npm - opc-agent - Versions diffs - 1.3.2 → 2.0.0 - Mend

opc-agent 1.3.2 → 2.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (226) hide show

package/.github/ISSUE_TEMPLATE/bug_report.md +20 -0
package/.github/ISSUE_TEMPLATE/feature_request.md +14 -0
package/.github/PULL_REQUEST_TEMPLATE.md +13 -0
package/.github/workflows/ci.yml +24 -0
package/CHANGELOG.md +48 -63
package/CONTRIBUTING.md +21 -60
package/README.md +284 -348
package/README.zh-CN.md +415 -415
package/dist/channels/slack.js +93 -10
package/dist/channels/telegram.d.ts +30 -9
package/dist/channels/telegram.js +125 -33
package/dist/channels/web.d.ts +10 -0
package/dist/channels/web.js +33 -2
package/dist/cli.js +667 -65
package/dist/core/agent.d.ts +23 -0
package/dist/core/agent.js +120 -3
package/dist/core/runtime.d.ts +5 -0
package/dist/core/runtime.js +71 -0
package/dist/core/scheduler.d.ts +52 -0
package/dist/core/scheduler.js +168 -0
package/dist/core/subagent.d.ts +28 -0
package/dist/core/subagent.js +65 -0
package/dist/daemon.d.ts +3 -0
package/dist/daemon.js +134 -0
package/dist/deploy/hermes.js +22 -22
package/dist/deploy/openclaw.js +31 -40
package/dist/index.d.ts +10 -10
package/dist/index.js +22 -15
package/dist/providers/index.d.ts +6 -2
package/dist/providers/index.js +22 -9
package/dist/schema/oad.d.ts +180 -6
package/dist/schema/oad.js +12 -1
package/dist/skills/auto-learn.d.ts +28 -0
package/dist/skills/auto-learn.js +257 -0
package/dist/templates/code-reviewer.d.ts +0 -8
package/dist/templates/code-reviewer.js +5 -9
package/dist/templates/customer-service.d.ts +0 -8
package/dist/templates/customer-service.js +2 -6
package/dist/templates/data-analyst.d.ts +0 -8
package/dist/templates/data-analyst.js +5 -9
package/dist/templates/knowledge-base.d.ts +0 -8
package/dist/templates/knowledge-base.js +2 -6
package/dist/templates/sales-assistant.d.ts +0 -8
package/dist/templates/sales-assistant.js +4 -8
package/dist/templates/teacher.d.ts +0 -8
package/dist/templates/teacher.js +6 -10
package/dist/tools/builtin/datetime.d.ts +3 -0
package/dist/tools/builtin/datetime.js +44 -0
package/dist/tools/builtin/file.d.ts +3 -0
package/dist/tools/builtin/file.js +151 -0
package/dist/tools/builtin/index.d.ts +15 -0
package/dist/tools/builtin/index.js +30 -0
package/dist/tools/builtin/shell.d.ts +3 -0
package/dist/tools/builtin/shell.js +43 -0
package/dist/tools/builtin/web.d.ts +3 -0
package/dist/tools/builtin/web.js +37 -0
package/dist/tools/mcp-client.d.ts +24 -0
package/dist/tools/mcp-client.js +119 -0
package/dist/traces/index.d.ts +49 -0
package/dist/traces/index.js +102 -0
package/docs/.vitepress/config.ts +103 -103
package/docs/api/cli.md +48 -48
package/docs/api/oad-schema.md +64 -64
package/docs/api/sdk.md +80 -80
package/docs/guide/concepts.md +51 -51
package/docs/guide/configuration.md +79 -79
package/docs/guide/deployment.md +42 -42
package/docs/guide/getting-started.md +44 -44
package/docs/guide/templates.md +28 -28
package/docs/guide/testing.md +84 -84
package/docs/index.md +27 -27
package/docs/zh/api/cli.md +54 -54
package/docs/zh/api/oad-schema.md +87 -87
package/docs/zh/api/sdk.md +102 -102
package/docs/zh/guide/concepts.md +104 -104
package/docs/zh/guide/configuration.md +135 -135
package/docs/zh/guide/deployment.md +81 -81
package/docs/zh/guide/getting-started.md +82 -82
package/docs/zh/guide/templates.md +84 -84
package/docs/zh/guide/testing.md +88 -88
package/docs/zh/index.md +27 -27
package/examples/README.md +22 -0
package/examples/basic-agent.ts +90 -0
package/examples/brain-integration.ts +71 -0
package/examples/customer-service-demo/README.md +90 -90
package/examples/customer-service-demo/oad.yaml +107 -107
package/examples/multi-channel.ts +74 -0
package/package.json +1 -1
package/src/analytics/index.ts +66 -66
package/src/channels/discord.ts +192 -192
package/src/channels/email.ts +177 -177
package/src/channels/feishu.ts +236 -236
package/src/channels/index.ts +15 -15
package/src/channels/slack.ts +217 -160
package/src/channels/telegram.ts +155 -33
package/src/channels/voice.ts +106 -106
package/src/channels/web.ts +38 -2
package/src/channels/webhook.ts +199 -199
package/src/channels/websocket.ts +87 -87
package/src/channels/wechat.ts +149 -149
package/src/cli.ts +697 -63
package/src/core/a2a.ts +143 -143
package/src/core/agent.ts +146 -3
package/src/core/analytics-engine.ts +186 -186
package/src/core/auth.ts +57 -57
package/src/core/cache.ts +141 -141
package/src/core/compose.ts +77 -77
package/src/core/config.ts +14 -14
package/src/core/errors.ts +148 -148
package/src/core/hitl.ts +138 -138
package/src/core/logger.ts +57 -57
package/src/core/orchestrator.ts +215 -215
package/src/core/performance.ts +187 -187
package/src/core/rate-limiter.ts +128 -128
package/src/core/room.ts +109 -109
package/src/core/runtime.ts +230 -152
package/src/core/sandbox.ts +101 -101
package/src/core/scheduler.ts +187 -0
package/src/core/security.ts +171 -171
package/src/core/subagent.ts +98 -0
package/src/core/types.ts +68 -68
package/src/core/versioning.ts +106 -106
package/src/core/watch.ts +178 -178
package/src/core/workflow.ts +235 -235
package/src/daemon.ts +96 -0
package/src/deploy/hermes.ts +156 -156
package/src/deploy/openclaw.ts +190 -200
package/src/i18n/index.ts +216 -216
package/src/index.ts +14 -10
package/src/memory/deepbrain.ts +108 -108
package/src/memory/index.ts +34 -34
package/src/plugins/index.ts +208 -208
package/src/providers/index.ts +354 -331
package/src/schema/oad.ts +14 -2
package/src/skills/auto-learn.ts +262 -0
package/src/skills/base.ts +16 -16
package/src/skills/document.ts +100 -100
package/src/skills/http.ts +35 -35
package/src/skills/index.ts +27 -27
package/src/skills/scheduler.ts +80 -80
package/src/skills/webhook-trigger.ts +59 -59
package/src/templates/code-reviewer.ts +30 -34
package/src/templates/customer-service.ts +76 -80
package/src/templates/data-analyst.ts +66 -70
package/src/templates/executive-assistant.ts +71 -71
package/src/templates/financial-advisor.ts +60 -60
package/src/templates/knowledge-base.ts +27 -31
package/src/templates/legal-assistant.ts +71 -71
package/src/templates/sales-assistant.ts +75 -79
package/src/templates/teacher.ts +75 -79
package/src/testing/index.ts +181 -181
package/src/tools/builtin/datetime.ts +41 -0
package/src/tools/builtin/file.ts +107 -0
package/src/tools/builtin/index.ts +28 -0
package/src/tools/builtin/shell.ts +43 -0
package/src/tools/builtin/web.ts +35 -0
package/src/tools/calculator.ts +73 -73
package/src/tools/datetime.ts +149 -149
package/src/tools/json-transform.ts +187 -187
package/src/tools/mcp-client.ts +131 -0
package/src/tools/mcp.ts +76 -76
package/src/tools/text-analysis.ts +116 -116
package/src/traces/index.ts +132 -0
package/templates/Dockerfile +15 -15
package/templates/code-reviewer/README.md +27 -27
package/templates/code-reviewer/oad.yaml +41 -41
package/templates/customer-service/README.md +22 -22
package/templates/customer-service/oad.yaml +36 -36
package/templates/docker-compose.yml +21 -21
package/templates/ecommerce-assistant/README.md +45 -45
package/templates/ecommerce-assistant/oad.yaml +47 -47
package/templates/knowledge-base/README.md +28 -28
package/templates/knowledge-base/oad.yaml +38 -38
package/templates/sales-assistant/README.md +26 -26
package/templates/sales-assistant/oad.yaml +43 -43
package/templates/tech-support/README.md +43 -43
package/templates/tech-support/oad.yaml +45 -45
package/test-agent/Dockerfile +9 -0
package/test-agent/README.md +50 -0
package/test-agent/agent.yaml +23 -0
package/test-agent/docker-compose.yml +11 -0
package/test-agent/oad.yaml +31 -0
package/test-agent/package-lock.json +1492 -0
package/test-agent/package.json +18 -0
package/test-agent/src/index.ts +24 -0
package/test-agent/src/skills/echo.ts +15 -0
package/test-agent/tsconfig.json +25 -0
package/tests/a2a.test.ts +66 -66
package/tests/agent.test.ts +72 -72
package/tests/analytics.test.ts +50 -50
package/tests/auto-learn.test.ts +105 -0
package/tests/builtin-tools.test.ts +83 -0
package/tests/channel.test.ts +39 -39
package/tests/cli.test.ts +46 -0
package/tests/e2e.test.ts +134 -134
package/tests/errors.test.ts +83 -83
package/tests/hitl.test.ts +71 -71
package/tests/i18n.test.ts +41 -41
package/tests/mcp.test.ts +54 -54
package/tests/oad.test.ts +68 -68
package/tests/performance.test.ts +115 -115
package/tests/plugin.test.ts +74 -74
package/tests/room.test.ts +106 -106
package/tests/runtime.test.ts +42 -42
package/tests/sandbox.test.ts +46 -46
package/tests/security.test.ts +60 -60
package/tests/subagent.test.ts +130 -0
package/tests/telegram-discord.test.ts +60 -0
package/tests/templates.test.ts +77 -77
package/tests/v070.test.ts +76 -76
package/tests/versioning.test.ts +75 -75
package/tests/voice.test.ts +61 -61
package/tests/webhook.test.ts +29 -29
package/tests/workflow.test.ts +143 -143
package/tsconfig.json +19 -19
package/vitest.config.ts +9 -9
package/dist/core/dashboard.d.ts +0 -35
package/dist/core/dashboard.js +0 -157
package/dist/core/priority.d.ts +0 -52
package/dist/core/priority.js +0 -102
package/src/core/dashboard.ts +0 -219
package/src/core/priority.ts +0 -140
package/src/dtv/data.ts +0 -29
package/src/dtv/trust.ts +0 -43
package/src/dtv/value.ts +0 -47
package/src/marketplace/index.ts +0 -223

package/src/core/security.ts CHANGED Viewed

@@ -1,171 +1,171 @@
-/**
- * Security Hardening Module - v1.0.0
- * Input sanitization, CORS, security headers, API key rotation.
- */
-import type { Request, Response, NextFunction } from 'express';
-// ── Input Sanitization ──────────────────────────────────────
-const XSS_PATTERNS = [
-  /<script\b[^>]*>[\s\S]*?<\/script>/gi,
-  /javascript:/gi,
-  /on\w+\s*=/gi,
-  /<iframe\b/gi,
-  /<object\b/gi,
-  /<embed\b/gi,
-  /<form\b/gi,
-];
-const SQL_PATTERNS = [
-  /(\b(SELECT|INSERT|UPDATE|DELETE|DROP|UNION|ALTER|CREATE|EXEC)\b.*\b(FROM|INTO|TABLE|SET|WHERE|ALL)\b)/gi,
-  /(--|;)\s*(DROP|ALTER|DELETE)/gi,
-];
-export function sanitizeInput(input: string): string {
-  let clean = input;
-  for (const pattern of XSS_PATTERNS) {
-    clean = clean.replace(pattern, '');
-  }
-  // Encode dangerous HTML entities
-  clean = clean.replace(/&/g, '&amp;').replace(/</g, '&lt;').replace(/>/g, '&gt;');
-  return clean;
-}
-export function detectInjection(input: string): { safe: boolean; threats: string[] } {
-  const threats: string[] = [];
-  for (const pattern of XSS_PATTERNS) {
-    if (pattern.test(input)) threats.push('xss');
-    pattern.lastIndex = 0;
-  }
-  for (const pattern of SQL_PATTERNS) {
-    if (pattern.test(input)) threats.push('sql_injection');
-    pattern.lastIndex = 0;
-  }
-  return { safe: threats.length === 0, threats: [...new Set(threats)] };
-}
-// ── Security Headers (Helmet-style) ────────────────────────
-export interface SecurityHeadersConfig {
-  contentSecurityPolicy?: string;
-  enableHSTS?: boolean;
-  frameDeny?: boolean;
-  xssProtection?: boolean;
-  noSniff?: boolean;
-  referrerPolicy?: string;
-}
-export function securityHeaders(config?: SecurityHeadersConfig) {
-  const csp = config?.contentSecurityPolicy ?? "default-src 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'";
-  return (_req: Request, res: Response, next: NextFunction): void => {
-    res.setHeader('Content-Security-Policy', csp);
-    res.setHeader('X-Content-Type-Options', 'nosniff');
-    res.setHeader('X-Frame-Options', config?.frameDeny !== false ? 'DENY' : 'SAMEORIGIN');
-    res.setHeader('X-XSS-Protection', '1; mode=block');
-    res.setHeader('Referrer-Policy', config?.referrerPolicy ?? 'strict-origin-when-cross-origin');
-    if (config?.enableHSTS !== false) {
-      res.setHeader('Strict-Transport-Security', 'max-age=31536000; includeSubDomains');
-    }
-    res.removeHeader('X-Powered-By');
-    next();
-  };
-}
-// ── CORS Configuration ──────────────────────────────────────
-export interface CORSConfig {
-  origins?: string[];
-  methods?: string[];
-  allowHeaders?: string[];
-  credentials?: boolean;
-  maxAge?: number;
-}
-export function corsMiddleware(config?: CORSConfig) {
-  const origins = config?.origins ?? ['*'];
-  const methods = config?.methods ?? ['GET', 'POST', 'OPTIONS'];
-  const headers = config?.allowHeaders ?? ['Content-Type', 'Authorization'];
-  return (req: Request, res: Response, next: NextFunction): void => {
-    const origin = req.headers.origin ?? '';
-    if (origins.includes('*') || origins.includes(origin)) {
-      res.setHeader('Access-Control-Allow-Origin', origins.includes('*') ? '*' : origin);
-    }
-    res.setHeader('Access-Control-Allow-Methods', methods.join(', '));
-    res.setHeader('Access-Control-Allow-Headers', headers.join(', '));
-    if (config?.credentials) res.setHeader('Access-Control-Allow-Credentials', 'true');
-    if (config?.maxAge) res.setHeader('Access-Control-Max-Age', String(config.maxAge));
-    if (req.method === 'OPTIONS') { res.status(204).end(); return; }
-    next();
-  };
-}
-// ── API Key Rotation ────────────────────────────────────────
-export interface APIKeyEntry {
-  key: string;
-  label?: string;
-  createdAt: number;
-  expiresAt?: number;
-  active: boolean;
-}
-export class APIKeyManager {
-  private keys: APIKeyEntry[] = [];
-  addKey(key: string, opts?: { label?: string; expiresAt?: number }): void {
-    this.keys.push({ key, label: opts?.label, createdAt: Date.now(), expiresAt: opts?.expiresAt, active: true });
-  }
-  revokeKey(key: string): boolean {
-    const entry = this.keys.find(k => k.key === key);
-    if (entry) { entry.active = false; return true; }
-    return false;
-  }
-  isValid(key: string): boolean {
-    const entry = this.keys.find(k => k.key === key);
-    if (!entry || !entry.active) return false;
-    if (entry.expiresAt && Date.now() > entry.expiresAt) { entry.active = false; return false; }
-    return true;
-  }
-  rotateKey(oldKey: string, newKey: string): boolean {
-    const entry = this.keys.find(k => k.key === oldKey && k.active);
-    if (!entry) return false;
-    entry.active = false;
-    this.addKey(newKey, { label: entry.label });
-    return true;
-  }
-  listActive(): APIKeyEntry[] {
-    return this.keys.filter(k => k.active && (!k.expiresAt || Date.now() <= k.expiresAt));
-  }
-  cleanup(): number {
-    const before = this.keys.length;
-    this.keys = this.keys.filter(k => k.active && (!k.expiresAt || Date.now() <= k.expiresAt));
-    return before - this.keys.length;
-  }
-}
-// ── Input Validation Middleware ──────────────────────────────
-export function inputValidation() {
-  return (req: Request, res: Response, next: NextFunction): void => {
-    if (req.body?.message && typeof req.body.message === 'string') {
-      const check = detectInjection(req.body.message);
-      if (!check.safe) {
-        res.status(400).json({ error: 'Input contains potentially unsafe content', threats: check.threats });
-        return;
-      }
-      // Limit message size
-      if (req.body.message.length > 100_000) {
-        res.status(413).json({ error: 'Message too large (max 100KB)' });
-        return;
-      }
-    }
-    next();
-  };
-}
+/**
+ * Security Hardening Module - v1.0.0
+ * Input sanitization, CORS, security headers, API key rotation.
+ */
+import type { Request, Response, NextFunction } from 'express';
+// ── Input Sanitization ──────────────────────────────────────
+const XSS_PATTERNS = [
+  /<script\b[^>]*>[\s\S]*?<\/script>/gi,
+  /javascript:/gi,
+  /on\w+\s*=/gi,
+  /<iframe\b/gi,
+  /<object\b/gi,
+  /<embed\b/gi,
+  /<form\b/gi,
+];
+const SQL_PATTERNS = [
+  /(\b(SELECT|INSERT|UPDATE|DELETE|DROP|UNION|ALTER|CREATE|EXEC)\b.*\b(FROM|INTO|TABLE|SET|WHERE|ALL)\b)/gi,
+  /(--|;)\s*(DROP|ALTER|DELETE)/gi,
+];
+export function sanitizeInput(input: string): string {
+  let clean = input;
+  for (const pattern of XSS_PATTERNS) {
+    clean = clean.replace(pattern, '');
+  }
+  // Encode dangerous HTML entities
+  clean = clean.replace(/&/g, '&amp;').replace(/</g, '&lt;').replace(/>/g, '&gt;');
+  return clean;
+}
+export function detectInjection(input: string): { safe: boolean; threats: string[] } {
+  const threats: string[] = [];
+  for (const pattern of XSS_PATTERNS) {
+    if (pattern.test(input)) threats.push('xss');
+    pattern.lastIndex = 0;
+  }
+  for (const pattern of SQL_PATTERNS) {
+    if (pattern.test(input)) threats.push('sql_injection');
+    pattern.lastIndex = 0;
+  }
+  return { safe: threats.length === 0, threats: [...new Set(threats)] };
+}
+// ── Security Headers (Helmet-style) ────────────────────────
+export interface SecurityHeadersConfig {
+  contentSecurityPolicy?: string;
+  enableHSTS?: boolean;
+  frameDeny?: boolean;
+  xssProtection?: boolean;
+  noSniff?: boolean;
+  referrerPolicy?: string;
+}
+export function securityHeaders(config?: SecurityHeadersConfig) {
+  const csp = config?.contentSecurityPolicy ?? "default-src 'self'; script-src 'self' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; connect-src 'self'";
+  return (_req: Request, res: Response, next: NextFunction): void => {
+    res.setHeader('Content-Security-Policy', csp);
+    res.setHeader('X-Content-Type-Options', 'nosniff');
+    res.setHeader('X-Frame-Options', config?.frameDeny !== false ? 'DENY' : 'SAMEORIGIN');
+    res.setHeader('X-XSS-Protection', '1; mode=block');
+    res.setHeader('Referrer-Policy', config?.referrerPolicy ?? 'strict-origin-when-cross-origin');
+    if (config?.enableHSTS !== false) {
+      res.setHeader('Strict-Transport-Security', 'max-age=31536000; includeSubDomains');
+    }
+    res.removeHeader('X-Powered-By');
+    next();
+  };
+}
+// ── CORS Configuration ──────────────────────────────────────
+export interface CORSConfig {
+  origins?: string[];
+  methods?: string[];
+  allowHeaders?: string[];
+  credentials?: boolean;
+  maxAge?: number;
+}
+export function corsMiddleware(config?: CORSConfig) {
+  const origins = config?.origins ?? ['*'];
+  const methods = config?.methods ?? ['GET', 'POST', 'OPTIONS'];
+  const headers = config?.allowHeaders ?? ['Content-Type', 'Authorization'];
+  return (req: Request, res: Response, next: NextFunction): void => {
+    const origin = req.headers.origin ?? '';
+    if (origins.includes('*') || origins.includes(origin)) {
+      res.setHeader('Access-Control-Allow-Origin', origins.includes('*') ? '*' : origin);
+    }
+    res.setHeader('Access-Control-Allow-Methods', methods.join(', '));
+    res.setHeader('Access-Control-Allow-Headers', headers.join(', '));
+    if (config?.credentials) res.setHeader('Access-Control-Allow-Credentials', 'true');
+    if (config?.maxAge) res.setHeader('Access-Control-Max-Age', String(config.maxAge));
+    if (req.method === 'OPTIONS') { res.status(204).end(); return; }
+    next();
+  };
+}
+// ── API Key Rotation ────────────────────────────────────────
+export interface APIKeyEntry {
+  key: string;
+  label?: string;
+  createdAt: number;
+  expiresAt?: number;
+  active: boolean;
+}
+export class APIKeyManager {
+  private keys: APIKeyEntry[] = [];
+  addKey(key: string, opts?: { label?: string; expiresAt?: number }): void {
+    this.keys.push({ key, label: opts?.label, createdAt: Date.now(), expiresAt: opts?.expiresAt, active: true });
+  }
+  revokeKey(key: string): boolean {
+    const entry = this.keys.find(k => k.key === key);
+    if (entry) { entry.active = false; return true; }
+    return false;
+  }
+  isValid(key: string): boolean {
+    const entry = this.keys.find(k => k.key === key);
+    if (!entry || !entry.active) return false;
+    if (entry.expiresAt && Date.now() > entry.expiresAt) { entry.active = false; return false; }
+    return true;
+  }
+  rotateKey(oldKey: string, newKey: string): boolean {
+    const entry = this.keys.find(k => k.key === oldKey && k.active);
+    if (!entry) return false;
+    entry.active = false;
+    this.addKey(newKey, { label: entry.label });
+    return true;
+  }
+  listActive(): APIKeyEntry[] {
+    return this.keys.filter(k => k.active && (!k.expiresAt || Date.now() <= k.expiresAt));
+  }
+  cleanup(): number {
+    const before = this.keys.length;
+    this.keys = this.keys.filter(k => k.active && (!k.expiresAt || Date.now() <= k.expiresAt));
+    return before - this.keys.length;
+  }
+}
+// ── Input Validation Middleware ──────────────────────────────
+export function inputValidation() {
+  return (req: Request, res: Response, next: NextFunction): void => {
+    if (req.body?.message && typeof req.body.message === 'string') {
+      const check = detectInjection(req.body.message);
+      if (!check.safe) {
+        res.status(400).json({ error: 'Input contains potentially unsafe content', threats: check.threats });
+        return;
+      }
+      // Limit message size
+      if (req.body.message.length > 100_000) {
+        res.status(413).json({ error: 'Message too large (max 100KB)' });
+        return;
+      }
+    }
+    next();
+  };
+}

package/src/core/subagent.ts ADDED Viewed

@@ -0,0 +1,98 @@
+import { BaseAgent } from './agent';
+import { InMemoryStore } from '../memory';
+import type { Message } from './types';
+export interface SubAgentConfig {
+  name: string;
+  task: string;
+  systemPrompt?: string;
+  provider?: string;
+  model?: string;
+  timeout?: number;
+  isolated?: boolean;
+}
+export interface SubAgentResult {
+  id: string;
+  name: string;
+  status: 'completed' | 'failed' | 'timeout';
+  result: string;
+  duration: number;
+}
+interface SubAgentEntry {
+  agent: BaseAgent;
+  status: string;
+  name: string;
+}
+export class SubAgentManager {
+  private agents: Map<string, SubAgentEntry> = new Map();
+  async spawn(config: SubAgentConfig, parentProvider?: any): Promise<SubAgentResult> {
+    const id = `sub_${Date.now()}_${Math.random().toString(36).slice(2, 8)}`;
+    const timeout = config.timeout ?? 300000;
+    const isolated = config.isolated !== false;
+    const agent = new BaseAgent({
+      name: config.name,
+      systemPrompt: config.systemPrompt ?? 'You are a helpful sub-agent.',
+      provider: config.provider ?? 'openai',
+      model: config.model,
+      memory: isolated ? new InMemoryStore() : undefined,
+    });
+    this.agents.set(id, { agent, status: 'running', name: config.name });
+    const message: Message = {
+      id: `msg_${Date.now()}`,
+      role: 'user',
+      content: config.task,
+      timestamp: Date.now(),
+      metadata: { subAgentId: id },
+    };
+    const start = Date.now();
+    try {
+      const result = await Promise.race([
+        agent.handleMessage(message),
+        new Promise<never>((_, reject) =>
+          setTimeout(() => reject(new Error('SubAgent timeout')), timeout),
+        ),
+      ]);
+      const duration = Date.now() - start;
+      this.agents.set(id, { agent, status: 'completed', name: config.name });
+      return { id, name: config.name, status: 'completed', result: result.content, duration };
+    } catch (err) {
+      const duration = Date.now() - start;
+      const isTimeout = (err as Error).message.includes('timeout');
+      const status = isTimeout ? 'timeout' : 'failed';
+      this.agents.set(id, { agent, status, name: config.name });
+      return { id, name: config.name, status, result: (err as Error).message, duration };
+    }
+  }
+  async spawnParallel(configs: SubAgentConfig[], parentProvider?: any): Promise<SubAgentResult[]> {
+    return Promise.all(configs.map((c) => this.spawn(c, parentProvider)));
+  }
+  list(): Array<{ id: string; name: string; status: string }> {
+    return Array.from(this.agents.entries()).map(([id, entry]) => ({
+      id,
+      name: entry.name,
+      status: entry.status,
+    }));
+  }
+  kill(id: string): boolean {
+    const entry = this.agents.get(id);
+    if (!entry) return false;
+    entry.status = 'killed';
+    this.agents.set(id, entry);
+    return true;
+  }
+}

package/src/core/types.ts CHANGED Viewed

@@ -1,68 +1,68 @@
-import { EventEmitter } from 'events';
-// ─── Core Types ──────────────────────────────────────────────
-export type AgentState = 'init' | 'ready' | 'running' | 'stopped' | 'error';
-export interface Message {
-  id: string;
-  role: 'user' | 'assistant' | 'system';
-  content: string;
-  timestamp: number;
-  metadata?: Record<string, unknown>;
-}
-export interface AgentContext {
-  agentName: string;
-  sessionId: string;
-  messages: Message[];
-  memory: MemoryStore;
-  metadata: Record<string, unknown>;
-}
-export interface SkillResult {
-  handled: boolean;
-  response?: string;
-  confidence: number;
-  metadata?: Record<string, unknown>;
-}
-export interface ISkill {
-  name: string;
-  description: string;
-  execute(context: AgentContext, message: Message): Promise<SkillResult>;
-}
-export interface IChannel {
-  type: string;
-  start(): Promise<void>;
-  stop(): Promise<void>;
-  onMessage(handler: (message: Message) => Promise<Message>): void;
-}
-export interface MemoryStore {
-  get(key: string): Promise<unknown>;
-  set(key: string, value: unknown): Promise<void>;
-  getConversation(sessionId: string): Promise<Message[]>;
-  addMessage(sessionId: string, message: Message): Promise<void>;
-  clear(sessionId?: string): Promise<void>;
-}
-export interface AgentEvents {
-  'state:change': (from: AgentState, to: AgentState) => void;
-  'message:in': (message: Message) => void;
-  'message:out': (message: Message) => void;
-  'skill:execute': (skill: string, result: SkillResult) => void;
-  'error': (error: Error) => void;
-}
-export interface IAgent extends EventEmitter {
-  readonly name: string;
-  readonly state: AgentState;
-  init(): Promise<void>;
-  start(): Promise<void>;
-  stop(): Promise<void>;
-  handleMessage(message: Message): Promise<Message>;
-  registerSkill(skill: ISkill): void;
-  bindChannel(channel: IChannel): void;
-}
+import { EventEmitter } from 'events';
+// ─── Core Types ──────────────────────────────────────────────
+export type AgentState = 'init' | 'ready' | 'running' | 'stopped' | 'error';
+export interface Message {
+  id: string;
+  role: 'user' | 'assistant' | 'system';
+  content: string;
+  timestamp: number;
+  metadata?: Record<string, unknown>;
+}
+export interface AgentContext {
+  agentName: string;
+  sessionId: string;
+  messages: Message[];
+  memory: MemoryStore;
+  metadata: Record<string, unknown>;
+}
+export interface SkillResult {
+  handled: boolean;
+  response?: string;
+  confidence: number;
+  metadata?: Record<string, unknown>;
+}
+export interface ISkill {
+  name: string;
+  description: string;
+  execute(context: AgentContext, message: Message): Promise<SkillResult>;
+}
+export interface IChannel {
+  type: string;
+  start(): Promise<void>;
+  stop(): Promise<void>;
+  onMessage(handler: (message: Message) => Promise<Message>): void;
+}
+export interface MemoryStore {
+  get(key: string): Promise<unknown>;
+  set(key: string, value: unknown): Promise<void>;
+  getConversation(sessionId: string): Promise<Message[]>;
+  addMessage(sessionId: string, message: Message): Promise<void>;
+  clear(sessionId?: string): Promise<void>;
+}
+export interface AgentEvents {
+  'state:change': (from: AgentState, to: AgentState) => void;
+  'message:in': (message: Message) => void;
+  'message:out': (message: Message) => void;
+  'skill:execute': (skill: string, result: SkillResult) => void;
+  'error': (error: Error) => void;
+}
+export interface IAgent extends EventEmitter {
+  readonly name: string;
+  readonly state: AgentState;
+  init(): Promise<void>;
+  start(): Promise<void>;
+  stop(): Promise<void>;
+  handleMessage(message: Message): Promise<Message>;
+  registerSkill(skill: ISkill): void;
+  bindChannel(channel: IChannel): void;
+}