opencode-skills-antigravity 1.0.21 → 1.0.23

package/bundled-skills/.antigravity-install-manifest.json

@@ -1,6 +1,6 @@
 {
   "schemaVersion": 1,
-  "updatedAt": "2026-03-28T16:36:40.669Z",
+  "updatedAt": "2026-03-28T18:42:53.951Z",
   "entries": [
     ".gitignore",
     "00-andruia-consultant",

package/bundled-skills/claude-monitor/scripts/api_bench.py

@@ -34,6 +34,17 @@ ENDPOINTS = [
 ]
 
 
+def create_tls_context():
+    """Cria contexto TLS restringindo conexoes a TLS 1.2+."""
+    context = ssl.create_default_context()
+    if hasattr(ssl, "TLSVersion"):
+        context.minimum_version = ssl.TLSVersion.TLSv1_2
+    else:
+        context.options |= getattr(ssl, "OP_NO_TLSv1", 0)
+        context.options |= getattr(ssl, "OP_NO_TLSv1_1", 0)
+    return context
+
+
 def test_tcp_latency(host, port, timeout=5):
     """Testa latência TCP para um host:port."""
     try:
@@ -49,7 +60,7 @@ def test_tcp_latency(host, port, timeout=5):
 def test_tls_handshake(host, port=443, timeout=5):
     """Testa tempo do handshake TLS."""
     try:
-        context = ssl.create_default_context()
+        context = create_tls_context()
         start = time.time()
         with socket.create_connection((host, port), timeout=timeout) as sock:
             with context.wrap_socket(sock, server_hostname=host) as ssock:

package/bundled-skills/loki-mode/examples/todo-app-generated/backend/package-lock.json

@@ -1110,9 +1110,9 @@
       }
     },
     "node_modules/path-to-regexp": {
-      "version": "0.1.12",
-      "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.12.tgz",
-      "integrity": "sha512-RA1GjUVMnvYFxuqovrEqZoxxW5NUZqbwKtYz/Tt7nXerk0LbLblQmrsgdeOxV5SFHf0UDggjS/bSeOZwt1pmEQ==",
+      "version": "0.1.13",
+      "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.13.tgz",
+      "integrity": "sha512-A/AGNMFN3c8bOlvV9RreMdrv7jsmF9XIfDeCd87+I8RNg6s78BhJxMu69NEMHBSJFxKidViTEdruRwEk/WIKqA==",
       "license": "MIT"
     },
     "node_modules/prebuild-install": {

package/bundled-skills/loki-mode/examples/todo-app-generated/backend/package.json

@@ -24,6 +24,7 @@
   },
   "overrides": {
     "diff": "4.0.4",
+    "path-to-regexp": "0.1.13",
     "qs": "^6.15.0"
   }
 }

package/bundled-skills/loki-mode/examples/todo-app-generated/frontend/package-lock.json

@@ -1527,9 +1527,9 @@
       "license": "ISC"
     },
     "node_modules/picomatch": {
-      "version": "4.0.3",
-      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-4.0.3.tgz",
-      "integrity": "sha512-5gTmgEY/sqK6gFXLIsQNH19lWb4ebPDLA4SdLP7dsWkIXHWlG66oPuVvXSGFPppYZz8ZDZq0dYYrbHfBCVUb1Q==",
+      "version": "4.0.4",
+      "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-4.0.4.tgz",
+      "integrity": "sha512-QP88BAKvMam/3NxH6vj2o21R6MjxZUAd6nlwAS/pnGvN9IVLocLHxGYIzFhg6fUQ+5th6P4dv4eW9jX3DSIj7A==",
       "dev": true,
       "license": "MIT",
       "engines": {

package/bundled-skills/loki-mode/examples/todo-app-generated/frontend/package.json

@@ -23,6 +23,7 @@
     "react-dom": "^19.2.3"
   },
   "overrides": {
+    "picomatch": "4.0.4",
     "rollup": "^4.59.0"
   }
 }

package/bundled-skills/whatsapp-cloud-api/scripts/send_test_message.py

@@ -28,11 +28,21 @@ except ImportError:
 GRAPH_API = "https://graph.facebook.com/v21.0"
 
 
-def _mask_secret(value: str) -> str:
-    """Return a masked version of a secret for safe logging."""
-    if not value or len(value) < 8:
-        return "***masked***"
-    return f"{value[:6]}...masked"
+def _redact_json(value):
+    """Recursively redact common secret-bearing keys before logging JSON."""
+    sensitive_keys = {"authorization", "token", "access_token", "app_secret", "secret"}
+
+    if isinstance(value, dict):
+        redacted = {}
+        for key, item in value.items():
+            if key.lower() in sensitive_keys:
+                redacted[key] = "***redacted***"
+            else:
+                redacted[key] = _redact_json(item)
+        return redacted
+    if isinstance(value, list):
+        return [_redact_json(item) for item in value]
+    return value
 
 
 def send_test(to: str, message: str) -> None:
@@ -84,11 +94,7 @@ def send_test(to: str, message: str) -> None:
 
         print()
         print("Full response:")
-        # Mask token in response output to prevent credential leakage
-        response_str = json.dumps(data, indent=2)
-        if token and token in response_str:
-            response_str = response_str.replace(token, _mask_secret(token))
-        print(response_str)
+        print(json.dumps(_redact_json(data), indent=2))
 
     except httpx.ConnectError:
         print("Error: Connection failed. Check your internet connection.")
@@ -96,10 +102,8 @@ def send_test(to: str, message: str) -> None:
     except httpx.TimeoutException:
         print("Error: Request timed out.")
         sys.exit(1)
-    except Exception as e:
-        # Mask token in error output to prevent credential leakage
-        safe_err = str(e).replace(token, _mask_secret(token)) if token else str(e)
-        print(f"Error: {safe_err}")
+    except Exception as exc:
+        print(f"Error: unexpected {exc.__class__.__name__} while sending the test message.")
         sys.exit(1)
 
 

package/bundled-skills/whatsapp-cloud-api/scripts/validate_config.py

@@ -47,14 +47,19 @@ def check_env_vars() -> tuple[bool, list[str]]:
     return len(missing) == 0, missing
 
 
-def _mask_secret(value: str) -> str:
-    """Return a masked version of a secret for safe logging."""
-    if not value or len(value) < 8:
-        return "***masked***"
-    return f"{value[:6]}...masked"
+def _format_api_failure(response: httpx.Response) -> dict[str, str]:
+    """Return sanitized API failure details without echoing sensitive payloads."""
+    try:
+        error = response.json().get("error", {})
+    except ValueError:
+        error = {}
+    return {
+        "status_code": str(response.status_code),
+        "error_code": str(error.get("code", "?")),
+    }
 
 
-def test_api_connection() -> tuple[bool, str]:
+def test_api_connection() -> tuple[bool, dict[str, str]]:
     """Test connection to WhatsApp Cloud API."""
     token = os.environ.get("WHATSAPP_TOKEN", "")
     phone_id = os.environ.get("PHONE_NUMBER_ID", "")
@@ -69,27 +74,26 @@ def test_api_connection() -> tuple[bool, str]:
 
         if response.status_code == 200:
             data = response.json()
-            return True, (
-                f"Phone: {data.get('display_phone_number', 'N/A')}\n"
-                f"  Name: {data.get('verified_name', 'N/A')}\n"
-                f"  Status: {data.get('code_verification_status', 'N/A')}\n"
-                f"  Quality: {data.get('quality_rating', 'N/A')}"
-            )
-        else:
-            error = response.json().get("error", {})
-            return False, f"API Error {error.get('code', '?')}: {error.get('message', 'Unknown')}"
+            return True, {
+                "phone": str(data.get("display_phone_number", "N/A")),
+                "name": str(data.get("verified_name", "N/A")),
+                "status": str(data.get("code_verification_status", "N/A")),
+                "quality": str(data.get("quality_rating", "N/A")),
+            }
+
+        return False, _format_api_failure(response)
 
     except httpx.ConnectError:
-        return False, "Connection failed. Check your internet connection."
+        return False, {"reason": "Connection failed. Check your internet connection."}
     except httpx.TimeoutException:
-        return False, "Request timed out after 10 seconds."
-    except Exception as e:
-        # Mask token in error output to prevent credential leakage
-        safe_err = str(e).replace(token, _mask_secret(token)) if token else str(e)
-        return False, f"Unexpected error: {safe_err}"
+        return False, {"reason": "Request timed out after 10 seconds."}
+    except Exception as exc:
+        return False, {
+            "reason": f"Unexpected {exc.__class__.__name__} while contacting the Graph API."
+        }
 
 
-def test_waba_access() -> tuple[bool, str]:
+def test_waba_access() -> tuple[bool, dict[str, str]]:
     """Test access to WhatsApp Business Account."""
     token = os.environ.get("WHATSAPP_TOKEN", "")
     waba_id = os.environ.get("WABA_ID", "")
@@ -104,15 +108,14 @@ def test_waba_access() -> tuple[bool, str]:
         if response.status_code == 200:
             data = response.json()
             count = len(data.get("data", []))
-            return True, f"WABA accessible. {count} phone number(s) found."
-        else:
-            error = response.json().get("error", {})
-            return False, f"API Error {error.get('code', '?')}: {error.get('message', 'Unknown')}"
+            return True, {"count": str(count)}
 
-    except Exception as e:
-        # Mask token in error output to prevent credential leakage
-        safe_err = str(e).replace(token, _mask_secret(token)) if token else str(e)
-        return False, f"Error: {safe_err}"
+        return False, _format_api_failure(response)
+
+    except Exception as exc:
+        return False, {
+            "reason": f"Unexpected {exc.__class__.__name__} while checking WABA access."
+        }
 
 
 def main():
@@ -154,23 +157,37 @@ def main():
 
     # Check 2: API connection
     print("[2/3] Testing API connection (Phone Number)...")
-    api_ok, api_msg = test_api_connection()
+    api_ok, api_details = test_api_connection()
     if api_ok:
-        print(f"  OK - Connected successfully")
-        print(f"  {api_msg}")
+        print("  OK - Connected successfully")
+        print(f"  Phone: {api_details['phone']}")
+        print(f"  Name: {api_details['name']}")
+        print(f"  Status: {api_details['status']}")
+        print(f"  Quality: {api_details['quality']}")
     else:
-        print(f"  FAIL - {api_msg}")
+        if "reason" in api_details:
+            print(f"  FAIL - {api_details['reason']}")
+        else:
+            print("  FAIL - API request failed.")
+            print(f"  HTTP Status: {api_details['status_code']}")
+            print(f"  Error Code: {api_details['error_code']}")
         all_ok = False
 
     print()
 
     # Check 3: WABA access
     print("[3/3] Testing WABA access...")
-    waba_ok, waba_msg = test_waba_access()
+    waba_ok, waba_details = test_waba_access()
     if waba_ok:
-        print(f"  OK - {waba_msg}")
+        print("  OK - WABA accessible")
+        print(f"  Phone Numbers Found: {waba_details['count']}")
     else:
-        print(f"  FAIL - {waba_msg}")
+        if "reason" in waba_details:
+            print(f"  FAIL - {waba_details['reason']}")
+        else:
+            print("  FAIL - API request failed.")
+            print(f"  HTTP Status: {waba_details['status_code']}")
+            print(f"  Error Code: {waba_details['error_code']}")
         all_ok = False
 
     print()

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "opencode-skills-antigravity",
-  "version": "1.0.21",
+  "version": "1.0.23",
   "description": "OpenCode CLI plugin that automatically downloads and keeps Antigravity Awesome Skills up to date.",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",