neoagent 2.1.18-beta.0 → 2.1.18-beta.10

package/.env.example

@@ -1,17 +1,55 @@
+########################################
+# Core runtime
+########################################
+
 PORT=3333
-NODE_ENV=development
+NODE_ENV=production
 SESSION_SECRET=change-this-to-a-random-secret-in-production
 
-# Comma-separated list of allowed CORS origins (leave empty to block all cross-origin requests)
-# Example: ALLOWED_ORIGINS=http://localhost:3333,https://yourdomain.com
+# Public base URL used for OAuth callbacks and external links.
+# Example: https://agent.example.com
+PUBLIC_URL=
+
+# Set true when running behind HTTPS or a TLS-terminating proxy.
+SECURE_COOKIES=false
+
+# Use `managed` for SaaS-style deployments to hide self-update controls in the UI.
+NEOAGENT_DEPLOYMENT_MODE=self_hosted
+
+# Deployment profile:
+#   private -> single-user / trusted host runtime
+#   prod    -> multi-user / isolated per-user VM runtime
+NEOAGENT_PROFILE=private
+
+# VM runtime settings used by `prod`.
+# Set these before switching NEOAGENT_PROFILE=prod.
+# The app can cache a shared base image automatically from a URL, then create
+# lightweight per-user qcow2 overlays on top of it.
+# For Apple Silicon / arm64 hosts, switch this to:
+# https://cloud-images.ubuntu.com/releases/24.04/release/ubuntu-24.04-server-cloudimg-arm64.img
+NEOAGENT_VM_BASE_IMAGE_URL=https://cloud-images.ubuntu.com/releases/24.04/release/ubuntu-24.04-server-cloudimg-amd64.img
+
+# Optional local override. If set, this takes precedence over the download URL.
+NEOAGENT_VM_BASE_IMAGE=
+
+# The guest image must boot a Linux guest that runs `npm run start:guest-agent`
+# and exposes the guest agent on port 8421.
+# Replace this placeholder before using NEOAGENT_PROFILE=prod.
+# Example: openssl rand -hex 32
+NEOAGENT_VM_GUEST_TOKEN=change-this-guest-token-before-prod
+NEOAGENT_VM_MEMORY_MB=4096
+NEOAGENT_VM_CPUS=2
+
+# Self-hosted release track used by `neoagent update`.
+NEOAGENT_RELEASE_CHANNEL=stable
+
+# Comma-separated list of allowed CORS origins.
+# Example: http://localhost:3333,https://yourdomain.com
 ALLOWED_ORIGINS=
 
-# xAI API key — used for:
-#   • Main AI reasoning (grok-4-1-fast-reasoning — all agent tasks and conversations)
-#   • Image generation (grok-imagine-image — generate_image tool)
-#   • Image vision / analysis (grok-4-1-fast-reasoning has native image input — analyze_image tool, incoming WhatsApp photos)
-# Get your key at: https://console.x.ai
-XAI_API_KEY=your-xai-api-key-here
+########################################
+# Hosted AI providers
+########################################
 
 # OpenAI API key — used for:
 #   • Semantic memory embeddings (text-embedding-3-small, 1536 dims)
@@ -22,16 +60,74 @@ XAI_API_KEY=your-xai-api-key-here
 # Get your key at: https://platform.openai.com/api-keys
 OPENAI_API_KEY=your-openai-api-key-here
 
+# Anthropic API key — used for:
+#   • Claude models for long-context drafting and analysis
+ANTHROPIC_API_KEY=your-anthropic-api-key-here
+
+# xAI API key — used for:
+#   • Main AI reasoning (grok-4-1-fast-reasoning — all agent tasks and conversations)
+#   • Image generation (grok-imagine-image — generate_image tool)
+#   • Image vision / analysis (grok-4-1-fast-reasoning has native image input — analyze_image tool, incoming WhatsApp photos)
+# Get your key at: https://console.x.ai
+XAI_API_KEY=your-xai-api-key-here
+
 # Google AI Studio API key — used for:
 #   • Gemini models (e.g. gemini-3.1-flash-lite-preview)
 # Get your key at: https://aistudio.google.com/app/apikey
 GOOGLE_AI_KEY=your-google-ai-key-here
 
-# Google Workspace official integration OAuth client
-# Redirect URI should match ${PUBLIC_URL:-http://localhost:3333}/api/integrations/oauth/callback
+# MiniMax Coding Plan API key — used for:
+#   • MiniMax-M2.7 via the Anthropic-compatible MiniMax endpoint
+MINIMAX_API_KEY=your-minimax-api-key-here
+
+########################################
+# Provider endpoint overrides
+########################################
+
+# OPENAI_BASE_URL=https://your-openai-compatible-endpoint/v1
+# ANTHROPIC_BASE_URL=https://your-anthropic-compatible-endpoint
+# XAI_BASE_URL=https://api.x.ai/v1
+
+########################################
+# Official integrations
+########################################
+
+# Google Workspace official integration OAuth client.
+# Redirect URI should match <PUBLIC_URL>/api/integrations/oauth/callback.
+# Set PUBLIC_URL to your app's public base URL. Local default is http://localhost:3333.
 GOOGLE_OAUTH_CLIENT_ID=your-google-oauth-client-id
 GOOGLE_OAUTH_CLIENT_SECRET=your-google-oauth-client-secret
-# GOOGLE_OAUTH_REDIRECT_URI=http://localhost:3333/api/integrations/oauth/callback
+GOOGLE_OAUTH_REDIRECT_URI=
+
+# Notion official integration OAuth client.
+# Redirect URI should match <PUBLIC_URL>/api/integrations/oauth/callback.
+NOTION_OAUTH_CLIENT_ID=your-notion-oauth-client-id
+NOTION_OAUTH_CLIENT_SECRET=your-notion-oauth-client-secret
+NOTION_OAUTH_REDIRECT_URI=
+
+# Microsoft 365 official integration OAuth client.
+# Redirect URI should match <PUBLIC_URL>/api/integrations/oauth/callback.
+# Leave tenant ID as `common` for a multi-tenant app, or set a specific Entra tenant ID.
+MICROSOFT_OAUTH_CLIENT_ID=your-microsoft-oauth-client-id
+MICROSOFT_OAUTH_CLIENT_SECRET=your-microsoft-oauth-client-secret
+MICROSOFT_OAUTH_REDIRECT_URI=
+MICROSOFT_OAUTH_TENANT_ID=common
+
+# Slack official integration OAuth client.
+# Redirect URI should match <PUBLIC_URL>/api/integrations/oauth/callback.
+SLACK_OAUTH_CLIENT_ID=your-slack-oauth-client-id
+SLACK_OAUTH_CLIENT_SECRET=your-slack-oauth-client-secret
+SLACK_OAUTH_REDIRECT_URI=
+
+# Figma official integration OAuth client.
+# Redirect URI should match <PUBLIC_URL>/api/integrations/oauth/callback.
+FIGMA_OAUTH_CLIENT_ID=your-figma-oauth-client-id
+FIGMA_OAUTH_CLIENT_SECRET=your-figma-oauth-client-secret
+FIGMA_OAUTH_REDIRECT_URI=
+
+########################################
+# Tools and media services
+########################################
 
 # Brave Search API key — used for:
 #   • Native web_search tool (search the web without driving the browser)
@@ -43,5 +139,18 @@ BRAVE_SEARCH_API_KEY=your-brave-search-api-key-here
 # Without this key: recordings can still be captured and stored, but transcription will fail until retried with a valid key.
 # Get your key at: https://console.deepgram.com/
 DEEPGRAM_API_KEY=your-deepgram-api-key-here
+DEEPGRAM_BASE_URL=https://api.deepgram.com
 DEEPGRAM_MODEL=nova-3
 DEEPGRAM_LANGUAGE=multi
+
+########################################
+# Local model runtime
+########################################
+
+OLLAMA_URL=http://localhost:11434
+
+########################################
+# Messaging and voice integrations
+########################################
+
+TELNYX_WEBHOOK_TOKEN=

package/docs/configuration.md

@@ -1,6 +1,6 @@
 # Configuration
 
-All settings live in `~/.neoagent/.env` by default. Run `neoagent setup` to regenerate interactively. If a self-edit or local install issue leaves NeoAgent broken, `neoagent fix` will back up `~/.neoagent`, repair the installation, and restart the service.
+All settings live in `~/.neoagent/.env` by default. Run `neoagent setup` to regenerate interactively. AI provider credentials are configured through the server environment or `neoagent setup`, not through the web UI. If a self-edit or local install issue leaves NeoAgent broken, rerun setup or restore the env file and restart the service.
 You can override the runtime root with `NEOAGENT_HOME`.
 
 ## Variables
@@ -10,31 +10,60 @@ You can override the runtime root with `NEOAGENT_HOME`.
 | Variable | Default | Description |
 |---|---|---|
 | `PORT` | `3333` | HTTP port |
+| `PUBLIC_URL` | *(optional)* | Public base URL used for callbacks and external links |
 | `SESSION_SECRET` | *(required)* | Random string for session signing — generate with `openssl rand -hex 32` |
 | `NODE_ENV` | `production` | Set to `development` to enable verbose logs |
 | `SECURE_COOKIES` | `false` | Set `true` when behind a TLS-terminating proxy |
 | `ALLOWED_ORIGINS` | *(none)* | Comma-separated CORS origins, e.g. `https://example.com` |
+| `NEOAGENT_DEPLOYMENT_MODE` | `self_hosted` | `self_hosted` enables in-app update controls; `managed` hides operator-only controls for SaaS deployments |
+| `NEOAGENT_RELEASE_CHANNEL` | `stable` | Release track used by the self-hosted updater |
 
 ### AI Providers
 
-At least one API key is required. The active provider and model are configured in the Flutter app.
+At least one hosted-provider API key is required unless you only use local Ollama. The active provider and model routing are configured in the Flutter app; credentials stay in server-side config.
 
 | Variable | Provider |
 |---|---|
 | `ANTHROPIC_API_KEY` | Claude (Anthropic) |
 | `OPENAI_API_KEY` | GPT-4o / Whisper (OpenAI) |
 | `XAI_API_KEY` | Grok (xAI) |
+| `XAI_BASE_URL` | Optional xAI-compatible base URL override |
 | `GOOGLE_AI_KEY` | Gemini (Google) |
-| `GOOGLE_OAUTH_CLIENT_ID` | Google Workspace official integrations OAuth client ID |
-| `GOOGLE_OAUTH_CLIENT_SECRET` | Google Workspace official integrations OAuth client secret |
-| `GOOGLE_OAUTH_REDIRECT_URI` | Optional override for the Google Workspace OAuth callback URL |
 | `MINIMAX_API_KEY` | MiniMax Code (Coding Plan / Token Plan for `MiniMax-M2.7`) |
 | `BRAVE_SEARCH_API_KEY` | Brave Search API for the native `web_search` tool |
+| `OPENAI_BASE_URL` | Optional OpenAI-compatible base URL override |
+| `ANTHROPIC_BASE_URL` | Optional Anthropic-compatible base URL override |
 | `DEEPGRAM_API_KEY` | Recordings transcription with Deepgram Nova-3 multilingual |
+| `DEEPGRAM_BASE_URL` | Optional Deepgram API base URL override |
 | `DEEPGRAM_MODEL` | Deepgram speech model override (defaults to `nova-3`) |
 | `DEEPGRAM_LANGUAGE` | Deepgram language override (defaults to `multi`) |
 | `OLLAMA_URL` | Local Ollama (`http://localhost:11434`) |
 
+### Official Integrations
+
+All official integration OAuth callbacks default to `PUBLIC_URL + /api/integrations/oauth/callback` unless you override the provider-specific redirect URI.
+
+| Variable | Description |
+|---|---|
+| `GOOGLE_OAUTH_CLIENT_ID` | Google Workspace official integrations OAuth client ID |
+| `GOOGLE_OAUTH_CLIENT_SECRET` | Google Workspace official integrations OAuth client secret |
+| `GOOGLE_OAUTH_REDIRECT_URI` | Optional override for the Google Workspace OAuth callback URL |
+| `NOTION_OAUTH_CLIENT_ID` | Notion official integrations OAuth client ID |
+| `NOTION_OAUTH_CLIENT_SECRET` | Notion official integrations OAuth client secret |
+| `NOTION_OAUTH_REDIRECT_URI` | Optional override for the Notion OAuth callback URL |
+| `MICROSOFT_OAUTH_CLIENT_ID` | Microsoft 365 official integrations OAuth client ID |
+| `MICROSOFT_OAUTH_CLIENT_SECRET` | Microsoft 365 official integrations OAuth client secret |
+| `MICROSOFT_OAUTH_REDIRECT_URI` | Optional override for the Microsoft 365 OAuth callback URL |
+| `MICROSOFT_OAUTH_TENANT_ID` | Optional Entra tenant selector (`common` by default) |
+| `SLACK_OAUTH_CLIENT_ID` | Slack official integrations OAuth client ID |
+| `SLACK_OAUTH_CLIENT_SECRET` | Slack official integrations OAuth client secret |
+| `SLACK_OAUTH_REDIRECT_URI` | Optional override for the Slack OAuth callback URL |
+| `FIGMA_OAUTH_CLIENT_ID` | Figma official integrations OAuth client ID |
+| `FIGMA_OAUTH_CLIENT_SECRET` | Figma official integrations OAuth client secret |
+| `FIGMA_OAUTH_REDIRECT_URI` | Optional override for the Figma OAuth callback URL |
+
+OAuth client secrets such as `GOOGLE_OAUTH_CLIENT_SECRET`, `NOTION_OAUTH_CLIENT_SECRET`, `MICROSOFT_OAUTH_CLIENT_SECRET`, `SLACK_OAUTH_CLIENT_SECRET`, and `FIGMA_OAUTH_CLIENT_SECRET` are sensitive, just like `SESSION_SECRET`. Do not commit them to version control, print them to logs, or expose them in client-side code. Store them in server-side environment variables or a secrets manager, restrict access to operators who need them, and rotate them immediately if you suspect they were exposed.
+
 ### Messaging
 
 | Variable | Description |

package/lib/manager.js

@@ -31,6 +31,7 @@ const {
   choosePreferredBranchForChannel,
   choosePreferredNpmTagForChannel,
 } = require('../runtime/release_channel');
+const { parseDeploymentMode } = require('../server/utils/deployment');
 
 const APP_NAME = 'NeoAgent';
 const SERVICE_LABEL = 'com.neoagent';
@@ -417,43 +418,175 @@ async function ask(question, fallback = '') {
   });
 }
 
+async function askSecret(question, currentValue = '') {
+  const rl = readline.createInterface({ input: process.stdin, output: process.stdout });
+  return new Promise((resolve) => {
+    const suffix = currentValue ? ' [configured]' : '';
+    rl.question(`  ? ${question}${suffix}: `, (answer) => {
+      rl.close();
+      const trimmed = answer.trim();
+      resolve(trimmed || currentValue);
+    });
+  });
+}
+
 async function cmdSetup() {
   heading('Environment Setup');
   ensureRuntimeDirs();
 
-  const current = {};
-  if (fs.existsSync(ENV_FILE)) {
-    const lines = fs.readFileSync(ENV_FILE, 'utf8').split('\n');
-    for (const line of lines) {
-      if (!line || line.startsWith('#') || !line.includes('=')) continue;
-      const idx = line.indexOf('=');
-      const key = line.slice(0, idx).trim();
-      const value = line.slice(idx + 1).trim();
-      current[key] = value;
-    }
-  }
+  const current = Object.fromEntries(parseEnv(readEnvFileRaw()).entries());
+
+  logInfo('Press Enter to keep the current value shown in brackets.');
 
+  heading('Core');
   const port = await ask('Server port', current.PORT || '3333');
-  const sessionSecret = await ask('Session secret', current.SESSION_SECRET || randomSecret());
-  const anthropic = await ask('Anthropic API key', current.ANTHROPIC_API_KEY || '');
-  const openai = await ask('OpenAI API key', current.OPENAI_API_KEY || '');
-  const xai = await ask('xAI API key', current.XAI_API_KEY || '');
-  const google = await ask('Google API key', current.GOOGLE_AI_KEY || '');
-  const minimax = await ask('MiniMax Code key', current.MINIMAX_API_KEY || '');
-  const brave = await ask('Brave Search API key', current.BRAVE_SEARCH_API_KEY || '');
-  const ollama = await ask('Ollama URL', current.OLLAMA_URL || 'http://localhost:11434');
+  const publicUrl = await ask('Public base URL', current.PUBLIC_URL || '');
+  const secureCookiesDefault = current.SECURE_COOKIES ||
+    (String(publicUrl || '').trim().startsWith('https://') ? 'true' : 'false');
+  const secureCookies = await ask('Secure cookies (true/false)', secureCookiesDefault);
+  const sessionSecret = await askSecret('Session secret', current.SESSION_SECRET || randomSecret());
+  const deploymentMode = await ask(
+    'Deployment mode (self_hosted/managed)',
+    current.NEOAGENT_DEPLOYMENT_MODE || 'self_hosted'
+  );
+  const releaseChannel = await ask(
+    'Release channel (stable/beta)',
+    current.NEOAGENT_RELEASE_CHANNEL || 'stable'
+  );
   const origins = await ask('Allowed CORS origins', current.ALLOWED_ORIGINS || '');
 
+  heading('AI Providers');
+  const anthropic = await askSecret('Anthropic API key', current.ANTHROPIC_API_KEY || '');
+  const anthropicBaseUrl = await ask('Anthropic base URL', current.ANTHROPIC_BASE_URL || '');
+  const openai = await askSecret('OpenAI API key', current.OPENAI_API_KEY || '');
+  const openaiBaseUrl = await ask('OpenAI base URL', current.OPENAI_BASE_URL || '');
+  const xai = await askSecret('xAI API key', current.XAI_API_KEY || '');
+  const xaiBaseUrl = await ask('xAI base URL', current.XAI_BASE_URL || 'https://api.x.ai/v1');
+  const google = await askSecret('Google API key', current.GOOGLE_AI_KEY || '');
+  const minimax = await askSecret('MiniMax Code key', current.MINIMAX_API_KEY || '');
+  const brave = await askSecret('Brave Search API key', current.BRAVE_SEARCH_API_KEY || '');
+  const ollama = await ask('Ollama URL', current.OLLAMA_URL || 'http://localhost:11434');
+
+  heading('Official Integrations');
+  const googleOauthClientId = await askSecret(
+    'Google OAuth client ID',
+    current.GOOGLE_OAUTH_CLIENT_ID || ''
+  );
+  const googleOauthClientSecret = await askSecret(
+    'Google OAuth client secret',
+    current.GOOGLE_OAUTH_CLIENT_SECRET || ''
+  );
+  const googleOauthRedirectUri = await ask(
+    'Google OAuth redirect URI',
+    current.GOOGLE_OAUTH_REDIRECT_URI || ''
+  );
+  const notionOauthClientId = await askSecret(
+    'Notion OAuth client ID',
+    current.NOTION_OAUTH_CLIENT_ID || ''
+  );
+  const notionOauthClientSecret = await askSecret(
+    'Notion OAuth client secret',
+    current.NOTION_OAUTH_CLIENT_SECRET || ''
+  );
+  const notionOauthRedirectUri = await ask(
+    'Notion OAuth redirect URI',
+    current.NOTION_OAUTH_REDIRECT_URI || ''
+  );
+  const microsoftOauthClientId = await askSecret(
+    'Microsoft 365 OAuth client ID',
+    current.MICROSOFT_OAUTH_CLIENT_ID || ''
+  );
+  const microsoftOauthClientSecret = await askSecret(
+    'Microsoft 365 OAuth client secret',
+    current.MICROSOFT_OAUTH_CLIENT_SECRET || ''
+  );
+  const microsoftOauthRedirectUri = await ask(
+    'Microsoft 365 OAuth redirect URI',
+    current.MICROSOFT_OAUTH_REDIRECT_URI || ''
+  );
+  const microsoftOauthTenantId = await ask(
+    'Microsoft 365 OAuth tenant ID',
+    current.MICROSOFT_OAUTH_TENANT_ID || 'common'
+  );
+  const slackOauthClientId = await askSecret(
+    'Slack OAuth client ID',
+    current.SLACK_OAUTH_CLIENT_ID || ''
+  );
+  const slackOauthClientSecret = await askSecret(
+    'Slack OAuth client secret',
+    current.SLACK_OAUTH_CLIENT_SECRET || ''
+  );
+  const slackOauthRedirectUri = await ask(
+    'Slack OAuth redirect URI',
+    current.SLACK_OAUTH_REDIRECT_URI || ''
+  );
+  const figmaOauthClientId = await askSecret(
+    'Figma OAuth client ID',
+    current.FIGMA_OAUTH_CLIENT_ID || ''
+  );
+  const figmaOauthClientSecret = await askSecret(
+    'Figma OAuth client secret',
+    current.FIGMA_OAUTH_CLIENT_SECRET || ''
+  );
+  const figmaOauthRedirectUri = await ask(
+    'Figma OAuth redirect URI',
+    current.FIGMA_OAUTH_REDIRECT_URI || ''
+  );
+
+  heading('Voice And Recording');
+  const deepgramApiKey = await askSecret('Deepgram API key', current.DEEPGRAM_API_KEY || '');
+  const deepgramBaseUrl = await ask(
+    'Deepgram base URL',
+    current.DEEPGRAM_BASE_URL || 'https://api.deepgram.com'
+  );
+  const deepgramModel = await ask('Deepgram model', current.DEEPGRAM_MODEL || 'nova-3');
+  const deepgramLanguage = await ask('Deepgram language', current.DEEPGRAM_LANGUAGE || 'multi');
+  const telnyxWebhookToken = await askSecret(
+    'Telnyx webhook token',
+    current.TELNYX_WEBHOOK_TOKEN || ''
+  );
+  const normalizedSecureCookies = String(secureCookies || '').trim().toLowerCase() === 'true' ? 'true' : 'false';
+  const normalizedDeploymentMode = parseDeploymentMode(deploymentMode);
+  const normalizedReleaseChannel = parseReleaseChannel(releaseChannel) || 'stable';
+
   const lines = [
     `NODE_ENV=production`,
     `PORT=${port}`,
+    publicUrl ? `PUBLIC_URL=${publicUrl}` : '',
+    `SECURE_COOKIES=${normalizedSecureCookies}`,
     `SESSION_SECRET=${sessionSecret}`,
+    `NEOAGENT_DEPLOYMENT_MODE=${normalizedDeploymentMode}`,
+    `NEOAGENT_RELEASE_CHANNEL=${normalizedReleaseChannel}`,
     anthropic ? `ANTHROPIC_API_KEY=${anthropic}` : '',
+    anthropicBaseUrl ? `ANTHROPIC_BASE_URL=${anthropicBaseUrl}` : '',
     openai ? `OPENAI_API_KEY=${openai}` : '',
+    openaiBaseUrl ? `OPENAI_BASE_URL=${openaiBaseUrl}` : '',
     xai ? `XAI_API_KEY=${xai}` : '',
+    xaiBaseUrl ? `XAI_BASE_URL=${xaiBaseUrl}` : '',
     google ? `GOOGLE_AI_KEY=${google}` : '',
     minimax ? `MINIMAX_API_KEY=${minimax}` : '',
     brave ? `BRAVE_SEARCH_API_KEY=${brave}` : '',
+    googleOauthClientId ? `GOOGLE_OAUTH_CLIENT_ID=${googleOauthClientId}` : '',
+    googleOauthClientSecret ? `GOOGLE_OAUTH_CLIENT_SECRET=${googleOauthClientSecret}` : '',
+    googleOauthRedirectUri ? `GOOGLE_OAUTH_REDIRECT_URI=${googleOauthRedirectUri}` : '',
+    notionOauthClientId ? `NOTION_OAUTH_CLIENT_ID=${notionOauthClientId}` : '',
+    notionOauthClientSecret ? `NOTION_OAUTH_CLIENT_SECRET=${notionOauthClientSecret}` : '',
+    notionOauthRedirectUri ? `NOTION_OAUTH_REDIRECT_URI=${notionOauthRedirectUri}` : '',
+    microsoftOauthClientId ? `MICROSOFT_OAUTH_CLIENT_ID=${microsoftOauthClientId}` : '',
+    microsoftOauthClientSecret ? `MICROSOFT_OAUTH_CLIENT_SECRET=${microsoftOauthClientSecret}` : '',
+    microsoftOauthRedirectUri ? `MICROSOFT_OAUTH_REDIRECT_URI=${microsoftOauthRedirectUri}` : '',
+    microsoftOauthTenantId ? `MICROSOFT_OAUTH_TENANT_ID=${microsoftOauthTenantId}` : '',
+    slackOauthClientId ? `SLACK_OAUTH_CLIENT_ID=${slackOauthClientId}` : '',
+    slackOauthClientSecret ? `SLACK_OAUTH_CLIENT_SECRET=${slackOauthClientSecret}` : '',
+    slackOauthRedirectUri ? `SLACK_OAUTH_REDIRECT_URI=${slackOauthRedirectUri}` : '',
+    figmaOauthClientId ? `FIGMA_OAUTH_CLIENT_ID=${figmaOauthClientId}` : '',
+    figmaOauthClientSecret ? `FIGMA_OAUTH_CLIENT_SECRET=${figmaOauthClientSecret}` : '',
+    figmaOauthRedirectUri ? `FIGMA_OAUTH_REDIRECT_URI=${figmaOauthRedirectUri}` : '',
+    deepgramApiKey ? `DEEPGRAM_API_KEY=${deepgramApiKey}` : '',
+    deepgramBaseUrl ? `DEEPGRAM_BASE_URL=${deepgramBaseUrl}` : '',
+    deepgramModel ? `DEEPGRAM_MODEL=${deepgramModel}` : '',
+    deepgramLanguage ? `DEEPGRAM_LANGUAGE=${deepgramLanguage}` : '',
+    telnyxWebhookToken ? `TELNYX_WEBHOOK_TOKEN=${telnyxWebhookToken}` : '',
     ollama ? `OLLAMA_URL=${ollama}` : '',
     origins ? `ALLOWED_ORIGINS=${origins}` : ''
   ].filter(Boolean);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "neoagent",
-  "version": "2.1.18-beta.0",
+  "version": "2.1.18-beta.10",
   "description": "Proactive personal AI agent with no limits",
   "license": "MIT",
   "main": "server/index.js",
@@ -20,6 +20,7 @@
   ],
   "scripts": {
     "start": "node server/index.js",
+    "start:guest-agent": "node server/guest_agent.js",
     "dev": "node --watch server/index.js",
     "dev:backend": "./dev/backend.sh",
     "dev:web": "./dev/web.sh",