perplexity-user-mcp 0.8.39 → 0.8.44

package/dist/impit-login-runner.d.ts

@@ -1,469 +1 @@
-import { existsSync, mkdirSync, writeFileSync } from 'node:fs';
-import { Vault } from './vault.d-BSJWDLhp.js';
-import { recordLoginSuccess, getActiveName, getProfilePaths } from './profiles.d-DqS1oZWr.js';
-import { redact } from './redact.js';
-import { b as buildRuntimeEndpoints } from './session-metadata-B9aV_n5g.js';
-import { PlaywrightCookie } from './config.js';
-import { isImpitAvailable, loadImpit } from './refresh.js';
-import 'patchright';
-
-/**
- * Minimal RFC 6265-style cookie jar for the impit-driven login flow.
- *
- * Identity = `(name, domain, path)` triple — same triple replaces. Domain
- * matching honours leading-dot semantics; path matching is prefix-based with
- * default-path derived from the request URL. Honours `Expires`, `Max-Age`
- * (Max-Age wins), `Secure`, and `HttpOnly` (round-tripped, not enforced).
- *
- * Round-trips cleanly to/from the `PlaywrightCookie` shape used by
- * `getSavedCookies()` and the vault, so the impit login output can replace
- * Patchright's cookie array drop-in.
- */
-declare class CookieJar {
-  constructor(initialCookies?: PlaywrightCookie[]);
-
-  /**
-   * Apply one or more `Set-Cookie` headers from a response. Accepts either a
-   * single string (joined header) or an array of values, e.g. from
-   * `res.headers.getSetCookie?.()`. Cookies whose Max-Age is `<= 0` or whose
-   * Expires is in the past are *deleted* from the jar (server-driven delete);
-   * cookies that merely become stale via wall-clock drift remain in the jar
-   * but are filtered out of `buildCookieHeader`.
-   */
-  consumeSetCookieHeader(header: string | string[] | null | undefined, requestUrl: string): void;
-
-  /**
-   * Build a `Cookie:` header value for `requestUrl`. Returns `""` when no
-   * cookies match (so callers can `if (h) headers.cookie = h`). Filters out
-   * cookies whose Secure flag is set when the request URL is `http://`, and
-   * cookies whose Expires/Max-Age is in the past. Sorted by path length
-   * descending, per RFC 6265 §5.4.
-   */
-  buildCookieHeader(requestUrl: string): string;
-
-  /**
-   * Snapshot of every cookie in the jar (including expired ones — callers
-   * that persist to disk want the full set so a later refresh can simply
-   * overwrite).
-   */
-  toPlaywrightShape(): PlaywrightCookie[];
-
-  /**
-   * Explicit setter, mostly for tests and for callers that already have a
-   * fully-formed cookie record (e.g. seeding `cf_clearance` from the vault).
-   */
-  set(
-    name: string,
-    value: string,
-    attributes?: Partial<PlaywrightCookie> & { hostOnly?: boolean },
-  ): void;
-}
-
-interface WarmCloudflareOptions {
-    /** Hard cap on the initial page.goto. Default 15_000ms. */
-    navigationTimeoutMs?: number;
-    /** How often to recheck context cookies for `cf_clearance`. Default 250ms. */
-    pollIntervalMs?: number;
-    /** Total wall-clock budget for the cookie poll loop after navigation. Default 10_000ms. */
-    cookieWaitMs?: number;
-}
-interface WarmCloudflareResult {
-    /**
-     * True iff the browser launched and navigation succeeded. May be true even
-     * when `hasCfClearance` is false — distinguishes "browser unusable" from
-     * "browser fine, CF just didn't issue clearance this time".
-     */
-    ok: boolean;
-    /** All cookies present in the ephemeral context at teardown. Empty on launch failure. */
-    cookies: PlaywrightCookie[];
-    /** Whether `cf_clearance` was observed in `cookies`. */
-    hasCfClearance: boolean;
-    /** Wall-clock duration of the warmup attempt, in milliseconds. */
-    elapsedMs: number;
-    /** Populated when `ok=false`. Single-line, human-readable. */
-    error?: string;
-}
-/**
- * Brief headless launch to capture cf_clearance for the impit-login flow.
- *
- * Always returns a result object — never throws. Caller falls back to the
- * full browser-based login when ok=false or hasCfClearance=false.
- */
-declare function warmCloudflare(opts?: WarmCloudflareOptions): Promise<WarmCloudflareResult>;
-
-// Impit-driven Auto-OTP login runner. Same emit/IPC protocol as
-// `login-runner.js` but drives the 6-step Perplexity email+OTP flow
-// (csrf → sso check → signin/email → wait OTP → otp-redirect → callback)
-// through impit (Rust HTTP client) instead of through a Patchright
-// browser. The visible browser window is replaced with a brief headless
-// CF warmup (only when the vault has no fresh `cf_clearance` cookie).
-//
-// Plan: docs/impit-coverage-plan.md §3 (Phase 1).
-//
-// Inputs (env):
-//   PERPLEXITY_EMAIL              — required
-//   PERPLEXITY_PROFILE            — profile name to write cookies to
-//   PERPLEXITY_OTP_TIMEOUT_MS     — default 300_000
-//   PERPLEXITY_LOGIN_MAX_RETRIES  — default 2
-//
-// Outputs:
-//   process.send({ phase: "awaiting_otp", attempt: N })       — IPC, parent prompts user
-//   process.stdin gets { otp: "123456" }                      — IPC, parent sends back
-//   process.stdout: JSON line `{ ok, ... }` final result
-//   exit codes: 0 success, 2 logical fail, 4 chrome/impit missing, 5 crash
-
-
-const ORIGIN = process.env.PERPLEXITY_ORIGIN || "https://www.perplexity.ai";
-const EMAIL = process.env.PERPLEXITY_EMAIL;
-const OTP_TIMEOUT_MS = Number(process.env.PERPLEXITY_OTP_TIMEOUT_MS ?? 300_000);
-const MAX_RETRIES = Number(process.env.PERPLEXITY_LOGIN_MAX_RETRIES ?? 2);
-const USER_AGENT =
-  "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/138.0.0.0 Safari/537.36";
-const CHROME_CLIENT_HINTS = {
-  "sec-ch-ua": '"Not)A;Brand";v="8", "Chromium";v="138", "Google Chrome";v="138"',
-  "sec-ch-ua-mobile": "?0",
-  "sec-ch-ua-platform": '"Windows"',
-};
-
-function resolveProfile() {
-  return process.env.PERPLEXITY_PROFILE || getActiveName() || "default";
-}
-
-function ipc(msg) { if (process.send) process.send(msg); }
-function emit(obj) { process.stdout.write(JSON.stringify(obj) + "\n"); }
-
-async function awaitOtp() {
-  return new Promise((resolve, reject) => {
-    const timer = setTimeout(() => {
-      process.removeListener("message", handler);
-      reject(new Error("otp_timeout"));
-    }, OTP_TIMEOUT_MS);
-    const handler = (m) => {
-      if (m && typeof m.otp === "string") {
-        clearTimeout(timer);
-        process.removeListener("message", handler);
-        resolve(m.otp);
-      }
-    };
-    process.on("message", handler);
-  });
-}
-
-/**
- * Wrap an impit instance in a small fetch helper that round-trips the
- * cookie jar. Returns { status, headers, json, text }.
- */
-async function impitJsonRequest(client, jar, url, init = {}) {
-  const cookieHeader = jar.buildCookieHeader(url);
-  const headers = {
-    "user-agent": USER_AGENT,
-    accept: "application/json, text/plain, */*",
-    "accept-language": "en-US,en;q=0.9",
-    ...CHROME_CLIENT_HINTS,
-    ...(cookieHeader ? { cookie: cookieHeader } : {}),
-    ...(init.body !== undefined ? { "content-type": "application/json" } : {}),
-    referer: `${ORIGIN}/`,
-    origin: ORIGIN,
-    ...(init.headers ?? {}),
-  };
-  const ctrl = new AbortController();
-  const to = setTimeout(() => ctrl.abort(), init.timeoutMs ?? 30_000);
-  try {
-    const res = await client.fetch(url, {
-      method: init.method ?? "GET",
-      headers,
-      body: init.body !== undefined ? JSON.stringify(init.body) : undefined,
-      signal: ctrl.signal,
-      redirect: init.redirect ?? "manual",
-    });
-    const text = await res.text();
-    // Capture Set-Cookie before reading body — Node Headers carries them.
-    const setCookies = readSetCookies(res.headers);
-    if (setCookies.length) jar.consumeSetCookieHeader(setCookies, url);
-    let json;
-    if (text) {
-      try { json = JSON.parse(text); } catch { /* leave undefined */ }
-    }
-    return { status: res.status, headers: res.headers, text, json };
-  } finally {
-    clearTimeout(to);
-  }
-}
-
-function readSetCookies(headers) {
-  if (!headers) return [];
-  // Node 20+ standard
-  if (typeof headers.getSetCookie === "function") {
-    return headers.getSetCookie();
-  }
-  // Headers#raw() (undici)
-  if (typeof headers.raw === "function") {
-    const raw = headers.raw();
-    return raw["set-cookie"] ?? [];
-  }
-  // Plain object fallback
-  const lower = Object.keys(headers).find((k) => k.toLowerCase() === "set-cookie");
-  if (!lower) return [];
-  const v = headers[lower];
-  return Array.isArray(v) ? v : [v];
-}
-
-/**
- * Follow redirects manually so we can capture Set-Cookie at every hop —
- * the OTP callback chain depends on cookies set in 302 responses, which
- * `redirect: "follow"` would swallow.
- */
-async function followRedirectsManually(client, jar, startUrl, init = {}, maxHops = 10) {
-  let url = startUrl;
-  let lastStatus = 0;
-  for (let hop = 0; hop < maxHops; hop++) {
-    const result = await impitJsonRequest(client, jar, url, { ...init, redirect: "manual", method: hop === 0 ? init.method ?? "GET" : "GET" });
-    lastStatus = result.status;
-    if (result.status >= 300 && result.status < 400) {
-      const loc = readHeader(result.headers, "location");
-      if (!loc) return { ok: false, status: result.status, finalUrl: url };
-      url = new URL(loc, url).toString();
-      // Subsequent hops must not re-send the body
-      init.body = undefined;
-      continue;
-    }
-    return { ok: result.status >= 200 && result.status < 300, status: result.status, finalUrl: url, json: result.json, text: result.text };
-  }
-  return { ok: false, status: lastStatus, finalUrl: url, error: "max_redirects" };
-}
-
-function readHeader(headers, name) {
-  if (!headers) return null;
-  if (typeof headers.get === "function") return headers.get(name);
-  const key = Object.keys(headers).find((k) => k.toLowerCase() === name.toLowerCase());
-  return key ? headers[key] : null;
-}
-
-/**
- * Steps 1-3 of the auth flow: csrf → sso check → email signin.
- * Returns either { kind: "live", redirectUrl } on success, or a structured
- * failure that the caller maps to an exit reason.
- */
-async function startEmailFlow(client, jar) {
-  const endpoints = buildRuntimeEndpoints(ORIGIN);
-
-  const csrf = await impitJsonRequest(client, jar, endpoints.csrf);
-  if (csrf.status !== 200 || !csrf.json?.csrfToken) {
-    return { kind: "unsupported", detail: { step: "csrf", status: csrf.status } };
-  }
-
-  const sso = await impitJsonRequest(client, jar, endpoints.ssoDetails, {
-    method: "POST",
-    body: { email: EMAIL },
-  });
-  if (sso.status === 200 && sso.json?.organization) {
-    return { kind: "sso_required" };
-  }
-
-  const redirectUrl = `${ORIGIN}/account?login-source=settings`;
-  const signIn = await impitJsonRequest(client, jar, endpoints.signInEmail, {
-    method: "POST",
-    body: {
-      email: EMAIL,
-      useNumericOtp: "true",
-      csrfToken: csrf.json.csrfToken,
-      callbackUrl: `${redirectUrl}#locale=en-US`,
-      json: "true",
-    },
-  });
-
-  if (signIn.status !== 200 || !signIn.json?.url) {
-    return {
-      kind: signIn.status >= 400 && signIn.status < 500 ? "email_rejected" : "unsupported",
-      detail: { step: "signin_email", status: signIn.status },
-    };
-  }
-
-  return { kind: "live", redirectUrl, csrfToken: csrf.json.csrfToken };
-}
-
-async function submitOtp(client, jar, flow, otp) {
-  const endpoints = buildRuntimeEndpoints(ORIGIN);
-  const redirectResp = await impitJsonRequest(client, jar, endpoints.otpRedirectLink, {
-    method: "POST",
-    body: {
-      email: EMAIL,
-      otp,
-      redirectUrl: flow.redirectUrl,
-      emailLoginMethod: "web-otp",
-      loginSource: null,
-    },
-  });
-  if (redirectResp.status !== 200 || !redirectResp.json?.redirect) {
-    return { ok: false };
-  }
-  // Follow the callback redirect chain manually to capture session cookies.
-  const callbackUrl = new URL(redirectResp.json.redirect, ORIGIN).toString();
-  const callback = await followRedirectsManually(client, jar, callbackUrl, { method: "GET" });
-  if (!callback.ok) return { ok: false };
-  // After the chain, the jar should have __Secure-next-auth.session-token.
-  const cookies = jar.toPlaywrightShape();
-  const hasSession = cookies.some((c) => c.name === "__Secure-next-auth.session-token");
-  if (!hasSession) return { ok: false };
-  return { ok: true, cookies };
-}
-
-/**
- * Probe an authenticated endpoint to fetch session/user metadata after a
- * successful OTP. We don't have a page to evaluate in, so this is a small
- * direct fetch — reusing the same jar.
- */
-async function fetchSessionInfo(client, jar) {
-  const session = await impitJsonRequest(client, jar, `${ORIGIN}/api/auth/session?version=2.18&source=default`);
-  return session.json ?? {};
-}
-
-async function fetchModelsCache(client, jar) {
-  // Mirrors what `refresh.ts` writes — but via this jar. Best-effort.
-  const result = {};
-  for (const [key, path] of [
-    ["models", "/rest/configs/models?version=2.18&source=default"],
-    ["asi", "/rest/configs/asi-access?version=2.18&source=default"],
-    ["rateLimits", "/rest/rate-limits?version=2.18&source=default"],
-    ["experiments", "/rest/experiments?version=2.18&source=default"],
-    ["userInfo", "/rest/user/info?version=2.18&source=default"],
-  ]) {
-    try {
-      const r = await impitJsonRequest(client, jar, `${ORIGIN}${path}`);
-      if (r.status === 200 && r.json) result[key] = r.json;
-    } catch { /* ignore — partial cache is fine */ }
-  }
-  return result;
-}
-
-function deriveTier(modelsCache) {
-  if (modelsCache.userInfo?.subscription_tier === "enterprise") return "Enterprise";
-  if (modelsCache.userInfo?.subscription_tier === "max") return "Max";
-  if (modelsCache.userInfo?.subscription_tier === "pro") return "Pro";
-  if (modelsCache.experiments?.server_is_enterprise) return "Enterprise";
-  if (modelsCache.experiments?.server_is_max) return "Max";
-  if (modelsCache.experiments?.server_is_pro) return "Pro";
-  if (modelsCache.asi?.can_use_computer) return "Pro";
-  return "Authenticated";
-}
-
-async function main() {
-  if (!EMAIL) {
-    emit({ ok: false, reason: "no_email" });
-    process.exit(1);
-  }
-  if (!isImpitAvailable()) {
-    emit({ ok: false, reason: "impit_missing", error: "Speed Boost (impit) not installed" });
-    process.exit(4);
-  }
-
-  const PROFILE = resolveProfile();
-
-  // 1. Seed jar from existing vault cookies (if any). Brand-new logins
-  //    get an empty jar; subsequent re-logins inherit cf_clearance etc.
-  const vault = new Vault();
-  const jar = new CookieJar([]);
-  try {
-    const stored = await vault.get(PROFILE, "cookies").catch(() => null);
-    if (stored) {
-      const parsed = JSON.parse(stored);
-      if (Array.isArray(parsed)) {
-        for (const c of parsed) jar.set?.(c.name, c.value, { domain: c.domain, path: c.path, expires: c.expires, secure: c.secure, httpOnly: c.httpOnly, sameSite: c.sameSite });
-      }
-    }
-  } catch { /* ignore — seed is best-effort */ }
-
-  // 2. CF warmup if jar has no cf_clearance. ~1-2s headless launch.
-  if (!jar.toPlaywrightShape().some((c) => c.name === "cf_clearance")) {
-    const warmup = await warmCloudflare();
-    if (warmup.cookies.length) {
-      for (const c of warmup.cookies) {
-        jar.set?.(c.name, c.value, { domain: c.domain, path: c.path, expires: c.expires, secure: c.secure, httpOnly: c.httpOnly, sameSite: c.sameSite });
-      }
-    }
-    if (!warmup.hasCfClearance) {
-      // No cf_clearance after warmup → CF is challenging this IP. Bail to
-      // browser fallback which has the headed CF solver.
-      emit({ ok: false, reason: "cf_blocked", detail: { warmupOk: warmup.ok } });
-      process.exit(3);
-    }
-  }
-
-  // 3. Load impit and run the email→OTP→callback flow.
-  const impitMod = await loadImpit();
-  if (!impitMod) {
-    emit({ ok: false, reason: "impit_load_failed" });
-    process.exit(4);
-  }
-  const client = new impitMod.Impit({ browser: "chrome", ignoreTlsErrors: false });
-
-  let authFlow;
-  try {
-    authFlow = await startEmailFlow(client, jar);
-  } catch (err) {
-    emit({ ok: false, reason: "auto_unsupported", detail: { step: "start", error: redact(String(err?.message ?? err)) } });
-    process.exit(2);
-  }
-
-  if (authFlow.kind === "sso_required") {
-    emit({ ok: false, reason: "sso_required" });
-    process.exit(2);
-  }
-  if (authFlow.kind === "email_rejected") {
-    emit({ ok: false, reason: "email_rejected", detail: authFlow.detail });
-    process.exit(2);
-  }
-  if (authFlow.kind !== "live") {
-    emit({ ok: false, reason: "auto_unsupported", detail: authFlow.detail });
-    process.exit(2);
-  }
-
-  // 4. OTP loop with retry.
-  for (let attempt = 0; attempt <= MAX_RETRIES; attempt++) {
-    ipc({ phase: "awaiting_otp", attempt });
-    let otp;
-    try {
-      otp = await awaitOtp();
-    } catch {
-      emit({ ok: false, reason: "otp_timeout" });
-      process.exit(2);
-    }
-
-    const submitResp = await submitOtp(client, jar, authFlow, otp);
-    if (submitResp.ok) {
-      // 5. Persist cookies + session metadata.
-      const sessionInfo = await fetchSessionInfo(client, jar).catch(() => ({}));
-      const modelsCache = await fetchModelsCache(client, jar).catch(() => ({}));
-      const tier = deriveTier(modelsCache);
-
-      await vault.set(PROFILE, "cookies", JSON.stringify(submitResp.cookies));
-      if (sessionInfo?.user?.email) await vault.set(PROFILE, "email", sessionInfo.user.email);
-      if (sessionInfo?.user?.id) await vault.set(PROFILE, "userId", sessionInfo.user.id);
-
-      const paths = getProfilePaths(PROFILE);
-      if (!existsSync(paths.dir)) mkdirSync(paths.dir, { recursive: true });
-      writeFileSync(paths.modelsCache, JSON.stringify(modelsCache, null, 2));
-      recordLoginSuccess(PROFILE, { tier, loginMode: "auto", lastLogin: new Date().toISOString() });
-      writeFileSync(paths.reinit, String(Date.now()));
-
-      emit({ ok: true, tier, modelCount: Object.keys(modelsCache?.models?.models ?? {}).length, transport: "impit" });
-      process.exit(0);
-    }
-
-    if (attempt === MAX_RETRIES) {
-      emit({ ok: false, reason: "otp_rejected" });
-      process.exit(2);
-    }
-  }
-}
-
-main().catch((err) => {
-  const msg = err?.message ?? err;
-  emit({
-    ok: false,
-    reason: "crash",
-    error: redact(String(msg ?? "unknown error")),
-    ...(err?.stack ? { stack: redact(String(err.stack)) } : {}),
-  });
-  process.exit(5);
-});
+export {};

package/dist/impit-login-runner.mjs

@@ -7,22 +7,22 @@ import {
 import {
   isImpitAvailable,
   loadImpit
-} from "./chunk-DQQISMYN.mjs";
+} from "./chunk-V4LHDNWJ.mjs";
 import {
   PERPLEXITY_URL,
   findBrowser,
   getOrCreateContext,
   resolveBrowserExecutable
-} from "./chunk-U7QPUNRH.mjs";
+} from "./chunk-DXR6EEZH.mjs";
 import {
   Vault
-} from "./chunk-S677V2JU.mjs";
+} from "./chunk-C5I7KXHK.mjs";
 import "./chunk-MTDFKNXX.mjs";
 import {
   getActiveName,
   getProfilePaths,
   recordLoginSuccess
-} from "./chunk-HJIXH6CL.mjs";
+} from "./chunk-E3GRJXXJ.mjs";
 import "./chunk-4UEJOM6W.mjs";
 
 // src/impit-login-runner.js

package/dist/index.d.ts

@@ -1,147 +1,5 @@
 #!/usr/bin/env node
-import { PerplexityClient } from './client.js';
-export { ensureDaemon, startDaemon } from './daemon/launcher.js';
-export { attachToDaemon } from './daemon/attach.js';
-import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
-import { SearchResult } from './config.js';
-export { BrowserInfo, findBrowser } from './config.js';
-export { append as appendHistory, countAll as countAllHistory, deleteEntry, findByBackendUuid, findPendingByThread, get, getAttachmentsDir, getAttachmentsRoot, getHistoryDir, getIndexPath as getHistoryPath, getMdPath, hydrateCloudEntry, pin, list as readHistory, rebuildIndex, tag, update, upsertFromCloud } from './history-store.d-BzjBF2m3.js';
-export { hydrateCloudHistoryEntry, syncCloudHistory } from './cloud-sync.d-Cqt6y18U.js';
-export { HistoryItem } from '@perplexity-user-mcp/shared';
-export { RefreshOptions, RefreshResult, RefreshTier, getImpitRuntimeDir, getModelsCacheInfo, isImpitAvailable, refreshAccountInfo } from './refresh.js';
-import { DoctorReport, DoctorCategory } from './doctor.d-CXmUqOXX.js';
-export { CATEGORIES as DOCTOR_CATEGORIES, formatReportMarkdown, runAll as runDoctor } from './doctor.d-CXmUqOXX.js';
-import 'patchright';
-import './daemon/lockfile.js';
-import 'node:stream';
-
-type GetClient = () => Promise<PerplexityClient>;
-interface ToolAuditEvent {
-    tool: string;
-    clientId: string;
-    source: "loopback" | "tunnel";
-    durationMs: number;
-    ok: boolean;
-    error?: string;
-}
-interface ToolProgressEvent {
-    tool: string;
-    clientId: string;
-    source: "loopback" | "tunnel";
-    progress: Record<string, unknown>;
-}
-interface ToolHooks {
-    onToolSettled?: (event: ToolAuditEvent) => void;
-    onToolProgress?: (event: ToolProgressEvent) => void;
-}
-declare function registerTools(server: McpServer, getClient: GetClient, enabledTools?: Set<string>, hooks?: ToolHooks): void;
-
-declare function registerPrompts(server: McpServer): void;
-
-interface AccountSnapshotProvider {
-    (): Record<string, unknown>;
-}
-declare function registerResources(server: McpServer, getAccountSnapshot?: AccountSnapshotProvider): void;
-
-interface HistoryEntry {
-    tool: string;
-    query: string;
-    model: string | null;
-    mode: string | null;
-    language: string | null;
-    answerPreview: string;
-    sourceCount: number;
-    threadUrl?: string;
-    error?: string;
-}
-declare function formatResponse(result: SearchResult): string;
-declare function buildAnswerPreview(result: SearchResult | null, error?: string): string;
-declare function buildHistoryEntry(options: {
-    tool: string;
-    query: string;
-    model: string | null;
-    mode: string | null;
-    language: string | null;
-    result?: SearchResult;
-    error?: string;
-}): HistoryEntry;
-declare function buildHistoryBody(result: SearchResult | undefined, error?: string): string;
-declare function buildStoredHistoryEntry(options: {
-    tool: string;
-    query: string;
-    model: string | null;
-    mode: string | null;
-    language: string | null;
-    tier?: "Max" | "Pro" | "Enterprise" | "Authenticated" | "Anonymous";
-    status?: "completed" | "pending" | "failed";
-    createdAt?: string;
-    completedAt?: string;
-    result?: SearchResult;
-    error?: string;
-}): HistoryEntry & {
-    createdAt: string;
-    body: string;
-    status?: "completed" | "pending" | "failed";
-    completedAt?: string;
-    tier?: "Max" | "Pro" | "Enterprise" | "Authenticated" | "Anonymous";
-    threadSlug?: string | null;
-    backendUuid?: string | null;
-    readWriteToken?: string | null;
-    sources?: Array<{
-        n: number;
-        title: string;
-        url: string;
-        snippet?: string;
-    }>;
-};
-
-type ExportFormat = "pdf" | "markdown" | "docx";
-
-interface ExportResult {
-  buffer: Buffer;
-  filename: string;
-  contentType: string;
-}
-declare function exportThread(options: {
-  entryUuid: string;
-  format: ExportFormat;
-  fetchImpl?: (input: string, init?: RequestInit) => Promise<Response>;
-  baseUrl?: string;
-  headers?: HeadersInit;
-}): Promise<ExportResult>;
-
-type ToolProfile = "read-only" | "full" | "custom";
-interface ToolConfig {
-    profile: ToolProfile;
-    customEnabled?: string[];
-}
-declare function loadToolConfig(): ToolConfig;
-declare function getEnabledTools(config: ToolConfig): Set<string>;
-declare function saveToolConfig(config: ToolConfig): void;
-declare function watchToolConfig(onChange: (config: ToolConfig) => void): void;
-
-declare function buildIssueBody(input: {
-  report: DoctorReport;
-  stderrTail: string;
-  extVersion: string;
-  nodeVersion: string;
-  os: string;
-  activeTier?: string | null;
-}): string;
-
-declare function redactIssueBody(md: string): string;
-
-declare function decideTransport(input: { bodyBytes: number }): "inline" | "file";
-
-declare function buildIssueUrl(input: {
-  owner: string;
-  repo: string;
-  category: DoctorCategory | string;
-  check: string;
-  body: string;
-}): string;
-
-declare function __resetVaultPreflightForTests(): void;
+export declare function __resetVaultPreflightForTests(): void;
 /**
  * Probe the vault unseal chain at startup. If unsealing succeeds, the result
  * is cached inside `vault.js` for free — subsequent tool calls skip the
@@ -153,11 +11,29 @@ declare function __resetVaultPreflightForTests(): void;
  * Never throws. The MCP server must continue to load and serve tools that
  * don't need cookies (perplexity_doctor, anonymous perplexity_search).
  */
-declare function runVaultPreflight(stderr?: NodeJS.WritableStream): Promise<void>;
-declare function waitForStdioInputClose(stdin?: NodeJS.ReadableStream): Promise<void>;
-declare function shutdownClientWithTimeout(c: {
+export declare function runVaultPreflight(stderr?: NodeJS.WritableStream): Promise<void>;
+export declare function waitForStdioInputClose(stdin?: NodeJS.ReadableStream): Promise<void>;
+export declare function shutdownClientWithTimeout(c: {
     shutdown: () => Promise<void>;
 } | undefined, timeoutMs?: number): Promise<void>;
-declare function main(): Promise<void>;
-
-export { type HistoryEntry, PerplexityClient, type ToolProfile, __resetVaultPreflightForTests, buildAnswerPreview, buildHistoryBody, buildHistoryEntry, buildIssueBody, buildIssueUrl, buildStoredHistoryEntry, decideTransport, exportThread, formatResponse, getEnabledTools, loadToolConfig, main, redactIssueBody, registerPrompts, registerResources, registerTools, runVaultPreflight, saveToolConfig, shutdownClientWithTimeout, waitForStdioInputClose, watchToolConfig };
+export declare function main(): Promise<void>;
+export { PerplexityClient } from "./client.js";
+export { ensureDaemon, startDaemon } from "./daemon/launcher.js";
+export { attachToDaemon } from "./daemon/attach.js";
+export { registerTools } from "./tools.js";
+export { registerPrompts } from "./prompts.js";
+export { registerResources } from "./resources.js";
+export { formatResponse, buildHistoryBody, buildHistoryEntry, buildStoredHistoryEntry, buildAnswerPreview } from "./format.js";
+export { append as appendHistory, countAll as countAllHistory, deleteEntry, findPendingByThread, get, getAttachmentsDir, getAttachmentsRoot, getHistoryDir, getIndexPath as getHistoryPath, getMdPath, list as readHistory, pin, rebuildIndex, tag, update, findByBackendUuid, upsertFromCloud, hydrateCloudEntry, } from "./history-store.js";
+export { syncCloudHistory, hydrateCloudHistoryEntry } from "./cloud-sync.js";
+export { exportThread } from "./export.js";
+export type { HistoryEntry } from "./format.js";
+export type { HistoryItem } from "@perplexity-user-mcp/shared";
+export { loadToolConfig, getEnabledTools, saveToolConfig, watchToolConfig } from "./tool-config.js";
+export type { ToolProfile } from "./tool-config.js";
+export { findBrowser } from "./config.js";
+export type { BrowserInfo } from "./config.js";
+export { refreshAccountInfo, getModelsCacheInfo, isImpitAvailable, getImpitRuntimeDir } from "./refresh.js";
+export type { RefreshResult, RefreshTier, RefreshOptions } from "./refresh.js";
+export { runAll as runDoctor, formatReportMarkdown, CATEGORIES as DOCTOR_CATEGORIES } from "./doctor.js";
+export { buildIssueBody, redactIssueBody, buildIssueUrl, decideTransport } from "./doctor-report.js";