提前加载 nvm，让后续所有步骤都能使用 nvm 管理的 node。
+export NVM_DIR="$HOME/.nvm"
+[ -s "$NVM_DIR/nvm.sh" ] && \. "$NVM_DIR/nvm.sh"
+
+# ---------- 工具函数 ----------
+result_exit() {
+  local status="$1"
+  local reason="$2"
+  local desc="${3:-}"
+  local exit_code="${4:-1}"
+  # 转义 desc 中的特殊字符，保证输出合法 JSON
+  desc="${desc//\\/\\\\}"
+  desc="${desc//\"/\\\"}"
+  desc="${desc//$'\n'/\\n}"
+  desc="${desc//$'\r'/}"
+  if [ -n "$desc" ]; then
+    echo "RESULT:{\"status\":\"${status}\",\"reason\":\"${reason}\",\"desc\":\"${desc}\"}"
+  else
+    echo "RESULT:{\"status\":\"${status}\",\"reason\":\"${reason}\"}"
+  fi
+  exit "$exit_code"
+}
+
+result_ok() {
+  echo "RESULT:{\"status\":\"ok\",\"version\":\"${1}\"}"
+  exit 0
+}
+
+# ---------- 1. 检查配置文件是否存在 ----------
+
+if [ ! -f "$cfg" ]; then
+  result_exit "error" "config_not_found" "$(ls "$cfg" 2>&1)"
+fi
+
+# ---------- 2. 验证配置文件 JSON 格式 ----------
+# openclaw 通过即 node 可用，用 node 做一次轻量校验
+
+json_check_output=$(node -e "JSON.parse(require('fs').readFileSync(process.argv[1],'utf8'))" "$cfg" 2>&1)
+if [ $? -ne 0 ]; then
+  result_exit "error" "config_json_invalid" "$json_check_output"
+fi
+
+# ---------- 3. 检查 openclaw 是否可用 ----------
+
+if ! command -v openclaw &>/dev/null; then
+  oc_which_output=$(which openclaw 2>&1) || true
+  result_exit "error" "openclaw_not_available" "${oc_which_output:-openclaw not found in PATH=${PATH}}"
+fi
+
+# ---------- 3a. 检查 openclaw 版本是否满足最低要求 ----------
+
+min_version="2026.2.3"
+# 兼容多种输出格式：
+#   "OpenClaw 2026.3.24 (cff6dc9)"  →  2026.3.24
+#   "2026.2.3"                       →  2026.2.3
+oc_version_output=$(openclaw -v 2>&1)
+current_version=$(echo "$oc_version_output" | head -1 | sed 's/[()]//g' | grep -oE '[0-9]{4}\.[0-9]+\.[0-9]+' | head -1)
+
+if [ -z "$current_version" ]; then
+  result_exit "error" "openclaw_version_unknown" "$oc_version_output"
+fi
+
+# 比较版本号：将 a.b.c 转为数值后逐段比较
+version_lt() {
+  local IFS='.'
+  local i a=($1) b=($2)
+  for ((i = 0; i < 3; i++)); do
+    if (( ${a[i]:-0} < ${b[i]:-0} )); then return 0; fi
+    if (( ${a[i]:-0} > ${b[i]:-0} )); then return 1; fi
+  done
+  return 1  # 相等时不算小于
+}
+
+if version_lt "$current_version" "$min_version"; then
+  result_exit "error" "openclaw_version_too_old" "current: ${current_version}, required: >=${min_version}"
+fi
+
+# ---------- 3b. 检查 Gateway 是否可用 ----------
+
+gateway_output=$(openclaw gateway health --json 2>&1)
+if [ $? -ne 0 ]; then
+  result_exit "need_install" "gateway_not_healthy" "$gateway_output"
+fi
+
+# ---------- 4. 检查插件目录是否已安装 ----------
+
+if [ ! -d "$plugin_dir" ] || [ ! -f "$plugin_dir/package.json" ]; then
+  result_exit "need_install" "plugin_not_installed" "$(ls -la "$plugin_dir/package.json" 2>&1)"
+fi
+
+# ---------- 5. 单次 node 调用完成所有配置项检查 ----------
+# 一次启动 V8，顺序执行全部校验
+# 通过环境变量安全传参，避免 shell 注入风险
+# 输出格式：RESULT:{...} 与 bash 工具函数保持一致
+
+PREFLIGHT_CFG="$cfg" PREFLIGHT_ID="$id" PREFLIGHT_PLUGIN_DIR="$plugin_dir" \
+node -e '
+  const fs = require("fs");
+  const cfgPath   = process.env.PREFLIGHT_CFG;
+  const pluginId  = process.env.PREFLIGHT_ID;
+  const pluginDir = process.env.PREFLIGHT_PLUGIN_DIR;
+
+  function fail(status, reason, desc) {
+    const obj = { status, reason };
+    if (desc !== undefined) obj.desc = String(desc);
+    console.log("RESULT:" + JSON.stringify(obj));
+    process.exit(1);
+  }
+
+  const cfg = JSON.parse(fs.readFileSync(cfgPath, "utf8"));
+
+  // 5a. 全局插件系统检查（plugins.enabled 默认 true，仅显式 false 禁用）
+  if (cfg.plugins?.enabled === false) {
+    fail("need_install", "plugins_globally_disabled", "plugins.enabled = " + JSON.stringify(cfg.plugins?.enabled));
+  }
+
+  // 5b. deny 黑名单（优先级高于 allow，与 OpenClaw 源码一致）
+  if (Array.isArray(cfg.plugins?.deny) && cfg.plugins.deny.includes(pluginId)) {
+    fail("need_install", "plugin_in_denylist", "plugins.deny = " + JSON.stringify(cfg.plugins.deny));
+  }
+
+  // 5c. plugins.entries 启用状态
+  if (cfg.plugins?.entries?.[pluginId]?.enabled !== true) {
+    fail("need_install", "plugin_not_enabled", "plugins.entries." + pluginId + ".enabled = " + JSON.stringify(cfg.plugins?.entries?.[pluginId]?.enabled));
+  }
+
+  // 5d. allow 白名单（非空时必须在列表中）
+  const allow = cfg.plugins?.allow;
+  if (Array.isArray(allow) && allow.length > 0 && !allow.includes(pluginId)) {
+    fail("need_install", "plugin_not_in_allowlist", "plugins.allow = " + JSON.stringify(allow));
+  }
+
+  // 5e. plugins.installs 安装记录（可选，仅警告，默认不阻塞）
+  // 如需严格检查，取消下面的注释：
+  // if (!cfg.plugins?.installs?.[pluginId]) {
+  //   fail("need_install", "plugin_install_record_missing", "plugins.installs." + pluginId + " = " + JSON.stringify(cfg.plugins?.installs?.[pluginId]));
+  // }
+
+  // 5f. channels 启用状态
+  if (cfg.channels?.[pluginId]?.enabled !== true) {
+    fail("need_install", "channel_not_enabled", "channels." + pluginId + ".enabled = " + JSON.stringify(cfg.channels?.[pluginId]?.enabled));
+  }
+
+  // 5g. channels apiKeys 配置
+  const apiKeys = cfg.channels?.[pluginId]?.apiKeys;
+  if (!Array.isArray(apiKeys) || apiKeys.length === 0) {
+    fail("need_install", "apikeys_empty", "channels." + pluginId + ".apiKeys = " + JSON.stringify(apiKeys));
+  }
+
+  // 5h. 读取插件版本
+  let version = "unknown";
+  try {
+    const pkg = JSON.parse(fs.readFileSync(pluginDir + "/package.json", "utf8"));
+    version = pkg.version || "unknown";
+  } catch (e) {}
+
+  // 全部通过
+  console.log("RESULT:" + JSON.stringify({ status: "ok", version }));
+'
+
+# 将 node 的退出码传递给 bash
+exit $?

package/dist/public/data/scripts/preflight.sh

@@ -0,0 +1,191 @@
+#!/bin/bash
+
+# ========== lightclawbot 插件前置检查脚本 ==========
+# 用途：快速判断 lightclawbot 插件是否可用
+# 特点：
+#   1. 减少文件 I/O 次数（一次读取配置文件，复用解析结果）
+#   2. 与 OpenClaw 源码逻辑保持一致（plugins.enabled/deny/allow/entries）
+#   3. 支持传参指定插件 ID
+#
+# 输出：最后一行固定为 RESULT:{...} JSON，供前端解析
+#   - 可用：       RESULT:{"status":"ok","version":"x.y.z"}
+#   - 缺 openclaw：RESULT:{"status":"need_openclaw","reason":"...","desc":"..."}
+#   - 需要安装/配置：RESULT:{"status":"need_install","reason":"...","desc":"..."}
+#   - reason: 固定错误码（前端用于判断分支）
+#   - desc:   检测命令的实际输出（可选，用于排查问题）
+#
+# 使用方式：
+#   本地执行：  bash preflight.sh [plugin_id]
+#   CDN 执行：  bash <(curl -fsSL https://your-cdn.com/preflight.sh) [plugin_id]
+#   默认检查：  lightclawbot
+
+# ---------- 配置 ----------
+id="${1:-lightclawbot}"           # 支持传参指定插件 ID
+cfg="$HOME/.openclaw/openclaw.json"
+plugin_dir="$HOME/.openclaw/extensions/${id}"
+
+# ---------- 加载 nvm 环境 ----------
+# bash xxx.sh 启动的是非交互式 shell，不会自动 source ~/.bashrc，
+# 如果用户通过 nvm 安装 node，脚本中的 node / openclaw 命令都找不到。
+# 提前加载 nvm，让后续所有步骤都能使用 nvm 管理的 node。
+export NVM_DIR="$HOME/.nvm"
+[ -s "$NVM_DIR/nvm.sh" ] && \. "$NVM_DIR/nvm.sh"
+
+# ---------- 工具函数 ----------
+result_exit() {
+  local status="$1"
+  local reason="$2"
+  local desc="${3:-}"
+  local exit_code="${4:-1}"
+  # 转义 desc 中的特殊字符，保证输出合法 JSON
+  desc="${desc//\\/\\\\}"
+  desc="${desc//\"/\\\"}"
+  desc="${desc//$'\n'/\\n}"
+  desc="${desc//$'\r'/}"
+  if [ -n "$desc" ]; then
+    echo "RESULT:{\"status\":\"${status}\",\"reason\":\"${reason}\",\"desc\":\"${desc}\"}"
+  else
+    echo "RESULT:{\"status\":\"${status}\",\"reason\":\"${reason}\"}"
+  fi
+  exit "$exit_code"
+}
+
+result_ok() {
+  echo "RESULT:{\"status\":\"ok\",\"version\":\"${1}\"}"
+  exit 0
+}
+
+# ---------- 1. 检查配置文件是否存在 ----------
+
+if [ ! -f "$cfg" ]; then
+  result_exit "error" "config_not_found" "$(ls "$cfg" 2>&1)"
+fi
+
+# ---------- 2. 验证配置文件 JSON 格式 ----------
+# openclaw 通过即 node 可用，用 node 做一次轻量校验
+
+json_check_output=$(node -e "JSON.parse(require('fs').readFileSync(process.argv[1],'utf8'))" "$cfg" 2>&1)
+if [ $? -ne 0 ]; then
+  result_exit "error" "config_json_invalid" "$json_check_output"
+fi
+
+# ---------- 3. 检查 openclaw 是否可用 ----------
+
+if ! command -v openclaw &>/dev/null; then
+  oc_which_output=$(which openclaw 2>&1) || true
+  result_exit "error" "openclaw_not_available" "${oc_which_output:-openclaw not found in PATH=${PATH}}"
+fi
+
+# ---------- 3a. 检查 openclaw 版本是否满足最低要求 ----------
+
+min_version="2026.2.3"
+# 兼容多种输出格式：
+#   "OpenClaw 2026.3.24 (cff6dc9)"  →  2026.3.24
+#   "2026.2.3"                       →  2026.2.3
+oc_version_output=$(openclaw -v 2>&1)
+current_version=$(echo "$oc_version_output" | head -1 | sed 's/[()]//g' | grep -oE '[0-9]{4}\.[0-9]+\.[0-9]+' | head -1)
+
+if [ -z "$current_version" ]; then
+  result_exit "error" "openclaw_version_unknown" "$oc_version_output"
+fi
+
+# 比较版本号：将 a.b.c 转为数值后逐段比较
+version_lt() {
+  local IFS='.'
+  local i a=($1) b=($2)
+  for ((i = 0; i < 3; i++)); do
+    if (( ${a[i]:-0} < ${b[i]:-0} )); then return 0; fi
+    if (( ${a[i]:-0} > ${b[i]:-0} )); then return 1; fi
+  done
+  return 1  # 相等时不算小于
+}
+
+if version_lt "$current_version" "$min_version"; then
+  result_exit "error" "openclaw_version_too_old" "current: ${current_version}, required: >=${min_version}"
+fi
+
+# ---------- 3b. 检查 Gateway 是否可用 ----------
+
+gateway_output=$(openclaw gateway health --json 2>&1)
+if [ $? -ne 0 ]; then
+  result_exit "need_install" "gateway_not_healthy" "$gateway_output"
+fi
+
+# ---------- 4. 检查插件目录是否已安装 ----------
+
+if [ ! -d "$plugin_dir" ] || [ ! -f "$plugin_dir/package.json" ]; then
+  result_exit "need_install" "plugin_not_installed" "$(ls -la "$plugin_dir/package.json" 2>&1)"
+fi
+
+# ---------- 5. 单次 node 调用完成所有配置项检查 ----------
+# 一次启动 V8，顺序执行全部校验
+# 通过环境变量安全传参，避免 shell 注入风险
+# 输出格式：RESULT:{...} 与 bash 工具函数保持一致
+
+PREFLIGHT_CFG="$cfg" PREFLIGHT_ID="$id" PREFLIGHT_PLUGIN_DIR="$plugin_dir" \
+node -e '
+  const fs = require("fs");
+  const cfgPath   = process.env.PREFLIGHT_CFG;
+  const pluginId  = process.env.PREFLIGHT_ID;
+  const pluginDir = process.env.PREFLIGHT_PLUGIN_DIR;
+
+  function fail(status, reason, desc) {
+    const obj = { status, reason };
+    if (desc !== undefined) obj.desc = String(desc);
+    console.log("RESULT:" + JSON.stringify(obj));
+    process.exit(1);
+  }
+
+  const cfg = JSON.parse(fs.readFileSync(cfgPath, "utf8"));
+
+  // 5a. 全局插件系统检查（plugins.enabled 默认 true，仅显式 false 禁用）
+  if (cfg.plugins?.enabled === false) {
+    fail("need_install", "plugins_globally_disabled", "plugins.enabled = " + JSON.stringify(cfg.plugins?.enabled));
+  }
+
+  // 5b. deny 黑名单（优先级高于 allow，与 OpenClaw 源码一致）
+  if (Array.isArray(cfg.plugins?.deny) && cfg.plugins.deny.includes(pluginId)) {
+    fail("need_install", "plugin_in_denylist", "plugins.deny = " + JSON.stringify(cfg.plugins.deny));
+  }
+
+  // 5c. plugins.entries 启用状态
+  if (cfg.plugins?.entries?.[pluginId]?.enabled !== true) {
+    fail("need_install", "plugin_not_enabled", "plugins.entries." + pluginId + ".enabled = " + JSON.stringify(cfg.plugins?.entries?.[pluginId]?.enabled));
+  }
+
+  // 5d. allow 白名单（非空时必须在列表中）
+  const allow = cfg.plugins?.allow;
+  if (Array.isArray(allow) && allow.length > 0 && !allow.includes(pluginId)) {
+    fail("need_install", "plugin_not_in_allowlist", "plugins.allow = " + JSON.stringify(allow));
+  }
+
+  // 5e. plugins.installs 安装记录（可选，仅警告，默认不阻塞）
+  // 如需严格检查，取消下面的注释：
+  // if (!cfg.plugins?.installs?.[pluginId]) {
+  //   fail("need_install", "plugin_install_record_missing", "plugins.installs." + pluginId + " = " + JSON.stringify(cfg.plugins?.installs?.[pluginId]));
+  // }
+
+  // 5f. channels 启用状态
+  if (cfg.channels?.[pluginId]?.enabled !== true) {
+    fail("need_install", "channel_not_enabled", "channels." + pluginId + ".enabled = " + JSON.stringify(cfg.channels?.[pluginId]?.enabled));
+  }
+
+  // 5g. channels apiKeys 配置
+  const apiKeys = cfg.channels?.[pluginId]?.apiKeys;
+  if (!Array.isArray(apiKeys) || apiKeys.length === 0) {
+    fail("need_install", "apikeys_empty", "channels." + pluginId + ".apiKeys = " + JSON.stringify(apiKeys));
+  }
+
+  // 5h. 读取插件版本
+  let version = "unknown";
+  try {
+    const pkg = JSON.parse(fs.readFileSync(pluginDir + "/package.json", "utf8"));
+    version = pkg.version || "unknown";
+  } catch (e) {}
+
+  // 全部通过
+  console.log("RESULT:" + JSON.stringify({ status: "ok", version }));
+'
+
+# 将 node 的退出码传递给 bash
+exit $?

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "lightclawbot",
-  "version": "1.1.2-beta.0",
+  "version": "1.1.2",
   "description": "LightClawBot channel plugin with message support, cron jobs, and proactive messaging",
   "type": "module",
   "files": [

package/dist/public/data/scripts/upgrade.156d7999.sh

@@ -1,384 +0,0 @@
-#!/bin/bash
-set -e
-
-# ========== lightclawbot 插件快速安装/升级脚本 ==========
-# 用途：跳过 openclaw plugins install 的慢路径，直接安装/升级 lightclawbot 插件
-# 前提：openclaw 已安装且可用，pnpm 或 npm 已安装（不依赖 jq，JSON 操作统一用 node）
-# 支持：首次安装 / 重装 / 升级，自动保留已有的 channels 配置
-#
-# 输出规范：stdout 输出多行，供前端逐行解析
-#   - 步骤进度：STEP:{"step":"step_id","message":"描述"}: 
-#     7 处 step_log 调用	分别在环境检查、版本检查、下载、解压、配置更新、设备审批、重启网关前输出
-#     STEP:{"step":"env_check","message":"checking environment"}
-#     STEP:{"step":"version_check","message":"checking version info"}
-#     STEP:{"step":"download","message":"downloading plugin"}
-#     STEP:{"step":"extract","message":"extracting and installing"}
-#     STEP:{"step":"config_update","message":"updating configuration"}
-#     STEP:{"step":"devices_approve","message":"approving devices"}
-#     STEP:{"step":"gateway_restart","message":"restarting gateway"}
-#   - 最终成功：RESULT:{"status":"ok","version":"x.y.z"}
-#   - 最终失败：RESULT:{"status":"error","reason":"..."}
-#
-# 使用方式：
-#   本地执行：  bash scripts/upgrade.sh
-#   CDN 执行：  bash <(curl -fsSL https://your-cdn.com/upgrade.sh)
-#   传入参数：  APIKEY="sk-xxx" bash <(curl -fsSL https://your-cdn.com/upgrade.sh)
-#   跳过重启：  RESTART_GATEWAY=false APIKEY="sk-xxx" bash <(curl -fsSL https://your-cdn.com/upgrade.sh)
-
-# ========== 工具函数 ==========
-
-# 输出步骤进度，供前端逐行解析
-step_log() {
-  local step="$1"
-  local message="$2"
-  echo "STEP:{\"step\":\"${step}\",\"message\":\"${message}\"}"
-}
-
-result_exit() {
-  local reason="$1"
-  echo "RESULT:{\"status\":\"error\",\"reason\":\"${reason}\"}"
-  exit 1
-}
-
-result_ok() {
-  echo "RESULT:{\"status\":\"ok\",\"version\":\"${1}\"}"
-  exit 0
-}
-
-# semver 比较：left >= right 返回 0，否则返回 1，解析失败返回 2
-version_gte() {
-  local left="$1"
-  local right="$2"
-  VERSION_LEFT="$left" VERSION_RIGHT="$right" node - <<'NODE'
-function parseSemver(value) {
-  const match = String(value || "").trim().match(/^(\d+)\.(\d+)\.(\d+)(?:[-+].*)?$/);
-  if (!match) return null;
-  return [Number(match[1]), Number(match[2]), Number(match[3])];
-}
-const left = parseSemver(process.env.VERSION_LEFT);
-const right = parseSemver(process.env.VERSION_RIGHT);
-if (!left || !right) process.exit(2);
-for (let i = 0; i < 3; i++) {
-  if (left[i] > right[i]) process.exit(0);
-  if (left[i] < right[i]) process.exit(1);
-}
-process.exit(0);
-NODE
-}
-
-# 获取本机 openclaw 版本号（纯数字 x.y.z 格式）
-get_openclaw_version() {
-  if ! command -v openclaw &>/dev/null; then
-    echo ""
-    return
-  fi
-  local raw
-  raw=$(openclaw -v 2>/dev/null || true)
-  echo "$raw" | grep -oE '[0-9]+\.[0-9]+\.[0-9]+' | head -n1
-}
-
-# ========== 配置 ==========
-
-id="lightclawbot"
-spec="lightclawbot"
-cfg="$HOME/.openclaw/openclaw.json"
-plugin_dir="$HOME/.openclaw/extensions/${id}"
-
-# npm 源：使用腾讯镜像源（可通过 NPM_REGISTRY 环境变量覆盖）
-NPM_REGISTRY="${NPM_REGISTRY:-https://mirrors.tencent.com/npm/}"
-# fallback 源：首选失败时兜底（可通过 NPM_FALLBACK 环境变量覆盖）
-NPM_FALLBACK="${NPM_FALLBACK:-https://registry.npmjs.org}"
-
-# API Key：优先读取环境变量，为空则保留配置文件中已有的值
-# 用法：APIKEY="sk-xxx" bash <(curl -fsSL https://your-cdn.com/upgrade.sh)
-APIKEY="${APIKEY:-}"
-
-# 是否在安装/升级后重启 Gateway：默认 true，传入 false 可跳过重启
-# 用法：RESTART_GATEWAY=false bash <(curl -fsSL https://your-cdn.com/upgrade.sh)
-RESTART_GATEWAY="${RESTART_GATEWAY:-true}"
-
-# openclaw 新老版本分界线：>= 此版本使用最新插件，< 此版本锁定 LEGACY_PLUGIN_VERSION
-OPENCLAW_BREAKING_VERSION="2026.3.22"
-LEGACY_PLUGIN_VERSION="1.0.8"
-
-# openclaw = 此版本需要执行 devices approve
-OPENCLAW_DEVICES_APPROVE_VERSION="2026.3.28"
-
-# ========== 环境加载 ==========
-# bash xxx.sh 启动的是非交互式 shell，不会自动 source ~/.bashrc，
-# 如果用户通过 nvm 安装 node，脚本中的 node/pnpm/openclaw 都找不到。
-
-export NVM_DIR="$HOME/.nvm"
-[ -s "$NVM_DIR/nvm.sh" ] && \. "$NVM_DIR/nvm.sh"
-
-if [ -z "$PNPM_HOME" ] && [ -d "$HOME/.local/share/pnpm" ]; then
-  export PNPM_HOME="$HOME/.local/share/pnpm"
-  export PATH="$PNPM_HOME:$PATH"
-fi
-
-[ ! -t 1 ] && export CI=true
-
-# ========== 前置检查 ==========
-
-step_log "env_check" "checking environment"
-
-# 1) 探测包管理器：优先 pnpm，fallback npm，都没有则报错
-if command -v pnpm &>/dev/null; then
-  PKG_MGR="pnpm"
-elif command -v npm &>/dev/null; then
-  PKG_MGR="npm"
-else
-  result_exit "npm_not_found"
-fi
-
-# 2) 检查 openclaw 是否可用
-if ! openclaw -v &>/dev/null; then
-  result_exit "openclaw_not_available"
-fi
-
-# 3) 设置 npm/pnpm 源（确保后续 pack/install 都走镜像源）
-npm config set registry "$NPM_REGISTRY" 2>/dev/null || true
-[ "$PKG_MGR" = "pnpm" ] && pnpm config set registry "$NPM_REGISTRY" 2>/dev/null || true
-
-# 4) 检查 APIKEY
-if [ -z "$APIKEY" ]; then
-  result_exit "apikey_empty"
-fi
-
-# ========== 安装 / 升级 lightclawbot ==========
-
-step_log "version_check" "checking version info"
-
-# ---------- 检查是否已安装，获取本地版本 ----------
-local_version=""
-if [ -d "$plugin_dir" ] && [ -f "$plugin_dir/package.json" ]; then
-  local_version=$(node -e "try{console.log(JSON.parse(require('fs').readFileSync(process.argv[1],'utf8')).version||'')}catch(e){console.log('')}" "$plugin_dir/package.json" 2>/dev/null || true)
-fi
-
-# ---------- 获取 openclaw 版本，确定目标插件版本 ----------
-openclaw_version=$(get_openclaw_version)
-target_spec="$spec"
-
-if [ -n "$openclaw_version" ]; then
-  if version_gte "$openclaw_version" "$OPENCLAW_BREAKING_VERSION"; then
-    # openclaw >= 2026.3.22 → 安装最新版插件
-    target_spec="$spec"
-  else
-    # openclaw < 2026.3.22 → 锁定旧版插件
-    target_spec="${spec}@${LEGACY_PLUGIN_VERSION}"
-  fi
-fi
-
-# ---------- 查询远程目标版本 ----------
-remote_version=""
-
-if [ -n "$openclaw_version" ] && ! version_gte "$openclaw_version" "$OPENCLAW_BREAKING_VERSION"; then
-  # 旧版 openclaw：版本已锁定
-  remote_version="$LEGACY_PLUGIN_VERSION"
-else
-  remote_version=$(npm view "$spec" version 2>/dev/null || true)
-
-  if [ -z "$remote_version" ]; then
-    remote_version=$(npm view "$spec" version --registry "$NPM_FALLBACK" 2>/dev/null || true)
-  fi
-fi
-
-# ---------- 判断安装模式 ----------
-install_mode="install"
-if [ -n "$local_version" ]; then
-  if [ -n "$remote_version" ] && [ "$local_version" = "$remote_version" ]; then
-    install_mode="up-to-date"
-  else
-    install_mode="upgrade"
-  fi
-fi
-
-if [ "$install_mode" != "up-to-date" ]; then
-  # ---------- 清理旧版本 ----------
-  rm -rf "$plugin_dir"
-
-  step_log "download" "downloading plugin"
-
-  # ---------- npm pack 下载 tgz ----------
-  tmp_dir=$(mktemp -d /tmp/openclaw-plugin-XXXXXX)
-
-  tgz_file=$(cd "$tmp_dir" && npm pack "$target_spec" 2>/dev/null | tail -n1)
-  if [ -z "$tgz_file" ] || [ ! -f "$tmp_dir/$tgz_file" ]; then
-    tgz_file=$(cd "$tmp_dir" && npm pack "$target_spec" --registry "$NPM_FALLBACK" 2>/dev/null | tail -n1)
-  fi
-  if [ -z "$tgz_file" ] || [ ! -f "$tmp_dir/$tgz_file" ]; then
-    rm -rf "$tmp_dir"
-    result_exit "download_failed"
-  fi
-
-  step_log "extract" "extracting and installing"
-
-  # ---------- 解压到插件目录 ----------
-  mkdir -p "$plugin_dir"
-  tar -xzf "$tmp_dir/$tgz_file" -C "$plugin_dir" --strip-components=1
-  rm -rf "$tmp_dir"
-
-  # ---------- 安装生产依赖 ----------
-  # lightclawbot 声明了 bundledDependencies，npm pack 产出的 tgz 已包含所有依赖
-  has_unbundled_deps=$(node -e '
-    const pkg = JSON.parse(require("fs").readFileSync(process.argv[1], "utf8"));
-    const deps = Object.keys(pkg.dependencies || {});
-    const bundled = pkg.bundledDependencies || pkg.bundleDependencies || [];
-    console.log(deps.length > 0 && bundled.length < deps.length ? "true" : "false");
-  ' "$plugin_dir/package.json")
-
-  if [ "$has_unbundled_deps" = true ]; then
-    (cd "$plugin_dir" && CI=true $PKG_MGR install --prod) >/dev/null 2>&1
-  fi
-fi
-
-# ========== 更新配置文件 ==========
-
-step_log "config_update" "updating configuration"
-
-# 确保配置文件存在
-if [ ! -f "$cfg" ]; then
-  mkdir -p "$(dirname "$cfg")"
-  echo '{}' > "$cfg"
-fi
-
-# 校验配置文件是合法 JSON（用户可能手动编辑弄坏了格式）
-if ! node -e "JSON.parse(require('fs').readFileSync(process.argv[1],'utf8'))" "$cfg" 2>/dev/null; then
-  result_exit "config_json_invalid"
-fi
-
-# ---------- 单次 node 调用完成所有配置更新 ----------
-# 一次启动 V8，通过环境变量安全传参，
-# 顺序完成 plugins.entries / installs / deny / allow / channels 全部配置修改，
-# 减少文件 I/O 次数（只读一次 + 写一次）。
-
-version=$(UPGRADE_CFG="$cfg" UPGRADE_ID="$id" UPGRADE_SPEC="$spec" \
-UPGRADE_PLUGIN_DIR="$plugin_dir" UPGRADE_APIKEY="$APIKEY" \
-node -e '
-  const fs = require("fs");
-  const cfgPath   = process.env.UPGRADE_CFG;
-  const pluginId  = process.env.UPGRADE_ID;
-  const spec      = process.env.UPGRADE_SPEC;
-  const pluginDir = process.env.UPGRADE_PLUGIN_DIR;
-  const envApiKey = process.env.UPGRADE_APIKEY || "";
-
-  function fail(reason) {
-    process.exit(1);
-  }
-
-  // 读取配置
-  let cfg;
-  try {
-    cfg = JSON.parse(fs.readFileSync(cfgPath, "utf8"));
-  } catch (e) {
-    fail("config_read_failed");
-  }
-
-  // 读取插件版本
-  let version = "unknown";
-  try {
-    const pkg = JSON.parse(fs.readFileSync(pluginDir + "/package.json", "utf8"));
-    version = pkg.version || "unknown";
-  } catch (e) {}
-
-  // ---------- 1) 确保 plugins 基础结构存在 & 全局插件系统启用 ----------
-  if (!cfg.plugins) cfg.plugins = {};
-  // 确保全局插件系统生效（plugins.enabled 默认 true，仅显式 false 时需修复）
-  if (cfg.plugins.enabled === false) {
-    cfg.plugins.enabled = true;
-  }
-  if (!cfg.plugins.entries) cfg.plugins.entries = {};
-  if (!cfg.plugins.installs) cfg.plugins.installs = {};
-
-  // plugins.entries：启用插件
-  cfg.plugins.entries[pluginId] = { enabled: true };
-
-  // plugins.installs：安装记录
-  cfg.plugins.installs[pluginId] = {
-    source: "npm",
-    spec: spec,
-    installPath: pluginDir,
-    version: version,
-    installedAt: new Date().toISOString().replace(/\.\d{3}Z$/, ".000Z")
-  };
-
-  // ---------- 2) 黑名单修复 ----------
-  if (Array.isArray(cfg.plugins.deny)) {
-    const idx = cfg.plugins.deny.indexOf(pluginId);
-    if (idx !== -1) {
-      cfg.plugins.deny.splice(idx, 1);
-      if (cfg.plugins.deny.length === 0) {
-        delete cfg.plugins.deny;
-      }
-    }
-  }
-
-  // ---------- 3) 白名单添加 ----------
-  if (Array.isArray(cfg.plugins.allow)) {
-    if (!cfg.plugins.allow.includes(pluginId)) {
-      cfg.plugins.allow.push(pluginId);
-    }
-  }
-
-  // ---------- 4) channel 配置：智能合并 ----------
-  if (!cfg.channels) cfg.channels = {};
-  const ch = cfg.channels[pluginId] || {};
-
-  // 迁移旧的 apiKey -> apiKeys
-  let apiKeys = Array.isArray(ch.apiKeys) ? [...ch.apiKeys] : [];
-  if (ch.apiKey && typeof ch.apiKey === "string") {
-    if (!apiKeys.includes(ch.apiKey)) {
-      apiKeys.push(ch.apiKey);
-    }
-    delete ch.apiKey;
-  }
-
-  // 如果通过环境变量传入了 APIKEY，确保它在 apiKeys 数组中（去重）
-  if (envApiKey && !apiKeys.includes(envApiKey)) {
-    apiKeys.push(envApiKey);
-  }
-
-  ch.enabled = true;
-  ch.apiKeys = apiKeys;
-  cfg.channels[pluginId] = ch;
-
-  // ---------- 5) 写回配置文件 ----------
-  fs.writeFileSync(cfgPath, JSON.stringify(cfg, null, 2) + "\n", "utf8");
-
-  // 输出版本号到 stdout，供 shell 接收
-  process.stdout.write(version);
-') || result_exit "config_update_failed"
-
-# ========== 插件 >= 1.1.0 时需要重新安装依赖并注册 ==========
-
-# if version_gte "$version" "1.1.0"; then
-#   (cd "$plugin_dir" && pnpm install) >/dev/null 2>&1 || true
-#   openclaw gateway install --force >/dev/null 2>&1 || true
-
-#   # 小内存机器（<3GB）自动注入 NODE_OPTIONS 限制堆内存，避免 OOM
-#   GATEWAY_SERVICE="$HOME/.config/systemd/user/openclaw-gateway.service"
-#   TOTAL_MEM_KB=$(awk '/MemTotal/ {print $2}' /proc/meminfo 2>/dev/null || echo "0")
-#   if [ "$TOTAL_MEM_KB" -gt 0 ] && [ "$TOTAL_MEM_KB" -lt 3000000 ] \
-#      && [ -f "$GATEWAY_SERVICE" ] \
-#      && ! grep -q 'max-old-space-size' "$GATEWAY_SERVICE"; then
-#     sed -i '/\[Service\]/a Environment="NODE_OPTIONS=--max-old-space-size=1500"' "$GATEWAY_SERVICE"
-#     systemctl --user daemon-reload
-#   fi
-# fi
-
-# ========== 设备审批（openclaw == 2026.3.28）==========
-
-if [ -n "$openclaw_version" ] && [ "$openclaw_version" = "$OPENCLAW_DEVICES_APPROVE_VERSION" ]; then
-  step_log "devices_approve" "approving devices"
-  openclaw devices approve >/dev/null 2>&1 || true
-fi
-
-# ========== 重启 Gateway ==========
-
-if [ "$RESTART_GATEWAY" = "true" ]; then
-  step_log "gateway_restart" "restarting gateway"
-  openclaw gateway restart >/dev/null 2>&1 || true
-fi
-
-# stdout 最后一行 RESULT，供前端解析最终结果
-result_ok "$version"

package/dist/public/data/scripts/upgrade.sh

@@ -1,384 +0,0 @@
-#!/bin/bash
-set -e
-
-# ========== lightclawbot 插件快速安装/升级脚本 ==========
-# 用途：跳过 openclaw plugins install 的慢路径，直接安装/升级 lightclawbot 插件
-# 前提：openclaw 已安装且可用，pnpm 或 npm 已安装（不依赖 jq，JSON 操作统一用 node）
-# 支持：首次安装 / 重装 / 升级，自动保留已有的 channels 配置
-#
-# 输出规范：stdout 输出多行，供前端逐行解析
-#   - 步骤进度：STEP:{"step":"step_id","message":"描述"}: 
-#     7 处 step_log 调用	分别在环境检查、版本检查、下载、解压、配置更新、设备审批、重启网关前输出
-#     STEP:{"step":"env_check","message":"checking environment"}
-#     STEP:{"step":"version_check","message":"checking version info"}
-#     STEP:{"step":"download","message":"downloading plugin"}
-#     STEP:{"step":"extract","message":"extracting and installing"}
-#     STEP:{"step":"config_update","message":"updating configuration"}
-#     STEP:{"step":"devices_approve","message":"approving devices"}
-#     STEP:{"step":"gateway_restart","message":"restarting gateway"}
-#   - 最终成功：RESULT:{"status":"ok","version":"x.y.z"}
-#   - 最终失败：RESULT:{"status":"error","reason":"..."}
-#
-# 使用方式：
-#   本地执行：  bash scripts/upgrade.sh
-#   CDN 执行：  bash <(curl -fsSL https://your-cdn.com/upgrade.sh)
-#   传入参数：  APIKEY="sk-xxx" bash <(curl -fsSL https://your-cdn.com/upgrade.sh)
-#   跳过重启：  RESTART_GATEWAY=false APIKEY="sk-xxx" bash <(curl -fsSL https://your-cdn.com/upgrade.sh)
-
-# ========== 工具函数 ==========
-
-# 输出步骤进度，供前端逐行解析
-step_log() {
-  local step="$1"
-  local message="$2"
-  echo "STEP:{\"step\":\"${step}\",\"message\":\"${message}\"}"
-}
-
-result_exit() {
-  local reason="$1"
-  echo "RESULT:{\"status\":\"error\",\"reason\":\"${reason}\"}"
-  exit 1
-}
-
-result_ok() {
-  echo "RESULT:{\"status\":\"ok\",\"version\":\"${1}\"}"
-  exit 0
-}
-
-# semver 比较：left >= right 返回 0，否则返回 1，解析失败返回 2
-version_gte() {
-  local left="$1"
-  local right="$2"
-  VERSION_LEFT="$left" VERSION_RIGHT="$right" node - <<'NODE'
-function parseSemver(value) {
-  const match = String(value || "").trim().match(/^(\d+)\.(\d+)\.(\d+)(?:[-+].*)?$/);
-  if (!match) return null;
-  return [Number(match[1]), Number(match[2]), Number(match[3])];
-}
-const left = parseSemver(process.env.VERSION_LEFT);
-const right = parseSemver(process.env.VERSION_RIGHT);
-if (!left || !right) process.exit(2);
-for (let i = 0; i < 3; i++) {
-  if (left[i] > right[i]) process.exit(0);
-  if (left[i] < right[i]) process.exit(1);
-}
-process.exit(0);
-NODE
-}
-
-# 获取本机 openclaw 版本号（纯数字 x.y.z 格式）
-get_openclaw_version() {
-  if ! command -v openclaw &>/dev/null; then
-    echo ""
-    return
-  fi
-  local raw
-  raw=$(openclaw -v 2>/dev/null || true)
-  echo "$raw" | grep -oE '[0-9]+\.[0-9]+\.[0-9]+' | head -n1
-}
-
-# ========== 配置 ==========
-
-id="lightclawbot"
-spec="lightclawbot"
-cfg="$HOME/.openclaw/openclaw.json"
-plugin_dir="$HOME/.openclaw/extensions/${id}"
-
-# npm 源：使用腾讯镜像源（可通过 NPM_REGISTRY 环境变量覆盖）
-NPM_REGISTRY="${NPM_REGISTRY:-https://mirrors.tencent.com/npm/}"
-# fallback 源：首选失败时兜底（可通过 NPM_FALLBACK 环境变量覆盖）
-NPM_FALLBACK="${NPM_FALLBACK:-https://registry.npmjs.org}"
-
-# API Key：优先读取环境变量，为空则保留配置文件中已有的值
-# 用法：APIKEY="sk-xxx" bash <(curl -fsSL https://your-cdn.com/upgrade.sh)
-APIKEY="${APIKEY:-}"
-
-# 是否在安装/升级后重启 Gateway：默认 true，传入 false 可跳过重启
-# 用法：RESTART_GATEWAY=false bash <(curl -fsSL https://your-cdn.com/upgrade.sh)
-RESTART_GATEWAY="${RESTART_GATEWAY:-true}"
-
-# openclaw 新老版本分界线：>= 此版本使用最新插件，< 此版本锁定 LEGACY_PLUGIN_VERSION
-OPENCLAW_BREAKING_VERSION="2026.3.22"
-LEGACY_PLUGIN_VERSION="1.0.8"
-
-# openclaw = 此版本需要执行 devices approve
-OPENCLAW_DEVICES_APPROVE_VERSION="2026.3.28"
-
-# ========== 环境加载 ==========
-# bash xxx.sh 启动的是非交互式 shell，不会自动 source ~/.bashrc，
-# 如果用户通过 nvm 安装 node，脚本中的 node/pnpm/openclaw 都找不到。
-
-export NVM_DIR="$HOME/.nvm"
-[ -s "$NVM_DIR/nvm.sh" ] && \. "$NVM_DIR/nvm.sh"
-
-if [ -z "$PNPM_HOME" ] && [ -d "$HOME/.local/share/pnpm" ]; then
-  export PNPM_HOME="$HOME/.local/share/pnpm"
-  export PATH="$PNPM_HOME:$PATH"
-fi
-
-[ ! -t 1 ] && export CI=true
-
-# ========== 前置检查 ==========
-
-step_log "env_check" "checking environment"
-
-# 1) 探测包管理器：优先 pnpm，fallback npm，都没有则报错
-if command -v pnpm &>/dev/null; then
-  PKG_MGR="pnpm"
-elif command -v npm &>/dev/null; then
-  PKG_MGR="npm"
-else
-  result_exit "npm_not_found"
-fi
-
-# 2) 检查 openclaw 是否可用
-if ! openclaw -v &>/dev/null; then
-  result_exit "openclaw_not_available"
-fi
-
-# 3) 设置 npm/pnpm 源（确保后续 pack/install 都走镜像源）
-npm config set registry "$NPM_REGISTRY" 2>/dev/null || true
-[ "$PKG_MGR" = "pnpm" ] && pnpm config set registry "$NPM_REGISTRY" 2>/dev/null || true
-
-# 4) 检查 APIKEY
-if [ -z "$APIKEY" ]; then
-  result_exit "apikey_empty"
-fi
-
-# ========== 安装 / 升级 lightclawbot ==========
-
-step_log "version_check" "checking version info"
-
-# ---------- 检查是否已安装，获取本地版本 ----------
-local_version=""
-if [ -d "$plugin_dir" ] && [ -f "$plugin_dir/package.json" ]; then
-  local_version=$(node -e "try{console.log(JSON.parse(require('fs').readFileSync(process.argv[1],'utf8')).version||'')}catch(e){console.log('')}" "$plugin_dir/package.json" 2>/dev/null || true)
-fi
-
-# ---------- 获取 openclaw 版本，确定目标插件版本 ----------
-openclaw_version=$(get_openclaw_version)
-target_spec="$spec"
-
-if [ -n "$openclaw_version" ]; then
-  if version_gte "$openclaw_version" "$OPENCLAW_BREAKING_VERSION"; then
-    # openclaw >= 2026.3.22 → 安装最新版插件
-    target_spec="$spec"
-  else
-    # openclaw < 2026.3.22 → 锁定旧版插件
-    target_spec="${spec}@${LEGACY_PLUGIN_VERSION}"
-  fi
-fi
-
-# ---------- 查询远程目标版本 ----------
-remote_version=""
-
-if [ -n "$openclaw_version" ] && ! version_gte "$openclaw_version" "$OPENCLAW_BREAKING_VERSION"; then
-  # 旧版 openclaw：版本已锁定
-  remote_version="$LEGACY_PLUGIN_VERSION"
-else
-  remote_version=$(npm view "$spec" version 2>/dev/null || true)
-
-  if [ -z "$remote_version" ]; then
-    remote_version=$(npm view "$spec" version --registry "$NPM_FALLBACK" 2>/dev/null || true)
-  fi
-fi
-
-# ---------- 判断安装模式 ----------
-install_mode="install"
-if [ -n "$local_version" ]; then
-  if [ -n "$remote_version" ] && [ "$local_version" = "$remote_version" ]; then
-    install_mode="up-to-date"
-  else
-    install_mode="upgrade"
-  fi
-fi
-
-if [ "$install_mode" != "up-to-date" ]; then
-  # ---------- 清理旧版本 ----------
-  rm -rf "$plugin_dir"
-
-  step_log "download" "downloading plugin"
-
-  # ---------- npm pack 下载 tgz ----------
-  tmp_dir=$(mktemp -d /tmp/openclaw-plugin-XXXXXX)
-
-  tgz_file=$(cd "$tmp_dir" && npm pack "$target_spec" 2>/dev/null | tail -n1)
-  if [ -z "$tgz_file" ] || [ ! -f "$tmp_dir/$tgz_file" ]; then
-    tgz_file=$(cd "$tmp_dir" && npm pack "$target_spec" --registry "$NPM_FALLBACK" 2>/dev/null | tail -n1)
-  fi
-  if [ -z "$tgz_file" ] || [ ! -f "$tmp_dir/$tgz_file" ]; then
-    rm -rf "$tmp_dir"
-    result_exit "download_failed"
-  fi
-
-  step_log "extract" "extracting and installing"
-
-  # ---------- 解压到插件目录 ----------
-  mkdir -p "$plugin_dir"
-  tar -xzf "$tmp_dir/$tgz_file" -C "$plugin_dir" --strip-components=1
-  rm -rf "$tmp_dir"
-
-  # ---------- 安装生产依赖 ----------
-  # lightclawbot 声明了 bundledDependencies，npm pack 产出的 tgz 已包含所有依赖
-  has_unbundled_deps=$(node -e '
-    const pkg = JSON.parse(require("fs").readFileSync(process.argv[1], "utf8"));
-    const deps = Object.keys(pkg.dependencies || {});
-    const bundled = pkg.bundledDependencies || pkg.bundleDependencies || [];
-    console.log(deps.length > 0 && bundled.length < deps.length ? "true" : "false");
-  ' "$plugin_dir/package.json")
-
-  if [ "$has_unbundled_deps" = true ]; then
-    (cd "$plugin_dir" && CI=true $PKG_MGR install --prod) >/dev/null 2>&1
-  fi
-fi
-
-# ========== 更新配置文件 ==========
-
-step_log "config_update" "updating configuration"
-
-# 确保配置文件存在
-if [ ! -f "$cfg" ]; then
-  mkdir -p "$(dirname "$cfg")"
-  echo '{}' > "$cfg"
-fi
-
-# 校验配置文件是合法 JSON（用户可能手动编辑弄坏了格式）
-if ! node -e "JSON.parse(require('fs').readFileSync(process.argv[1],'utf8'))" "$cfg" 2>/dev/null; then
-  result_exit "config_json_invalid"
-fi
-
-# ---------- 单次 node 调用完成所有配置更新 ----------
-# 一次启动 V8，通过环境变量安全传参，
-# 顺序完成 plugins.entries / installs / deny / allow / channels 全部配置修改，
-# 减少文件 I/O 次数（只读一次 + 写一次）。
-
-version=$(UPGRADE_CFG="$cfg" UPGRADE_ID="$id" UPGRADE_SPEC="$spec" \
-UPGRADE_PLUGIN_DIR="$plugin_dir" UPGRADE_APIKEY="$APIKEY" \
-node -e '
-  const fs = require("fs");
-  const cfgPath   = process.env.UPGRADE_CFG;
-  const pluginId  = process.env.UPGRADE_ID;
-  const spec      = process.env.UPGRADE_SPEC;
-  const pluginDir = process.env.UPGRADE_PLUGIN_DIR;
-  const envApiKey = process.env.UPGRADE_APIKEY || "";
-
-  function fail(reason) {
-    process.exit(1);
-  }
-
-  // 读取配置
-  let cfg;
-  try {
-    cfg = JSON.parse(fs.readFileSync(cfgPath, "utf8"));
-  } catch (e) {
-    fail("config_read_failed");
-  }
-
-  // 读取插件版本
-  let version = "unknown";
-  try {
-    const pkg = JSON.parse(fs.readFileSync(pluginDir + "/package.json", "utf8"));
-    version = pkg.version || "unknown";
-  } catch (e) {}
-
-  // ---------- 1) 确保 plugins 基础结构存在 & 全局插件系统启用 ----------
-  if (!cfg.plugins) cfg.plugins = {};
-  // 确保全局插件系统生效（plugins.enabled 默认 true，仅显式 false 时需修复）
-  if (cfg.plugins.enabled === false) {
-    cfg.plugins.enabled = true;
-  }
-  if (!cfg.plugins.entries) cfg.plugins.entries = {};
-  if (!cfg.plugins.installs) cfg.plugins.installs = {};
-
-  // plugins.entries：启用插件
-  cfg.plugins.entries[pluginId] = { enabled: true };
-
-  // plugins.installs：安装记录
-  cfg.plugins.installs[pluginId] = {
-    source: "npm",
-    spec: spec,
-    installPath: pluginDir,
-    version: version,
-    installedAt: new Date().toISOString().replace(/\.\d{3}Z$/, ".000Z")
-  };
-
-  // ---------- 2) 黑名单修复 ----------
-  if (Array.isArray(cfg.plugins.deny)) {
-    const idx = cfg.plugins.deny.indexOf(pluginId);
-    if (idx !== -1) {
-      cfg.plugins.deny.splice(idx, 1);
-      if (cfg.plugins.deny.length === 0) {
-        delete cfg.plugins.deny;
-      }
-    }
-  }
-
-  // ---------- 3) 白名单添加 ----------
-  if (Array.isArray(cfg.plugins.allow)) {
-    if (!cfg.plugins.allow.includes(pluginId)) {
-      cfg.plugins.allow.push(pluginId);
-    }
-  }
-
-  // ---------- 4) channel 配置：智能合并 ----------
-  if (!cfg.channels) cfg.channels = {};
-  const ch = cfg.channels[pluginId] || {};
-
-  // 迁移旧的 apiKey -> apiKeys
-  let apiKeys = Array.isArray(ch.apiKeys) ? [...ch.apiKeys] : [];
-  if (ch.apiKey && typeof ch.apiKey === "string") {
-    if (!apiKeys.includes(ch.apiKey)) {
-      apiKeys.push(ch.apiKey);
-    }
-    delete ch.apiKey;
-  }
-
-  // 如果通过环境变量传入了 APIKEY，确保它在 apiKeys 数组中（去重）
-  if (envApiKey && !apiKeys.includes(envApiKey)) {
-    apiKeys.push(envApiKey);
-  }
-
-  ch.enabled = true;
-  ch.apiKeys = apiKeys;
-  cfg.channels[pluginId] = ch;
-
-  // ---------- 5) 写回配置文件 ----------
-  fs.writeFileSync(cfgPath, JSON.stringify(cfg, null, 2) + "\n", "utf8");
-
-  // 输出版本号到 stdout，供 shell 接收
-  process.stdout.write(version);
-') || result_exit "config_update_failed"
-
-# ========== 插件 >= 1.1.0 时需要重新安装依赖并注册 ==========
-
-# if version_gte "$version" "1.1.0"; then
-#   (cd "$plugin_dir" && pnpm install) >/dev/null 2>&1 || true
-#   openclaw gateway install --force >/dev/null 2>&1 || true
-
-#   # 小内存机器（<3GB）自动注入 NODE_OPTIONS 限制堆内存，避免 OOM
-#   GATEWAY_SERVICE="$HOME/.config/systemd/user/openclaw-gateway.service"
-#   TOTAL_MEM_KB=$(awk '/MemTotal/ {print $2}' /proc/meminfo 2>/dev/null || echo "0")
-#   if [ "$TOTAL_MEM_KB" -gt 0 ] && [ "$TOTAL_MEM_KB" -lt 3000000 ] \
-#      && [ -f "$GATEWAY_SERVICE" ] \
-#      && ! grep -q 'max-old-space-size' "$GATEWAY_SERVICE"; then
-#     sed -i '/\[Service\]/a Environment="NODE_OPTIONS=--max-old-space-size=1500"' "$GATEWAY_SERVICE"
-#     systemctl --user daemon-reload
-#   fi
-# fi
-
-# ========== 设备审批（openclaw == 2026.3.28）==========
-
-if [ -n "$openclaw_version" ] && [ "$openclaw_version" = "$OPENCLAW_DEVICES_APPROVE_VERSION" ]; then
-  step_log "devices_approve" "approving devices"
-  openclaw devices approve >/dev/null 2>&1 || true
-fi
-
-# ========== 重启 Gateway ==========
-
-if [ "$RESTART_GATEWAY" = "true" ]; then
-  step_log "gateway_restart" "restarting gateway"
-  openclaw gateway restart >/dev/null 2>&1 || true
-fi
-
-# stdout 最后一行 RESULT，供前端解析最终结果
-result_ok "$version"