npm - vellum - Versions diffs - 0.0.16 → 0.2.0 - Mend

vellum 0.0.16 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (838) hide show

package/.dockerignore +27 -0
package/.env.example +22 -0
package/Dockerfile +99 -0
package/Dockerfile.sandbox +5 -0
package/README.md +150 -3
package/bun.lock +1768 -0
package/bunfig.toml +2 -0
package/docs/skills.md +158 -0
package/drizzle/0000_dizzy_maggott.sql +301 -0
package/drizzle/meta/0000_snapshot.json +1999 -0
package/drizzle/meta/_journal.json +13 -0
package/drizzle.config.ts +7 -0
package/eslint.config.mjs +17 -0
package/hook-templates/debug-prompt-logger/hook.json +7 -0
package/hook-templates/debug-prompt-logger/run.sh +68 -0
package/knip.json +9 -0
package/package.json +60 -10
package/scripts/ipc/check-contract-inventory.ts +104 -0
package/scripts/ipc/check-swift-decoder-drift.ts +163 -0
package/scripts/ipc/generate-swift.ts +492 -0
package/scripts/test-filesystem-tools.sh +48 -0
package/scripts/test.sh +122 -0
package/src/__tests__/__snapshots__/ipc-snapshot.test.ts.snap +2079 -0
package/src/__tests__/account-registry.test.ts +244 -0
package/src/__tests__/active-skill-tools.test.ts +378 -0
package/src/__tests__/agent-loop-thinking.test.ts +81 -0
package/src/__tests__/agent-loop.test.ts +1135 -0
package/src/__tests__/anthropic-provider.test.ts +778 -0
package/src/__tests__/app-builder-tool-scripts.test.ts +290 -0
package/src/__tests__/app-bundler.test.ts +313 -0
package/src/__tests__/app-executors.test.ts +613 -0
package/src/__tests__/app-open-proxy.test.ts +62 -0
package/src/__tests__/asset-materialize-tool.test.ts +451 -0
package/src/__tests__/asset-search-tool.test.ts +476 -0
package/src/__tests__/assistant-attachment-directive.test.ts +401 -0
package/src/__tests__/assistant-attachments.test.ts +437 -0
package/src/__tests__/assistant-event-hub.test.ts +226 -0
package/src/__tests__/assistant-event.test.ts +123 -0
package/src/__tests__/attachments-store.test.ts +547 -0
package/src/__tests__/attachments.test.ts +134 -0
package/src/__tests__/audit-log-rotation.test.ts +154 -0
package/src/__tests__/browser-fill-credential.test.ts +309 -0
package/src/__tests__/browser-manager.test.ts +203 -0
package/src/__tests__/browser-runtime-check.test.ts +55 -0
package/src/__tests__/browser-skill-baseline-tool-payload.test.ts +67 -0
package/src/__tests__/browser-skill-endstate.test.ts +198 -0
package/src/__tests__/bundle-scanner.test.ts +313 -0
package/src/__tests__/checker.test.ts +3856 -0
package/src/__tests__/clarification-resolver.test.ts +159 -0
package/src/__tests__/classifier.test.ts +67 -0
package/src/__tests__/claude-code-skill-regression.test.ts +127 -0
package/src/__tests__/claude-code-tool-profiles.test.ts +88 -0
package/src/__tests__/cli-discover.test.ts +85 -0
package/src/__tests__/cli.test.ts +81 -0
package/src/__tests__/clipboard.test.ts +80 -0
package/src/__tests__/commit-guarantee.test.ts +335 -0
package/src/__tests__/computer-use-session-compaction.test.ts +132 -0
package/src/__tests__/computer-use-session-lifecycle.test.ts +293 -0
package/src/__tests__/computer-use-session-working-dir.test.ts +117 -0
package/src/__tests__/computer-use-skill-baseline.test.ts +74 -0
package/src/__tests__/computer-use-skill-endstate.test.ts +89 -0
package/src/__tests__/computer-use-skill-lifecycle-cleanup.test.ts +217 -0
package/src/__tests__/computer-use-skill-manifest-regression.test.ts +107 -0
package/src/__tests__/computer-use-skill-proxy-bridge.test.ts +54 -0
package/src/__tests__/config-schema.test.ts +720 -0
package/src/__tests__/conflict-store.test.ts +329 -0
package/src/__tests__/connection-policy.test.ts +102 -0
package/src/__tests__/context-memory-e2e.test.ts +434 -0
package/src/__tests__/context-token-estimator.test.ts +135 -0
package/src/__tests__/context-window-manager.test.ts +376 -0
package/src/__tests__/contradiction-checker.test.ts +216 -0
package/src/__tests__/conversation-store.test.ts +614 -0
package/src/__tests__/credential-broker-browser-fill.test.ts +517 -0
package/src/__tests__/credential-broker-server-use.test.ts +554 -0
package/src/__tests__/credential-broker.test.ts +167 -0
package/src/__tests__/credential-host-pattern-match.test.ts +104 -0
package/src/__tests__/credential-metadata-store.test.ts +779 -0
package/src/__tests__/credential-policy-validate.test.ts +121 -0
package/src/__tests__/credential-resolve.test.ts +328 -0
package/src/__tests__/credential-security-e2e.test.ts +352 -0
package/src/__tests__/credential-security-invariants.test.ts +563 -0
package/src/__tests__/credential-selection.test.ts +354 -0
package/src/__tests__/credential-vault.test.ts +852 -0
package/src/__tests__/daemon-assistant-events.test.ts +164 -0
package/src/__tests__/daemon-server-session-init.test.ts +522 -0
package/src/__tests__/delete-managed-skill-tool.test.ts +97 -0
package/src/__tests__/diff.test.ts +121 -0
package/src/__tests__/domain-normalize.test.ts +112 -0
package/src/__tests__/domain-policy.test.ts +124 -0
package/src/__tests__/doordash-client.test.ts +186 -0
package/src/__tests__/doordash-session.test.ts +143 -0
package/src/__tests__/dynamic-page-surface.test.ts +91 -0
package/src/__tests__/dynamic-skill-workflow-prompt.test.ts +132 -0
package/src/__tests__/edit-engine.test.ts +180 -0
package/src/__tests__/email-cli.test.ts +283 -0
package/src/__tests__/encrypted-store.test.ts +332 -0
package/src/__tests__/entity-extractor.test.ts +190 -0
package/src/__tests__/ephemeral-permissions.test.ts +312 -0
package/src/__tests__/evaluate-typescript-tool.test.ts +286 -0
package/src/__tests__/event-bus.test.ts +222 -0
package/src/__tests__/file-edit-tool.test.ts +122 -0
package/src/__tests__/file-ops-service.test.ts +330 -0
package/src/__tests__/file-read-tool.test.ts +75 -0
package/src/__tests__/file-write-tool.test.ts +113 -0
package/src/__tests__/fixtures/credential-security-fixtures.ts +181 -0
package/src/__tests__/fixtures/media-reuse-fixtures.ts +126 -0
package/src/__tests__/fixtures/mock-signup-server.ts +387 -0
package/src/__tests__/fixtures/proxy-fixtures.ts +147 -0
package/src/__tests__/fuzzy-match-property.test.ts +216 -0
package/src/__tests__/fuzzy-match.test.ts +138 -0
package/src/__tests__/gemini-image-service.test.ts +261 -0
package/src/__tests__/gemini-provider.test.ts +651 -0
package/src/__tests__/get-weather.test.ts +318 -0
package/src/__tests__/gmail-integration.test.ts +73 -0
package/src/__tests__/handlers-cu-observation-blob.test.ts +351 -0
package/src/__tests__/handlers-ipc-blob-probe.test.ts +190 -0
package/src/__tests__/handlers-slack-config.test.ts +199 -0
package/src/__tests__/handlers-task-submit-slash.test.ts +38 -0
package/src/__tests__/headless-browser-interactions.test.ts +536 -0
package/src/__tests__/headless-browser-navigate.test.ts +211 -0
package/src/__tests__/headless-browser-read-tools.test.ts +261 -0
package/src/__tests__/headless-browser-snapshot.test.ts +185 -0
package/src/__tests__/history-repair-observability.test.ts +56 -0
package/src/__tests__/history-repair.test.ts +510 -0
package/src/__tests__/home-base-bootstrap.test.ts +77 -0
package/src/__tests__/hooks-blocking.test.ts +128 -0
package/src/__tests__/hooks-cli.test.ts +144 -0
package/src/__tests__/hooks-config.test.ts +93 -0
package/src/__tests__/hooks-discovery.test.ts +199 -0
package/src/__tests__/hooks-integration.test.ts +189 -0
package/src/__tests__/hooks-manager.test.ts +187 -0
package/src/__tests__/hooks-runner.test.ts +178 -0
package/src/__tests__/hooks-settings.test.ts +154 -0
package/src/__tests__/hooks-templates.test.ts +137 -0
package/src/__tests__/hooks-ts-runner.test.ts +125 -0
package/src/__tests__/hooks-watch.test.ts +100 -0
package/src/__tests__/host-file-edit-tool.test.ts +104 -0
package/src/__tests__/host-file-read-tool.test.ts +61 -0
package/src/__tests__/host-file-write-tool.test.ts +77 -0
package/src/__tests__/host-shell-tool.test.ts +311 -0
package/src/__tests__/intent-routing.test.ts +255 -0
package/src/__tests__/ipc-blob-store.test.ts +315 -0
package/src/__tests__/ipc-contract-inventory.test.ts +54 -0
package/src/__tests__/ipc-contract.test.ts +74 -0
package/src/__tests__/ipc-protocol.test.ts +113 -0
package/src/__tests__/ipc-snapshot.test.ts +1560 -0
package/src/__tests__/ipc-validate.test.ts +357 -0
package/src/__tests__/key-migration.test.ts +183 -0
package/src/__tests__/keychain.test.ts +258 -0
package/src/__tests__/llm-usage-store.test.ts +226 -0
package/src/__tests__/managed-skill-lifecycle.test.ts +257 -0
package/src/__tests__/managed-store.test.ts +608 -0
package/src/__tests__/media-generate-image.test.ts +238 -0
package/src/__tests__/media-reuse-story.e2e.test.ts +676 -0
package/src/__tests__/media-visibility-policy.test.ts +141 -0
package/src/__tests__/memory-context-benchmark.test.ts +235 -0
package/src/__tests__/memory-lifecycle-e2e.test.ts +481 -0
package/src/__tests__/memory-query-builder.test.ts +59 -0
package/src/__tests__/memory-recall-quality.test.ts +846 -0
package/src/__tests__/memory-regressions.experimental.test.ts +538 -0
package/src/__tests__/memory-regressions.test.ts +4238 -0
package/src/__tests__/memory-retrieval-budget.test.ts +49 -0
package/src/__tests__/migration-cli-flows.test.ts +169 -0
package/src/__tests__/migration-ordering.test.ts +249 -0
package/src/__tests__/mock-signup-server.test.ts +528 -0
package/src/__tests__/onboarding-starter-tasks.test.ts +166 -0
package/src/__tests__/onboarding-template-contract.test.ts +58 -0
package/src/__tests__/openai-provider.test.ts +753 -0
package/src/__tests__/parser.test.ts +472 -0
package/src/__tests__/path-classifier.test.ts +73 -0
package/src/__tests__/path-policy.test.ts +435 -0
package/src/__tests__/platform-move-helper.test.ts +99 -0
package/src/__tests__/platform-socket-path.test.ts +52 -0
package/src/__tests__/platform-workspace-migration.test.ts +1000 -0
package/src/__tests__/platform.test.ts +131 -0
package/src/__tests__/prebuilt-home-base-seed.test.ts +71 -0
package/src/__tests__/pricing.test.ts +256 -0
package/src/__tests__/profile-compiler.test.ts +373 -0
package/src/__tests__/provider-registry-ollama.test.ts +16 -0
package/src/__tests__/proxy-approval-callback.test.ts +601 -0
package/src/__tests__/ratelimit.test.ts +297 -0
package/src/__tests__/registry.test.ts +487 -0
package/src/__tests__/reminder-store.test.ts +220 -0
package/src/__tests__/reminder.test.ts +263 -0
package/src/__tests__/request-file-tool.test.ts +158 -0
package/src/__tests__/run-orchestrator.test.ts +200 -0
package/src/__tests__/runtime-attachment-metadata.test.ts +190 -0
package/src/__tests__/runtime-runs-http.test.ts +451 -0
package/src/__tests__/runtime-runs.test.ts +273 -0
package/src/__tests__/sandbox-diagnostics.test.ts +408 -0
package/src/__tests__/sandbox-host-parity.test.ts +950 -0
package/src/__tests__/scaffold-managed-skill-tool.test.ts +253 -0
package/src/__tests__/script-proxy-certs.test.ts +90 -0
package/src/__tests__/script-proxy-connect-tunnel.test.ts +177 -0
package/src/__tests__/script-proxy-decision-trace.test.ts +156 -0
package/src/__tests__/script-proxy-http-forwarder.test.ts +281 -0
package/src/__tests__/script-proxy-injection-runtime.test.ts +401 -0
package/src/__tests__/script-proxy-mitm-handler.test.ts +407 -0
package/src/__tests__/script-proxy-policy-runtime.test.ts +287 -0
package/src/__tests__/script-proxy-policy.test.ts +310 -0
package/src/__tests__/script-proxy-rewrite-specificity.test.ts +135 -0
package/src/__tests__/script-proxy-router.test.ts +180 -0
package/src/__tests__/script-proxy-session-manager.test.ts +382 -0
package/src/__tests__/script-proxy-session-runtime.test.ts +113 -0
package/src/__tests__/secret-allowlist.test.ts +229 -0
package/src/__tests__/secret-ingress-handler.test.ts +99 -0
package/src/__tests__/secret-onetime-send.test.ts +130 -0
package/src/__tests__/secret-prompt-log-hygiene.test.ts +106 -0
package/src/__tests__/secret-response-routing.test.ts +93 -0
package/src/__tests__/secret-scanner-executor.test.ts +348 -0
package/src/__tests__/secret-scanner.test.ts +857 -0
package/src/__tests__/secure-keys.test.ts +323 -0
package/src/__tests__/server-history-render.test.ts +430 -0
package/src/__tests__/session-abort-tool-results.test.ts +240 -0
package/src/__tests__/session-conflict-gate.test.ts +697 -0
package/src/__tests__/session-error.test.ts +341 -0
package/src/__tests__/session-evictor.test.ts +188 -0
package/src/__tests__/session-load-history-repair.test.ts +222 -0
package/src/__tests__/session-pre-run-repair.test.ts +213 -0
package/src/__tests__/session-profile-injection.test.ts +444 -0
package/src/__tests__/session-provider-retry-repair.test.ts +306 -0
package/src/__tests__/session-queue.test.ts +1462 -0
package/src/__tests__/session-runtime-assembly.test.ts +315 -0
package/src/__tests__/session-runtime-workspace.test.ts +183 -0
package/src/__tests__/session-skill-tools.test.ts +2431 -0
package/src/__tests__/session-slash-known.test.ts +368 -0
package/src/__tests__/session-slash-queue.test.ts +288 -0
package/src/__tests__/session-slash-unknown.test.ts +271 -0
package/src/__tests__/session-tool-setup-app-refresh.test.ts +473 -0
package/src/__tests__/session-tool-setup-memory-scope.test.ts +140 -0
package/src/__tests__/session-tool-setup-side-effect-flag.test.ts +140 -0
package/src/__tests__/session-undo.test.ts +75 -0
package/src/__tests__/session-workspace-cache-state.test.ts +246 -0
package/src/__tests__/session-workspace-injection.test.ts +327 -0
package/src/__tests__/session-workspace-tool-tracking.test.ts +240 -0
package/src/__tests__/shared-filesystem-errors.test.ts +78 -0
package/src/__tests__/shell-credential-ref.test.ts +187 -0
package/src/__tests__/shell-parser-fuzz.test.ts +544 -0
package/src/__tests__/shell-parser-property.test.ts +433 -0
package/src/__tests__/shell-tool-proxy-mode.test.ts +272 -0
package/src/__tests__/signup-e2e.test.ts +352 -0
package/src/__tests__/size-guard.test.ts +117 -0
package/src/__tests__/skill-include-graph.test.ts +303 -0
package/src/__tests__/skill-load-tool.test.ts +409 -0
package/src/__tests__/skill-script-runner-host.test.ts +489 -0
package/src/__tests__/skill-script-runner-sandbox.test.ts +349 -0
package/src/__tests__/skill-tool-factory.test.ts +252 -0
package/src/__tests__/skill-tool-manifest.test.ts +658 -0
package/src/__tests__/skill-version-hash.test.ts +182 -0
package/src/__tests__/skills.test.ts +597 -0
package/src/__tests__/slash-commands-catalog.test.ts +86 -0
package/src/__tests__/slash-commands-parser.test.ts +119 -0
package/src/__tests__/slash-commands-resolver.test.ts +193 -0
package/src/__tests__/slash-commands-rewrite.test.ts +39 -0
package/src/__tests__/starter-bundle.test.ts +136 -0
package/src/__tests__/starter-task-flow.test.ts +143 -0
package/src/__tests__/subagent-manager-notify.test.ts +372 -0
package/src/__tests__/subagent-tools.test.ts +118 -0
package/src/__tests__/subagent-types.test.ts +78 -0
package/src/__tests__/swarm-orchestrator.test.ts +428 -0
package/src/__tests__/swarm-plan-validator.test.ts +330 -0
package/src/__tests__/swarm-recursion.test.ts +165 -0
package/src/__tests__/swarm-router-planner.test.ts +208 -0
package/src/__tests__/swarm-session-integration.test.ts +274 -0
package/src/__tests__/swarm-tool.test.ts +145 -0
package/src/__tests__/swarm-worker-backend.test.ts +129 -0
package/src/__tests__/swarm-worker-runner.test.ts +272 -0
package/src/__tests__/system-prompt.test.ts +461 -0
package/src/__tests__/task-compiler.test.ts +283 -0
package/src/__tests__/task-runner.test.ts +215 -0
package/src/__tests__/task-scheduler.test.ts +216 -0
package/src/__tests__/task-tools.test.ts +602 -0
package/src/__tests__/terminal-sandbox-docker.test.ts +1064 -0
package/src/__tests__/terminal-sandbox.integration.test.ts +178 -0
package/src/__tests__/terminal-sandbox.test.ts +202 -0
package/src/__tests__/test-support/browser-skill-harness.ts +90 -0
package/src/__tests__/test-support/computer-use-skill-harness.ts +45 -0
package/src/__tests__/tool-audit-listener.test.ts +112 -0
package/src/__tests__/tool-domain-event-publisher.test.ts +251 -0
package/src/__tests__/tool-executor-lifecycle-events.test.ts +516 -0
package/src/__tests__/tool-executor-redaction.test.ts +289 -0
package/src/__tests__/tool-executor.test.ts +1971 -0
package/src/__tests__/tool-metrics-listener.test.ts +225 -0
package/src/__tests__/tool-notification-listener.test.ts +49 -0
package/src/__tests__/tool-policy.test.ts +54 -0
package/src/__tests__/tool-profiling-listener.test.ts +268 -0
package/src/__tests__/tool-result-truncation.test.ts +217 -0
package/src/__tests__/tool-trace-listener.test.ts +226 -0
package/src/__tests__/top-level-renderer.test.ts +121 -0
package/src/__tests__/top-level-scanner.test.ts +141 -0
package/src/__tests__/trace-emitter.test.ts +173 -0
package/src/__tests__/trust-store.test.ts +2030 -0
package/src/__tests__/turn-commit.test.ts +219 -0
package/src/__tests__/url-safety.test.ts +418 -0
package/src/__tests__/weather-skill-regression.test.ts +225 -0
package/src/__tests__/web-fetch.test.ts +869 -0
package/src/__tests__/web-search.test.ts +584 -0
package/src/__tests__/workspace-git-service.test.ts +750 -0
package/src/__tests__/workspace-heartbeat-service.test.ts +347 -0
package/src/__tests__/workspace-lifecycle.test.ts +292 -0
package/src/agent/attachments.ts +35 -0
package/src/agent/loop.ts +500 -0
package/src/agent/message-types.ts +17 -0
package/src/autonomy/autonomy-resolver.ts +60 -0
package/src/autonomy/autonomy-store.ts +122 -0
package/src/autonomy/disposition-mapper.ts +31 -0
package/src/autonomy/index.ts +11 -0
package/src/autonomy/types.ts +39 -0
package/src/bundler/app-bundler.ts +274 -0
package/src/bundler/bundle-scanner.ts +535 -0
package/src/bundler/bundle-signer.ts +124 -0
package/src/bundler/manifest.ts +21 -0
package/src/bundler/signature-verifier.ts +184 -0
package/src/cli/autonomy.ts +188 -0
package/src/cli/contacts.ts +149 -0
package/src/cli/doordash.ts +824 -0
package/src/cli/email-guardrails.ts +200 -0
package/src/cli/email.ts +405 -0
package/src/cli/main-screen.tsx +155 -0
package/src/cli.ts +935 -0
package/src/config/bundled-skills/.gitkeep +0 -0
package/src/config/bundled-skills/agentmail/SKILL.md +128 -0
package/src/config/bundled-skills/agentmail/icon.svg +21 -0
package/src/config/bundled-skills/app-builder/SKILL.md +1348 -0
package/src/config/bundled-skills/app-builder/TOOLS.json +279 -0
package/src/config/bundled-skills/app-builder/icon.svg +9 -0
package/src/config/bundled-skills/app-builder/tools/app-create.ts +15 -0
package/src/config/bundled-skills/app-builder/tools/app-delete.ts +10 -0
package/src/config/bundled-skills/app-builder/tools/app-file-edit.ts +11 -0
package/src/config/bundled-skills/app-builder/tools/app-file-list.ts +10 -0
package/src/config/bundled-skills/app-builder/tools/app-file-read.ts +18 -0
package/src/config/bundled-skills/app-builder/tools/app-file-write.ts +11 -0
package/src/config/bundled-skills/app-builder/tools/app-list.ts +10 -0
package/src/config/bundled-skills/app-builder/tools/app-query.ts +10 -0
package/src/config/bundled-skills/app-builder/tools/app-update.ts +20 -0
package/src/config/bundled-skills/browser/SKILL.md +28 -0
package/src/config/bundled-skills/browser/TOOLS.json +234 -0
package/src/config/bundled-skills/browser/tools/browser-click.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-close.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-extract.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-fill-credential.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-navigate.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-press-key.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-screenshot.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-snapshot.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-type.ts +9 -0
package/src/config/bundled-skills/browser/tools/browser-wait-for.ts +9 -0
package/src/config/bundled-skills/claude-code/SKILL.md +50 -0
package/src/config/bundled-skills/claude-code/TOOLS.json +40 -0
package/src/config/bundled-skills/claude-code/tools/claude-code.ts +9 -0
package/src/config/bundled-skills/computer-use/SKILL.md +17 -0
package/src/config/bundled-skills/computer-use/TOOLS.json +326 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-click.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-done.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-double-click.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-drag.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-key.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-open-app.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-request-control.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-respond.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-right-click.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-run-applescript.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-scroll.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-type-text.ts +9 -0
package/src/config/bundled-skills/computer-use/tools/computer-use-wait.ts +9 -0
package/src/config/bundled-skills/google-calendar/SKILL.md +51 -0
package/src/config/bundled-skills/google-calendar/TOOLS.json +108 -0
package/src/config/bundled-skills/google-calendar/calendar-client.ts +165 -0
package/src/config/bundled-skills/google-calendar/tools/calendar-check-availability.ts +21 -0
package/src/config/bundled-skills/google-calendar/tools/calendar-create-event.ts +42 -0
package/src/config/bundled-skills/google-calendar/tools/calendar-get-event.ts +13 -0
package/src/config/bundled-skills/google-calendar/tools/calendar-list-events.ts +30 -0
package/src/config/bundled-skills/google-calendar/tools/calendar-rsvp.ts +41 -0
package/src/config/bundled-skills/google-calendar/tools/shared.ts +18 -0
package/src/config/bundled-skills/google-calendar/types.ts +97 -0
package/src/config/bundled-skills/image-studio/SKILL.md +32 -0
package/src/config/bundled-skills/image-studio/TOOLS.json +42 -0
package/src/config/bundled-skills/image-studio/tools/media-generate-image.ts +137 -0
package/src/config/bundled-skills/messaging/SKILL.md +126 -0
package/src/config/bundled-skills/messaging/TOOLS.json +357 -0
package/src/config/bundled-skills/messaging/tools/gmail-archive.ts +23 -0
package/src/config/bundled-skills/messaging/tools/gmail-batch-archive.ts +23 -0
package/src/config/bundled-skills/messaging/tools/gmail-batch-label.ts +25 -0
package/src/config/bundled-skills/messaging/tools/gmail-draft.ts +26 -0
package/src/config/bundled-skills/messaging/tools/gmail-label.ts +25 -0
package/src/config/bundled-skills/messaging/tools/gmail-trash.ts +23 -0
package/src/config/bundled-skills/messaging/tools/gmail-unsubscribe.ts +84 -0
package/src/config/bundled-skills/messaging/tools/messaging-analyze-activity.ts +18 -0
package/src/config/bundled-skills/messaging/tools/messaging-analyze-style.ts +124 -0
package/src/config/bundled-skills/messaging/tools/messaging-auth-test.ts +16 -0
package/src/config/bundled-skills/messaging/tools/messaging-draft.ts +49 -0
package/src/config/bundled-skills/messaging/tools/messaging-list-conversations.ts +21 -0
package/src/config/bundled-skills/messaging/tools/messaging-mark-read.ts +25 -0
package/src/config/bundled-skills/messaging/tools/messaging-read.ts +28 -0
package/src/config/bundled-skills/messaging/tools/messaging-reply.ts +29 -0
package/src/config/bundled-skills/messaging/tools/messaging-search.ts +22 -0
package/src/config/bundled-skills/messaging/tools/messaging-send.ts +27 -0
package/src/config/bundled-skills/messaging/tools/shared.ts +71 -0
package/src/config/bundled-skills/messaging/tools/slack-add-reaction.ts +25 -0
package/src/config/bundled-skills/messaging/tools/slack-leave-channel.ts +23 -0
package/src/config/bundled-skills/self-upgrade/SKILL.md +74 -0
package/src/config/bundled-skills/start-the-day/SKILL.md +70 -0
package/src/config/bundled-skills/start-the-day/icon.svg +13 -0
package/src/config/bundled-skills/weather/SKILL.md +37 -0
package/src/config/bundled-skills/weather/TOOLS.json +32 -0
package/src/config/bundled-skills/weather/icon.svg +24 -0
package/src/config/bundled-skills/weather/tools/get-weather.ts +9 -0
package/src/config/computer-use-prompt.ts +97 -0
package/src/config/defaults.ts +186 -0
package/src/config/loader.ts +336 -0
package/src/config/schema.ts +1004 -0
package/src/config/skill-state.ts +95 -0
package/src/config/skills.ts +972 -0
package/src/config/system-prompt.ts +927 -0
package/src/config/templates/BOOTSTRAP.md +70 -0
package/src/config/templates/IDENTITY.md +18 -0
package/src/config/templates/LOOKS.md +25 -0
package/src/config/templates/SOUL.md +37 -0
package/src/config/templates/USER.md +19 -0
package/src/config/types.ts +32 -0
package/src/config/vellum-skills/deploy-fullstack-vercel/SKILL.md +179 -0
package/src/config/vellum-skills/document-writer/SKILL.md +195 -0
package/src/config/vellum-skills/google-oauth-setup/SKILL.md +194 -0
package/src/config/vellum-skills/slack-oauth-setup/SKILL.md +147 -0
package/src/config/vellum-skills/telegram-setup/SKILL.md +105 -0
package/src/contacts/contact-store.ts +410 -0
package/src/contacts/index.ts +11 -0
package/src/contacts/types.ts +28 -0
package/src/context/token-estimator.ts +108 -0
package/src/context/tool-result-truncation.ts +128 -0
package/src/context/window-manager.ts +531 -0
package/src/daemon/assistant-attachments.ts +679 -0
package/src/daemon/classifier.ts +108 -0
package/src/daemon/computer-use-session.ts +900 -0
package/src/daemon/connection-policy.ts +41 -0
package/src/daemon/handlers/apps.ts +446 -0
package/src/daemon/handlers/computer-use.ts +181 -0
package/src/daemon/handlers/config.ts +434 -0
package/src/daemon/handlers/diagnostics.ts +334 -0
package/src/daemon/handlers/documents.ts +184 -0
package/src/daemon/handlers/home-base.ts +73 -0
package/src/daemon/handlers/index.ts +355 -0
package/src/daemon/handlers/misc.ts +323 -0
package/src/daemon/handlers/open-bundle-handler.ts +80 -0
package/src/daemon/handlers/publish.ts +182 -0
package/src/daemon/handlers/sessions.ts +486 -0
package/src/daemon/handlers/shared.ts +533 -0
package/src/daemon/handlers/skills.ts +487 -0
package/src/daemon/handlers/subagents.ts +122 -0
package/src/daemon/handlers/work-items.ts +176 -0
package/src/daemon/handlers.ts +17 -0
package/src/daemon/history-repair.ts +214 -0
package/src/daemon/ipc-blob-store.ts +231 -0
package/src/daemon/ipc-contract-inventory.json +407 -0
package/src/daemon/ipc-contract-inventory.ts +126 -0
package/src/daemon/ipc-contract.ts +2102 -0
package/src/daemon/ipc-protocol.ts +70 -0
package/src/daemon/ipc-validate.ts +171 -0
package/src/daemon/lifecycle.ts +503 -0
package/src/daemon/main.ts +15 -0
package/src/daemon/media-visibility-policy.ts +57 -0
package/src/daemon/ride-shotgun-handler.ts +244 -0
package/src/daemon/server.ts +1085 -0
package/src/daemon/session-attachments.ts +173 -0
package/src/daemon/session-conflict-gate.ts +219 -0
package/src/daemon/session-dynamic-profile.ts +63 -0
package/src/daemon/session-error.ts +269 -0
package/src/daemon/session-evictor.ts +196 -0
package/src/daemon/session-history.ts +437 -0
package/src/daemon/session-memory.ts +212 -0
package/src/daemon/session-process.ts +264 -0
package/src/daemon/session-queue-manager.ts +81 -0
package/src/daemon/session-runtime-assembly.ts +395 -0
package/src/daemon/session-skill-tools.ts +237 -0
package/src/daemon/session-slash.ts +302 -0
package/src/daemon/session-surfaces.ts +624 -0
package/src/daemon/session-tool-setup.ts +286 -0
package/src/daemon/session-usage.ts +74 -0
package/src/daemon/session-workspace.ts +19 -0
package/src/daemon/session.ts +1651 -0
package/src/daemon/trace-emitter.ts +82 -0
package/src/daemon/watch-handler.ts +274 -0
package/src/doordash/client.ts +905 -0
package/src/doordash/queries.ts +1312 -0
package/src/doordash/query-extractor.ts +93 -0
package/src/doordash/session.ts +82 -0
package/src/email/provider.ts +117 -0
package/src/email/providers/agentmail.ts +317 -0
package/src/email/providers/index.ts +58 -0
package/src/email/service.ts +303 -0
package/src/email/types.ts +126 -0
package/src/events/bus.ts +157 -0
package/src/events/domain-events.ts +83 -0
package/src/events/index.ts +18 -0
package/src/events/tool-audit-listener.ts +80 -0
package/src/events/tool-domain-event-publisher.ts +111 -0
package/src/events/tool-metrics-listener.ts +159 -0
package/src/events/tool-notification-listener.ts +17 -0
package/src/events/tool-profiling-listener.ts +158 -0
package/src/events/tool-trace-listener.ts +75 -0
package/src/export/formatter.ts +96 -0
package/src/followups/followup-store.ts +166 -0
package/src/followups/index.ts +10 -0
package/src/followups/types.ts +23 -0
package/src/gallery/default-gallery.ts +795 -0
package/src/gallery/gallery-manifest.ts +24 -0
package/src/home-base/app-link-store.ts +82 -0
package/src/home-base/bootstrap.ts +66 -0
package/src/home-base/prebuilt/index.html +662 -0
package/src/home-base/prebuilt/seed-metadata.json +21 -0
package/src/home-base/prebuilt/seed.ts +101 -0
package/src/home-base/prebuilt-home-base-updater.ts +30 -0
package/src/hooks/cli.ts +163 -0
package/src/hooks/config.ts +88 -0
package/src/hooks/discovery.ts +110 -0
package/src/hooks/manager.ts +128 -0
package/src/hooks/runner.ts +123 -0
package/src/hooks/templates.ts +52 -0
package/src/hooks/types.ts +72 -0
package/src/index.ts +1194 -0
package/src/instrument.ts +60 -0
package/src/logfire.ts +99 -0
package/src/media/gemini-image-service.ts +136 -0
package/src/memory/account-store.ts +108 -0
package/src/memory/admin.ts +211 -0
package/src/memory/app-store.ts +556 -0
package/src/memory/attachments-store.ts +453 -0
package/src/memory/channel-delivery-store.ts +368 -0
package/src/memory/checkpoints.ts +52 -0
package/src/memory/clarification-resolver.ts +297 -0
package/src/memory/conflict-store.ts +342 -0
package/src/memory/contradiction-checker.ts +329 -0
package/src/memory/conversation-key-store.ts +127 -0
package/src/memory/conversation-store.ts +469 -0
package/src/memory/db.ts +1105 -0
package/src/memory/embedding-backend.ts +229 -0
package/src/memory/embedding-gemini.ts +52 -0
package/src/memory/embedding-local.ts +75 -0
package/src/memory/embedding-ollama.ts +55 -0
package/src/memory/embedding-openai.ts +25 -0
package/src/memory/entity-extractor.ts +471 -0
package/src/memory/fingerprint.ts +20 -0
package/src/memory/indexer.ts +156 -0
package/src/memory/items-extractor.ts +460 -0
package/src/memory/job-handlers/backfill.ts +139 -0
package/src/memory/job-handlers/cleanup.ts +58 -0
package/src/memory/job-handlers/conflict.ts +99 -0
package/src/memory/job-handlers/embedding.ts +61 -0
package/src/memory/job-handlers/extraction.ts +123 -0
package/src/memory/job-handlers/index-maintenance.ts +54 -0
package/src/memory/job-handlers/summarization.ts +286 -0
package/src/memory/job-utils.ts +170 -0
package/src/memory/jobs-store.ts +400 -0
package/src/memory/jobs-worker.ts +274 -0
package/src/memory/llm-request-log-store.ts +45 -0
package/src/memory/llm-usage-store.ts +62 -0
package/src/memory/message-content.ts +54 -0
package/src/memory/profile-compiler.ts +160 -0
package/src/memory/published-pages-store.ts +137 -0
package/src/memory/qdrant-client.ts +366 -0
package/src/memory/qdrant-manager.ts +242 -0
package/src/memory/query-builder.ts +45 -0
package/src/memory/retrieval-budget.ts +30 -0
package/src/memory/retriever.ts +653 -0
package/src/memory/runs-store.ts +211 -0
package/src/memory/schema.ts +529 -0
package/src/memory/search/entity.ts +298 -0
package/src/memory/search/formatting.ts +207 -0
package/src/memory/search/lexical.ts +227 -0
package/src/memory/search/ranking.ts +401 -0
package/src/memory/search/semantic.ts +121 -0
package/src/memory/search/types.ts +137 -0
package/src/memory/segmenter.ts +68 -0
package/src/memory/shared-app-links-store.ts +138 -0
package/src/memory/tool-usage-store.ts +62 -0
package/src/messaging/activity-analyzer.ts +76 -0
package/src/messaging/draft-store.ts +88 -0
package/src/messaging/index.ts +3 -0
package/src/messaging/provider-types.ts +80 -0
package/src/messaging/provider.ts +43 -0
package/src/messaging/providers/gmail/adapter.ts +193 -0
package/src/messaging/providers/gmail/client.ts +204 -0
package/src/messaging/providers/gmail/types.ts +90 -0
package/src/messaging/providers/slack/adapter.ts +202 -0
package/src/messaging/providers/slack/client.ts +198 -0
package/src/messaging/providers/slack/types.ts +119 -0
package/src/messaging/registry.ts +34 -0
package/src/messaging/style-analyzer.ts +158 -0
package/src/messaging/thread-summarizer.ts +310 -0
package/src/messaging/triage-engine.ts +321 -0
package/src/messaging/types.ts +55 -0
package/src/permissions/checker.ts +636 -0
package/src/permissions/defaults.ts +243 -0
package/src/permissions/prompter.ts +102 -0
package/src/permissions/secret-prompter.ts +114 -0
package/src/permissions/trust-store.ts +584 -0
package/src/permissions/types.ts +62 -0
package/src/playbooks/index.ts +2 -0
package/src/playbooks/playbook-compiler.ts +90 -0
package/src/playbooks/types.ts +55 -0
package/src/providers/anthropic/client.ts +751 -0
package/src/providers/failover.ts +129 -0
package/src/providers/fireworks/client.ts +20 -0
package/src/providers/gemini/client.ts +285 -0
package/src/providers/ollama/client.ts +30 -0
package/src/providers/openai/client.ts +337 -0
package/src/providers/ratelimit.ts +93 -0
package/src/providers/registry.ts +138 -0
package/src/providers/retry.ts +106 -0
package/src/providers/stream-timeout.ts +38 -0
package/src/providers/types.ts +109 -0
package/src/runtime/assistant-event-hub.ts +120 -0
package/src/runtime/assistant-event.ts +82 -0
package/src/runtime/http-server.ts +478 -0
package/src/runtime/http-types.ts +68 -0
package/src/runtime/routes/app-routes.ts +174 -0
package/src/runtime/routes/attachment-routes.ts +134 -0
package/src/runtime/routes/channel-routes.ts +342 -0
package/src/runtime/routes/conversation-routes.ts +349 -0
package/src/runtime/routes/run-routes.ts +223 -0
package/src/runtime/routes/secret-routes.ts +76 -0
package/src/runtime/run-orchestrator.ts +206 -0
package/src/schedule/schedule-store.ts +452 -0
package/src/schedule/scheduler.ts +168 -0
package/src/security/encrypted-store.ts +238 -0
package/src/security/keychain.ts +252 -0
package/src/security/oauth2.ts +241 -0
package/src/security/redaction.ts +89 -0
package/src/security/secret-allowlist.ts +118 -0
package/src/security/secret-ingress.ts +57 -0
package/src/security/secret-scanner.ts +543 -0
package/src/security/secure-keys.ts +180 -0
package/src/security/token-manager.ts +141 -0
package/src/services/published-app-updater.ts +69 -0
package/src/services/vercel-deploy.ts +73 -0
package/src/skills/active-skill-tools.ts +81 -0
package/src/skills/clawhub.ts +414 -0
package/src/skills/include-graph.ts +146 -0
package/src/skills/managed-store.ts +233 -0
package/src/skills/path-classifier.ts +128 -0
package/src/skills/slash-commands.ts +174 -0
package/src/skills/tool-manifest.ts +165 -0
package/src/skills/version-hash.ts +110 -0
package/src/slack/slack-webhook.ts +61 -0
package/src/subagent/index.ts +19 -0
package/src/subagent/manager.ts +477 -0
package/src/subagent/types.ts +69 -0
package/src/swarm/backend-claude-code.ts +90 -0
package/src/swarm/index.ts +44 -0
package/src/swarm/limits.ts +37 -0
package/src/swarm/orchestrator.ts +279 -0
package/src/swarm/plan-validator.ts +151 -0
package/src/swarm/router-planner.ts +100 -0
package/src/swarm/router-prompts.ts +36 -0
package/src/swarm/synthesizer.ts +62 -0
package/src/swarm/types.ts +62 -0
package/src/swarm/worker-backend.ts +121 -0
package/src/swarm/worker-prompts.ts +78 -0
package/src/swarm/worker-runner.ts +164 -0
package/src/tasks/SPEC.md +133 -0
package/src/tasks/candidate-store.ts +86 -0
package/src/tasks/ephemeral-permissions.ts +41 -0
package/src/tasks/task-compiler.ts +198 -0
package/src/tasks/task-runner.ts +85 -0
package/src/tasks/task-scheduler.ts +20 -0
package/src/tasks/task-store.ts +127 -0
package/src/tools/apps/definitions.ts +59 -0
package/src/tools/apps/executors.ts +313 -0
package/src/tools/apps/open-proxy.ts +43 -0
package/src/tools/apps/registry.ts +16 -0
package/src/tools/assets/materialize.ts +218 -0
package/src/tools/assets/search.ts +396 -0
package/src/tools/browser/__tests__/auth-cache.test.ts +219 -0
package/src/tools/browser/__tests__/auth-detector.test.ts +362 -0
package/src/tools/browser/__tests__/jit-auth.test.ts +189 -0
package/src/tools/browser/auth-cache.ts +149 -0
package/src/tools/browser/auth-detector.ts +347 -0
package/src/tools/browser/browser-execution.ts +979 -0
package/src/tools/browser/browser-handoff.ts +79 -0
package/src/tools/browser/browser-manager.ts +715 -0
package/src/tools/browser/browser-screencast.ts +217 -0
package/src/tools/browser/headless-browser.ts +450 -0
package/src/tools/browser/jit-auth.ts +51 -0
package/src/tools/browser/network-recorder.ts +348 -0
package/src/tools/browser/network-recording-types.ts +49 -0
package/src/tools/browser/recording-store.ts +49 -0
package/src/tools/browser/runtime-check.ts +43 -0
package/src/tools/claude-code/claude-code.ts +232 -0
package/src/tools/computer-use/definitions.ts +443 -0
package/src/tools/computer-use/registry.ts +22 -0
package/src/tools/computer-use/request-computer-control.ts +53 -0
package/src/tools/computer-use/skill-proxy-bridge.ts +28 -0
package/src/tools/contacts/contact-merge.ts +87 -0
package/src/tools/contacts/contact-search.ts +102 -0
package/src/tools/contacts/contact-upsert.ts +137 -0
package/src/tools/contacts/index.ts +4 -0
package/src/tools/credentials/account-registry.ts +127 -0
package/src/tools/credentials/broker-types.ts +107 -0
package/src/tools/credentials/broker.ts +372 -0
package/src/tools/credentials/domain-policy.ts +51 -0
package/src/tools/credentials/host-pattern-match.ts +60 -0
package/src/tools/credentials/metadata-store.ts +335 -0
package/src/tools/credentials/policy-types.ts +52 -0
package/src/tools/credentials/policy-validate.ts +80 -0
package/src/tools/credentials/resolve.ts +122 -0
package/src/tools/credentials/selection.ts +159 -0
package/src/tools/credentials/tool-policy.ts +25 -0
package/src/tools/credentials/vault.ts +641 -0
package/src/tools/document/document-tool.ts +165 -0
package/src/tools/document/editor-template.ts +237 -0
package/src/tools/document/index.ts +5 -0
package/src/tools/executor.ts +825 -0
package/src/tools/filesystem/edit.ts +127 -0
package/src/tools/filesystem/fuzzy-match.ts +202 -0
package/src/tools/filesystem/read.ts +71 -0
package/src/tools/filesystem/view-image.ts +199 -0
package/src/tools/filesystem/write.ts +79 -0
package/src/tools/followups/followup_create.ts +118 -0
package/src/tools/followups/followup_list.ts +100 -0
package/src/tools/followups/followup_resolve.ts +91 -0
package/src/tools/followups/index.ts +3 -0
package/src/tools/host-filesystem/edit.ts +125 -0
package/src/tools/host-filesystem/read.ts +80 -0
package/src/tools/host-filesystem/write.ts +76 -0
package/src/tools/host-terminal/cli-discover.ts +179 -0
package/src/tools/host-terminal/host-shell.ts +181 -0
package/src/tools/memory/definitions.ts +69 -0
package/src/tools/memory/handlers.ts +245 -0
package/src/tools/memory/register.ts +66 -0
package/src/tools/network/domain-normalize.ts +85 -0
package/src/tools/network/script-proxy/certs.ts +237 -0
package/src/tools/network/script-proxy/connect-tunnel.ts +82 -0
package/src/tools/network/script-proxy/http-forwarder.ts +151 -0
package/src/tools/network/script-proxy/index.ts +28 -0
package/src/tools/network/script-proxy/logging.ts +196 -0
package/src/tools/network/script-proxy/mitm-handler.ts +269 -0
package/src/tools/network/script-proxy/policy.ts +152 -0
package/src/tools/network/script-proxy/router.ts +60 -0
package/src/tools/network/script-proxy/server.ts +136 -0
package/src/tools/network/script-proxy/session-manager.ts +534 -0
package/src/tools/network/script-proxy/types.ts +125 -0
package/src/tools/network/url-safety.ts +227 -0
package/src/tools/network/web-fetch.ts +701 -0
package/src/tools/network/web-search.ts +319 -0
package/src/tools/playbooks/index.ts +5 -0
package/src/tools/playbooks/playbook-create.ts +140 -0
package/src/tools/playbooks/playbook-delete.ts +76 -0
package/src/tools/playbooks/playbook-list.ts +101 -0
package/src/tools/playbooks/playbook-update.ts +159 -0
package/src/tools/registry.ts +297 -0
package/src/tools/reminder/reminder-store.ts +148 -0
package/src/tools/reminder/reminder.ts +153 -0
package/src/tools/schedule/create.ts +86 -0
package/src/tools/schedule/delete.ts +54 -0
package/src/tools/schedule/list.ts +88 -0
package/src/tools/schedule/update.ts +97 -0
package/src/tools/shared/filesystem/edit-engine.ts +56 -0
package/src/tools/shared/filesystem/errors.ts +85 -0
package/src/tools/shared/filesystem/file-ops-service.ts +215 -0
package/src/tools/shared/filesystem/format-diff.ts +35 -0
package/src/tools/shared/filesystem/path-policy.ts +125 -0
package/src/tools/shared/filesystem/size-guard.ts +41 -0
package/src/tools/shared/filesystem/types.ts +80 -0
package/src/tools/shared/shell-output.ts +52 -0
package/src/tools/skills/delete-managed.ts +60 -0
package/src/tools/skills/load.ts +139 -0
package/src/tools/skills/sandbox-runner.ts +279 -0
package/src/tools/skills/scaffold-managed.ts +150 -0
package/src/tools/skills/script-contract.ts +6 -0
package/src/tools/skills/skill-script-runner.ts +86 -0
package/src/tools/skills/skill-tool-factory.ts +64 -0
package/src/tools/skills/vellum-catalog.ts +217 -0
package/src/tools/subagent/abort.ts +62 -0
package/src/tools/subagent/index.ts +5 -0
package/src/tools/subagent/message.ts +72 -0
package/src/tools/subagent/read.ts +98 -0
package/src/tools/subagent/spawn.ts +85 -0
package/src/tools/subagent/status.ts +74 -0
package/src/tools/swarm/delegate.ts +182 -0
package/src/tools/system/request-permission.ts +98 -0
package/src/tools/tasks/index.ts +25 -0
package/src/tools/tasks/task-delete.ts +69 -0
package/src/tools/tasks/task-list.ts +65 -0
package/src/tools/tasks/task-run.ts +125 -0
package/src/tools/tasks/task-save.ts +79 -0
package/src/tools/tasks/work-item-enqueue.ts +176 -0
package/src/tools/tasks/work-item-list.ts +86 -0
package/src/tools/terminal/backends/docker.ts +372 -0
package/src/tools/terminal/backends/native.ts +188 -0
package/src/tools/terminal/backends/types.ts +26 -0
package/src/tools/terminal/evaluate-typescript.ts +275 -0
package/src/tools/terminal/parser.ts +393 -0
package/src/tools/terminal/safe-env.ts +37 -0
package/src/tools/terminal/sandbox-diagnostics.ts +149 -0
package/src/tools/terminal/sandbox.ts +44 -0
package/src/tools/terminal/shell.ts +257 -0
package/src/tools/tool-manifest.ts +250 -0
package/src/tools/types.ts +177 -0
package/src/tools/ui-surface/definitions.ts +232 -0
package/src/tools/ui-surface/registry.ts +14 -0
package/src/tools/watch/screen-watch.ts +128 -0
package/src/tools/watch/watch-state.ts +119 -0
package/src/tools/watcher/create.ts +110 -0
package/src/tools/watcher/delete.ts +53 -0
package/src/tools/watcher/digest.ts +84 -0
package/src/tools/watcher/list.ts +90 -0
package/src/tools/watcher/update.ts +102 -0
package/src/tools/weather/service.ts +551 -0
package/src/usage/actors.ts +24 -0
package/src/usage/types.ts +38 -0
package/src/util/clipboard.ts +33 -0
package/src/util/content-id.ts +16 -0
package/src/util/diff.ts +181 -0
package/src/util/errors.ts +129 -0
package/src/util/logger.ts +243 -0
package/src/util/platform.ts +607 -0
package/src/util/pricing.ts +150 -0
package/src/util/spinner.ts +51 -0
package/src/util/time.ts +16 -0
package/src/util/xml.ts +4 -0
package/src/version.ts +3 -0
package/src/watcher/constants.ts +11 -0
package/src/watcher/engine.ts +199 -0
package/src/watcher/provider-registry.ts +15 -0
package/src/watcher/provider-types.ts +48 -0
package/src/watcher/providers/gmail.ts +198 -0
package/src/watcher/providers/google-calendar.ts +228 -0
package/src/watcher/providers/slack.ts +128 -0
package/src/watcher/watcher-store.ts +418 -0
package/src/work-items/work-item-store.ts +91 -0
package/src/workspace/git-service.ts +620 -0
package/src/workspace/heartbeat-service.ts +288 -0
package/src/workspace/top-level-renderer.ts +19 -0
package/src/workspace/top-level-scanner.ts +41 -0
package/src/workspace/turn-commit.ts +122 -0
package/tsconfig.json +21 -0
package/LICENSE +0 -674
package/dist/cli.js +0 -569

package/src/tools/network/script-proxy/server.ts ADDED Viewed

@@ -0,0 +1,136 @@
+/**
+ * Proxy server factory — creates an HTTP server configured to handle
+ * plain HTTP proxy requests via the forwarder, plain CONNECT tunnelling,
+ * and optional MITM interception for credential-injected HTTPS requests.
+ */
+import { createServer, type Server } from 'node:http';
+import type { ConnectionOptions } from 'node:tls';
+import type { Socket } from 'node:net';
+import { forwardHttpRequest, type PolicyCallback } from './http-forwarder.js';
+import { handleConnect } from './connect-tunnel.js';
+import { handleMitm, type RewriteCallback } from './mitm-handler.js';
+import type { RouteDecision } from './router.js';
+export interface MitmHandlerConfig {
+  /** Path to the local CA directory containing ca.pem / ca-key.pem. */
+  caDir: string;
+  /**
+   * Decide whether the CONNECT target should be MITM-intercepted.
+   * Returns a RouteDecision with action ('mitm' | 'tunnel') and a
+   * deterministic reason code for auditing.
+   */
+  shouldIntercept: (hostname: string, port: number) => RouteDecision;
+  /** Called with the decrypted request; returns headers to merge or null to reject. */
+  rewriteCallback: RewriteCallback;
+  /** Extra TLS options for the upstream connection (e.g. custom CA for testing). */
+  upstreamTlsOptions?: Pick<ConnectionOptions, 'ca' | 'rejectUnauthorized'>;
+}
+export interface ProxyServerConfig {
+  /** Optional policy callback for credential injection / access control. */
+  policyCallback?: PolicyCallback;
+  /** Called on every forwarded request for logging. */
+  onRequest?: (method: string, url: string) => void;
+  /** When provided, CONNECT requests matching shouldIntercept are MITM-handled. */
+  mitmHandler?: MitmHandlerConfig;
+}
+/**
+ * Parse a CONNECT target of the form `host:port`.
+ */
+function parseConnectTarget(url: string | undefined): { host: string; port: number } | null {
+  if (!url) return null;
+  const colonIdx = url.lastIndexOf(':');
+  if (colonIdx <= 0) return null;
+  let host = url.slice(0, colonIdx);
+  const portStr = url.slice(colonIdx + 1);
+  if (!host || !portStr) return null;
+  const port = Number(portStr);
+  if (!Number.isInteger(port) || port < 1 || port > 65535) return null;
+  // Strip brackets from IPv6 literals — net.connect expects the raw address
+  if (host.startsWith('[') && host.endsWith(']')) {
+    host = host.slice(1, -1);
+    if (!host) return null;
+  }
+  return { host, port };
+}
+/**
+ * Create an HTTP server that acts as a forward proxy for plain HTTP
+ * requests (absolute-URL form), CONNECT tunnelling for HTTPS pass-through,
+ * and optional MITM interception for credential-injected HTTPS requests.
+ */
+export function createProxyServer(config: ProxyServerConfig = {}): Server {
+  const server = createServer((req, res) => {
+    if (config.onRequest && req.method && req.url) {
+      config.onRequest(req.method, req.url);
+    }
+    forwardHttpRequest(req, res, config.policyCallback);
+  });
+  server.on('connect', (req, clientSocket: Socket, head: Buffer) => {
+    if (config.mitmHandler) {
+      const target = parseConnectTarget(req.url);
+      const decision = target
+        ? config.mitmHandler.shouldIntercept(target.host, target.port)
+        : undefined;
+      if (target && decision?.action === 'mitm') {
+        handleMitm(
+          clientSocket,
+          head,
+          target.host,
+          target.port,
+          config.mitmHandler.caDir,
+          config.mitmHandler.rewriteCallback,
+          config.mitmHandler.upstreamTlsOptions,
+        ).catch(() => {
+          if (clientSocket.writable) {
+            clientSocket.write('HTTP/1.1 502 Bad Gateway\r\n\r\n');
+          }
+          clientSocket.destroy();
+        });
+        return;
+      }
+    }
+    // Gate CONNECT tunnels through policyCallback the same way HTTP requests are gated
+    if (config.policyCallback) {
+      const connectTarget = parseConnectTarget(req.url);
+      if (!connectTarget) {
+        clientSocket.write('HTTP/1.1 400 Bad Request\r\n\r\n');
+        clientSocket.destroy();
+        return;
+      }
+      if (config.onRequest) {
+        config.onRequest('CONNECT', req.url!);
+      }
+      config.policyCallback(connectTarget.host, connectTarget.port === 443 ? null : connectTarget.port, '/', 'https')
+        .then((extraHeaders) => {
+          if (extraHeaders === null) {
+            clientSocket.write('HTTP/1.1 403 Forbidden\r\n\r\n');
+            clientSocket.destroy();
+            return;
+          }
+          handleConnect(req, clientSocket, head);
+        })
+        .catch(() => {
+          if (clientSocket.writable) {
+            clientSocket.write('HTTP/1.1 502 Bad Gateway\r\n\r\n');
+          }
+          clientSocket.destroy();
+        });
+    } else {
+      if (config.onRequest && req.url) {
+        config.onRequest('CONNECT', req.url);
+      }
+      handleConnect(req, clientSocket, head);
+    }
+  });
+  return server;
+}

package/src/tools/network/script-proxy/session-manager.ts ADDED Viewed

@@ -0,0 +1,534 @@
+import type { Server } from 'node:http';
+import { join } from 'node:path';
+import { randomUUID } from 'node:crypto';
+import { createProxyServer } from './server.js';
+import type { ProxyServerConfig } from './server.js';
+import { routeConnection } from './router.js';
+import type {
+  ProxySession,
+  ProxySessionId,
+  ProxySessionConfig,
+  ProxyEnvVars,
+  ProxyApprovalCallback,
+} from './types.js';
+import type { PolicyCallback } from './http-forwarder.js';
+import { evaluateRequestWithApproval } from './policy.js';
+import { getCAPath, ensureLocalCA, ensureCombinedCABundle } from './certs.js';
+import { matchHostPattern, compareMatchSpecificity, type HostMatchKind } from '../../credentials/host-pattern-match.js';
+import { resolveById } from '../../credentials/resolve.js';
+import { listCredentialMetadata } from '../../credentials/metadata-store.js';
+import type { CredentialInjectionTemplate } from '../../credentials/policy-types.js';
+import { getSecureKey } from '../../../security/secure-keys.js';
+import { buildDecisionTrace, stripQueryString } from './logging.js';
+import { getLogger } from '../../../util/logger.js';
+const log = getLogger('proxy-session');
+const DEFAULT_CONFIG: ProxySessionConfig = {
+  idleTimeoutMs: 5 * 60 * 1000, // 5 minutes
+  maxSessionsPerConversation: 3,
+};
+interface ManagedSession {
+  session: ProxySession;
+  server: Server | null;
+  idleTimer: ReturnType<typeof setTimeout> | null;
+  config: ProxySessionConfig;
+  dataDir: string | null;
+  approvalCallback: ProxyApprovalCallback | null;
+  /** The host address the server is bound to (e.g. '127.0.0.1'). */
+  listenHost: string;
+  /** In-flight stop promise so concurrent callers can await the same shutdown. */
+  stopPromise: Promise<void> | null;
+  /** Path to the combined CA bundle, set only when ensureCombinedCABundle succeeds. */
+  combinedCABundlePath: string | null;
+}
+const sessions = new Map<ProxySessionId, ManagedSession>();
+/**
+ * Per-conversation mutex for session acquisition. Prevents concurrent
+ * proxied commands from each observing "no active session" and creating
+ * duplicate sessions (check-then-act race).
+ */
+const acquireLocks = new Map<string, Promise<ProxySession>>();
+/** Return a defensive copy so callers cannot mutate internal state. */
+function cloneSession(s: ProxySession): ProxySession {
+  return {
+    ...s,
+    credentialIds: [...s.credentialIds],
+    createdAt: new Date(s.createdAt.getTime()),
+  };
+}
+function resetIdleTimer(managed: ManagedSession): void {
+  if (managed.idleTimer !== null) {
+    clearTimeout(managed.idleTimer);
+  }
+  managed.idleTimer = setTimeout(() => {
+    if (managed.session.status === 'active') {
+      stopSession(managed.session.id).catch(() => {});
+    }
+  }, managed.config.idleTimeoutMs);
+}
+/**
+ * Create a new proxy session bound to a conversation.
+ * The session starts in 'starting' status with no port assigned yet.
+ */
+export function createSession(
+  conversationId: string,
+  credentialIds: string[],
+  config?: Partial<ProxySessionConfig>,
+  dataDir?: string,
+  approvalCallback?: ProxyApprovalCallback,
+): ProxySession {
+  const merged: ProxySessionConfig = { ...DEFAULT_CONFIG, ...config };
+  // Enforce per-conversation limit
+  const existing = getSessionsForConversation(conversationId);
+  const liveCount = existing.filter(
+    (s) => s.status !== 'stopped',
+  ).length;
+  if (liveCount >= merged.maxSessionsPerConversation) {
+    throw new Error(
+      `Max sessions (${merged.maxSessionsPerConversation}) reached for conversation ${conversationId}`,
+    );
+  }
+  const session: ProxySession = {
+    id: randomUUID(),
+    conversationId,
+    credentialIds: [...credentialIds],
+    status: 'starting',
+    createdAt: new Date(),
+    port: null,
+  };
+  sessions.set(session.id, {
+    session,
+    server: null,
+    idleTimer: null,
+    config: merged,
+    dataDir: dataDir ?? null,
+    approvalCallback: approvalCallback ?? null,
+    listenHost: '127.0.0.1',
+    stopPromise: null,
+    combinedCABundlePath: null,
+  });
+  return cloneSession(session);
+}
+/**
+ * Start the proxy session — opens an HTTP server on an ephemeral port.
+ * When the session has credential IDs with injection templates, the proxy
+ * is configured with a MITM handler that selectively intercepts HTTPS
+ * connections to credential-matched hosts.
+ */
+export async function startSession(sessionId: ProxySessionId, options?: { listenHost?: string }): Promise<ProxySession> {
+  const managed = sessions.get(sessionId);
+  if (!managed) throw new Error(`Session not found: ${sessionId}`);
+  if (managed.session.status !== 'starting') {
+    throw new Error(`Session ${sessionId} is ${managed.session.status}, expected starting`);
+  }
+  const config: ProxyServerConfig = {};
+  // Build a templates map from credential metadata so the router and policy
+  // engine can match request targets against injection host patterns.
+  const templates = new Map<string, CredentialInjectionTemplate[]>();
+  for (const credId of managed.session.credentialIds) {
+    const resolved = resolveById(credId);
+    if (resolved?.injectionTemplates?.length) {
+      templates.set(credId, resolved.injectionTemplates);
+    }
+  }
+  if (managed.dataDir && managed.session.credentialIds.length > 0) {
+    const caDir = join(managed.dataDir, 'proxy-ca');
+    if (templates.size > 0) {
+      // Ensure the CA directory and cert/key exist before starting MITM.
+      // If this fails (e.g. missing openssl, unwritable dir), clean up the
+      // session so it doesn't linger as 'starting' and count toward the
+      // per-conversation limit.
+      try {
+        await ensureLocalCA(managed.dataDir);
+        // Build a combined CA bundle (system roots + proxy CA) so
+        // non-Node clients like curl, Python, and Go trust the proxy's
+        // leaf certs via SSL_CERT_FILE (see getSessionEnv).
+        managed.combinedCABundlePath = await ensureCombinedCABundle(managed.dataDir);
+      } catch (err) {
+        sessions.delete(sessionId);
+        throw err;
+      }
+      config.mitmHandler = {
+        caDir,
+        shouldIntercept: (hostname: string, port: number) =>
+          routeConnection(hostname, port, managed.session.credentialIds, templates),
+        rewriteCallback: async (req) => {
+          // Per-credential best-match selection, mirroring the policy engine's
+          // specificity logic (PR 04). For each credential, pick the single
+          // best header template by specificity (exact > wildcard).
+          const perCredentialBest: { credId: string; tpl: CredentialInjectionTemplate }[] = [];
+          for (const [credId, tpls] of templates) {
+            let bestMatch: HostMatchKind = 'none';
+            let bestCandidates: CredentialInjectionTemplate[] = [];
+            for (const tpl of tpls) {
+              if (tpl.injectionType === 'query') continue;
+              const match = matchHostPattern(req.hostname, tpl.hostPattern, { includeApexForWildcard: true });
+              if (match === 'none') continue;
+              const cmp = compareMatchSpecificity(match, bestMatch);
+              if (cmp < 0) {
+                bestMatch = match;
+                bestCandidates = [tpl];
+              } else if (cmp === 0) {
+                bestCandidates.push(tpl);
+              }
+            }
+            if (bestCandidates.length === 1) {
+              perCredentialBest.push({ credId, tpl: bestCandidates[0] });
+            } else if (bestCandidates.length > 1) {
+              // Same credential, same-specificity tie — ambiguous, block
+              return null;
+            }
+          }
+          if (perCredentialBest.length === 0) return req.headers;
+          // Cross-credential ambiguity — block
+          if (perCredentialBest.length > 1) return null;
+          const { credId, tpl } = perCredentialBest[0];
+          log.debug({ host: req.hostname, pattern: tpl.hostPattern, credentialId: credId }, 'MITM rewrite: injecting credential');
+          if (tpl.injectionType === 'header' && tpl.headerName) {
+            const resolved = resolveById(credId);
+            if (!resolved) return req.headers;
+            const value = getSecureKey(resolved.storageKey);
+            if (!value) return req.headers;
+            req.headers[tpl.headerName.toLowerCase()] =
+              (tpl.valuePrefix ?? '') + value;
+            return req.headers;
+          }
+          return req.headers;
+        },
+      };
+    }
+  }
+  // Cache the full credential registry with a TTL so the policy callback
+  // doesn't hit disk on every proxied request (listCredentialMetadata uses
+  // synchronous readFileSync + JSON.parse) while still picking up changes
+  // to credential metadata within the session lifetime.
+  let allKnownCache: CredentialInjectionTemplate[] | null = null;
+  let allKnownCacheTime = 0;
+  const CACHE_TTL_MS = 30_000; // 30 seconds
+  function getAllKnown(): CredentialInjectionTemplate[] {
+    const now = Date.now();
+    if (!allKnownCache || now - allKnownCacheTime > CACHE_TTL_MS) {
+      allKnownCache = [];
+      for (const meta of listCredentialMetadata()) {
+        if (meta.injectionTemplates?.length) {
+          allKnownCache.push(...meta.injectionTemplates);
+        }
+      }
+      allKnownCacheTime = now;
+    }
+    return allKnownCache;
+  }
+  // Build the policy callback for HTTP/CONNECT request gating
+  const policyCallback: PolicyCallback = async (hostname: string, port: number | null, reqPath: string, scheme: 'http' | 'https') => {
+    const decision = evaluateRequestWithApproval(
+      hostname, port, reqPath,
+      managed.session.credentialIds, templates, getAllKnown(), scheme,
+    );
+    log.debug({ trace: buildDecisionTrace(hostname, port, stripQueryString(reqPath), scheme, decision) }, 'Policy decision');
+    switch (decision.kind) {
+      case 'matched': {
+        // Inject the credential value into the outbound request headers.
+        // Secret values are read from secure storage at injection time and
+        // MUST NEVER be logged — sanitizeHeaders in logging.ts handles redaction.
+        const { credentialId, template } = decision;
+        const resolved = resolveById(credentialId);
+        if (!resolved) return {};
+        const value = getSecureKey(resolved.storageKey);
+        if (!value) return {};
+        if (template.injectionType === 'header' && template.headerName) {
+          const headerValue = (template.valuePrefix ?? '') + value;
+          return { [template.headerName.toLowerCase()]: headerValue };
+        }
+        // Query param injection is handled via URL rewriting in the MITM path
+        return {};
+      }
+      case 'ambiguous':
+        return null; // block — can't auto-resolve
+      case 'ask_missing_credential':
+      case 'ask_unauthenticated':
+        if (managed.approvalCallback) {
+          const approved = await managed.approvalCallback({
+            decision,
+            sessionId: managed.session.id,
+          });
+          return approved ? {} : null;
+        }
+        return decision.kind === 'ask_unauthenticated' ? {} : null;
+      case 'missing':
+        return null;
+      case 'unauthenticated':
+        return {};
+      default:
+        return null;
+    }
+  };
+  config.policyCallback = policyCallback;
+  const server = createProxyServer(config);
+  const listenHost = options?.listenHost ?? '127.0.0.1';
+  try {
+    return await new Promise<ProxySession>((resolve, reject) => {
+      server.listen(0, listenHost, () => {
+        const addr = server.address();
+        if (!addr || typeof addr === 'string') {
+          reject(new Error('Failed to get server address'));
+          return;
+        }
+        managed.server = server;
+        managed.session.port = addr.port;
+        managed.session.status = 'active';
+        managed.listenHost = listenHost;
+        resetIdleTimer(managed);
+        resolve(cloneSession(managed.session));
+      });
+      server.on('error', reject);
+    });
+  } catch (err) {
+    // Clean up: close the server if it started, and remove the session so it
+    // doesn't linger as 'starting' and block future session creation.
+    server.close(() => {});
+    sessions.delete(sessionId);
+    throw err;
+  }
+}
+/**
+ * Gracefully stop a session — closes the HTTP server and clears the idle timer.
+ */
+export async function stopSession(sessionId: ProxySessionId): Promise<void> {
+  const managed = sessions.get(sessionId);
+  if (!managed) throw new Error(`Session not found: ${sessionId}`);
+  if (managed.session.status === 'stopped') return;
+  // If a shutdown is already in flight, await it instead of returning early.
+  if (managed.session.status === 'stopping' && managed.stopPromise) {
+    return managed.stopPromise;
+  }
+  managed.session.status = 'stopping';
+  const doStop = async () => {
+    if (managed.idleTimer !== null) {
+      clearTimeout(managed.idleTimer);
+      managed.idleTimer = null;
+    }
+    if (managed.server) {
+      await new Promise<void>((resolve, reject) => {
+        managed.server!.close((err) => (err ? reject(err) : resolve()));
+      });
+      managed.server = null;
+    }
+    managed.session.status = 'stopped';
+    managed.session.port = null;
+    managed.approvalCallback = null;
+    managed.stopPromise = null;
+  };
+  managed.stopPromise = doStop();
+  return managed.stopPromise;
+}
+/**
+ * Build environment variables to inject into a subprocess so its HTTP
+ * traffic flows through this proxy session.
+ */
+export function getSessionEnv(
+  sessionId: ProxySessionId,
+  options?: { dockerMode?: boolean },
+): ProxyEnvVars {
+  const managed = sessions.get(sessionId);
+  if (!managed) throw new Error(`Session not found: ${sessionId}`);
+  if (managed.session.status !== 'active' || managed.session.port === null) {
+    throw new Error(`Session ${sessionId} is not active`);
+  }
+  // Touch the idle timer on access
+  resetIdleTimer(managed);
+  // Inside Docker, 127.0.0.1 is the container's own loopback — use
+  // host.docker.internal so traffic reaches the host-side proxy.
+  const host = options?.dockerMode ? 'host.docker.internal' : '127.0.0.1';
+  const proxyUrl = `http://${host}:${managed.session.port}`;
+  const env: ProxyEnvVars = {
+    HTTP_PROXY: proxyUrl,
+    HTTPS_PROXY: proxyUrl,
+    NO_PROXY: 'localhost,127.0.0.1,::1',
+  };
+  if (managed.dataDir) {
+    env.NODE_EXTRA_CA_CERTS = getCAPath(managed.dataDir);
+    // Combined bundle lets non-Node clients (curl, Python, Go) trust
+    // the proxy CA alongside system roots via SSL_CERT_FILE.
+    // Only set when the bundle was actually created — pointing at a
+    // missing file would replace the system trust store with nothing.
+    if (managed.combinedCABundlePath) {
+      env.SSL_CERT_FILE = managed.combinedCABundlePath;
+    }
+  }
+  return env;
+}
+/** Sorted comparison so order doesn't matter. */
+function credentialIdsMatch(a: string[], b: string[]): boolean {
+  if (a.length !== b.length) return false;
+  const sa = [...a].sort();
+  const sb = [...b].sort();
+  return sa.every((v, i) => v === sb[i]);
+}
+/**
+ * Atomically acquire a proxy session for a conversation — reuses an active
+ * session or creates + starts a new one. Serialized per conversation so
+ * concurrent callers share the same session instead of each spawning one.
+ *
+ * If the active session was created with different `credentialIds`, it is
+ * stopped and a fresh session is created so callers always get a session
+ * bound to the requested credentials.
+ *
+ * Returns `{ session, created }` so the caller knows whether it owns the
+ * session lifecycle (and should stop it) or is borrowing a shared one.
+ */
+export async function getOrStartSession(
+  conversationId: string,
+  credentialIds: string[],
+  config?: Partial<ProxySessionConfig>,
+  dataDir?: string,
+  approvalCallback?: ProxyApprovalCallback,
+  options?: { listenHost?: string },
+): Promise<{ session: ProxySession; created: boolean }> {
+  const requestedHost = options?.listenHost ?? '127.0.0.1';
+  // Fast path — session already active with matching credentials and listen host, no lock needed.
+  const existing = getActiveSession(conversationId);
+  if (existing && credentialIdsMatch(existing.credentialIds, credentialIds)) {
+    const managed = sessions.get(existing.id);
+    if (managed && managed.listenHost === requestedHost) {
+      return { session: existing, created: false };
+    }
+  }
+  // If credentials don't match (or no session exists), fall through to the
+  // lock-protected section. Stopping a mismatched session outside the lock
+  // would let another caller slip in and create a different-credential session.
+  // Serialize: if another caller is already creating a session for this
+  // conversation, wait for it rather than creating a second one.
+  // Loop so that after a credential-mismatch teardown we re-check for a new
+  // inflight lock — otherwise 3+ concurrent callers with different credentials
+  // can all fall through and create duplicate sessions.
+  for (;;) {
+    const inflight = acquireLocks.get(conversationId);
+    if (!inflight) break;
+    const session = await inflight;
+    if (credentialIdsMatch(session.credentialIds, credentialIds)) {
+      const m = sessions.get(session.id);
+      if (m && m.listenHost === requestedHost) {
+        return { session, created: false };
+      }
+    }
+    // Credential or listenHost mismatch — tear down and loop back to re-check
+    // whether another waiter has already started a replacement session.
+    await stopSession(session.id);
+  }
+  const promise = (async () => {
+    // Re-check after winning the lock — a session may have become active
+    // between our initial check and acquiring the lock.
+    const recheck = getActiveSession(conversationId);
+    if (recheck) {
+      const m = sessions.get(recheck.id);
+      if (credentialIdsMatch(recheck.credentialIds, credentialIds) && m && m.listenHost === requestedHost) {
+        return { session: recheck, created: false };
+      }
+      await stopSession(recheck.id);
+    }
+    const session = createSession(conversationId, credentialIds, config, dataDir, approvalCallback);
+    const started = await startSession(session.id, options);
+    return { session: started, created: true };
+  })();
+  // Wrap the inner promise to extract just the session for lock waiters.
+  const sessionPromise = promise.then((r) => r.session);
+  sessionPromise.catch(() => {}); // Rejection handled by `await promise` below
+  acquireLocks.set(conversationId, sessionPromise);
+  try {
+    return await promise;
+  } finally {
+    acquireLocks.delete(conversationId);
+  }
+}
+/**
+ * Find an active session for a conversation (returns the first match).
+ */
+export function getActiveSession(conversationId: string): ProxySession | undefined {
+  for (const managed of sessions.values()) {
+    if (
+      managed.session.conversationId === conversationId &&
+      managed.session.status === 'active'
+    ) {
+      return cloneSession(managed.session);
+    }
+  }
+  return undefined;
+}
+/**
+ * Get all sessions for a given conversation.
+ */
+export function getSessionsForConversation(conversationId: string): ProxySession[] {
+  const result: ProxySession[] = [];
+  for (const managed of sessions.values()) {
+    if (managed.session.conversationId === conversationId) {
+      result.push(cloneSession(managed.session));
+    }
+  }
+  return result;
+}
+/**
+ * Stop all sessions and clear internal state. Useful for daemon shutdown.
+ */
+export async function stopAllSessions(): Promise<void> {
+  const ids = [...sessions.keys()];
+  await Promise.all(ids.map((id) => stopSession(id).catch(() => {})));
+  sessions.clear();
+}