opencode-zellij 0.0.6 → 0.0.8

package/dist/index.mjs

@@ -1,7 +1,7 @@
 import process from "node:process";
 import { execFile, spawn, spawnSync } from "node:child_process";
 import { existsSync, mkdirSync, readFileSync, readdirSync, renameSync, rmSync, writeFileSync } from "node:fs";
-import { readFile, rm } from "node:fs/promises";
+import { readFile, rename, rm } from "node:fs/promises";
 import path, { basename, dirname, join } from "node:path";
 import { fileURLToPath } from "node:url";
 import { promisify } from "node:util";
@@ -27,25 +27,64 @@ const defaultExecFile = promisify(execFile);
 function packageDir(installRoot) {
 	return join(installRoot, "node_modules", PACKAGE_NAME);
 }
+function backupDir(installRoot) {
+	return join(installRoot, "node_modules", `${PACKAGE_NAME}.update-backup`);
+}
 async function installedPackageMetadata(installRoot) {
 	try {
 		const content = await readFile(join(packageDir(installRoot), "package.json"), "utf8");
 		const pkg = JSON.parse(content);
-		if (isRecord$2(pkg)) return {
+		if (isRecord$1(pkg)) return {
 			name: typeof pkg.name === "string" ? pkg.name : void 0,
-			version: typeof pkg.version === "string" ? pkg.version : void 0
+			version: typeof pkg.version === "string" ? pkg.version : void 0,
+			main: typeof pkg.main === "string" ? pkg.main : void 0
 		};
 	} catch {}
 }
 function isExpectedPackage(metadata, version) {
 	return metadata?.name === "opencode-zellij" && metadata.version === version;
 }
+function hasRunnableEntry(installRoot, metadata) {
+	if (!metadata) return false;
+	const dir = packageDir(installRoot);
+	if (metadata.main && existsSync(join(dir, metadata.main))) return true;
+	return existsSync(join(dir, "dist", "index.mjs"));
+}
+async function isVerifiedInstall(installRoot, version) {
+	const metadata = await installedPackageMetadata(installRoot);
+	return isExpectedPackage(metadata, version) && hasRunnableEntry(installRoot, metadata);
+}
 async function removeInstalledPackage(installRoot) {
 	await rm(packageDir(installRoot), {
 		force: true,
 		recursive: true
 	});
 }
+async function backupInstalledPackage(installRoot) {
+	const source = packageDir(installRoot);
+	if (!existsSync(source)) return void 0;
+	const backup = backupDir(installRoot);
+	await rm(backup, {
+		force: true,
+		recursive: true
+	});
+	await rename(source, backup);
+	return backup;
+}
+async function restoreInstalledPackage(installRoot, backup) {
+	if (!backup || !existsSync(backup)) return;
+	await rm(packageDir(installRoot), {
+		force: true,
+		recursive: true
+	});
+	await rename(backup, packageDir(installRoot));
+}
+async function discardBackup(backup) {
+	if (backup) await rm(backup, {
+		force: true,
+		recursive: true
+	});
+}
 async function findInstallContext(importMetaUrl) {
 	let startPath;
 	try {
@@ -61,7 +100,7 @@ async function findInstallContext(importMetaUrl) {
 			try {
 				const content = await readFile(packageJsonPath, "utf8");
 				const pkg = JSON.parse(content);
-				if (isRecord$2(pkg) && pkg.name === "opencode-zellij" && typeof pkg.version === "string" && pkg.version.length > 0) {
+				if (isRecord$1(pkg) && pkg.name === "opencode-zellij" && typeof pkg.version === "string" && pkg.version.length > 0) {
 					const installRoot = dirname(dirname(dir));
 					if (existsSync(join(installRoot, "package.json"))) return {
 						installRoot,
@@ -76,7 +115,7 @@ async function findInstallContext(importMetaUrl) {
 		dir = parent;
 	}
 }
-function isRecord$2(value) {
+function isRecord$1(value) {
 	return typeof value === "object" && value !== null;
 }
 function isAutoUpdatableSpec(spec) {
@@ -95,7 +134,7 @@ async function fetchLatestVersion(fetchImpl = globalThis.fetch) {
 			return;
 		}
 		const data = await response.json();
-		if (isRecord$2(data) && typeof data.latest === "string") return data.latest;
+		if (isRecord$1(data) && typeof data.latest === "string") return data.latest;
 		debug("npm registry response missing latest tag");
 		return;
 	} catch (cause) {
@@ -107,36 +146,42 @@ async function fetchLatestVersion(fetchImpl = globalThis.fetch) {
 async function runNpmInstall(installRoot, version, execImpl = defaultExecFile) {
 	debug(`updating ${PACKAGE_NAME} to ${version} in ${installRoot}`);
 	try {
-		const shouldVerifyInstalledPackage = await installedPackageMetadata(installRoot) !== void 0;
 		const install = () => execImpl("npm", [
 			"install",
 			`${PACKAGE_NAME}@${version}`,
 			"--save-exact",
-			"--ignore-scripts"
+			"--ignore-scripts",
+			"--no-audit",
+			"--no-fund",
+			"--prefer-online"
 		], {
 			cwd: installRoot,
 			timeout: INSTALL_TIMEOUT_MS
 		});
 		await install();
-		if (!shouldVerifyInstalledPackage) {
+		if (await isVerifiedInstall(installRoot, version)) {
 			debug(`updated ${PACKAGE_NAME} to ${version}`);
 			return true;
 		}
 		const installedPackage = await installedPackageMetadata(installRoot);
-		if (isExpectedPackage(installedPackage, version)) {
-			debug(`updated ${PACKAGE_NAME} to ${version}`);
-			return true;
-		}
 		debug(`npm install left stale or invalid ${PACKAGE_NAME} (${installedPackage?.name ?? "<missing>"}@${installedPackage?.version ?? "<missing>"}); reinstalling ${version}`);
-		await removeInstalledPackage(installRoot);
-		await install();
-		const reinstalledPackage = await installedPackageMetadata(installRoot);
-		if (isExpectedPackage(reinstalledPackage, version)) {
-			debug(`updated ${PACKAGE_NAME} to ${version}`);
-			return true;
+		const backup = await backupInstalledPackage(installRoot);
+		try {
+			await removeInstalledPackage(installRoot);
+			await install();
+			if (await isVerifiedInstall(installRoot, version)) {
+				await discardBackup(backup);
+				debug(`updated ${PACKAGE_NAME} to ${version}`);
+				return true;
+			}
+			const reinstalledPackage = await installedPackageMetadata(installRoot);
+			debug(`npm install verification failed: expected ${PACKAGE_NAME}@${version}, found ${reinstalledPackage?.name ?? "<missing>"}@${reinstalledPackage?.version ?? "<missing>"}`);
+			await restoreInstalledPackage(installRoot, backup);
+			return false;
+		} catch (cause) {
+			await restoreInstalledPackage(installRoot, backup);
+			throw cause;
 		}
-		debug(`npm install verification failed: expected ${PACKAGE_NAME}@${version}, found ${reinstalledPackage?.name ?? "<missing>"}@${reinstalledPackage?.version ?? "<missing>"}`);
-		return false;
 	} catch (cause) {
 		debug("npm install failed", cause instanceof Error ? cause.message : String(cause));
 		return false;
@@ -166,24 +211,25 @@ async function checkAndUpdate(options) {
 			reason: "could not determine latest version"
 		};
 	}
-	if (latest === context.currentVersion) {
+	const installedVersion = (await installedPackageMetadata(context.installRoot))?.version ?? context.currentVersion;
+	if (latest === installedVersion) {
 		debug(`auto-update: already on latest ${latest}`);
 		return {
 			type: "up-to-date",
-			currentVersion: context.currentVersion
+			currentVersion: installedVersion
 		};
 	}
 	if (await runNpmInstall(context.installRoot, latest, options.execImpl)) {
-		debug(`updated ${PACKAGE_NAME} from ${context.currentVersion} to ${latest}`);
+		debug(`updated ${PACKAGE_NAME} from ${installedVersion} to ${latest}`);
 		return {
 			type: "updated",
-			fromVersion: context.currentVersion,
+			fromVersion: installedVersion,
 			toVersion: latest
 		};
 	}
 	return {
 		type: "failed",
-		currentVersion: context.currentVersion,
+		currentVersion: installedVersion,
 		latestVersion: latest,
 		reason: "npm install failed"
 	};
@@ -308,80 +354,13 @@ async function loadConfig(input) {
 	};
 }
 //#endregion
-//#region src/utils/shell-args.ts
-const directCommandExitWrapper = "token=\"$1\"; shift; set +e; \"$@\"; code=$?; printf \"\\n[zellij-pty:%s] exit-code=%s\\n\" \"$token\" \"$code\"; exit \"$code\"";
-const shellCommandExitWrapper = "token=\"$1\"; command=\"$2\"; set +e; bash -lc \"$command\"; code=$?; printf \"\\n[zellij-pty:%s] exit-code=%s\\n\" \"$token\" \"$code\"; exit \"$code\"";
-function buildCommandArgv(input, options = {}) {
-	const command = input.command.trim();
-	if (!command) throw new Error("command is required");
-	if (options.exitCodeToken) {
-		if (input.args && input.args.length > 0) return [
-			"bash",
-			"-lc",
-			directCommandExitWrapper,
-			"zellij-pty",
-			options.exitCodeToken,
-			command,
-			...input.args
-		];
-		return [
-			"bash",
-			"-lc",
-			shellCommandExitWrapper,
-			"zellij-pty",
-			options.exitCodeToken,
-			command
-		];
-	}
-	if (input.args && input.args.length > 0) return [command, ...input.args];
-	return [
-		"bash",
-		"-lc",
-		command
-	];
+//#region src/permissions/sudo-pane.ts
+let sudoPaneAllowed = true;
+function configureSudoPane(allowed) {
+	sudoPaneAllowed = allowed;
 }
-function commandLineForPolicy(input) {
-	if (!input.args || input.args.length === 0) return input.command.trim();
-	return [input.command, ...input.args].join(" ").trim();
-}
-//#endregion
-//#region src/permissions/policy.ts
-const denyPatterns = [
-	/(^|\s)rm\s+-[^\n&;r|]*r[^\n&;|]*f\s+\//,
-	/(^|\s)mkfs(?:\s|$)/,
-	/(^|\s)dd\s+(?:[^\s&;|][^\n;|&]*)?\bof=\/dev\//,
-	/:\(\)\s*\{\s*:\|:\s*&\s*\}\s*;/
-];
-const sudoPattern = /(?:^|[\s;&|])sudo(?:[\s;&|]|$)/;
-let configuredDenyCommands = [];
-let configuredAllowCommands = [];
-let allowSudoPane = true;
-function isStringArray(value) {
-	return Array.isArray(value) && value.every((item) => typeof item === "string");
-}
-function escapeRegex(value) {
-	return value.replace(/[|\\{}()[\]^$+?.]/g, "\\$&");
-}
-function wildcardMatches(pattern, commandLine) {
-	return new RegExp(`^${pattern.split("*").map(escapeRegex).join(".*")}$`).test(commandLine);
-}
-function configurePolicy(config) {
-	configuredDenyCommands = [];
-	configuredAllowCommands = [];
-	allowSudoPane = true;
-	if (!config || typeof config !== "object") return;
-	const object = config;
-	if (isStringArray(object.denyCommands)) configuredDenyCommands = object.denyCommands;
-	if (isStringArray(object.allowCommands)) configuredAllowCommands = object.allowCommands;
-	if (typeof object.allowSudoPane === "boolean") allowSudoPane = object.allowSudoPane;
-}
-function assertCommandAllowed(input) {
-	const commandLine = commandLineForPolicy(input);
-	for (const pattern of denyPatterns) if (pattern.test(commandLine)) throw new Error(`Command denied by zellij-pty policy: ${commandLine}`);
-	for (const pattern of configuredDenyCommands) if (wildcardMatches(pattern, commandLine)) throw new Error(`Command denied by zellij-pty configured deny rule: ${commandLine}`);
-	if (configuredAllowCommands.length > 0 && !configuredAllowCommands.some((pattern) => wildcardMatches(pattern, commandLine))) throw new Error(`Command denied by zellij-pty allow list: ${commandLine}`);
-	if (!input.humanInputOnly && sudoPattern.test(commandLine)) throw new Error("sudo commands must use zellij_pty_request_sudo so credentials stay human-input-only and never pass through agent tool input.");
-	if (input.humanInputOnly && !allowSudoPane) throw new Error("sudo pane is disabled by zellij-pty policy.");
+function assertSudoPaneAllowed() {
+	if (!sudoPaneAllowed) throw new Error("sudo pane is disabled by zellij-pty config.");
 }
 //#endregion
 //#region src/utils/ids.ts
@@ -432,6 +411,9 @@ var SessionManager = class {
 		if (!session) throw new Error(`Unknown zellij PTY session: ${id}`);
 		return session;
 	}
+	find(id) {
+		return this.sessions.get(id);
+	}
 	list() {
 		return Array.from(this.sessions.values()).sort((a, b) => a.createdAt.localeCompare(b.createdAt));
 	}
@@ -464,6 +446,39 @@ var SessionManager = class {
 };
 const sessionManager = new SessionManager();
 //#endregion
+//#region src/utils/shell-args.ts
+const directCommandExitWrapper = "token=\"$1\"; shift; set +e; \"$@\"; code=$?; printf \"\\n[zellij-pty:%s] exit-code=%s\\n\" \"$token\" \"$code\"; exit \"$code\"";
+const shellCommandExitWrapper = "token=\"$1\"; command=\"$2\"; set +e; bash -lc \"$command\"; code=$?; printf \"\\n[zellij-pty:%s] exit-code=%s\\n\" \"$token\" \"$code\"; exit \"$code\"";
+function buildCommandArgv(input, options = {}) {
+	const command = input.command.trim();
+	if (!command) throw new Error("command is required");
+	if (options.exitCodeToken) {
+		if (input.args && input.args.length > 0) return [
+			"bash",
+			"-lc",
+			directCommandExitWrapper,
+			"zellij-pty",
+			options.exitCodeToken,
+			command,
+			...input.args
+		];
+		return [
+			"bash",
+			"-lc",
+			shellCommandExitWrapper,
+			"zellij-pty",
+			options.exitCodeToken,
+			command
+		];
+	}
+	if (input.args && input.args.length > 0) return [command, ...input.args];
+	return [
+		"bash",
+		"-lc",
+		command
+	];
+}
+//#endregion
 //#region src/zellij/cli.ts
 const execFileAsync$1 = promisify(execFile);
 function zellijCommandArgs(actionArgs) {
@@ -627,6 +642,7 @@ const zellijCli = new ZellijCli();
 //#region src/zellij/pane-watchdog.ts
 const instanceId = randomUUID();
 let watchdogStarted = false;
+let watchdogChild = null;
 function registryDirectory() {
 	const base = process.env.XDG_RUNTIME_DIR || tmpdir();
 	return path.join(base, `opencode-zellij-${process.getuid?.() ?? "user"}`);
@@ -676,13 +692,24 @@ function writeRegistry(registry) {
 	renameSync(tempFile, file);
 }
 function ensureWatchdog() {
-	if (watchdogStarted) return;
+	if (watchdogStarted && watchdogChild) return;
 	watchdogStarted = true;
-	spawn("node", [watchdogRunnerPath(), watchdogRegistryPath()], {
+	const child = spawn(process.execPath, [watchdogRunnerPath(), watchdogRegistryPath()], {
 		detached: true,
 		stdio: "ignore",
 		env: process.env
-	}).unref();
+	});
+	watchdogChild = child;
+	child.unref();
+	child.on("error", () => {
+		watchdogStarted = false;
+		if (watchdogChild === child) watchdogChild = null;
+	});
+	child.on("exit", () => {
+		watchdogStarted = false;
+		if (watchdogChild === child) watchdogChild = null;
+		if (existsSync(watchdogRegistryPath())) ensureWatchdog();
+	});
 }
 function watchdogRunnerPath() {
 	return fileURLToPath(new URL("./pane-watchdog-runner.mjs", import.meta.url));
@@ -759,6 +786,7 @@ function removeWatchdogRegistry() {
 	try {
 		rmSync(watchdogRegistryPath(), { force: true });
 	} catch {}
+	if (!watchdogChild) watchdogStarted = false;
 }
 //#endregion
 //#region src/pty/ring-buffer.ts
@@ -903,14 +931,26 @@ function extractRenderedLines(event) {
 }
 var SubscriberManager = class {
 	subscribers = /* @__PURE__ */ new Map();
+	startingSessions = /* @__PURE__ */ new Map();
 	constructor(sessions, maxBufferLines = Number(process.env.PTY_MAX_BUFFER_LINES ?? 5e4)) {
 		this.sessions = sessions;
 		this.maxBufferLines = maxBufferLines;
 	}
 	async start(session) {
-		const existing = this.subscribers.get(session.id);
-		if (existing?.child) return;
+		if (this.subscribers.get(session.id)?.child) return;
+		const inProgress = this.startingSessions.get(session.id);
+		if (inProgress) return inProgress;
 		ensureZellijTarget();
+		const startPromise = this.doStart(session);
+		this.startingSessions.set(session.id, startPromise);
+		try {
+			await startPromise;
+		} finally {
+			this.startingSessions.delete(session.id);
+		}
+	}
+	async doStart(session) {
+		const existing = this.subscribers.get(session.id);
 		const state = existing ?? {
 			child: null,
 			buffer: new RingBuffer(this.maxBufferLines),
@@ -920,11 +960,12 @@ var SubscriberManager = class {
 			lastExitedAt: null
 		};
 		if (!existing) {
+			this.subscribers.set(session.id, state);
 			try {
 				state.buffer.appendSnapshot(await zellijCli.dumpScreen(session.paneId));
 				this.sessions.updateLineCount(session.id, state.buffer.lineCount);
 			} catch {}
-			this.subscribers.set(session.id, state);
+			if (this.subscribers.get(session.id) !== state) return;
 		}
 		const child = spawn("zellij", zellijCommandArgs([
 			"subscribe",
@@ -940,14 +981,18 @@ var SubscriberManager = class {
 			"pipe"
 		] });
 		child.stdin.end();
+		if (this.subscribers.get(session.id) !== state) {
+			child.kill("SIGTERM");
+			return;
+		}
 		state.child = child;
 		state.lastExitedAt = null;
 		child.stdout.setEncoding("utf8");
-		child.stdout.on("data", (chunk) => this.handleStdout(session.id, chunk));
+		child.stdout.on("data", (chunk) => this.handleStdout(session.id, child, chunk));
 		child.stderr.setEncoding("utf8");
-		child.stderr.on("data", (chunk) => this.handleStderr(session.id, chunk));
-		child.on("exit", () => this.handleSubscriberExit(session.id));
-		child.on("error", (error) => this.handleSubscriberError(session.id, error));
+		child.stderr.on("data", (chunk) => this.handleStderr(session.id, child, chunk));
+		child.on("exit", () => this.handleSubscriberExit(session.id, child));
+		child.on("error", (error) => this.handleSubscriberError(session.id, child, error));
 	}
 	read(sessionId, input) {
 		const state = this.subscribers.get(sessionId);
@@ -989,16 +1034,16 @@ var SubscriberManager = class {
 			await zellijCli.closePane(session.paneId);
 		} catch {}
 	}
-	handleStdout(sessionId, chunk) {
+	handleStdout(sessionId, child, chunk) {
 		const state = this.subscribers.get(sessionId);
-		if (!state) return;
+		if (!state || state.child !== child) return;
 		const parts = `${state.stdoutRemainder}${chunk}`.split("\n");
 		state.stdoutRemainder = parts.pop() ?? "";
-		for (const part of parts) this.handleJsonLine(sessionId, part);
+		for (const part of parts) this.handleJsonLine(sessionId, child, part);
 	}
-	handleJsonLine(sessionId, line) {
+	handleJsonLine(sessionId, child, line) {
 		const state = this.subscribers.get(sessionId);
-		if (!state) return;
+		if (!state || state.child !== child) return;
 		const trimmed = line.trim();
 		if (!trimmed) return;
 		let event;
@@ -1011,7 +1056,13 @@ var SubscriberManager = class {
 			this.sessions.updateLineCount(sessionId, state.buffer.lineCount);
 			return;
 		}
-		const session = this.sessions.get(sessionId);
+		let session;
+		try {
+			session = this.sessions.get(sessionId);
+		} catch {
+			this.forget(sessionId);
+			return;
+		}
 		const paneId = eventPaneId(event);
 		if (paneId && paneId !== session.paneId) return;
 		const type = eventType(event);
@@ -1039,24 +1090,29 @@ var SubscriberManager = class {
 			return;
 		}
 	}
-	handleStderr(sessionId, chunk) {
+	handleStderr(sessionId, child, chunk) {
 		const state = this.subscribers.get(sessionId);
-		if (!state) return;
+		if (!state || state.child !== child) return;
 		state.stderr.push(...splitLines(chunk));
 		if (state.stderr.length > maxStderrLines) state.stderr = state.stderr.slice(state.stderr.length - maxStderrLines);
 	}
-	handleSubscriberExit(sessionId) {
+	handleSubscriberExit(sessionId, child) {
 		const state = this.subscribers.get(sessionId);
 		if (!state) return;
+		if (state.child !== child) return;
 		state.child = null;
 		state.lastExitedAt = (/* @__PURE__ */ new Date()).toISOString();
 		state.stderr.push(`[zellij-pty] subscriber exited at ${state.lastExitedAt}; last buffered output is retained.`);
 		if (state.stderr.length > maxStderrLines) state.stderr = state.stderr.slice(state.stderr.length - maxStderrLines);
 	}
-	handleSubscriberError(sessionId, error) {
+	handleSubscriberError(sessionId, child, error) {
 		const state = this.subscribers.get(sessionId);
-		if (state) state.stderr.push(error.message);
-		this.sessions.updateStatus(sessionId, "unknown");
+		if (state?.child === child) {
+			state.stderr.push(error.message);
+			state.child = null;
+			state.lastExitedAt = (/* @__PURE__ */ new Date()).toISOString();
+			this.sessions.updateStatus(sessionId, "unknown");
+		}
 	}
 };
 const subscriberManager = new SubscriberManager(sessionManager);
@@ -1090,6 +1146,11 @@ function jsonResponse(value) {
 	return JSON.stringify(value, null, 2);
 }
 //#endregion
+//#region src/utils/errors.ts
+function errorMessage(error) {
+	return error instanceof Error ? error.message : String(error);
+}
+//#endregion
 //#region src/tools/output.ts
 function emptyOutputSnapshot(lineCount = 0) {
 	return {
@@ -1106,7 +1167,7 @@ function validateGrep(grep) {
 		new RegExp(grep).test("");
 		return null;
 	} catch (error) {
-		return error instanceof Error ? error.message : String(error);
+		return errorMessage(error);
 	}
 }
 function readOutputSnapshot(sessionId, options = {}) {
@@ -1219,11 +1280,12 @@ const zellijPtyReadTool = tool({
 			next: nextAdvice(false, `Invalid grep regex: ${grepError}`),
 			warnings: []
 		});
-		if (!subscriberManager.has(session.id)) await subscriberManager.start(session);
 		const subscriberStatus = subscriberManager.status(session.id);
+		if (!subscriberStatus.hasBuffer || !subscriberStatus.active && (session.status === "running" || session.status === "unknown")) await subscriberManager.start(session);
+		const statusAfterStart = subscriberManager.status(session.id);
 		const warnings = [];
 		if (session.humanInputOnly) warnings.push("This pane is human-input-only: agent writes are forbidden, but rendered output is visible to the agent.");
-		if (!subscriberStatus.active) {
+		if (!statusAfterStart.active) {
 			warnings.push("Subscriber is inactive; returned output may be stale.");
 			if (session.status === "running") sessionManager.updateStatus(session.id, "unknown");
 		}
@@ -1236,8 +1298,8 @@ const zellijPtyReadTool = tool({
 			session: publicSession(session),
 			output,
 			next: nextAdvice(session.status !== "exited" && session.status !== "killed", nextReadReason(session.status)),
-			subscriberActive: subscriberStatus.active,
-			subscriberLastExitedAt: subscriberStatus.lastExitedAt,
+			subscriberActive: statusAfterStart.active,
+			subscriberLastExitedAt: statusAfterStart.lastExitedAt,
 			subscriberErrors: subscriberManager.stderr(session.id),
 			warnings
 		});
@@ -1299,10 +1361,7 @@ const requestSudoTool = tool({
 	async execute(args, context) {
 		const cwd = context.directory;
 		const exitCodeToken = createExitCodeToken();
-		for (const script of args.scripts) assertCommandAllowed({
-			command: script.command,
-			humanInputOnly: true
-		});
+		assertSudoPaneAllowed();
 		const command = buildReviewScript(args.summary, args.scripts);
 		const title = createOpenCodePaneTitle("zellij_pty_request_sudo");
 		const paneId = await zellijCli.newPane({
@@ -1428,11 +1487,6 @@ const zellijPtySpawnTool = tool({
 	async execute(args, context) {
 		const cwd = args.cwd ?? context.directory;
 		const exitCodeToken = createExitCodeToken();
-		assertCommandAllowed({
-			command: args.command,
-			args: args.args,
-			humanInputOnly: false
-		});
 		const grepError = args.probe?.type === "output" ? validateGrep(args.probe.grep) : null;
 		if (grepError) throw new Error(`Invalid probe.grep regex: ${grepError}`);
 		const title = createOpenCodePaneTitle(args.title ?? args.command);
@@ -1525,16 +1579,23 @@ const zellijPtyWriteTool = tool({
 		session.updatedAt = (/* @__PURE__ */ new Date()).toISOString();
 		if (args.interruptAfterSeconds) {
 			await setTimeout$1(args.interruptAfterSeconds * 1e3);
-			if (sessionManager.get(session.id).status === "running") {
+			if (sessionManager.find(session.id)?.status === "running") {
 				await zellijCli.sendCtrlC(session.paneId);
 				await setTimeout$1(500);
 			}
 		} else await setTimeout$1(1e3);
+		const warnings = [];
+		let output = emptyOutputSnapshot(session.lineCount);
+		try {
+			output = readOutputSnapshot(session.id, { maxLines: args.maxLines });
+		} catch (error) {
+			warnings.push(`Session output was unavailable before the write response completed: ${errorMessage(error)}`);
+		}
 		return jsonResponse({
 			session: publicSession(session),
-			output: readOutputSnapshot(session.id, { maxLines: args.maxLines }),
+			output,
 			next: nextAdvice(true, args.interruptAfterSeconds ? "Input was sent; Ctrl-C was sent after the requested interrupt timeout if the session was still running." : "Input was sent and recent output was observed."),
-			warnings: []
+			warnings
 		});
 	}
 });
@@ -1571,7 +1632,7 @@ function exitAfterCleanup(signal, code) {
 //#endregion
 //#region src/zellij/tab-title-events.ts
 const execFileAsync = promisify(execFile);
-function isRecord$1(value) {
+function isRecord(value) {
 	return typeof value === "object" && value !== null;
 }
 function stringProperty(object, key) {
@@ -1580,12 +1641,12 @@ function stringProperty(object, key) {
 }
 function nestedStringProperty(object, key, nestedKey) {
 	const nested = object[key];
-	if (!isRecord$1(nested)) return void 0;
+	if (!isRecord(nested)) return void 0;
 	return stringProperty(nested, nestedKey);
 }
 function sessionStatusProperty(object) {
 	const status = object.status;
-	if (!isRecord$1(status)) return void 0;
+	if (!isRecord(status)) return void 0;
 	if (status.type === "idle" || status.type === "busy") return { type: status.type };
 	if (status.type === "retry") return {
 		type: "retry",
@@ -1604,7 +1665,7 @@ function isResolvedInputState(state) {
 	return state === "approved" || state === "denied" || state === "rejected" || state === "resolved" || state === "replied";
 }
 function deletedSessionID(event) {
-	if (!isRecord$1(event.properties)) return void 0;
+	if (!isRecord(event.properties)) return void 0;
 	return nestedStringProperty(event.properties, "info", "id") ?? stringProperty(event.properties, "sessionID");
 }
 async function readGitBranch(worktree) {
@@ -1630,7 +1691,7 @@ function shouldReadInitialBranch(zellij) {
 	return Boolean(zellij);
 }
 function handleTabTitleEvent(tabTitleManager, event) {
-	if (!isRecord$1(event.properties)) return;
+	if (!isRecord(event.properties)) return;
 	const properties = event.properties;
 	switch (event.type) {
 		case "session.status": {
@@ -1875,9 +1936,6 @@ function getProjectName(path) {
 function getWorkspaceRoot(input) {
 	return input.worktree || input.directory || process.cwd();
 }
-function isRecord(value) {
-	return typeof value === "object" && value !== null;
-}
 function showUpdateToast(client, result) {
 	if (result.type === "updated") client.tui.showToast({ body: {
 		title: "opencode-zellij updated",
@@ -1892,63 +1950,72 @@ function showUpdateToast(client, result) {
 		duration: 8e3
 	} }).catch(() => {});
 }
-function isRootSessionCreated(event) {
-	if (event.type !== "session.created") return false;
-	if (!isRecord(event.properties)) return true;
-	const info = event.properties.info;
-	if (!isRecord(info)) return true;
-	return !info.parentID;
-}
-const ZellijPtyPlugin = async (input) => {
-	const { config, warnings } = await loadConfig(input);
-	for (const warning of warnings) debug(warning);
-	configurePolicy({ allowSudoPane: config.pty.sudoPane === "allow" });
-	cleanupStaleWatchdogRegistries();
-	registerShutdownCleanup();
-	const workspaceRoot = getWorkspaceRoot(input);
-	const projectName = getProjectName(workspaceRoot);
-	const branchName = config.tabTitle.enabled && shouldReadInitialBranch(process.env.ZELLIJ) ? await getInitialBranch(workspaceRoot) : void 0;
-	const tabTitleManager = config.tabTitle.enabled ? new TabTitleManager({
-		projectName,
-		branchName,
-		debounceMs: config.tabTitle.debounceMs,
-		emojis: {
-			idle: config.tabTitle.emojiIdle,
-			running: config.tabTitle.emojiRunning,
-			needsInput: config.tabTitle.emojiNeedsInput,
-			branch: config.tabTitle.emojiBranch
+function startAutoUpdateCheck(client, importMetaUrl, check = checkAndUpdate) {
+	(async () => {
+		try {
+			showUpdateToast(client, await check({ importMetaUrl }));
+		} catch (cause) {
+			debug("auto-update check failed", errorMessage(cause));
 		}
-	}) : void 0;
-	tabTitleManager?.renderImmediate().catch(() => {});
-	let hasCheckedUpdate = false;
-	const client = input.client;
-	return {
-		async event(input) {
-			const event = input.event;
-			if (!hasCheckedUpdate && config.autoUpdate.enabled && isRootSessionCreated(event)) {
-				hasCheckedUpdate = true;
-				checkAndUpdate({ importMetaUrl: import.meta.url }).then((result) => showUpdateToast(client, result), (cause) => debug("auto-update check failed", cause instanceof Error ? cause.message : String(cause)));
-			}
-			if (tabTitleManager) handleTabTitleEvent(tabTitleManager, event);
-			if (event.type === "session.deleted") {
-				const sessionID = deletedSessionID(event);
-				if (!sessionID) return;
-				const sessions = sessionManager.listByOpenCodeSession(sessionID);
-				await Promise.all(sessions.map(async (session) => {
-					await subscriberManager.closeSessionPane(session.id);
-					subscriberManager.forget(session.id);
-					unregisterPaneFromWatchdog(session.id);
-					sessionManager.remove(session.id);
-				}));
+	})();
+}
+async function cleanupStep(stepName, sessionId, step) {
+	try {
+		await step();
+	} catch (error) {
+		debug(`session.deleted cleanup failed: ${stepName} for ${sessionId}`, errorMessage(error));
+	}
+}
+async function cleanupDeletedSession(sessionId) {
+	await cleanupStep("close pane", sessionId, () => subscriberManager.closeSessionPane(sessionId));
+	await cleanupStep("forget subscriber", sessionId, () => subscriberManager.forget(sessionId));
+	await cleanupStep("unregister watchdog", sessionId, () => unregisterPaneFromWatchdog(sessionId));
+	await cleanupStep("remove session", sessionId, () => sessionManager.remove(sessionId));
+}
+function createZellijPtyPlugin(dependencies = {}) {
+	return async (input) => {
+		const { config, warnings } = await loadConfig(input);
+		for (const warning of warnings) debug(warning);
+		configureSudoPane(config.pty.sudoPane === "allow");
+		cleanupStaleWatchdogRegistries();
+		registerShutdownCleanup();
+		const workspaceRoot = getWorkspaceRoot(input);
+		const projectName = getProjectName(workspaceRoot);
+		const branchName = config.tabTitle.enabled && shouldReadInitialBranch(process.env.ZELLIJ) ? await getInitialBranch(workspaceRoot) : void 0;
+		const tabTitleManager = config.tabTitle.enabled ? new TabTitleManager({
+			projectName,
+			branchName,
+			debounceMs: config.tabTitle.debounceMs,
+			emojis: {
+				idle: config.tabTitle.emojiIdle,
+				running: config.tabTitle.emojiRunning,
+				needsInput: config.tabTitle.emojiNeedsInput,
+				branch: config.tabTitle.emojiBranch
 			}
-		},
-		tool: config.pty.enabled ? {
-			...ptyTools,
-			...config.pty.sudoPane === "hide" ? {} : { zellij_pty_request_sudo: requestSudoTool }
-		} : {}
+		}) : void 0;
+		tabTitleManager?.renderImmediate().catch(() => {});
+		const client = input.client;
+		if (config.autoUpdate.enabled) (dependencies.startAutoUpdateCheck ?? startAutoUpdateCheck)(client, dependencies.importMetaUrl ?? import.meta.url);
+		return {
+			async event(input) {
+				const event = input.event;
+				if (tabTitleManager) handleTabTitleEvent(tabTitleManager, event);
+				if (event.type === "session.deleted") {
+					const sessionID = deletedSessionID(event);
+					if (!sessionID) return;
+					const sessions = sessionManager.listByOpenCodeSession(sessionID);
+					await Promise.all(sessions.map((session) => cleanupDeletedSession(session.id)));
+				}
+			},
+			tool: config.pty.enabled ? {
+				...ptyTools,
+				...config.pty.sudoPane === "hide" ? {} : { zellij_pty_request_sudo: requestSudoTool }
+			} : {}
+		};
 	};
-};
+}
+const ZellijPtyPlugin = createZellijPtyPlugin();
 //#endregion
-export { ZellijPtyPlugin, ZellijPtyPlugin as default, showUpdateToast };
+export { ZellijPtyPlugin, ZellijPtyPlugin as default, createZellijPtyPlugin, showUpdateToast, startAutoUpdateCheck };
 
 //# sourceMappingURL=index.mjs.map