siluzan-tso-cli 1.0.0-beta.22 → 1.0.0-beta.23

package/README.md

@@ -20,7 +20,7 @@ siluzan-tso init -d /path/to/skills  # 写入自定义目录
 siluzan-tso init --force             # 强制覆盖已存在文件
 ```
 
-> **注意**：当前为测试版（1.0.0-beta.22），供内部测试使用。正式发布后安装命令将改为 `npm install -g siluzan-tso-cli`。
+> **注意**：当前为测试版（1.0.0-beta.23），供内部测试使用。正式发布后安装命令将改为 `npm install -g siluzan-tso-cli`。
 
 | 助手 | 建议 `--ai` |
 |------|-------------|

package/dist/index.js

@@ -17,6 +17,7 @@ import * as path from "path";
 import * as os from "os";
 import * as https from "https";
 import * as http from "http";
+import * as os2 from "os";
 import * as fs2 from "fs";
 import * as path2 from "path";
 import { fileURLToPath } from "url";
@@ -130,6 +131,412 @@ function rawRequest(url, options) {
     req.end();
   });
 }
+var DEFAULT_SENTRY_DSN = "https://bafcf42aab6fe7b485310619ae041b5e@o4510436169285632.ingest.us.sentry.io/4511103054708736";
+function isSentryDisabled() {
+  return process.env.SILUZAN_SENTRY_DISABLED === "1" || process.env.SILUZAN_SENTRY_DISABLED === "true";
+}
+function getDsn() {
+  return process.env.SILUZAN_SENTRY_DSN?.trim() || DEFAULT_SENTRY_DSN;
+}
+var cliMeta = { name: "siluzan-cli", version: "unknown" };
+var cliInvocation = "";
+function setSiluzanCliInvocation(redactedCommandLine) {
+  cliInvocation = redactedCommandLine;
+}
+function redactCliArgvForSentry(argv) {
+  const args = argv.slice(2);
+  const redactNext = /* @__PURE__ */ new Set(["-t", "--token", "--api-key", "--password"]);
+  const out = [];
+  for (let i = 0; i < args.length; i++) {
+    const a = args[i];
+    if (redactNext.has(a)) {
+      out.push(a, "***");
+      i++;
+      continue;
+    }
+    const eq = a.indexOf("=");
+    if (eq > 0) {
+      const key = a.slice(0, eq).toLowerCase();
+      if (key === "--token" || key === "--api-key" || key === "--password") {
+        out.push(`${a.slice(0, eq)}=***`);
+        continue;
+      }
+    }
+    if (/^-t[^-]/.test(a) && a.length > 3) {
+      out.push("-t***");
+      continue;
+    }
+    out.push(a);
+  }
+  return out.join(" ");
+}
+function isApiTrackingEnabled() {
+  const v = process.env.SILUZAN_SENTRY_TRACKING?.trim().toLowerCase();
+  if (v === "0" || v === "false" || v === "off" || v === "no") return false;
+  return true;
+}
+function setSiluzanCliMeta(name, version) {
+  cliMeta = { name, version };
+  if (sentryReady) {
+    void import("@sentry/node").then((Sentry) => {
+      Sentry.setTag("cli", name);
+      Sentry.setTag("cli_version", version);
+    }).catch(() => {
+    });
+  }
+}
+var sentryReady = false;
+var sentryInitPromise = null;
+var flushHookRegistered = false;
+function buildRuntimeContext() {
+  const platform = process.platform;
+  const osName = platform === "win32" ? "Windows" : platform === "darwin" ? "macOS" : "Linux";
+  return {
+    os: {
+      name: osName,
+      version: os2.release(),
+      // 内核版本，如 10.0.26100（Win11）、24.3.0（macOS）
+      arch: process.arch
+      // x64 / arm64
+    },
+    runtime: {
+      node_version: process.version,
+      // v18.x.x / v20.x.x
+      timezone: Intl.DateTimeFormat().resolvedOptions().timeZone
+    }
+  };
+}
+async function ensureSentryInitialized(requestUrl) {
+  const dsn = getDsn();
+  if (!dsn || isSentryDisabled()) return false;
+  if (sentryReady) return true;
+  if (!sentryInitPromise) {
+    sentryInitPromise = (async () => {
+      const Sentry = await import("@sentry/node");
+      const envOverride = process.env.SILUZAN_SENTRY_ENV?.trim();
+      const environment = envOverride || (inferSiluzanRuntimeEnvironment(requestUrl) === "test" ? "test" : "production");
+      Sentry.init({
+        dsn,
+        environment,
+        sendDefaultPii: true,
+        tracesSampleRate: 0
+      });
+      const ctx = buildRuntimeContext();
+      Sentry.setContext("os", ctx.os);
+      Sentry.setContext("runtime", ctx.runtime);
+      Sentry.setTag("cli", cliMeta.name);
+      Sentry.setTag("cli_version", cliMeta.version);
+      if (!flushHookRegistered) {
+        flushHookRegistered = true;
+        process.once("beforeExit", () => {
+          void Sentry.flush(2e3);
+        });
+      }
+      sentryReady = true;
+    })();
+  }
+  await sentryInitPromise;
+  return sentryReady;
+}
+function deriveMainApiOriginFromRequestUrl(requestUrl) {
+  try {
+    const u = new URL(requestUrl);
+    const host = u.hostname.toLowerCase();
+    if (!host.endsWith("siluzan.com")) return null;
+    if (host.startsWith("tso-api")) {
+      return `${u.protocol}//${host.replace(/^tso-api/, "api")}`;
+    }
+    if (host === "api.siluzan.com" || host === "api-ci.siluzan.com") {
+      return `${u.protocol}//${host}`;
+    }
+    return null;
+  } catch {
+    return null;
+  }
+}
+function inferSiluzanRuntimeEnvironment(requestUrl) {
+  try {
+    const host = new URL(requestUrl).hostname.toLowerCase();
+    return host.includes("-ci") ? "test" : "production";
+  } catch {
+    return "production";
+  }
+}
+function breadcrumbUrl(requestUrl) {
+  try {
+    const u = new URL(requestUrl);
+    return `${u.origin}${u.pathname}`;
+  } catch {
+    return requestUrl.slice(0, 120);
+  }
+}
+function trackingPathParts(requestUrl) {
+  try {
+    const u = new URL(requestUrl);
+    return { host: u.hostname.toLowerCase(), pathname: u.pathname || "/" };
+  } catch {
+    return { host: "unknown", pathname: "/" };
+  }
+}
+var SENSITIVE_QUERY_KEYS = /* @__PURE__ */ new Set([
+  "token",
+  "password",
+  "api_key",
+  "apikey",
+  "key",
+  "secret",
+  "authorization",
+  "auth"
+]);
+function redactUrlForTracking(url) {
+  try {
+    const u = new URL(url);
+    const q = new URLSearchParams(u.search);
+    const out = new URLSearchParams();
+    for (const [k, v] of q.entries()) {
+      out.set(k, SENSITIVE_QUERY_KEYS.has(k.toLowerCase()) ? "[REDACTED]" : v);
+    }
+    const qs = out.toString();
+    return `${u.origin}${u.pathname}${qs ? `?${qs}` : ""}`;
+  } catch {
+    return url.slice(0, 800);
+  }
+}
+function redactTrackingHeaders(h) {
+  const out = {};
+  for (const [k, v] of Object.entries(h)) {
+    const low = k.toLowerCase();
+    if (low === "authorization" || low === "x-api-key") {
+      out[k] = "[REDACTED]";
+    } else if (v.length > 2e3) {
+      out[k] = `${v.slice(0, 500)}\u2026[truncated ${v.length} chars]`;
+    } else {
+      out[k] = v;
+    }
+  }
+  return out;
+}
+var SENSITIVE_JSON_KEY = /* @__PURE__ */ new Set([
+  "password",
+  "token",
+  "apikey",
+  "api_key",
+  "authorization",
+  "authtoken",
+  "accesstoken",
+  "refreshtoken",
+  "secret",
+  "client_secret",
+  "privatekey",
+  "private_key"
+]);
+function deepRedactJson(value, depth) {
+  if (depth > 14) return "[MAX_DEPTH]";
+  if (value === null || typeof value !== "object") return value;
+  if (Array.isArray(value)) {
+    return value.map((v) => deepRedactJson(v, depth + 1));
+  }
+  const o = value;
+  const out = {};
+  for (const [k, v] of Object.entries(o)) {
+    const low = k.toLowerCase().replace(/_/g, "");
+    if (SENSITIVE_JSON_KEY.has(low) || low.includes("password") || low.includes("secret")) {
+      out[k] = "[REDACTED]";
+    } else {
+      out[k] = deepRedactJson(v, depth + 1);
+    }
+  }
+  return out;
+}
+function redactPlainTextSnippet(input) {
+  let s = input;
+  s = s.replace(/(Bearer\s+)[^\s'",}]+/gi, "$1***");
+  s = s.replace(
+    /("?(?:apiKey|authToken|accessToken|refreshToken|token|password)"?\s*[:=]\s*"?)([^"\s,}]{4,})/gi,
+    "$1***"
+  );
+  return s;
+}
+function trackingBodyMaxChars() {
+  const n = Number(process.env.SILUZAN_SENTRY_BODY_MAX);
+  if (Number.isFinite(n) && n > 256) return Math.min(n, 5e5);
+  return 12e3;
+}
+function trackingOmitBodies() {
+  const v = process.env.SILUZAN_SENTRY_NO_API_BODY?.trim().toLowerCase();
+  return v === "1" || v === "true" || v === "yes";
+}
+function formatTrackingBody(raw) {
+  if (trackingOmitBodies()) return "[omitted: SILUZAN_SENTRY_NO_API_BODY]";
+  if (raw === void 0 || raw === "") return "";
+  const max = trackingBodyMaxChars();
+  let text;
+  try {
+    const parsed = JSON.parse(raw);
+    text = JSON.stringify(deepRedactJson(parsed, 0));
+  } catch {
+    text = redactPlainTextSnippet(raw);
+  }
+  if (text.length > max) {
+    return `${text.slice(0, max)}\u2026[truncated ${text.length} chars]`;
+  }
+  return text;
+}
+async function reportSiluzanApiCall(payload) {
+  if (isSentryDisabled() || !getDsn() || !isApiTrackingEnabled()) return;
+  try {
+    const okInit = await ensureSentryInitialized(payload.url);
+    if (!okInit) return;
+    const Sentry = await import("@sentry/node");
+    const { host, pathname } = trackingPathParts(payload.url);
+    const siluzanEnv = inferSiluzanRuntimeEnvironment(payload.url);
+    const authType = payload.config.apiKey ? "apiKey" : "token";
+    const statusOk = payload.status >= 200 && payload.status < 300;
+    Sentry.captureMessage(
+      `siluzan.cli.api ${payload.method} ${host}${pathname} \u2192 ${payload.status}`,
+      {
+        level: statusOk ? "info" : "warning",
+        tags: {
+          siluzan_tracking: "api",
+          cli: cliMeta.name,
+          cli_version: cliMeta.version,
+          http_method: payload.method,
+          http_host: host,
+          http_status: String(payload.status),
+          siluzan_env: siluzanEnv,
+          auth_type: authType
+        },
+        fingerprint: [
+          "siluzan-cli-api",
+          cliMeta.name,
+          payload.method,
+          host,
+          pathname,
+          statusOk ? "2xx" : payload.status >= 500 ? "5xx" : "4xx"
+        ],
+        contexts: {
+          siluzan_cli: {
+            command: cliInvocation || "(pre-action \u672A\u6CE8\u518C\u6216\u5148\u4E8E parse \u53D1\u8D77\u8BF7\u6C42)"
+          },
+          siluzan_request: {
+            url: redactUrlForTracking(payload.url),
+            method: payload.method,
+            headers: redactTrackingHeaders(payload.reqHeaders),
+            body: formatTrackingBody(payload.requestBody)
+          },
+          siluzan_response: {
+            status: payload.status,
+            body: formatTrackingBody(payload.responseText)
+          }
+        }
+      }
+    );
+  } catch {
+  }
+}
+function cacheKeyForUser(mainOrigin, config) {
+  const cred = config.apiKey ? `k:${config.apiKey}` : `t:${config.authToken}`;
+  return `${mainOrigin}\0${cred}`;
+}
+var userContextDone = /* @__PURE__ */ new Set();
+var userContextInflight = /* @__PURE__ */ new Map();
+function parseMeResponse(text) {
+  try {
+    const json = JSON.parse(text);
+    const data = json?.data && typeof json.data === "object" ? json.data : json;
+    const id = pickStr(data, "id") ?? pickStr(data, "userId") ?? pickStr(data, "accountId");
+    const email = pickStr(data, "email");
+    const username = pickStr(data, "userName") ?? pickStr(data, "username") ?? pickStr(data, "name") ?? pickStr(data, "phone");
+    if (!id && !email && !username) return null;
+    return { id, email, username };
+  } catch {
+    return null;
+  }
+}
+function pickStr(obj, key) {
+  const v = obj[key];
+  return typeof v === "string" && v.trim() ? v.trim() : void 0;
+}
+async function fetchAndSetUser(mainOrigin, config) {
+  const meUrl = `${mainOrigin.replace(/\/$/, "")}/query/account/me`;
+  const authHeaders = config.apiKey ? { "x-api-key": config.apiKey } : { Authorization: `Bearer ${config.authToken}` };
+  const res = await rawRequest(meUrl, {
+    method: "GET",
+    headers: {
+      "Content-Type": "application/json",
+      "Accept-Language": "zh-CN",
+      ...authHeaders
+    }
+  });
+  if (res.status < 200 || res.status >= 300) return;
+  const parsed = parseMeResponse(res.text);
+  if (!parsed) return;
+  const Sentry = await import("@sentry/node");
+  const user = {};
+  if (parsed.id) user.id = parsed.id;
+  if (parsed.email) user.email = parsed.email;
+  if (parsed.username) user.username = parsed.username;
+  Sentry.setUser(user);
+}
+function scheduleUserContext(mainOrigin, config) {
+  const key = cacheKeyForUser(mainOrigin, config);
+  if (userContextDone.has(key)) return;
+  let p = userContextInflight.get(key);
+  if (!p) {
+    p = (async () => {
+      try {
+        await fetchAndSetUser(mainOrigin, config);
+      } catch {
+      } finally {
+        userContextInflight.delete(key);
+        userContextDone.add(key);
+      }
+    })();
+    userContextInflight.set(key, p);
+  }
+}
+function refreshSiluzanUser(apiBase, config) {
+  if (isSentryDisabled()) return;
+  void (async () => {
+    try {
+      const ok = await ensureSentryInitialized(apiBase);
+      if (!ok) return;
+      const mainOrigin = deriveMainApiOriginFromRequestUrl(apiBase) ?? (apiBase.includes("-ci") ? "https://api-ci.siluzan.com" : "https://api.siluzan.com");
+      const key = cacheKeyForUser(mainOrigin, config);
+      userContextDone.delete(key);
+      userContextInflight.delete(key);
+      scheduleUserContext(mainOrigin, config);
+    } catch {
+    }
+  })();
+}
+async function prepareSiluzanSentryForApiFetch(url, config, options) {
+  if (isSentryDisabled()) return;
+  if (!getDsn()) return;
+  try {
+    const ok = await ensureSentryInitialized(url);
+    if (!ok) return;
+    const Sentry = await import("@sentry/node");
+    const method = options.method ?? "GET";
+    const siluzanEnv = inferSiluzanRuntimeEnvironment(url);
+    const authType = config.apiKey ? "apiKey" : "token";
+    Sentry.addBreadcrumb({
+      category: "siluzan.api",
+      type: "http",
+      level: "info",
+      message: `${method} ${breadcrumbUrl(url)}`,
+      data: {
+        siluzan_env: siluzanEnv,
+        auth_type: authType
+      }
+    });
+    const mainOrigin = deriveMainApiOriginFromRequestUrl(url);
+    if (mainOrigin) {
+      scheduleUserContext(mainOrigin, config);
+    }
+  } catch {
+  }
+}
 function redactSensitive(input) {
   let output = input;
   output = output.replace(/(Bearer\s+)[^\s",]+/gi, "$1***");
@@ -140,6 +547,8 @@ function redactSensitive(input) {
   return output;
 }
 async function apiFetch(url, config, options = {}, verbose = false) {
+  await prepareSiluzanSentryForApiFetch(url, config, options);
+  const method = options.method ?? "GET";
   const authHeaders = config.apiKey ? { "x-api-key": config.apiKey } : { Authorization: `Bearer ${config.authToken}` };
   const reqHeaders = {
     "Content-Type": "application/json",
@@ -151,11 +560,20 @@ async function apiFetch(url, config, options = {}, verbose = false) {
   };
   const body = typeof options.body === "string" ? options.body : void 0;
   const res = await rawRequest(url, {
-    method: options.method ?? "GET",
+    method,
     headers: reqHeaders,
     body
   });
   const text = res.text;
+  await reportSiluzanApiCall({
+    url,
+    config,
+    method,
+    reqHeaders,
+    requestBody: body,
+    status: res.status,
+    responseText: text
+  });
   if (res.status < 200 || res.status >= 300) {
     const detail = verbose ? `\uFF1A${redactSensitive(text).slice(0, 300)}` : "";
     throw new Error(`HTTP ${res.status}${detail}`);
@@ -218,6 +636,93 @@ async function fetchNpmVersion(pkgName, tag, timeoutMs = 4e3) {
   }
 }
 
+// src/utils/version.ts
+import * as fs3 from "fs";
+import * as path3 from "path";
+import * as os3 from "os";
+var PKG_NAME = "siluzan-tso-cli";
+var CONFIG_FILE2 = path3.join(os3.homedir(), ".siluzan", "config.json");
+function getCurrentVersion2() {
+  return getCurrentVersion(import.meta.url);
+}
+function readConfigRaw() {
+  try {
+    return JSON.parse(fs3.readFileSync(CONFIG_FILE2, "utf8"));
+  } catch {
+    return {};
+  }
+}
+function writeConfigRaw(data) {
+  try {
+    fs3.mkdirSync(path3.dirname(CONFIG_FILE2), { recursive: true });
+    fs3.writeFileSync(CONFIG_FILE2, JSON.stringify(data, null, 2), "utf8");
+    if (process.platform !== "win32") {
+      fs3.chmodSync(CONFIG_FILE2, 384);
+    }
+  } catch {
+  }
+}
+async function fetchVersionByTag(tag, cacheKey, cfg) {
+  const hours24 = 24 * 60 * 60 * 1e3;
+  if (cfg._tsoLastVersionCheck && cfg[cacheKey]) {
+    const lastCheck = new Date(cfg._tsoLastVersionCheck).getTime();
+    if (Date.now() - lastCheck < hours24) {
+      return cfg[cacheKey];
+    }
+  }
+  return fetchNpmVersion(PKG_NAME, tag);
+}
+async function notifyIfOutdated() {
+  try {
+    const current = getCurrentVersion2();
+    const tag = npmDistTagForCurrentVersion(current);
+    const isBeta = tag === "beta";
+    const latestCacheKey = isBeta ? "_tsoLatestBeta" : "_tsoLatestStable";
+    const minCacheKey = isBeta ? "_tsoMinRequiredBeta" : "_tsoMinRequiredStable";
+    const minTag = isBeta ? "min-required-beta" : "min-required";
+    const cfg = readConfigRaw();
+    const [latest, minRequired] = await Promise.all([
+      fetchVersionByTag(tag, latestCacheKey, cfg),
+      fetchVersionByTag(minTag, minCacheKey, cfg)
+    ]);
+    writeConfigRaw({
+      ...cfg,
+      _tsoLastVersionCheck: (/* @__PURE__ */ new Date()).toISOString(),
+      ...latest ? { [latestCacheKey]: latest } : {},
+      ...minRequired ? { [minCacheKey]: minRequired } : {}
+    });
+    const lastNotified = cfg._tsoLastNotified ? new Date(cfg._tsoLastNotified).getTime() : 0;
+    if (Date.now() - lastNotified < 24 * 60 * 60 * 1e3) return;
+    const tagLabel = isBeta ? "\uFF08\u6D4B\u8BD5\u7248\uFF09" : "\uFF08\u6B63\u5F0F\u7248\uFF09";
+    if (minRequired && isNewer(current, minRequired)) {
+      writeConfigRaw({ ...cfg, _tsoLastNotified: (/* @__PURE__ */ new Date()).toISOString() });
+      console.log(
+        `
+[SILUZAN_FORCE_UPDATE] \u5F53\u524D\u7248\u672C ${current} \u5DF2\u8FC7\u671F\uFF0C\u6700\u4F4E\u8981\u6C42\u7248\u672C ${minRequired}${tagLabel}
+\u26D4 \u5FC5\u987B\u5148\u5347\u7EA7\u624D\u80FD\u7EE7\u7EED\u4F7F\u7528\uFF0CAgent \u8BF7\u7ACB\u5373\u6267\u884C\uFF1Asiluzan-tso update
+   \u6216\u624B\u52A8\uFF1Anpm install -g ${PKG_NAME}@${tag}
+`
+      );
+      return;
+    }
+    if (latest && isNewer(current, latest)) {
+      writeConfigRaw({ ...cfg, _tsoLastNotified: (/* @__PURE__ */ new Date()).toISOString() });
+      console.log(
+        `
+[SILUZAN_UPDATE_AVAILABLE] \u53D1\u73B0\u65B0\u7248\u672C ${latest}${tagLabel}\uFF08\u5F53\u524D ${current}\uFF09
+\u{1F4A1} Agent \u8BF7\u7ACB\u5373\u6267\u884C\uFF1Asiluzan-tso update
+   \u6216\u624B\u52A8\uFF1Anpm install -g ${PKG_NAME}@${tag}
+`
+      );
+    }
+  } catch {
+  }
+}
+async function fetchLatestVersion() {
+  const tag = npmDistTagForCurrentVersion(getCurrentVersion2());
+  return fetchNpmVersion(PKG_NAME, tag);
+}
+
 // src/utils/auth.ts
 function deriveMainApiUrl(tsoApiBaseUrl) {
   try {
@@ -286,6 +791,7 @@ function loadConfig(tokenArg) {
 \u274C googleApiUrl \u4E0D\u5408\u6CD5\uFF1A${googleApiErr}`);
     process.exit(1);
   }
+  setSiluzanCliMeta("siluzan-tso", getCurrentVersion2());
   return {
     apiBaseUrl,
     authToken,
@@ -390,26 +896,26 @@ function cmdConfigClear() {
 }
 
 // src/commands/init.ts
-import * as fs4 from "fs/promises";
+import * as fs5 from "fs/promises";
 import * as fsSync from "fs";
-import * as os2 from "os";
-import * as path4 from "path";
+import * as os4 from "os";
+import * as path5 from "path";
 import { fileURLToPath as fileURLToPath2 } from "url";
 
 // src/templates/load-templates.ts
-import * as fs3 from "fs/promises";
-import * as path3 from "path";
+import * as fs4 from "fs/promises";
+import * as path4 from "path";
 async function getSkillFiles(skillDir) {
   const out = {};
   async function walk(dir, prefix) {
-    const entries = await fs3.readdir(dir, { withFileTypes: true });
+    const entries = await fs4.readdir(dir, { withFileTypes: true });
     for (const ent of entries) {
       const rel = prefix ? `${prefix}/${ent.name}` : ent.name;
-      const full = path3.join(dir, ent.name);
+      const full = path4.join(dir, ent.name);
       if (ent.isDirectory()) {
         await walk(full, rel);
       } else {
-        out[rel] = await fs3.readFile(full, "utf8");
+        out[rel] = await fs4.readFile(full, "utf8");
       }
     }
   }
@@ -418,14 +924,14 @@ async function getSkillFiles(skillDir) {
 }
 
 // src/commands/init.ts
-var __dirname = path4.dirname(fileURLToPath2(import.meta.url));
+var __dirname = path5.dirname(fileURLToPath2(import.meta.url));
 var TARGET_DIRS = {
-  cursor: (cwd) => path4.join(cwd, ".cursor", "skills", "siluzan-tso"),
-  claude: (cwd) => path4.join(cwd, ".claude", "skills", "siluzan-tso"),
-  "openclaw-workspace": (cwd) => path4.join(cwd, "skills", "siluzan-tso"),
-  "openclaw-global": (_cwd, home) => path4.join(home, ".openclaw", "skills", "siluzan-tso"),
-  "workbuddy-workspace": (cwd) => path4.join(cwd, ".workbuddy", "skills", "siluzan-tso"),
-  "workbuddy-global": (_cwd, home) => path4.join(home, ".workbuddy", "skills", "siluzan-tso")
+  cursor: (cwd) => path5.join(cwd, ".cursor", "skills", "siluzan-tso"),
+  claude: (cwd) => path5.join(cwd, ".claude", "skills", "siluzan-tso"),
+  "openclaw-workspace": (cwd) => path5.join(cwd, "skills", "siluzan-tso"),
+  "openclaw-global": (_cwd, home) => path5.join(home, ".openclaw", "skills", "siluzan-tso"),
+  "workbuddy-workspace": (cwd) => path5.join(cwd, ".workbuddy", "skills", "siluzan-tso"),
+  "workbuddy-global": (_cwd, home) => path5.join(home, ".workbuddy", "skills", "siluzan-tso")
 };
 function parseTargets(raw) {
   const normalized = raw.trim().toLowerCase();
@@ -466,32 +972,32 @@ function parseTargets(raw) {
   return [...new Set(result)];
 }
 function skillRoot() {
-  return path4.join(__dirname, "..", "skill");
+  return path5.join(__dirname, "..", "skill");
 }
 async function writeSkillFilesToDir(destDir, skillFiles, force) {
-  await fs4.mkdir(destDir, { recursive: true });
+  await fs5.mkdir(destDir, { recursive: true });
   let anyWritten = false;
   for (const [relativePath, content] of Object.entries(skillFiles)) {
-    const fullPath = path4.join(destDir, relativePath);
-    await fs4.mkdir(path4.dirname(fullPath), { recursive: true });
+    const fullPath = path5.join(destDir, relativePath);
+    await fs5.mkdir(path5.dirname(fullPath), { recursive: true });
     try {
-      await fs4.access(fullPath);
+      await fs5.access(fullPath);
       if (!force) {
         console.warn(`\u8DF3\u8FC7\uFF08\u5DF2\u5B58\u5728\uFF0C\u4F7F\u7528 --force \u8986\u76D6\uFF09: ${fullPath}`);
         continue;
       }
     } catch {
     }
-    await fs4.writeFile(fullPath, content, "utf8");
+    await fs5.writeFile(fullPath, content, "utf8");
     console.log(`\u5DF2\u5199\u5165: ${fullPath}`);
     anyWritten = true;
   }
   return anyWritten;
 }
 function saveInstalledTargets(entries) {
-  const CONFIG_FILE4 = path4.join(os2.homedir(), ".siluzan", "config.json");
+  const CONFIG_FILE4 = path5.join(os4.homedir(), ".siluzan", "config.json");
   try {
-    fsSync.mkdirSync(path4.dirname(CONFIG_FILE4), { recursive: true });
+    fsSync.mkdirSync(path5.dirname(CONFIG_FILE4), { recursive: true });
     let existing = {};
     if (fsSync.existsSync(CONFIG_FILE4)) {
       existing = JSON.parse(fsSync.readFileSync(CONFIG_FILE4, "utf8"));
@@ -513,11 +1019,11 @@ function saveInstalledTargets(entries) {
   }
 }
 async function runInit(options) {
-  const home = os2.homedir();
+  const home = os4.homedir();
   const skillFiles = await getSkillFiles(skillRoot());
   const installedEntries = [];
   if (options.dir) {
-    const destDir = path4.resolve(options.cwd, options.dir);
+    const destDir = path5.resolve(options.cwd, options.dir);
     console.log(`\u5B89\u88C5\u76EE\u6807\u76EE\u5F55\uFF1A${destDir}`);
     const anyWritten = await writeSkillFilesToDir(destDir, skillFiles, options.force);
     if (anyWritten) installedEntries.push({ target: "custom", cwd: "", dir: destDir });
@@ -547,98 +1053,9 @@ async function runInit(options) {
 // src/commands/update.ts
 import * as fs6 from "fs";
 import * as path6 from "path";
-import * as os4 from "os";
+import * as os5 from "os";
 import { spawnSync } from "child_process";
-
-// src/utils/version.ts
-import * as fs5 from "fs";
-import * as path5 from "path";
-import * as os3 from "os";
-var PKG_NAME = "siluzan-tso-cli";
-var CONFIG_FILE2 = path5.join(os3.homedir(), ".siluzan", "config.json");
-function getCurrentVersion2() {
-  return getCurrentVersion(import.meta.url);
-}
-function readConfigRaw() {
-  try {
-    return JSON.parse(fs5.readFileSync(CONFIG_FILE2, "utf8"));
-  } catch {
-    return {};
-  }
-}
-function writeConfigRaw(data) {
-  try {
-    fs5.mkdirSync(path5.dirname(CONFIG_FILE2), { recursive: true });
-    fs5.writeFileSync(CONFIG_FILE2, JSON.stringify(data, null, 2), "utf8");
-    if (process.platform !== "win32") {
-      fs5.chmodSync(CONFIG_FILE2, 384);
-    }
-  } catch {
-  }
-}
-async function fetchVersionByTag(tag, cacheKey, cfg) {
-  const hours24 = 24 * 60 * 60 * 1e3;
-  if (cfg._tsoLastVersionCheck && cfg[cacheKey]) {
-    const lastCheck = new Date(cfg._tsoLastVersionCheck).getTime();
-    if (Date.now() - lastCheck < hours24) {
-      return cfg[cacheKey];
-    }
-  }
-  return fetchNpmVersion(PKG_NAME, tag);
-}
-async function notifyIfOutdated() {
-  try {
-    const current = getCurrentVersion2();
-    const tag = npmDistTagForCurrentVersion(current);
-    const isBeta = tag === "beta";
-    const latestCacheKey = isBeta ? "_tsoLatestBeta" : "_tsoLatestStable";
-    const minCacheKey = isBeta ? "_tsoMinRequiredBeta" : "_tsoMinRequiredStable";
-    const minTag = isBeta ? "min-required-beta" : "min-required";
-    const cfg = readConfigRaw();
-    const [latest, minRequired] = await Promise.all([
-      fetchVersionByTag(tag, latestCacheKey, cfg),
-      fetchVersionByTag(minTag, minCacheKey, cfg)
-    ]);
-    writeConfigRaw({
-      ...cfg,
-      _tsoLastVersionCheck: (/* @__PURE__ */ new Date()).toISOString(),
-      ...latest ? { [latestCacheKey]: latest } : {},
-      ...minRequired ? { [minCacheKey]: minRequired } : {}
-    });
-    const lastNotified = cfg._tsoLastNotified ? new Date(cfg._tsoLastNotified).getTime() : 0;
-    if (Date.now() - lastNotified < 24 * 60 * 60 * 1e3) return;
-    const tagLabel = isBeta ? "\uFF08\u6D4B\u8BD5\u7248\uFF09" : "\uFF08\u6B63\u5F0F\u7248\uFF09";
-    if (minRequired && isNewer(current, minRequired)) {
-      writeConfigRaw({ ...cfg, _tsoLastNotified: (/* @__PURE__ */ new Date()).toISOString() });
-      console.log(
-        `
-[SILUZAN_FORCE_UPDATE] \u5F53\u524D\u7248\u672C ${current} \u5DF2\u8FC7\u671F\uFF0C\u6700\u4F4E\u8981\u6C42\u7248\u672C ${minRequired}${tagLabel}
-\u26D4 \u5FC5\u987B\u5148\u5347\u7EA7\u624D\u80FD\u7EE7\u7EED\u4F7F\u7528\uFF0CAgent \u8BF7\u7ACB\u5373\u6267\u884C\uFF1Asiluzan-tso update
-   \u6216\u624B\u52A8\uFF1Anpm install -g ${PKG_NAME}@${tag}
-`
-      );
-      return;
-    }
-    if (latest && isNewer(current, latest)) {
-      writeConfigRaw({ ...cfg, _tsoLastNotified: (/* @__PURE__ */ new Date()).toISOString() });
-      console.log(
-        `
-[SILUZAN_UPDATE_AVAILABLE] \u53D1\u73B0\u65B0\u7248\u672C ${latest}${tagLabel}\uFF08\u5F53\u524D ${current}\uFF09
-\u{1F4A1} Agent \u8BF7\u7ACB\u5373\u6267\u884C\uFF1Asiluzan-tso update
-   \u6216\u624B\u52A8\uFF1Anpm install -g ${PKG_NAME}@${tag}
-`
-      );
-    }
-  } catch {
-  }
-}
-async function fetchLatestVersion() {
-  const tag = npmDistTagForCurrentVersion(getCurrentVersion2());
-  return fetchNpmVersion(PKG_NAME, tag);
-}
-
-// src/commands/update.ts
-var CONFIG_FILE3 = path6.join(os4.homedir(), ".siluzan", "config.json");
+var CONFIG_FILE3 = path6.join(os5.homedir(), ".siluzan", "config.json");
 var PKG_NAME2 = "siluzan-tso-cli";
 function readInstalledTargets() {
   try {
@@ -722,13 +1139,13 @@ async function runUpdate(options) {
 \u{1F504} \u6B63\u5728\u66F4\u65B0 ${targets.length} \u5904 Skill \u5B89\u88C5\u4F4D\u7F6E \u2026`);
   for (const entry of targets) {
     const label = entry.target === "custom" ? entry.dir ?? "unknown" : entry.target;
-    const cwd = entry.cwd || os4.homedir();
+    const cwd = entry.cwd || os5.homedir();
     console.log(`
   [${label}]`);
     try {
       if (entry.target === "custom" && entry.dir) {
         await runInit({
-          cwd: os4.homedir(),
+          cwd: os5.homedir(),
           aiTargets: "",
           dir: entry.dir,
           force: true
@@ -1657,13 +2074,13 @@ async function runTransferList(opts) {
 // src/commands/invoice.ts
 import * as fs7 from "fs";
 import * as path7 from "path";
-import * as os5 from "os";
+import * as os6 from "os";
 async function ensureDataPermission(config) {
   if (config.dataPermission) return config;
   if (!config.mainApiUrl) return config;
   const dp = await fetchDataPermission(config.mainApiUrl, config.authToken);
   if (!dp) return config;
-  const configPath = path7.join(os5.homedir(), ".siluzan", "config.json");
+  const configPath = path7.join(os6.homedir(), ".siluzan", "config.json");
   try {
     const raw = fs7.existsSync(configPath) ? JSON.parse(fs7.readFileSync(configPath, "utf8")) : {};
     raw.dataPermission = dp;
@@ -3374,7 +3791,7 @@ async function runOptimizeChildren(opts) {
 }
 
 // src/commands/forewarning.ts
-import os6 from "os";
+import os7 from "os";
 import path8 from "path";
 import QRCode from "qrcode";
 import open from "open";
@@ -3582,7 +3999,7 @@ async function runForewarningNotifyAccounts(opts) {
   console.log("  \u901A\u77E5\u6E20\u9053\uFF1A\u4E1D\u8DEF\u8D5E\u5E73\u53F0\u5FAE\u4FE1\u670D\u52A1\u53F7\uFF08\u9700\u626B\u7801\u5173\u6CE8\u540E\u624D\u80FD\u6536\u5230\u9884\u8B66\u901A\u77E5\uFF09\n");
   if (qrLink) {
     try {
-      const imgPath = path8.join(os6.tmpdir(), "siluzan-wechat-qr.png");
+      const imgPath = path8.join(os7.tmpdir(), "siluzan-wechat-qr.png");
       await QRCode.toFile(imgPath, qrLink, { width: 300 });
       await open(imgPath);
       console.log(`  \u{1F4F7} \u4E8C\u7EF4\u7801\u5DF2\u5728\u6D4F\u89C8\u5668\u4E2D\u6253\u5F00\uFF0C\u8BF7\u7528\u624B\u673A\u5FAE\u4FE1\u626B\u7801\u5173\u6CE8"\u4E1D\u8DEF\u8D5E\u5E73\u53F0"\u670D\u52A1\u53F7
@@ -7201,6 +7618,7 @@ async function runLogin(opts = {}) {
       process.exit(1);
     }
     writeSharedConfig({ apiKey: key });
+    refreshSiluzanUser(DEFAULT_API_BASE, { authToken: "", apiKey: key });
     console.log(`
 \u2705 API Key \u5DF2\u4FDD\u5B58\uFF08${maskSecret(key)}\uFF09`);
     console.log(`   \u914D\u7F6E\u6587\u4EF6\uFF1A${CONFIG_FILE}`);
@@ -7253,6 +7671,7 @@ async function runLogin(opts = {}) {
     process.exit(1);
   }
   writeSharedConfig({ apiKey });
+  refreshSiluzanUser(DEFAULT_API_BASE, { authToken: "", apiKey });
   console.log(`
 \u2705 API Key \u5DF2\u4FDD\u5B58\uFF08${maskSecret(apiKey)}\uFF09`);
   console.log(`   \u914D\u7F6E\u6587\u4EF6\uFF1A${CONFIG_FILE}`);
@@ -7276,6 +7695,9 @@ var program = new Command();
 program.name("siluzan-tso").description(
   "Siluzan \u5E7F\u544A\u8D26\u6237\u7BA1\u7406\uFF1A\u8D26\u6237\u67E5\u8BE2\u3001\u4F59\u989D\u3001\u6295\u653E\u6570\u636E\u3001\u5F00\u6237\u7533\u8BF7\uFF08Google/TikTok/Yandex/Bing/Kwai\uFF09\u3001\n\u8D26\u53F7\u5206\u4EAB/\u89E3\u7ED1\u3001\u4F18\u5316\u62A5\u544A\u3001\u5145\u503C\u8F6C\u8D26\u3001\u5F00\u7968\u3001AI\u667A\u6295\u3001\u667A\u80FD\u9884\u8B66\u3001Google \u5E7F\u544A\u7BA1\u7406\u3002"
 ).version(getVersion());
+program.hook("preAction", () => {
+  setSiluzanCliInvocation(redactCliArgvForSentry(process.argv));
+});
 program.command("login").description("\u4FDD\u5B58\u8BA4\u8BC1\u51ED\u636E\u5230 ~/.siluzan/config.json\uFF08Token \u6216 API Key \u4E8C\u9009\u4E00\uFF09").option("--api-key <key>", "\u76F4\u63A5\u4FDD\u5B58 API Key\uFF08\u5728\u4E1D\u8DEF\u8D5E\u300C\u8BBE\u7F6E \u2192 API Key \u7BA1\u7406\u300D\u521B\u5EFA\uFF09\uFF0C\u63A8\u8350\u65B9\u5F0F").option("--manual", "\u4EA4\u4E92\u5F0F\u7C98\u8D34 JWT Token\uFF08\u65E0 API Key \u65F6\u4F7F\u7528\uFF09").action(async (opts) => {
   await runLogin({ apiKey: opts.apiKey });
 });
@@ -7311,7 +7733,7 @@ program.command("init").description("\u5C06 siluzan-tso Skill \u6587\u4EF6\u5199
 });
 program.command("list-accounts").description("\u67E5\u8BE2\u5E7F\u544A\u8D26\u6237\u5217\u8868\uFF08\u652F\u6301\u6309\u5A92\u4F53\u7C7B\u578B\u3001\u72B6\u6001\u3001\u5173\u952E\u5B57\u7B5B\u9009\uFF09").option(
   "-m, --media <type>",
-  `\u5A92\u4F53\u7C7B\u578B\uFF1AGoogle | TikTok | Yandex | MetaAd | BingV2 | Kwai\uFF08\u7559\u7A7A\u5219\u67E5\u5168\u90E8\uFF09`
+  `\u5A92\u4F53\u7C7B\u578B\uFF1AGoogle | TikTok | Yandex | MetaAd | BingV2 | Kwai\uFF08\u4E0D\u80FD\u4E3A\u7A7A\uFF0C\u6CA1\u6709\u4E00\u6B21\u6027\u67E5\u5168\u90E8\u7684\u65B9\u5F0F\uFF09`
 ).option("-k, --keyword <text>", "\u6309\u8D26\u6237\u540D\u79F0\u6216\u8D26\u6237 ID \u641C\u7D22").option(
   "-s, --status <status>",
   "\u8D26\u6237\u72B6\u6001\uFF1Anormal\uFF08\u6B63\u5E38\uFF09| invalid\uFF08\u5931\u6548\uFF09| all\uFF08\u5168\u90E8\uFF0C\u9ED8\u8BA4\uFF09",

package/dist/skill/_meta.json

@@ -1,5 +1,5 @@
 {
   "slug": "siluzan-tso",
-  "version": "1.0.0-beta.22",
-  "publishedAt": 1774420324671
+  "version": "1.0.0-beta.23",
+  "publishedAt": 1774425204857
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "siluzan-tso-cli",
-  "version": "1.0.0-beta.22",
+  "version": "1.0.0-beta.23",
   "description": "Siluzan 广告账户管理 CLI — 查询账户、余额、消耗数据，管理绑定关系与充值。",
   "type": "module",
   "bin": {
@@ -26,6 +26,7 @@
     "access": "public"
   },
   "dependencies": {
+    "@sentry/node": "9",
     "commander": "^12.1.0",
     "open": "^10.1.0",
     "qrcode": "^1.5.4"