npm - siclaw - Versions diffs - 0.1.0 - Mend

siclaw 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (460) hide show

package/LICENSE +190 -0
package/README.md +268 -0
package/dist/agentbox/gateway-client.d.ts +41 -0
package/dist/agentbox/gateway-client.js +108 -0
package/dist/agentbox/gateway-client.js.map +1 -0
package/dist/agentbox/http-server.d.ts +12 -0
package/dist/agentbox/http-server.js +700 -0
package/dist/agentbox/http-server.js.map +1 -0
package/dist/agentbox/mcp-sync.d.ts +6 -0
package/dist/agentbox/mcp-sync.js +26 -0
package/dist/agentbox/mcp-sync.js.map +1 -0
package/dist/agentbox/resource-handlers.d.ts +40 -0
package/dist/agentbox/resource-handlers.js +116 -0
package/dist/agentbox/resource-handlers.js.map +1 -0
package/dist/agentbox/resource-sync.d.ts +28 -0
package/dist/agentbox/resource-sync.js +74 -0
package/dist/agentbox/resource-sync.js.map +1 -0
package/dist/agentbox/session.d.ts +145 -0
package/dist/agentbox/session.js +444 -0
package/dist/agentbox/session.js.map +1 -0
package/dist/agentbox-main.d.ts +7 -0
package/dist/agentbox-main.js +90 -0
package/dist/agentbox-main.js.map +1 -0
package/dist/cli-main.d.ts +1 -0
package/dist/cli-main.js +187 -0
package/dist/cli-main.js.map +1 -0
package/dist/cli-setup.d.ts +17 -0
package/dist/cli-setup.js +247 -0
package/dist/cli-setup.js.map +1 -0
package/dist/core/agent-factory.d.ts +52 -0
package/dist/core/agent-factory.js +547 -0
package/dist/core/agent-factory.js.map +1 -0
package/dist/core/brain-session.d.ts +67 -0
package/dist/core/brain-session.js +15 -0
package/dist/core/brain-session.js.map +1 -0
package/dist/core/brains/claude-sdk-brain.d.ts +76 -0
package/dist/core/brains/claude-sdk-brain.js +403 -0
package/dist/core/brains/claude-sdk-brain.js.map +1 -0
package/dist/core/brains/pi-agent-brain.d.ts +28 -0
package/dist/core/brains/pi-agent-brain.js +84 -0
package/dist/core/brains/pi-agent-brain.js.map +1 -0
package/dist/core/config.d.ts +109 -0
package/dist/core/config.js +294 -0
package/dist/core/config.js.map +1 -0
package/dist/core/extensions/context-pruning.d.ts +38 -0
package/dist/core/extensions/context-pruning.js +162 -0
package/dist/core/extensions/context-pruning.js.map +1 -0
package/dist/core/extensions/deep-investigation.d.ts +2 -0
package/dist/core/extensions/deep-investigation.js +541 -0
package/dist/core/extensions/deep-investigation.js.map +1 -0
package/dist/core/extensions/memory-flush.d.ts +20 -0
package/dist/core/extensions/memory-flush.js +120 -0
package/dist/core/extensions/memory-flush.js.map +1 -0
package/dist/core/llm-proxy.d.ts +37 -0
package/dist/core/llm-proxy.js +578 -0
package/dist/core/llm-proxy.js.map +1 -0
package/dist/core/mcp-client.d.ts +80 -0
package/dist/core/mcp-client.js +285 -0
package/dist/core/mcp-client.js.map +1 -0
package/dist/core/prompt.d.ts +1 -0
package/dist/core/prompt.js +64 -0
package/dist/core/prompt.js.map +1 -0
package/dist/core/tool-adapter.d.ts +45 -0
package/dist/core/tool-adapter.js +154 -0
package/dist/core/tool-adapter.js.map +1 -0
package/dist/cron/cron-api.d.ts +9 -0
package/dist/cron/cron-api.js +94 -0
package/dist/cron/cron-api.js.map +1 -0
package/dist/cron/cron-coordinator.d.ts +29 -0
package/dist/cron/cron-coordinator.js +150 -0
package/dist/cron/cron-coordinator.js.map +1 -0
package/dist/cron/cron-executor.d.ts +15 -0
package/dist/cron/cron-executor.js +90 -0
package/dist/cron/cron-executor.js.map +1 -0
package/dist/cron/cron-matcher.d.ts +19 -0
package/dist/cron/cron-matcher.js +114 -0
package/dist/cron/cron-matcher.js.map +1 -0
package/dist/cron/cron-scheduler.d.ts +42 -0
package/dist/cron/cron-scheduler.js +91 -0
package/dist/cron/cron-scheduler.js.map +1 -0
package/dist/cron/gateway-client.d.ts +32 -0
package/dist/cron/gateway-client.js +91 -0
package/dist/cron/gateway-client.js.map +1 -0
package/dist/cron-main.d.ts +10 -0
package/dist/cron-main.js +75 -0
package/dist/cron-main.js.map +1 -0
package/dist/gateway/agentbox/client.d.ts +187 -0
package/dist/gateway/agentbox/client.js +314 -0
package/dist/gateway/agentbox/client.js.map +1 -0
package/dist/gateway/agentbox/index.d.ts +10 -0
package/dist/gateway/agentbox/index.js +11 -0
package/dist/gateway/agentbox/index.js.map +1 -0
package/dist/gateway/agentbox/k8s-spawner.d.ts +70 -0
package/dist/gateway/agentbox/k8s-spawner.js +466 -0
package/dist/gateway/agentbox/k8s-spawner.js.map +1 -0
package/dist/gateway/agentbox/local-spawner.d.ts +63 -0
package/dist/gateway/agentbox/local-spawner.js +234 -0
package/dist/gateway/agentbox/local-spawner.js.map +1 -0
package/dist/gateway/agentbox/manager.d.ts +121 -0
package/dist/gateway/agentbox/manager.js +325 -0
package/dist/gateway/agentbox/manager.js.map +1 -0
package/dist/gateway/agentbox/process-spawner.d.ts +21 -0
package/dist/gateway/agentbox/process-spawner.js +168 -0
package/dist/gateway/agentbox/process-spawner.js.map +1 -0
package/dist/gateway/agentbox/spawner.d.ts +33 -0
package/dist/gateway/agentbox/spawner.js +10 -0
package/dist/gateway/agentbox/spawner.js.map +1 -0
package/dist/gateway/agentbox/types.d.ts +39 -0
package/dist/gateway/agentbox/types.js +5 -0
package/dist/gateway/agentbox/types.js.map +1 -0
package/dist/gateway/auth/bind-code-store.d.ts +31 -0
package/dist/gateway/auth/bind-code-store.js +73 -0
package/dist/gateway/auth/bind-code-store.js.map +1 -0
package/dist/gateway/auth/index.d.ts +9 -0
package/dist/gateway/auth/index.js +10 -0
package/dist/gateway/auth/index.js.map +1 -0
package/dist/gateway/auth/jwt.d.ts +23 -0
package/dist/gateway/auth/jwt.js +82 -0
package/dist/gateway/auth/jwt.js.map +1 -0
package/dist/gateway/auth/login.d.ts +26 -0
package/dist/gateway/auth/login.js +74 -0
package/dist/gateway/auth/login.js.map +1 -0
package/dist/gateway/auth/middleware.d.ts +23 -0
package/dist/gateway/auth/middleware.js +67 -0
package/dist/gateway/auth/middleware.js.map +1 -0
package/dist/gateway/auth/oauth2.d.ts +57 -0
package/dist/gateway/auth/oauth2.js +113 -0
package/dist/gateway/auth/oauth2.js.map +1 -0
package/dist/gateway/auth/user-store.d.ts +95 -0
package/dist/gateway/auth/user-store.js +291 -0
package/dist/gateway/auth/user-store.js.map +1 -0
package/dist/gateway/channels/channel-manager.d.ts +42 -0
package/dist/gateway/channels/channel-manager.js +156 -0
package/dist/gateway/channels/channel-manager.js.map +1 -0
package/dist/gateway/channels/channel-rpc.d.ts +9 -0
package/dist/gateway/channels/channel-rpc.js +104 -0
package/dist/gateway/channels/channel-rpc.js.map +1 -0
package/dist/gateway/channels/channel-store.d.ts +32 -0
package/dist/gateway/channels/channel-store.js +114 -0
package/dist/gateway/channels/channel-store.js.map +1 -0
package/dist/gateway/channels/discord.d.ts +5 -0
package/dist/gateway/channels/discord.js +177 -0
package/dist/gateway/channels/discord.js.map +1 -0
package/dist/gateway/channels/lark-format.d.ts +41 -0
package/dist/gateway/channels/lark-format.js +620 -0
package/dist/gateway/channels/lark-format.js.map +1 -0
package/dist/gateway/channels/lark.d.ts +5 -0
package/dist/gateway/channels/lark.js +1000 -0
package/dist/gateway/channels/lark.js.map +1 -0
package/dist/gateway/channels/slack.d.ts +5 -0
package/dist/gateway/channels/slack.js +170 -0
package/dist/gateway/channels/slack.js.map +1 -0
package/dist/gateway/channels/telegram.d.ts +5 -0
package/dist/gateway/channels/telegram.js +173 -0
package/dist/gateway/channels/telegram.js.map +1 -0
package/dist/gateway/channels/utils.d.ts +34 -0
package/dist/gateway/channels/utils.js +115 -0
package/dist/gateway/channels/utils.js.map +1 -0
package/dist/gateway/config.d.ts +14 -0
package/dist/gateway/config.js +12 -0
package/dist/gateway/config.js.map +1 -0
package/dist/gateway/cron/notify.d.ts +14 -0
package/dist/gateway/cron/notify.js +40 -0
package/dist/gateway/cron/notify.js.map +1 -0
package/dist/gateway/db/dialect-helpers.d.ts +8 -0
package/dist/gateway/db/dialect-helpers.js +26 -0
package/dist/gateway/db/dialect-helpers.js.map +1 -0
package/dist/gateway/db/index.d.ts +20 -0
package/dist/gateway/db/index.js +140 -0
package/dist/gateway/db/index.js.map +1 -0
package/dist/gateway/db/init-schema.d.ts +8 -0
package/dist/gateway/db/init-schema.js +385 -0
package/dist/gateway/db/init-schema.js.map +1 -0
package/dist/gateway/db/migrate-sqlite.d.ts +8 -0
package/dist/gateway/db/migrate-sqlite.js +335 -0
package/dist/gateway/db/migrate-sqlite.js.map +1 -0
package/dist/gateway/db/repositories/chat-repo.d.ts +64 -0
package/dist/gateway/db/repositories/chat-repo.js +115 -0
package/dist/gateway/db/repositories/chat-repo.js.map +1 -0
package/dist/gateway/db/repositories/config-repo.d.ts +164 -0
package/dist/gateway/db/repositories/config-repo.js +267 -0
package/dist/gateway/db/repositories/config-repo.js.map +1 -0
package/dist/gateway/db/repositories/credential-repo.d.ts +51 -0
package/dist/gateway/db/repositories/credential-repo.js +70 -0
package/dist/gateway/db/repositories/credential-repo.js.map +1 -0
package/dist/gateway/db/repositories/env-repo.d.ts +37 -0
package/dist/gateway/db/repositories/env-repo.js +74 -0
package/dist/gateway/db/repositories/env-repo.js.map +1 -0
package/dist/gateway/db/repositories/mcp-server-repo.d.ts +97 -0
package/dist/gateway/db/repositories/mcp-server-repo.js +83 -0
package/dist/gateway/db/repositories/mcp-server-repo.js.map +1 -0
package/dist/gateway/db/repositories/model-config-repo.d.ts +141 -0
package/dist/gateway/db/repositories/model-config-repo.js +439 -0
package/dist/gateway/db/repositories/model-config-repo.js.map +1 -0
package/dist/gateway/db/repositories/notification-repo.d.ts +50 -0
package/dist/gateway/db/repositories/notification-repo.js +105 -0
package/dist/gateway/db/repositories/notification-repo.js.map +1 -0
package/dist/gateway/db/repositories/permission-repo.d.ts +28 -0
package/dist/gateway/db/repositories/permission-repo.js +74 -0
package/dist/gateway/db/repositories/permission-repo.js.map +1 -0
package/dist/gateway/db/repositories/skill-content-repo.d.ts +29 -0
package/dist/gateway/db/repositories/skill-content-repo.js +90 -0
package/dist/gateway/db/repositories/skill-content-repo.js.map +1 -0
package/dist/gateway/db/repositories/skill-repo.d.ts +170 -0
package/dist/gateway/db/repositories/skill-repo.js +185 -0
package/dist/gateway/db/repositories/skill-repo.js.map +1 -0
package/dist/gateway/db/repositories/skill-review-repo.d.ts +44 -0
package/dist/gateway/db/repositories/skill-review-repo.js +44 -0
package/dist/gateway/db/repositories/skill-review-repo.js.map +1 -0
package/dist/gateway/db/repositories/skill-version-repo.d.ts +30 -0
package/dist/gateway/db/repositories/skill-version-repo.js +56 -0
package/dist/gateway/db/repositories/skill-version-repo.js.map +1 -0
package/dist/gateway/db/repositories/system-config-repo.d.ts +21 -0
package/dist/gateway/db/repositories/system-config-repo.js +86 -0
package/dist/gateway/db/repositories/system-config-repo.js.map +1 -0
package/dist/gateway/db/repositories/user-env-config-repo.d.ts +32 -0
package/dist/gateway/db/repositories/user-env-config-repo.js +79 -0
package/dist/gateway/db/repositories/user-env-config-repo.js.map +1 -0
package/dist/gateway/db/repositories/user-repo.d.ts +59 -0
package/dist/gateway/db/repositories/user-repo.js +83 -0
package/dist/gateway/db/repositories/user-repo.js.map +1 -0
package/dist/gateway/db/repositories/vote-repo.d.ts +26 -0
package/dist/gateway/db/repositories/vote-repo.js +97 -0
package/dist/gateway/db/repositories/vote-repo.js.map +1 -0
package/dist/gateway/db/repositories/workspace-repo.d.ts +27 -0
package/dist/gateway/db/repositories/workspace-repo.js +145 -0
package/dist/gateway/db/repositories/workspace-repo.js.map +1 -0
package/dist/gateway/db/schema-mysql.d.ts +3897 -0
package/dist/gateway/db/schema-mysql.js +354 -0
package/dist/gateway/db/schema-mysql.js.map +1 -0
package/dist/gateway/db/schema-sqlite.d.ts +4147 -0
package/dist/gateway/db/schema-sqlite.js +345 -0
package/dist/gateway/db/schema-sqlite.js.map +1 -0
package/dist/gateway/db/schema.d.ts +3869 -0
package/dist/gateway/db/schema.js +16 -0
package/dist/gateway/db/schema.js.map +1 -0
package/dist/gateway/mcp-config-builder.d.ts +8 -0
package/dist/gateway/mcp-config-builder.js +39 -0
package/dist/gateway/mcp-config-builder.js.map +1 -0
package/dist/gateway/output-redactor.d.ts +27 -0
package/dist/gateway/output-redactor.js +101 -0
package/dist/gateway/output-redactor.js.map +1 -0
package/dist/gateway/plugins/api.d.ts +181 -0
package/dist/gateway/plugins/api.js +28 -0
package/dist/gateway/plugins/api.js.map +1 -0
package/dist/gateway/plugins/channel-bridge.d.ts +72 -0
package/dist/gateway/plugins/channel-bridge.js +586 -0
package/dist/gateway/plugins/channel-bridge.js.map +1 -0
package/dist/gateway/plugins/loader.d.ts +2 -0
package/dist/gateway/plugins/loader.js +83 -0
package/dist/gateway/plugins/loader.js.map +1 -0
package/dist/gateway/plugins/runtime.d.ts +25 -0
package/dist/gateway/plugins/runtime.js +64 -0
package/dist/gateway/plugins/runtime.js.map +1 -0
package/dist/gateway/resource-notifier.d.ts +36 -0
package/dist/gateway/resource-notifier.js +123 -0
package/dist/gateway/resource-notifier.js.map +1 -0
package/dist/gateway/rpc-methods.d.ts +34 -0
package/dist/gateway/rpc-methods.js +3198 -0
package/dist/gateway/rpc-methods.js.map +1 -0
package/dist/gateway/security/cert-manager.d.ts +77 -0
package/dist/gateway/security/cert-manager.js +280 -0
package/dist/gateway/security/cert-manager.js.map +1 -0
package/dist/gateway/security/mtls-middleware.d.ts +33 -0
package/dist/gateway/security/mtls-middleware.js +89 -0
package/dist/gateway/security/mtls-middleware.js.map +1 -0
package/dist/gateway/server.d.ts +54 -0
package/dist/gateway/server.js +1146 -0
package/dist/gateway/server.js.map +1 -0
package/dist/gateway/skill-labels.d.ts +16 -0
package/dist/gateway/skill-labels.js +79 -0
package/dist/gateway/skill-labels.js.map +1 -0
package/dist/gateway/skills/file-writer.d.ts +75 -0
package/dist/gateway/skills/file-writer.js +320 -0
package/dist/gateway/skills/file-writer.js.map +1 -0
package/dist/gateway/skills/script-evaluator.d.ts +42 -0
package/dist/gateway/skills/script-evaluator.js +204 -0
package/dist/gateway/skills/script-evaluator.js.map +1 -0
package/dist/gateway/skills/skill-bundle.d.ts +34 -0
package/dist/gateway/skills/skill-bundle.js +83 -0
package/dist/gateway/skills/skill-bundle.js.map +1 -0
package/dist/gateway/web/dist/assets/index-BF6CtvnV.css +1 -0
package/dist/gateway/web/dist/assets/index-Dumzqsr-.js +680 -0
package/dist/gateway/web/dist/assets/index-n4IMHP1Q.js +675 -0
package/dist/gateway/web/dist/index.html +14 -0
package/dist/gateway/web/dist/noise.png +1 -0
package/dist/gateway/web/dist/robots.txt +2 -0
package/dist/gateway/web/dist/vite.svg +1 -0
package/dist/gateway/ws-protocol.d.ts +68 -0
package/dist/gateway/ws-protocol.js +106 -0
package/dist/gateway/ws-protocol.js.map +1 -0
package/dist/gateway-main.d.ts +1 -0
package/dist/gateway-main.js +129 -0
package/dist/gateway-main.js.map +1 -0
package/dist/lib/s3-backup.d.ts +28 -0
package/dist/lib/s3-backup.js +85 -0
package/dist/lib/s3-backup.js.map +1 -0
package/dist/lib/s3-storage.d.ts +45 -0
package/dist/lib/s3-storage.js +210 -0
package/dist/lib/s3-storage.js.map +1 -0
package/dist/memory/chunker.d.ts +15 -0
package/dist/memory/chunker.js +94 -0
package/dist/memory/chunker.js.map +1 -0
package/dist/memory/embeddings.d.ts +14 -0
package/dist/memory/embeddings.js +143 -0
package/dist/memory/embeddings.js.map +1 -0
package/dist/memory/index.d.ts +18 -0
package/dist/memory/index.js +15 -0
package/dist/memory/index.js.map +1 -0
package/dist/memory/indexer.d.ts +70 -0
package/dist/memory/indexer.js +567 -0
package/dist/memory/indexer.js.map +1 -0
package/dist/memory/mmr.d.ts +22 -0
package/dist/memory/mmr.js +82 -0
package/dist/memory/mmr.js.map +1 -0
package/dist/memory/schema.d.ts +2 -0
package/dist/memory/schema.js +85 -0
package/dist/memory/schema.js.map +1 -0
package/dist/memory/session-summarizer.d.ts +19 -0
package/dist/memory/session-summarizer.js +139 -0
package/dist/memory/session-summarizer.js.map +1 -0
package/dist/memory/stop-words.d.ts +13 -0
package/dist/memory/stop-words.js +132 -0
package/dist/memory/stop-words.js.map +1 -0
package/dist/memory/temporal-decay.d.ts +20 -0
package/dist/memory/temporal-decay.js +63 -0
package/dist/memory/temporal-decay.js.map +1 -0
package/dist/memory/types.d.ts +40 -0
package/dist/memory/types.js +2 -0
package/dist/memory/types.js.map +1 -0
package/dist/shared/resource-sync.d.ts +80 -0
package/dist/shared/resource-sync.js +24 -0
package/dist/shared/resource-sync.js.map +1 -0
package/dist/tools/command-sets.d.ts +61 -0
package/dist/tools/command-sets.js +845 -0
package/dist/tools/command-sets.js.map +1 -0
package/dist/tools/create-skill.d.ts +2 -0
package/dist/tools/create-skill.js +169 -0
package/dist/tools/create-skill.js.map +1 -0
package/dist/tools/credential-list.d.ts +8 -0
package/dist/tools/credential-list.js +139 -0
package/dist/tools/credential-list.js.map +1 -0
package/dist/tools/deep-search/engine.d.ts +40 -0
package/dist/tools/deep-search/engine.js +594 -0
package/dist/tools/deep-search/engine.js.map +1 -0
package/dist/tools/deep-search/events.d.ts +11 -0
package/dist/tools/deep-search/events.js +10 -0
package/dist/tools/deep-search/events.js.map +1 -0
package/dist/tools/deep-search/format.d.ts +11 -0
package/dist/tools/deep-search/format.js +143 -0
package/dist/tools/deep-search/format.js.map +1 -0
package/dist/tools/deep-search/prompts.d.ts +30 -0
package/dist/tools/deep-search/prompts.js +237 -0
package/dist/tools/deep-search/prompts.js.map +1 -0
package/dist/tools/deep-search/sre-knowledge.d.ts +21 -0
package/dist/tools/deep-search/sre-knowledge.js +112 -0
package/dist/tools/deep-search/sre-knowledge.js.map +1 -0
package/dist/tools/deep-search/sub-agent.d.ts +71 -0
package/dist/tools/deep-search/sub-agent.js +401 -0
package/dist/tools/deep-search/sub-agent.js.map +1 -0
package/dist/tools/deep-search/tool.d.ts +9 -0
package/dist/tools/deep-search/tool.js +201 -0
package/dist/tools/deep-search/tool.js.map +1 -0
package/dist/tools/deep-search/types.d.ts +67 -0
package/dist/tools/deep-search/types.js +41 -0
package/dist/tools/deep-search/types.js.map +1 -0
package/dist/tools/dp-tools.d.ts +47 -0
package/dist/tools/dp-tools.js +170 -0
package/dist/tools/dp-tools.js.map +1 -0
package/dist/tools/fork-skill.d.ts +2 -0
package/dist/tools/fork-skill.js +93 -0
package/dist/tools/fork-skill.js.map +1 -0
package/dist/tools/k8s-checks.d.ts +18 -0
package/dist/tools/k8s-checks.js +105 -0
package/dist/tools/k8s-checks.js.map +1 -0
package/dist/tools/kubeconfig-resolver.d.ts +11 -0
package/dist/tools/kubeconfig-resolver.js +53 -0
package/dist/tools/kubeconfig-resolver.js.map +1 -0
package/dist/tools/kubectl.d.ts +12 -0
package/dist/tools/kubectl.js +169 -0
package/dist/tools/kubectl.js.map +1 -0
package/dist/tools/manage-schedule.d.ts +3 -0
package/dist/tools/manage-schedule.js +189 -0
package/dist/tools/manage-schedule.js.map +1 -0
package/dist/tools/memory-get.d.ts +2 -0
package/dist/tools/memory-get.js +99 -0
package/dist/tools/memory-get.js.map +1 -0
package/dist/tools/memory-search.d.ts +3 -0
package/dist/tools/memory-search.js +93 -0
package/dist/tools/memory-search.js.map +1 -0
package/dist/tools/netns-script.d.ts +3 -0
package/dist/tools/netns-script.js +394 -0
package/dist/tools/netns-script.js.map +1 -0
package/dist/tools/node-exec.d.ts +18 -0
package/dist/tools/node-exec.js +342 -0
package/dist/tools/node-exec.js.map +1 -0
package/dist/tools/node-script.d.ts +3 -0
package/dist/tools/node-script.js +266 -0
package/dist/tools/node-script.js.map +1 -0
package/dist/tools/pod-exec.d.ts +4 -0
package/dist/tools/pod-exec.js +146 -0
package/dist/tools/pod-exec.js.map +1 -0
package/dist/tools/pod-nsenter-exec.d.ts +3 -0
package/dist/tools/pod-nsenter-exec.js +333 -0
package/dist/tools/pod-nsenter-exec.js.map +1 -0
package/dist/tools/pod-script.d.ts +3 -0
package/dist/tools/pod-script.js +176 -0
package/dist/tools/pod-script.js.map +1 -0
package/dist/tools/restricted-bash.d.ts +41 -0
package/dist/tools/restricted-bash.js +503 -0
package/dist/tools/restricted-bash.js.map +1 -0
package/dist/tools/run-skill.d.ts +3 -0
package/dist/tools/run-skill.js +169 -0
package/dist/tools/run-skill.js.map +1 -0
package/dist/tools/sanitize-env.d.ts +14 -0
package/dist/tools/sanitize-env.js +95 -0
package/dist/tools/sanitize-env.js.map +1 -0
package/dist/tools/script-resolver.d.ts +35 -0
package/dist/tools/script-resolver.js +213 -0
package/dist/tools/script-resolver.js.map +1 -0
package/dist/tools/tool-render.d.ts +20 -0
package/dist/tools/tool-render.js +77 -0
package/dist/tools/tool-render.js.map +1 -0
package/dist/tools/update-skill.d.ts +2 -0
package/dist/tools/update-skill.js +169 -0
package/dist/tools/update-skill.js.map +1 -0
package/package.json +106 -0
package/settings.example.json +74 -0
package/siclaw.mjs +48 -0
package/skills/core/cluster-events/SKILL.md +150 -0
package/skills/core/deep-investigation/SKILL.md +87 -0
package/skills/core/deep-investigation/default-memory.md +8 -0
package/skills/core/deployment-rollout-debug/SKILL.md +144 -0
package/skills/core/dns-debug/SKILL.md +144 -0
package/skills/core/find-node/SKILL.md +23 -0
package/skills/core/find-node/scripts/find-node.sh +9 -0
package/skills/core/hpa-debug/SKILL.md +159 -0
package/skills/core/image-pull-debug/SKILL.md +151 -0
package/skills/core/ingress-debug/SKILL.md +189 -0
package/skills/core/job-debug/SKILL.md +180 -0
package/skills/core/meta.json +23 -0
package/skills/core/node-health-check/SKILL.md +150 -0
package/skills/core/node-logs/SKILL.md +68 -0
package/skills/core/node-logs/scripts/get-node-logs.sh +78 -0
package/skills/core/node-ping-gateway/SKILL.md +54 -0
package/skills/core/node-ping-gateway/scripts/ping-node-gateway.sh +71 -0
package/skills/core/node-show-gateway/SKILL.md +55 -0
package/skills/core/node-show-gateway/scripts/show-node-gateway.sh +90 -0
package/skills/core/pod-crash-debug/SKILL.md +135 -0
package/skills/core/pod-pending-debug/SKILL.md +146 -0
package/skills/core/pod-ping-gateway/SKILL.md +44 -0
package/skills/core/pod-ping-gateway/scripts/ping-gateway.sh +76 -0
package/skills/core/pod-show-gateway/SKILL.md +54 -0
package/skills/core/pod-show-gateway/scripts/show-gateway.sh +115 -0
package/skills/core/pvc-debug/SKILL.md +169 -0
package/skills/core/service-debug/SKILL.md +164 -0
package/skills/extension/.gitkeep +0 -0
package/skills/platform/create-skill/SKILL.md +288 -0
package/skills/platform/manage-skill/SKILL.md +23 -0
package/skills/platform/update-skill/SKILL.md +52 -0

package/dist/tools/command-sets.js ADDED Viewed

@@ -0,0 +1,845 @@
+/**
+ * Shared command whitelist and command-level validators used by
+ * restricted-bash, node-exec, and kubectl-exec tools.
+ */
+// ── Utility functions ────────────────────────────────────────────
+/**
+ * Shell-escape a single argument by wrapping in single quotes.
+ * Handles embedded single quotes via the standard '\'' idiom.
+ * Safe for embedding in sh -c "..." strings passed to remote execution.
+ */
+export function shellEscape(arg) {
+    return "'" + arg.replace(/'/g, "'\\''") + "'";
+}
+/**
+ * Parse a command string into an array of arguments, respecting quotes.
+ * Moved from kubectl.ts to be shared.
+ */
+export function parseArgs(command) {
+    const args = [];
+    let current = "";
+    let inQuote = null;
+    for (const ch of command) {
+        if (inQuote) {
+            if (ch === inQuote) {
+                inQuote = null;
+            }
+            else {
+                current += ch;
+            }
+        }
+        else if (ch === '"' || ch === "'") {
+            inQuote = ch;
+        }
+        else if (ch === " " || ch === "\t") {
+            if (current) {
+                args.push(current);
+                current = "";
+            }
+        }
+        else {
+            current += ch;
+        }
+    }
+    if (current)
+        args.push(current);
+    return args;
+}
+/**
+ * Get the base binary name from a command string.
+ * Strips env vars, leading whitespace, and path prefixes.
+ * Moved from restricted-bash.ts to be shared.
+ */
+export function getCommandBinary(cmd) {
+    // Strip inline env assignments (FOO=bar cmd ...)
+    let stripped = cmd;
+    while (/^\s*\w+=\S*\s+/.test(stripped)) {
+        stripped = stripped.replace(/^\s*\w+=\S*\s+/, "");
+    }
+    const first = stripped.trim().split(/\s+/)[0] ?? "";
+    // Extract basename from absolute path
+    return first.split("/").pop() ?? first;
+}
+/**
+ * Check if arg starts with any of the given prefixes.
+ */
+function startsWithAny(arg, prefixes) {
+    return prefixes.some((p) => arg.startsWith(p));
+}
+/**
+ * Extract the flag name from a --flag=value or -f form.
+ */
+function extractFlag(arg) {
+    const eqIdx = arg.indexOf("=");
+    return eqIdx >= 0 ? arg.slice(0, eqIdx) : arg;
+}
+// ── Unified command whitelist ────────────────────────────────────
+/**
+ * Commands allowed across all three tools (restricted-bash, node-exec, kubectl-exec).
+ * restricted-bash additionally allows `kubectl` and skill scripts.
+ *
+ * NOTE: sed and awk/gawk are intentionally excluded — they are Turing-complete
+ * scripting languages with built-in capabilities for command execution (system(),
+ * pipe-to-command), file writes, and shell escapes that cannot be reliably
+ * whitelisted. Use grep + cut/tr/head/tail/jq for text processing instead.
+ */
+export const ALLOWED_COMMANDS = new Set([
+    // text processing (sed, awk intentionally excluded — Turing-complete, unsafe)
+    "grep", "egrep", "fgrep",
+    "sort", "uniq", "wc", "head", "tail", "cut", "tr",
+    "jq", "yq", "column",
+    // network diagnostics
+    "ip", "ifconfig", "ping", "traceroute", "tracepath", "ss", "netstat",
+    "route", "arp", "ethtool", "mtr", "nslookup", "dig", "host",
+    "bridge", "tc", "conntrack", "curl",
+    // RDMA / RoCE
+    "ibstat", "ibstatus", "ibv_devinfo", "ibv_devices", "rdma",
+    "ibaddr", "iblinkinfo", "ibportstate", "ibswitches", "ibroute",
+    "show_gids", "ibdev2netdev",
+    // perftest
+    "ib_write_bw", "ib_write_lat", "ib_read_bw", "ib_read_lat",
+    "ib_send_bw", "ib_send_lat", "ib_atomic_bw", "ib_atomic_lat",
+    "raw_ethernet_bw", "raw_ethernet_lat", "raw_ethernet_burst_lat",
+    // GPU
+    "nvidia-smi", "gpustat", "nvtopo",
+    // hardware info
+    "lspci", "lsusb", "lsblk", "lscpu", "lsmem", "lshw", "dmidecode",
+    // kernel / system
+    "uname", "hostname", "uptime", "dmesg", "sysctl", "lsmod", "modinfo",
+    // process / resource
+    "ps", "pgrep", "top", "free", "vmstat", "iostat", "mpstat",
+    "df", "du", "mount", "findmnt", "nproc",
+    // file inspection (read-only)
+    "cat", "ls", "pwd", "stat", "file", "find",
+    "readlink", "realpath", "basename", "dirname",
+    "diff", "md5sum", "sha256sum",
+    // SiChek diagnostics
+    "sichek",
+    // system logs & services
+    "journalctl", "systemctl", "timedatectl", "hostnamectl",
+    // container runtime
+    "crictl", "ctr",
+    // firewall (read-only via validator)
+    "iptables", "ip6tables",
+    // file / process inspection
+    "lsof", "lsns", "strings",
+    // compressed file reading
+    "zcat", "zgrep", "bzcat", "xzcat",
+    // system activity
+    "sar", "blkid",
+    // stream utility (restricted via validator)
+    "tee",
+    // general
+    "date", "whoami", "id", "env", "printenv", "which",
+    // flow control
+    "echo", "printf", "true", "false", "sleep", "wait", "test",
+    // math (bc removed — !command escapes to shell)
+    "expr", "seq",
+]);
+export const COMMAND_RULES = {
+    // ── Flag whitelist ──
+    sort: {
+        command: "sort", category: "text",
+        allowedFlags: [
+            "-r", "-n", "-k", "-t", "-u", "-f", "-h", "-V", "-s", "-b", "-g", "-M", "-d", "-i",
+            "--reverse", "--numeric-sort", "--key", "--field-separator", "--unique",
+            "--human-numeric-sort", "--version-sort", "--stable", "--ignore-leading-blanks",
+            "--general-numeric-sort", "--month-sort", "--dictionary-order", "--ignore-case",
+        ],
+    },
+    yq: {
+        command: "yq", category: "text",
+        allowedFlags: [
+            "-r", "--raw-output", "-e", "--exit-status", "-o", "--output-format",
+            "-P", "--prettyprint", "-C", "--colors", "-M", "--no-colors",
+            "-N", "--no-doc", "-j", "--tojson", "-p", "--input-format",
+            "--xml-attribute-prefix", "--xml-content-name",
+            "-s", "--split-exp", "--unwrapScalar", "--nul-output", "--header-preprocess",
+        ],
+    },
+    ethtool: {
+        command: "ethtool", category: "network",
+        allowedFlags: [
+            "-i", "-S", "-T", "-a", "-c", "-g", "-k", "-l", "-P", "-m", "-d", "--phy-statistics",
+        ],
+    },
+    arp: {
+        command: "arp", category: "network",
+        allowedFlags: ["-a", "-n", "-e", "-v", "--all", "--numeric", "--verbose"],
+    },
+    dmesg: {
+        command: "dmesg", category: "system",
+        allowedFlags: [
+            "-T", "--ctime", "-H", "--human", "-l", "--level", "-f", "--facility",
+            "-k", "--kernel", "-x", "--decode", "-L", "--color", "--time-format",
+            "--nopager",
+            "--since", "--until", "-S", "--syslog", "-t", "--notime", "-P",
+            // NOTE: -w/--follow/-W/--follow-new intentionally excluded — they hang indefinitely
+        ],
+    },
+    journalctl: {
+        command: "journalctl", category: "system",
+        allowedFlags: [
+            "-u", "--unit", "-n", "--lines", "--since", "--until",
+            "-p", "--priority", "-b", "--boot", "-k", "--dmesg",
+            "--no-pager", "-o", "--output", "-r", "--reverse",
+            "-x", "--catalog", "--system", "--user",
+            "-t", "--identifier", "-g", "--grep", "--case-sensitive",
+            "-S", "-U", "-e", "--pager-end", "-a", "--all",
+            "-q", "--quiet", "--no-hostname", "--no-full",
+            "-m", "--merge", "-D", "--directory", "--file", "--list-boots",
+        ],
+    },
+    iptables: {
+        command: "iptables", category: "network",
+        allowedFlags: [
+            "-L", "--list", "-S", "--list-rules",
+            "-n", "--numeric", "-v", "--verbose",
+            "-x", "--exact", "--line-numbers", "-t", "--table",
+        ],
+    },
+    // ── Flag whitelist + requiredFlags ──
+    top: {
+        command: "top", category: "process",
+        allowedFlags: [
+            "-b", "--batch", "-n", "-d", "-p", "-H", "-c", "-o", "-O",
+            "-w", "-1", "-e", "-E", "-i", "-S", "-s", "-u", "-U",
+        ],
+        requiredFlags: ["-b", "--batch"],
+    },
+    // ── Flag whitelist + positional restrictions ──
+    hostname: {
+        command: "hostname", category: "system",
+        allowedFlags: [
+            "-f", "-d", "-s", "-i", "-I", "-A",
+            "--fqdn", "--domain", "--short", "--ip-address", "--all-ip-addresses",
+        ],
+        positionals: "block",
+    },
+    route: {
+        command: "route", category: "network",
+        allowedFlags: ["-n", "-e", "-v", "-F", "-C", "--numeric", "--extend", "--verbose"],
+        positionals: "block",
+    },
+    ifconfig: {
+        command: "ifconfig", category: "network",
+        allowedFlags: ["-a", "-s", "--all", "--short"],
+        positionals: 1,
+    },
+    uniq: {
+        command: "uniq", category: "text",
+        positionals: 1,
+    },
+    // ── Subcommand whitelist (position: 0) ──
+    systemctl: {
+        command: "systemctl", category: "service",
+        allowedSubcommands: {
+            position: 0,
+            allowed: [
+                "status", "show", "list-units", "list-unit-files",
+                "is-active", "is-enabled", "is-failed", "cat",
+                "list-dependencies", "list-sockets", "list-timers",
+            ],
+        },
+    },
+    crictl: {
+        command: "crictl", category: "container",
+        allowedSubcommands: {
+            position: 0,
+            allowed: [
+                "ps", "images", "inspect", "inspecti", "inspectp",
+                "logs", "stats", "info", "version", "pods",
+            ],
+        },
+    },
+    timedatectl: {
+        command: "timedatectl", category: "system",
+        allowedSubcommands: {
+            position: 0,
+            allowed: ["status", "show", "list-timezones", "timesync-status"],
+        },
+    },
+    hostnamectl: {
+        command: "hostnamectl", category: "system",
+        allowedSubcommands: {
+            position: 0,
+            allowed: ["status", "show"],
+        },
+    },
+    // ── Action whitelist (position: 1) ──
+    tc: {
+        command: "tc", category: "network",
+        allowedSubcommands: { position: 1, allowed: ["show", "list", "ls"] },
+    },
+    bridge: {
+        command: "bridge", category: "network",
+        allowedSubcommands: { position: 1, allowed: ["show", "list", "ls"] },
+    },
+    rdma: {
+        command: "rdma", category: "network",
+        allowedSubcommands: { position: 1, allowed: ["show", "list", "ls"] },
+    },
+    // ── Custom validators ──
+    curl: { command: "curl", category: "network", customValidator: "curl" },
+    conntrack: { command: "conntrack", category: "network", customValidator: "conntrack" },
+    find: { command: "find", category: "file", customValidator: "find" },
+    ip: { command: "ip", category: "network", customValidator: "ip" },
+    "nvidia-smi": { command: "nvidia-smi", category: "gpu", customValidator: "nvidia-smi" },
+    date: { command: "date", category: "system", customValidator: "date" },
+    ctr: { command: "ctr", category: "container", customValidator: "ctr" },
+    ibportstate: { command: "ibportstate", category: "rdma", customValidator: "ibportstate" },
+    env: { command: "env", category: "system", customValidator: "env" },
+    tee: { command: "tee", category: "system", customValidator: "tee" },
+    mount: { command: "mount", category: "system", customValidator: "mount" },
+    sysctl: { command: "sysctl", category: "system", customValidator: "sysctl" },
+};
+// ip6tables shares iptables rules
+COMMAND_RULES["ip6tables"] = { ...COMMAND_RULES["iptables"], command: "ip6tables" };
+// Perftest: 11 binaries share one flag set
+const PERFTEST_FLAGS = [
+    "-s", "--size", "-D", "--duration", "-n", "--iters",
+    "-p", "--port", "-d", "--ib-dev", "-i", "--ib-port",
+    "-m", "--mtu", "-x", "--gid-index", "--sl",
+    "-a", "--all", "-b", "--bidirectional",
+    "-F", "--CPU-freq", "-c", "--connection",
+    "-R", "--rdma_cm", "-q", "--qp",
+    "--run_infinitely", "--report_gbits", "--report_per_port",
+    "-l", "--post_list", "--use_cuda", "--use_rocm", "--output_format",
+    "-h", "--help", "-V", "--version",
+];
+for (const bin of [
+    "ib_write_bw", "ib_write_lat", "ib_read_bw", "ib_read_lat",
+    "ib_send_bw", "ib_send_lat", "ib_atomic_bw", "ib_atomic_lat",
+    "raw_ethernet_bw", "raw_ethernet_lat", "raw_ethernet_burst_lat",
+]) {
+    COMMAND_RULES[bin] = { command: bin, category: "perftest", allowedFlags: PERFTEST_FLAGS };
+}
+// ── Generic rule engine ──────────────────────────────────────────
+function validateByRule(args, rule) {
+    const cmd = rule.command;
+    // 1. requiredFlags: at least one must be present
+    if (rule.requiredFlags?.length) {
+        if (!rule.requiredFlags.some((f) => args.includes(f))) {
+            return JSON.stringify({
+                error: `${cmd} requires one of: ${rule.requiredFlags.join(", ")}`,
+            }, null, 2);
+        }
+    }
+    // 2. allowedSubcommands: check the Nth positional
+    if (rule.allowedSubcommands) {
+        const { position, allowed } = rule.allowedSubcommands;
+        let posCount = 0;
+        for (const arg of args.slice(1)) {
+            if (arg.startsWith("-"))
+                continue;
+            if (posCount === position) {
+                if (!allowed.includes(arg)) {
+                    return JSON.stringify({
+                        error: `${cmd} ${position === 0 ? "subcommand" : "action"} "${arg}" is not allowed.`,
+                    }, null, 2);
+                }
+                return null;
+            }
+            posCount++;
+        }
+        return null; // not enough positionals → safe default
+    }
+    // 3. check flags + positionals
+    const positionalPolicy = rule.positionals ?? "allow";
+    let positionalCount = 0;
+    for (let i = 1; i < args.length; i++) {
+        const arg = args[i];
+        if (!arg.startsWith("-")) {
+            positionalCount++;
+            if (positionalPolicy === "block") {
+                return JSON.stringify({
+                    error: `${cmd} "${arg}" is not allowed.`,
+                }, null, 2);
+            }
+            if (typeof positionalPolicy === "number" && positionalCount > positionalPolicy) {
+                return JSON.stringify({
+                    error: `${cmd} does not allow more than ${positionalPolicy} positional argument(s).`,
+                }, null, 2);
+            }
+            continue;
+        }
+        // flag check — skip if no allowedFlags defined
+        if (!rule.allowedFlags)
+            continue;
+        const flag = extractFlag(arg);
+        if (rule.allowedFlags.includes(flag))
+            continue;
+        // short flag with attached value: -k2,3 → check "-k"
+        // Only when 3rd char is NOT a letter — prevents combined flags like -ro
+        // from bypassing the check (where -r is safe but -o is not)
+        if (!arg.startsWith("--") && arg.length > 2) {
+            const thirdChar = arg[2];
+            if (thirdChar && !/[a-zA-Z]/.test(thirdChar)) {
+                const shortFlag = arg.slice(0, 2);
+                if (rule.allowedFlags.includes(shortFlag))
+                    continue;
+            }
+        }
+        return JSON.stringify({
+            error: `${cmd} "${arg}" is not allowed.`,
+        }, null, 2);
+    }
+    return null;
+}
+// ── Custom validator functions ───────────────────────────────────
+// ─── find ────────────────────────────────────────────────────────
+const FIND_SAFE_ACTIONS = new Set(["-print", "-print0", "-ls", "-prune", "-quit"]);
+const FIND_SAFE_TESTS = new Set([
+    "-name", "-iname", "-path", "-ipath", "-regex", "-iregex",
+    "-type", "-size", "-mtime", "-atime", "-ctime", "-mmin", "-amin", "-cmin",
+    "-newer", "-newermt", "-newerat", "-newerct",
+    "-perm", "-user", "-group", "-uid", "-gid", "-nouser", "-nogroup",
+    "-empty", "-readable", "-writable", "-executable",
+    "-maxdepth", "-mindepth", "-mount", "-xdev",
+    "-not", "-and", "-or", "-a", "-o",
+    "-true", "-false", "-depth", "-daystart",
+    "-samefile", "-inum", "-links", "-lname", "-ilname",
+    "-wholename", "-iwholename",
+    "-fstype", "-xtype",
+]);
+function validateFind(args) {
+    for (const arg of args.slice(1)) {
+        if (!arg.startsWith("-"))
+            continue; // path arguments are ok
+        if (arg === "-")
+            continue; // stdin marker
+        if (!FIND_SAFE_ACTIONS.has(arg) && !FIND_SAFE_TESTS.has(arg)) {
+            return JSON.stringify({
+                error: `find "${arg}" is not allowed. Only read-only find operations are permitted.`,
+                allowed_actions: [...FIND_SAFE_ACTIONS],
+            }, null, 2);
+        }
+    }
+    return null;
+}
+// ─── conntrack ───────────────────────────────────────────────────
+const CONNTRACK_SAFE_OPS = new Set([
+    "-L", "--dump", "-G", "--get", "-C", "--count", "-S", "--stats", "-E", "--event",
+]);
+const CONNTRACK_SAFE_FLAGS = new Set([
+    "-p", "--proto", "-s", "--src", "-d", "--dst", "--sport", "--dport",
+    "-m", "--mark", "-f", "--family", "-z", "--zero",
+    "-o", "--output", "-e", "--event-mask", "-b", "--buffer-size",
+    "-n", "--src-nat", "-g", "--dst-nat",
+    "--orig-src", "--orig-dst", "--reply-src", "--reply-dst",
+    "--orig-port-src", "--orig-port-dst", "--reply-port-src", "--reply-port-dst",
+    "--state", "--status", "--timeout",
+]);
+const CONNTRACK_SAFE_PREFIXES = [
+    "-p=", "--proto=", "-s=", "--src=", "-d=", "--dst=", "--sport=", "--dport=",
+    "-m=", "--mark=", "-f=", "--family=", "-o=", "--output=", "-e=", "--event-mask=",
+    "-b=", "--buffer-size=", "--state=", "--status=", "--timeout=",
+];
+function validateConntrack(args) {
+    for (let i = 1; i < args.length; i++) {
+        const arg = args[i];
+        if (!arg.startsWith("-"))
+            continue;
+        if (CONNTRACK_SAFE_OPS.has(arg)) {
+            continue;
+        }
+        const flag = extractFlag(arg);
+        if (!CONNTRACK_SAFE_FLAGS.has(flag) && !startsWithAny(arg, CONNTRACK_SAFE_PREFIXES)) {
+            return JSON.stringify({
+                error: `conntrack "${arg}" is not allowed. Only read-only operations are permitted.`,
+                allowed_ops: [...CONNTRACK_SAFE_OPS],
+            }, null, 2);
+        }
+    }
+    return null;
+}
+// ─── curl ────────────────────────────────────────────────────────
+const CURL_SAFE_FLAGS = new Set([
+    "-s", "--silent", "-S", "--show-error", "-k", "--insecure", "-v", "--verbose",
+    "-H", "--header", "-m", "--max-time", "--connect-timeout",
+    "-L", "--location", "-I", "--head", "-w", "--write-out",
+    "-d", "--data", "--data-raw", "--data-urlencode", "--compressed",
+    "-A", "--user-agent", "-b", "--cookie", "-e", "--referer",
+    "-u", "--user", "--cacert", "--cert", "-x", "--proxy",
+    "--retry", "--retry-delay", "--retry-max-time",
+    "-f", "--fail", "-4", "-6", "-N", "--no-buffer",
+]);
+const CURL_SAFE_PREFIXES = [
+    "-H=", "--header=", "-m=", "--max-time=", "--connect-timeout=",
+    "-w=", "--write-out=", "-d=", "--data=", "--data-raw=", "--data-urlencode=",
+    "-A=", "--user-agent=", "-b=", "--cookie=", "-e=", "--referer=",
+    "-u=", "--user=", "--cacert=", "--cert=", "-x=", "--proxy=",
+    "--retry=", "--retry-delay=", "--retry-max-time=",
+];
+const CURL_DATA_FLAGS = new Set(["-d", "--data", "--data-raw", "--data-urlencode"]);
+const CURL_REQUEST_FLAGS = new Set(["-X", "--request"]);
+const CURL_SAFE_METHODS = new Set(["GET", "HEAD", "OPTIONS", "POST"]);
+const CURL_SAFE_SHORT_CHARS = new Set([
+    "s", "S", "k", "v", "H", "X", "m", "L", "I", "w", "d", "A", "b", "e", "u", "x", "f", "N",
+    "4", "6",
+]);
+function checkCurlMethod(method) {
+    if (method && !CURL_SAFE_METHODS.has(method.toUpperCase())) {
+        return JSON.stringify({
+            error: `curl -X ${method.toUpperCase()} is not allowed. Only safe HTTP methods (${[...CURL_SAFE_METHODS].join(", ")}) are permitted.`,
+        }, null, 2);
+    }
+    return null;
+}
+function checkCurlDataValue(flag, value) {
+    if (value && value.startsWith("@")) {
+        return `curl ${flag} with @file is not allowed. File uploads are blocked.`;
+    }
+    return null;
+}
+function validateCurl(args) {
+    for (let i = 1; i < args.length; i++) {
+        const arg = args[i];
+        if (!arg.startsWith("-"))
+            continue;
+        // ── Long flags (--xxx) ──────────────────────────────────
+        if (arg.startsWith("--")) {
+            const flag = extractFlag(arg);
+            const hasValue = arg.includes("=");
+            const inlineValue = hasValue ? arg.slice(flag.length + 1) : undefined;
+            if (CURL_REQUEST_FLAGS.has(flag)) {
+                const method = hasValue ? inlineValue : args[i + 1];
+                const err = checkCurlMethod(method);
+                if (err)
+                    return err;
+                if (!hasValue)
+                    i++;
+                continue;
+            }
+            if (CURL_DATA_FLAGS.has(flag)) {
+                const value = hasValue ? inlineValue : args[i + 1];
+                const err = checkCurlDataValue(flag, value);
+                if (err)
+                    return err;
+                if (!hasValue)
+                    i++;
+                continue;
+            }
+            if (!CURL_SAFE_FLAGS.has(flag) && !startsWithAny(arg, CURL_SAFE_PREFIXES)) {
+                return JSON.stringify({
+                    error: `curl "${arg}" is not allowed. Only read-only curl flags are permitted.`,
+                }, null, 2);
+            }
+            if (!hasValue && CURL_SAFE_FLAGS.has(flag) && (["-H", "--header", "-m", "--max-time", "--connect-timeout",
+                "-w", "--write-out", "-A", "--user-agent", "-b", "--cookie",
+                "-e", "--referer", "-u", "--user", "--cacert", "--cert",
+                "-x", "--proxy", "--retry", "--retry-delay", "--retry-max-time",
+            ].includes(flag))) {
+                i++;
+            }
+            continue;
+        }
+        // ── Short flags with = (e.g. -m=10, -X=GET) ────────────
+        if (arg.includes("=")) {
+            const flag = extractFlag(arg);
+            const inlineValue = arg.slice(flag.length + 1);
+            if (flag === "-X") {
+                const err = checkCurlMethod(inlineValue);
+                if (err)
+                    return err;
+                continue;
+            }
+            if (flag === "-d") {
+                const err = checkCurlDataValue("-d", inlineValue);
+                if (err)
+                    return err;
+                continue;
+            }
+            if (!CURL_SAFE_FLAGS.has(flag) && !startsWithAny(arg, CURL_SAFE_PREFIXES)) {
+                return JSON.stringify({
+                    error: `curl "${arg}" is not allowed. Only read-only curl flags are permitted.`,
+                }, null, 2);
+            }
+            continue;
+        }
+        // ── Combined short flags (e.g. -sS, -sSX, -vk) ─────────
+        const chars = arg.slice(1);
+        for (const ch of chars) {
+            if (!CURL_SAFE_SHORT_CHARS.has(ch)) {
+                return JSON.stringify({
+                    error: `curl "-${ch}" (in "${arg}") is not allowed. Only read-only curl flags are permitted.`,
+                }, null, 2);
+            }
+        }
+        const lastChar = chars[chars.length - 1];
+        if (lastChar && "HXmwdAbeuxr".includes(lastChar)) {
+            if (lastChar === "X") {
+                const err = checkCurlMethod(args[i + 1]);
+                if (err)
+                    return err;
+            }
+            if (lastChar === "d") {
+                const err = checkCurlDataValue("-d", args[i + 1]);
+                if (err)
+                    return err;
+            }
+            i++;
+        }
+    }
+    return null;
+}
+// ─── ibportstate ─────────────────────────────────────────────────
+const IBPORTSTATE_SAFE_ACTIONS = new Set(["query"]);
+function validateIbportstate(args) {
+    for (let i = 1; i < args.length; i++) {
+        const arg = args[i];
+        if (arg.startsWith("-"))
+            continue;
+        if (/^\d+$/.test(arg))
+            continue;
+        if (!IBPORTSTATE_SAFE_ACTIONS.has(arg)) {
+            return JSON.stringify({
+                error: `ibportstate "${arg}" is not allowed. Only query operations are permitted.`,
+                allowed: [...IBPORTSTATE_SAFE_ACTIONS],
+            }, null, 2);
+        }
+    }
+    return null;
+}
+// ─── nvidia-smi ──────────────────────────────────────────────────
+const NVIDIA_SMI_SAFE_FLAGS = new Set([
+    "-q", "--query", "-L", "--list-gpus", "-i",
+]);
+const NVIDIA_SMI_SAFE_PREFIXES = [
+    "--query-gpu=", "--query-compute-apps=", "--id=", "--format=",
+    "-i=",
+];
+const NVIDIA_SMI_SUBCMDS = new Set(["topo", "nvlink"]);
+function validateNvidiaSmi(args) {
+    if (args.length <= 1)
+        return null;
+    for (let i = 1; i < args.length; i++) {
+        const arg = args[i];
+        if (!arg.startsWith("-")) {
+            if (NVIDIA_SMI_SUBCMDS.has(arg))
+                return null;
+            continue;
+        }
+        const flag = extractFlag(arg);
+        if (!NVIDIA_SMI_SAFE_FLAGS.has(flag) && !startsWithAny(arg, NVIDIA_SMI_SAFE_PREFIXES)) {
+            return JSON.stringify({
+                error: `nvidia-smi "${arg}" is not allowed. Only read-only nvidia-smi queries are permitted.`,
+            }, null, 2);
+        }
+    }
+    return null;
+}
+// ─── date ────────────────────────────────────────────────────────
+const DATE_SAFE_FLAGS = new Set([
+    "-d", "--date", "-u", "--utc", "--universal",
+    "-I", "--iso-8601", "-R", "--rfc-email", "--rfc-3339",
+    "-r", "--reference",
+]);
+const DATE_SAFE_PREFIXES = [
+    "-d=", "--date=", "-I=", "--iso-8601=", "--rfc-3339=", "-r=", "--reference=",
+];
+function validateDate(args) {
+    for (let i = 1; i < args.length; i++) {
+        const arg = args[i];
+        if (arg.startsWith("+"))
+            continue; // format string
+        if (arg.startsWith("-")) {
+            const flag = extractFlag(arg);
+            if (!DATE_SAFE_FLAGS.has(flag) && !startsWithAny(arg, DATE_SAFE_PREFIXES)) {
+                return JSON.stringify({
+                    error: `date "${arg}" is not allowed. Only read-only date queries are permitted.`,
+                }, null, 2);
+            }
+            if (DATE_SAFE_FLAGS.has(arg) && (arg === "-d" || arg === "--date" || arg === "-r" || arg === "--reference")) {
+                i++;
+            }
+        }
+        else {
+            return JSON.stringify({
+                error: `date "${arg}" is not allowed. Only format strings (+...) and read-only flags are permitted.`,
+            }, null, 2);
+        }
+    }
+    return null;
+}
+// ─── sysctl ──────────────────────────────────────────────────────
+const SYSCTL_SAFE_FLAGS = new Set([
+    "-a", "--all", "-n", "--values", "-e", "--ignore",
+    "-N", "--names", "-q", "--quiet", "-b", "--binary",
+    "--pattern", "-d", "--deprecated", "-r",
+]);
+const SYSCTL_SAFE_PREFIXES = ["--pattern=", "-r="];
+function validateSysctl(args) {
+    for (let i = 1; i < args.length; i++) {
+        const arg = args[i];
+        if (arg.startsWith("-")) {
+            const flag = extractFlag(arg);
+            if (!SYSCTL_SAFE_FLAGS.has(flag) && !startsWithAny(arg, SYSCTL_SAFE_PREFIXES)) {
+                return JSON.stringify({
+                    error: `sysctl "${arg}" is not allowed. Only read-only sysctl queries are permitted.`,
+                }, null, 2);
+            }
+        }
+        else {
+            if (arg.includes("=")) {
+                return JSON.stringify({
+                    error: `sysctl write ("${arg}") is not allowed. Only read-only sysctl queries are permitted.`,
+                }, null, 2);
+            }
+        }
+    }
+    return null;
+}
+// ─── ip ──────────────────────────────────────────────────────────
+const IP_SAFE_ACTIONS = new Set(["show", "list", "ls", "get"]);
+function validateIp(cmd) {
+    const parts = cmd.trim().split(/\s+/);
+    let objectIdx = 1;
+    while (objectIdx < parts.length && parts[objectIdx].startsWith("-")) {
+        objectIdx++;
+    }
+    const action = parts[objectIdx + 1];
+    if (!action)
+        return null;
+    let actionStr = action;
+    if (action.startsWith("-")) {
+        let i = objectIdx + 2;
+        while (i < parts.length && parts[i].startsWith("-"))
+            i++;
+        actionStr = parts[i] ?? "";
+        if (!actionStr)
+            return null;
+    }
+    if (!IP_SAFE_ACTIONS.has(actionStr)) {
+        return JSON.stringify({
+            error: `ip action "${actionStr}" is not allowed. Only read-only actions are permitted.`,
+            allowed: [...IP_SAFE_ACTIONS],
+        }, null, 2);
+    }
+    return null;
+}
+// ─── mount ───────────────────────────────────────────────────────
+const MOUNT_SAFE_FLAGS = new Set([
+    "-l", "--list", "-t", "--types", "-v", "--verbose", "-n", "--no-mtab",
+    "-r", "--read-only",
+]);
+const MOUNT_SAFE_PREFIXES = ["-t=", "--types="];
+function validateMount(args) {
+    let nonFlagCount = 0;
+    for (let i = 1; i < args.length; i++) {
+        const arg = args[i];
+        if (!arg.startsWith("-")) {
+            nonFlagCount++;
+            if (nonFlagCount >= 2) {
+                return "mount with device and mountpoint arguments is not allowed. Only listing mounts (mount without arguments or with -l) is permitted.";
+            }
+            continue;
+        }
+        const flag = extractFlag(arg);
+        if (MOUNT_SAFE_FLAGS.has(flag) || startsWithAny(arg, MOUNT_SAFE_PREFIXES)) {
+            // -t/--types consumes next arg as value
+            if (!arg.includes("=") && (flag === "-t" || flag === "--types")) {
+                i++;
+            }
+            continue;
+        }
+        return JSON.stringify({
+            error: `mount "${arg}" is not allowed. Only listing mounts is permitted.`,
+        }, null, 2);
+    }
+    return null;
+}
+// ─── env ─────────────────────────────────────────────────────────
+function validateEnv(args) {
+    const restArgs = args.slice(1);
+    for (let i = 0; i < restArgs.length; i++) {
+        const arg = restArgs[i];
+        if (arg === "-u" || arg === "--unset") {
+            i++;
+            continue;
+        }
+        if (arg.startsWith("-"))
+            continue;
+        if (arg.includes("="))
+            continue;
+        return 'env cannot be used to execute commands. Use "printenv" to view environment variables.';
+    }
+    return null;
+}
+// ─── ctr ─────────────────────────────────────────────────────────
+const CTR_SAFE_ACTIONS = new Set(["ls", "list", "info", "check"]);
+function validateCtr(args) {
+    const positional = [];
+    const skipNext = new Set(["-n", "--namespace", "-a", "--address"]);
+    for (let i = 1; i < args.length; i++) {
+        if (skipNext.has(args[i])) {
+            i++;
+            continue;
+        }
+        if (args[i].startsWith("-"))
+            continue;
+        positional.push(args[i]);
+    }
+    if (positional.length === 0)
+        return null;
+    if (positional[0] === "version" || positional[0] === "info")
+        return null;
+    const action = positional[1];
+    if (!action)
+        return null;
+    if (!CTR_SAFE_ACTIONS.has(action)) {
+        return JSON.stringify({
+            error: `ctr action "${action}" on "${positional[0]}" is not allowed. Only read-only actions are permitted.`,
+            allowed: [...CTR_SAFE_ACTIONS].sort(),
+        }, null, 2);
+    }
+    return null;
+}
+// ─── tee ─────────────────────────────────────────────────────────
+function validateTee(args) {
+    for (const arg of args.slice(1)) {
+        if (arg.startsWith("-"))
+            continue;
+        if (arg !== "/dev/null") {
+            return JSON.stringify({
+                error: `tee to "${arg}" is not allowed. Only "tee" or "tee /dev/null" is permitted.`,
+            }, null, 2);
+        }
+    }
+    return null;
+}
+// ── Custom validator registry ────────────────────────────────────
+const CUSTOM_VALIDATORS = {
+    curl: (args) => validateCurl(args),
+    conntrack: (args) => validateConntrack(args),
+    find: (args) => validateFind(args),
+    ip: (args) => validateIp(args.join(" ")),
+    "nvidia-smi": (args) => validateNvidiaSmi(args),
+    date: (args) => validateDate(args),
+    ctr: (args) => validateCtr(args),
+    ibportstate: (args) => validateIbportstate(args),
+    env: (args) => validateEnv(args),
+    tee: (args) => validateTee(args),
+    mount: (args) => validateMount(args),
+    sysctl: (args) => validateSysctl(args),
+};
+// ── Entry point ──────────────────────────────────────────────────
+/**
+ * Apply extra security restrictions to whitelisted commands.
+ * Takes a raw command string, parses it internally.
+ * Returns an error message string if blocked, or null if allowed.
+ */
+export function validateCommandRestrictions(cmd) {
+    const args = parseArgs(cmd);
+    if (args.length === 0)
+        return null;
+    const baseName = args[0].split("/").pop()?.toLowerCase() ?? "";
+    const rule = COMMAND_RULES[baseName];
+    if (!rule)
+        return null;
+    if (rule.customValidator) {
+        return CUSTOM_VALIDATORS[rule.customValidator]?.(args, baseName) ?? null;
+    }
+    return validateByRule(args, rule);
+}
+//# sourceMappingURL=command-sets.js.map