switchroom 0.15.36 → 0.15.38

package/dist/cli/switchroom.js

@@ -13565,7 +13565,7 @@ var init_schema = __esm(() => {
   ScheduleEntrySchema = exports_external.object({
     cron: exports_external.string().describe("Cron expression (e.g., '0 8 * * *')"),
     prompt: exports_external.string().optional().describe("Prompt to send at the scheduled time (the escalation prompt when " + "kind=poll; templated with {{diff}}). Required for kind prompt/poll; " + "absent for kind=action (an action has no model fire, so no prompt)."),
-    kind: exports_external.enum(["poll", "prompt", "action"]).optional().describe("Tier-0 routing (docs/rfcs/cheap-cron-sessions.md). 'prompt' (default) " + "fires a model turn every tick (Tier 1/2 per `context`). 'poll' runs a " + "model-free deterministic check (requires `poll`) and only escalates to " + "a model fire on a hit. 'action' runs a model-free deterministic verb " + "(requires `action`) that COMPLETES the work and never escalates \u2014 zero " + "tokens, no session. poll/prompt tiering is on by default " + "(SWITCHROOM_CHEAP_CRON=0 is the kill-switch); an action is model-free " + "regardless (the kill-switch governs model tiering, not deterministic " + "actions)."),
+    kind: exports_external.enum(["poll", "prompt", "action"]).optional().describe("Tier-0 routing (reference/rfcs/cheap-cron-sessions.md). 'prompt' (default) " + "fires a model turn every tick (Tier 1/2 per `context`). 'poll' runs a " + "model-free deterministic check (requires `poll`) and only escalates to " + "a model fire on a hit. 'action' runs a model-free deterministic verb " + "(requires `action`) that COMPLETES the work and never escalates \u2014 zero " + "tokens, no session. poll/prompt tiering is on by default " + "(SWITCHROOM_CHEAP_CRON=0 is the kill-switch); an action is model-free " + "regardless (the kill-switch governs model tiering, not deterministic " + "actions)."),
     poll: PollSpecSchema.optional().describe("Required iff kind=poll. The declarative poll spec."),
     action: ActionSpecSchema.optional().describe("Required iff kind=action. The declarative action spec (telegram-message or webhook)."),
     model: exports_external.string().optional().describe("Cron model hint. Reactivated by SWITCHROOM_CHEAP_CRON (was DEPRECATED/" + "IGNORED in v0.8). A known-cheap id (sonnet/haiku family) routes the " + "fire to a fresh cheap cron session (Tier 1, `context: fresh`); 'opus', " + "a custom id, or unset routes to the agent's live session (Tier 2, " + "`context: agent`) \u2014 the conservative default that preserves pre-v0.8 " + "behaviour. Note: a live session's model is fixed at launch, so on Tier " + "2 this is informational. See docs/scheduling.md."),
@@ -13574,7 +13574,7 @@ var init_schema = __esm(() => {
     topic: exports_external.union([
       exports_external.string().min(1, "topic alias must be non-empty"),
       exports_external.number().int().positive("topic ID must be a positive integer")
-    ]).optional().describe("Forum topic this cron fires into when the owning agent is in " + "supergroup-owned mode (channels.telegram.chat_id set). Either a " + 'string alias resolved against `topic_aliases` (e.g. "planning") ' + "or a numeric topic ID. Falls back to the agent's `default_topic_id` " + "when unset. Ignored for agents in fleet-shared or dm_only mode. " + "Alias-resolution happens at config-load \u2014 typos surface immediately. " + "See docs/rfcs/supergroup-mode.md.")
+    ]).optional().describe("Forum topic this cron fires into when the owning agent is in " + "supergroup-owned mode (channels.telegram.chat_id set). Either a " + 'string alias resolved against `topic_aliases` (e.g. "planning") ' + "or a numeric topic ID. Falls back to the agent's `default_topic_id` " + "when unset. Ignored for agents in fleet-shared or dm_only mode. " + "Alias-resolution happens at config-load \u2014 typos surface immediately. " + "See reference/rfcs/supergroup-mode.md.")
   }).superRefine((entry, ctx) => {
     const kind = entry.kind ?? "prompt";
     if (kind === "poll" && !entry.poll) {
@@ -13747,15 +13747,15 @@ var init_schema = __esm(() => {
     webhook_rate_limit: exports_external.object({
       rpm: exports_external.number().int().positive()
     }).optional().describe("Per-source rate limit for the webhook ingest path (#714). " + "Off by default \u2014 when this key is absent the handler skips " + "rate-limit checks entirely. Opt in by setting `rpm` to an " + "integer requests-per-minute (token bucket per (agent, source); " + "burst equal to rpm). When enabled, exceeding the limit returns " + "429 with Retry-After header; first throttle event per " + "(agent, source) per 60s window is written to " + "<agent>/telegram/issues.jsonl. " + "Cascades from defaults.channels.telegram.webhook_rate_limit."),
-    webhook_via_gateway: exports_external.boolean().optional().describe("Route verified webhook events to the agent's in-container gateway " + "over a peercred-gated UDS (<agent>/telegram/webhook.sock) instead " + "of having the host-side web receiver write the agent dir directly. " + "Required under the Docker runtime: the receiver runs as the host " + "operator UID and cannot write the per-agent-UID-owned agent dir " + "(EACCES 500) nor connect the gateway socket. When true the gateway " + "(running as the agent UID) becomes the sole writer of " + "webhook-events.jsonl + dedup/cooldown state and also fires " + "webhook_dispatch. Off by default for back-compat with host-runtime " + "installs. See docs/rfcs/webhook-via-gateway-socket.md."),
-    webhook_require_edge: exports_external.boolean().optional().describe("Cloudflare-only edge lock: require the X-Switchroom-Edge header " + "(injected by a Cloudflare Transform Rule on hooks.switchroom.ai) to " + "match the operator's edge secret at ~/.switchroom/webhook-edge-secret " + "before any HMAC verification; reject 403 otherwise. Proves the " + "request entered through our Cloudflare edge \u2014 the per-agent HMAC " + "alone can't (it proves body provenance, not network path). Stacks " + "on the GitHub-IP WAF + per-agent HMAC. Fail-closed: when required " + "but the secret file is missing/empty every request is rejected. Off " + "by default. See docs/rfcs/webhook-cloudflare-edge-lock.md."),
+    webhook_via_gateway: exports_external.boolean().optional().describe("Route verified webhook events to the agent's in-container gateway " + "over a peercred-gated UDS (<agent>/telegram/webhook.sock) instead " + "of having the host-side web receiver write the agent dir directly. " + "Required under the Docker runtime: the receiver runs as the host " + "operator UID and cannot write the per-agent-UID-owned agent dir " + "(EACCES 500) nor connect the gateway socket. When true the gateway " + "(running as the agent UID) becomes the sole writer of " + "webhook-events.jsonl + dedup/cooldown state and also fires " + "webhook_dispatch. Off by default for back-compat with host-runtime " + "installs. See reference/rfcs/webhook-via-gateway-socket.md."),
+    webhook_require_edge: exports_external.boolean().optional().describe("Cloudflare-only edge lock: require the X-Switchroom-Edge header " + "(injected by a Cloudflare Transform Rule on hooks.switchroom.ai) to " + "match the operator's edge secret at ~/.switchroom/webhook-edge-secret " + "before any HMAC verification; reject 403 otherwise. Proves the " + "request entered through our Cloudflare edge \u2014 the per-agent HMAC " + "alone can't (it proves body provenance, not network path). Stacks " + "on the GitHub-IP WAF + per-agent HMAC. Fail-closed: when required " + "but the secret file is missing/empty every request is rejected. Off " + "by default. See reference/rfcs/webhook-cloudflare-edge-lock.md."),
     linear_agent: exports_external.object({
       enabled: exports_external.boolean(),
       token: exports_external.string().describe("vault:<key> reference to the Linear OAuth app token (actor=app). " + "Resolved at runtime via the vault broker (canonically " + "vault:linear/<agent>/token). Never an inline literal."),
       workspace_id: exports_external.string().optional().describe("Optional Linear workspace (organization) id this agent is " + "installed into. Informational \u2014 used for setup hints and " + "multi-workspace disambiguation; the token already scopes the " + "app to its workspace."),
       default_team_id: exports_external.string().optional().describe("Optional Linear team id new captured issues file into when the " + "agent doesn't pass an explicit team_id. Unnecessary for a " + "single-team workspace (auto-resolved); set it only when the " + "workspace has multiple teams. Manage via " + "`switchroom linear-agent set-team <agent> <team>`.")
     }).optional().describe("Linear first-class agent integration (#2298). When enabled, the " + "agent appears in a Linear workspace as an app actor (own name/" + "avatar, @-mentionable, delegate-assignable). Linear AgentSessionEvent " + "webhooks (mention / delegation) wake the agent instantly via the " + "same gateway inject path as webhook_dispatch, tagged " + 'meta.source="linear" with the agent_session_id, and the agent ' + "responds with structured AgentActivity (thought/message/complete/" + "error) via the linear_agent_activity MCP tool. Builds the " + "session-lifecycle layer on top of the plain webhook_sources:[linear] " + "+ webhook_dispatch support (#2272). The OAuth app token is stored in " + "the vault and referenced here as vault:linear/<agent>/token; run " + "`switchroom linear-agent setup <agent>` to provision it. Off by " + "default \u2014 opt in per agent. Cascades from " + "defaults.channels.telegram.linear_agent."),
-    chat_id: exports_external.string().regex(/^-\d+$/, 'supergroup chat_id must be a negative integer as a string (e.g. "-1001234567890")').optional().describe("Per-agent supergroup ID \u2014 overrides fleet `telegram.forum_chat_id`. " + "When set, requires `default_topic_id`. Negative integer as string. " + "Forbidden when `dm_only: true`. See docs/rfcs/supergroup-mode.md."),
+    chat_id: exports_external.string().regex(/^-\d+$/, 'supergroup chat_id must be a negative integer as a string (e.g. "-1001234567890")').optional().describe("Per-agent supergroup ID \u2014 overrides fleet `telegram.forum_chat_id`. " + "When set, requires `default_topic_id`. Negative integer as string. " + "Forbidden when `dm_only: true`. See reference/rfcs/supergroup-mode.md."),
     default_topic_id: exports_external.number().int().positive().optional().describe("Forum topic ID this agent's automated outbounds default to when " + "no more-specific alias resolves. Defaults to General (topic 1) when " + "`chat_id` is set and this is omitted \u2014 set it only to pin a different " + "fallback topic. " + "Telegram's General topic is `id=1` at MTProto but sends omit the " + "field \u2014 the outbound wrapper strips `message_thread_id === 1` " + "on send. Forbidden when `dm_only: true`."),
     topic_aliases: exports_external.record(exports_external.string(), exports_external.number().int().positive()).optional().describe("Operator-friendly names for forum topic IDs (e.g. " + "`{ general: 1, planning: 17, cron: 23, admin: 31, alerts: 41 }`). " + "Referenced from per-cron `topic:` fields and the outbound router " + "for autonomous events (boot \u2192 alerts, hostd \u2192 admin, etc.). " + "Cascades per-key through defaults \u2192 profile \u2192 agent.")
   }).optional().superRefine((tg, ctx) => {
@@ -13981,7 +13981,7 @@ var init_schema = __esm(() => {
     drive: AgentGoogleWorkspaceConfigSchema.describe("RFC D legacy key \u2014 use `google_workspace:` instead. Per-agent " + "google_workspace overrides (currently approvers + tier). When set, " + "replaces the top-level approvers list for this agent. " + "google_client_id/secret are not per-agent \u2014 they live at the top level."),
     google_workspace: AgentGoogleWorkspaceConfigSchema.describe("RFC G canonical key. Per-agent Google Workspace overrides \u2014 currently " + "approvers (replaces, does not extend the top-level list) and tier " + "(`core` | `extended` | `complete`, replaces top-level default). " + "google_client_id/secret are not per-agent \u2014 they live at the top level. " + "Mutually exclusive with `drive:` on the same agent (loader fails fast " + "if both are set)."),
     microsoft_workspace: AgentMicrosoftWorkspaceConfigSchema.describe("RFC #1873 (Microsoft 365 integration). Per-agent Microsoft Workspace " + "override \u2014 pins the Microsoft account this agent reads via the " + "auth-broker (must be a key in top-level `microsoft_accounts:` with " + "this agent in its `enabled_for[]`) and optionally overrides org_mode. " + "microsoft_client_id/secret are not per-agent."),
-    notion_workspace: AgentNotionWorkspaceConfigSchema.describe("RFC docs/rfcs/notion-integration.md. Per-agent Notion access. " + "Presence opts the agent IN (launcher scaffolded, MCP entry emitted, " + "broker grants the integration token). Optional `databases:` filter " + "narrows which DBs this agent may read/write \u2014 names must resolve in " + "top-level notion_workspace.databases. Absence opts the agent OUT."),
+    notion_workspace: AgentNotionWorkspaceConfigSchema.describe("RFC reference/rfcs/notion-integration.md. Per-agent Notion access. " + "Presence opts the agent IN (launcher scaffolded, MCP entry emitted, " + "broker grants the integration token). Optional `databases:` filter " + "narrows which DBs this agent may read/write \u2014 names must resolve in " + "top-level notion_workspace.databases. Absence opts the agent OUT."),
     repos: exports_external.record(exports_external.string().regex(/^[a-z0-9][a-z0-9-]*$/, "Repo slug must be kebab-case ASCII: start with a lowercase letter or digit, contain only lowercase letters, digits, and hyphens"), exports_external.object({
       url: exports_external.string().min(1).describe("Git remote URL for the repo (e.g. 'git@github.com:org/repo.git' or " + "'https://github.com/org/repo.git'). Used verbatim for git clone."),
       branch_default: exports_external.string().optional().describe("Default branch to track (defaults to the remote's HEAD, typically 'main'). " + "The per-agent branch 'agent/<agentName>/main' fast-forwards to this branch " + "when the worktree is clean on session start.")
@@ -14116,9 +14116,9 @@ var init_schema = __esm(() => {
     drive: GoogleWorkspaceConfigSchema.describe("RFC D legacy key \u2014 use `google_workspace:` instead. Optional Google " + "Workspace onboarding configuration. When set, supplies Google OAuth " + "client credentials, the approver allowlist for `switchroom drive " + "connect`, and the optional tier knob. Env vars " + "(SWITCHROOM_GOOGLE_CLIENT_ID, SWITCHROOM_GOOGLE_CLIENT_SECRET, " + "SWITCHROOM_APPROVER_USER_ID) take precedence over this block when " + "set, preserving back-compat with the env-only flow shipped in #766."),
     google_workspace: GoogleWorkspaceConfigSchema.describe("RFC G canonical key. Top-level Google Workspace configuration \u2014 " + "OAuth client credentials, approver allowlist, and tier knob (`core` " + "| `extended` | `complete`, default `core`). Mutually exclusive with " + "`drive:` at the top level (loader fails fast if both are set)."),
     microsoft_workspace: MicrosoftWorkspaceConfigSchema.describe("RFC #1873 (Microsoft 365 integration). Top-level Microsoft Workspace " + "configuration \u2014 OAuth client credentials (Entra app), authority " + "endpoint (defaults to /common for personal MSA + work), and the " + "org_mode opt-in for Teams/SharePoint surfaces. Block is optional; " + "when omitted the broker does not register the Microsoft provider."),
-    notion_workspace: NotionWorkspaceConfigSchema.describe("RFC docs/rfcs/notion-integration.md. Top-level Notion integration " + "config \u2014 vault key for the integration token, friendly-name \u2192 " + "database UUID map, optional MCP-package version pin, and optional " + "global rate-limit override (default 3 rps, Notion's documented " + "public-API limit). Block is optional; when omitted no agent gets a " + "Notion MCP entry regardless of per-agent config."),
+    notion_workspace: NotionWorkspaceConfigSchema.describe("RFC reference/rfcs/notion-integration.md. Top-level Notion integration " + "config \u2014 vault key for the integration token, friendly-name \u2192 " + "database UUID map, optional MCP-package version pin, and optional " + "global rate-limit override (default 3 rps, Notion's documented " + "public-API limit). Block is optional; when omitted no agent gets a " + "Notion MCP entry regardless of per-agent config."),
     quota: QuotaConfigSchema.optional().describe("Optional weekly/monthly USD spend budgets rendered in the session " + "greeting. Usage is read from ccusage at runtime; no network calls."),
-    host_control: HostControlConfigSchema.default({}).describe("Host-control daemon configuration. Defaults to enabled=true since " + "RFC C Phase 2 (docs/rfcs/host-control-daemon.md). Omit the block " + "to accept defaults; set `enabled: false` only on legacy systemd-" + "mode installs (removal tracked as RFC C Phase 3)."),
+    host_control: HostControlConfigSchema.default({}).describe("Host-control daemon configuration. Defaults to enabled=true since " + "RFC C Phase 2 (reference/rfcs/host-control-daemon.md). Omit the block " + "to accept defaults; set `enabled: false` only on legacy systemd-" + "mode installs (removal tracked as RFC C Phase 3)."),
     hostd: HostdConfigSchema.default({}).describe("hostd verb-level knobs (RFC admin-agent-config-edit). Distinct " + "from `host_control:` which governs whether the daemon runs at " + "all. Scopes the opt-in flag and rate cap for the " + "`config_propose_edit` verb (disabled by default)."),
     web_service: WebServiceConfigSchema.default({}).describe("Web-service container (dashboard + GitHub-webhook receiver) config. " + "Defaults to managed=false so existing systemd-mode installs are " + "untouched. Set managed: true after cutting over to the " + "`switchroom-web` container \u2014 then `switchroom update` keeps it " + "refreshed. See `switchroom webd install`."),
     google_accounts: exports_external.record(exports_external.string().regex(/^[^@\s:]+@[^@\s:]+\.[^@\s:]+$/, {
@@ -14140,7 +14140,7 @@ var init_schema = __esm(() => {
     agents: exports_external.record(exports_external.string().regex(/^[a-z0-9][a-z0-9_-]{0,50}$/, {
       message: "Agent name must start with a letter/digit, contain only lowercase letters/digits/hyphens/underscores, and be at most 51 characters (Telegram callback_data byte limit)"
     }), AgentSchema).describe("Map of agent name to agent configuration"),
-    cron: CronConfigSchema.optional().describe("Cheap-cron settings (docs/rfcs/cheap-cron-sessions.md). Operator-owned " + "egress allowlist + host-pinned secret bindings for Tier-0 http-diff " + "polls (\u00a76.1). Required to enable any http-diff poll; not agent-writable.")
+    cron: CronConfigSchema.optional().describe("Cheap-cron settings (reference/rfcs/cheap-cron-sessions.md). Operator-owned " + "egress allowlist + host-pinned secret bindings for Tier-0 http-diff " + "polls (\u00a76.1). Required to enable any http-diff poll; not agent-writable.")
   });
 });
 
@@ -31570,6 +31570,106 @@ var init_doctor_notion = __esm(() => {
   HEARTBEAT_STALE_MS = 60 * 1000;
 });
 
+// src/cli/doctor-mcp-secrets.ts
+function computeMcpSecretRequirements(config) {
+  const cfg = config;
+  const reqs = [];
+  for (const [agent, agentConfig] of Object.entries(cfg.agents ?? {})) {
+    if (!agentConfig)
+      continue;
+    const profileName = agentConfig.extends;
+    const profileMcp = profileName != null && profileName.length > 0 ? cfg.profiles?.[profileName]?.mcp_servers ?? {} : {};
+    const effectiveMcp = {
+      ...cfg.defaults?.mcp_servers ?? {},
+      ...profileMcp,
+      ...agentConfig.mcp_servers ?? {}
+    };
+    for (const [server, entry] of Object.entries(effectiveMcp)) {
+      if (!entry || typeof entry !== "object")
+        continue;
+      const declared = entry.secrets;
+      if (!Array.isArray(declared))
+        continue;
+      const keys = declared.filter((k) => typeof k === "string" && k.length > 0);
+      if (keys.length === 0)
+        continue;
+      reqs.push({ agent, server, keys });
+    }
+  }
+  return reqs;
+}
+async function runMcpSecretChecks(config, deps = {}) {
+  const reqs = computeMcpSecretRequirements(config);
+  if (reqs.length === 0)
+    return [];
+  const read = deps.vaultAclReader ?? (async () => ({
+    kind: "unreachable",
+    msg: "no vault reader wired"
+  }));
+  const aclCache = new Map;
+  const readKey = async (key) => {
+    const cached = aclCache.get(key);
+    if (cached)
+      return cached;
+    const r = await read(key);
+    aclCache.set(key, r);
+    return r;
+  };
+  const agentsNeedingKey = new Map;
+  for (const r of reqs) {
+    for (const key of r.keys) {
+      let set = agentsNeedingKey.get(key);
+      if (!set) {
+        set = new Set;
+        agentsNeedingKey.set(key, set);
+      }
+      set.add(r.agent);
+    }
+  }
+  const results = [];
+  for (const r of reqs) {
+    for (const key of r.keys) {
+      const acl = await readKey(key);
+      const name = `mcp-conn:${r.agent}:${r.server}:${key}`;
+      const want = [...agentsNeedingKey.get(key) ?? new Set].sort();
+      if (acl.kind === "unreachable") {
+        results.push({
+          name,
+          status: "warn",
+          detail: `vault-broker unreachable, can't verify '${key}' for MCP '${r.server}': ${acl.msg}`,
+          fix: "Ensure the vault-broker is running and the operator socket is reachable, then re-run doctor."
+        });
+        continue;
+      }
+      if (acl.kind === "not_found") {
+        results.push({
+          name,
+          status: "fail",
+          detail: `agent '${r.agent}' loads MCP '${r.server}' which needs vault key '${key}', but the key is missing \u2014 '${r.server}' is configured but NOT authed and will fail at runtime`,
+          fix: `switchroom vault set ${key} --allow ${want.join(",")} (then provide the value), or remove '${r.server}' from this agent's mcp_servers.`
+        });
+        continue;
+      }
+      if (!acl.allow.includes(r.agent)) {
+        const updated = [...new Set([...acl.allow, r.agent])].sort().join(",");
+        results.push({
+          name,
+          status: "fail",
+          detail: `agent '${r.agent}' loads MCP '${r.server}' but is NOT on the vault ACL for '${key}' \u2014 the broker will deny it at runtime`,
+          fix: `switchroom vault set ${key} --allow ${updated} (vault set overwrites the scope \u2014 re-state the full list including '${r.agent}').`
+        });
+        continue;
+      }
+      results.push({
+        name,
+        status: "ok",
+        detail: `MCP '${r.server}' \u2192 '${key}' present + ACL-allowed`
+      });
+    }
+  }
+  return results;
+}
+
 // src/cli/doctor-credentials-migration.ts
 import {
   existsSync as realExistsSync5,
@@ -33909,6 +34009,20 @@ function registerDoctorCommand(program3) {
       console.error(`Unknown skill: ${opts.skill}. Supported: mff`);
       process.exit(1);
     }
+    const vaultAclReader = async (key) => {
+      try {
+        const { getViaBrokerStructured: getViaBrokerStructured2 } = await Promise.resolve().then(() => (init_client(), exports_client));
+        const result = await getViaBrokerStructured2(key);
+        if (result.kind === "ok") {
+          return { kind: "ok", allow: result.entry.scope?.allow ?? [] };
+        }
+        if (result.kind === "not_found")
+          return { kind: "not_found" };
+        return { kind: "unreachable", msg: result.msg };
+      } catch (err) {
+        return { kind: "unreachable", msg: err.message };
+      }
+    };
     const sections = [
       { title: "Dependencies", results: checkDependencies() },
       { title: "Skills Prerequisites", results: checkSkillsPrerequisites() },
@@ -33950,25 +34064,11 @@ function registerDoctorCommand(program3) {
       },
       {
         title: "Notion (RFC notion-integration)",
-        results: await runNotionChecks(config, {
-          vaultAclReader: async (key) => {
-            try {
-              const { getViaBrokerStructured: getViaBrokerStructured2 } = await Promise.resolve().then(() => (init_client(), exports_client));
-              const result = await getViaBrokerStructured2(key);
-              if (result.kind === "ok") {
-                return {
-                  kind: "ok",
-                  allow: result.entry.scope?.allow ?? []
-                };
-              }
-              if (result.kind === "not_found")
-                return { kind: "not_found" };
-              return { kind: "unreachable", msg: result.msg };
-            } catch (err) {
-              return { kind: "unreachable", msg: err.message };
-            }
-          }
-        })
+        results: await runNotionChecks(config, { vaultAclReader })
+      },
+      {
+        title: "MCP Connections (auth)",
+        results: await runMcpSecretChecks(config, { vaultAclReader })
       },
       { title: "MFF Skill", results: await checkMff(passphrase, vaultPath, config) },
       { title: "Webkite", results: runWebkiteChecks(config) },
@@ -50592,8 +50692,8 @@ var {
 } = import__.default;
 
 // src/build-info.ts
-var VERSION = "0.15.36";
-var COMMIT_SHA = "18736aec";
+var VERSION = "0.15.38";
+var COMMIT_SHA = "d28a331f";
 
 // src/cli/agent.ts
 init_source();
@@ -53134,6 +53234,7 @@ function scaffoldAgent(name, agentConfigRaw, agentsDir, telegramConfig, switchro
     const switchroomCliPath = "/usr/local/bin/switchroom";
     const resolvedConfigPath = DOCKER_CONFIG_PATH;
     const telegramStateDir = `${DOCKER_AGENT_HOME}/.switchroom/agents/${name}/telegram`;
+    const linearAgentEnabled = agentConfig.channels?.telegram?.linear_agent?.enabled === true;
     const mcpServers = {
       "switchroom-telegram": {
         command: "bun",
@@ -53141,9 +53242,10 @@ function scaffoldAgent(name, agentConfigRaw, agentsDir, telegramConfig, switchro
         env: {
           TELEGRAM_STATE_DIR: telegramStateDir,
           SWITCHROOM_CONFIG: resolvedConfigPath,
-          SWITCHROOM_CLI_PATH: switchroomCliPath
+          SWITCHROOM_CLI_PATH: switchroomCliPath,
+          ...linearAgentEnabled ? { SWITCHROOM_TELEGRAM_LINEAR: "1" } : {}
         },
-        alwaysLoad: true
+        alwaysLoad: false
       },
       "agent-config": {
         command: switchroomCliPath,
@@ -54203,6 +54305,7 @@ ${body}
     const switchroomCliPath = "/usr/local/bin/switchroom";
     const resolvedConfigPath = DOCKER_CONFIG_PATH;
     const telegramStateDir = `${DOCKER_AGENT_HOME}/.switchroom/agents/${name}/telegram`;
+    const linearAgentEnabled = agentConfig.channels?.telegram?.linear_agent?.enabled === true;
     const mcpServers = {
       "switchroom-telegram": {
         command: "bun",
@@ -54210,9 +54313,10 @@ ${body}
         env: {
           TELEGRAM_STATE_DIR: telegramStateDir,
           SWITCHROOM_CONFIG: resolvedConfigPath,
-          SWITCHROOM_CLI_PATH: switchroomCliPath
+          SWITCHROOM_CLI_PATH: switchroomCliPath,
+          ...linearAgentEnabled ? { SWITCHROOM_TELEGRAM_LINEAR: "1" } : {}
         },
-        alwaysLoad: true
+        alwaysLoad: false
       },
       "agent-config": {
         command: switchroomCliPath,
@@ -58912,7 +59016,7 @@ function hasGoogleAccountEntry(doc, account) {
 // src/cli/auth-google.ts
 init_helpers();
 function registerAuthGoogleSubcommands(program3, authParent) {
-  const google = authParent.command("google").description("Manage Google Workspace accounts shared across agents (RFC G \u2014 see docs/rfcs/google-workspace-generalization.md)");
+  const google = authParent.command("google").description("Manage Google Workspace accounts shared across agents (RFC G \u2014 see reference/rfcs/google-workspace-generalization.md)");
   registerConnect(google, program3);
   registerEnable(google, program3);
   registerDisable(google, program3);
@@ -59696,7 +59800,7 @@ function buildMicrosoftCredentials(opts) {
 
 // src/cli/auth-microsoft.ts
 function registerAuthMicrosoftSubcommands(program3, authParent) {
-  const microsoft = authParent.command("microsoft").description("Manage Microsoft 365 accounts shared across agents (RFC #1873 \u2014 see docs/rfcs/microsoft-workspace.md)");
+  const microsoft = authParent.command("microsoft").description("Manage Microsoft 365 accounts shared across agents (RFC #1873 \u2014 see reference/rfcs/microsoft-workspace.md)");
   registerEnable2(microsoft, program3);
   registerDisable2(microsoft, program3);
   registerList2(microsoft, program3);
@@ -68263,9 +68367,22 @@ async function performLinearRefresh(io) {
 function bundleKeyFor(agent) {
   return `linear/${agent}/oauth`;
 }
+function linearSandboxRefusal(verb, runtime = process.env.SWITCHROOM_RUNTIME) {
+  if (runtime !== "docker")
+    return null;
+  return `'linear-agent ${verb}' is a HOST command \u2014 it writes the vault file directly, which ` + `doesn't work inside an agent container (no mounted vault, no passphrase) and would ` + `silently no-op.
+  \u2022 In-container: use the 'linear_agent_setup' MCP tool (operator-approved).
+` + `  \u2022 On the host shell: run this same command there.`;
+}
+function refuseInSandbox(verb) {
+  const msg = linearSandboxRefusal(verb);
+  if (msg)
+    fail2(msg);
+}
 function registerLinearAgentCommand(program3) {
   const linear = program3.command("linear-agent").description("Install an agent into a Linear workspace as a first-class app actor (#2298) \u2014 @-mentionable, delegate-assignable, agent sessions wake it instantly.");
   linear.command("setup").description("Provision <agent> as a Linear agent. Vault-stores the Linear OAuth app token (actor=app) under 'linear/<agent>/token' and enables the linear_agent block in switchroom.yaml. The OAuth browser authorize step is printed as instructions (it can't run headless); pass the already-obtained --token.").requiredOption("--agent <name>", "Agent name (must exist in switchroom.yaml)").requiredOption("--token <token>", "The Linear OAuth app token (actor=app), obtained out-of-band via the browser authorize step. Stored in the vault, never in switchroom.yaml.").option("--client-id <id>", "Linear OAuth app client id. Stored (with --client-secret + --refresh-token) to enable unattended token refresh.").option("--client-secret <secret>", "Linear OAuth app client secret. Stored in the vault (with --client-id + --refresh-token) so the token can be refreshed without a browser re-auth.").option("--refresh-token <token>", "The refresh_token from the OAuth exchange. Stored so an expired access token self-heals (see 'linear-agent refresh').").option("--token-expires-in <seconds>", "expires_in from the OAuth token response (seconds). Records when the access token expires so refresh runs proactively. Defaults to 86400.").option("--redirect-uri <uri>", "OAuth redirect URI registered on the Linear app (for the authorize-URL hint).").option("--workspace-id <id>", "Optional Linear workspace (organization) id to record in config.").option("--webhook-base <url>", "Base URL of the switchroom web server (e.g. https://hooks.switchroom.ai). Used to print the webhook URL to register in Linear. Defaults to a placeholder.").option("--dry-run", "Print the YAML diff + instructions without writing or vaulting anything").action(withConfigError(async (opts) => {
+    refuseInSandbox("setup");
     if (!/^[a-z][a-z0-9_-]{0,63}$/.test(opts.agent)) {
       fail2(`--agent must be a lowercase agent slug (got '${opts.agent}').`);
     }
@@ -68328,6 +68445,7 @@ function registerLinearAgentCommand(program3) {
     printLinearInstructions(opts, vaultKey);
   }));
   linear.command("refresh").description("Refresh <agent>'s Linear app token using the stored refresh bundle (linear/<agent>/oauth). Exchanges the refresh_token for a fresh access token, writes it to linear/<agent>/token, and rotates the stored refresh_token + expiry. Use to recover an expired token or seed automation. Host-side write \u2014 the running agent picks it up on its next broker re-mirror / restart.").requiredOption("--agent <name>", "Agent name (must have a linear_agent block)").action(withConfigError(async (opts) => {
+    refuseInSandbox("refresh");
     if (!/^[a-z][a-z0-9_-]{0,63}$/.test(opts.agent)) {
       fail2(`--agent must be a lowercase agent slug (got '${opts.agent}').`);
     }
@@ -74792,6 +74910,28 @@ function handleGetNotionWorkspace(config) {
     fullAccessAgents
   };
 }
+function handleGetLinearAgents(config) {
+  const agentNames = Object.keys(config.agents ?? {});
+  const agents = [];
+  for (const name of agentNames) {
+    const rawAgent = config.agents?.[name];
+    if (!rawAgent)
+      continue;
+    const linear = resolveAgentConfig(config.defaults, config.profiles, rawAgent).channels?.telegram?.linear_agent;
+    if (!linear?.enabled)
+      continue;
+    const tok = linear.token;
+    const tokenVaultKey = typeof tok === "string" && tok.startsWith("vault:") ? tok : null;
+    agents.push({
+      agent: name,
+      workspaceId: linear.workspace_id ?? null,
+      defaultTeamId: linear.default_team_id ?? null,
+      tokenVaultKey
+    });
+  }
+  agents.sort((a, b) => a.agent.localeCompare(b.agent));
+  return { configured: agents.length > 0, agents };
+}
 var connectionAccessStatuses = new Map;
 function reapConnectionAccessStatuses(now = Date.now()) {
   for (const [id, s] of connectionAccessStatuses) {
@@ -75863,6 +76003,23 @@ var MIME_TYPES = {
   ".svg": "image/svg+xml",
   ".ico": "image/x-icon"
 };
+var SPA_TAB_ROUTES = new Set([
+  "summary",
+  "agents",
+  "accounts",
+  "system",
+  "memory",
+  "connections",
+  "schedule",
+  "approvals"
+]);
+function resolveDashboardFilePath(pathname) {
+  const routeName = pathname.replace(/^\/+/, "").replace(/\/+$/, "");
+  return pathname === "/" || SPA_TAB_ROUTES.has(routeName) ? "/index.html" : pathname;
+}
+function dashboardCacheControl(ext) {
+  return ext === ".html" ? "no-cache, must-revalidate" : undefined;
+}
 function jsonResponse(data, status = 200) {
   return new Response(JSON.stringify(data), {
     status,
@@ -76100,6 +76257,9 @@ function parseRoute(pathname, method) {
   if (method === "GET" && pathname === "/api/notion-workspace") {
     return { handler: "getNotionWorkspace", params: {} };
   }
+  if (method === "GET" && pathname === "/api/linear-agents") {
+    return { handler: "getLinearAgents", params: {} };
+  }
   if (method === "GET" && pathname === "/api/schedule") {
     return { handler: "getSchedule", params: {} };
   }
@@ -76191,8 +76351,8 @@ function startWebServer(config, port, hostname = "127.0.0.1", configPath) {
           return new Response("Unauthorized", { status: 401 });
         }
         const wsProto = req.headers.get("Sec-WebSocket-Protocol");
-        const headers = wsProto && wsProto.split(",").map((s) => s.trim()).includes("bearer") ? { "Sec-WebSocket-Protocol": "bearer" } : undefined;
-        const upgraded = server2.upgrade(req, headers ? { headers } : undefined);
+        const headers2 = wsProto && wsProto.split(",").map((s) => s.trim()).includes("bearer") ? { "Sec-WebSocket-Protocol": "bearer" } : undefined;
+        const upgraded = server2.upgrade(req, headers2 ? { headers: headers2 } : undefined);
         if (!upgraded) {
           return new Response("WebSocket upgrade failed", { status: 400 });
         }
@@ -76280,6 +76440,8 @@ function startWebServer(config, port, hostname = "127.0.0.1", configPath) {
             return (async () => jsonResponse(await handleGetMicrosoftAccounts(freshConfig())))();
           case "getNotionWorkspace":
             return jsonResponse(handleGetNotionWorkspace(freshConfig()));
+          case "getLinearAgents":
+            return jsonResponse(handleGetLinearAgents(freshConfig()));
           case "getSchedule":
             return (async () => jsonResponse(withStamp(await cachedSchedule())))();
           case "getApprovals":
@@ -76414,7 +76576,7 @@ function startWebServer(config, port, hostname = "127.0.0.1", configPath) {
           }
         }
       }
-      let filePath = pathname === "/" ? "/index.html" : pathname;
+      const filePath = resolveDashboardFilePath(pathname);
       const fullPath = join47(uiDir, filePath);
       if (!existsSync50(fullPath)) {
         return new Response("Not Found", { status: 404 });
@@ -76432,9 +76594,11 @@ function startWebServer(config, port, hostname = "127.0.0.1", configPath) {
       const ext = extname(realFullPath);
       const contentType = MIME_TYPES[ext] ?? "application/octet-stream";
       const content = readFileSync46(realFullPath);
-      return new Response(content, {
-        headers: { "Content-Type": contentType }
-      });
+      const headers = { "Content-Type": contentType };
+      const cacheControl = dashboardCacheControl(ext);
+      if (cacheControl)
+        headers["Cache-Control"] = cacheControl;
+      return new Response(content, { headers });
     },
     websocket: {
       open(_ws) {},
@@ -82005,7 +82169,7 @@ async function runNotionMcpLauncher(opts, runtime) {
   return exitCode;
 }
 function registerNotionMcpLauncherCommand(program3) {
-  program3.command("notion-mcp-launcher", { hidden: true }).option("--vault-key <key>", "Override the vault key holding the Notion integration token. " + "Defaults to `notion/integration-token`.", DEFAULT_VAULT_KEY).option("--mcp-version <semver>", "Override the @notionhq/notion-mcp-server version to spawn.").option("--heartbeat-path <path>", "Override the heartbeat file path. Default: /state/agent/notion-launcher.heartbeat.json").description("Internal \u2014 Notion MCP launcher. Fetches the integration token from the vault-broker and execs @notionhq/notion-mcp-server in stdio mode. RFC docs/rfcs/notion-integration.md PR 2.").action(async (opts) => {
+  program3.command("notion-mcp-launcher", { hidden: true }).option("--vault-key <key>", "Override the vault key holding the Notion integration token. " + "Defaults to `notion/integration-token`.", DEFAULT_VAULT_KEY).option("--mcp-version <semver>", "Override the @notionhq/notion-mcp-server version to spawn.").option("--heartbeat-path <path>", "Override the heartbeat file path. Default: /state/agent/notion-launcher.heartbeat.json").description("Internal \u2014 Notion MCP launcher. Fetches the integration token from the vault-broker and execs @notionhq/notion-mcp-server in stdio mode. RFC reference/rfcs/notion-integration.md PR 2.").action(async (opts) => {
     const { getViaBrokerStructured: getViaBrokerStructured2 } = await Promise.resolve().then(() => (init_client(), exports_client));
     const code = await runNotionMcpLauncher(opts, {
       fetchToken: async () => {
@@ -82478,7 +82642,7 @@ function createNotionApiClient(opts) {
 // src/cli/notion.ts
 init_client();
 function registerNotionCommand(program3) {
-  const cmd = program3.command("notion").description("Notion integration operator helpers (list-dbs, test). See docs/rfcs/notion-integration.md.");
+  const cmd = program3.command("notion").description("Notion integration operator helpers (list-dbs, test). See reference/rfcs/notion-integration.md.");
   cmd.command("list-dbs").description("List the databases the Notion integration can access. Output is a ready-to-paste YAML block for `notion_workspace.databases`.").option("--vault-key <key>", "Override the vault key holding the integration token.", "notion/integration-token").action(async (opts) => {
     const code = await runListDbs(opts);
     process.exit(code);
@@ -82668,7 +82832,7 @@ async function fetchToken(vaultKey) {
 
 // src/cli/apply.ts
 init_source();
-import { accessSync as accessSync3, chownSync as chownSync7, constants as fsConstants6, copyFileSync as copyFileSync11, existsSync as existsSync74, mkdirSync as mkdirSync42, readFileSync as readFileSync63, readdirSync as readdirSync26, renameSync as renameSync14, writeFileSync as writeFileSync37 } from "node:fs";
+import { accessSync as accessSync3, chownSync as chownSync7, constants as fsConstants6, copyFileSync as copyFileSync11, existsSync as existsSync74, mkdirSync as mkdirSync43, readFileSync as readFileSync63, readdirSync as readdirSync26, renameSync as renameSync14, writeFileSync as writeFileSync38 } from "node:fs";
 import { mkdir as mkdir2 } from "node:fs/promises";
 import { spawnSync as childSpawnSync } from "node:child_process";
 import readline from "node:readline";
@@ -83057,16 +83221,97 @@ agents:
 
 // src/cli/apply.ts
 init_resolver();
-import { dirname as dirname23, join as join75, resolve as resolve46 } from "node:path";
+import { dirname as dirname23, join as join76, resolve as resolve46 } from "node:path";
 import { homedir as homedir44 } from "node:os";
 import { execFileSync as execFileSync24 } from "node:child_process";
 init_vault();
 init_loader();
 init_loader();
 
-// src/cli/update-prompt-hook.ts
-import { existsSync as existsSync72, readFileSync as readFileSync62, writeFileSync as writeFileSync36, chmodSync as chmodSync10, mkdirSync as mkdirSync41 } from "node:fs";
+// src/agents/connection-health.ts
+import { mkdirSync as mkdirSync41, writeFileSync as writeFileSync36 } from "node:fs";
 import { join as join73 } from "node:path";
+var CONNECTION_HEALTH_FILENAME = "connection-health.json";
+async function computeAgentConnectionIssues(config, agentName, vaultAclReader) {
+  const reqs = computeMcpSecretRequirements(config).filter((r) => r.agent === agentName);
+  if (reqs.length === 0)
+    return [];
+  const agentsNeedingKey = new Map;
+  for (const r of computeMcpSecretRequirements(config)) {
+    for (const key of r.keys) {
+      let set = agentsNeedingKey.get(key);
+      if (!set) {
+        set = new Set;
+        agentsNeedingKey.set(key, set);
+      }
+      set.add(r.agent);
+    }
+  }
+  const aclCache = new Map;
+  const readKey = async (key) => {
+    const cached = aclCache.get(key);
+    if (cached)
+      return cached;
+    const r = await vaultAclReader(key);
+    aclCache.set(key, r);
+    return r;
+  };
+  const issues = [];
+  for (const r of reqs) {
+    for (const key of r.keys) {
+      const acl = await readKey(key);
+      const want = [...agentsNeedingKey.get(key) ?? new Set].sort();
+      if (acl.kind === "unreachable")
+        continue;
+      if (acl.kind === "not_found") {
+        issues.push({
+          server: r.server,
+          key,
+          kind: "missing",
+          detail: `MCP '${r.server}' needs vault key '${key}', but it is missing \u2014 configured but not authed`,
+          fix: `switchroom vault set ${key} --allow ${want.join(",")} (then provide the value)`
+        });
+        continue;
+      }
+      if (!acl.allow.includes(agentName)) {
+        const updated = [...new Set([...acl.allow, agentName])].sort().join(",");
+        issues.push({
+          server: r.server,
+          key,
+          kind: "acl",
+          detail: `MCP '${r.server}' not on the vault ACL for '${key}' \u2014 broker will deny at runtime`,
+          fix: `switchroom vault set ${key} --allow ${updated} (re-state the full list)`
+        });
+      }
+    }
+  }
+  return issues;
+}
+function writeConnectionHealthFile(agentDir, health, deps) {
+  const dir = join73(agentDir, ".claude");
+  const path7 = join73(dir, CONNECTION_HEALTH_FILENAME);
+  (deps?.mkdir ?? ((p, o) => mkdirSync41(p, o)))(dir, { recursive: true });
+  (deps?.writeFile ?? ((p, d) => writeFileSync36(p, d)))(path7, JSON.stringify(health, null, 2) + `
+`);
+}
+async function refreshAgentConnectionHealth(config, agentName, agentDir, deps) {
+  const now = deps.now ?? Date.now;
+  let issues = [];
+  try {
+    issues = await computeAgentConnectionIssues(config, agentName, deps.vaultAclReader);
+  } catch {
+    issues = [];
+  }
+  const health = { computedAt: now(), issues };
+  try {
+    writeConnectionHealthFile(agentDir, health, deps);
+  } catch {}
+  return health;
+}
+
+// src/cli/update-prompt-hook.ts
+import { existsSync as existsSync72, readFileSync as readFileSync62, writeFileSync as writeFileSync37, chmodSync as chmodSync10, mkdirSync as mkdirSync42 } from "node:fs";
+import { join as join74 } from "node:path";
 var HOOK_FILENAME = "update-card-on-prompt.sh";
 function updatePromptHookScript() {
   return `#!/bin/bash
@@ -83132,14 +83377,14 @@ exit 0
 `;
 }
 function installUpdatePromptHook(agentDir) {
-  const hooksDir = join73(agentDir, ".claude", "hooks");
-  mkdirSync41(hooksDir, { recursive: true });
-  const scriptPath = join73(hooksDir, HOOK_FILENAME);
+  const hooksDir = join74(agentDir, ".claude", "hooks");
+  mkdirSync42(hooksDir, { recursive: true });
+  const scriptPath = join74(hooksDir, HOOK_FILENAME);
   const desired = updatePromptHookScript();
   let installed = false;
   const existing = existsSync72(scriptPath) ? readFileSync62(scriptPath, "utf-8") : "";
   if (existing !== desired) {
-    writeFileSync36(scriptPath, desired, { mode: 493 });
+    writeFileSync37(scriptPath, desired, { mode: 493 });
     chmodSync10(scriptPath, 493);
     installed = true;
   } else {
@@ -83147,7 +83392,7 @@ function installUpdatePromptHook(agentDir) {
       chmodSync10(scriptPath, 493);
     } catch {}
   }
-  const settingsPath = join73(agentDir, ".claude", "settings.json");
+  const settingsPath = join74(agentDir, ".claude", "settings.json");
   if (!existsSync72(settingsPath)) {
     return { scriptPath, settingsPath, installed };
   }
@@ -83184,7 +83429,7 @@ function installUpdatePromptHook(agentDir) {
     });
     hooks.UserPromptSubmit = list2;
     parsed.hooks = hooks;
-    writeFileSync36(settingsPath, JSON.stringify(parsed, null, 2) + `
+    writeFileSync37(settingsPath, JSON.stringify(parsed, null, 2) + `
 `, { mode: 384 });
     installed = true;
   }
@@ -83249,14 +83494,14 @@ var EMBEDDED_EXAMPLES = {
   switchroom: switchroom_default,
   minimal: minimal_default
 };
-var DEFAULT_COMPOSE_PATH2 = join75(homedir44(), ".switchroom", "compose", "docker-compose.yml");
+var DEFAULT_COMPOSE_PATH2 = join76(homedir44(), ".switchroom", "compose", "docker-compose.yml");
 var COMPOSE_PROJECT2 = "switchroom";
 function resolveVaultBindMountDir(homeDir, ctx) {
   const isCustomPath = ctx.migrationKind === "custom-path-skipped";
   if (isCustomPath && ctx.customVaultPath) {
     return dirname23(ctx.customVaultPath);
   }
-  return join75(homeDir, ".switchroom", "vault");
+  return join76(homeDir, ".switchroom", "vault");
 }
 function inspectVaultBindMountDir(vaultDir) {
   if (!existsSync74(vaultDir))
@@ -83287,61 +83532,61 @@ function hasVaultRefs(value) {
 async function ensureHostMountSources(config) {
   const home2 = homedir44();
   const dirs = [
-    join75(home2, ".switchroom", "approvals"),
-    join75(home2, ".switchroom", "scheduler"),
-    join75(home2, ".switchroom", "logs"),
-    join75(home2, ".switchroom", "compose"),
-    join75(home2, ".switchroom", "broker-operator")
+    join76(home2, ".switchroom", "approvals"),
+    join76(home2, ".switchroom", "scheduler"),
+    join76(home2, ".switchroom", "logs"),
+    join76(home2, ".switchroom", "compose"),
+    join76(home2, ".switchroom", "broker-operator")
   ];
   for (const name of Object.keys(config.agents)) {
-    dirs.push(join75(home2, ".switchroom", "agents", name));
-    dirs.push(join75(home2, ".switchroom", "logs", name));
-    dirs.push(join75(home2, ".claude", "projects", name));
-    dirs.push(join75(home2, ".switchroom", "audit", name));
-    if (existsSync74(join75(home2, ".switchroom-config"))) {
-      dirs.push(join75(home2, ".switchroom-config", "agents", name, "personal-skills"));
+    dirs.push(join76(home2, ".switchroom", "agents", name));
+    dirs.push(join76(home2, ".switchroom", "logs", name));
+    dirs.push(join76(home2, ".claude", "projects", name));
+    dirs.push(join76(home2, ".switchroom", "audit", name));
+    if (existsSync74(join76(home2, ".switchroom-config"))) {
+      dirs.push(join76(home2, ".switchroom-config", "agents", name, "personal-skills"));
     }
   }
   for (const dir of dirs) {
     await mkdir2(dir, { recursive: true });
   }
-  const autoUnlockPath = join75(home2, ".switchroom", "vault-auto-unlock");
+  const autoUnlockPath = join76(home2, ".switchroom", "vault-auto-unlock");
   if (!existsSync74(autoUnlockPath)) {
-    writeFileSync37(autoUnlockPath, "", { mode: 384 });
+    writeFileSync38(autoUnlockPath, "", { mode: 384 });
   }
-  const auditLogPath = join75(home2, ".switchroom", "vault-audit.log");
+  const auditLogPath = join76(home2, ".switchroom", "vault-audit.log");
   if (!existsSync74(auditLogPath)) {
-    writeFileSync37(auditLogPath, "", { mode: 420 });
+    writeFileSync38(auditLogPath, "", { mode: 420 });
   }
-  const grantsDbPath = join75(home2, ".switchroom", "vault-grants.db");
+  const grantsDbPath = join76(home2, ".switchroom", "vault-grants.db");
   if (!existsSync74(grantsDbPath)) {
-    writeFileSync37(grantsDbPath, "", { mode: 384 });
+    writeFileSync38(grantsDbPath, "", { mode: 384 });
   }
-  const hostdAuditLogPath = join75(home2, ".switchroom", "host-control-audit.log");
+  const hostdAuditLogPath = join76(home2, ".switchroom", "host-control-audit.log");
   if (!existsSync74(hostdAuditLogPath)) {
-    writeFileSync37(hostdAuditLogPath, "", { mode: 420 });
+    writeFileSync38(hostdAuditLogPath, "", { mode: 420 });
   }
   for (const name of Object.keys(config.agents)) {
-    const tokenPath = join75(home2, ".switchroom", "agents", name, ".vault-token");
+    const tokenPath = join76(home2, ".switchroom", "agents", name, ".vault-token");
     if (!existsSync74(tokenPath)) {
-      writeFileSync37(tokenPath, "", { mode: 384 });
+      writeFileSync38(tokenPath, "", { mode: 384 });
     }
     try {
       const uid = allocateAgentUid(name);
       chownSync7(tokenPath, uid, uid);
     } catch {}
   }
-  const fleetDir = join75(home2, ".switchroom", "fleet");
+  const fleetDir = join76(home2, ".switchroom", "fleet");
   await mkdir2(fleetDir, { recursive: true });
-  const invariantsPath = join75(fleetDir, "switchroom-invariants.md");
+  const invariantsPath = join76(fleetDir, "switchroom-invariants.md");
   const invariantsCanonical = renderFleetInvariants();
   const invariantsCurrent = existsSync74(invariantsPath) ? readFileSync63(invariantsPath, "utf-8") : null;
   if (invariantsCurrent !== invariantsCanonical) {
-    writeFileSync37(invariantsPath, invariantsCanonical, { mode: 420 });
+    writeFileSync38(invariantsPath, invariantsCanonical, { mode: 420 });
   }
-  const fleetClaudePath = join75(fleetDir, "CLAUDE.md");
+  const fleetClaudePath = join76(fleetDir, "CLAUDE.md");
   if (!existsSync74(fleetClaudePath)) {
-    writeFileSync37(fleetClaudePath, [
+    writeFileSync38(fleetClaudePath, [
       "# Switchroom fleet defaults",
       "",
       "Operator-owned fleet brain. Every agent reads this via",
@@ -83424,16 +83669,16 @@ function detectAndReportLegacyGdriveSlots(vaultPath) {
 }
 function writeInstallTypeCache(homeDir = homedir44()) {
   const ctx = detectInstallType();
-  const dir = join75(homeDir, ".switchroom");
-  const out = join75(dir, "install-type.json");
+  const dir = join76(homeDir, ".switchroom");
+  const out = join76(dir, "install-type.json");
   const tmp = `${out}.tmp`;
-  mkdirSync42(dir, { recursive: true });
+  mkdirSync43(dir, { recursive: true });
   const payload = {
     install_type: ctx.install_type,
     detected_at: new Date().toISOString(),
     source_paths: ctx.source_paths
   };
-  writeFileSync37(tmp, JSON.stringify(payload, null, 2), { mode: 420 });
+  writeFileSync38(tmp, JSON.stringify(payload, null, 2), { mode: 420 });
   renameSync14(tmp, out);
   return out;
 }
@@ -83460,6 +83705,20 @@ Applying switchroom config...
     writeOut(source_default.gray(`  (--only=${options.only}: scaffolding/aligning this agent only; ` + `compose still covers all ${allAgentNames.length})
 `));
   }
+  const connHealthVaultAclReader = async (key) => {
+    try {
+      const { getViaBrokerStructured: getViaBrokerStructured2 } = await Promise.resolve().then(() => (init_client(), exports_client));
+      const result = await getViaBrokerStructured2(key);
+      if (result.kind === "ok") {
+        return { kind: "ok", allow: result.entry.scope?.allow ?? [] };
+      }
+      if (result.kind === "not_found")
+        return { kind: "not_found" };
+      return { kind: "unreachable", msg: result.msg };
+    } catch (err) {
+      return { kind: "unreachable", msg: err.message };
+    }
+  };
   let scaffolded = 0;
   const failures = [];
 
@@ -83474,14 +83733,17 @@ Applying switchroom config...
       writeOut(source_default.green(`  + ${name}`) + source_default.gray(` (${agentConfig.extends ?? "default"}) \u2014 ${detail}
 `));
       try {
-        installUpdatePromptHook(join75(agentsDir, name));
+        installUpdatePromptHook(join76(agentsDir, name));
       } catch (hookErr) {
         writeOut(source_default.gray(`    (update-prompt hook install failed for ${name}: ${hookErr.message})
 `));
       }
+      await refreshAgentConnectionHealth(config, name, join76(agentsDir, name), {
+        vaultAclReader: connHealthVaultAclReader
+      });
       try {
         const uid = allocateAgentUid(name);
-        alignAgentUid(name, join75(agentsDir, name), uid, {
+        alignAgentUid(name, join76(agentsDir, name), uid, {
           confirm: !options.nonInteractive,
           writeOut
         });
@@ -83489,12 +83751,12 @@ Applying switchroom config...
         const msg = alignErr.message;
         if (options.allowUnaligned) {
           writeOut(source_default.yellow(`    ! could not chown ${name} state dir: ${msg}
-` + `      continuing because --allow-unaligned was passed; agent may fail on first write.
+      continuing because --allow-unaligned was passed; agent may fail on first write.
 `));
         } else {
           writeOut(source_default.red(`    x could not chown ${name} state dir: ${msg}
-` + `      The bind-mounted state dir must be owned by the container's UID or the agent will fail on first write.
-` + `      Fix: run \`switchroom apply\` from a TTY so it can prompt for sudo, OR run the suggested chown manually, OR re-run with --allow-unaligned to skip this check.
+      The bind-mounted state dir must be owned by the container's UID or the agent will fail on first write.
+      Fix: run \`switchroom apply\` from a TTY so it can prompt for sudo, OR run the suggested chown manually, OR re-run with --allow-unaligned to skip this check.
 `));
           throw new UidAlignmentAbort(`UID alignment failed for agent ${name}; aborting apply (pass --allow-unaligned to override).`);
         }
@@ -83518,14 +83780,14 @@ Applying switchroom config...
     for (const name of agentNames) {
       try {
         const uid = allocateAgentUid(name);
-        alignAgentUid(name, join75(agentsDir, name), uid, {
+        alignAgentUid(name, join76(agentsDir, name), uid, {
           confirm: !options.nonInteractive,
           writeOut
         });
       } catch (alignErr) {
         const msg = alignErr.message;
         writeOut(source_default.yellow(`    ! post-mount-source UID re-align failed for ${name}: ${msg}
-` + `      Agent may fail to write supervisor logs on first boot.
+      Agent may fail to write supervisor logs on first boot.
 `));
       }
     }
@@ -83568,7 +83830,7 @@ Applying switchroom config...
   ];
   if (!acceptable.includes(postMigrationInspect.kind)) {
     writeErr(source_default.red(`Post-migration verification failed: state is ${postMigrationInspect.kind}
-` + `Expected one of: ${acceptable.join(", ")}
+Expected one of: ${acceptable.join(", ")}
 ` + `This is a switchroom bug \u2014 please file an issue with the apply log.
 `));
     process.exit(5);
@@ -83583,11 +83845,11 @@ Applying switchroom config...
     writeErr(source_default.red(`Vault directory ${vaultDir} contains unexpected files:
 ` + unknown.map((n) => `  - ${n}
 `).join("") + `Refusing to bind-mount: a docker bind-mount source is the
-` + `entire directory, so unexpected files would be visible inside
-` + `the broker container. Move them out, then re-run apply.
-` + `Known artifacts: vault.enc, vault.enc.bak, vault.enc.tmp,
-` + `vault.enc.lock (PID-file flock from saveVault), and
-` + `.vault.enc.<pid>.<ms>.tmp (atomicWriteFileSync sibling-tmp).
+entire directory, so unexpected files would be visible inside
+the broker container. Move them out, then re-run apply.
+Known artifacts: vault.enc, vault.enc.bak, vault.enc.tmp,
+vault.enc.lock (PID-file flock from saveVault), and
+.vault.enc.<pid>.<ms>.tmp (atomicWriteFileSync sibling-tmp).
 `));
     process.exit(6);
   }
@@ -83606,8 +83868,8 @@ Applying switchroom config...
 Wrote `) + displayComposePath + source_default.gray(` (${composeBytes} bytes)
 `));
   writeOut(`Bring the fleet up with:
-` + `  docker compose -p ${COMPOSE_PROJECT2} -f ${displayComposePath} pull && \\
-` + `    docker compose -p ${COMPOSE_PROJECT2} -f ${displayComposePath} up -d --remove-orphans
+  docker compose -p ${COMPOSE_PROJECT2} -f ${displayComposePath} pull && \\
+    docker compose -p ${COMPOSE_PROJECT2} -f ${displayComposePath} up -d --remove-orphans
 `);
   writeOut(source_default.gray(`  (If pull returns 401, login to ghcr.io first: see docs/operators/install.md#ghcr-auth)
 `));
@@ -83666,7 +83928,7 @@ function copyExampleConfig2(name) {
   }
   const embedded = EMBEDDED_EXAMPLES[name];
   if (embedded !== undefined) {
-    writeFileSync37(dest, embedded, { encoding: "utf8" });
+    writeFileSync38(dest, embedded, { encoding: "utf8" });
     console.log(source_default.green(`Copied ${name}.yaml -> switchroom.yaml`));
     return;
   }
@@ -83682,7 +83944,7 @@ function findUnwritableAgentDirs(config, opts) {
   const targets = opts.only ? [opts.only] : Object.keys(config.agents ?? {});
   const unwritable = [];
   for (const name of targets) {
-    const startSh = join75(agentsDir, name, "start.sh");
+    const startSh = join76(agentsDir, name, "start.sh");
     if (!existsSync74(startSh))
       continue;
     try {
@@ -83729,7 +83991,8 @@ function reexecUnderSudo() {
   if (errCode === "ENOENT") {
     process.stderr.write(source_default.red(`
 ERROR: sudo not found on PATH. Re-run as root, or use
-` + "       `switchroom apply --compose-only` to skip the per-agent\n" + `       scaffold refresh entirely (compose file still regenerates).
+       \`switchroom apply --compose-only\` to skip the per-agent
+       scaffold refresh entirely (compose file still regenerates).
 `));
     process.exit(1);
   }
@@ -83742,7 +84005,7 @@ ERROR: failed to spawn sudo: ${result.error.message}
   process.exit(result.status ?? 1);
 }
 function registerApplyCommand(program3) {
-  program3.command("apply").description("Apply switchroom.yaml: scaffold every agent and (re)generate the compose file. Run `docker compose -f <path> up -d` afterwards to bring the fleet up.").option("--build-local [context]", "Dev-only: emit `build:` blocks instead of GHCR `image:` refs so `docker compose up --build` rebuilds from in-tree Dockerfiles. Optional context path (defaults to cwd).").option("-o, --out <path>", `Override compose output path (default: ${DEFAULT_COMPOSE_PATH2}).`).option("--example <name>", "Copy an example config into cwd before applying (e.g., 'switchroom' or 'minimal').").option("--non-interactive", "Skip prompts (e.g. sudo-chown explainer for UID alignment). Use in CI / scripts.").option("--allow-unaligned", "Treat UID-alignment chown failures as warnings instead of hard errors. Unsafe: an unaligned state dir will break the agent on first write. Use only if you know you'll fix ownership out-of-band.").option("--only <agent>", "Restrict scaffold + UID-alignment to a single agent (compose still covers the full fleet). Use during a v0.6 \u2192 v0.7 cutover to migrate agents one at a time without breaking the systemd-managed siblings.").option("--compose-only", "Skip the per-agent scaffold loop entirely; only (re)generate the compose file. Use in CI / scripts that can't chown into per-agent state dirs (mode 0700, owned by per-agent UIDs in v0.7+ docker mode). The full apply still runs preflight + emits compose; only the start.sh / .mcp.json / settings.json refresh is skipped.").option("--no-doctor", "Skip the post-apply doctor sweep that surfaces stale start.sh / unhealthy agents (#929). Default: doctor runs after a successful scaffold so the operator sees whether the v0.7+ post-Phase-4 supervisor block is now in place. `switchroom update` passes this internally to avoid running doctor twice (it has its own doctor step).").addOption(new Option("--channel <c>", "Override the resolved `release` block for this apply run: " + "follow the named channel pointer (dev|rc|latest). Mutually " + "exclusive with --pin.").choices(["dev", "rc", "latest"]).conflicts("pin")).addOption(new Option("--pin <p>", "Override the resolved `release` block for this apply run: " + "pin to a specific build (sha-<7-40 hex> or v<semver>). " + "Mutually exclusive with --channel.").conflicts("channel")).option("--print-sudo-cmd", "Print the sudo invocation that `apply` would re-exec itself with when escalation is needed, then exit. Operators who want to script the escalation themselves (CI, custom orchestration) can capture this. Note: tokens are space-separated and not shell-quoted; re-quote arguments if pasting into a shell.").addOption(new Option("--skip-self-elevate").default(false).hideHelp()).action(async (opts) => {
+  program3.command("apply").description("Apply switchroom.yaml: scaffold every agent and (re)generate the compose file. Run `docker compose -f <path> up -d` afterwards to bring the fleet up.").option("--build-local [context]", "Dev-only: emit `build:` blocks instead of GHCR `image:` refs so `docker compose up --build` rebuilds from in-tree Dockerfiles. Optional context path (defaults to cwd).").option("-o, --out <path>", `Override compose output path (default: ${DEFAULT_COMPOSE_PATH2}).`).option("--example <name>", "Copy an example config into cwd before applying (e.g., 'switchroom' or 'minimal').").option("--non-interactive", "Skip prompts (e.g. sudo-chown explainer for UID alignment). Use in CI / scripts.").option("--allow-unaligned", "Treat UID-alignment chown failures as warnings instead of hard errors. Unsafe: an unaligned state dir will break the agent on first write. Use only if you know you'll fix ownership out-of-band.").option("--only <agent>", "Restrict scaffold + UID-alignment to a single agent (compose still covers the full fleet). Use during a v0.6 \u2192 v0.7 cutover to migrate agents one at a time without breaking the systemd-managed siblings.").option("--compose-only", "Skip the per-agent scaffold loop entirely; only (re)generate the compose file. Use in CI / scripts that can't chown into per-agent state dirs (mode 0700, owned by per-agent UIDs in v0.7+ docker mode). The full apply still runs preflight + emits compose; only the start.sh / .mcp.json / settings.json refresh is skipped.").option("--no-doctor", "Skip the post-apply doctor sweep that surfaces stale start.sh / unhealthy agents (#929). Default: doctor runs after a successful scaffold so the operator sees whether the v0.7+ post-Phase-4 supervisor block is now in place. `switchroom update` passes this internally to avoid running doctor twice (it has its own doctor step).").addOption(new Option("--channel <c>", "Override the resolved `release` block for this apply run: follow the named channel pointer (dev|rc|latest). Mutually exclusive with --pin.").choices(["dev", "rc", "latest"]).conflicts("pin")).addOption(new Option("--pin <p>", "Override the resolved `release` block for this apply run: pin to a specific build (sha-<7-40 hex> or v<semver>). Mutually exclusive with --channel.").conflicts("channel")).option("--print-sudo-cmd", "Print the sudo invocation that `apply` would re-exec itself with when escalation is needed, then exit. Operators who want to script the escalation themselves (CI, custom orchestration) can capture this. Note: tokens are space-separated and not shell-quoted; re-quote arguments if pasting into a shell.").addOption(new Option("--skip-self-elevate").default(false).hideHelp()).action(async (opts) => {
     try {
       if (opts.example) {
         copyExampleConfig2(opts.example);
@@ -83768,7 +84031,7 @@ function registerApplyCommand(program3) {
           const canPrompt = !opts.nonInteractive && process.stdin.isTTY === true;
           const proceed = canPrompt ? await confirmYesNo(`Re-exec under sudo to refresh them? [Y/n] `) : true;
           if (!proceed) {
-            process.stderr.write(source_default.gray("Skipping. Re-run with --compose-only to regenerate compose " + `without touching per-agent files.
+            process.stderr.write(source_default.gray(`Skipping. Re-run with --compose-only to regenerate compose without touching per-agent files.
 `));
             process.exit(0);
           }
@@ -83862,7 +84125,7 @@ function runRedactStdin() {
 
 // src/cli/status-ask.ts
 import { readFileSync as readFileSync64, existsSync as existsSync75, readdirSync as readdirSync27 } from "node:fs";
-import { join as join76 } from "node:path";
+import { join as join77 } from "node:path";
 import { homedir as homedir45 } from "node:os";
 
 // src/status-ask/report.ts
@@ -84198,7 +84461,7 @@ function resolveSources(explicitPath) {
     const config = loadConfig();
     agentsDir = resolveAgentsDir(config);
   } catch {
-    agentsDir = join76(homedir45(), ".switchroom", "agents");
+    agentsDir = join77(homedir45(), ".switchroom", "agents");
   }
   if (!existsSync75(agentsDir))
     return [];
@@ -84210,7 +84473,7 @@ function resolveSources(explicitPath) {
     return [];
   }
   for (const name of entries) {
-    const path8 = join76(agentsDir, name, "runtime-metrics.jsonl");
+    const path8 = join77(agentsDir, name, "runtime-metrics.jsonl");
     if (existsSync75(path8)) {
       sources.push({ path: path8, agent: name });
     }
@@ -84239,7 +84502,7 @@ import {
   closeSync as closeSync13,
   existsSync as existsSync76,
   fsyncSync as fsyncSync6,
-  mkdirSync as mkdirSync43,
+  mkdirSync as mkdirSync44,
   openSync as openSync13,
   readdirSync as readdirSync28,
   readFileSync as readFileSync65,
@@ -84248,34 +84511,34 @@ import {
   unlinkSync as unlinkSync14,
   writeSync as writeSync8
 } from "node:fs";
-import { join as join77, resolve as resolve47 } from "node:path";
+import { join as join78, resolve as resolve47 } from "node:path";
 var STAGING_SUBDIR = ".staging";
 function overlayPathsFor(agent, opts = {}) {
   const base = opts.root ? resolve47(opts.root, agent) : resolve47(resolveDualPath(`~/.switchroom/agents/${agent}`));
-  const scheduleDir = join77(base, "schedule.d");
-  const scheduleStagingDir = join77(scheduleDir, STAGING_SUBDIR);
-  const skillsDir = join77(base, "skills.d");
-  const skillsStagingDir = join77(skillsDir, STAGING_SUBDIR);
+  const scheduleDir = join78(base, "schedule.d");
+  const scheduleStagingDir = join78(scheduleDir, STAGING_SUBDIR);
+  const skillsDir = join78(base, "skills.d");
+  const skillsStagingDir = join78(skillsDir, STAGING_SUBDIR);
   return {
     agentRoot: base,
     scheduleDir,
     scheduleStagingDir,
     skillsDir,
     skillsStagingDir,
-    lockPath: join77(base, ".lock"),
+    lockPath: join78(base, ".lock"),
     stagingDir: scheduleStagingDir
   };
 }
 function ensureDirs(paths) {
-  mkdirSync43(paths.scheduleDir, { recursive: true });
-  mkdirSync43(paths.scheduleStagingDir, { recursive: true });
+  mkdirSync44(paths.scheduleDir, { recursive: true });
+  mkdirSync44(paths.scheduleStagingDir, { recursive: true });
 }
 function ensureSkillsDirs(paths) {
-  mkdirSync43(paths.skillsDir, { recursive: true });
-  mkdirSync43(paths.skillsStagingDir, { recursive: true });
+  mkdirSync44(paths.skillsDir, { recursive: true });
+  mkdirSync44(paths.skillsStagingDir, { recursive: true });
 }
 function withAgentLock(paths, fn) {
-  mkdirSync43(paths.agentRoot, { recursive: true });
+  mkdirSync44(paths.agentRoot, { recursive: true });
   const start = Date.now();
   const TIMEOUT_MS = 5000;
   let fd = null;
@@ -84316,8 +84579,8 @@ function writeOverlayEntry(agent, slug, yamlText, opts = {}) {
   const paths = overlayPathsFor(agent, opts);
   return withAgentLock(paths, () => {
     ensureDirs(paths);
-    const stagingPath = join77(paths.scheduleStagingDir, `${slug}.yaml`);
-    const finalPath = join77(paths.scheduleDir, `${slug}.yaml`);
+    const stagingPath = join78(paths.scheduleStagingDir, `${slug}.yaml`);
+    const finalPath = join78(paths.scheduleDir, `${slug}.yaml`);
     const fd = openSync13(stagingPath, "w", 384);
     try {
       writeSync8(fd, yamlText);
@@ -84333,8 +84596,8 @@ function writeSkillsOverlayEntry(agent, slug, yamlText, opts = {}) {
   const paths = overlayPathsFor(agent, opts);
   return withAgentLock(paths, () => {
     ensureSkillsDirs(paths);
-    const stagingPath = join77(paths.skillsStagingDir, `${slug}.yaml`);
-    const finalPath = join77(paths.skillsDir, `${slug}.yaml`);
+    const stagingPath = join78(paths.skillsStagingDir, `${slug}.yaml`);
+    const finalPath = join78(paths.skillsDir, `${slug}.yaml`);
     const fd = openSync13(stagingPath, "w", 384);
     try {
       writeSync8(fd, yamlText);
@@ -84349,7 +84612,7 @@ function writeSkillsOverlayEntry(agent, slug, yamlText, opts = {}) {
 function deleteSkillsOverlayEntry(agent, slug, opts = {}) {
   const paths = overlayPathsFor(agent, opts);
   return withAgentLock(paths, () => {
-    const finalPath = join77(paths.skillsDir, `${slug}.yaml`);
+    const finalPath = join78(paths.skillsDir, `${slug}.yaml`);
     if (!existsSync76(finalPath))
       return false;
     unlinkSync14(finalPath);
@@ -84364,7 +84627,7 @@ function listSkillsOverlayEntries(agent, opts = {}) {
   for (const name of readdirSync28(paths.skillsDir)) {
     if (!/\.ya?ml$/i.test(name))
       continue;
-    const full = join77(paths.skillsDir, name);
+    const full = join78(paths.skillsDir, name);
     try {
       const raw = readFileSync65(full, "utf-8");
       const slug = name.replace(/\.ya?ml$/i, "");
@@ -84376,7 +84639,7 @@ function listSkillsOverlayEntries(agent, opts = {}) {
 function deleteOverlayEntry(agent, slug, opts = {}) {
   const paths = overlayPathsFor(agent, opts);
   return withAgentLock(paths, () => {
-    const finalPath = join77(paths.scheduleDir, `${slug}.yaml`);
+    const finalPath = join78(paths.scheduleDir, `${slug}.yaml`);
     if (!existsSync76(finalPath))
       return false;
     unlinkSync14(finalPath);
@@ -84391,7 +84654,7 @@ function listOverlayEntries(agent, opts = {}) {
   for (const name of readdirSync28(paths.scheduleDir)) {
     if (!/\.ya?ml$/i.test(name))
       continue;
-    const full = join77(paths.scheduleDir, name);
+    const full = join78(paths.scheduleDir, name);
     try {
       const raw = readFileSync65(full, "utf-8");
       const slug = name.replace(/\.ya?ml$/i, "");
@@ -84538,25 +84801,25 @@ import {
   closeSync as closeSync14,
   existsSync as existsSync77,
   fsyncSync as fsyncSync7,
-  mkdirSync as mkdirSync44,
+  mkdirSync as mkdirSync45,
   openSync as openSync14,
   readdirSync as readdirSync29,
   readFileSync as readFileSync66,
   renameSync as renameSync16,
   unlinkSync as unlinkSync15,
-  writeFileSync as writeFileSync38,
+  writeFileSync as writeFileSync39,
   writeSync as writeSync9
 } from "node:fs";
-import { join as join78 } from "node:path";
+import { join as join79 } from "node:path";
 import { randomBytes as randomBytes14 } from "node:crypto";
 var STAGE_ID_PREFIX = "cap_";
 function pendingDir(agent, opts = {}) {
   const paths = overlayPathsFor(agent, opts);
-  return join78(paths.scheduleDir, ".pending");
+  return join79(paths.scheduleDir, ".pending");
 }
 function ensurePendingDir(agent, opts = {}) {
   const dir = pendingDir(agent, opts);
-  mkdirSync44(dir, { recursive: true });
+  mkdirSync45(dir, { recursive: true });
   return dir;
 }
 function newStageId() {
@@ -84565,8 +84828,8 @@ function newStageId() {
 function stagePendingScheduleEntry(opts) {
   const dir = ensurePendingDir(opts.agent, { root: opts.root });
   const stageId = opts.stageId ?? newStageId();
-  const yamlPath = join78(dir, `${stageId}.yaml`);
-  const metaPath = join78(dir, `${stageId}.meta.json`);
+  const yamlPath = join79(dir, `${stageId}.yaml`);
+  const metaPath = join79(dir, `${stageId}.meta.json`);
   const meta = {
     v: 1,
     stage_id: stageId,
@@ -84587,7 +84850,7 @@ function stagePendingScheduleEntry(opts) {
     }
     renameSync16(yamlTmp, yamlPath);
   }
-  writeFileSync38(metaPath, JSON.stringify(meta, null, 2) + `
+  writeFileSync39(metaPath, JSON.stringify(meta, null, 2) + `
 `, { mode: 384 });
   return { stageId, yamlPath, metaPath };
 }
@@ -84600,8 +84863,8 @@ function listPendingScheduleEntries(agent, opts = {}) {
     if (!name.endsWith(".meta.json"))
       continue;
     const stageId = name.slice(0, -".meta.json".length);
-    const metaPath = join78(dir, name);
-    const yamlPath = join78(dir, `${stageId}.yaml`);
+    const metaPath = join79(dir, name);
+    const yamlPath = join79(dir, `${stageId}.yaml`);
     if (!existsSync77(yamlPath))
       continue;
     try {
@@ -84620,7 +84883,7 @@ function commitPendingScheduleEntry(opts) {
     return { committed: false, reason: "not_found" };
   const slug = match.meta.entry.name ?? match.stageId;
   const paths = overlayPathsFor(opts.agent, { root: opts.root });
-  const finalPath = join78(paths.scheduleDir, `${slug}.yaml`);
+  const finalPath = join79(paths.scheduleDir, `${slug}.yaml`);
   if (existsSync77(finalPath)) {
     return { committed: false, reason: "slug_collision" };
   }
@@ -85253,7 +85516,7 @@ var import_yaml21 = __toESM(require_dist(), 1);
 import { existsSync as existsSync79 } from "node:fs";
 init_reconcile_default_skills();
 var import_yaml22 = __toESM(require_dist(), 1);
-import { join as join79 } from "node:path";
+import { join as join80 } from "node:path";
 var MAX_SKILLS_PER_AGENT = 20;
 var V1_ALLOWED_SOURCE_PREFIX = "bundled:";
 function exitCodeFor2(code) {
@@ -85328,7 +85591,7 @@ function skillInstall(opts) {
     return err("E_SKILL_QUOTA_EXCEEDED", `agent ${agent} already has ${used} overlay-installed skills (cap ${MAX_SKILLS_PER_AGENT})`);
   }
   const poolDir = opts.bundledSkillsPoolDir ?? getBundledSkillsPoolDir();
-  const skillPath = join79(poolDir, skillName);
+  const skillPath = join80(poolDir, skillName);
   if (!existsSync79(skillPath)) {
     return err("E_SKILL_NOT_FOUND", `bundled skill not found at ${skillPath}. The operator needs to ` + `place the skill at this path before the agent can opt in.`);
   }
@@ -85495,7 +85758,7 @@ import {
   closeSync as closeSync15,
   existsSync as existsSync80,
   lstatSync as lstatSync9,
-  mkdirSync as mkdirSync45,
+  mkdirSync as mkdirSync46,
   mkdtempSync as mkdtempSync5,
   openSync as openSync15,
   readFileSync as readFileSync68,
@@ -85504,10 +85767,10 @@ import {
   renameSync as renameSync17,
   rmSync as rmSync16,
   statSync as statSync32,
-  writeFileSync as writeFileSync39
+  writeFileSync as writeFileSync40
 } from "node:fs";
 import { tmpdir as tmpdir5, homedir as homedir46 } from "node:os";
-import { dirname as dirname24, join as join80, relative as relative2, resolve as resolve48 } from "node:path";
+import { dirname as dirname24, join as join81, relative as relative2, resolve as resolve48 } from "node:path";
 import { spawnSync as spawnSync12 } from "node:child_process";
 
 // src/cli/skill-common.ts
@@ -85701,7 +85964,7 @@ function scanForClaudeP2(content) {
 function resolveSkillsPoolDir2(override) {
   const raw = override ?? "~/.switchroom/skills";
   if (raw.startsWith("~/")) {
-    return join80(homedir46(), raw.slice(2));
+    return join81(homedir46(), raw.slice(2));
   }
   if (raw === "~")
     return homedir46();
@@ -85740,7 +86003,7 @@ function loadFromDir(dir) {
   const walk2 = (sub) => {
     const entries = readdirSync30(sub, { withFileTypes: true });
     for (const ent of entries) {
-      const full = join80(sub, ent.name);
+      const full = join81(sub, ent.name);
       const rel = relative2(abs, full);
       if (ent.isSymbolicLink()) {
         fail3(`refusing to read symlink inside --from dir: ${rel}`);
@@ -85775,7 +86038,7 @@ function loadFromTarball(tarPath) {
       fail3(`tarball contains disallowed path: ${JSON.stringify(entry)} \u2014 ` + `refusing to extract before any file is written`);
     }
   }
-  const staging = mkdtempSync5(join80(tmpdir5(), "skill-apply-extract-"));
+  const staging = mkdtempSync5(join81(tmpdir5(), "skill-apply-extract-"));
   try {
     const flags = isGz ? ["-xzf"] : ["-xf"];
     const r = spawnSync12("tar", [
@@ -85861,10 +86124,10 @@ function validatePayload(name, files) {
           errors2.push(`${path8} fails \`bash -n\` syntax check: ${(r.stderr ?? "").trim()}`);
         }
       } else if (PY_SCRIPT_RE2.test(path8)) {
-        const tmp = mkdtempSync5(join80(tmpdir5(), "skill-apply-py-"));
-        const tmpPy = join80(tmp, "check.py");
+        const tmp = mkdtempSync5(join81(tmpdir5(), "skill-apply-py-"));
+        const tmpPy = join81(tmp, "check.py");
         try {
-          writeFileSync39(tmpPy, content);
+          writeFileSync40(tmpPy, content);
           const r = spawnSync12("python3", ["-m", "py_compile", tmpPy], {
             encoding: "utf-8"
           });
@@ -85885,7 +86148,7 @@ function diffSummary(currentDir, files) {
   if (existsSync80(currentDir)) {
     const walk2 = (sub) => {
       for (const ent of readdirSync30(sub, { withFileTypes: true })) {
-        const full = join80(sub, ent.name);
+        const full = join81(sub, ent.name);
         const rel = relative2(currentDir, full);
         if (ent.isDirectory()) {
           walk2(full);
@@ -85919,9 +86182,9 @@ function diffSummary(currentDir, files) {
 }
 function writePayload(poolDir, name, files) {
   if (!existsSync80(poolDir)) {
-    mkdirSync45(poolDir, { recursive: true, mode: 493 });
+    mkdirSync46(poolDir, { recursive: true, mode: 493 });
   }
-  const target = join80(poolDir, name);
+  const target = join81(poolDir, name);
   let targetIsSymlink = false;
   try {
     const st = lstatSync9(target);
@@ -85932,15 +86195,15 @@ function writePayload(poolDir, name, files) {
   if (targetIsSymlink) {
     fail3(`refusing to overwrite symlink at ${target}; investigate manually`);
   }
-  const staging = mkdtempSync5(join80(poolDir, `.skill-apply-stage-${name}-`));
+  const staging = mkdtempSync5(join81(poolDir, `.skill-apply-stage-${name}-`));
   let oldRename = null;
   try {
     for (const [path8, content] of Object.entries(files)) {
-      const full = join80(staging, path8);
-      mkdirSync45(dirname24(full), { recursive: true, mode: 493 });
+      const full = join81(staging, path8);
+      mkdirSync46(dirname24(full), { recursive: true, mode: 493 });
       const fd = openSync15(full, "wx");
       try {
-        writeFileSync39(fd, content);
+        writeFileSync40(fd, content);
       } finally {
         closeSync15(fd);
       }
@@ -86014,7 +86277,7 @@ function registerSkillCommand(program3) {
     }
     const config = loadConfig();
     const poolDir = resolveSkillsPoolDir2(config.switchroom?.skills_dir);
-    const currentDir = join80(poolDir, name);
+    const currentDir = join81(poolDir, name);
     console.log(source_default.bold(`Skill: ${name}`) + source_default.gray(` (${Object.keys(files).length} files, ${sumBytes(files)} bytes)`));
     console.log(source_default.bold("Diff vs current pool content:"));
     console.log(diffSummary(currentDir, files));
@@ -86047,7 +86310,7 @@ import {
   closeSync as closeSync16,
   existsSync as existsSync81,
   lstatSync as lstatSync10,
-  mkdirSync as mkdirSync46,
+  mkdirSync as mkdirSync47,
   mkdtempSync as mkdtempSync6,
   openSync as openSync16,
   readFileSync as readFileSync69,
@@ -86056,9 +86319,9 @@ import {
   rmSync as rmSync17,
   statSync as statSync33,
   utimesSync,
-  writeFileSync as writeFileSync40
+  writeFileSync as writeFileSync41
 } from "node:fs";
-import { dirname as dirname25, join as join81, relative as relative3, resolve as resolve49 } from "node:path";
+import { dirname as dirname25, join as join82, relative as relative3, resolve as resolve49 } from "node:path";
 import { homedir as homedir47, tmpdir as tmpdir6 } from "node:os";
 import { spawnSync as spawnSync13 } from "node:child_process";
 init_helpers();
@@ -86069,10 +86332,10 @@ var TRASH_TTL_MS = 24 * 60 * 60 * 1000;
 var PERSONAL_SKILLS_SUBPATH = "personal-skills";
 function resolveConfigSkillsDir(agent) {
   const override = process.env.SWITCHROOM_CONFIG_DIR;
-  const candidate = override ? resolve49(override) : join81(homedir47(), ".switchroom-config");
+  const candidate = override ? resolve49(override) : join82(homedir47(), ".switchroom-config");
   if (!existsSync81(candidate))
     return null;
-  return join81(candidate, "agents", agent, PERSONAL_SKILLS_SUBPATH);
+  return join82(candidate, "agents", agent, PERSONAL_SKILLS_SUBPATH);
 }
 var MIRROR_PRIOR_TTL_MS = 24 * 60 * 60 * 1000;
 function sweepMirrorPriors(configSkillsRoot) {
@@ -86090,7 +86353,7 @@ function sweepMirrorPriors(configSkillsRoot) {
       if (now - ts < MIRROR_PRIOR_TTL_MS)
         continue;
       try {
-        rmSync17(join81(configSkillsRoot, ent), { recursive: true, force: true });
+        rmSync17(join82(configSkillsRoot, ent), { recursive: true, force: true });
       } catch {}
     }
   } catch {}
@@ -86099,7 +86362,7 @@ function mirrorToConfigRepo(agent, name, liveSkillDir) {
   const configSkillsRoot = resolveConfigSkillsDir(agent);
   if (!configSkillsRoot)
     return;
-  const dest = join81(configSkillsRoot, name);
+  const dest = join82(configSkillsRoot, name);
   try {
     if (liveSkillDir !== null) {
       try {
@@ -86114,31 +86377,31 @@ function mirrorToConfigRepo(agent, name, liveSkillDir) {
     if (liveSkillDir === null) {
       sweepMirrorPriors(configSkillsRoot);
       if (existsSync81(dest)) {
-        const trash = join81(configSkillsRoot, `.${name}-trash-${Date.now()}`);
+        const trash = join82(configSkillsRoot, `.${name}-trash-${Date.now()}`);
         renameSync18(dest, trash);
       }
       return;
     }
-    mkdirSync46(configSkillsRoot, { recursive: true, mode: 493 });
+    mkdirSync47(configSkillsRoot, { recursive: true, mode: 493 });
     sweepMirrorPriors(configSkillsRoot);
-    const staging = mkdtempSync6(join81(configSkillsRoot, `.${name}-staging-`));
+    const staging = mkdtempSync6(join82(configSkillsRoot, `.${name}-staging-`));
     const walk2 = (src, dst) => {
-      mkdirSync46(dst, { recursive: true, mode: 493 });
+      mkdirSync47(dst, { recursive: true, mode: 493 });
       for (const ent of readdirSync31(src, { withFileTypes: true })) {
-        const s = join81(src, ent.name);
-        const d = join81(dst, ent.name);
+        const s = join82(src, ent.name);
+        const d = join82(dst, ent.name);
         if (ent.isSymbolicLink())
           continue;
         if (ent.isDirectory())
           walk2(s, d);
         else if (ent.isFile()) {
-          writeFileSync40(d, readFileSync69(s));
+          writeFileSync41(d, readFileSync69(s));
         }
       }
     };
     walk2(liveSkillDir, staging);
     if (existsSync81(dest)) {
-      const prior = join81(configSkillsRoot, `.${name}-prior-${Date.now()}`);
+      const prior = join82(configSkillsRoot, `.${name}-prior-${Date.now()}`);
       renameSync18(dest, prior);
     }
     renameSync18(staging, dest);
@@ -86165,13 +86428,13 @@ function resolveAgent(opts) {
 function resolveAgentsRoot(opts) {
   if (opts.root)
     return resolve49(opts.root);
-  return join81(homedir47(), ".switchroom", "agents");
+  return join82(homedir47(), ".switchroom", "agents");
 }
 function personalSkillDir(agentsRoot, agent, name) {
-  return join81(agentsRoot, agent, ".claude", "skills", PERSONAL_PREFIX + name);
+  return join82(agentsRoot, agent, ".claude", "skills", PERSONAL_PREFIX + name);
 }
 function trashDir(agentsRoot, agent) {
-  return join81(agentsRoot, agent, ".claude", TRASH_DIRNAME);
+  return join82(agentsRoot, agent, ".claude", TRASH_DIRNAME);
 }
 function readStdinSync2() {
   const chunks = [];
@@ -86201,7 +86464,7 @@ function loadFromDir2(dir) {
   const files = {};
   const walk2 = (sub) => {
     for (const ent of readdirSync31(sub, { withFileTypes: true })) {
-      const full = join81(sub, ent.name);
+      const full = join82(sub, ent.name);
       if (ent.isSymbolicLink()) {
         fail4(`refusing to read symlink in --from dir: ${relative3(abs, full)}`);
       }
@@ -86254,10 +86517,10 @@ function behavioralValidate(files) {
         errors2.push(`${path8} fails \`bash -n\`: ${(r.stderr ?? "").trim()}`);
       }
     } else if (PY_SCRIPT_RE.test(path8)) {
-      const tmp = mkdtempSync6(join81(tmpdir6(), "skill-personal-py-"));
-      const tmpPy = join81(tmp, "check.py");
+      const tmp = mkdtempSync6(join82(tmpdir6(), "skill-personal-py-"));
+      const tmpPy = join82(tmp, "check.py");
       try {
-        writeFileSync40(tmpPy, content);
+        writeFileSync41(tmpPy, content);
         const r = spawnSync13("python3", ["-m", "py_compile", tmpPy], {
           encoding: "utf-8"
         });
@@ -86279,7 +86542,7 @@ function sweepTrash(agentsRoot, agent) {
   for (const ent of readdirSync31(trash, { withFileTypes: true })) {
     if (!ent.isDirectory())
       continue;
-    const entPath = join81(trash, ent.name);
+    const entPath = join82(trash, ent.name);
     try {
       const st = statSync33(entPath);
       if (now - st.mtimeMs > TRASH_TTL_MS) {
@@ -86299,16 +86562,16 @@ function writePersonalSkill(targetDir, files) {
   if (targetIsSymlink) {
     fail4(`refusing to overwrite symlink at ${targetDir}; investigate manually`);
   }
-  mkdirSync46(dirname25(targetDir), { recursive: true, mode: 493 });
-  const staging = mkdtempSync6(join81(dirname25(targetDir), `.skill-personal-stage-`));
+  mkdirSync47(dirname25(targetDir), { recursive: true, mode: 493 });
+  const staging = mkdtempSync6(join82(dirname25(targetDir), `.skill-personal-stage-`));
   let oldRename = null;
   try {
     for (const [path8, content] of Object.entries(files)) {
-      const full = join81(staging, path8);
-      mkdirSync46(dirname25(full), { recursive: true, mode: 493 });
+      const full = join82(staging, path8);
+      mkdirSync47(dirname25(full), { recursive: true, mode: 493 });
       const fd = openSync16(full, "wx");
       try {
-        writeFileSync40(fd, content);
+        writeFileSync41(fd, content);
       } finally {
         closeSync16(fd);
       }
@@ -86437,10 +86700,10 @@ function editPersonalAction(name, opts) {
 }
 var CLONE_SOURCE_RE = /^(shared|bundled):([a-z0-9][a-z0-9_-]{0,62})$/;
 function defaultSharedRoot() {
-  return join81(homedir47(), ".switchroom", "skills");
+  return join82(homedir47(), ".switchroom", "skills");
 }
 function defaultBundledRoot() {
-  return join81(homedir47(), ".switchroom", "skills", "_bundled");
+  return join82(homedir47(), ".switchroom", "skills", "_bundled");
 }
 function resolveCloneSource(source, opts) {
   const m = CLONE_SOURCE_RE.exec(source);
@@ -86450,7 +86713,7 @@ function resolveCloneSource(source, opts) {
   const tier = m[1];
   const slug = m[2];
   const root = tier === "bundled" ? opts.bundledRoot ?? defaultBundledRoot() : opts.sharedRoot ?? defaultSharedRoot();
-  const dir = join81(root, slug);
+  const dir = join82(root, slug);
   if (!existsSync81(dir)) {
     fail4(`clone source ${JSON.stringify(source)} not found at ${dir}; ` + `check \`switchroom skill search --tier ${tier}\``, 1);
   }
@@ -86466,7 +86729,7 @@ function readSourceFiles(dir) {
   const skipped = [];
   const walk2 = (sub) => {
     for (const ent of readdirSync31(sub, { withFileTypes: true })) {
-      const full = join81(sub, ent.name);
+      const full = join82(sub, ent.name);
       if (ent.isSymbolicLink()) {
         continue;
       }
@@ -86575,9 +86838,9 @@ function removePersonalAction(name, opts) {
     throw err2;
   }
   const trashRoot = trashDir(agentsRoot, agent);
-  mkdirSync46(trashRoot, { recursive: true, mode: 493 });
+  mkdirSync47(trashRoot, { recursive: true, mode: 493 });
   const ts = Date.now();
-  const trashTarget = join81(trashRoot, `${name}-${ts}`);
+  const trashTarget = join82(trashRoot, `${name}-${ts}`);
   renameSync18(target, trashTarget);
   const now = new Date(ts);
   utimesSync(trashTarget, now, now);
@@ -86596,7 +86859,7 @@ function listPersonalAction(opts) {
   const agent = resolveAgent(opts);
   const agentsRoot = resolveAgentsRoot(opts);
   sweepTrash(agentsRoot, agent);
-  const skillsDir = join81(agentsRoot, agent, ".claude", "skills");
+  const skillsDir = join82(agentsRoot, agent, ".claude", "skills");
   const personal = [];
   if (existsSync81(skillsDir)) {
     for (const ent of readdirSync31(skillsDir, { withFileTypes: true })) {
@@ -86605,7 +86868,7 @@ function listPersonalAction(opts) {
       if (!ent.name.startsWith(PERSONAL_PREFIX))
         continue;
       const skillName = ent.name.slice(PERSONAL_PREFIX.length);
-      const skillPath = join81(skillsDir, ent.name);
+      const skillPath = join82(skillsDir, ent.name);
       let fileCount = 0;
       let totalBytes = 0;
       const walk2 = (sub) => {
@@ -86613,10 +86876,10 @@ function listPersonalAction(opts) {
           if (e.isFile()) {
             fileCount += 1;
             try {
-              totalBytes += statSync33(join81(sub, e.name)).size;
+              totalBytes += statSync33(join82(sub, e.name)).size;
             } catch {}
           } else if (e.isDirectory()) {
-            walk2(join81(sub, e.name));
+            walk2(join82(sub, e.name));
           }
         }
       };
@@ -86657,7 +86920,7 @@ init_helpers();
 var import_yaml24 = __toESM(require_dist(), 1);
 import { existsSync as existsSync82, readdirSync as readdirSync32, readFileSync as readFileSync70, statSync as statSync34 } from "node:fs";
 import { homedir as homedir48 } from "node:os";
-import { join as join82, resolve as resolve50 } from "node:path";
+import { join as join83, resolve as resolve50 } from "node:path";
 var PERSONAL_PREFIX2 = "personal-";
 var BUNDLED_SUBDIR = "_bundled";
 var AGENT_NAME_RE3 = /^[a-z][a-z0-9_-]{0,62}$/;
@@ -86671,7 +86934,7 @@ function defaultBundledRoot2() {
   return resolve50(homedir48(), ".switchroom/skills/_bundled");
 }
 function readSkillFrontmatter(skillDir) {
-  const mdPath = join82(skillDir, "SKILL.md");
+  const mdPath = join83(skillDir, "SKILL.md");
   if (!existsSync82(mdPath))
     return null;
   let content;
@@ -86704,7 +86967,7 @@ function readSkillFrontmatter(skillDir) {
   return { fm: parsed };
 }
 function statSkillMd(skillDir) {
-  const mdPath = join82(skillDir, "SKILL.md");
+  const mdPath = join83(skillDir, "SKILL.md");
   try {
     const st = statSync34(mdPath);
     return { size: st.size, mtime: st.mtime.toISOString() };
@@ -86715,7 +86978,7 @@ function statSkillMd(skillDir) {
 function listPersonalSkills(agent, agentsRoot = defaultAgentsRoot()) {
   if (!AGENT_NAME_RE3.test(agent))
     return [];
-  const skillsDir = join82(agentsRoot, agent, ".claude/skills");
+  const skillsDir = join83(agentsRoot, agent, ".claude/skills");
   if (!existsSync82(skillsDir))
     return [];
   const out = [];
@@ -86728,7 +86991,7 @@ function listPersonalSkills(agent, agentsRoot = defaultAgentsRoot()) {
   for (const ent of entries) {
     if (!ent.startsWith(PERSONAL_PREFIX2))
       continue;
-    const dirPath = join82(skillsDir, ent);
+    const dirPath = join83(skillsDir, ent);
     try {
       if (!statSync34(dirPath).isDirectory())
         continue;
@@ -86768,7 +87031,7 @@ function listSharedSkills(sharedRoot = defaultSharedRoot2()) {
       continue;
     if (ent.startsWith("."))
       continue;
-    const dirPath = join82(sharedRoot, ent);
+    const dirPath = join83(sharedRoot, ent);
     try {
       if (!statSync34(dirPath).isDirectory())
         continue;
@@ -86804,7 +87067,7 @@ function listBundledSkills(bundledRoot = defaultBundledRoot2()) {
   for (const ent of entries) {
     if (ent.startsWith("."))
       continue;
-    const dirPath = join82(bundledRoot, ent);
+    const dirPath = join83(bundledRoot, ent);
     try {
       if (!statSync34(dirPath).isDirectory())
         continue;
@@ -86948,9 +87211,9 @@ function registerHostdMcpCommand(program3) {
 // src/cli/hostd.ts
 init_source();
 init_helpers();
-import { existsSync as existsSync84, mkdirSync as mkdirSync47, readdirSync as readdirSync33, readFileSync as readFileSync72, writeFileSync as writeFileSync41, statSync as statSync35, copyFileSync as copyFileSync12 } from "node:fs";
+import { existsSync as existsSync84, mkdirSync as mkdirSync48, readdirSync as readdirSync33, readFileSync as readFileSync72, writeFileSync as writeFileSync42, statSync as statSync35, copyFileSync as copyFileSync12 } from "node:fs";
 import { homedir as homedir49 } from "node:os";
-import { join as join83 } from "node:path";
+import { join as join84 } from "node:path";
 import { spawnSync as spawnSync16 } from "node:child_process";
 
 // src/cli/deploy-version-guard.ts
@@ -87113,10 +87376,10 @@ function resolveHostdHostHome(env2 = process.env, home2 = homedir49()) {
   return resolved;
 }
 function hostdDir() {
-  return join83(homedir49(), ".switchroom", "hostd");
+  return join84(homedir49(), ".switchroom", "hostd");
 }
 function hostdComposePath() {
-  return join83(hostdDir(), "docker-compose.yml");
+  return join84(hostdDir(), "docker-compose.yml");
 }
 function backupExistingCompose() {
   const p = hostdComposePath();
@@ -87153,7 +87416,7 @@ async function doInstall(opts, program3) {
   }
   const dir = hostdDir();
   const composePath = hostdComposePath();
-  mkdirSync47(dir, { recursive: true });
+  mkdirSync48(dir, { recursive: true });
   const imageTag = resolveHostdImageTag(opts.tag, cfg.release);
   const guard = checkDowngrade({
     container: "switchroom-hostd",
@@ -87178,7 +87441,7 @@ async function doInstall(opts, program3) {
   const bak = backupExistingCompose();
   if (bak)
     console.log(source_default.dim(`  Backed up existing compose to ${bak}`));
-  writeFileSync41(composePath, yaml, "utf8");
+  writeFileSync42(composePath, yaml, "utf8");
   console.log(source_default.green(`  \u2713 Wrote ${composePath}`));
   const adminAgents = Object.entries(cfg.agents ?? {}).filter(([, a]) => a?.admin === true).map(([name]) => name);
   console.log(source_default.dim(`    agents served (one socket each): ${allAgents.length === 0 ? "(none)" : allAgents.join(", ")}`));
@@ -87236,7 +87499,7 @@ function doStatus() {
       for (const name of readdirSync33(dir)) {
         if (name === "docker-compose.yml" || name.startsWith("docker-compose.yml."))
           continue;
-        const sockPath = join83(dir, name, "sock");
+        const sockPath = join84(dir, name, "sock");
         if (existsSync84(sockPath)) {
           const st = statSync35(sockPath);
           if ((st.mode & 61440) === 49152) {
@@ -87327,9 +87590,9 @@ The log is created when hostd handles its first privileged-verb request.`));
 // src/cli/webd.ts
 init_source();
 init_helpers();
-import { existsSync as existsSync85, mkdirSync as mkdirSync48, writeFileSync as writeFileSync42, copyFileSync as copyFileSync13 } from "node:fs";
+import { existsSync as existsSync85, mkdirSync as mkdirSync49, writeFileSync as writeFileSync43, copyFileSync as copyFileSync13 } from "node:fs";
 import { homedir as homedir50 } from "node:os";
-import { join as join84 } from "node:path";
+import { join as join85 } from "node:path";
 import { spawnSync as spawnSync17 } from "node:child_process";
 function resolveWebImageTag(explicitTag, release) {
   if (explicitTag)
@@ -87414,10 +87677,10 @@ services:
 `;
 }
 function webdDir() {
-  return join84(homedir50(), ".switchroom", "web");
+  return join85(homedir50(), ".switchroom", "web");
 }
 function webdComposePath() {
-  return join84(webdDir(), "docker-compose.yml");
+  return join85(webdDir(), "docker-compose.yml");
 }
 function backupExistingCompose2() {
   const p = webdComposePath();
@@ -87446,7 +87709,7 @@ async function doInstall2(opts, program3) {
   }
   const dir = webdDir();
   const composePath = webdComposePath();
-  mkdirSync48(dir, { recursive: true });
+  mkdirSync49(dir, { recursive: true });
   const cfg = getConfig(program3);
   const imageTag = resolveWebImageTag(opts.tag, cfg.release);
   const guard = checkDowngrade({
@@ -87472,7 +87735,7 @@ async function doInstall2(opts, program3) {
   const bak = backupExistingCompose2();
   if (bak)
     console.log(source_default.dim(`  Backed up existing compose to ${bak}`));
-  writeFileSync42(composePath, yaml, "utf8");
+  writeFileSync43(composePath, yaml, "utf8");
   console.log(source_default.green(`  \u2713 Wrote ${composePath}`));
   console.log(source_default.dim(`    running as uid ${operatorUid} (operator), network_mode: host`));
   console.log(source_default.dim(`    Pulling ghcr.io/switchroom/switchroom-web:${imageTag}\u2026`));