moltbot-termux 2026.1.28-3-pre → 2026.1.28-4

package/CHANGELOG.md

@@ -66,11 +66,14 @@ Status: beta.
 - Slack: clear ack reaction after streamed replies. (#2044) Thanks @fancyboi999.
 - macOS: keep custom SSH usernames in remote target. (#2046) Thanks @algal.
 - CLI: use Node's module compile cache for faster startup. (#2808) Thanks @pi0.
+- Routing: add per-account DM session scope and document multi-account isolation. (#3095) Thanks @jarvis-sam.
 
 ### Breaking
 - **BREAKING:** Gateway auth mode "none" is removed; gateway now requires token/password (Tailscale Serve identity still allowed).
 
 ### Fixes
+- Discord: restore username directory lookup in target resolution. (#3131) Thanks @bonald.
+- Agents: align MiniMax base URL test expectation with default provider config. (#3131) Thanks @bonald.
 - Agents: prevent retries on oversized image errors and surface size limits. (#2871) Thanks @Suksham-sharma.
 - Agents: inherit provider baseUrl/api for inline models. (#2740) Thanks @lploc94.
 - Memory Search: keep auto provider model defaults and only include remote when configured. (#2576) Thanks @papago2355.
@@ -78,6 +81,7 @@ Status: beta.
 - Web UI: auto-expand the chat compose textarea while typing (with sensible max height). (#2950) Thanks @shivamraut101.
 - Gateway: prevent crashes on transient network errors (fetch failures, timeouts, DNS). Added fatal error detection to only exit on truly critical errors. Fixes #2895, #2879, #2873. (#2980) Thanks @elliotsecops.
 - Agents: guard channel tool listActions to avoid plugin crashes. (#2859) Thanks @mbelinky.
+- Discord: stop resolveDiscordTarget from passing directory params into messaging target parsers. Fixes #3167. Thanks @thewilloftheshadow.
 - Discord: avoid resolving bare channel names to user DMs when a username matches. Thanks @thewilloftheshadow.
 - Discord: fix directory config type import for target resolution. Thanks @thewilloftheshadow.
 - Providers: update MiniMax API endpoint and compatibility mode. (#3064) Thanks @hlbbbbbbb.

package/README.md

@@ -46,18 +46,67 @@ Model note: while any model is supported, I strongly recommend **Anthropic Pro/M
 
 ## Install (recommended)
 
+**Using install script:**
+```bash
+curl -s https://explysm.github.io/moltbot-termux/install.sh | sh
+```
+This script handles:
+- Node 22
+- npm
+- pnpm
+- moltbot-termux
+- Clipboard fix
+
+**Using NPM: (Not recommended, requires manual clipboard fix)**
+
 Runtime: **Node ≥22**.
 
 ```bash
 npm install -g moltbot-termux
 # or: pnpm add -g moltbot-termux
 
-moltbot onboard --install-daemon
+moltbot onboard
+```
+Gateway daemon installation does not work on Termux, but you can run it manually:
+```bash
+moltbot gateway --port 18789 --verbose
 ```
-
-The wizard installs the Gateway daemon (launchd/systemd user service) so it stays running.
 Legacy note: `clawdbot` remains available as a compatibility shim.
 
+**Clipboard fix:**
+Save this as fix.sh
+```bash
+#!/bin/bash
+
+CLIPBOARD_FIX_PATH=$(find "$HOME/.local/share/pnpm/global" -name "index.js" -path "*/@mariozechner/clipboard/*" | head -n 1)
+
+if [ -n "$CLIPBOARD_FIX_PATH" ]; then
+    echo "Found clipboard package at: $CLIPBOARD_FIX_PATH"
+    cat > "$CLIPBOARD_FIX_PATH" <<EOF
+module.exports = {
+  availableFormats: () => [],
+  getText: () => "",
+  setText: () => {},
+  hasText: () => false,
+  getImageBinary: () => null,
+  getImageBase64: () => null,
+  setImageBinary: () => {},
+  setImageBase64: () => {},
+  hasImage: () => false,
+  getHtml: () => "",
+  setHtml: () => {},
+  hasHtml: () => false,
+  getRtf: () => "",
+  setRtf: () => {},
+  hasRtf: () => false,
+  clear: () => {},
+  watch: () => {},
+  callThreadsafeFunction: () => {}
+};
+EOF
+    echo "Clipboard fix applied successfully."
+```
+
 ## Quick start (TL;DR)
 
 Runtime: **Node ≥22**.
@@ -65,7 +114,7 @@ Runtime: **Node ≥22**.
 Full beginner guide (auth, pairing, channels): [Getting started](https://docs.molt.bot/start/getting-started)
 
 ```bash
-moltbot onboard --install-daemon
+moltbot onboard
 
 moltbot gateway --port 18789 --verbose
 

package/dist/build-info.json

@@ -1,5 +1,5 @@
 {
-  "version": "2026.1.28-3-pre",
-  "commit": "ea53cbc3cebd63f309cc698a7de6d7c1c83d8811",
-  "builtAt": "2026-01-28T06:43:23.890Z"
+  "version": "2026.1.28-4",
+  "commit": "4f4d75e0629a9c68ecc0126e7062b200c071bfdd",
+  "builtAt": "2026-01-29T02:53:50.946Z"
 }

package/dist/canvas-host/a2ui/.bundle.hash

@@ -1 +1 @@
-6a6fa582e97f163cdac952fc1a2babb57bb4c2c08e0e59160d86e03ea11b5a5c
+1ebedd0b9b5770fc0a27d08fa3c730f4c5746893745477e92468598a63777554

package/dist/cli/banner.js

@@ -52,6 +52,7 @@ const LOBSTER_ASCII = [
     "██░███░██░▀▀▀░██░▀▀░███░████░▀▀░██░▀▀▀░███░████",
     "▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀",
     "               🦞 FRESH DAILY 🦞               ",
+    " ",
 ];
 export function formatCliBannerArt(options = {}) {
     const rich = options.richTty ?? isRich();

package/dist/cli/program/register.subclis.js

@@ -156,6 +156,11 @@ const entries = [
         name: "pairing",
         description: "Pairing helpers",
         register: async (program) => {
+            // Initialize plugins before registering pairing CLI.
+            // The pairing CLI calls listPairingChannels() at registration time,
+            // which requires the plugin registry to be populated with channel plugins.
+            const { registerPluginCliCommands } = await import("../../plugins/cli.js");
+            registerPluginCliCommands(program, await loadConfig());
             const mod = await import("../pairing-cli.js");
             mod.registerPairingCli(program);
         },

package/dist/commands/doctor-security.js

@@ -87,7 +87,7 @@ export async function noteSecurityWarnings(cfg) {
             warnings.push(`  ${params.approveHint}`);
         }
         if (dmScope === "main" && isMultiUserDm) {
-            warnings.push(`- ${params.label} DMs: multiple senders share the main session; set session.dmScope="per-channel-peer" to isolate sessions.`);
+            warnings.push(`- ${params.label} DMs: multiple senders share the main session; set session.dmScope="per-channel-peer" (or "per-account-channel-peer" for multi-account channels) to isolate sessions.`);
         }
     };
     for (const plugin of listChannelPlugins()) {

package/dist/commands/onboard-channels.js

@@ -125,7 +125,7 @@ async function noteChannelPrimer(prompter, channels) {
         "DM security: default is pairing; unknown DMs get a pairing code.",
         `Approve with: ${formatCliCommand("moltbot pairing approve <channel> <code>")}`,
         'Public DMs require dmPolicy="open" + allowFrom=["*"].',
-        'Multi-user DMs: set session.dmScope="per-channel-peer" to isolate sessions.',
+        'Multi-user DMs: set session.dmScope="per-channel-peer" (or "per-account-channel-peer" for multi-account channels) to isolate sessions.',
         `Docs: ${formatDocsLink("/start/pairing", "start/pairing")}`,
         "",
         ...channelLines,
@@ -162,7 +162,7 @@ async function maybeConfigureDmPolicies(params) {
             `Approve: ${formatCliCommand(`moltbot pairing approve ${policy.channel} <code>`)}`,
             `Allowlist DMs: ${policy.policyKey}="allowlist" + ${policy.allowFromKey} entries.`,
             `Public DMs: ${policy.policyKey}="open" + ${policy.allowFromKey} includes "*".`,
-            'Multi-user DMs: set session.dmScope="per-channel-peer" to isolate sessions.',
+            'Multi-user DMs: set session.dmScope="per-channel-peer" (or "per-account-channel-peer" for multi-account channels) to isolate sessions.',
             `Docs: ${formatDocsLink("/start/pairing", "start/pairing")}`,
         ].join("\n"), `${policy.label} DM access`);
         return (await prompter.select({

package/dist/commands/onboard-helpers.js

@@ -58,7 +58,8 @@ export function printWizardHeader(runtime) {
         "██░█░█░██░███░██░██████░████░▄▄▀██░███░███░████",
         "██░███░██░▀▀▀░██░▀▀░███░████░▀▀░██░▀▀▀░███░████",
         "▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀",
-        "               🦞 FRESH DAILY 🦞               ",
+        "               🦞 FRESH DAILY 🦞                ",
+        " ",
     ].join("\n");
     runtime.log(header);
 }

package/dist/config/schema.js

@@ -460,7 +460,7 @@ const FIELD_HELP = {
     "commands.debug": "Allow /debug chat command for runtime-only overrides (default: false).",
     "commands.restart": "Allow /restart and gateway restart tool actions (default: false).",
     "commands.useAccessGroups": "Enforce access-group allowlists/policies for commands.",
-    "session.dmScope": 'DM session scoping: "main" keeps continuity; "per-peer" or "per-channel-peer" isolates DM history (recommended for shared inboxes).',
+    "session.dmScope": 'DM session scoping: "main" keeps continuity; "per-peer", "per-channel-peer", or "per-account-channel-peer" isolates DM history (recommended for shared inboxes/multi-account).',
     "session.identityLinks": "Map canonical identities to provider-prefixed peer IDs for DM session linking (example: telegram:123456).",
     "channels.telegram.configWrites": "Allow Telegram to write config in response to channel events/commands (default: true).",
     "channels.slack.configWrites": "Allow Slack to write config in response to channel events/commands (default: true).",

package/dist/config/zod-schema.session.js

@@ -11,7 +11,12 @@ export const SessionSchema = z
     .object({
     scope: z.union([z.literal("per-sender"), z.literal("global")]).optional(),
     dmScope: z
-        .union([z.literal("main"), z.literal("per-peer"), z.literal("per-channel-peer")])
+        .union([
+        z.literal("main"),
+        z.literal("per-peer"),
+        z.literal("per-channel-peer"),
+        z.literal("per-account-channel-peer"),
+    ])
         .optional(),
     identityLinks: z.record(z.string(), z.array(z.string())).optional(),
     resetTriggers: z.array(z.string()).optional(),

package/dist/discord/send.shared.js

@@ -81,17 +81,19 @@ export async function parseAndResolveRecipient(raw, accountId) {
     const cfg = loadConfig();
     const accountInfo = resolveDiscordAccount({ cfg, accountId });
     // First try to resolve using directory lookup (handles usernames)
+    const trimmed = raw.trim();
+    const parseOptions = {
+        ambiguousMessage: `Ambiguous Discord recipient "${trimmed}". Use "user:${trimmed}" for DMs or "channel:${trimmed}" for channel messages.`,
+    };
     const resolved = await resolveDiscordTarget(raw, {
         cfg,
         accountId: accountInfo.accountId,
-    });
+    }, parseOptions);
     if (resolved) {
         return { kind: resolved.kind, id: resolved.id };
     }
     // Fallback to standard parsing (for channels, etc.)
-    const parsed = parseDiscordTarget(raw, {
-        ambiguousMessage: `Ambiguous Discord recipient "${raw.trim()}". Use "user:${raw.trim()}" for DMs or "channel:${raw.trim()}" for channel messages.`,
-    });
+    const parsed = parseDiscordTarget(raw, parseOptions);
     if (!parsed) {
         throw new Error("Recipient is required for Discord sends");
     }

package/dist/discord/targets.js

@@ -48,16 +48,17 @@ export function resolveDiscordChannelId(raw) {
  *
  * @param raw - The username or raw target string (e.g., "john.doe")
  * @param options - Directory configuration params (cfg, accountId, limit)
- * @param parseOptions - Optional parsing options (defaultKind, ambiguousMessage)
+ * @param parseOptions - Messaging target parsing options (defaults, ambiguity message)
  * @returns Parsed MessagingTarget with user ID, or undefined if not found
  */
 export async function resolveDiscordTarget(raw, options, parseOptions = {}) {
     const trimmed = raw.trim();
     if (!trimmed)
         return undefined;
-    const shouldLookup = isExplicitUserLookup(trimmed, parseOptions);
+    const likelyUsername = isLikelyUsername(trimmed);
+    const shouldLookup = isExplicitUserLookup(trimmed, parseOptions) || likelyUsername;
     const directParse = safeParseDiscordTarget(trimmed, parseOptions);
-    if (directParse && directParse.kind !== "channel") {
+    if (directParse && directParse.kind !== "channel" && !likelyUsername) {
         return directParse;
     }
     if (!shouldLookup) {
@@ -77,7 +78,7 @@ export async function resolveDiscordTarget(raw, options, parseOptions = {}) {
             return buildMessagingTarget("user", userId, trimmed);
         }
     }
-    catch (error) {
+    catch {
         // Directory lookup failed - fall through to parse as-is
         // This preserves existing behavior for channel names
     }
@@ -107,3 +108,15 @@ function isExplicitUserLookup(input, options) {
     }
     return false;
 }
+/**
+ * Check if a string looks like a Discord username (not a mention, prefix, or ID).
+ * Usernames typically don't start with special characters except underscore.
+ */
+function isLikelyUsername(input) {
+    // Skip if it's already a known format
+    if (/^(user:|channel:|discord:|@|<@!?)|[\d]+$/.test(input)) {
+        return false;
+    }
+    // Likely a username if it doesn't match known patterns
+    return true;
+}

package/dist/hooks/bundled/session-memory/HOOK.md

@@ -23,7 +23,7 @@ Automatically saves session context to your workspace memory when you issue the
 When you run `/new` to start a fresh session:
 
 1. **Finds the previous session** - Uses the pre-reset session entry to locate the correct transcript
-2. **Extracts conversation** - Reads the last 15 lines of conversation from the session
+2. **Extracts conversation** - Reads the last N user/assistant messages from the session (default: 15, configurable)
 3. **Generates descriptive slug** - Uses LLM to create a meaningful filename slug based on conversation content
 4. **Saves to memory** - Creates a new file at `<workspace>/memory/YYYY-MM-DD-slug.md`
 5. **Sends confirmation** - Notifies you with the file path
@@ -57,7 +57,30 @@ The hook uses your configured LLM provider to generate slugs, so it works with a
 
 ## Configuration
 
-No additional configuration required. The hook automatically:
+The hook supports optional configuration:
+
+| Option     | Type   | Default | Description                                                     |
+| ---------- | ------ | ------- | --------------------------------------------------------------- |
+| `messages` | number | 15      | Number of user/assistant messages to include in the memory file |
+
+Example configuration:
+
+```json
+{
+  "hooks": {
+    "internal": {
+      "entries": {
+        "session-memory": {
+          "enabled": true,
+          "messages": 25
+        }
+      }
+    }
+  }
+}
+```
+
+The hook automatically:
 
 - Uses your workspace directory (`~/clawd` by default)
 - Uses your configured LLM for slug generation

package/dist/hooks/bundled/session-memory/handler.js

@@ -7,20 +7,20 @@
 import fs from "node:fs/promises";
 import path from "node:path";
 import os from "node:os";
+import { fileURLToPath } from "node:url";
 import { resolveAgentWorkspaceDir } from "../../../agents/agent-scope.js";
 import { resolveAgentIdFromSessionKey } from "../../../routing/session-key.js";
+import { resolveHookConfig } from "../../config.js";
 /**
  * Read recent messages from session file for slug generation
  */
-async function getRecentSessionContent(sessionFilePath) {
+async function getRecentSessionContent(sessionFilePath, messageCount = 15) {
     try {
         const content = await fs.readFile(sessionFilePath, "utf-8");
         const lines = content.trim().split("\n");
-        // Get last 15 lines (recent conversation)
-        const recentLines = lines.slice(-15);
-        // Parse JSONL and extract messages
-        const messages = [];
-        for (const line of recentLines) {
+        // Parse JSONL and extract user/assistant messages first
+        const allMessages = [];
+        for (const line of lines) {
             try {
                 const entry = JSON.parse(line);
                 // Session files have entries with type="message" containing a nested message object
@@ -33,7 +33,7 @@ async function getRecentSessionContent(sessionFilePath) {
                             ? msg.content.find((c) => c.type === "text")?.text
                             : msg.content;
                         if (text && !text.startsWith("/")) {
-                            messages.push(`${role}: ${text}`);
+                            allMessages.push(`${role}: ${text}`);
                         }
                     }
                 }
@@ -42,7 +42,9 @@ async function getRecentSessionContent(sessionFilePath) {
                 // Skip invalid JSON lines
             }
         }
-        return messages.join("\n");
+        // Then slice to get exactly messageCount messages
+        const recentMessages = allMessages.slice(-messageCount);
+        return recentMessages.join("\n");
     }
     catch {
         return null;
@@ -77,18 +79,23 @@ const saveSessionToMemory = async (event) => {
         console.log("[session-memory] Current sessionFile:", currentSessionFile);
         console.log("[session-memory] cfg present:", !!cfg);
         const sessionFile = currentSessionFile || undefined;
+        // Read message count from hook config (default: 15)
+        const hookConfig = resolveHookConfig(cfg, "session-memory");
+        const messageCount = typeof hookConfig?.messages === "number" && hookConfig.messages > 0
+            ? hookConfig.messages
+            : 15;
         let slug = null;
         let sessionContent = null;
         if (sessionFile) {
             // Get recent conversation content
-            sessionContent = await getRecentSessionContent(sessionFile);
+            sessionContent = await getRecentSessionContent(sessionFile, messageCount);
             console.log("[session-memory] sessionContent length:", sessionContent?.length || 0);
             if (sessionContent && cfg) {
                 console.log("[session-memory] Calling generateSlugViaLLM...");
                 // Dynamically import the LLM slug generator (avoids module caching issues)
                 // When compiled, handler is at dist/hooks/bundled/session-memory/handler.js
                 // Going up ../.. puts us at dist/hooks/, so just add llm-slug-generator.js
-                const moltbotRoot = path.resolve(path.dirname(import.meta.url.replace("file://", "")), "../..");
+                const moltbotRoot = path.resolve(path.dirname(fileURLToPath(import.meta.url)), "../..");
                 const slugGenPath = path.join(moltbotRoot, "llm-slug-generator.js");
                 const { generateSlugViaLLM } = await import(slugGenPath);
                 // Use LLM to generate a descriptive slug

package/dist/infra/outbound/outbound-session.js

@@ -68,6 +68,7 @@ function buildBaseSessionKey(params) {
     return buildAgentSessionKey({
         agentId: params.agentId,
         channel: params.channel,
+        accountId: params.accountId,
         peer: params.peer,
         dmScope: params.cfg.session?.dmScope ?? "main",
         identityLinks: params.cfg.session?.identityLinks,
@@ -147,6 +148,7 @@ async function resolveSlackSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "slack",
+        accountId: params.accountId,
         peer,
     });
     const threadId = normalizeThreadId(params.threadId ?? params.replyToId);
@@ -181,6 +183,7 @@ function resolveDiscordSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "discord",
+        accountId: params.accountId,
         peer,
     });
     const explicitThreadId = normalizeThreadId(params.threadId);
@@ -225,6 +228,7 @@ function resolveTelegramSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "telegram",
+        accountId: params.accountId,
         peer,
     });
     return {
@@ -250,6 +254,7 @@ function resolveWhatsAppSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "whatsapp",
+        accountId: params.accountId,
         peer,
     });
     return {
@@ -273,6 +278,7 @@ function resolveSignalSession(params) {
             cfg: params.cfg,
             agentId: params.agentId,
             channel: "signal",
+            accountId: params.accountId,
             peer,
         });
         return {
@@ -307,6 +313,7 @@ function resolveSignalSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "signal",
+        accountId: params.accountId,
         peer,
     });
     return {
@@ -329,6 +336,7 @@ function resolveIMessageSession(params) {
             cfg: params.cfg,
             agentId: params.agentId,
             channel: "imessage",
+            accountId: params.accountId,
             peer,
         });
         return {
@@ -352,6 +360,7 @@ function resolveIMessageSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "imessage",
+        accountId: params.accountId,
         peer,
     });
     const toPrefix = parsed.kind === "chat_id"
@@ -379,6 +388,7 @@ function resolveMatrixSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "matrix",
+        accountId: params.accountId,
         peer,
     });
     return {
@@ -410,6 +420,7 @@ function resolveMSTeamsSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "msteams",
+        accountId: params.accountId,
         peer,
     });
     return {
@@ -443,6 +454,7 @@ function resolveMattermostSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "mattermost",
+        accountId: params.accountId,
         peer,
     });
     const threadId = normalizeThreadId(params.replyToId ?? params.threadId);
@@ -484,6 +496,7 @@ function resolveBlueBubblesSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "bluebubbles",
+        accountId: params.accountId,
         peer,
     });
     return {
@@ -508,6 +521,7 @@ function resolveNextcloudTalkSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "nextcloud-talk",
+        accountId: params.accountId,
         peer,
     });
     return {
@@ -532,6 +546,7 @@ function resolveZaloSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "zalo",
+        accountId: params.accountId,
         peer,
     });
     return {
@@ -557,6 +572,7 @@ function resolveZalouserSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "zalouser",
+        accountId: params.accountId,
         peer,
     });
     return {
@@ -577,6 +593,7 @@ function resolveNostrSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "nostr",
+        accountId: params.accountId,
         peer,
     });
     return {
@@ -635,6 +652,7 @@ function resolveTlonSession(params) {
         cfg: params.cfg,
         agentId: params.agentId,
         channel: "tlon",
+        accountId: params.accountId,
         peer,
     });
     return {

package/dist/media/mime.js

@@ -11,7 +11,10 @@ const EXT_BY_MIME = {
     "image/gif": ".gif",
     "audio/ogg": ".ogg",
     "audio/mpeg": ".mp3",
+    "audio/x-m4a": ".m4a",
+    "audio/mp4": ".m4a",
     "video/mp4": ".mp4",
+    "video/quicktime": ".mov",
     "application/pdf": ".pdf",
     "application/json": ".json",
     "application/zip": ".zip",

package/dist/routing/resolve-route.js

@@ -27,6 +27,7 @@ export function buildAgentSessionKey(params) {
         agentId: params.agentId,
         mainKey: DEFAULT_MAIN_KEY,
         channel,
+        accountId: params.accountId,
         peerKind: peer?.kind ?? "dm",
         peerId: peer ? normalizeId(peer.id) || "unknown" : null,
         dmScope: params.dmScope,
@@ -98,6 +99,7 @@ export function resolveAgentRoute(input) {
         const sessionKey = buildAgentSessionKey({
             agentId: resolvedAgentId,
             channel,
+            accountId,
             peer,
             dmScope,
             identityLinks,

package/dist/routing/session-key.js

@@ -99,6 +99,11 @@ export function buildAgentPeerSessionKey(params) {
         if (linkedPeerId)
             peerId = linkedPeerId;
         peerId = peerId.toLowerCase();
+        if (dmScope === "per-account-channel-peer" && peerId) {
+            const channel = (params.channel ?? "").trim().toLowerCase() || "unknown";
+            const accountId = normalizeAccountId(params.accountId);
+            return `agent:${normalizeAgentId(params.agentId)}:${channel}:${accountId}:dm:${peerId}`;
+        }
         if (dmScope === "per-channel-peer" && peerId) {
             const channel = (params.channel ?? "").trim().toLowerCase() || "unknown";
             return `agent:${normalizeAgentId(params.agentId)}:${channel}:dm:${peerId}`;

package/dist/security/audit.js

@@ -405,7 +405,7 @@ async function collectChannelSecurityFindings(params) {
                 severity: "warn",
                 title: `${input.label} DMs share the main session`,
                 detail: "Multiple DM senders currently share the main session, which can leak context across users.",
-                remediation: 'Set session.dmScope="per-channel-peer" to isolate DM sessions per sender.',
+                remediation: 'Set session.dmScope="per-channel-peer" (or "per-account-channel-peer" for multi-account channels) to isolate DM sessions per sender.',
             });
         }
     };

package/dist/web/auto-reply/monitor/broadcast.js

@@ -27,11 +27,13 @@ export async function maybeBroadcastMessage(params) {
             sessionKey: buildAgentSessionKey({
                 agentId: normalizedAgentId,
                 channel: "whatsapp",
+                accountId: params.route.accountId,
                 peer: {
                     kind: params.msg.chatType === "group" ? "group" : "dm",
                     id: params.peerId,
                 },
                 dmScope: params.cfg.session?.dmScope,
+                identityLinks: params.cfg.session?.identityLinks,
             }),
             mainSessionKey: buildAgentMainSessionKey({
                 agentId: normalizedAgentId,

package/docs/cli/security.md

@@ -20,5 +20,5 @@ moltbot security audit --deep
 moltbot security audit --fix
 ```
 
-The audit warns when multiple DM senders share the main session and recommends `session.dmScope="per-channel-peer"` for shared inboxes.
+The audit warns when multiple DM senders share the main session and recommends `session.dmScope="per-channel-peer"` (or `per-account-channel-peer` for multi-account channels) for shared inboxes.
 It also warns when small models (`<=300B`) are used without sandboxing and with web/browser tools enabled.

package/docs/concepts/session.md

@@ -11,7 +11,8 @@ Use `session.dmScope` to control how **direct messages** are grouped:
 - `main` (default): all DMs share the main session for continuity.
 - `per-peer`: isolate by sender id across channels.
 - `per-channel-peer`: isolate by channel + sender (recommended for multi-user inboxes).
-Use `session.identityLinks` to map provider-prefixed peer ids to a canonical identity so the same person shares a DM session across channels when using `per-peer` or `per-channel-peer`.
+- `per-account-channel-peer`: isolate by account + channel + sender (recommended for multi-account inboxes).
+Use `session.identityLinks` to map provider-prefixed peer ids to a canonical identity so the same person shares a DM session across channels when using `per-peer`, `per-channel-peer`, or `per-account-channel-peer`.
 
 ## Gateway is the source of truth
 All session state is **owned by the gateway** (the “master” Moltbot). UI clients (macOS app, WebChat, etc.) must query the gateway for session lists and token counts instead of reading local files.
@@ -44,6 +45,7 @@ the workspace is writable. See [Memory](/concepts/memory) and
     - Multiple phone numbers and channels can map to the same agent main key; they act as transports into one conversation.
   - `per-peer`: `agent:<agentId>:dm:<peerId>`.
   - `per-channel-peer`: `agent:<agentId>:<channel>:dm:<peerId>`.
+  - `per-account-channel-peer`: `agent:<agentId>:<channel>:<accountId>:dm:<peerId>` (accountId defaults to `default`).
   - If `session.identityLinks` matches a provider-prefixed peer id (for example `telegram:123`), the canonical key replaces `<peerId>` so the same person shares a session across channels.
 - Group chats isolate state: `agent:<agentId>:<channel>:group:<id>` (rooms/channels use `agent:<agentId>:<channel>:channel:<id>`).
   - Telegram forum topics append `:topic:<threadId>` to the group id for isolation.
@@ -94,7 +96,7 @@ Send these as standalone messages so they register.
 {
   session: {
     scope: "per-sender",      // keep group keys separate
-    dmScope: "main",          // DM continuity (set per-channel-peer for shared inboxes)
+    dmScope: "main",          // DM continuity (set per-channel-peer/per-account-channel-peer for shared inboxes)
     identityLinks: {
       alice: ["telegram:123456789", "discord:987654321012345678"]
     },

package/docs/gateway/configuration.md

@@ -2657,7 +2657,8 @@ Fields:
   - `main`: all DMs share the main session for continuity.
   - `per-peer`: isolate DMs by sender id across channels.
   - `per-channel-peer`: isolate DMs per channel + sender (recommended for multi-user inboxes).
-- `identityLinks`: map canonical ids to provider-prefixed peers so the same person shares a DM session across channels when using `per-peer` or `per-channel-peer`.
+  - `per-account-channel-peer`: isolate DMs per account + channel + sender (recommended for multi-account inboxes).
+- `identityLinks`: map canonical ids to provider-prefixed peers so the same person shares a DM session across channels when using `per-peer`, `per-channel-peer`, or `per-account-channel-peer`.
   - Example: `alice: ["telegram:123456789", "discord:987654321012345678"]`.
 - `reset`: primary reset policy. Defaults to daily resets at 4:00 AM local time on the gateway host.
   - `mode`: `daily` or `idle` (default: `daily` when `reset` is present).

package/docs/gateway/security/index.md

@@ -199,7 +199,7 @@ By default, Moltbot routes **all DMs into the main session** so your assistant h
 }
 ```
 
-This prevents cross-user context leakage while keeping group chats isolated. If the same person contacts you on multiple channels, use `session.identityLinks` to collapse those DM sessions into one canonical identity. See [Session Management](/concepts/session) and [Configuration](/gateway/configuration).
+This prevents cross-user context leakage while keeping group chats isolated. If you run multiple accounts on the same channel, use `per-account-channel-peer` instead. If the same person contacts you on multiple channels, use `session.identityLinks` to collapse those DM sessions into one canonical identity. See [Session Management](/concepts/session) and [Configuration](/gateway/configuration).
 
 ## Allowlists (DM + groups) — terminology
 

package/docs/index.html

@@ -0,0 +1 @@
+molt for termux.

package/docs/install.sh

@@ -0,0 +1,69 @@
+#!/bin/bash
+set -e
+
+echo "Updating packages..."
+pkg update -y && pkg upgrade -y
+
+echo "Installing Node.js (LTS)..."
+pkg install nodejs-lts -y
+
+if ! command -v pnpm &> /dev/null; then
+    echo "Installing pnpm via npm..."
+    npm install -g pnpm
+
+    echo "Setting up pnpm..."
+    pnpm setup
+else
+    echo "pnpm is already installed, skipping installation."
+fi
+
+# Reload PATH for current session
+export PNPM_HOME="$HOME/.local/share/pnpm"
+case ":$PATH:" in
+  *":$PNPM_HOME:"*) ;;
+  *) export PATH="$PNPM_HOME:$PATH" ;;
+esac
+
+echo "Installing moltbot-termux globally..."
+pnpm add -g moltbot-termux
+
+echo "Applying Termux clipboard fix to pnpm store..."
+
+# Find the clipboard package index.js in the pnpm global store.
+# This searches for the specific file we need to stub out.
+CLIPBOARD_FIX_PATH=$(find "$HOME/.local/share/pnpm/global" -name "index.js" -path "*/@mariozechner/clipboard/*" | head -n 1)
+
+if [ -n "$CLIPBOARD_FIX_PATH" ]; then
+    echo "Found clipboard package at: $CLIPBOARD_FIX_PATH"
+    cat > "$CLIPBOARD_FIX_PATH" <<EOF
+module.exports = {
+  availableFormats: () => [],
+  getText: () => "",
+  setText: () => {},
+  hasText: () => false,
+  getImageBinary: () => null,
+  getImageBase64: () => null,
+  setImageBinary: () => {},
+  setImageBase64: () => {},
+  hasImage: () => false,
+  getHtml: () => "",
+  setHtml: () => {},
+  hasHtml: () => false,
+  getRtf: () => "",
+  setRtf: () => {},
+  hasRtf: () => false,
+  clear: () => {},
+  watch: () => {},
+  callThreadsafeFunction: () => {}
+};
+EOF
+    echo "Clipboard fix applied successfully."
+else
+    echo "Warning: Could not automatically locate @mariozechner/clipboard in the pnpm store."
+    echo "You may need to apply the fix manually if you see native binding errors."
+fi
+
+echo ""
+echo "Installation complete!"
+echo "Please restart your terminal or run: source ~/.bashrc (or your shell config)"
+echo "Then run 'moltbot onboard' to get started."

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "moltbot-termux",
-  "version": "2026.1.28-3-pre",
+  "version": "2026.1.28-4",
   "description": "WhatsApp gateway CLI (Baileys web) with Pi RPC agent",
   "type": "module",
   "main": "dist/index.js",

package/skills/bitwarden/SKILL.md

@@ -1,101 +0,0 @@
----
-name: bitwarden
-description: Manage passwords and credentials via Bitwarden CLI (bw). Use for storing, retrieving, creating, or updating logins, credit cards, secure notes, and identities. Trigger when automating authentication, filling payment forms, or managing secrets programmatically.
----
-
-# Bitwarden CLI
-
-Full read/write vault access via `bw` command.
-
-## Prerequisites
-
-```bash
-brew install bitwarden-cli
-bw login <email>  # one-time, prompts for master password
-```
-
-## Session Management
-
-Bitwarden requires an unlocked session. Use the helper script:
-
-```bash
-source scripts/bw-session.sh <master_password>
-# Sets BW_SESSION env var
-```
-
-Or manually:
-```bash
-export BW_SESSION=$(echo '<password>' | bw unlock --raw)
-bw sync  # always sync after unlock
-```
-
-## Common Operations
-
-### Retrieve credentials
-```bash
-bw get password "Site Name"
-bw get username "Site Name"
-bw get item "Site Name" --pretty | jq '.login'
-```
-
-### Create login
-```bash
-bw get template item | jq '
-  .type = 1 |
-  .name = "Site Name" |
-  .login.username = "user@email.com" |
-  .login.password = "secret123" |
-  .login.uris = [{uri: "https://example.com"}]
-' | bw encode | bw create item
-```
-
-### Create credit card
-```bash
-bw get template item | jq '
-  .type = 3 |
-  .name = "Card Name" |
-  .card.cardholderName = "John Doe" |
-  .card.brand = "Visa" |
-  .card.number = "4111111111111111" |
-  .card.expMonth = "12" |
-  .card.expYear = "2030" |
-  .card.code = "123"
-' | bw encode | bw create item
-```
-
-### Get card for payment automation
-```bash
-bw get item "Card Name" | jq -r '.card | "\(.number) \(.expMonth)/\(.expYear) \(.code)"'
-```
-
-### List items
-```bash
-bw list items | jq -r '.[] | "\(.type)|\(.name)"'
-# Types: 1=login, 2=note, 3=card, 4=identity
-```
-
-### Search
-```bash
-bw list items --search "vilaviniteca" | jq '.[0]'
-```
-
-## Item Types
-
-| Type | Value | Use |
-|------|-------|-----|
-| Login | 1 | Website credentials |
-| Secure Note | 2 | Freeform text |
-| Card | 3 | Credit/debit cards |
-| Identity | 4 | Personal info |
-
-## References
-
-- [templates.md](references/templates.md) — Full jq templates for all item types
-- [Bitwarden CLI docs](https://bitwarden.com/help/cli/)
-
-## Tips
-
-1. **Always sync** after creating/editing items: `bw sync`
-2. **Session expires** — re-unlock if you get auth errors
-3. **Delete sensitive messages** after receiving credentials
-4. **Card numbers** may not import from other managers (security restriction)

package/skills/bitwarden/references/templates.md

@@ -1,116 +0,0 @@
-# Bitwarden Item Templates
-
-jq patterns for creating vault items via CLI.
-
-## Login (type=1)
-
-```bash
-bw get template item | jq '
-  .type = 1 |
-  .name = "Example Site" |
-  .notes = "Optional notes" |
-  .favorite = false |
-  .login.username = "user@example.com" |
-  .login.password = "secretPassword123" |
-  .login.totp = "otpauth://totp/..." |
-  .login.uris = [
-    {uri: "https://example.com", match: null},
-    {uri: "https://app.example.com", match: null}
-  ]
-' | bw encode | bw create item
-```
-
-## Credit Card (type=3)
-
-```bash
-bw get template item | jq '
-  .type = 3 |
-  .name = "Visa ending 1234" |
-  .notes = "Primary card" |
-  .card.cardholderName = "JOHN DOE" |
-  .card.brand = "Visa" |
-  .card.number = "4111111111111111" |
-  .card.expMonth = "12" |
-  .card.expYear = "2030" |
-  .card.code = "123"
-' | bw encode | bw create item
-```
-
-**Brands:** Visa, Mastercard, Amex, Discover, Diners Club, JCB, Maestro, UnionPay, Other
-
-## Secure Note (type=2)
-
-```bash
-bw get template item | jq '
-  .type = 2 |
-  .name = "API Keys" |
-  .notes = "OPENAI_KEY=sk-xxx\nANTHROPIC_KEY=sk-ant-xxx" |
-  .secureNote.type = 0
-' | bw encode | bw create item
-```
-
-## Identity (type=4)
-
-```bash
-bw get template item | jq '
-  .type = 4 |
-  .name = "Personal Info" |
-  .identity.title = "Mr" |
-  .identity.firstName = "John" |
-  .identity.lastName = "Doe" |
-  .identity.email = "john@example.com" |
-  .identity.phone = "+34612345678" |
-  .identity.address1 = "123 Main St" |
-  .identity.city = "Barcelona" |
-  .identity.state = "Catalunya" |
-  .identity.postalCode = "08001" |
-  .identity.country = "ES"
-' | bw encode | bw create item
-```
-
-## Edit Existing Item
-
-```bash
-# Get item, modify, update
-bw get item <id> | jq '.login.password = "newPassword"' | bw encode | bw edit item <id>
-```
-
-## Custom Fields
-
-```bash
-bw get template item | jq '
-  .type = 1 |
-  .name = "With Custom Fields" |
-  .fields = [
-    {name: "Security Question", value: "Pet name", type: 0},
-    {name: "PIN", value: "1234", type: 1}
-  ]
-' | bw encode | bw create item
-```
-
-**Field types:** 0=text, 1=hidden, 2=boolean
-
-## Retrieve Patterns
-
-```bash
-# Password only
-bw get password "Site Name"
-
-# Username only  
-bw get username "Site Name"
-
-# Full login object
-bw get item "Site Name" | jq '.login'
-
-# Card number
-bw get item "Card Name" | jq -r '.card.number'
-
-# All card fields for form filling
-bw get item "Card Name" | jq -r '.card | [.number, .expMonth, .expYear, .code] | @tsv'
-
-# Search by URL
-bw list items --url "example.com" | jq '.[0].login'
-
-# List all cards
-bw list items | jq '.[] | select(.type == 3) | .name'
-```

package/skills/bitwarden/scripts/bw-session.sh

@@ -1,33 +0,0 @@
-#!/bin/bash
-# Unlock Bitwarden vault and export session key
-# Usage: source bw-session.sh <master_password>
-# Or:    source bw-session.sh (prompts for password)
-
-set -e
-
-if [ -n "$1" ]; then
-    MASTER_PW="$1"
-else
-    read -sp "Bitwarden master password: " MASTER_PW
-    echo
-fi
-
-# Check if already logged in
-if ! bw login --check &>/dev/null; then
-    echo "Not logged in. Run: bw login <email>"
-    return 1
-fi
-
-# Unlock and get session
-export BW_SESSION=$(echo "$MASTER_PW" | bw unlock --raw 2>/dev/null)
-
-if [ -z "$BW_SESSION" ]; then
-    echo "Failed to unlock vault"
-    return 1
-fi
-
-# Sync to get latest
-bw sync &>/dev/null
-
-echo "✓ Vault unlocked and synced"
-echo "Session valid for this shell"