metame-cli 1.4.18 → 1.4.19

package/README.md

@@ -14,25 +14,31 @@
   <a href="./README.md">English</a> | <a href="./README中文版.md">中文</a>
 </p>
 
-> **Claude Code that knows you — and works from your phone.**
+> **Your digital twin. Lives on your Mac.**
 
-MetaMe turns Claude Code into a persistent AI that remembers how you think, runs on your Mac 24/7, and takes commands from your phone via Telegram or Feishu.
+MetaMe is an AI that lives on your machine — remembers how you think, stays online 24/7, and takes commands from your phone via Telegram or Feishu. Not in the cloud. In your computer.
 
-One command. No cloud. Your machine, your data.
+No cloud. Your machine, your data.
 
+**macOS / Linux / Windows WSL — same command:**
+```bash
+curl -fsSL https://raw.githubusercontent.com/Yaron9/MetaMe/main/install.sh | bash
+```
+
+**Already have Node.js ≥ 18:**
 ```bash
 npm install -g metame-cli && metame
 ```
 
 ---
 
-> ### 🚀 v1.4.0 — Layered Memory Architecture
+> ### 🚀 v1.4.18 — Multi-User ACL + Session Context Preview
 >
-> MetaMe now has a **three-layer memory system** that works completely in the background:
-> - **Long-term facts** extracted from every session, recalled semantically on demand
-> - **Session summary cache** — when you resume after a 2h+ gap, MetaMe injects what you were last working on
-> - **Automatic session tagging** — every conversation is indexed by topic, enabling future session routing
-> - **Unix Socket IPC** — dispatch latency dropped from ~60s to <100ms
+> - **Multi-user permission system**: role-based ACL (admin / member / stranger) — share your bots with teammates without giving them full access. Manage users with `/user` commands.
+> - **Session context preview**: `/resume` and `/sessions` now show the last message snippet so you know exactly what to pick up.
+> - **Team Task protocol**: multi-agent task board for cross-agent collaboration. Agents can dispatch and track tasks across workspaces.
+> - **Layered Memory Architecture**: three-layer memory (long-term facts, session summaries, session index) — all automatic.
+> - **Unix Socket IPC**: dispatch latency <100ms.
 >
 > Zero configuration. It just works.
 
@@ -151,7 +157,21 @@ Chain skills into multi-step workflows — research → write → publish — fu
           prompt: "Publish it"
 ```
 
-Task options: `interval` (every N seconds/minutes/hours/days), `at` (fixed local `HH:MM`), `days` (optional day filter), `require_idle` (defer when you're active, retry on next heartbeat tick), `precondition` (shell guard — skip if false, zero tokens), `notify` (push result to phone), `model`, `cwd`, `allowedTools`, `timeout`.
+**Task options:**
+
+| Option | Description |
+|--------|-------------|
+| `at` | Fixed-time trigger, e.g. `"09:30"` (local time) |
+| `days` | Day filter, e.g. `"weekdays"`, `[mon, wed, fri]` |
+| `interval` | Interval trigger, e.g. `"4h"`, `"30m"` |
+| `require_idle` | Skip if you're active; retry on next heartbeat tick |
+| `precondition` | Shell guard — skip task if command returns non-zero (zero tokens consumed) |
+| `notify` | Push result to phone when done |
+| `model` | Override model, e.g. `"sonnet"`, `"haiku"` |
+| `cwd` | Working directory for the task |
+| `timeout` | Max run time |
+
+> **Scheduled tasks require system registration.** Run `metame daemon install-launchd` and tasks fire on schedule even with the screen locked or the lid closed — as long as the Mac is on.
 
 ### 5. Skills That Evolve Themselves
 
@@ -173,6 +193,13 @@ Task fails → skill-scout finds a skill → installs → retries → succeeds
 
 ## Quick Start
 
+**macOS / Linux / Windows WSL:**
+```bash
+curl -fsSL https://raw.githubusercontent.com/Yaron9/MetaMe/main/install.sh | bash
+```
+> Same command everywhere. The script detects your OS and uses Homebrew (macOS) or apt/dnf/pacman (Linux/WSL) to install Node.js automatically.
+
+**Already have Node.js ≥ 18:**
 ```bash
 npm install -g metame-cli && metame
 ```
@@ -184,7 +211,35 @@ npm install -g metame-cli && metame
 | 1. Install & profile | `metame` | First run: cognitive interview → builds `~/.claude_profile.yaml` |
 | 2. Connect phone | Follow the setup wizard | Bot token + app credentials → `~/.metame/daemon.yaml` |
 | 3. Start daemon | `metame start` | Background daemon launches, bot goes online |
-| 4. Auto-start | `metame daemon install-launchd` | Survives reboot + crash recovery |
+| 4. Register with system | macOS: `metame daemon install-launchd` · WSL/Linux: see below | Always-on, crash recovery |
+
+> **What does system registration mean?**
+> Once registered, MetaMe runs in the background automatically — screen locked, lid closed, woken from sleep — as long as the machine is on. Scheduled tasks fire on time. No terminal window needed.
+
+**WSL2 / Linux — register with systemd:**
+
+```bash
+cat > ~/.config/systemd/user/metame.service << 'EOF'
+[Unit]
+Description=MetaMe Daemon
+After=network.target
+
+[Service]
+ExecStart=/usr/bin/env metame start
+Restart=on-failure
+RestartSec=5
+
+[Install]
+WantedBy=default.target
+EOF
+
+systemctl --user enable metame
+systemctl --user start metame
+```
+
+> WSL2 requires systemd enabled first: add `[boot]\nsystemd=true` to `/etc/wsl.conf`, then restart WSL.
+
+> **WSL limitation:** `/mac` commands (macOS AppleScript/JXA automation) are not available.
 
 **Create your first Agent:**
 
@@ -209,15 +264,46 @@ npm install -g metame-cli && metame
 | **Browser Automation** | Built-in Playwright MCP. Browser control out of the box for every user. |
 | **Provider Relay** | Route through any Anthropic-compatible API. Use GPT-4, DeepSeek, Gemini — zero config file mutation. |
 | **Metacognition** | Detects behavioral patterns (decision style, comfort zones, goal drift) and injects mirror observations. Zero extra API cost. |
+| **Multi-User ACL** | Role-based permission system (admin / member / stranger). Share bots with teammates safely. Dynamic user management via `/user` commands with hot-reload config. |
+| **Team Task** | Multi-agent task board for cross-agent collaboration. Agents can create, assign, and track tasks across workspaces. N-agent session scoping for parallel team workflows. |
 | **Emergency Tools** | `/doctor` diagnostics, `/mac` macOS control helpers, `/sh` raw shell, `/fix` config restore, `/undo` git-based rollback. |
 
 ## Defining Your Agents
 
-Agent configs live in `~/.metame/daemon.yaml` — local only, never uploaded to npm or Git.
+MetaMe's design philosophy: **one folder = one agent.**
+
+Give an agent a directory, drop a `CLAUDE.md` inside describing its role, and you're done. The folder is the agent — it can be a code project, a blog repo, any workspace you already have.
+
+### Option 1: Just say it (fastest)
+
+No commands needed. Tell the bot what you want in plain language — MetaMe understands intent and acts:
+
+```
+You:  Create an agent for this group, directory ~/projects/assistant
+Bot:  ✅ Agent created and bound
+      Name: assistant
+      Dir: ~/projects/assistant
+
+You:  Change this agent's role to: a writing and content creation assistant
+Bot:  ✅ Role definition updated in CLAUDE.md
+
+You:  Bind an agent to ~/AGI/MyProject
+Bot:  ✅ Agent bound
+      Name: MyProject
+      Dir: ~/AGI/MyProject
+
+You:  List all agents
+Bot:  📋 Agent list
+      🤖 assistant ◀ current
+      Dir: ~/projects/assistant
+      ...
+```
+
+Supported intents: create, bind, unbind, edit role, list — just say it naturally.
 
-### From your phone (recommended)
+### Option 2: Wizard commands
 
-The easiest way. Open any Telegram/Feishu group and use the `/agent` wizard:
+Use `/agent` commands in any Telegram/Feishu group:
 
 | Command | What it does |
 |---------|-------------|
@@ -227,21 +313,7 @@ The easiest way. Open any Telegram/Feishu group and use the `/agent` wizard:
 | `/agent edit` | Update the current agent's role description (rewrites its `CLAUDE.md` section). |
 | `/agent reset` | Remove the current agent's role section. |
 
-Example flow:
-```
-You:     /agent new
-Bot:     Please select a working directory:
-         📁 ~/AGI   📁 ~/projects   📁 ~/Desktop
-You:     ~/AGI/MyProject/NewDir
-Bot:     ✅ 已新建目录：~/AGI/MyProject/NewDir
-         What should we name this agent?
-You:     小美
-Bot:     Describe 小美's role and responsibilities:
-You:     Personal assistant. Manages my calendar, drafts messages, and tracks todos.
-Bot:     ✅ Agent「小美」created. CLAUDE.md updated with role definition.
-```
-
-You can tap a button to pick an existing directory, or type any path directly in chat. If the path doesn't exist, it's created automatically. All entry points (`/agent new` wizard and `/agent bind`) validate that the directory is real before saving.
+You can tap a button to pick an existing directory, or type any path directly in chat. If the path doesn't exist, it's created automatically.
 
 ### From config file (for power users)
 
@@ -301,6 +373,15 @@ All agents share your cognitive profile (`~/.claude_profile.yaml`) — they all
 | `/memory` | Memory stats: fact count, session tags, DB size |
 | `/memory <keyword>` | Search long-term facts by keyword |
 | `/doctor` | Interactive diagnostics |
+| `/user add <open_id>` | Add a user (admin only) |
+| `/user role <open_id> <admin\|member>` | Set user role |
+| `/user list` | List all configured users |
+| `/user remove <open_id>` | Remove a user |
+| `/sessions` | Browse recent sessions with last message preview |
+| `/teamtask create <agent> <goal>` | Create a cross-agent collaboration task |
+| `/teamtask` | List recent TeamTasks (last 10) |
+| `/teamtask <task_id>` | View task detail |
+| `/teamtask resume <task_id>` | Resume a task |
 
 ## How It Works
 

package/index.js

@@ -30,7 +30,7 @@ if (!fs.existsSync(METAME_DIR)) {
 // Auto-deploy bundled scripts to ~/.metame/
 // IMPORTANT: daemon.yaml is USER CONFIG — never overwrite it. Only daemon-default.yaml (template) is synced.
 const scriptsDir = path.join(__dirname, 'scripts');
-const BUNDLED_BASE_SCRIPTS = ['signal-capture.js', 'distill.js', 'schema.js', 'pending-traits.js', 'migrate-v2.js', 'daemon.js', 'telegram-adapter.js', 'feishu-adapter.js', 'daemon-default.yaml', 'providers.js', 'session-analytics.js', 'resolve-yaml.js', 'utils.js', 'skill-evolution.js', 'memory.js', 'memory-extract.js', 'memory-search.js', 'qmd-client.js', 'session-summarize.js', 'check-macos-control-capabilities.sh'];
+const BUNDLED_BASE_SCRIPTS = ['signal-capture.js', 'distill.js', 'schema.js', 'pending-traits.js', 'migrate-v2.js', 'daemon.js', 'telegram-adapter.js', 'feishu-adapter.js', 'daemon-default.yaml', 'providers.js', 'session-analytics.js', 'resolve-yaml.js', 'utils.js', 'skill-evolution.js', 'memory.js', 'memory-extract.js', 'memory-search.js', 'qmd-client.js', 'session-summarize.js', 'check-macos-control-capabilities.sh', 'usage-classifier.js', 'task-board.js'];
 const DAEMON_MODULE_SCRIPTS = (() => {
   try {
     return fs.readdirSync(scriptsDir).filter((f) => /^daemon-[\w-]+\.js$/.test(f));

package/package.json

@@ -1,6 +1,6 @@
 {
     "name": "metame-cli",
-    "version": "1.4.18",
+    "version": "1.4.19",
     "description": "The Cognitive Profile Layer for Claude Code. Knows how you think, not just what you said.",
     "main": "index.js",
     "bin": {
@@ -13,7 +13,7 @@
     "scripts": {
         "test": "node --test scripts/*.test.js",
         "start": "node index.js",
-        "sync:plugin": "cp scripts/schema.js scripts/pending-traits.js scripts/signal-capture.js scripts/distill.js scripts/daemon.js scripts/daemon-agent-commands.js scripts/daemon-session-commands.js scripts/daemon-admin-commands.js scripts/daemon-exec-commands.js scripts/daemon-ops-commands.js scripts/daemon-session-store.js scripts/daemon-checkpoints.js scripts/daemon-bridges.js scripts/daemon-file-browser.js scripts/daemon-runtime-lifecycle.js scripts/daemon-notify.js scripts/daemon-claude-engine.js scripts/daemon-command-router.js scripts/daemon-agent-tools.js scripts/daemon-task-scheduler.js scripts/daemon-task-envelope.js scripts/task-board.js scripts/telegram-adapter.js scripts/feishu-adapter.js scripts/daemon-default.yaml scripts/providers.js scripts/utils.js scripts/usage-classifier.js scripts/resolve-yaml.js scripts/memory.js scripts/memory-extract.js scripts/qmd-client.js scripts/session-summarize.js scripts/session-analytics.js scripts/skill-evolution.js scripts/check-macos-control-capabilities.sh plugin/scripts/ && echo '✅ Plugin scripts synced'",
+        "sync:plugin": "cp scripts/schema.js scripts/pending-traits.js scripts/signal-capture.js scripts/distill.js scripts/daemon.js scripts/daemon-agent-commands.js scripts/daemon-session-commands.js scripts/daemon-admin-commands.js scripts/daemon-exec-commands.js scripts/daemon-ops-commands.js scripts/daemon-session-store.js scripts/daemon-checkpoints.js scripts/daemon-bridges.js scripts/daemon-file-browser.js scripts/daemon-runtime-lifecycle.js scripts/daemon-notify.js scripts/daemon-claude-engine.js scripts/daemon-command-router.js scripts/daemon-user-acl.js scripts/daemon-agent-tools.js scripts/daemon-task-scheduler.js scripts/daemon-task-envelope.js scripts/task-board.js scripts/telegram-adapter.js scripts/feishu-adapter.js scripts/daemon-default.yaml scripts/providers.js scripts/utils.js scripts/usage-classifier.js scripts/resolve-yaml.js scripts/memory.js scripts/memory-extract.js scripts/qmd-client.js scripts/session-summarize.js scripts/session-analytics.js scripts/skill-evolution.js scripts/check-macos-control-capabilities.sh plugin/scripts/ && echo '✅ Plugin scripts synced'",
         "restart:daemon": "node index.js stop 2>/dev/null; sleep 1; node index.js start 2>/dev/null || echo '⚠️  Daemon not running or restart failed'",
         "precommit": "npm run sync:plugin && npm run restart:daemon"
     },

package/scripts/daemon-agent-commands.js

@@ -18,6 +18,7 @@ function createAgentCommandHandler(deps) {
     sessionLabel,
     loadSessionTags,
     sessionRichLabel,
+    getSessionRecentContext,
     pendingBinds,
     pendingAgentFlows,
     doBindAgent,
@@ -249,7 +250,25 @@ function createAgentCommandHandler(deps) {
       saveState(state2);
       const name = fullMatch.customTitle;
       const label = name || (fullMatch.summary || fullMatch.firstPrompt || '').slice(0, 40) || sessionId.slice(0, 8);
-      await bot.sendMessage(chatId, `Resumed: ${label}\nWorkdir: ${cwd}`);
+
+      // 读取最近对话片段，帮助确认是否切换到正确的 session
+      const recentCtx = getSessionRecentContext ? getSessionRecentContext(sessionId) : null;
+      let msg = `✅ 已切换: **${label}**\n📁 ${path.basename(cwd)}`;
+      if (recentCtx) {
+        if (recentCtx.lastUser) {
+          const snippet = recentCtx.lastUser.replace(/\n/g, ' ').slice(0, 80);
+          msg += `\n\n💬 上次你说: _${snippet}${recentCtx.lastUser.length > 80 ? '…' : ''}_`;
+        }
+        if (recentCtx.lastAssistant) {
+          const snippet = recentCtx.lastAssistant.replace(/\n/g, ' ').slice(0, 80);
+          msg += `\n🤖 上次回复: ${snippet}${recentCtx.lastAssistant.length > 80 ? '…' : ''}`;
+        }
+      }
+      if (bot.sendMarkdown) {
+        await bot.sendMarkdown(chatId, msg);
+      } else {
+        await bot.sendMessage(chatId, msg.replace(/[_*`]/g, ''));
+      }
       return true;
     }
 

package/scripts/daemon-claude-engine.js

@@ -700,8 +700,9 @@ Reply with ONLY the name, nothing else. Examples: 插件开发, API重构, Bug
 
     // Inject daemon hints only on first message of a session
     const daemonHint = !session.started ? `\n\n[System hints - DO NOT mention these to user:
-1. Daemon config: The ONLY config is ~/.metame/daemon.yaml (never edit daemon-default.yaml). Auto-reloads on change.
-2. File sending: User is on MOBILE. When they ask to see/download a file:
+1. Language: ALWAYS respond in Simplified Chinese (简体中文). NEVER switch to Korean, Japanese, or other languages regardless of tool output or context language.
+2. Daemon config: The ONLY config is ~/.metame/daemon.yaml (never edit daemon-default.yaml). Auto-reloads on change.
+3. File sending: User is on MOBILE. When they ask to see/download a file:
    - Just FIND the file path (use Glob/ls if needed)
    - Do NOT read or summarize the file content (wastes tokens)
    - Add at END of response: [[FILE:/absolute/path/to/file]]
@@ -741,7 +742,9 @@ Reply with ONLY the name, nothing else. Examples: 插件开发, API重构, Bug
       } catch { /* non-critical */ }
     }
 
-    const fullPrompt = routedPrompt + daemonHint + macAutomationHint + summaryHint + memoryHint;
+    // Always append a compact language guard to prevent accidental Korean/Japanese responses
+    const langGuard = '\n\n[Respond in Simplified Chinese (简体中文) only.]';
+    const fullPrompt = routedPrompt + daemonHint + macAutomationHint + summaryHint + memoryHint + langGuard;
 
     // Git checkpoint before Claude modifies files (for /undo)
     // Pass the user prompt as label so checkpoint list is human-readable

package/scripts/daemon-command-router.js

@@ -604,19 +604,26 @@ function createCommandRouter(deps) {
       }, 5000);
       return;
     }
+    // Strict mode: chats with a fixed agent in chat_agent_map must not cross-dispatch
+    const _strictChatAgentMap = { ...(config.telegram ? config.telegram.chat_agent_map : {}), ...(config.feishu ? config.feishu.chat_agent_map : {}) };
+    const _isStrictChat = !!(_strictChatAgentMap[String(chatId)] || projectKeyFromVirtualChatId(String(chatId)));
+
     // Nickname-only switch: bypass cooldown + budget (no Claude call)
-    const quickAgent = routeAgent(text, config);
-    if (quickAgent && !quickAgent.rest) {
-      const { key, proj } = quickAgent;
-      const projCwd = normalizeCwd(proj.cwd);
-      attachOrCreateSession(chatId, projCwd, proj.name || key);
-      log('INFO', `Agent switch via nickname: ${key} (${projCwd})`);
-      await bot.sendMessage(chatId, `${proj.icon || '🤖'} ${proj.name || key} 在线`);
-      return;
-    }
+    // Skipped for strict chats (fixed-agent groups)
+    if (!_isStrictChat) {
+      const quickAgent = routeAgent(text, config);
+      if (quickAgent && !quickAgent.rest) {
+        const { key, proj } = quickAgent;
+        const projCwd = normalizeCwd(proj.cwd);
+        attachOrCreateSession(chatId, projCwd, proj.name || key);
+        log('INFO', `Agent switch via nickname: ${key} (${projCwd})`);
+        await bot.sendMessage(chatId, `${proj.icon || '🤖'} ${proj.name || key} 在线`);
+        return;
+      }
 
-    if (await tryHandleAgentIntent(bot, chatId, text, config)) {
-      return;
+      if (await tryHandleAgentIntent(bot, chatId, text, config)) {
+        return;
+      }
     }
 
     const daemonCfg = (config && config.daemon) || {};

package/scripts/daemon-session-store.js

@@ -106,6 +106,59 @@ function createSessionStore(deps) {
 
   function invalidateSessionCache() { _sessionCache = null; }
 
+  // 监听 ~/.claude/projects 目录，手机端新建 session 后桌面端无需重启即可感知
+  let _watcher = null;
+  let _invalidateDebounce = null;
+
+  function _debouncedInvalidate() {
+    if (_invalidateDebounce) return;
+    _invalidateDebounce = setTimeout(() => {
+      _sessionCache = null;
+      _invalidateDebounce = null;
+    }, 500);
+  }
+
+  function watchSessionFiles() {
+    // 先关闭旧 watcher，防止热重载时叠加
+    if (_watcher) { try { _watcher.close(); } catch (_) {} _watcher = null; }
+    if (!fs.existsSync(CLAUDE_PROJECTS_DIR)) return;
+    try {
+      _watcher = fs.watch(CLAUDE_PROJECTS_DIR, { recursive: true }, (evt, filename) => {
+        if (filename && filename.endsWith('.jsonl')) _debouncedInvalidate();
+      });
+      _watcher.on('error', (e) => {
+        log('WARN', '[session-store] fs.watch error: ' + e.message);
+        _watcher = null;
+      });
+      log('INFO', '[session-store] fs.watch active on ' + CLAUDE_PROJECTS_DIR);
+    } catch (e) {
+      log('WARN', '[session-store] fs.watch failed, fallback to TTL cache: ' + e.message);
+    }
+  }
+
+  function stopWatchingSessionFiles() {
+    if (_watcher) { try { _watcher.close(); } catch (_) {} _watcher = null; }
+  }
+
+  // [M3] 共享辅助：从 reversed JSONL 行数组中提取最后一条外部用户消息（统一规则）
+  function extractLastUserFromLines(lines) {
+    for (const line of lines) {
+      if (!line) continue;
+      try {
+        const d = JSON.parse(line);
+        if (d.type === 'user' && d.message && d.userType !== 'internal') {
+          const content = d.message.content;
+          let raw = typeof content === 'string' ? content
+            : Array.isArray(content) ? (content.find(c => c.type === 'text') || {}).text || '' : '';
+          raw = raw.replace(/\[System hints[\s\S]*/i, '')
+            .replace(/<system-reminder>[\s\S]*?<\/system-reminder>/g, '').trim();
+          if (raw.length > 2) return raw.slice(0, 80);
+        }
+      } catch { /* skip */ }
+    }
+    return '';
+  }
+
   function scanAllSessions() {
     if (_sessionCache && (Date.now() - _sessionCacheTime < SESSION_CACHE_TTL)) return _sessionCache;
     try {
@@ -162,49 +215,58 @@ function createSessionStore(deps) {
       const ENRICH_LIMIT = 20;
       for (let i = 0; i < Math.min(all.length, ENRICH_LIMIT); i++) {
         const s = all[i];
-        if (s.firstPrompt && s.customTitle) continue;
+        // [M1] 用 _enriched 标志替代三字段联合判断
+        // customTitle 是可选的，无命名 session 合法值为 undefined，不能作为 skip 条件
+        if (s._enriched) continue;
         try {
           const sessionFile = findSessionFile(s.sessionId);
           if (!sessionFile) continue;
           const fd = fs.openSync(sessionFile, 'r');
-          const headBuf = Buffer.alloc(8192);
-          const headBytes = fs.readSync(fd, headBuf, 0, 8192, 0);
-          const headStr = headBuf.toString('utf8', 0, headBytes);
-          if (!s.firstPrompt) {
-            for (const line of headStr.split('\n')) {
-              if (!line) continue;
-              try {
-                const d = JSON.parse(line);
-                if (d.type === 'user' && d.message && d.userType === 'external') {
-                  const content = d.message.content;
-                  let raw = '';
-                  if (typeof content === 'string') raw = content;
-                  else if (Array.isArray(content)) {
-                    const txt = content.find(c => c.type === 'text');
-                    if (txt) raw = txt.text;
+          try {
+            if (!s.firstPrompt) {
+              const headBuf = Buffer.alloc(8192);
+              const headBytes = fs.readSync(fd, headBuf, 0, 8192, 0);
+              const headStr = headBuf.toString('utf8', 0, headBytes);
+              for (const line of headStr.split('\n')) {
+                if (!line) continue;
+                try {
+                  const d = JSON.parse(line);
+                  if (d.type === 'user' && d.message && d.userType !== 'internal') {
+                    const content = d.message.content;
+                    let raw = '';
+                    if (typeof content === 'string') raw = content;
+                    else if (Array.isArray(content)) {
+                      const txt = content.find(c => c.type === 'text');
+                      if (txt) raw = txt.text;
+                    }
+                    raw = raw.replace(/\n?\[System hints[\s\S]*/i, '').replace(/<system-reminder>[\s\S]*?<\/system-reminder>/g, '').trim();
+                    if (raw && raw.length > 2) { s.firstPrompt = raw.slice(0, 120); break; }
                   }
-                  raw = raw.replace(/\n?\[System hints[\s\S]*/i, '').replace(/<system-reminder>[\s\S]*?<\/system-reminder>/g, '').trim();
-                  if (raw && raw.length > 2) { s.firstPrompt = raw.slice(0, 120); break; }
-                }
-              } catch { /* skip line */ }
+                } catch { /* skip line */ }
+              }
             }
-          }
-          if (!s.customTitle) {
+            // 从尾部读取：customTitle + lastUser（256KB 覆盖 tool-heavy session）
             const stat = fs.fstatSync(fd);
-            const tailSize = Math.min(4096, stat.size);
+            const tailSize = Math.min(262144, stat.size);
             const tailBuf = Buffer.alloc(tailSize);
             fs.readSync(fd, tailBuf, 0, tailSize, stat.size - tailSize);
-            const tailStr = tailBuf.toString('utf8');
-            const tailLines = tailStr.split('\n').reverse();
-            for (const line of tailLines) {
-              if (!line) continue;
-              try {
-                const d = JSON.parse(line);
-                if (d.type === 'custom-title' && d.customTitle) { s.customTitle = d.customTitle; break; }
-              } catch { /* skip */ }
+            const tailLines = tailBuf.toString('utf8').split('\n').reverse();
+            if (!s.customTitle) {
+              for (const line of tailLines) {
+                if (!line) continue;
+                try {
+                  const d = JSON.parse(line);
+                  if (d.type === 'custom-title' && d.customTitle) { s.customTitle = d.customTitle; break; }
+                } catch { /* skip */ }
+              }
+            }
+            if (!s.lastUser) {
+              s.lastUser = extractLastUserFromLines(tailLines);
             }
+          } finally {
+            fs.closeSync(fd);
           }
-          fs.closeSync(fd);
+          s._enriched = true; // [M1] 标记已完成富化，下次跳过
         } catch { /* non-fatal */ }
       }
 
@@ -265,20 +327,34 @@ function createSessionStore(deps) {
       .replace(/[\x00-\x09\x0B\x0C\x0E-\x1F\x7F\uFFFD\uD800-\uDFFF]/g, '')
       .replace(/\s+/g, ' ')
       .trim();
+
+    // 优先级：name > summary > tags > firstPrompt > sessionId 前缀
     if (s.customTitle) return sanitize(s.customTitle).slice(0, maxLen);
+
+    if (s.summary) {
+      const t = sanitize(s.summary);
+      if (t.length > 2) return t.slice(0, maxLen);
+    }
+
     const tagEntry = sessionTags && sessionTags[s.sessionId];
     if (tagEntry && tagEntry.name) return sanitize(tagEntry.name).slice(0, maxLen);
+
     if (s.firstPrompt) {
       const clean = s.firstPrompt
         .replace(/<system-reminder>[\s\S]*?<\/system-reminder>/g, '')
-        .replace(/^<[^>]+>.*?<\/[^>]+>\s*/s, '')
-        .replace(/\[System hints[\s\S]*/i, '');
-      const firstLine = clean.split('\n').map(l => l.trim()).find(l => l.length > 2) || '';
+        .replace(/\[System hints[\s\S]*/i, '')
+        .replace(/^[\s\S]*?<\/[^>]+>\s*/s, '') // 剥离 XML 头部标签
+        .trim();
+      // 取第一行非空、有实际内容（非纯符号/空格）的行
+      const firstLine = clean.split('\n')
+        .map(l => l.trim())
+        .find(l => l.length > 4 && /\p{L}/u.test(l)) || '';
       const sanitized = sanitize(firstLine);
       if (sanitized && sanitized.length > 2) return sanitized.slice(0, maxLen);
     }
-    if (s.summary) return sanitize(s.summary).slice(0, maxLen);
-    return '';
+
+    // 最终兜底：显示 session ID 前缀而非空白
+    return s.sessionId ? s.sessionId.slice(0, 8) : '';
   }
 
   function sessionRichLabel(s, index, sessionTags) {
@@ -291,11 +367,17 @@ function createSessionStore(deps) {
     const shortId = s.sessionId.slice(0, 8);
     const tags = (sessionTags[s.sessionId] && sessionTags[s.sessionId].tags || []).slice(0, 3);
 
-    let line = `${index}. `;
-    if (title) line += `${title}${title.length >= 50 ? '..' : ''}`;
-    else line += '(unnamed)';
+    // [M2] 转义 markdown 特殊字符，防止用户历史消息破坏渲染
+    const escapeMd = (t) => t.replace(/[_*`\\]/g, '\\$&');
+    // fallback to firstPrompt when lastUser not found in tail
+    const snippetRaw = s.lastUser || (s.firstPrompt || '').replace(/<[^>]+>/g, '').replace(/\[System hints[\s\S]*/i, '').trim().slice(0, 80);
+    let line = `${index}. ${title}${title.length >= 50 ? '..' : ''}`;  // [M4] title 已有 sessionId 兜底，不会为空
     if (tags.length) line += `  ${tags.map(t => `#${t}`).join(' ')}`;
     line += `\n   📁${proj} · ${ago}`;
+    if (snippetRaw && snippetRaw.length > 2) {
+      const snippet = escapeMd(snippetRaw.replace(/\n/g, ' ').slice(0, 60));
+      line += `\n   💬 ${snippet}${snippetRaw.length > 60 ? '…' : ''}`;
+    }
     line += `\n   /resume ${shortId}`;
     return line;
   }
@@ -312,8 +394,15 @@ function createSessionStore(deps) {
       const ago = formatRelativeTime(new Date(timeMs).toISOString());
       const shortId = s.sessionId.slice(0, 6);
       const tags = (sessionTags[s.sessionId] && sessionTags[s.sessionId].tags || []).slice(0, 4);
-      let desc = `**${i + 1}. ${title || '(unnamed)'}**\n📁${proj} · ${ago}`;
+      // [M2] 转义 markdown 特殊字符；[M4] title 已有 sessionId 兜底
+      const escapeMd = (t) => t.replace(/[_*`\\]/g, '\\$&');
+      const snippetRaw = s.lastUser || (s.firstPrompt || '').replace(/<[^>]+>/g, '').replace(/\[System hints[\s\S]*/i, '').trim().slice(0, 80);
+      let desc = `**${i + 1}. ${title}**\n📁${proj} · ${ago}`;
       if (tags.length) desc += `\n${tags.map(t => `\`${t}\``).join(' ')}`;
+      if (snippetRaw && snippetRaw.length > 2) {
+        const snippet = escapeMd(snippetRaw.replace(/\n/g, ' ').slice(0, 60));
+        desc += `\n💬 ${snippet}${snippetRaw.length > 60 ? '…' : ''}`;
+      }
       elements.push({ tag: 'div', text: { tag: 'lark_md', content: desc } });
       elements.push({ tag: 'action', actions: [{ tag: 'button', text: { tag: 'plain_text', content: `▶️ Switch #${shortId}` }, type: 'primary', value: { cmd: `/resume ${s.sessionId}` } }] });
     });
@@ -393,6 +482,49 @@ function createSessionStore(deps) {
     }
   }
 
+  /**
+   * 读取 session 最近一条用户消息 + 最近一条 AI 回复
+   * 用于 /resume 后帮助确认切换到正确 session
+   */
+  function getSessionRecentContext(sessionId) {
+    try {
+      const sessionFile = findSessionFile(sessionId);
+      if (!sessionFile) return null;
+      const stat = fs.statSync(sessionFile);
+      const tailSize = Math.min(262144, stat.size); // 256KB for better coverage of tool-heavy sessions
+      const buf = Buffer.alloc(tailSize);
+      const fd = fs.openSync(sessionFile, 'r');
+      try {
+        fs.readSync(fd, buf, 0, tailSize, stat.size - tailSize);
+      } finally {
+        fs.closeSync(fd);
+      }
+      const lines = buf.toString('utf8').split('\n').reverse();
+      // [M3] 复用共享函数，统一截取逻辑
+      const lastUser = extractLastUserFromLines(lines);
+      let lastAssistant = '';
+      for (const line of lines) {
+        if (!line.trim()) continue;
+        try {
+          const d = JSON.parse(line);
+          if (!lastAssistant && d.type === 'assistant' && d.message) {
+            const content = d.message.content;
+            if (Array.isArray(content)) {
+              for (const c of content) {
+                if (c.type === 'text' && c.text && c.text.trim().length > 2) {
+                  lastAssistant = c.text.trim().slice(0, 80);
+                  break;
+                }
+              }
+            }
+          }
+          if (lastAssistant) break;
+        } catch { /* skip bad line */ }
+      }
+      return (lastUser || lastAssistant) ? { lastUser, lastAssistant } : null;
+    } catch { return null; }
+  }
+
   function markSessionStarted(chatId) {
     const state = loadState();
     if (state.sessions[chatId]) {
@@ -405,6 +537,8 @@ function createSessionStore(deps) {
     findSessionFile,
     clearSessionFileCache,
     truncateSessionToCheckpoint,
+    watchSessionFiles,
+    stopWatchingSessionFiles,
     listRecentSessions,
     loadSessionTags,
     getSessionFileMtime,
@@ -417,6 +551,7 @@ function createSessionStore(deps) {
     getSessionName,
     writeSessionName,
     markSessionStarted,
+    getSessionRecentContext,
   };
 }
 

package/scripts/daemon-user-acl.js

@@ -0,0 +1,399 @@
+/**
+ * daemon-user-acl.js — MetaMe 多用户权限管理模块
+ *
+ * 角色体系：
+ *   admin   — 全部权限（王总）
+ *   member  — 可配置白名单操作
+ *   stranger — 仅基础问答，无系统操作
+ *
+ * 配置文件：~/.metame/users.yaml（热更新，独立于 daemon.yaml）
+ * 格式：
+ *   users:
+ *     ou_abc123: { role: admin, name: 王总 }
+ *     ou_def456: { role: member, name: 老马, allowed_actions: [feedback, status, query] }
+ *   default_role: stranger
+ */
+
+'use strict';
+
+const fs = require('fs');
+const path = require('path');
+const os = require('os');
+
+const USERS_FILE = path.join(os.homedir(), '.metame', 'users.yaml');
+
+// ─── YAML 轻量解析（无依赖） ─────────────────────────────────────────────────
+// 只解析本文件需要的简单结构，不引入 js-yaml 依赖
+function parseSimpleYaml(content) {
+  const result = {};
+  const lines = content.split('\n');
+  let currentSection = null;
+  let currentUserId = null;
+
+  for (let i = 0; i < lines.length; i++) {
+    const line = lines[i];
+    const trimmed = line.trimEnd();
+    if (!trimmed || trimmed.startsWith('#')) continue;
+
+    const indent = line.length - line.trimStart().length;
+    const stripped = trimmed.trim();
+
+    if (indent === 0) {
+      const m = stripped.match(/^(\w[\w_]*):\s*(.*)$/);
+      if (m) {
+        currentSection = m[1];
+        if (m[2]) result[currentSection] = m[2];
+        else result[currentSection] = {};
+        currentUserId = null;
+      }
+    } else if (indent === 2 && currentSection === 'users') {
+      const m = stripped.match(/^([\w_-]+):\s*\{?(.*)\}?$/);
+      if (m) {
+        currentUserId = m[1];
+        result.users = result.users || {};
+        result.users[currentUserId] = parseInlineObj(m[2]);
+      }
+    } else if (indent === 4 && currentSection === 'users' && currentUserId) {
+      const m = stripped.match(/^([\w_]+):\s*(.+)$/);
+      if (m) {
+        result.users[currentUserId][m[1]] = parseYamlValue(m[2]);
+      }
+    } else if (indent === 2 && currentSection !== 'users') {
+      const m = stripped.match(/^([\w_]+):\s*(.+)$/);
+      if (m && typeof result[currentSection] === 'object') {
+        result[currentSection][m[1]] = parseYamlValue(m[2]);
+      }
+    }
+  }
+  return result;
+}
+
+function parseInlineObj(str) {
+  const obj = {};
+  str = str.replace(/^\{|\}$/g, '').trim();
+  if (!str) return obj;
+  const parts = str.split(',').map(s => s.trim());
+  for (const part of parts) {
+    const m = part.match(/^([\w_]+):\s*(.+)$/);
+    if (m) obj[m[1]] = parseYamlValue(m[2]);
+  }
+  return obj;
+}
+
+function parseYamlValue(val) {
+  val = val.trim();
+  if (val === 'true') return true;
+  if (val === 'false') return false;
+  if (/^\d+$/.test(val)) return parseInt(val, 10);
+  // Array like [a, b, c]
+  if (val.startsWith('[') && val.endsWith(']')) {
+    return val.slice(1, -1).split(',').map(s => s.trim().replace(/^['"]|['"]$/g, '')).filter(Boolean);
+  }
+  // Quoted string
+  return val.replace(/^['"]|['"]$/g, '');
+}
+
+// ─── 序列化为 YAML ────────────────────────────────────────────────────────────
+// name 字段转义：去除可能破坏行内 YAML 的特殊字符
+function sanitizeYamlScalar(str) {
+  return String(str || '').replace(/[,:{}\[\]\r\n#]/g, '_').slice(0, 40);
+}
+
+function serializeUsers(data) {
+  const lines = [];
+  // 始终写出 default_role，确保 reload 时语义明确
+  lines.push(`default_role: ${data.default_role || 'stranger'}`);
+  lines.push('users:');
+  for (const [uid, info] of Object.entries(data.users || {})) {
+    const actions = info.allowed_actions
+      ? `, allowed_actions: [${info.allowed_actions.join(', ')}]`
+      : '';
+    const safeName = info.name ? `, name: ${sanitizeYamlScalar(info.name)}` : '';
+    lines.push(`  ${uid}: { role: ${info.role}${safeName}${actions} }`);
+  }
+  return lines.join('\n') + '\n';
+}
+
+// 飞书 open_id 格式校验（字母数字下划线，10-64 位）
+function isValidOpenId(uid) {
+  return typeof uid === 'string' && /^[a-zA-Z0-9_-]{10,64}$/.test(uid);
+}
+
+// ─── 加载用户配置 ─────────────────────────────────────────────────────────────
+let _cachedUsers = null;
+let _cachedMtime = 0;
+
+function loadUsers() {
+  try {
+    const stat = fs.statSync(USERS_FILE);
+    if (stat.mtimeMs !== _cachedMtime) {
+      const content = fs.readFileSync(USERS_FILE, 'utf8');
+      _cachedUsers = parseSimpleYaml(content);
+      _cachedMtime = stat.mtimeMs;
+    }
+    return _cachedUsers || { users: {}, default_role: 'stranger' };
+  } catch {
+    return { users: {}, default_role: 'stranger' };
+  }
+}
+
+function saveUsers(data) {
+  const dir = path.dirname(USERS_FILE);
+  fs.mkdirSync(dir, { recursive: true });
+  // [M3] 原子写入：先写临时文件再 rename，防止崩溃时损坏 users.yaml
+  const tmp = USERS_FILE + '.tmp';
+  fs.writeFileSync(tmp, serializeUsers(data), 'utf8');
+  fs.renameSync(tmp, USERS_FILE);
+  _cachedMtime = 0; // 强制下次重新加载
+}
+
+// ─── 权限动作定义 ─────────────────────────────────────────────────────────────
+// 每个 action 代表一类权限门控点
+const ACTION_GROUPS = {
+  // member 可开放的安全操作
+  feedback:  { desc: '提交反馈' },
+  status:    { desc: '查询系统状态 (/status, /tasks)' },
+  query:     { desc: '自然语言问答（只读）' },
+  file_read: { desc: '查看文件' },
+
+  // admin 专属（不可赋予 member）
+  system:    { desc: '系统操作 (/sh, /mac, /fix)' },
+  agent:     { desc: 'Agent 调度与管理' },
+  config:    { desc: '配置修改 (/reload, /model)' },
+  admin_acl: { desc: '用户权限管理 (/user *)' },
+};
+
+const ROLE_DEFAULT_ACTIONS = {
+  admin:   Object.keys(ACTION_GROUPS),       // 全部权限
+  member:  ['query'],                         // 默认只能问答
+  stranger: [],                               // 无系统权限，但允许基础问答由 askClaude readOnly 处理
+};
+
+// 不可赋予 member 的 admin 专属 action
+const ADMIN_ONLY_ACTIONS = new Set(['system', 'agent', 'config', 'admin_acl']);
+
+// ─── 核心 API ─────────────────────────────────────────────────────────────────
+
+/**
+ * 根据 senderId 解析用户上下文
+ * @param {string|null} senderId  飞书 open_id
+ * @param {object} config         daemon 配置（兼容旧 operator_ids）
+ * @returns {object} userCtx { senderId, role, name, allowedActions, can(action) }
+ */
+function resolveUserCtx(senderId, config) {
+  const userData = loadUsers();
+
+  let role, name, allowedActions;
+
+  if (!senderId) {
+    // 无 ID（Telegram 等）— 兼容旧逻辑，视为 admin
+    role = 'admin';
+    name = 'unknown';
+    allowedActions = ROLE_DEFAULT_ACTIONS.admin;
+  } else {
+    const userInfo = (userData.users || {})[senderId];
+
+    if (userInfo) {
+      role = userInfo.role || 'member';
+      name = userInfo.name || senderId.slice(-6);
+      if (role === 'admin') {
+        allowedActions = ROLE_DEFAULT_ACTIONS.admin;
+      } else if (role === 'member') {
+        // member 的 allowed_actions = 默认 member 权限 ∪ 配置的扩展权限（过滤 admin-only）
+        const extra = (userInfo.allowed_actions || []).filter(a => !ADMIN_ONLY_ACTIONS.has(a));
+        allowedActions = [...new Set([...ROLE_DEFAULT_ACTIONS.member, ...extra])];
+      } else {
+        allowedActions = [];
+      }
+    } else {
+      // 兼容旧 operator_ids：若 senderId 在 operator_ids 中，视为 admin
+      const operatorIds = (config && config.feishu && config.feishu.operator_ids) || [];
+      if (operatorIds.includes(senderId)) {
+        role = 'admin';
+        name = senderId.slice(-6);
+        allowedActions = ROLE_DEFAULT_ACTIONS.admin;
+      } else {
+        role = userData.default_role || 'stranger';
+        name = senderId.slice(-6);
+        allowedActions = ROLE_DEFAULT_ACTIONS[role] || [];
+      }
+    }
+  }
+
+  return {
+    senderId,
+    role,
+    name,
+    allowedActions,
+    isAdmin: role === 'admin',
+    isMember: role === 'member',
+    isStranger: role === 'stranger',
+    can(action) { return allowedActions.includes(action); },
+    readOnly: role !== 'admin',
+  };
+}
+
+// 所有人（包括 stranger）均可使用的公开命令，集中维护
+const PUBLIC_COMMANDS = ['/myid', '/chatid', '/user whoami'];
+
+/**
+ * 判断命令文本对应的 action 类型
+ */
+function classifyCommandAction(text) {
+  if (!text) return 'query';
+  const t = text.trim().toLowerCase();
+  if (t.startsWith('/sh ') || t.startsWith('/mac ') || t.startsWith('/fix') || t.startsWith('/reset') || t.startsWith('/doctor')) return 'system';
+  // /run 执行任务，副作用等级与 system 相同，不应归入 status
+  if (t.startsWith('/run ') || t.startsWith('/run\n')) return 'system';
+  if (t.startsWith('/agent ') || t.startsWith('/dispatch')) return 'agent';
+  if (t.startsWith('/model') || t.startsWith('/reload') || t.startsWith('/budget')) return 'config';
+  if (t.startsWith('/user ')) return 'admin_acl';
+  if (t.startsWith('/status') || t.startsWith('/tasks')) return 'status';
+  if (t.startsWith('/')) return 'system'; // 未知 slash 命令默认需要 system 权限
+  return 'query';
+}
+
+// ─── /user 管理命令处理 ───────────────────────────────────────────────────────
+
+/**
+ * 处理 /user 系列命令（仅 admin 可调用）
+ * 返回 { handled: boolean, reply: string }
+ */
+function handleUserCommand(text, userCtx) {
+  if (!text || !text.startsWith('/user')) return { handled: false };
+
+  const args = text.trim().split(/\s+/);
+  // args[0] = '/user', args[1] = subcommand
+
+  const sub = args[1];
+
+  if (!sub || sub === 'help') {
+    return {
+      handled: true,
+      reply: `**用户权限管理**\n\n` +
+        `/user list — 列出所有用户\n` +
+        `/user add <open_id> <role> [name] — 添加用户 (role: admin/member)\n` +
+        `/user role <open_id> <role> — 修改角色\n` +
+        `/user grant <open_id> <action> — 赋予 member 额外权限\n` +
+        `/user revoke <open_id> <action> — 撤销 member 权限\n` +
+        `/user remove <open_id> — 移除用户\n` +
+        `/user actions — 列出可用 action\n` +
+        `/user whoami — 查看当前身份`,
+    };
+  }
+
+  if (sub === 'whoami') {
+    return {
+      handled: true,
+      reply: `**你的身份**\n\nID: \`${userCtx.senderId || 'N/A'}\`\n角色: ${userCtx.role}\n名称: ${userCtx.name}\n权限: ${userCtx.allowedActions.join(', ') || '无'}`,
+    };
+  }
+
+  if (sub === 'actions') {
+    const lines = Object.entries(ACTION_GROUPS).map(([k, v]) => `- \`${k}\` — ${v.desc}`);
+    return { handled: true, reply: `**可用 Actions**\n\n${lines.join('\n')}` };
+  }
+
+  if (sub === 'list') {
+    const data = loadUsers();
+    const users = Object.entries(data.users || {});
+    if (!users.length) return { handled: true, reply: '暂无用户配置（仅依赖 operator_ids）' };
+    const lines = users.map(([uid, info]) => {
+      const actions = info.allowed_actions ? ` | ${info.allowed_actions.join(',')}` : '';
+      return `- \`${uid}\` [${info.role}] ${info.name || ''}${actions}`;
+    });
+    return { handled: true, reply: `**用户列表** (default: ${data.default_role || 'stranger'})\n\n${lines.join('\n')}` };
+  }
+
+  // [S1] 破坏性子命令内部守卫（防止外部绕过调用方校验）
+  const ADMIN_REQUIRED_SUBS = new Set(['add', 'role', 'grant', 'revoke', 'remove']);
+  if (ADMIN_REQUIRED_SUBS.has(sub) && !userCtx.isAdmin) {
+    return { handled: true, reply: '⚠️ 此操作需要 admin 权限，请联系管理员。' };
+  }
+
+  if (sub === 'add') {
+    // /user add <open_id> <role> [name...]
+    const [, , , uid, role, ...nameParts] = args;
+    if (!uid || !role) return { handled: true, reply: '用法: /user add <open_id> <role> [name]' };
+    // [S2] open_id 格式校验
+    if (!isValidOpenId(uid)) return { handled: true, reply: '❌ open_id 格式不合法（应为 10-64 位字母数字下划线）' };
+    if (!['admin', 'member', 'stranger'].includes(role)) {
+      return { handled: true, reply: '角色必须是 admin / member / stranger' };
+    }
+    const data = loadUsers();
+    data.users = data.users || {};
+    data.users[uid] = { role, name: nameParts.join(' ') || uid.slice(-6) };
+    saveUsers(data);
+    return { handled: true, reply: `✅ 已添加用户 \`${uid}\` → ${role}` };
+  }
+
+  if (sub === 'role') {
+    const [, , , uid, role] = args;
+    if (!uid || !role) return { handled: true, reply: '用法: /user role <open_id> <role>' };
+    if (!isValidOpenId(uid)) return { handled: true, reply: '❌ open_id 格式不合法' };
+    if (!['admin', 'member', 'stranger'].includes(role)) {
+      return { handled: true, reply: '角色必须是 admin / member / stranger' };
+    }
+    const data = loadUsers();
+    data.users = data.users || {};
+    if (!data.users[uid]) data.users[uid] = {};
+    data.users[uid].role = role;
+    saveUsers(data);
+    return { handled: true, reply: `✅ 用户 \`${uid}\` 角色已更新为 ${role}` };
+  }
+
+  if (sub === 'grant') {
+    const [, , , uid, action] = args;
+    if (!uid || !action) return { handled: true, reply: '用法: /user grant <open_id> <action>' };
+    if (!isValidOpenId(uid)) return { handled: true, reply: '❌ open_id 格式不合法' };
+    if (ADMIN_ONLY_ACTIONS.has(action)) {
+      return { handled: true, reply: `❌ \`${action}\` 是 admin 专属权限，不可赋予 member` };
+    }
+    if (!ACTION_GROUPS[action]) {
+      return { handled: true, reply: `❌ 未知 action: ${action}，用 /user actions 查看可用列表` };
+    }
+    const data = loadUsers();
+    data.users = data.users || {};
+    if (!data.users[uid]) data.users[uid] = { role: 'member' };
+    const existing = data.users[uid].allowed_actions || [];
+    if (!existing.includes(action)) {
+      data.users[uid].allowed_actions = [...existing, action];
+      saveUsers(data);
+    }
+    return { handled: true, reply: `✅ 已授权 \`${uid}\` → ${action}` };
+  }
+
+  if (sub === 'revoke') {
+    const [, , , uid, action] = args;
+    if (!uid || !action) return { handled: true, reply: '用法: /user revoke <open_id> <action>' };
+    if (!isValidOpenId(uid)) return { handled: true, reply: '❌ open_id 格式不合法' };
+    const data = loadUsers();
+    const userInfo = (data.users || {})[uid];
+    if (!userInfo) return { handled: true, reply: `❌ 未找到用户 \`${uid}\`` };
+    userInfo.allowed_actions = (userInfo.allowed_actions || []).filter(a => a !== action);
+    saveUsers(data);
+    return { handled: true, reply: `✅ 已撤销 \`${uid}\` 的 ${action} 权限` };
+  }
+
+  if (sub === 'remove') {
+    const [, , , uid] = args;
+    if (!uid) return { handled: true, reply: '用法: /user remove <open_id>' };
+    if (!isValidOpenId(uid)) return { handled: true, reply: '❌ open_id 格式不合法' };
+    const data = loadUsers();
+    delete (data.users || {})[uid];
+    saveUsers(data);
+    return { handled: true, reply: `✅ 已移除用户 \`${uid}\`` };
+  }
+
+  return { handled: true, reply: `未知子命令: ${sub}，用 /user help 查看帮助` };
+}
+
+module.exports = {
+  resolveUserCtx,
+  classifyCommandAction,
+  handleUserCommand,
+  loadUsers,
+  saveUsers,
+  ACTION_GROUPS,
+  PUBLIC_COMMANDS,
+};

package/scripts/daemon.js

@@ -1218,6 +1218,7 @@ const {
   getSessionFileMtime,
   sessionLabel,
   sessionRichLabel,
+  getSessionRecentContext,
   buildSessionCardElements,
   listProjectDirs,
   getSession,
@@ -1225,6 +1226,7 @@ const {
   getSessionName,
   writeSessionName,
   markSessionStarted,
+  watchSessionFiles,
 } = createSessionStore({
   fs,
   path,
@@ -1236,6 +1238,8 @@ const {
   cpExtractTimestamp,
 });
 
+watchSessionFiles(); // 热加载：手机端新建 session 后桌面无需重启
+
 // Active Claude processes per chat (for /stop)
 const activeProcesses = new Map(); // chatId -> { child, aborted }
 
@@ -1485,6 +1489,7 @@ const { handleAgentCommand } = createAgentCommandHandler({
   sessionLabel,
   loadSessionTags,
   sessionRichLabel,
+  getSessionRecentContext,
   pendingBinds,
   pendingAgentFlows,
   doBindAgent,