rackmind-cli 0.3.0 → 0.4.0

package/dist/ai/providers/anthropic-provider.d.ts

@@ -1,5 +1,10 @@
 import type { ServerClient } from '../../server/client.js';
 import type { AIProvider, ChatHistory, MultiTurnCallbacks, ProviderOptions, StreamCallbacks } from './base.js';
+/**
+ * Returns true for browser AbortError and the Anthropic SDK's
+ * APIUserAbortError so callers can treat them uniformly.
+ */
+export declare function isAbortError(err: unknown): boolean;
 export declare class AnthropicProvider implements AIProvider {
     private readonly anthropic;
     private readonly model;
@@ -10,12 +15,14 @@ export declare class AnthropicProvider implements AIProvider {
     getModel(): string;
     /** Clear cached server context so next turn re-fetches from Proxmox API. */
     invalidateContextCache(): void;
-    chat(query: string, serverClient: ServerClient, serverAlias: string, callbacks: StreamCallbacks): Promise<void>;
-    chatMultiTurn(query: string, history: ChatHistory, serverClient: ServerClient, serverAlias: string, callbacks: MultiTurnCallbacks): Promise<ChatHistory>;
+    chat(query: string, serverClient: ServerClient, serverAlias: string, callbacks: StreamCallbacks, signal?: AbortSignal): Promise<void>;
+    chatMultiTurn(query: string, history: ChatHistory, serverClient: ServerClient, serverAlias: string, callbacks: MultiTurnCallbacks, signal?: AbortSignal): Promise<ChatHistory>;
     dispose(): Promise<void>;
     /**
      * Create a message with retry logic for transient errors.
      * Rate limits and overload errors trigger exponential backoff.
+     * The optional AbortSignal is forwarded to the SDK so the in-flight HTTP
+     * request can be cancelled immediately when the user hits Ctrl+C.
      */
     private createWithRetry;
 }

package/dist/ai/providers/anthropic-provider.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"anthropic-provider.d.ts","sourceRoot":"","sources":["../../../src/ai/providers/anthropic-provider.ts"],"names":[],"mappings":"AASA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAC;AAO3D,OAAO,KAAK,EACR,UAAU,EACV,WAAW,EACX,kBAAkB,EAClB,eAAe,EACf,eAAe,EAClB,MAAM,WAAW,CAAC;AAKnB,qBAAa,iBAAkB,YAAW,UAAU;IAChD,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAY;IACtC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAS;IAC/B,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;IACnC,4EAA4E;IAC5E,OAAO,CAAC,aAAa,CAA8B;gBAEvC,OAAO,EAAE,eAAe;IAYpC,QAAQ,IAAI,MAAM;IAIlB,4EAA4E;IAC5E,sBAAsB,IAAI,IAAI;IAKxB,IAAI,CACN,KAAK,EAAE,MAAM,EACb,YAAY,EAAE,YAAY,EAC1B,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,eAAe,GAC3B,OAAO,CAAC,IAAI,CAAC;IA6DV,aAAa,CACf,KAAK,EAAE,MAAM,EACb,OAAO,EAAE,WAAW,EACpB,YAAY,EAAE,YAAY,EAC1B,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,kBAAkB,GAC9B,OAAO,CAAC,WAAW,CAAC;IA4EjB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAI9B;;;OAGG;IACH,OAAO,CAAC,eAAe;CAgC1B"}
+{"version":3,"file":"anthropic-provider.d.ts","sourceRoot":"","sources":["../../../src/ai/providers/anthropic-provider.ts"],"names":[],"mappings":"AASA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAC;AAO3D,OAAO,KAAK,EACR,UAAU,EACV,WAAW,EACX,kBAAkB,EAClB,eAAe,EACf,eAAe,EAClB,MAAM,WAAW,CAAC;AASnB;;;GAGG;AACH,wBAAgB,YAAY,CAAC,GAAG,EAAE,OAAO,GAAG,OAAO,CAElD;AAYD,qBAAa,iBAAkB,YAAW,UAAU;IAChD,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAY;IACtC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAS;IAC/B,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;IACnC,4EAA4E;IAC5E,OAAO,CAAC,aAAa,CAA8B;gBAEvC,OAAO,EAAE,eAAe;IAYpC,QAAQ,IAAI,MAAM;IAIlB,4EAA4E;IAC5E,sBAAsB,IAAI,IAAI;IAKxB,IAAI,CACN,KAAK,EAAE,MAAM,EACb,YAAY,EAAE,YAAY,EAC1B,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,eAAe,EAC1B,MAAM,CAAC,EAAE,WAAW,GACrB,OAAO,CAAC,IAAI,CAAC;IA0EV,aAAa,CACf,KAAK,EAAE,MAAM,EACb,OAAO,EAAE,WAAW,EACpB,YAAY,EAAE,YAAY,EAC1B,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,kBAAkB,EAC7B,MAAM,CAAC,EAAE,WAAW,GACrB,OAAO,CAAC,WAAW,CAAC;IAyFjB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAI9B;;;;;OAKG;IACH,OAAO,CAAC,eAAe;CAoC1B"}

package/dist/ai/providers/anthropic-provider.js

@@ -14,6 +14,25 @@ import { withRetry, isTransientError, isRateLimitError } from '../../utils/retry
 import { DEFAULT_ANTHROPIC_MODEL_ID } from '../models.js';
 /** Max iterations of the tool use loop — hard guard against runaway chains. */
 const MAX_TOOL_ITERATIONS = 20;
+// ---------------------------------------------------------------------------
+// Abort helpers
+// ---------------------------------------------------------------------------
+/**
+ * Returns true for browser AbortError and the Anthropic SDK's
+ * APIUserAbortError so callers can treat them uniformly.
+ */
+export function isAbortError(err) {
+    return err instanceof Error && (err.name === 'AbortError' || err.name === 'APIUserAbortError');
+}
+/**
+ * Throw an AbortError. Centralised so callers in the tool loop all use
+ * the same error shape, matching what the Anthropic SDK itself throws.
+ */
+function throwAbortError() {
+    const err = new Error('The operation was aborted.');
+    err.name = 'AbortError';
+    throw err;
+}
 export class AnthropicProvider {
     anthropic;
     model;
@@ -39,7 +58,7 @@ export class AnthropicProvider {
         this.cachedContext = null;
         logger.info('Server context cache cleared — will re-fetch on next turn');
     }
-    async chat(query, serverClient, serverAlias, callbacks) {
+    async chat(query, serverClient, serverAlias, callbacks, signal) {
         if (!this.cachedContext) {
             this.cachedContext = await fetchServerContext(serverClient);
         }
@@ -48,8 +67,11 @@ export class AnthropicProvider {
         const tools = getToolDefinitions();
         const messages = [{ role: 'user', content: query }];
         for (let iteration = 0; iteration < MAX_TOOL_ITERATIONS; iteration++) {
+            if (signal?.aborted) {
+                throwAbortError();
+            }
             logger.debug('AI request iteration', { iteration, messageCount: messages.length });
-            const response = await this.createWithRetry(systemPrompt, tools, messages, callbacks);
+            const response = await this.createWithRetry(systemPrompt, tools, messages, callbacks, signal);
             const assistantContent = [];
             const toolUseBlocks = [];
             for (const block of response.content) {
@@ -71,9 +93,12 @@ export class AnthropicProvider {
             }
             const toolResults = [];
             for (const toolBlock of toolUseBlocks) {
+                if (signal?.aborted) {
+                    throwAbortError();
+                }
                 const toolInput = toolBlock.input;
                 callbacks.onToolStart(toolBlock.name, toolBlock.name);
-                const result = await executeTool(toolBlock.name, toolInput, serverClient, { confirm: callbacks.confirmDestructive });
+                const result = await executeTool(toolBlock.name, toolInput, serverClient, { confirm: callbacks.confirmDestructive, signal });
                 callbacks.onToolEnd(toolBlock.name, result.label, result.isError);
                 toolResults.push({
                     type: 'tool_result',
@@ -86,7 +111,7 @@ export class AnthropicProvider {
         }
         callbacks.onError('Reached maximum tool iterations. The AI may be stuck in a loop.');
     }
-    async chatMultiTurn(query, history, serverClient, serverAlias, callbacks) {
+    async chatMultiTurn(query, history, serverClient, serverAlias, callbacks, signal) {
         if (!this.cachedContext) {
             this.cachedContext = await fetchServerContext(serverClient);
         }
@@ -98,11 +123,14 @@ export class AnthropicProvider {
             { role: 'user', content: query },
         ];
         for (let iteration = 0; iteration < MAX_TOOL_ITERATIONS; iteration++) {
+            if (signal?.aborted) {
+                throwAbortError();
+            }
             logger.debug('AI multi-turn request iteration', {
                 iteration,
                 messageCount: messages.length,
             });
-            const response = await this.createWithRetry(systemPrompt, tools, messages, callbacks);
+            const response = await this.createWithRetry(systemPrompt, tools, messages, callbacks, signal);
             const assistantContent = [];
             const toolUseBlocks = [];
             for (const block of response.content) {
@@ -124,9 +152,12 @@ export class AnthropicProvider {
             }
             const toolResults = [];
             for (const toolBlock of toolUseBlocks) {
+                if (signal?.aborted) {
+                    throwAbortError();
+                }
                 const toolInput = toolBlock.input;
                 callbacks.onToolStart(toolBlock.name, toolBlock.name);
-                const result = await executeTool(toolBlock.name, toolInput, serverClient, { confirm: callbacks.confirmDestructive });
+                const result = await executeTool(toolBlock.name, toolInput, serverClient, { confirm: callbacks.confirmDestructive, signal });
                 callbacks.onToolEnd(toolBlock.name, result.label, result.isError);
                 if (callbacks.onToolResult) {
                     callbacks.onToolResult({
@@ -154,19 +185,21 @@ export class AnthropicProvider {
     /**
      * Create a message with retry logic for transient errors.
      * Rate limits and overload errors trigger exponential backoff.
+     * The optional AbortSignal is forwarded to the SDK so the in-flight HTTP
+     * request can be cancelled immediately when the user hits Ctrl+C.
      */
-    createWithRetry(system, tools, messages, callbacks) {
+    createWithRetry(system, tools, messages, callbacks, signal) {
         return withRetry(() => this.anthropic.messages.create({
             model: this.model,
             max_tokens: this.maxTokens,
             system,
             tools,
             messages,
-        }), {
+        }, { signal }), {
             maxAttempts: 3,
             initialDelayMs: 2000,
             maxDelayMs: 30_000,
-            isRetryable: isTransientError,
+            isRetryable: (err) => !isAbortError(err) && isTransientError(err),
             onRetry: (attempt, error, delayMs) => {
                 const msg = error instanceof Error ? error.message : String(error);
                 const isRateLimit = isRateLimitError(error);

package/dist/ai/providers/anthropic-provider.js.map

@@ -1 +1 @@
-{"version":3,"file":"anthropic-provider.js","sourceRoot":"","sources":["../../../src/ai/providers/anthropic-provider.ts"],"names":[],"mappings":"AAAA,8EAA8E;AAC9E,sEAAsE;AACtE,8EAA8E;AAC9E,4EAA4E;AAC5E,gEAAgE;AAChE,uCAAuC;AACvC,8EAA8E;AAE9E,OAAO,SAAS,MAAM,mBAAmB,CAAC;AAE1C,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,kBAAkB,EAAE,iBAAiB,EAAsB,MAAM,qBAAqB,CAAC;AAChG,OAAO,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AAClD,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,EAAE,SAAS,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AACrF,OAAO,EAAE,0BAA0B,EAAE,MAAM,cAAc,CAAC;AAS1D,+EAA+E;AAC/E,MAAM,mBAAmB,GAAG,EAAE,CAAC;AAE/B,MAAM,OAAO,iBAAiB;IACT,SAAS,CAAY;IACrB,KAAK,CAAS;IACd,SAAS,CAAS;IACnC,4EAA4E;IACpE,aAAa,GAAyB,IAAI,CAAC;IAEnD,YAAY,OAAwB;QAChC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YAClB,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;QAC/D,CAAC;QACD,IAAI,CAAC,SAAS,GAAG,IAAI,SAAS,CAAC;YAC3B,MAAM,EAAE,OAAO,CAAC,MAAM;YACtB,OAAO,EAAE,OAAO,CAAC,SAAS,IAAI,OAAO;SACxC,CAAC,CAAC;QACH,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,0BAA0B,CAAC;QACzD,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,IAAI,CAAC;IAC/C,CAAC;IAED,QAAQ;QACJ,OAAO,IAAI,CAAC,KAAK,CAAC;IACtB,CAAC;IAED,4EAA4E;IAC5E,sBAAsB;QAClB,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC;QAC1B,MAAM,CAAC,IAAI,CAAC,2DAA2D,CAAC,CAAC;IAC7E,CAAC;IAED,KAAK,CAAC,IAAI,CACN,KAAa,EACb,YAA0B,EAC1B,WAAmB,EACnB,SAA0B;QAE1B,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,CAAC;YACtB,IAAI,CAAC,aAAa,GAAG,MAAM,kBAAkB,CAAC,YAAY,CAAC,CAAC;QAChE,CAAC;QACD,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC;QACnC,MAAM,YAAY,GAAG,iBAAiB,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;QAC7D,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAC;QAEnC,MAAM,QAAQ,GAAsC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC;QAEvF,KAAK,IAAI,SAAS,GAAG,CAAC,EAAE,SAAS,GAAG,mBAAmB,EAAE,SAAS,EAAE,EAAE,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE,EAAE,SAAS,EAAE,YAAY,EAAE,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;YAEnF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,YAAY,EAAE,KAAK,EAAE,QAAQ,EAAE,SAAS,CAAC,CAAC;YAEtF,MAAM,gBAAgB,GAAsC,EAAE,CAAC;YAC/D,MAAM,aAAa,GAAsC,EAAE,CAAC;YAE5D,KAAK,MAAM,KAAK,IAAI,QAAQ,CAAC,OAAO,EAAE,CAAC;gBACnC,gBAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAC7B,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;oBACxB,SAAS,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBACjC,CAAC;qBAAM,IAAI,KAAK,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;oBACnC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAC9B,CAAC;YACL,CAAC;YAED,QAAQ,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAEhE,IAAI,QAAQ,CAAC,WAAW,KAAK,UAAU,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACpE,MAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE;oBACrC,UAAU,EAAE,SAAS,GAAG,CAAC;oBACzB,UAAU,EAAE,QAAQ,CAAC,WAAW;iBACnC,CAAC,CAAC;gBACH,OAAO;YACX,CAAC;YAED,MAAM,WAAW,GAA8C,EAAE,CAAC;YAClE,KAAK,MAAM,SAAS,IAAI,aAAa,EAAE,CAAC;gBACpC,MAAM,SAAS,GAAG,SAAS,CAAC,KAAgC,CAAC;gBAC7D,SAAS,CAAC,WAAW,CAAC,SAAS,CAAC,IAAI,EAAE,SAAS,CAAC,IAAI,CAAC,CAAC;gBACtD,MAAM,MAAM,GAAG,MAAM,WAAW,CAC5B,SAAS,CAAC,IAAI,EACd,SAA8C,EAC9C,YAAY,EACZ,EAAE,OAAO,EAAE,SAAS,CAAC,kBAAkB,EAAE,CAC5C,CAAC;gBACF,SAAS,CAAC,SAAS,CAAC,SAAS,CAAC,IAAI,EAAE,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;gBAClE,WAAW,CAAC,IAAI,CAAC;oBACb,IAAI,EAAE,aAAa;oBACnB,WAAW,EAAE,SAAS,CAAC,EAAE;oBACzB,OAAO,EAAE,MAAM,CAAC,OAAO;oBACvB,QAAQ,EAAE,MAAM,CAAC,OAAO;iBAC3B,CAAC,CAAC;YACP,CAAC;YACD,QAAQ,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC,CAAC;QAC1D,CAAC;QAED,SAAS,CAAC,OAAO,CAAC,iEAAiE,CAAC,CAAC;IACzF,CAAC;IAED,KAAK,CAAC,aAAa,CACf,KAAa,EACb,OAAoB,EACpB,YAA0B,EAC1B,WAAmB,EACnB,SAA6B;QAE7B,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,CAAC;YACtB,IAAI,CAAC,aAAa,GAAG,MAAM,kBAAkB,CAAC,YAAY,CAAC,CAAC;QAChE,CAAC;QACD,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC;QACnC,MAAM,YAAY,GAAG,iBAAiB,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;QAC7D,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAC;QAEnC,MAAM,QAAQ,GAAsC;YAChD,GAAG,OAAO;YACV,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE;SACnC,CAAC;QAEF,KAAK,IAAI,SAAS,GAAG,CAAC,EAAE,SAAS,GAAG,mBAAmB,EAAE,SAAS,EAAE,EAAE,CAAC;YACnE,MAAM,CAAC,KAAK,CAAC,iCAAiC,EAAE;gBAC5C,SAAS;gBACT,YAAY,EAAE,QAAQ,CAAC,MAAM;aAChC,CAAC,CAAC;YAEH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,YAAY,EAAE,KAAK,EAAE,QAAQ,EAAE,SAAS,CAAC,CAAC;YAEtF,MAAM,gBAAgB,GAAsC,EAAE,CAAC;YAC/D,MAAM,aAAa,GAAsC,EAAE,CAAC;YAE5D,KAAK,MAAM,KAAK,IAAI,QAAQ,CAAC,OAAO,EAAE,CAAC;gBACnC,gBAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAC7B,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;oBACxB,SAAS,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBACjC,CAAC;qBAAM,IAAI,KAAK,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;oBACnC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAC9B,CAAC;YACL,CAAC;YAED,QAAQ,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAEhE,IAAI,QAAQ,CAAC,WAAW,KAAK,UAAU,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACpE,MAAM,CAAC,KAAK,CAAC,0CAA0C,EAAE;oBACrD,UAAU,EAAE,SAAS,GAAG,CAAC;oBACzB,UAAU,EAAE,QAAQ,CAAC,WAAW;iBACnC,CAAC,CAAC;gBACH,OAAO,QAAQ,CAAC;YACpB,CAAC;YAED,MAAM,WAAW,GAA8C,EAAE,CAAC;YAClE,KAAK,MAAM,SAAS,IAAI,aAAa,EAAE,CAAC;gBACpC,MAAM,SAAS,GAAG,SAAS,CAAC,KAAgC,CAAC;gBAC7D,SAAS,CAAC,WAAW,CAAC,SAAS,CAAC,IAAI,EAAE,SAAS,CAAC,IAAI,CAAC,CAAC;gBACtD,MAAM,MAAM,GAAG,MAAM,WAAW,CAC5B,SAAS,CAAC,IAAI,EACd,SAA8C,EAC9C,YAAY,EACZ,EAAE,OAAO,EAAE,SAAS,CAAC,kBAAkB,EAAE,CAC5C,CAAC;gBACF,SAAS,CAAC,SAAS,CAAC,SAAS,CAAC,IAAI,EAAE,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;gBAClE,IAAI,SAAS,CAAC,YAAY,EAAE,CAAC;oBACzB,SAAS,CAAC,YAAY,CAAC;wBACnB,QAAQ,EAAE,SAAS,CAAC,IAAI;wBACxB,KAAK,EAAE,MAAM,CAAC,KAAK;wBACnB,OAAO,EAAE,MAAM,CAAC,OAAO;wBACvB,OAAO,EAAE,MAAM,CAAC,OAAO;qBAC1B,CAAC,CAAC;gBACP,CAAC;gBACD,WAAW,CAAC,IAAI,CAAC;oBACb,IAAI,EAAE,aAAa;oBACnB,WAAW,EAAE,SAAS,CAAC,EAAE;oBACzB,OAAO,EAAE,MAAM,CAAC,OAAO;oBACvB,QAAQ,EAAE,MAAM,CAAC,OAAO;iBAC3B,CAAC,CAAC;YACP,CAAC;YACD,QAAQ,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC,CAAC;QAC1D,CAAC;QAED,SAAS,CAAC,OAAO,CAAC,iEAAiE,CAAC,CAAC;QACrF,OAAO,QAAQ,CAAC;IACpB,CAAC;IAED,KAAK,CAAC,OAAO;QACT,wDAAwD;IAC5D,CAAC;IAED;;;OAGG;IACK,eAAe,CACnB,MAAc,EACd,KAAgC,EAChC,QAA2C,EAC3C,SAA0B;QAE1B,OAAO,SAAS,CACZ,GAAG,EAAE,CACD,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC;YAC3B,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,UAAU,EAAE,IAAI,CAAC,SAAS;YAC1B,MAAM;YACN,KAAK;YACL,QAAQ;SACX,CAAC,EACN;YACI,WAAW,EAAE,CAAC;YACd,cAAc,EAAE,IAAI;YACpB,UAAU,EAAE,MAAM;YAClB,WAAW,EAAE,gBAAgB;YAC7B,OAAO,EAAE,CAAC,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;gBACjC,MAAM,GAAG,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;gBACnE,MAAM,WAAW,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAC;gBAC5C,MAAM,KAAK,GAAG,WAAW,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,WAAW,CAAC;gBACzD,SAAS,CAAC,OAAO,CACb,GAAG,KAAK,iBAAiB,IAAI,CAAC,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC,cAAc,OAAO,GAAG,CAAC,QAAQ,CACvF,CAAC;gBACF,MAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACpE,CAAC;SACJ,CACJ,CAAC;IACN,CAAC;CACJ"}
+{"version":3,"file":"anthropic-provider.js","sourceRoot":"","sources":["../../../src/ai/providers/anthropic-provider.ts"],"names":[],"mappings":"AAAA,8EAA8E;AAC9E,sEAAsE;AACtE,8EAA8E;AAC9E,4EAA4E;AAC5E,gEAAgE;AAChE,uCAAuC;AACvC,8EAA8E;AAE9E,OAAO,SAAS,MAAM,mBAAmB,CAAC;AAE1C,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,kBAAkB,EAAE,iBAAiB,EAAsB,MAAM,qBAAqB,CAAC;AAChG,OAAO,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AAClD,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,EAAE,SAAS,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AACrF,OAAO,EAAE,0BAA0B,EAAE,MAAM,cAAc,CAAC;AAS1D,+EAA+E;AAC/E,MAAM,mBAAmB,GAAG,EAAE,CAAC;AAE/B,8EAA8E;AAC9E,gBAAgB;AAChB,8EAA8E;AAE9E;;;GAGG;AACH,MAAM,UAAU,YAAY,CAAC,GAAY;IACrC,OAAO,GAAG,YAAY,KAAK,IAAI,CAAC,GAAG,CAAC,IAAI,KAAK,YAAY,IAAI,GAAG,CAAC,IAAI,KAAK,mBAAmB,CAAC,CAAC;AACnG,CAAC;AAED;;;GAGG;AACH,SAAS,eAAe;IACpB,MAAM,GAAG,GAAG,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;IACpD,GAAG,CAAC,IAAI,GAAG,YAAY,CAAC;IACxB,MAAM,GAAG,CAAC;AACd,CAAC;AAED,MAAM,OAAO,iBAAiB;IACT,SAAS,CAAY;IACrB,KAAK,CAAS;IACd,SAAS,CAAS;IACnC,4EAA4E;IACpE,aAAa,GAAyB,IAAI,CAAC;IAEnD,YAAY,OAAwB;QAChC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YAClB,MAAM,IAAI,KAAK,CAAC,yCAAyC,CAAC,CAAC;QAC/D,CAAC;QACD,IAAI,CAAC,SAAS,GAAG,IAAI,SAAS,CAAC;YAC3B,MAAM,EAAE,OAAO,CAAC,MAAM;YACtB,OAAO,EAAE,OAAO,CAAC,SAAS,IAAI,OAAO;SACxC,CAAC,CAAC;QACH,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,0BAA0B,CAAC;QACzD,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,IAAI,CAAC;IAC/C,CAAC;IAED,QAAQ;QACJ,OAAO,IAAI,CAAC,KAAK,CAAC;IACtB,CAAC;IAED,4EAA4E;IAC5E,sBAAsB;QAClB,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC;QAC1B,MAAM,CAAC,IAAI,CAAC,2DAA2D,CAAC,CAAC;IAC7E,CAAC;IAED,KAAK,CAAC,IAAI,CACN,KAAa,EACb,YAA0B,EAC1B,WAAmB,EACnB,SAA0B,EAC1B,MAAoB;QAEpB,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,CAAC;YACtB,IAAI,CAAC,aAAa,GAAG,MAAM,kBAAkB,CAAC,YAAY,CAAC,CAAC;QAChE,CAAC;QACD,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC;QACnC,MAAM,YAAY,GAAG,iBAAiB,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;QAC7D,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAC;QAEnC,MAAM,QAAQ,GAAsC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC;QAEvF,KAAK,IAAI,SAAS,GAAG,CAAC,EAAE,SAAS,GAAG,mBAAmB,EAAE,SAAS,EAAE,EAAE,CAAC;YACnE,IAAI,MAAM,EAAE,OAAO,EAAE,CAAC;gBAClB,eAAe,EAAE,CAAC;YACtB,CAAC;YAED,MAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE,EAAE,SAAS,EAAE,YAAY,EAAE,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;YAEnF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CACvC,YAAY,EACZ,KAAK,EACL,QAAQ,EACR,SAAS,EACT,MAAM,CACT,CAAC;YAEF,MAAM,gBAAgB,GAAsC,EAAE,CAAC;YAC/D,MAAM,aAAa,GAAsC,EAAE,CAAC;YAE5D,KAAK,MAAM,KAAK,IAAI,QAAQ,CAAC,OAAO,EAAE,CAAC;gBACnC,gBAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAC7B,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;oBACxB,SAAS,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBACjC,CAAC;qBAAM,IAAI,KAAK,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;oBACnC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAC9B,CAAC;YACL,CAAC;YAED,QAAQ,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAEhE,IAAI,QAAQ,CAAC,WAAW,KAAK,UAAU,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACpE,MAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE;oBACrC,UAAU,EAAE,SAAS,GAAG,CAAC;oBACzB,UAAU,EAAE,QAAQ,CAAC,WAAW;iBACnC,CAAC,CAAC;gBACH,OAAO;YACX,CAAC;YAED,MAAM,WAAW,GAA8C,EAAE,CAAC;YAClE,KAAK,MAAM,SAAS,IAAI,aAAa,EAAE,CAAC;gBACpC,IAAI,MAAM,EAAE,OAAO,EAAE,CAAC;oBAClB,eAAe,EAAE,CAAC;gBACtB,CAAC;gBACD,MAAM,SAAS,GAAG,SAAS,CAAC,KAAgC,CAAC;gBAC7D,SAAS,CAAC,WAAW,CAAC,SAAS,CAAC,IAAI,EAAE,SAAS,CAAC,IAAI,CAAC,CAAC;gBACtD,MAAM,MAAM,GAAG,MAAM,WAAW,CAC5B,SAAS,CAAC,IAAI,EACd,SAA8C,EAC9C,YAAY,EACZ,EAAE,OAAO,EAAE,SAAS,CAAC,kBAAkB,EAAE,MAAM,EAAE,CACpD,CAAC;gBACF,SAAS,CAAC,SAAS,CAAC,SAAS,CAAC,IAAI,EAAE,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;gBAClE,WAAW,CAAC,IAAI,CAAC;oBACb,IAAI,EAAE,aAAa;oBACnB,WAAW,EAAE,SAAS,CAAC,EAAE;oBACzB,OAAO,EAAE,MAAM,CAAC,OAAO;oBACvB,QAAQ,EAAE,MAAM,CAAC,OAAO;iBAC3B,CAAC,CAAC;YACP,CAAC;YACD,QAAQ,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC,CAAC;QAC1D,CAAC;QAED,SAAS,CAAC,OAAO,CAAC,iEAAiE,CAAC,CAAC;IACzF,CAAC;IAED,KAAK,CAAC,aAAa,CACf,KAAa,EACb,OAAoB,EACpB,YAA0B,EAC1B,WAAmB,EACnB,SAA6B,EAC7B,MAAoB;QAEpB,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,CAAC;YACtB,IAAI,CAAC,aAAa,GAAG,MAAM,kBAAkB,CAAC,YAAY,CAAC,CAAC;QAChE,CAAC;QACD,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC;QACnC,MAAM,YAAY,GAAG,iBAAiB,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;QAC7D,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAC;QAEnC,MAAM,QAAQ,GAAsC;YAChD,GAAG,OAAO;YACV,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE;SACnC,CAAC;QAEF,KAAK,IAAI,SAAS,GAAG,CAAC,EAAE,SAAS,GAAG,mBAAmB,EAAE,SAAS,EAAE,EAAE,CAAC;YACnE,IAAI,MAAM,EAAE,OAAO,EAAE,CAAC;gBAClB,eAAe,EAAE,CAAC;YACtB,CAAC;YAED,MAAM,CAAC,KAAK,CAAC,iCAAiC,EAAE;gBAC5C,SAAS;gBACT,YAAY,EAAE,QAAQ,CAAC,MAAM;aAChC,CAAC,CAAC;YAEH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CACvC,YAAY,EACZ,KAAK,EACL,QAAQ,EACR,SAAS,EACT,MAAM,CACT,CAAC;YAEF,MAAM,gBAAgB,GAAsC,EAAE,CAAC;YAC/D,MAAM,aAAa,GAAsC,EAAE,CAAC;YAE5D,KAAK,MAAM,KAAK,IAAI,QAAQ,CAAC,OAAO,EAAE,CAAC;gBACnC,gBAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAC7B,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;oBACxB,SAAS,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBACjC,CAAC;qBAAM,IAAI,KAAK,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;oBACnC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAC9B,CAAC;YACL,CAAC;YAED,QAAQ,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAEhE,IAAI,QAAQ,CAAC,WAAW,KAAK,UAAU,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACpE,MAAM,CAAC,KAAK,CAAC,0CAA0C,EAAE;oBACrD,UAAU,EAAE,SAAS,GAAG,CAAC;oBACzB,UAAU,EAAE,QAAQ,CAAC,WAAW;iBACnC,CAAC,CAAC;gBACH,OAAO,QAAQ,CAAC;YACpB,CAAC;YAED,MAAM,WAAW,GAA8C,EAAE,CAAC;YAClE,KAAK,MAAM,SAAS,IAAI,aAAa,EAAE,CAAC;gBACpC,IAAI,MAAM,EAAE,OAAO,EAAE,CAAC;oBAClB,eAAe,EAAE,CAAC;gBACtB,CAAC;gBACD,MAAM,SAAS,GAAG,SAAS,CAAC,KAAgC,CAAC;gBAC7D,SAAS,CAAC,WAAW,CAAC,SAAS,CAAC,IAAI,EAAE,SAAS,CAAC,IAAI,CAAC,CAAC;gBACtD,MAAM,MAAM,GAAG,MAAM,WAAW,CAC5B,SAAS,CAAC,IAAI,EACd,SAA8C,EAC9C,YAAY,EACZ,EAAE,OAAO,EAAE,SAAS,CAAC,kBAAkB,EAAE,MAAM,EAAE,CACpD,CAAC;gBACF,SAAS,CAAC,SAAS,CAAC,SAAS,CAAC,IAAI,EAAE,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;gBAClE,IAAI,SAAS,CAAC,YAAY,EAAE,CAAC;oBACzB,SAAS,CAAC,YAAY,CAAC;wBACnB,QAAQ,EAAE,SAAS,CAAC,IAAI;wBACxB,KAAK,EAAE,MAAM,CAAC,KAAK;wBACnB,OAAO,EAAE,MAAM,CAAC,OAAO;wBACvB,OAAO,EAAE,MAAM,CAAC,OAAO;qBAC1B,CAAC,CAAC;gBACP,CAAC;gBACD,WAAW,CAAC,IAAI,CAAC;oBACb,IAAI,EAAE,aAAa;oBACnB,WAAW,EAAE,SAAS,CAAC,EAAE;oBACzB,OAAO,EAAE,MAAM,CAAC,OAAO;oBACvB,QAAQ,EAAE,MAAM,CAAC,OAAO;iBAC3B,CAAC,CAAC;YACP,CAAC;YACD,QAAQ,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC,CAAC;QAC1D,CAAC;QAED,SAAS,CAAC,OAAO,CAAC,iEAAiE,CAAC,CAAC;QACrF,OAAO,QAAQ,CAAC;IACpB,CAAC;IAED,KAAK,CAAC,OAAO;QACT,wDAAwD;IAC5D,CAAC;IAED;;;;;OAKG;IACK,eAAe,CACnB,MAAc,EACd,KAAgC,EAChC,QAA2C,EAC3C,SAA0B,EAC1B,MAAoB;QAEpB,OAAO,SAAS,CACZ,GAAG,EAAE,CACD,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,MAAM,CAC1B;YACI,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,UAAU,EAAE,IAAI,CAAC,SAAS;YAC1B,MAAM;YACN,KAAK;YACL,QAAQ;SACX,EACD,EAAE,MAAM,EAAE,CACb,EACL;YACI,WAAW,EAAE,CAAC;YACd,cAAc,EAAE,IAAI;YACpB,UAAU,EAAE,MAAM;YAClB,WAAW,EAAE,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,gBAAgB,CAAC,GAAG,CAAC;YACjE,OAAO,EAAE,CAAC,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;gBACjC,MAAM,GAAG,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;gBACnE,MAAM,WAAW,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAC;gBAC5C,MAAM,KAAK,GAAG,WAAW,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,WAAW,CAAC;gBACzD,SAAS,CAAC,OAAO,CACb,GAAG,KAAK,iBAAiB,IAAI,CAAC,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC,cAAc,OAAO,GAAG,CAAC,QAAQ,CACvF,CAAC;gBACF,MAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACpE,CAAC;SACJ,CACJ,CAAC;IACN,CAAC;CACJ"}

package/dist/ai/providers/base.d.ts

@@ -49,13 +49,17 @@ export interface AIProvider {
      * Send a single query with no prior history. Streams results via
      * callbacks. Throws on fatal errors.
      */
-    chat(query: string, serverClient: ServerClient, serverAlias: string, callbacks: StreamCallbacks): Promise<void>;
+    chat(query: string, serverClient: ServerClient, serverAlias: string, callbacks: StreamCallbacks, signal?: AbortSignal): Promise<void>;
     /**
      * Send a new user message given the prior conversation history.
      * Returns the updated history (with the new user turn and the
      * assistant's response appended).
+     *
+     * When `signal` is aborted mid-turn the call rejects with an AbortError
+     * (or the SDK's APIUserAbortError). The caller is responsible for not
+     * persisting any partial history returned before the abort.
      */
-    chatMultiTurn(query: string, history: ChatHistory, serverClient: ServerClient, serverAlias: string, callbacks: MultiTurnCallbacks): Promise<ChatHistory>;
+    chatMultiTurn(query: string, history: ChatHistory, serverClient: ServerClient, serverAlias: string, callbacks: MultiTurnCallbacks, signal?: AbortSignal): Promise<ChatHistory>;
     /**
      * Release any resources this provider holds (HTTP bridge, child
      * processes, etc.). Safe to call multiple times.

package/dist/ai/providers/base.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"base.d.ts","sourceRoot":"","sources":["../../../src/ai/providers/base.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,SAAS,MAAM,mBAAmB,CAAC;AAC/C,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAC;AAC3D,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,qBAAqB,CAAC;AAEhE,YAAY,EAAE,oBAAoB,EAAE,wBAAwB,EAAE,MAAM,qBAAqB,CAAC;AAE1F,qEAAqE;AACrE,MAAM,WAAW,eAAe;IAC5B,+CAA+C;IAC/C,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,IAAI,CAAC;IAC/B,oDAAoD;IACpD,WAAW,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,KAAK,IAAI,CAAC;IACvD,+CAA+C;IAC/C,SAAS,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,KAAK,IAAI,CAAC;IACvE,uEAAuE;IACvE,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,IAAI,CAAC;IACjC;;;;;OAKG;IACH,kBAAkB,CAAC,EAAE,oBAAoB,CAAC;CAC7C;AAED,8EAA8E;AAC9E,MAAM,WAAW,aAAa;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;CACnB;AAED,iFAAiF;AACjF,MAAM,WAAW,kBAAmB,SAAQ,eAAe;IACvD,YAAY,CAAC,EAAE,CAAC,SAAS,EAAE,aAAa,KAAK,IAAI,CAAC;CACrD;AAED;;;;GAIG;AACH,MAAM,MAAM,WAAW,GAAG,SAAS,CAAC,QAAQ,CAAC,YAAY,EAAE,CAAC;AAE5D;;;;GAIG;AACH,MAAM,WAAW,UAAU;IACvB,+DAA+D;IAC/D,QAAQ,IAAI,MAAM,CAAC;IAEnB;;;OAGG;IACH,IAAI,CACA,KAAK,EAAE,MAAM,EACb,YAAY,EAAE,YAAY,EAC1B,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,eAAe,GAC3B,OAAO,CAAC,IAAI,CAAC,CAAC;IAEjB;;;;OAIG;IACH,aAAa,CACT,KAAK,EAAE,MAAM,EACb,OAAO,EAAE,WAAW,EACpB,YAAY,EAAE,YAAY,EAC1B,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,kBAAkB,GAC9B,OAAO,CAAC,WAAW,CAAC,CAAC;IAExB;;;OAGG;IACH,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAEzB;;;;OAIG;IACH,sBAAsB,CAAC,IAAI,IAAI,CAAC;CACnC;AAED,qDAAqD;AACrD,MAAM,WAAW,eAAe;IAC5B,kFAAkF;IAClF,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,8BAA8B;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,gDAAgD;IAChD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,4CAA4C;IAC5C,SAAS,CAAC,EAAE,MAAM,CAAC;CACtB"}
+{"version":3,"file":"base.d.ts","sourceRoot":"","sources":["../../../src/ai/providers/base.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,SAAS,MAAM,mBAAmB,CAAC;AAC/C,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAC;AAC3D,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,qBAAqB,CAAC;AAEhE,YAAY,EAAE,oBAAoB,EAAE,wBAAwB,EAAE,MAAM,qBAAqB,CAAC;AAE1F,qEAAqE;AACrE,MAAM,WAAW,eAAe;IAC5B,+CAA+C;IAC/C,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,IAAI,CAAC;IAC/B,oDAAoD;IACpD,WAAW,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,KAAK,IAAI,CAAC;IACvD,+CAA+C;IAC/C,SAAS,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,KAAK,IAAI,CAAC;IACvE,uEAAuE;IACvE,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,IAAI,CAAC;IACjC;;;;;OAKG;IACH,kBAAkB,CAAC,EAAE,oBAAoB,CAAC;CAC7C;AAED,8EAA8E;AAC9E,MAAM,WAAW,aAAa;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;CACnB;AAED,iFAAiF;AACjF,MAAM,WAAW,kBAAmB,SAAQ,eAAe;IACvD,YAAY,CAAC,EAAE,CAAC,SAAS,EAAE,aAAa,KAAK,IAAI,CAAC;CACrD;AAED;;;;GAIG;AACH,MAAM,MAAM,WAAW,GAAG,SAAS,CAAC,QAAQ,CAAC,YAAY,EAAE,CAAC;AAE5D;;;;GAIG;AACH,MAAM,WAAW,UAAU;IACvB,+DAA+D;IAC/D,QAAQ,IAAI,MAAM,CAAC;IAEnB;;;OAGG;IACH,IAAI,CACA,KAAK,EAAE,MAAM,EACb,YAAY,EAAE,YAAY,EAC1B,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,eAAe,EAC1B,MAAM,CAAC,EAAE,WAAW,GACrB,OAAO,CAAC,IAAI,CAAC,CAAC;IAEjB;;;;;;;;OAQG;IACH,aAAa,CACT,KAAK,EAAE,MAAM,EACb,OAAO,EAAE,WAAW,EACpB,YAAY,EAAE,YAAY,EAC1B,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,kBAAkB,EAC7B,MAAM,CAAC,EAAE,WAAW,GACrB,OAAO,CAAC,WAAW,CAAC,CAAC;IAExB;;;OAGG;IACH,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAEzB;;;;OAIG;IACH,sBAAsB,CAAC,IAAI,IAAI,CAAC;CACnC;AAED,qDAAqD;AACrD,MAAM,WAAW,eAAe;IAC5B,kFAAkF;IAClF,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,8BAA8B;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,gDAAgD;IAChD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,4CAA4C;IAC5C,SAAS,CAAC,EAAE,MAAM,CAAC;CACtB"}

package/dist/ai/tool-executor.d.ts

@@ -1,3 +1,4 @@
+import { z } from 'zod';
 import type { ServerClient } from '../server/client.js';
 /**
  * Deep-clone `input` and redact any value that either lives under a
@@ -9,17 +10,7 @@ import type { ServerClient } from '../server/client.js';
  * the wrapper helpers below.
  */
 export declare function redactSecrets(input: unknown): unknown;
-interface ExecuteCommandInput {
-    command: string;
-}
-interface ExecuteCommandInContainerInput {
-    vmid: number;
-    command: string;
-}
-interface VmidInput {
-    vmid: number;
-}
-type ToolInput = ExecuteCommandInput | ExecuteCommandInContainerInput | VmidInput | Record<string, never>;
+export declare const _toolSchemas: Map<string, z.ZodTypeAny>;
 export interface ToolResult {
     /** The string content to send back to Claude */
     content: string;
@@ -55,11 +46,18 @@ export interface ExecuteToolOptions {
      * should always supply this.
      */
     confirm?: ConfirmDestructiveFn;
+    /**
+     * AbortSignal for the current turn. When already aborted at call time,
+     * the tool short-circuits and returns an aborted result without calling
+     * the underlying handler. Handlers themselves do not receive the signal —
+     * they return quickly enough that mid-execution cancellation is handled at
+     * the loop level in the provider.
+     */
+    signal?: AbortSignal;
 }
 /**
  * Execute a tool call and return the result.
  * Catches all errors and returns them as error results rather than throwing.
  */
-export declare function executeTool(toolName: string, input: ToolInput, client: ServerClient, options?: ExecuteToolOptions): Promise<ToolResult>;
-export {};
+export declare function executeTool(toolName: string, input: Record<string, unknown>, client: ServerClient, options?: ExecuteToolOptions): Promise<ToolResult>;
 //# sourceMappingURL=tool-executor.d.ts.map

package/dist/ai/tool-executor.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"tool-executor.d.ts","sourceRoot":"","sources":["../../src/ai/tool-executor.ts"],"names":[],"mappings":"AAcA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAgCxD;;;;;;;;GAQG;AACH,wBAAgB,aAAa,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO,CAErD;AAiDD,UAAU,mBAAmB;IACzB,OAAO,EAAE,MAAM,CAAC;CACnB;AAED,UAAU,8BAA8B;IACpC,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;CACnB;AAED,UAAU,SAAS;IACf,IAAI,EAAE,MAAM,CAAC;CAChB;AAED,KAAK,SAAS,GACR,mBAAmB,GACnB,8BAA8B,GAC9B,SAAS,GACT,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;AAM5B,MAAM,WAAW,UAAU;IACvB,gDAAgD;IAChD,OAAO,EAAE,MAAM,CAAC;IAChB,iDAAiD;IACjD,OAAO,EAAE,OAAO,CAAC;IACjB,kEAAkE;IAClE,KAAK,EAAE,MAAM,CAAC;CACjB;AAMD;;;;GAIG;AACH,MAAM,WAAW,wBAAwB;IACrC,IAAI,EAAE,MAAM,CAAC;IACb,oEAAoE;IACpE,KAAK,EAAE,MAAM,CAAC;IACd,2CAA2C;IAC3C,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC;AAED;;;;GAIG;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,MAAM,EAAE,wBAAwB,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;AAoB1F,yDAAyD;AACzD,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAE3D;AA2BD,MAAM,WAAW,kBAAkB;IAC/B;;;;OAIG;IACH,OAAO,CAAC,EAAE,oBAAoB,CAAC;CAClC;AAMD;;;GAGG;AACH,wBAAsB,WAAW,CAC7B,QAAQ,EAAE,MAAM,EAChB,KAAK,EAAE,SAAS,EAChB,MAAM,EAAE,YAAY,EACpB,OAAO,GAAE,kBAAuB,GACjC,OAAO,CAAC,UAAU,CAAC,CA4GrB"}
+{"version":3,"file":"tool-executor.d.ts","sourceRoot":"","sources":["../../src/ai/tool-executor.ts"],"names":[],"mappings":"AAcA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAmFxD;;;;;;;;GAQG;AACH,wBAAgB,aAAa,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO,CAErD;AAyFD,eAAO,MAAM,YAAY,2BAcvB,CAAC;AASH,MAAM,WAAW,UAAU;IACvB,gDAAgD;IAChD,OAAO,EAAE,MAAM,CAAC;IAChB,iDAAiD;IACjD,OAAO,EAAE,OAAO,CAAC;IACjB,kEAAkE;IAClE,KAAK,EAAE,MAAM,CAAC;CACjB;AAMD;;;;GAIG;AACH,MAAM,WAAW,wBAAwB;IACrC,IAAI,EAAE,MAAM,CAAC;IACb,oEAAoE;IACpE,KAAK,EAAE,MAAM,CAAC;IACd,2CAA2C;IAC3C,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC;AAED;;;;GAIG;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,MAAM,EAAE,wBAAwB,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;AAwB1F,yDAAyD;AACzD,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAE3D;AAmCD,MAAM,WAAW,kBAAkB;IAC/B;;;;OAIG;IACH,OAAO,CAAC,EAAE,oBAAoB,CAAC;IAC/B;;;;;;OAMG;IACH,MAAM,CAAC,EAAE,WAAW,CAAC;CACxB;AAMD;;;GAGG;AACH,wBAAsB,WAAW,CAC7B,QAAQ,EAAE,MAAM,EAChB,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC9B,MAAM,EAAE,YAAY,EACpB,OAAO,GAAE,kBAAuB,GACjC,OAAO,CAAC,UAAU,CAAC,CA4KrB"}

package/dist/ai/tool-executor.js

@@ -11,6 +11,7 @@
 // (e.g. in tests) destructive tools execute without prompting — callers
 // are responsible for plumbing the gate through.
 // ---------------------------------------------------------------------------
+import { z } from 'zod';
 import { ProxmoxApiError } from '../server/proxmox.js';
 import { logger } from '../utils/logger.js';
 import { matchDangerousPattern } from '../utils/command-safety.js';
@@ -32,12 +33,59 @@ import { matchDangerousPattern } from '../utils/command-safety.js';
 // ---------------------------------------------------------------------------
 const SECRET_KEY_PATTERN = /api[_-]?key|token|password|secret|credential|authorization|bearer/i;
 /**
- * Heuristic: a value "looks like a secret" if it's a long opaque blob of
- * the kinds of characters an API key, JWT, or session token uses.
- * Length > 32 keeps SHA-1 hashes (40 chars) and most tokens in scope, but
- * lets normal sentences (which contain spaces and punctuation) through.
+ * Heuristic: returns true if a standalone string value "looks like a secret"
+ * (API key, JWT, session token, etc.).
+ *
+ * All five conditions must hold:
+ *   1. Length ≥ 33 — keeps SHA-1 (40 chars) and most tokens in scope.
+ *   2. Contains at least one digit.
+ *   3. Contains at least one uppercase letter.
+ *   4. Contains at least one lowercase letter.
+ *   5. Contains NO forward-slash (`/`).
+ *
+ * Real keys satisfy all five: `sk-ant-…`, JWTs (base64url uses `-`/`_`, not
+ * `/`), AWS access keys, GitHub PATs. Absolute paths fail condition 5.
+ *
+ * Trade-off: pure-lowercase tokens (git commit SHAs, some hex digests) are no
+ * longer redacted — they fail condition 3. We prefer high precision (no false
+ * positives on file paths and hashes auditors need to read) over perfect
+ * recall on the rare pure-lowercase token.
+ */
+function looksLikeSecret(value) {
+    return (value.length >= 33 &&
+        /[0-9]/.test(value) &&
+        /[A-Z]/.test(value) &&
+        /[a-z]/.test(value) &&
+        !value.includes('/'));
+}
+/**
+ * Inline-secret patterns — scan an arbitrary string value for credential
+ * fragments embedded in commands or HTTP headers. Applied to EVERY string
+ * value before the whole-string heuristic.
+ *
+ * The simpler `[REDACTED]` (no length) is used here because the surrounding
+ * command/header context already identifies what was redacted.
  */
-const SECRET_VALUE_PATTERN = /^[A-Za-z0-9._\-+/=]{33,}$/;
+const INLINE_SECRET_PATTERNS = [
+    // shell: password <value>
+    [/(?<=\bpassword\s+)\S+/gi, '[REDACTED]'],
+    // shell: --password=<value> or --password <value>
+    [/(?<=--password[=\s]+)\S+/gi, '[REDACTED]'],
+    // HTTP: Bearer <token>
+    [/(?<=\bBearer\s+)\S+/gi, '[REDACTED]'],
+    // HTTP: Authorization: <scheme> <credential>  (full header value)
+    [/(?<=^Authorization:\s+).+/gim, '[REDACTED]'],
+    // CLI flags
+    [/(?<=--token[=\s]+)\S+/gi, '[REDACTED]'],
+    [/(?<=--api-key[=\s]+)\S+/gi, '[REDACTED]'],
+];
+function redactInlineSecrets(value) {
+    let result = value;
+    for (const [pattern, replacement] of INLINE_SECRET_PATTERNS) {
+        result = result.replace(pattern, replacement);
+    }
+    return result;
+}
 /**
  * Deep-clone `input` and redact any value that either lives under a
  * secret-shaped key (api_key, token, password, …) or whose value matches
@@ -63,10 +111,15 @@ function redactInternal(value, parentKeyIsSecret, seen) {
     if (typeof value === 'string') {
         if (parentKeyIsSecret)
             return '[REDACTED]';
-        if (SECRET_VALUE_PATTERN.test(value)) {
+        // Apply inline patterns first — catches credentials embedded in
+        // command strings (e.g. `mysqladmin ... password hunter2`).
+        const afterInline = redactInlineSecrets(value);
+        // Whole-string heuristic backstop — catches opaque tokens not under
+        // a secret-shaped key and not caught by inline patterns.
+        if (looksLikeSecret(afterInline)) {
             return `[REDACTED:length=${value.length}]`;
         }
-        return value;
+        return afterInline;
     }
     if (typeof value === 'number' || typeof value === 'boolean' || typeof value === 'bigint') {
         return value;
@@ -85,14 +138,46 @@ function redactInternal(value, parentKeyIsSecret, seen) {
     // Functions / symbols — never log them at all.
     return '[UNLOGGABLE]';
 }
+// ---------------------------------------------------------------------------
+// Zod schemas — authoritative runtime validation at the tool boundary
+// ---------------------------------------------------------------------------
+// These mirror the JSON Schema input_schema fields in tools.ts. Every tool
+// call is validated here before dispatch. On failure we return a tool-error
+// so the AI can self-correct; we never throw into the AI loop.
+//
+// Exported as _toolSchemas (underscore = test-only) so unit tests can
+// temporarily substitute schemas (e.g. to test .default() propagation).
+// ---------------------------------------------------------------------------
+const _ExecuteCommandSchema = z.object({ command: z.string() });
+const _CommandInContainerSchema = z.object({ vmid: z.number(), command: z.string() });
+const _VmidSchema = z.object({ vmid: z.number() });
+const _EmptySchema = z.object({});
+export const _toolSchemas = new Map([
+    ['execute_command', _ExecuteCommandSchema],
+    ['execute_command_in_container', _CommandInContainerSchema],
+    ['get_container_status', _VmidSchema],
+    ['get_vm_status', _VmidSchema],
+    ['get_node_status', _EmptySchema],
+    ['list_containers', _EmptySchema],
+    ['list_vms', _EmptySchema],
+    ['start_container', _VmidSchema],
+    ['stop_container', _VmidSchema],
+    ['restart_container', _VmidSchema],
+    ['start_vm', _VmidSchema],
+    ['stop_vm', _VmidSchema],
+    ['restart_vm', _VmidSchema],
+]);
+/** Tool names for which we have already emitted the "no schema" warning (once per session). */
+const _noSchemaWarned = new Set();
 /**
- * Tool names that mutate server state. Anything in this set MUST go
- * through the confirmation gate before executing.
+ * Tool names that mutate server state or execute arbitrary shell commands.
+ * Anything in this set MUST go through the confirmation gate before executing.
  *
- * `execute_command*` are not in this set because they have their own,
- * narrower dangerous-pattern check in [matchDangerousPattern] — the
- * model can request `ls /` without prompting, but `rm -rf /` is blocked
- * even before the gate is asked.
+ * Shell-execution tools (`execute_command*`) are gated here AND additionally
+ * pre-screened by [matchDangerousPattern] before the gate is reached — so a
+ * blocklisted command is refused outright without prompting the user to confirm.
+ * This closes the shell-escape bypass class: a user can never be coaxed into
+ * approving a regex-evading variant of a known-dangerous command.
  */
 const DESTRUCTIVE_TOOLS = new Set([
     'start_container',
@@ -101,6 +186,9 @@ const DESTRUCTIVE_TOOLS = new Set([
     'start_vm',
     'stop_vm',
     'restart_vm',
+    // Shell execution: every command requires explicit user confirmation.
+    'execute_command',
+    'execute_command_in_container',
 ]);
 /** Returns true if the tool will mutate server state. */
 export function isDestructiveTool(toolName) {
@@ -122,6 +210,14 @@ function describeDestructiveAction(toolName, input) {
             return `Stop VM ${vmid}`;
         case 'restart_vm':
             return `Restart VM ${vmid}`;
+        case 'execute_command': {
+            const cmd = input.command;
+            return `Execute on host: ${cmd}`;
+        }
+        case 'execute_command_in_container': {
+            const ci = input;
+            return `Execute in container ${ci.vmid}: ${ci.command}`;
+        }
         default:
             return toolName;
     }
@@ -134,14 +230,74 @@ function describeDestructiveAction(toolName, input) {
  * Catches all errors and returns them as error results rather than throwing.
  */
 export async function executeTool(toolName, input, client, options = {}) {
+    // Short-circuit immediately if the caller's turn has already been aborted.
+    if (options.signal?.aborted) {
+        logger.info('Tool short-circuited: signal already aborted', { toolName });
+        return {
+            content: 'Tool execution aborted.',
+            isError: false,
+            label: `${toolName} (aborted)`,
+        };
+    }
     logger.info('Executing tool', { toolName, input: redactSecrets(input) });
-    // Confirmation gate for destructive lifecycle tools.
+    // Validate input against the declared Zod schema before touching any values.
+    // On failure, return a tool-error so the AI can self-correct without crashing
+    // the loop. On success, use result.data (with coercions and defaults applied).
+    const schema = _toolSchemas.get(toolName);
+    let parsedInput;
+    if (schema !== undefined) {
+        const result = schema.safeParse(input);
+        if (!result.success) {
+            const issues = result.error.issues
+                .map((iss) => `${iss.path.length ? iss.path.join('.') : '(root)'}: ${iss.message}`)
+                .join('; ');
+            logger.warn('Tool input validation failed', { toolName, issues });
+            return {
+                content: `Invalid input for tool "${toolName}": ${issues}. ` +
+                    'Please retry with corrected input.',
+                isError: true,
+                label: `${toolName} (invalid input)`,
+            };
+        }
+        parsedInput = result.data;
+    }
+    else {
+        if (!_noSchemaWarned.has(toolName)) {
+            logger.warn(`[warn] No schema declared for tool "${toolName}" — skipping validation`);
+            _noSchemaWarned.add(toolName);
+        }
+        parsedInput = input;
+    }
+    // For shell-execution tools: run the blocklist BEFORE the confirmation
+    // gate. A blocklisted command is refused outright — the AI must not be
+    // able to coax the user into confirming a regex-evading dangerous variant
+    // (IFS substitution, $(), base64, backslash-quoting, etc. are all
+    // confirmed-command bypass classes that this structural check closes).
+    if (toolName === 'execute_command' || toolName === 'execute_command_in_container') {
+        const cmd = 'command' in parsedInput ? parsedInput.command : '';
+        const dangerMatch = matchDangerousPattern(cmd);
+        if (dangerMatch) {
+            logger.warn('AI attempted blocklisted command (refused before confirmation gate)', {
+                toolName,
+                command: cmd,
+                pattern: dangerMatch,
+            });
+            return {
+                content: `Command blocked for safety: ${dangerMatch}. This command is not permitted. ` +
+                    'Please inform the user about the command you want to run and ask them ' +
+                    'to execute it manually if truly needed.',
+                isError: true,
+                label: `${toolName}: ${cmd} (blocked)`,
+            };
+        }
+    }
+    // Confirmation gate for destructive tools (lifecycle + shell execution).
     if (isDestructiveTool(toolName)) {
-        const label = describeDestructiveAction(toolName, input);
+        const label = describeDestructiveAction(toolName, parsedInput);
         logger.warn('Destructive tool requested', {
             toolName,
             label,
-            input: redactSecrets(input),
+            input: redactSecrets(parsedInput),
             hasConfirm: Boolean(options.confirm),
         });
         if (options.confirm) {
@@ -150,7 +306,7 @@ export async function executeTool(toolName, input, client, options = {}) {
                 confirmed = await options.confirm({
                     tool: toolName,
                     label,
-                    details: input,
+                    details: parsedInput,
                 });
             }
             catch (err) {
@@ -175,13 +331,13 @@ export async function executeTool(toolName, input, client, options = {}) {
     try {
         switch (toolName) {
             case 'execute_command':
-                return await executeCommand(input, client);
+                return await executeCommand(parsedInput, client);
             case 'execute_command_in_container':
-                return await executeCommandInContainer(input, client);
+                return await executeCommandInContainer(parsedInput, client);
             case 'get_container_status':
-                return await getContainerStatus(input, client);
+                return await getContainerStatus(parsedInput, client);
             case 'get_vm_status':
-                return await getVmStatus(input, client);
+                return await getVmStatus(parsedInput, client);
             case 'get_node_status':
                 return await getNodeStatus(client);
             case 'list_containers':
@@ -189,17 +345,17 @@ export async function executeTool(toolName, input, client, options = {}) {
             case 'list_vms':
                 return await listVms(client);
             case 'start_container':
-                return await startContainer(input, client);
+                return await startContainer(parsedInput, client);
             case 'stop_container':
-                return await stopContainer(input, client);
+                return await stopContainer(parsedInput, client);
             case 'restart_container':
-                return await restartContainer(input, client);
+                return await restartContainer(parsedInput, client);
             case 'start_vm':
-                return await startVm(input, client);
+                return await startVm(parsedInput, client);
             case 'stop_vm':
-                return await stopVm(input, client);
+                return await stopVm(parsedInput, client);
             case 'restart_vm':
-                return await restartVm(input, client);
+                return await restartVm(parsedInput, client);
             default:
                 return {
                     content: `Unknown tool: ${toolName}`,