npm - neoagent - Versions diffs - 1.0.0 - Mend

neoagent 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (54) hide show

package/.env.example +28 -0
package/LICENSE +21 -0
package/README.md +42 -0
package/bin/neoagent.js +8 -0
package/com.neoagent.plist +45 -0
package/docs/configuration.md +45 -0
package/docs/skills.md +45 -0
package/lib/manager.js +459 -0
package/package.json +61 -0
package/server/db/database.js +239 -0
package/server/index.js +442 -0
package/server/middleware/auth.js +35 -0
package/server/public/app.html +559 -0
package/server/public/css/app.css +608 -0
package/server/public/css/styles.css +472 -0
package/server/public/favicon.svg +17 -0
package/server/public/js/app.js +3283 -0
package/server/public/login.html +313 -0
package/server/routes/agents.js +125 -0
package/server/routes/auth.js +105 -0
package/server/routes/browser.js +116 -0
package/server/routes/mcp.js +164 -0
package/server/routes/memory.js +193 -0
package/server/routes/messaging.js +153 -0
package/server/routes/protocols.js +87 -0
package/server/routes/scheduler.js +63 -0
package/server/routes/settings.js +98 -0
package/server/routes/skills.js +107 -0
package/server/routes/store.js +1192 -0
package/server/services/ai/compaction.js +82 -0
package/server/services/ai/engine.js +1690 -0
package/server/services/ai/models.js +46 -0
package/server/services/ai/multiStep.js +112 -0
package/server/services/ai/providers/anthropic.js +181 -0
package/server/services/ai/providers/base.js +40 -0
package/server/services/ai/providers/google.js +187 -0
package/server/services/ai/providers/grok.js +121 -0
package/server/services/ai/providers/ollama.js +162 -0
package/server/services/ai/providers/openai.js +167 -0
package/server/services/ai/toolRunner.js +218 -0
package/server/services/browser/controller.js +320 -0
package/server/services/cli/executor.js +204 -0
package/server/services/mcp/client.js +260 -0
package/server/services/memory/embeddings.js +126 -0
package/server/services/memory/manager.js +431 -0
package/server/services/messaging/base.js +23 -0
package/server/services/messaging/discord.js +238 -0
package/server/services/messaging/manager.js +328 -0
package/server/services/messaging/telegram.js +243 -0
package/server/services/messaging/telnyx.js +693 -0
package/server/services/messaging/whatsapp.js +304 -0
package/server/services/scheduler/cron.js +312 -0
package/server/services/websocket.js +191 -0
package/server/utils/security.js +71 -0

package/server/index.js ADDED Viewed

@@ -0,0 +1,442 @@
+require('dotenv').config();
+const express = require('express');
+const session = require('express-session');
+const SQLiteStore = require('connect-sqlite3')(session);
+const { createServer } = require('http');
+const { Server: SocketIO } = require('socket.io');
+const helmet = require('helmet');
+const cors = require('cors');
+const path = require('path');
+const fs = require('fs');
+const db = require('./db/database');
+const { requireAuth, requireNoAuth } = require('./middleware/auth');
+const { sanitizeError, detectPromptInjection } = require('./utils/security');
+const app = express();
+const httpServer = createServer(app);
+const io = new SocketIO(httpServer, {
+  cors: {
+    origin: process.env.ALLOWED_ORIGINS ? process.env.ALLOWED_ORIGINS.split(',') : false,
+    credentials: true
+  }
+});
+// ── Console Log Interceptor ──
+const logHistory = [];
+const MAX_LOG_HISTORY = 200;
+function broadcastLog(type, args) {
+  const msg = Array.from(args).map(a => typeof a === 'object' ? JSON.stringify(a) : String(a)).join(' ');
+  const logEntry = { type, message: msg, timestamp: new Date().toISOString() };
+  logHistory.push(logEntry);
+  if (logHistory.length > MAX_LOG_HISTORY) logHistory.shift();
+  // Broadcast only to authenticated user rooms, never to unauthenticated sockets
+  for (const [, socket] of io.sockets.sockets) {
+    const uid = socket.request?.session?.userId;
+    if (uid) socket.emit('server:log', logEntry);
+  }
+}
+const originalConsole = {
+  log: console.log,
+  error: console.error,
+  warn: console.warn,
+  info: console.info
+};
+console.log = function (...args) { originalConsole.log.apply(console, args); broadcastLog('log', args); };
+console.error = function (...args) { originalConsole.error.apply(console, args); broadcastLog('error', args); };
+console.warn = function (...args) { originalConsole.warn.apply(console, args); broadcastLog('warn', args); };
+console.info = function (...args) { originalConsole.info.apply(console, args); broadcastLog('info', args); };
+io.on('connection', (socket) => {
+  socket.on('client:request_logs', () => {
+    // Only serve log history to authenticated sockets
+    if (!socket.request?.session?.userId) return;
+    socket.emit('server:log_history', logHistory);
+  });
+});
+if (!process.env.SESSION_SECRET) {
+  console.warn('WARNING: SESSION_SECRET not set — using insecure default. Set it in .env before exposing this server.');
+}
+const PORT = process.env.PORT || 3060;
+const DATA_DIR = path.join(__dirname, '../data');
+if (!fs.existsSync(DATA_DIR)) fs.mkdirSync(DATA_DIR, { recursive: true });
+// ── Middleware ──
+// When running behind a TLS-terminating reverse proxy (nginx, Caddy, Cloudflare Tunnel…)
+// set SECURE_COOKIES=true in .env so the session cookie is marked Secure and
+// express trusts the X-Forwarded-* headers from the proxy.
+const SECURE_COOKIES = process.env.SECURE_COOKIES === 'true';
+if (SECURE_COOKIES) {
+  app.set('trust proxy', 1); // trust first hop (reverse proxy)
+}
+// WebSocket CSP source: ws+wss on plain HTTP, wss-only on HTTPS
+const wsConnectSrc = SECURE_COOKIES ? ['wss:'] : ['ws:', 'wss:'];
+app.use(helmet({
+  // Disable headers that only make sense on HTTPS — this app runs on plain HTTP (Tailscale/localhost).
+  strictTransportSecurity: false,   // HSTS: would force browser to upgrade HTTP→HTTPS permanently
+  crossOriginOpenerPolicy: false,   // COOP: ignored on non-HTTPS origins, causes browser warning
+  originAgentCluster: false,        // OAC: causes "previously placed in site-keyed cluster" warning on HTTP
+  contentSecurityPolicy: {
+    directives: {
+      defaultSrc: ["'self'"],
+      scriptSrc: ["'self'", "'unsafe-inline'"],
+      scriptSrcAttr: ["'unsafe-inline'"],
+      styleSrc: ["'self'", "'unsafe-inline'", "https://fonts.googleapis.com"],
+      imgSrc: ["'self'", "data:", "blob:", "https://api.qrserver.com"],
+      connectSrc: ["'self'", "https://fonts.googleapis.com", "https://fonts.gstatic.com", ...wsConnectSrc],
+      fontSrc: ["'self'", "data:", "https://fonts.gstatic.com"],
+      formAction: ["'self'"],       // explicit: prevents form-submission to external origins
+      frameAncestors: ["'self'"],   // explicit: prevents iframe embedding from other origins
+      // Disable upgrade-insecure-requests — helmet adds this by default in v7+,
+      // which causes browsers to upgrade HTTP subresource requests to HTTPS,
+      // breaking plain-HTTP deployments (Tailscale, localhost).
+      upgradeInsecureRequests: null
+    }
+  }
+}));
+app.use(cors({
+  origin: process.env.ALLOWED_ORIGINS ? process.env.ALLOWED_ORIGINS.split(',') : false,
+  credentials: true
+}));
+app.use(express.json({ limit: '10mb' }));
+app.use(express.urlencoded({ extended: true }));
+const sessionMiddleware = session({
+  store: new SQLiteStore({ db: 'sessions.db', dir: DATA_DIR }),
+  secret: process.env.SESSION_SECRET || 'neoagent-dev-secret-change-me',
+  name: 'neoagent.sid',
+  resave: false,
+  saveUninitialized: false,
+  cookie: {
+    maxAge: 7 * 24 * 60 * 60 * 1000,
+    httpOnly: true,
+    sameSite: 'lax',
+    secure: SECURE_COOKIES  // true when behind HTTPS proxy; false for plain HTTP (Tailscale/localhost)
+  }
+});
+app.use(sessionMiddleware);
+// Share session with Socket.IO
+io.use((socket, next) => {
+  sessionMiddleware(socket.request, {}, next);
+});
+// ── Routes ──
+app.use(require('./routes/auth'));
+app.use('/api/settings', require('./routes/settings'));
+app.use('/api/agents', require('./routes/agents'));
+app.use('/api/messaging', require('./routes/messaging'));
+app.use('/api/mcp', require('./routes/mcp'));
+app.use('/api/skills', require('./routes/skills'));
+app.use('/api/protocols', require('./routes/protocols'));
+app.use('/api/store', require('./routes/store'));
+app.use('/api/memory', require('./routes/memory'));
+app.use('/api/scheduler', require('./routes/scheduler'));
+app.use('/api/browser', require('./routes/browser'));
+// ── Telnyx voice webhook ──
+// Protected by a shared-secret token in the query string.
+// Set TELNYX_WEBHOOK_TOKEN in .env and append ?token=<value> to the webhook URL
+// you configure in the Telnyx portal / NeoAgent connect modal.
+app.post('/api/telnyx/webhook', (req, res, next) => {
+  const expected = process.env.TELNYX_WEBHOOK_TOKEN;
+  if (expected) {
+    const provided = req.query.token || '';
+    // Use timing-safe comparison to prevent token brute-forcing via timing oracles
+    const crypto = require('crypto');
+    const a = Buffer.from(provided.padEnd(expected.length));
+    const b = Buffer.from(expected);
+    if (a.length !== b.length || !crypto.timingSafeEqual(a, b)) {
+      console.warn('[Telnyx webhook] Rejected request with invalid or missing token');
+      return res.status(403).send('Forbidden');
+    }
+  }
+  next();
+}, async (req, res) => {
+  res.status(200).send('OK'); // Acknowledge immediately
+  const manager = app.locals.messagingManager;
+  if (manager) await manager.handleTelnyxWebhook(req.body).catch(err => console.error('[Telnyx webhook]', err.message));
+});
+// Telnyx-generated audio files must be publicly accessible so Telnyx's servers
+// can fetch them via the webhook callback URL. Directory listing is disabled and
+// non-audio files are rejected to minimize accidental exposure.
+app.use('/telnyx-audio', express.static(path.join(DATA_DIR, 'telnyx-audio'), {
+  index: false,
+  setHeaders: (res, filePath) => {
+    if (!filePath.match(/\.(mp3|wav|ogg|aac|m4a)$/i)) {
+      res.status(403).end();
+    }
+  }
+}));
+app.use('/screenshots', requireAuth, express.static(path.join(DATA_DIR, 'screenshots')));
+// ── Pages ──
+app.get('/login', requireNoAuth, (req, res) => {
+  res.sendFile(path.join(__dirname, 'public', 'login.html'));
+});
+app.get('/app', requireAuth, (req, res) => {
+  res.sendFile(path.join(__dirname, 'public', 'app.html'));
+});
+app.get('/app/*', requireAuth, (req, res) => {
+  res.sendFile(path.join(__dirname, 'public', 'app.html'));
+});
+// Serve app.html and app.js explicitly behind auth so they can't be fetched
+// directly via the static middleware without a valid session.
+app.get('/app.html', requireAuth, (req, res) => {
+  res.sendFile(path.join(__dirname, 'public', 'app.html'));
+});
+app.get('/js/app.js', requireAuth, (req, res) => {
+  res.sendFile(path.join(__dirname, 'public', 'js', 'app.js'));
+});
+app.use(express.static(path.join(__dirname, 'public')));
+app.get('/', (req, res) => {
+  if (req.session && req.session.userId) return res.redirect('/app');
+  res.redirect('/login');
+});
+app.get('/api/health', requireAuth, (req, res) => {
+  res.json({ status: 'ok', timestamp: new Date().toISOString() });
+});
+// ── Service Initialization ──
+const startServices = async () => {
+  try {
+    const { MemoryManager } = require('./services/memory/manager');
+    const memoryManager = new MemoryManager();
+    app.locals.memoryManager = memoryManager;
+    const { MCPClient } = require('./services/mcp/client');
+    const mcpClient = new MCPClient();
+    app.locals.mcpClient = mcpClient;
+    const { BrowserController } = require('./services/browser/controller');
+    const browserController = new BrowserController();
+    // Restore saved headless preference for the first user (single-user app)
+    const headlessSetting = db.prepare('SELECT value FROM user_settings WHERE key = ? ORDER BY user_id LIMIT 1').get('headless_browser');
+    if (headlessSetting) {
+      const val = headlessSetting.value;
+      browserController.headless = val !== 'false' && val !== false && val !== '0';
+    }
+    app.locals.browserController = browserController;
+    const { AgentEngine } = require('./services/ai/engine');
+    const agentEngine = new AgentEngine(io, { memoryManager, mcpClient, browserController, messagingManager: null /* set below */ });
+    app.locals.agentEngine = agentEngine;
+    const { MultiStepOrchestrator } = require('./services/ai/multiStep');
+    const multiStep = new MultiStepOrchestrator(agentEngine, io);
+    app.locals.multiStep = multiStep;
+    const { MessagingManager } = require('./services/messaging/manager');
+    const messagingManager = new MessagingManager(io);
+    app.locals.messagingManager = messagingManager;
+    // Inject messagingManager into the already-created agentEngine
+    agentEngine.messagingManager = messagingManager;
+    messagingManager.restoreConnections().catch(err => console.error('[Messaging] Restore error:', err.message));
+    const users = db.prepare('SELECT id FROM users').all();
+    for (const u of users) {
+      mcpClient.loadFromDB(u.id).catch(err => console.error('[MCP] Auto-start error:', err.message));
+    }
+    // Per-user message queues: batch & combine messages while AI is busy
+    const userQueues = {};
+    app.locals.userQueues = userQueues;
+    async function processMessage(userId, msg) {
+      if (!userQueues[userId]) userQueues[userId] = { running: false, pending: [] };
+      const q = userQueues[userId];
+      if (q.running) {
+        const last = q.pending[q.pending.length - 1];
+        if (last && last.platform === msg.platform && last.chatId === msg.chatId) {
+          last.content += '\n' + msg.content;
+          last.messageId = msg.messageId;
+        } else {
+          q.pending.push({ ...msg });
+        }
+        return;
+      }
+      q.running = true;
+      try {
+        await messagingManager.markRead(userId, msg.platform, msg.chatId, msg.messageId).catch(() => { });
+        await messagingManager.sendTyping(userId, msg.platform, msg.chatId, true).catch(() => { });
+        const mediaNote = msg.localMediaPath
+          ? `\nMedia attached at: ${msg.localMediaPath} (type: ${msg.mediaType}). You can reference or forward it with send_message media_path.`
+          : '';
+        // Detect and log prompt injection attempts from external sources
+        if (detectPromptInjection(msg.content)) {
+          console.warn(`[Security] Possible prompt injection attempt from ${msg.sender} on ${msg.platform}: ${msg.content.slice(0, 200)}`);
+        }
+        // Wrap external content in delimiters — prevents prompt injection from untrusted senders
+        const isVoiceCall = msg.platform === 'telnyx' && msg.mediaType === 'voice';
+        const isVoiceNote = !isVoiceCall && msg.mediaType === 'audio';  // e.g. WhatsApp voice notes transcribed via STT
+        const isDiscordGuild = msg.platform === 'discord' && msg.isGroup;
+        // Channel context block for Discord guild/channel messages
+        const discordContext = (isDiscordGuild && Array.isArray(msg.channelContext) && msg.channelContext.length)
+          ? '\n\nRecent channel context (oldest → newest):\n' +
+          msg.channelContext.map(m => `[${m.author}]: ${m.content}`).join('\n')
+          : '';
+        const sttNote = isVoiceNote
+          ? '\n[Note: This message was sent as a voice note and transcribed via speech-to-text. The transcription may not be perfectly accurate — words may be misheard, punctuation added automatically, and phrasing may differ from what was intended.]'
+          : '';
+        const prompt = isVoiceCall
+          ? `You are on a live phone call. The caller (${msg.senderName || msg.sender}) said (transcribed via speech-to-text — may not be perfectly accurate):
+<caller_speech>
+${msg.content}
+</caller_speech>
+Respond via send_message with platform="telnyx" and to="${msg.chatId}".
+Rules for voice responses:
+- Call send_message EXACTLY ONCE with your complete reply. Do NOT call it multiple times.
+- Keep it brief and conversational — this will be spoken aloud via TTS.
+- NO markdown, bullet points, bold, headers, or special formatting.
+- Speak naturally. Never say things like "How can I assist you further?" — just stop when done.
+- Always respond; never use [NO RESPONSE] on a live call.`
+          : `You received a ${msg.platform} message from ${msg.senderName || msg.sender} (chat: ${msg.chatId}):\n<external_message>\n${msg.content}\n</external_message>${mediaNote}${discordContext}${sttNote}
+Reply to this message using send_message with platform="${msg.platform}" and to="${msg.chatId}".
+Text like a person: split across messages naturally when it fits the content. Never end with "anything else?" or close-out phrases — just stop when you're done.
+You can also send images/files by setting media_path to a local file path.
+If no reply is needed (e.g. the message is just an acknowledgement like "ok", "thanks", or you already said everything), call send_message with content "[NO RESPONSE]" to explicitly stay silent.`;
+        // Get or create a persistent conversation keyed by platform + chat ID.
+        // The engine's conversationId path handles history, time-gap markers, and compaction natively.
+        let convRow = db.prepare(
+          'SELECT id FROM conversations WHERE user_id = ? AND platform = ? AND platform_chat_id = ?'
+        ).get(userId, msg.platform, msg.chatId);
+        if (!convRow) {
+          const convId = require('crypto').randomUUID();
+          db.prepare(
+            'INSERT INTO conversations (id, user_id, platform, platform_chat_id, title) VALUES (?, ?, ?, ?, ?)'
+          ).run(convId, userId, msg.platform, msg.chatId, `${msg.platform} — ${msg.senderName || msg.sender || msg.chatId}`);
+          convRow = { id: convId };
+        }
+        const runOpts = { triggerSource: 'messaging', conversationId: convRow.id, source: msg.platform, chatId: msg.chatId, context: { rawUserMessage: msg.content } };
+        if (msg.localMediaPath) runOpts.mediaAttachments = [{ path: msg.localMediaPath, type: msg.mediaType }];
+        await agentEngine.run(userId, prompt, runOpts);
+      } finally {
+        await messagingManager.sendTyping(userId, msg.platform, msg.chatId, false).catch(() => { });
+        q.running = false;
+        if (q.pending.length > 0) {
+          const next = q.pending.shift();
+          processMessage(userId, next);
+        }
+      }
+    }
+    // Wire messaging → agent: incoming messages trigger agent
+    messagingManager.registerHandler(async (userId, msg) => {
+      // Discord and Telegram handle their own access control internally
+      if (msg.platform !== 'discord' && msg.platform !== 'telegram') {
+        // Whitelist check: if user has set a whitelist for this platform, block unknown senders
+        const whitelistRow = db.prepare('SELECT value FROM user_settings WHERE user_id = ? AND key = ?')
+          .get(userId, `platform_whitelist_${msg.platform}`);
+        if (whitelistRow) {
+          try {
+            const whitelist = JSON.parse(whitelistRow.value);
+            if (Array.isArray(whitelist) && whitelist.length > 0) {
+              const normalize = (id) => {
+                const digits = (id || '').replace(/[^0-9]/g, '');
+                return digits.length > 10 ? digits.slice(-10) : digits;
+              };
+              const senderNorm = normalize(msg.sender || msg.chatId);
+              const allowed = whitelist.some(n => normalize(n) === senderNorm);
+              if (!allowed) {
+                console.log(`[Messaging] Blocked ${msg.platform} message from ${msg.sender} (not in whitelist)`);
+                io.to(`user:${userId}`).emit('messaging:blocked_sender', {
+                  platform: msg.platform,
+                  sender: msg.sender,
+                  chatId: msg.chatId,
+                  senderName: msg.senderName || null
+                });
+                return;
+              }
+            }
+          } catch { /* malformed whitelist, allow through */ }
+        }
+      }
+      const upsertSetting = db.prepare('INSERT OR REPLACE INTO user_settings (user_id, key, value) VALUES (?, ?, ?)');
+      upsertSetting.run(userId, 'last_platform', msg.platform);
+      upsertSetting.run(userId, 'last_chat_id', msg.chatId);
+      await processMessage(userId, msg);
+    });
+    const { Scheduler } = require('./services/scheduler/cron');
+    const scheduler = new Scheduler(io, agentEngine);
+    app.locals.scheduler = scheduler;
+    agentEngine.scheduler = scheduler;
+    scheduler.start();
+    const { setupWebSocket } = require('./services/websocket');
+    setupWebSocket(io, { agentEngine, messagingManager, mcpClient, scheduler, memoryManager, app });
+    app.locals.io = io;
+    console.log('All services initialized');
+  } catch (err) {
+    console.error('Service init error:', err);
+  }
+};
+// ── Global Error Handler ──
+// Must be registered after all routes. Sanitizes error details so internal paths
+// and stack traces are never exposed in API responses.
+app.use((err, req, res, next) => { // eslint-disable-line no-unused-vars
+  console.error('[Unhandled error]', err);
+  const status = err.status || err.statusCode || 500;
+  const message = sanitizeError(err);
+  if (req.path.startsWith('/api/')) {
+    return res.status(status).json({ error: message });
+  }
+  res.status(status).send('Something went wrong.');
+});
+httpServer.listen(PORT, async () => {
+  console.log(`NeoAgent running on http://localhost:${PORT}`);
+  await startServices();
+});
+// ── Graceful Shutdown ──
+process.on('SIGINT', async () => {
+  console.log('Shutting down...');
+  if (app.locals.scheduler) app.locals.scheduler.stop();
+  if (app.locals.mcpClient) await app.locals.mcpClient.shutdown().catch(() => { });
+  if (app.locals.browserController) await app.locals.browserController.closeBrowser().catch(() => { });
+  db.close();
+  process.exit(0);
+});
+process.on('SIGTERM', () => {
+  process.emit('SIGINT');
+});
+module.exports = { app, io, httpServer };

package/server/middleware/auth.js ADDED Viewed

@@ -0,0 +1,35 @@
+function requireAuth(req, res, next) {
+  if (!req.session || !req.session.userId) {
+    if (req.path.startsWith('/api/')) {
+      return res.status(401).json({ error: 'Unauthorized' });
+    }
+    return res.redirect('/login');
+  }
+  next();
+}
+function requireNoAuth(req, res, next) {
+  if (req.session && req.session.userId) {
+    return res.redirect('/app');
+  }
+  next();
+}
+function attachUser(req, res, next) {
+  if (req.session && req.session.userId) {
+    const db = require('../db/database');
+    const user = db.prepare('SELECT id, username, email, created_at FROM users WHERE id = ?').get(req.session.userId);
+    if (user) {
+      req.user = user;
+    } else {
+      req.session.destroy(() => {});
+      if (req.path.startsWith('/api/')) {
+        return res.status(401).json({ error: 'Session invalid' });
+      }
+      return res.redirect('/login');
+    }
+  }
+  next();
+}
+module.exports = { requireAuth, requireNoAuth, attachUser };