social-autoposter 1.6.52 → 1.6.53

package/bin/cli.js

@@ -520,31 +520,43 @@ function installBrowserHarness() {
   }
 
   // Step 2 + 3: clone + `uv tool install -e .` browser-harness.
+  //
+  // PINNED to a known-good upstream commit instead of tracking origin/HEAD.
+  // The installer used to fetch+reset --hard to HEAD on every run, so any
+  // upstream change shipped to users untested (this is how the two-blank-tab
+  // regression in upstream daemon.py attach behavior could reach users). Our
+  // launch-at-real-URL fix in server.py/twitter-backend.sh neutralizes that
+  // class of bug regardless, but pinning stops surprise upstream drift. Bump
+  // BROWSER_HARNESS_PIN deliberately after validating a newer upstream against
+  // the shipped server.py contract.
+  const BROWSER_HARNESS_PIN = '6d20866664ea3d9691b27bbf64f42ae097437dc3';
   const harnessDir = path.join(HOME, 'Developer', 'browser-harness');
+  const pinHarness = () => {
+    // Fetch the exact pinned commit (GitHub serves arbitrary SHAs) and hard-
+    // reset onto it. Works for a fresh clone and an existing checkout alike.
+    const fetch = spawnSync('git', ['-C', harnessDir, 'fetch', '--depth', '1', 'origin', BROWSER_HARNESS_PIN], { stdio: 'inherit' });
+    if (fetch.status !== 0) {
+      console.warn(`    WARNING: could not fetch pinned browser-harness commit ${BROWSER_HARNESS_PIN.slice(0, 9)}; using existing checkout.`);
+      return;
+    }
+    const reset = spawnSync('git', ['-C', harnessDir, 'reset', '--hard', 'FETCH_HEAD'], { stdio: 'inherit' });
+    if (reset.status !== 0) {
+      console.warn('    WARNING: could not reset browser-harness clone to pinned commit; using existing checkout.');
+    }
+  };
   if (!fs.existsSync(harnessDir)) {
     fs.mkdirSync(path.dirname(harnessDir), { recursive: true });
     console.log('    cloning browser-harness from GitHub...');
     const clone = spawnSync('git', ['clone', '--depth', '1', 'https://github.com/browser-use/browser-harness', harnessDir], { stdio: 'inherit' });
     if (clone.status !== 0) {
       console.warn('    WARNING: git clone failed; twitter-harness will not work until you clone manually.');
-    }
-  } else {
-    // Refresh the existing clone instead of silently reusing it. server.py
-    // invokes `browser-harness -c <script>`; a stale checkout that predates the
-    // `-c` interface (or otherwise drifted from upstream) makes every bh_run
-    // return the CLI usage string while looking "installed". fetch+reset --hard
-    // to current upstream so the installed CLI always matches the shipped
-    // server.py contract.
-    console.log(`    browser-harness clone exists -> ${harnessDir}; updating to latest...`);
-    const fetch = spawnSync('git', ['-C', harnessDir, 'fetch', '--depth', '1', 'origin', 'HEAD'], { stdio: 'inherit' });
-    if (fetch.status === 0) {
-      const reset = spawnSync('git', ['-C', harnessDir, 'reset', '--hard', 'FETCH_HEAD'], { stdio: 'inherit' });
-      if (reset.status !== 0) {
-        console.warn('    WARNING: could not reset browser-harness clone to latest; using existing checkout.');
-      }
     } else {
-      console.warn('    WARNING: could not fetch browser-harness updates; using existing checkout.');
+      console.log(`    pinning browser-harness to ${BROWSER_HARNESS_PIN.slice(0, 9)}...`);
+      pinHarness();
     }
+  } else {
+    console.log(`    browser-harness clone exists -> ${harnessDir}; pinning to ${BROWSER_HARNESS_PIN.slice(0, 9)}...`);
+    pinHarness();
   }
 
   if (uvBin && fs.existsSync(harnessDir)) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "social-autoposter",
-  "version": "1.6.52",
+  "version": "1.6.53",
   "description": "Automated social posting pipeline for Reddit, X/Twitter, LinkedIn, and Moltbook. Install as a Claude Code agent skill.",
   "bin": {
     "social-autoposter": "bin/cli.js"

package/scripts/a16z_pearx_calendar_reminders.py

@@ -0,0 +1,99 @@
+#!/usr/bin/env python3
+"""One-shot: create recurring accelerator-application reminders in
+matt@mediar.ai's Google Calendar via DWD (same SA as the gmail keepalive),
+requesting a calendar scope. If the scope isn't authorized in the mediar.ai
+Workspace DWD config, this fails with unauthorized_client and we fall back.
+"""
+import json, time, urllib.parse, urllib.request, urllib.error
+import google.auth
+from google.auth.transport.requests import Request
+from googleapiclient.discovery import build
+
+SA_EMAIL = "gmail-dwd-impersonator@gmail-api-integration-486018.iam.gserviceaccount.com"
+TARGET_USER = "matt@mediar.ai"
+SCOPE = "https://www.googleapis.com/auth/calendar"
+
+
+def mint_access_token():
+    creds, _ = google.auth.default(
+        scopes=["https://www.googleapis.com/auth/cloud-platform"]
+    )
+    creds.refresh(Request())
+    iat = int(time.time()); exp = iat + 3600
+    claim = {"iss": SA_EMAIL, "sub": TARGET_USER, "scope": SCOPE,
+             "aud": "https://oauth2.googleapis.com/token", "iat": iat, "exp": exp}
+    iam = build("iamcredentials", "v1", credentials=creds, cache_discovery=False)
+    signed = iam.projects().serviceAccounts().signJwt(
+        name=f"projects/-/serviceAccounts/{SA_EMAIL}",
+        body={"payload": json.dumps(claim)}).execute()
+    body = urllib.parse.urlencode({
+        "grant_type": "urn:ietf:params:oauth:grant-type:jwt-bearer",
+        "assertion": signed["signedJwt"]}).encode()
+    req = urllib.request.Request("https://oauth2.googleapis.com/token", data=body,
+        headers={"Content-Type": "application/x-www-form-urlencoded"})
+    try:
+        with urllib.request.urlopen(req, timeout=30) as resp:
+            return json.loads(resp.read())["access_token"]
+    except urllib.error.HTTPError as e:
+        raise RuntimeError(f"token exchange {e.code}: {e.read().decode()}") from None
+
+
+def main():
+    from google.oauth2.credentials import Credentials
+    token = mint_access_token()
+    cal = build("calendar", "v3", credentials=Credentials(token=token),
+                cache_discovery=False)
+
+    events = [
+        {
+            "summary": "Apply to a16z Speedrun (next cohort) - S4L",
+            "start": "2026-09-15",
+            "rrule": "RRULE:FREQ=MONTHLY;INTERVAL=4",
+            "description": (
+                "Reapply S4L to a16z Speedrun. Speedrun runs ~3 cohorts/year; "
+                "this fires every 4 months so you catch the next deadline.\n\n"
+                "Apply: https://speedrun.a16z.com/apply (start with email i@m13v.com)\n"
+                "Status / update existing app: https://speedrun.a16z.com/application-login\n\n"
+                "Reuse the saved answer set (pitch, traction, funding, founder bio). "
+                "Last filled 2026-06-03; still need citizenship, university, years of "
+                "experience, last-round date, and the 3 investor emails."
+            ),
+        },
+        {
+            "summary": "Apply to PearX (next batch) - S4L",
+            "start": "2026-10-01",
+            "rrule": "RRULE:FREQ=MONTHLY;INTERVAL=6",
+            "description": (
+                "Reapply S4L to PearX. Pear runs 2 batches/year (summer + winter); "
+                "this fires every 6 months for the next window.\n\n"
+                "Apply: https://pear.vc/pearx-application/ (Airtable form; long-text "
+                "fields are contenteditable divs)\n\n"
+                "Reuse the saved answer set. PearX S26 app was filled 2026-06-03 "
+                "(left for review, not submitted)."
+            ),
+        },
+    ]
+
+    created = []
+    for ev in events:
+        body = {
+            "summary": ev["summary"],
+            "description": ev["description"],
+            "start": {"date": ev["start"]},
+            "end": {"date": ev["start"]},
+            "recurrence": [ev["rrule"]],
+            "reminders": {"useDefault": False, "overrides": [
+                {"method": "popup", "minutes": 24 * 60},
+                {"method": "email", "minutes": 24 * 60},
+            ]},
+            "transparency": "transparent",
+        }
+        out = cal.events().insert(calendarId="primary", body=body).execute()
+        created.append((ev["summary"], out.get("htmlLink")))
+
+    for s, link in created:
+        print(f"CREATED: {s}\n  {link}")
+
+
+if __name__ == "__main__":
+    main()

package/scripts/linkedin_killswitch.py

@@ -152,6 +152,24 @@ def _now_iso():
     return datetime.now(timezone.utc).strftime("%Y-%m-%dT%H:%M:%SZ")
 
 
+def _fmt_local(iso_or_dt):
+    """Render a UTC ISO string (or datetime) in the machine's local timezone for
+    human-readable emails, e.g. '2026-06-03 16:35 PDT'. Falls back to the raw
+    input on any parse failure so the email still goes out."""
+    try:
+        dt = iso_or_dt
+        if isinstance(dt, str):
+            dt = _parse_ts(dt)
+        if dt is None:
+            return str(iso_or_dt)
+        if dt.tzinfo is None:
+            dt = dt.replace(tzinfo=timezone.utc)
+        local = dt.astimezone()
+        return local.strftime("%Y-%m-%d %I:%M %p %Z").replace(" 0", " ")
+    except Exception:
+        return str(iso_or_dt)
+
+
 def _ensure_dir():
     os.makedirs(STATE_DIR, exist_ok=True)
 
@@ -1125,7 +1143,7 @@ def _cmd_recover_record(args):
                         "",
                         "We are NOT giving up: pipelines stay paused and we will make",
                         "one more login attempt after the restriction lifts, at",
-                        "  " + str(retry_at) + " (UTC)",
+                        "  " + _fmt_local(retry_at) + "  (" + str(retry_at) + " UTC)",
                         "This is attempt " + str(attempts) + " of "
                         + str(RECOVERY_RESTRICTED_MAX_ATTEMPTS) + ".",
                         "",