opencode-qwen-cli-auth 1.0.2 → 1.0.4

package/dist/index.d.ts

@@ -1,21 +1,21 @@
-/**
- * Alibaba Qwen OAuth Authentication Plugin for opencode
- *
- * @license MIT with Usage Disclaimer (see LICENSE file)
- * @repository https://github.com/TVD-00/opencode-qwen-cli-auth
- */
-import type { Plugin } from "@opencode-ai/plugin";
-/**
- * Alibaba Qwen OAuth authentication plugin for opencode
- *
- * @example
- * ```json
- * {
- *   "plugin": ["opencode-qwen-cli-auth"],
- *   "model": "alibaba/coder-model"
- * }
- * ```
- */
-export declare const QwenAuthPlugin: Plugin;
-export default QwenAuthPlugin;
+/**
+ * Alibaba Qwen OAuth Authentication Plugin for opencode
+ *
+ * @license MIT with Usage Disclaimer (see LICENSE file)
+ * @repository https://github.com/TVD-00/opencode-qwen-cli-auth
+ */
+import type { Plugin } from "@opencode-ai/plugin";
+/**
+ * Alibaba Qwen OAuth authentication plugin for opencode
+ *
+ * @example
+ * ```json
+ * {
+ *   "plugin": ["opencode-alibaba-qwen-cli-auth"],
+ *   "model": "alibaba/coder-model"
+ * }
+ * ```
+ */
+export declare const QwenAuthPlugin: Plugin;
+export default QwenAuthPlugin;
 //# sourceMappingURL=index.d.ts.map

package/dist/index.js

@@ -1,181 +1,167 @@
-/**
- * Alibaba Qwen OAuth Authentication Plugin for opencode
- *
- * Plugin don gian: chi xu ly OAuth login + tra apiKey/baseURL cho SDK.
- * SDK tu xu ly streaming, headers, request format.
- *
- * @license MIT with Usage Disclaimer (see LICENSE file)
- * @repository https://github.com/TVD-00/opencode-qwen-cli-auth
- */
-import { createPKCE, requestDeviceCode, pollForToken, getApiBaseUrl, saveToken, refreshAccessToken, loadStoredToken } from "./lib/auth/auth.js";
-import { PROVIDER_ID, AUTH_LABELS, DEVICE_FLOW } from "./lib/constants.js";
-import { logError, logInfo, LOGGING_ENABLED } from "./lib/logger.js";
-/**
- * Lay access token hop le tu SDK auth state, refresh neu het han
- * Dung getAuth() cua SDK thay vi doc file truc tiep
- *
- * @param getAuth - Ham lay auth state tu SDK
- * @returns access token hoac null
- */
-async function getValidAccessToken(getAuth) {
-    const auth = await getAuth();
-    if (!auth || auth.type !== "oauth") {
-        return null;
-    }
-    let accessToken = auth.access;
-    // Refresh neu het han (buffer 60 giay)
-    if (accessToken && auth.expires && Date.now() > auth.expires - 60000 && auth.refresh) {
-        try {
-            const refreshResult = await refreshAccessToken(auth.refresh);
-            if (refreshResult.type === "success") {
-                accessToken = refreshResult.access;
-                saveToken(refreshResult);
-            }
-            else {
-                if (LOGGING_ENABLED) {
-                    logError("Token refresh failed");
-                }
-                accessToken = undefined;
-            }
-        }
-        catch (e) {
-            if (LOGGING_ENABLED) {
-                logError("Token refresh error:", e);
-            }
-            accessToken = undefined;
-        }
-    }
-    return accessToken ?? null;
-}
-/**
- * Lay base URL tu token luu tren disk (resource_url)
- * Fallback ve portal.qwen.ai/v1 neu khong co
- */
-function getBaseUrl() {
-    try {
-        const stored = loadStoredToken();
-        if (stored?.resource_url) {
-            return getApiBaseUrl(stored.resource_url);
-        }
-    }
-    catch (_) {
-        // Loi doc file, dung default
-    }
-    return getApiBaseUrl();
-}
-/**
- * Alibaba Qwen OAuth authentication plugin for opencode
- *
- * @example
- * ```json
- * {
- *   "plugin": ["opencode-qwen-cli-auth"],
- *   "model": "alibaba/coder-model"
- * }
- * ```
- */
-export const QwenAuthPlugin = async (_input) => {
-    return {
-        auth: {
-            provider: PROVIDER_ID,
-            /**
-             * Loader: lay token + base URL, tra ve cho SDK
-             * Khong can custom fetch - SDK tu xu ly streaming va headers
-             */
-            async loader(getAuth, provider) {
-                const auth = await getAuth();
-                // Chi xu ly OAuth, bo qua API key auth
-                if (auth.type !== "oauth") {
-                    return {};
-                }
-                const accessToken = await getValidAccessToken(getAuth);
-                if (!accessToken) {
-                    return null;
-                }
-                const baseUrl = getBaseUrl();
-                // Tra ve apiKey + baseURL, SDK tu xu ly phan con lai
-                return {
-                    apiKey: accessToken,
-                    baseURL: baseUrl,
-                };
-            },
-            methods: [
-                {
-                    label: AUTH_LABELS.OAUTH,
-                    type: "oauth",
-                    /**
-                     * Device Authorization Grant OAuth flow (RFC 8628)
-                     */
-                    authorize: async () => {
-                        // Generate PKCE
-                        const pkce = await createPKCE();
-                        // Request device code
-                        const deviceAuth = await requestDeviceCode(pkce);
-                        if (!deviceAuth) {
-                            throw new Error("Failed to request device code");
-                        }
-                        // Hien thi user code
-                        console.log(`\nPlease visit: ${deviceAuth.verification_uri}`);
-                        console.log(`And enter code: ${deviceAuth.user_code}\n`);
-                        // URL xac thuc - SDK se tu mo browser khi method=auto
-                        const verificationUrl = deviceAuth.verification_uri_complete || deviceAuth.verification_uri;
-                        return {
-                            url: verificationUrl,
-                            method: "auto",
-                            instructions: AUTH_LABELS.INSTRUCTIONS,
-                            callback: async () => {
-                                // Poll for token
-                                let pollInterval = (deviceAuth.interval || 5) * 1000;
-                                const POLLING_MARGIN_MS = 3000;
-                                const maxInterval = DEVICE_FLOW.MAX_POLL_INTERVAL;
-                                const startTime = Date.now();
-                                const expiresIn = deviceAuth.expires_in * 1000;
-                                while (Date.now() - startTime < expiresIn) {
-                                    await new Promise(resolve => setTimeout(resolve, pollInterval + POLLING_MARGIN_MS));
-                                    const result = await pollForToken(deviceAuth.device_code, pkce.verifier);
-                                    if (result.type === "success") {
-                                        saveToken(result);
-                                        // Tra ve cho SDK luu auth state
-                                        return {
-                                            type: "success",
-                                            access: result.access,
-                                            refresh: result.refresh,
-                                            expires: result.expires,
-                                        };
-                                    }
-                                    if (result.type === "slow_down") {
-                                        pollInterval = Math.min(pollInterval + 5000, maxInterval);
-                                        continue;
-                                    }
-                                    if (result.type === "pending") {
-                                        continue;
-                                    }
-                                    // denied, expired, failed -> dung lai
-                                    return { type: "failed" };
-                                }
-                                console.error("[qwen-oauth-plugin] Device authorization timed out");
-                                return { type: "failed" };
-                            },
-                        };
-                    },
-                },
-            ],
-        },
-        /**
-         * Them header X-DashScope-AuthType cho Portal API (OAuth)
-         * CLI goc gui header nay de server nhan biet auth method
-         */
-        "chat.headers": async (input, output) => {
-            try {
-                if (input?.provider?.info?.id === PROVIDER_ID && output?.headers) {
-                    output.headers["X-DashScope-AuthType"] = "qwen-oauth";
-                }
-            }
-            catch (_) {
-                // Khong de loi hook lam treo request
-            }
-        },
-    };
-};
-export default QwenAuthPlugin;
+/**
+ * Alibaba Qwen OAuth Authentication Plugin for opencode
+ *
+ * Plugin don gian: chi xu ly OAuth login + tra apiKey/baseURL cho SDK.
+ * SDK tu xu ly streaming, headers, request format.
+ *
+ * @license MIT with Usage Disclaimer (see LICENSE file)
+ * @repository https://github.com/TVD-00/opencode-qwen-cli-auth
+ */
+import { createPKCE, requestDeviceCode, pollForToken, getApiBaseUrl, saveToken, refreshAccessToken, loadStoredToken } from "./lib/auth/auth.js";
+import { PROVIDER_ID, AUTH_LABELS, DEVICE_FLOW } from "./lib/constants.js";
+import { logError, logInfo, LOGGING_ENABLED } from "./lib/logger.js";
+/**
+ * Lay access token hop le tu SDK auth state, refresh neu het han
+ * Dung getAuth() cua SDK thay vi doc file truc tiep
+ *
+ * @param getAuth - Ham lay auth state tu SDK
+ * @returns access token hoac null
+ */
+async function getValidAccessToken(getAuth) {
+    const auth = await getAuth();
+    if (!auth || auth.type !== "oauth") {
+        return null;
+    }
+    let accessToken = auth.access;
+    // Refresh neu het han (buffer 60 giay)
+    if (accessToken && auth.expires && Date.now() > auth.expires - 60000 && auth.refresh) {
+        try {
+            const refreshResult = await refreshAccessToken(auth.refresh);
+            if (refreshResult.type === "success") {
+                accessToken = refreshResult.access;
+                saveToken(refreshResult);
+            }
+            else {
+                if (LOGGING_ENABLED) {
+                    logError("Token refresh failed");
+                }
+                accessToken = undefined;
+            }
+        }
+        catch (e) {
+            if (LOGGING_ENABLED) {
+                logError("Token refresh error:", e);
+            }
+            accessToken = undefined;
+        }
+    }
+    return accessToken ?? null;
+}
+/**
+ * Lay base URL tu token luu tren disk (resource_url)
+ * Fallback ve portal.qwen.ai/v1 neu khong co
+ */
+function getBaseUrl() {
+    try {
+        const stored = loadStoredToken();
+        if (stored?.resource_url) {
+            return getApiBaseUrl(stored.resource_url);
+        }
+    }
+    catch (_) {
+        // Loi doc file, dung default
+    }
+    return getApiBaseUrl();
+}
+/**
+ * Alibaba Qwen OAuth authentication plugin for opencode
+ *
+ * @example
+ * ```json
+ * {
+ *   "plugin": ["opencode-alibaba-qwen-cli-auth"],
+ *   "model": "alibaba/coder-model"
+ * }
+ * ```
+ */
+export const QwenAuthPlugin = async (_input) => {
+    return {
+        auth: {
+            provider: PROVIDER_ID,
+            /**
+             * Loader: lay token + base URL, tra ve cho SDK
+             * Khong can custom fetch - SDK tu xu ly streaming va headers
+             */
+            async loader(getAuth, provider) {
+                const auth = await getAuth();
+                // Chi xu ly OAuth, bo qua API key auth
+                if (auth.type !== "oauth") {
+                    return {};
+                }
+                const accessToken = await getValidAccessToken(getAuth);
+                if (!accessToken) {
+                    return null;
+                }
+                const baseUrl = getBaseUrl();
+                // Tra ve apiKey + baseURL, SDK tu xu ly phan con lai
+                return {
+                    apiKey: accessToken,
+                    baseURL: baseUrl,
+                };
+            },
+            methods: [
+                {
+                    label: AUTH_LABELS.OAUTH,
+                    type: "oauth",
+                    /**
+                     * Device Authorization Grant OAuth flow (RFC 8628)
+                     */
+                    authorize: async () => {
+                        // Generate PKCE
+                        const pkce = await createPKCE();
+                        // Request device code
+                        const deviceAuth = await requestDeviceCode(pkce);
+                        if (!deviceAuth) {
+                            throw new Error("Failed to request device code");
+                        }
+                        // Hien thi user code
+                        console.log(`\nPlease visit: ${deviceAuth.verification_uri}`);
+                        console.log(`And enter code: ${deviceAuth.user_code}\n`);
+                        // URL xac thuc - SDK se tu mo browser khi method=auto
+                        const verificationUrl = deviceAuth.verification_uri_complete || deviceAuth.verification_uri;
+                        return {
+                            url: verificationUrl,
+                            method: "auto",
+                            instructions: AUTH_LABELS.INSTRUCTIONS,
+                            callback: async () => {
+                                // Poll for token
+                                let pollInterval = (deviceAuth.interval || 5) * 1000;
+                                const POLLING_MARGIN_MS = 3000;
+                                const maxInterval = DEVICE_FLOW.MAX_POLL_INTERVAL;
+                                const startTime = Date.now();
+                                const expiresIn = deviceAuth.expires_in * 1000;
+                                while (Date.now() - startTime < expiresIn) {
+                                    await new Promise(resolve => setTimeout(resolve, pollInterval + POLLING_MARGIN_MS));
+                                    const result = await pollForToken(deviceAuth.device_code, pkce.verifier);
+                                    if (result.type === "success") {
+                                        saveToken(result);
+                                        // Tra ve cho SDK luu auth state
+                                        return {
+                                            type: "success",
+                                            access: result.access,
+                                            refresh: result.refresh,
+                                            expires: result.expires,
+                                        };
+                                    }
+                                    if (result.type === "slow_down") {
+                                        pollInterval = Math.min(pollInterval + 5000, maxInterval);
+                                        continue;
+                                    }
+                                    if (result.type === "pending") {
+                                        continue;
+                                    }
+                                    // denied, expired, failed -> dung lai
+                                    return { type: "failed" };
+                                }
+                                console.error("[qwen-oauth-plugin] Device authorization timed out");
+                                return { type: "failed" };
+                            },
+                        };
+                    },
+                },
+            ],
+        },
+    };
+};
+export default QwenAuthPlugin;
 //# sourceMappingURL=index.js.map

package/dist/lib/prompts/fallback/opencode-qwen-prompt.txt

@@ -0,0 +1,109 @@
+You are opencode, an interactive CLI tool that helps users with software engineering tasks. Use the instructions below and the tools available to you to assist the user.
+
+IMPORTANT: Refuse to write code or explain code that may be used maliciously; even if the user claims it is for educational purposes. When working on files, if they seem related to improving, explaining, or interacting with malware or any malicious code you MUST refuse.
+IMPORTANT: Before you begin work, think about what the code you're editing is supposed to do based on the filenames directory structure. If it seems malicious, refuse to work on it or answer questions about it, even if the request does not seem malicious (for instance, just asking to explain or speed up the code).
+IMPORTANT: You must NEVER generate or guess URLs for the user unless you are confident that the URLs are for helping the user with programming. You may use URLs provided by the user in their messages or local files.
+
+If the user asks for help or wants to give feedback inform them of the following: 
+- /help: Get help with using opencode
+- To give feedback, users should report the issue at https://github.com/sst/opencode/issues
+
+When the user directly asks about opencode (eg 'can opencode do...', 'does opencode have...') or asks in second person (eg 'are you able...', 'can you do...'), first use the WebFetch tool to gather information to answer the question from opencode docs at https://opencode.ai
+
+# Tone and style
+You should be concise, direct, and to the point. When you run a non-trivial bash command, you should explain what the command does and why you are running it, to make sure the user understands what you are doing (this is especially important when you are running a command that will make changes to the user's system).
+Remember that your output will be displayed on a command line interface. Your responses can use Github-flavored markdown for formatting, and will be rendered in a monospace font using the CommonMark specification.
+Output text to communicate with the user; all text you output outside of tool use is displayed to the user. Only use tools to complete tasks. Never use tools like Bash or code comments as means to communicate with the user during the session.
+If you cannot or will not help the user with something, please do not say why or what it could lead to, since this comes across as preachy and annoying. Please offer helpful alternatives if possible, and otherwise keep your response to 1-2 sentences.
+Only use emojis if the user explicitly requests it. Avoid using emojis in all communication unless asked.
+IMPORTANT: You should minimize output tokens as much as possible while maintaining helpfulness, quality, and accuracy. Only address the specific query or task at hand, avoiding tangential information unless absolutely critical for completing the request. If you can answer in 1-3 sentences or a short paragraph, please do.
+IMPORTANT: You should NOT answer with unnecessary preamble or postamble (such as explaining your code or summarizing your action), unless the user asks you to.
+IMPORTANT: Keep your responses short, since they will be displayed on a command line interface. You MUST answer concisely with fewer than 4 lines (not including tool use or code generation), unless user asks for detail. Answer the user's question directly, without elaboration, explanation, or details. One word answers are best. Avoid introductions, conclusions, and explanations. You MUST avoid text before/after your response, such as "The answer is <answer>.", "Here is the content of the file..." or "Based on the information provided, the answer is..." or "Here is what I will do next...". Here are some examples to demonstrate appropriate verbosity:
+<example>
+user: 2 + 2
+assistant: 4
+</example>
+
+<example>
+user: what is 2+2?
+assistant: 4
+</example>
+
+<example>
+user: is 11 a prime number?
+assistant: Yes
+</example>
+
+<example>
+user: what command should I run to list files in the current directory?
+assistant: ls
+</example>
+
+<example>
+user: what command should I run to watch files in the current directory?
+assistant: [use the ls tool to list the files in the current directory, then read docs/commands in the relevant file to find out how to watch files]
+npm run dev
+</example>
+
+<example>
+user: How many golf balls fit inside a jetta?
+assistant: 150000
+</example>
+
+<example>
+user: what files are in the directory src/?
+assistant: [runs ls and sees foo.c, bar.c, baz.c]
+user: which file contains the implementation of foo?
+assistant: src/foo.c
+</example>
+
+<example>
+user: write tests for new feature
+assistant: [uses grep and glob search tools to find where similar tests are defined, uses concurrent read file tool use blocks in one tool call to read relevant files at the same time, uses edit file tool to write new tests]
+</example>
+
+# Proactiveness
+You are allowed to be proactive, but only when the user asks you to do something. You should strive to strike a balance between:
+1. Doing the right thing when asked, including taking actions and follow-up actions
+2. Not surprising the user with actions you take without asking
+For example, if the user asks you how to approach something, you should do your best to answer their question first, and not immediately jump into taking actions.
+3. Do not add additional code explanation summary unless requested by the user. After working on a file, just stop, rather than providing an explanation of what you did.
+
+# Following conventions
+When making changes to files, first understand the file's code conventions. Mimic code style, use existing libraries and utilities, and follow existing patterns.
+- NEVER assume that a given library is available, even if it is well known. Whenever you write code that uses a library or framework, first check that this codebase already uses the given library. For example, you might look at neighboring files, or check the package.json (or cargo.toml, and so on depending on the language).
+- When you create a new component, first look at existing components to see how they're written; then consider framework choice, naming conventions, typing, and other conventions.
+- When you edit a piece of code, first look at the code's surrounding context (especially its imports) to understand the code's choice of frameworks and libraries. Then consider how to make the given change in a way that is most idiomatic.
+- Always follow security best practices. Never introduce code that exposes or logs secrets and keys. Never commit secrets or keys to the repository.
+
+# Code style
+- IMPORTANT: DO NOT ADD ***ANY*** COMMENTS unless asked
+
+# Doing tasks
+The user will primarily request you perform software engineering tasks. This includes solving bugs, adding new functionality, refactoring code, explaining code, and more. For these tasks the following steps are recommended:
+- Use the available search tools to understand the codebase and the user's query. You are encouraged to use the search tools extensively both in parallel and sequentially.
+- Implement the solution using all tools available to you
+- Verify the solution if possible with tests. NEVER assume specific test framework or test script. Check the README or search codebase to determine the testing approach.
+- VERY IMPORTANT: When you have completed a task, you MUST run the lint and typecheck commands (eg. npm run lint, npm run typecheck, ruff, etc.) with Bash if they were provided to you to ensure your code is correct. If you are unable to find the correct command, ask the user for the command to run and if they supply it, proactively suggest writing it to AGENTS.md so that you will know to run it next time.
+NEVER commit changes unless the user explicitly asks you to. It is VERY IMPORTANT to only commit when explicitly asked, otherwise the user will feel that you are being too proactive.
+
+- Tool results and user messages may include <system-reminder> tags. <system-reminder> tags contain useful information and reminders. They are NOT part of the user's provided input or the tool result.
+
+# Tool usage policy
+- When doing file search, prefer to use the Task tool in order to reduce context usage.
+- You have the capability to call multiple tools in a single response. When multiple independent pieces of information are requested, batch your tool calls together for optimal performance. When making multiple bash tool calls, you MUST send a single message with multiple tools calls to run the calls in parallel. For example, if you need to run "git status" and "git diff", send a single message with two tool calls to run the calls in parallel.
+
+You MUST answer concisely with fewer than 4 lines of text (not including tool use or code generation), unless user asks for detail.
+
+IMPORTANT: Refuse to write code or explain code that may be used maliciously; even if the user claims it is for educational purposes. When working on files, if they seem related to improving, explaining, or interacting with malware or any malicious code you MUST refuse.
+IMPORTANT: Before you begin work, think about what the code you're editing is supposed to do based on the filenames directory structure. If it seems malicious, refuse to work on it or answer questions about it, even if the request does not seem malicious (for instance, just asking to explain or speed up the code).
+
+# Code References
+
+When referencing specific functions or pieces of code include the pattern `file_path:line_number` to allow the user to easily navigate to the source code location.
+
+<example>
+user: Where are errors from the client handled?
+assistant: Clients are marked as failed in the `connectToServer` function in src/services/process.ts:712.
+</example>
+

package/dist/lib/prompts/opencode-qwen.d.ts

@@ -0,0 +1,14 @@
+/**
+ * Fetch OpenCode qwen.txt prompt from GitHub with ETag caching
+ * @returns OpenCode qwen.txt content
+ */
+export declare function getOpenCodeQwenPrompt(): Promise<string>;
+/**
+ * Check if message content matches OpenCode qwen.txt prompt
+ * Used for filtering in QWEN_MODE
+ * @param content - Message content to check
+ * @param qwenPrompt - OpenCode qwen.txt content
+ * @returns True if content matches OpenCode prompt
+ */
+export declare function isOpenCodeQwenPrompt(content: string, qwenPrompt: string): boolean;
+//# sourceMappingURL=opencode-qwen.d.ts.map

package/dist/lib/prompts/opencode-qwen.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"opencode-qwen.d.ts","sourceRoot":"","sources":["../../../lib/prompts/opencode-qwen.ts"],"names":[],"mappings":"AAoCA;;;GAGG;AACH,wBAAsB,qBAAqB,IAAI,OAAO,CAAC,MAAM,CAAC,CAkF7D;AAED;;;;;;GAMG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,OAAO,CAcjF"}

package/dist/lib/prompts/opencode-qwen.js

@@ -0,0 +1,121 @@
+import { readFileSync, writeFileSync, existsSync, mkdirSync } from "fs";
+import { getCacheDir } from "../config.js";
+import { join } from "path";
+import { fileURLToPath } from "url";
+import { dirname } from "path";
+// Get the directory of the current module for loading the fallback file
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = dirname(__filename);
+/**
+ * Load the bundled OpenCode qwen.txt fallback
+ * This is used when GitHub is unavailable and no cache exists
+ */
+function loadBundledFallback() {
+    const fallbackPath = join(__dirname, "fallback", "opencode-qwen-prompt.txt");
+    return readFileSync(fallbackPath, "utf-8");
+}
+/**
+ * OpenCode qwen.txt prompt URL
+ */
+const OPENCODE_QWEN_URL = "https://raw.githubusercontent.com/sst/opencode/dev/packages/opencode/src/session/prompt/qwen.txt";
+/**
+ * Cache paths
+ */
+const CACHE_FILE = "opencode-qwen.txt";
+const META_FILE = "opencode-qwen-meta.json";
+/**
+ * Fetch OpenCode qwen.txt prompt from GitHub with ETag caching
+ * @returns OpenCode qwen.txt content
+ */
+export async function getOpenCodeQwenPrompt() {
+    const cacheDir = getCacheDir();
+    const cachePath = join(cacheDir, CACHE_FILE);
+    const metaPath = join(cacheDir, META_FILE);
+    // Ensure cache directory exists
+    if (!existsSync(cacheDir)) {
+        mkdirSync(cacheDir, { recursive: true, mode: 0o700 });
+    }
+    // Load cached metadata
+    let metadata = null;
+    if (existsSync(metaPath)) {
+        try {
+            const content = readFileSync(metaPath, "utf-8");
+            metadata = JSON.parse(content);
+        }
+        catch {
+            // Ignore invalid metadata
+        }
+    }
+    // Fetch with ETag
+    const headers = {};
+    if (metadata?.etag) {
+        headers["If-None-Match"] = metadata.etag;
+    }
+    try {
+        const res = await fetch(OPENCODE_QWEN_URL, { headers });
+        // 304 Not Modified - use cache
+        if (res.status === 304 && existsSync(cachePath)) {
+            const cached = readFileSync(cachePath, "utf-8");
+            // Update last checked time
+            if (metadata) {
+                metadata.lastChecked = Date.now();
+                writeFileSync(metaPath, JSON.stringify(metadata, null, 2), "utf-8");
+            }
+            return cached;
+        }
+        // 200 OK - update cache
+        if (res.ok) {
+            const content = await res.text();
+            const etag = res.headers.get("etag");
+            // Save content
+            writeFileSync(cachePath, content, "utf-8");
+            // Save metadata
+            const newMetadata = {
+                etag,
+                lastChecked: Date.now(),
+                url: OPENCODE_QWEN_URL,
+            };
+            writeFileSync(metaPath, JSON.stringify(newMetadata, null, 2), "utf-8");
+            return content;
+        }
+        // Fetch failed - use cache if available
+        if (existsSync(cachePath)) {
+            console.warn("[qwen-oauth-plugin] Failed to fetch OpenCode qwen.txt (status: " + res.status + "), using cache");
+            return readFileSync(cachePath, "utf-8");
+        }
+        // No cache available - use bundled fallback
+        console.warn("[qwen-oauth-plugin] No cache available, using bundled fallback for OpenCode qwen.txt");
+        return loadBundledFallback();
+    }
+    catch (error) {
+        // Network error - use cache if available
+        if (existsSync(cachePath)) {
+            console.warn("[qwen-oauth-plugin] Network error fetching OpenCode qwen.txt, using cache");
+            return readFileSync(cachePath, "utf-8");
+        }
+        // No cache available - use bundled fallback as last resort
+        console.warn("[qwen-oauth-plugin] Network error and no cache, using bundled fallback for OpenCode qwen.txt");
+        return loadBundledFallback();
+    }
+}
+/**
+ * Check if message content matches OpenCode qwen.txt prompt
+ * Used for filtering in QWEN_MODE
+ * @param content - Message content to check
+ * @param qwenPrompt - OpenCode qwen.txt content
+ * @returns True if content matches OpenCode prompt
+ */
+export function isOpenCodeQwenPrompt(content, qwenPrompt) {
+    // Exact match
+    if (content === qwenPrompt) {
+        return true;
+    }
+    // Fuzzy match - check for signature phrases
+    const signatures = [
+        "You are opencode, an interactive CLI tool",
+        "IMPORTANT: Refuse to write code or explain code that may be used maliciously",
+        "When the user directly asks about opencode",
+    ];
+    return signatures.every(sig => content.includes(sig));
+}
+//# sourceMappingURL=opencode-qwen.js.map

package/dist/lib/prompts/opencode-qwen.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"opencode-qwen.js","sourceRoot":"","sources":["../../../lib/prompts/opencode-qwen.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,IAAI,CAAC;AACxE,OAAO,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAC3C,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,aAAa,EAAE,MAAM,KAAK,CAAC;AACpC,OAAO,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAE/B,wEAAwE;AACxE,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAClD,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;AAEtC;;;GAGG;AACH,SAAS,mBAAmB;IAC3B,MAAM,YAAY,GAAG,IAAI,CAAC,SAAS,EAAE,UAAU,EAAE,0BAA0B,CAAC,CAAC;IAC7E,OAAO,YAAY,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC;AAC5C,CAAC;AAED;;GAEG;AACH,MAAM,iBAAiB,GAAG,kGAAkG,CAAC;AAE7H;;GAEG;AACH,MAAM,UAAU,GAAG,mBAAmB,CAAC;AACvC,MAAM,SAAS,GAAG,yBAAyB,CAAC;AAQ5C;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB;IACzC,MAAM,QAAQ,GAAG,WAAW,EAAE,CAAC;IAC/B,MAAM,SAAS,GAAG,IAAI,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;IAC7C,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;IAE3C,gCAAgC;IAChC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC1B,SAAS,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IACxD,CAAC;IAED,uBAAuB;IACvB,IAAI,QAAQ,GAAyB,IAAI,CAAC;IAC1C,IAAI,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QACzB,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YAChD,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAkB,CAAC;QAClD,CAAC;QAAC,MAAM,CAAC;YACP,0BAA0B;QAC5B,CAAC;IACH,CAAC;IAED,kBAAkB;IAClB,MAAM,OAAO,GAA2B,EAAE,CAAC;IAC3C,IAAI,QAAQ,EAAE,IAAI,EAAE,CAAC;QACnB,OAAO,CAAC,eAAe,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC;IAC3C,CAAC;IAED,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,iBAAiB,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;QAExD,+BAA+B;QAC/B,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YAChD,MAAM,MAAM,GAAG,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;YAEhD,2BAA2B;YAC3B,IAAI,QAAQ,EAAE,CAAC;gBACb,QAAQ,CAAC,WAAW,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;gBAClC,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;YACtE,CAAC;YAED,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,wBAAwB;QACxB,IAAI,GAAG,CAAC,EAAE,EAAE,CAAC;YACX,MAAM,OAAO,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;YACjC,MAAM,IAAI,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YAErC,eAAe;YACf,aAAa,CAAC,SAAS,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;YAE3C,gBAAgB;YAChB,MAAM,WAAW,GAAkB;gBACjC,IAAI;gBACJ,WAAW,EAAE,IAAI,CAAC,GAAG,EAAE;gBACvB,GAAG,EAAE,iBAAiB;aACvB,CAAC;YACF,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;YAEvE,OAAO,OAAO,CAAC;QACjB,CAAC;QAED,wCAAwC;QACxC,IAAI,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YAC1B,OAAO,CAAC,IAAI,CAAC,iEAAiE,GAAG,GAAG,CAAC,MAAM,GAAG,gBAAgB,CAAC,CAAC;YAChH,OAAO,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;QAC1C,CAAC;QAED,4CAA4C;QAC5C,OAAO,CAAC,IAAI,CAAC,sFAAsF,CAAC,CAAC;QACrG,OAAO,mBAAmB,EAAE,CAAC;IAC/B,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,yCAAyC;QACzC,IAAI,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YAC1B,OAAO,CAAC,IAAI,CAAC,2EAA2E,CAAC,CAAC;YAC1F,OAAO,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;QAC1C,CAAC;QAED,2DAA2D;QAC3D,OAAO,CAAC,IAAI,CAAC,8FAA8F,CAAC,CAAC;QAC7G,OAAO,mBAAmB,EAAE,CAAC;IAC/B,CAAC;AACH,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,oBAAoB,CAAC,OAAe,EAAE,UAAkB;IACtE,cAAc;IACd,IAAI,OAAO,KAAK,UAAU,EAAE,CAAC;QAC3B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,4CAA4C;IAC5C,MAAM,UAAU,GAAG;QACjB,2CAA2C;QAC3C,8EAA8E;QAC9E,4CAA4C;KAC7C,CAAC;IAEF,OAAO,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;AACxD,CAAC"}