viruagent-cli 0.3.0 → 0.3.2

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2025 greekr4
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.ko.md

@@ -1,9 +1,21 @@
 
-![viru_run2](https://github.com/user-attachments/assets/76be6d06-3f0d-44e5-8152-d64b2fc68894)
+<p align="center">
+  <img src="https://github.com/user-attachments/assets/76be6d06-3f0d-44e5-8152-d64b2fc68894" alt="viruagent-cli" />
+</p>
+
+<h1 align="center">viruagent-cli</h1>
 
 <p align="center">
-  <a href="README.ko.md"><img src="https://img.shields.io/badge/한국어-red?style=for-the-badge" alt="Korean"></a>
-  <a href="README.md"><img src="https://img.shields.io/badge/English-blue?style=for-the-badge" alt="English"></a>
+  <a href="https://github.com/greekr4/viruagent-cli/stargazers"><img src="https://img.shields.io/github/stars/greekr4/viruagent-cli" alt="GitHub stars"></a>
+</p>
+<p align="center">
+  <a href="https://www.npmjs.com/package/viruagent-cli"><img src="https://img.shields.io/npm/v/viruagent-cli?color=blue" alt="npm version"></a>
+  <a href="LICENSE"><img src="https://img.shields.io/npm/l/viruagent-cli" alt="license"></a>
+  <a href="https://nodejs.org"><img src="https://img.shields.io/node/v/viruagent-cli" alt="node version"></a>
+</p>
+<p align="center">
+  <a href="README.md"><img src="https://img.shields.io/badge/English-blue" alt="English"></a>
+  <a href="README.ko.md"><img src="https://img.shields.io/badge/한국어-red" alt="Korean"></a>
 </p>
 
 **AI 에이전트가 블로그를 쓰고, 태그를 만들고, 발행까지 자동으로 처리하는 CLI 도구**
@@ -28,25 +40,25 @@
 - **에이전트**: 스킬을 읽고 CLI를 조합하여 자율적으로 실행
 - **커스텀**: 스킬 파일을 직접 수정하여 원하는 대로 동작하도록 설정 가능
 
-## 설치
+## 빠른 시작
 
 ![viru_install](https://github.com/user-attachments/assets/35efb57f-fada-44c0-8dd4-6d586ef33a7c)
 
-아래 내용을 AI 에이전트에게 그대로 복사해서 보여주세요.
+아래 내용을 AI 에이전트에게 그대로 복사해서 보여주세요. (AI 에이전트 대상이므로 영어로 작성되어 있습니다)
 
 ```
 You are installing viruagent-cli, a blog publishing CLI tool. Follow these steps in order.
 
-Step 1: Verify CLI
-npx viruagent-cli --spec
-If the output contains "ok": true, the CLI is ready. If it fails, check that Node.js
->= 18 is installed.
-
-Step 2: Install skill
+Step 1: Install skill
 npx viruagent-cli install-skill
 This copies the skill file to ~/.claude/commands/viruagent.md. Confirm the file
 exists before proceeding.
 
+Step 2: Verify CLI
+npx viruagent-cli --spec
+If the output contains "ok": true, the CLI is ready. If it fails, check that Node.js
+>= 18 is installed.
+
 Tell the user that viruagent-cli installation is complete.
 ```
 
@@ -63,7 +75,8 @@ npx viruagent-cli login --from-chrome --profile "Profile 2"
 npx viruagent-cli login --username <id> --password <pw> --headless
 ```
 
-`--from-chrome`은 macOS Keychain을 통해 Chrome 쿠키 DB를 직접 복호화합니다. 브라우저 실행 없이, 2FA 없이, 1초 내 완료됩니다.
+> [!TIP]
+> `--from-chrome`은 macOS Keychain을 통해 Chrome 쿠키 DB를 직접 복호화합니다. 브라우저 실행 없이, 2FA 없이, 1초 내 완료됩니다.
 
 ## 사용법
 
@@ -93,14 +106,14 @@ npx viruagent-cli login --username <id> --password <pw> --headless
 
 ## 기술 스택
 
-| 영역 | 기술 | 설명 |
-| --- | --- | --- |
-| CLI 프레임워크 | Commander.js | 명령어 정의, 옵션 파싱, `--spec` 스키마 자동 생성 |
-| 브라우저 자동화 | Playwright (Chromium) | 로그인 자동화 |
-| 쿠키 복호화 | macOS Keychain + AES-128-CBC | Chrome 세션 임포트 (`--from-chrome`) |
-| 세션 관리 | JSON 파일 (`~/.viruagent-cli/`) | 쿠키 기반 세션 저장/복원 |
-| 이미지 검색 | DuckDuckGo, Wikimedia, Commons | 키워드 기반 이미지 자동 검색 |
-| 출력 형식 | JSON envelope | `{ ok, data }` / `{ ok, error, hint }` |
+| 영역 | 기술 |
+| --- | --- |
+| CLI 프레임워크 | Commander.js |
+| 브라우저 자동화 | Playwright (Chromium) |
+| 쿠키 복호화 | macOS Keychain + AES-128-CBC |
+| 세션 관리 | JSON 파일 (`~/.viruagent-cli/`) |
+| 이미지 검색 | DuckDuckGo, Wikimedia, Commons |
+| 출력 형식 | JSON envelope (`{ ok, data }` / `{ ok, error, hint }`) |
 
 ## Contributing
 
@@ -116,7 +129,3 @@ git checkout -b feature/my-feature
 git commit -m "[FEAT] Add my feature"
 git push origin feature/my-feature
 ```
-
-## License
-
-MIT

package/README.md

@@ -1,9 +1,21 @@
 
-![viru_run2](https://github.com/user-attachments/assets/76be6d06-3f0d-44e5-8152-d64b2fc68894)
+<p align="center">
+  <img src="https://github.com/user-attachments/assets/76be6d06-3f0d-44e5-8152-d64b2fc68894" alt="viruagent-cli" />
+</p>
+
+<h1 align="center">viruagent-cli</h1>
 
 <p align="center">
-  <a href="README.ko.md"><img src="https://img.shields.io/badge/한국어-red?style=for-the-badge" alt="Korean"></a>
-  <a href="README.md"><img src="https://img.shields.io/badge/English-blue?style=for-the-badge" alt="English"></a>
+  <a href="https://github.com/greekr4/viruagent-cli/stargazers"><img src="https://img.shields.io/github/stars/greekr4/viruagent-cli" alt="GitHub stars"></a>
+</p>
+<p align="center">
+  <a href="https://www.npmjs.com/package/viruagent-cli"><img src="https://img.shields.io/npm/v/viruagent-cli?color=blue" alt="npm version"></a>
+  <a href="LICENSE"><img src="https://img.shields.io/npm/l/viruagent-cli" alt="license"></a>
+  <a href="https://nodejs.org"><img src="https://img.shields.io/node/v/viruagent-cli" alt="node version"></a>
+</p>
+<p align="center">
+  <a href="README.md"><img src="https://img.shields.io/badge/English-blue" alt="English"></a>
+  <a href="README.ko.md"><img src="https://img.shields.io/badge/한국어-red" alt="Korean"></a>
 </p>
 
 **A CLI tool where AI agents write, tag, and publish blog posts automatically.**
@@ -28,7 +40,7 @@ User: /viruagent "Write a post"
 - **Agent**: Reads the skill and orchestrates CLI commands autonomously
 - **Custom**: Edit the skill file to customize behavior
 
-## Installation
+## Quick Start
 
 ![viru_install](https://github.com/user-attachments/assets/35efb57f-fada-44c0-8dd4-6d586ef33a7c)
 
@@ -37,16 +49,16 @@ Copy the following to your AI agent:
 ```
 You are installing viruagent-cli, a blog publishing CLI tool. Follow these steps in order.
 
-Step 1: Verify CLI
-npx viruagent-cli --spec
-If the output contains "ok": true, the CLI is ready. If it fails, check that Node.js
->= 18 is installed.
-
-Step 2: Install skill
+Step 1: Install skill
 npx viruagent-cli install-skill
 This copies the skill file to ~/.claude/commands/viruagent.md. Confirm the file
 exists before proceeding.
 
+Step 2: Verify CLI
+npx viruagent-cli --spec
+If the output contains "ok": true, the CLI is ready. If it fails, check that Node.js
+>= 18 is installed.
+
 Tell the user that viruagent-cli installation is complete.
 ```
 
@@ -63,7 +75,8 @@ npx viruagent-cli login --from-chrome --profile "Profile 2"
 npx viruagent-cli login --username <id> --password <pw> --headless
 ```
 
-`--from-chrome` decrypts Chrome's cookie database directly via macOS Keychain. No browser launch, no 2FA — completes in under 1 second.
+> [!TIP]
+> `--from-chrome` decrypts Chrome's cookie database directly via macOS Keychain. No browser launch, no 2FA — completes in under 1 second.
 
 ## Usage
 
@@ -93,14 +106,14 @@ Ask the agent for detailed usage or customization help.
 
 ## Tech Stack
 
-| Area | Tech | Description |
-| --- | --- | --- |
-| CLI Framework | Commander.js | Command definitions, option parsing, `--spec` schema |
-| Browser Automation | Playwright (Chromium) | Login automation |
-| Cookie Decryption | macOS Keychain + AES-128-CBC | Chrome session import (`--from-chrome`) |
-| Session Management | JSON file (`~/.viruagent-cli/`) | Cookie-based session save/restore |
-| Image Search | DuckDuckGo, Wikimedia, Commons | Keyword-based auto image search |
-| Output Format | JSON envelope | `{ ok, data }` / `{ ok, error, hint }` |
+| Area | Tech |
+| --- | --- |
+| CLI Framework | Commander.js |
+| Browser Automation | Playwright (Chromium) |
+| Cookie Decryption | macOS Keychain + AES-128-CBC |
+| Session Management | JSON file (`~/.viruagent-cli/`) |
+| Image Search | DuckDuckGo, Wikimedia, Commons |
+| Output Format | JSON envelope (`{ ok, data }` / `{ ok, error, hint }`) |
 
 ## Contributing
 
@@ -116,7 +129,3 @@ git checkout -b feature/my-feature
 git commit -m "[FEAT] Add my feature"
 git push origin feature/my-feature
 ```
-
-## License
-
-MIT

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "viruagent-cli",
-  "version": "0.3.0",
+  "version": "0.3.2",
   "description": "AI-agent-optimized CLI for blog publishing (Tistory, Naver)",
   "private": false,
   "type": "commonjs",

package/skills/viruagent.md

@@ -62,47 +62,67 @@ Every post must follow this structure. Write in the same language as the user's
 
 ```html
 <!-- 1. Hook (blockquote style2 for topic quote) -->
-<blockquote data-ke-style="style2">[One impactful sentence about the topic]</blockquote>
+<blockquote data-ke-style="style2">[One impactful sentence that captures the core insight or tension]</blockquote>
 <p data-ke-size="size16">&nbsp;</p>
 
-<!-- 2. Introduction (what this post covers, what the reader will learn) -->
-<p>[Brief overview — set expectations clearly]</p>
+<!-- 2. Introduction (2~3 paragraphs: context, reader empathy, what this post covers) -->
+<p data-ke-size="size18">[Describe the situation the reader relates to — paint a vivid picture, 3~5 sentences]</p>
+<p data-ke-size="size18">[Set expectations: what angle this post takes, what the reader will gain]</p>
 <p data-ke-size="size16">&nbsp;</p>
 
-<!-- 3. Body (2~4 sections with h2/h3, short paragraphs, lists) -->
+<!-- 3. Body (3~4 sections with h2, each section has 2~3 paragraphs) -->
 <!-- Use <p data-ke-size="size16">&nbsp;</p> between sections for spacing -->
 <h2>[Section 1 Title — keyword-rich]</h2>
-<p>[Short paragraph, max 2~3 sentences]</p>
+<p data-ke-size="size18">[Explain the concept or situation in 3~5 sentences. Include evidence: expert quotes, data, or real-world examples]</p>
+<p data-ke-size="size18">[Deepen the point with analysis, comparison, or implication. Connect to the reader's experience]</p>
 <ul>
+  <li>[Key point — only use lists for 3+ concrete items worth scanning]</li>
   <li>[Key point]</li>
   <li>[Key point]</li>
 </ul>
+<p data-ke-size="size16">&nbsp;</p>
 
 <h2>[Section 2 Title]</h2>
-<p>[Short paragraph]</p>
+<p data-ke-size="size18">[Introduce a new angle, case study, or supporting argument. 3~5 sentences with specific details]</p>
+<p data-ke-size="size18">[Analyze why this matters. Use <strong>bold</strong> for key terms. Connect back to the main thesis]</p>
+<p data-ke-size="size16">&nbsp;</p>
+
+<h2>[Section 3 Title]</h2>
+<p data-ke-size="size18">[Practical application or actionable insight. Show, don't just tell]</p>
+<p data-ke-size="size18">[Bridge to the conclusion — "what this all means"]</p>
+<p data-ke-size="size16">&nbsp;</p>
 
 <!-- 4. Summary / Key Takeaways -->
 <h2>핵심 정리</h2>
 <ul>
-  <li>[Takeaway 1]</li>
+  <li>[Takeaway 1 — one complete sentence, not a fragment]</li>
   <li>[Takeaway 2]</li>
   <li>[Takeaway 3]</li>
 </ul>
+<p data-ke-size="size16">&nbsp;</p>
 
-<!-- 5. Closing (CTA or next step) -->
-<p>[Closing sentence — encourage action, share, or further reading]</p>
+<!-- 5. Closing (specific action the reader can take) -->
+<p data-ke-size="size18">[Closing 1~2 sentences — suggest a concrete, immediate action. Not vague "stay tuned" but specific "try this tomorrow"]</p>
 ```
 
 ### Writing Rules
 
 - **Title**: Include the primary keyword. 10~20 characters. Short and impactful.
-- **Paragraphs**: Max 2~3 sentences each. Break long ideas into multiple paragraphs for readability.
+- **Length**: 3000~4000 characters (한글 기준). Aim for depth, not padding.
+- **Paragraphs**: 3~5 sentences each. Develop ideas fully within a paragraph before moving on. Do NOT write 1~2 sentence paragraphs repeatedly.
+- **Font size**: Use `<p data-ke-size="size18">` for all body text paragraphs. Use `<p data-ke-size="size16">&nbsp;</p>` only for spacing between sections.
 - **Spacing**: Use `<p data-ke-size="size16">&nbsp;</p>` between sections for line breaks (Tistory-specific).
 - **Hook**: Always use `<blockquote data-ke-style="style2">` for the opening topic quote.
-- **Lists**: Use `<ul>` or `<ol>` for 3+ items. Easier to scan.
+- **Introduction**: 2~3 paragraphs that set context and build reader empathy before diving into the body.
+- **Body sections**: Each h2 section must have 2~3 substantial paragraphs. Do NOT jump straight to bullet lists.
+- **Lists**: Use sparingly — only for 3+ concrete, scannable items. Default to paragraphs for explanation and analysis.
+- **Evidence**: Each body section should include at least one of: expert quote, data point, real company example, or research finding. Cite sources naturally within the text.
+- **Perspective shift**: Include at least one moment that reframes the reader's thinking (e.g., "X is not about A, it's about B").
+- **Transitions**: Connect sections with bridge sentences. Avoid abrupt jumps between topics.
+- **Bold**: Use `<strong>` for key terms and concepts (2~3 per section max).
 - **Subheadings**: Use `<h2>` for ALL section titles. Do NOT use `<h3>`. Keep heading sizes consistent.
-- **Tone**: Conversational but informative. Avoid jargon unless the audience expects it.
-- **Length**: 1500~2000 characters (한글 기준) for standard posts. Do NOT exceed 2000 characters.
+- **Tone**: Conversational but substantive. Write as if explaining to a smart colleague, not listing facts for a report.
+- **Closing**: End with a specific, actionable suggestion the reader can try immediately — not a vague "stay tuned."
 - **SEO**: Primary keyword in title, first paragraph, and at least one `<h2>`. Don't keyword-stuff.
 
 ```bash

package/src/providers/tistoryProvider.js

@@ -1,5 +1,5 @@
 const { chromium } = require('playwright');
-const { execSync } = require('child_process');
+const { execSync, execFileSync } = require('child_process');
 const fs = require('fs');
 const os = require('os');
 const crypto = require('crypto');
@@ -1734,7 +1734,7 @@ const persistTistorySession = async (context, targetSessionPath) => {
   );
 };
 
-const decryptChromeCookie = (encryptedValue, derivedKey) => {
+const decryptChromeCookieMac = (encryptedValue, derivedKey) => {
   if (!encryptedValue || encryptedValue.length < 4) return '';
   const prefix = encryptedValue.slice(0, 3).toString('ascii');
   if (prefix !== 'v10') return encryptedValue.toString('utf-8');
@@ -1757,19 +1757,136 @@ const decryptChromeCookie = (encryptedValue, derivedKey) => {
   }
 };
 
+const getWindowsChromeMasterKey = (chromeRoot) => {
+  const localStatePath = path.join(chromeRoot, 'Local State');
+  if (!fs.existsSync(localStatePath)) {
+    throw new Error('Chrome Local State 파일을 찾을 수 없습니다.');
+  }
+  const localState = JSON.parse(fs.readFileSync(localStatePath, 'utf-8'));
+  const encryptedKeyB64 = localState.os_crypt && localState.os_crypt.encrypted_key;
+  if (!encryptedKeyB64) {
+    throw new Error('Chrome Local State에서 암호화 키를 찾을 수 없습니다.');
+  }
+  const encryptedKeyWithPrefix = Buffer.from(encryptedKeyB64, 'base64');
+  // 앞 5바이트 "DPAPI" 접두사 제거
+  const encryptedKey = encryptedKeyWithPrefix.slice(5);
+  const encHex = encryptedKey.toString('hex');
+
+  // PowerShell DPAPI로 복호화
+  const psScript = `
+Add-Type -AssemblyName System.Security
+$encBytes = [byte[]]::new(${encryptedKey.length})
+$hex = '${encHex}'
+for ($i = 0; $i -lt $encBytes.Length; $i++) {
+  $encBytes[$i] = [Convert]::ToByte($hex.Substring($i * 2, 2), 16)
+}
+$decBytes = [System.Security.Cryptography.ProtectedData]::Unprotect($encBytes, $null, [System.Security.Cryptography.DataProtectionScope]::CurrentUser)
+$decHex = -join ($decBytes | ForEach-Object { $_.ToString('x2') })
+Write-Output $decHex
+`.trim().replace(/\n/g, '; ');
+
+  try {
+    const decHex = execSync(
+      `powershell -NoProfile -Command "${psScript}"`,
+      { encoding: 'utf-8', timeout: 10000 }
+    ).trim();
+    return Buffer.from(decHex, 'hex');
+  } catch {
+    throw new Error('Chrome 암호화 키를 DPAPI로 복호화할 수 없습니다.');
+  }
+};
+
+const decryptChromeCookieWindows = (encryptedValue, masterKey) => {
+  if (!encryptedValue || encryptedValue.length < 4) return '';
+  const prefix = encryptedValue.slice(0, 3).toString('ascii');
+  if (prefix !== 'v10' && prefix !== 'v20') return encryptedValue.toString('utf-8');
+
+  // AES-256-GCM: nonce(12바이트) + ciphertext + authTag(16바이트)
+  const nonce = encryptedValue.slice(3, 3 + 12);
+  const authTag = encryptedValue.slice(encryptedValue.length - 16);
+  const ciphertext = encryptedValue.slice(3 + 12, encryptedValue.length - 16);
+
+  try {
+    const decipher = crypto.createDecipheriv('aes-256-gcm', masterKey, nonce);
+    decipher.setAuthTag(authTag);
+    const dec = Buffer.concat([decipher.update(ciphertext), decipher.final()]);
+    return dec.toString('utf-8');
+  } catch {
+    return '';
+  }
+};
+
+const decryptChromeCookie = (encryptedValue, key) => {
+  if (process.platform === 'win32') {
+    return decryptChromeCookieWindows(encryptedValue, key);
+  }
+  return decryptChromeCookieMac(encryptedValue, key);
+};
+
+const copyFileViaVSS = (srcPath, destPath) => {
+  const scriptPath = path.join(__dirname, '..', 'scripts', 'vss-copy.ps1');
+  if (!fs.existsSync(scriptPath)) return false;
+  try {
+    const result = execSync(
+      'powershell -NoProfile -ExecutionPolicy Bypass -File "' + scriptPath + '" -SourcePath "' + srcPath + '" -DestPath "' + destPath + '"',
+      { encoding: 'utf-8', timeout: 30000 }
+    ).trim();
+    return result.includes('OK');
+  } catch {
+    return false;
+  }
+};
+
+const isChromeRunning = () => {
+  try {
+    if (process.platform === 'win32') {
+      const result = execSync('tasklist /FI "IMAGENAME eq chrome.exe" /NH', { encoding: 'utf-8', timeout: 5000 });
+      return result.includes('chrome.exe');
+    }
+    const result = execSync('pgrep -x "Google Chrome" 2>/dev/null || pgrep -x chrome 2>/dev/null', { encoding: 'utf-8', timeout: 5000 });
+    return result.trim().length > 0;
+  } catch {
+    return false;
+  }
+};
+
 const extractChromeCookies = (cookiesDb, derivedKey, domainPattern) => {
   const tempDb = path.join(os.tmpdir(), `viruagent-cookies-${Date.now()}.db`);
+
+  // SQLite 온라인 백업 API 사용 (Chrome이 실행 중이어도 동작)
+  // execFileSync로 쉘을 거치지 않아 Windows 경로 공백/이스케이핑 문제 없음
+  const backupCmd = process.platform === 'win32'
+    ? `.backup "${tempDb}"`
+    : `.backup '${tempDb.replace(/'/g, "''")}'`;
   try {
-    execSync(`sqlite3 "${cookiesDb}" ".backup '${tempDb}'"`, { timeout: 5000 });
+    execFileSync('sqlite3', [cookiesDb, backupCmd], { stdio: 'ignore', timeout: 10000 });
   } catch {
-    throw new Error('Chrome 쿠키 DB 복사에 실패했습니다. Chrome이 실행 중이면 잠시 후 다시 시도해 주세요.');
+    // sqlite3 백업 실패 시 파일 복사 → VSS 순으로 폴백
+    let copied = false;
+    try {
+      fs.copyFileSync(cookiesDb, tempDb);
+      copied = true;
+    } catch {}
+    if (!copied && process.platform === 'win32') {
+      // Windows: VSS(Volume Shadow Copy)로 잠긴 파일 복사
+      copied = copyFileViaVSS(cookiesDb, tempDb);
+    }
+    if (!copied) {
+      throw new Error('Chrome 쿠키 DB 복사에 실패했습니다. Chrome이 실행 중이면 종료 후 다시 시도해 주세요.');
+    }
+  }
+
+  // 백업 후 남은 WAL/SHM 파일 제거 (깨끗한 DB 보장)
+  for (const suffix of ['-wal', '-shm', '-journal']) {
+    try { fs.unlinkSync(tempDb + suffix); } catch {}
   }
 
   try {
-    const rows = execSync(
-      `sqlite3 -separator '||' "${tempDb}" "SELECT host_key, name, value, hex(encrypted_value), path, expires_utc, is_secure, is_httponly, samesite FROM cookies WHERE host_key LIKE '${domainPattern}'"`,
-      { encoding: 'utf-8', timeout: 5000 }
-    ).trim();
+    const query = `SELECT host_key, name, value, hex(encrypted_value), path, expires_utc, is_secure, is_httponly, samesite FROM cookies WHERE host_key LIKE '${domainPattern}'`;
+    const rows = execFileSync('sqlite3', ['-separator', '||', tempDb, query], {
+      encoding: 'utf-8',
+      timeout: 5000,
+    }).trim();
     if (!rows) return [];
 
     const chromeEpochOffset = 11644473600;
@@ -1789,31 +1906,205 @@ const extractChromeCookies = (cookiesDb, derivedKey, domainPattern) => {
   }
 };
 
+const findWindowsChromePath = () => {
+  const candidates = [
+    path.join(process.env['PROGRAMFILES(X86)'] || '', 'Google', 'Chrome', 'Application', 'chrome.exe'),
+    path.join(process.env['PROGRAMFILES'] || '', 'Google', 'Chrome', 'Application', 'chrome.exe'),
+    path.join(process.env['LOCALAPPDATA'] || '', 'Google', 'Chrome', 'Application', 'chrome.exe'),
+  ];
+  return candidates.find(p => fs.existsSync(p)) || null;
+};
+
+const generateSelfSignedCert = (domain) => {
+  const tempDir = path.join(os.tmpdir(), `viruagent-cert-${Date.now()}`);
+  fs.mkdirSync(tempDir, { recursive: true });
+  const keyPath = path.join(tempDir, 'key.pem');
+  const certPath = path.join(tempDir, 'cert.pem');
+
+  // openssl (Git for Windows에 포함)
+  const opensslPaths = [
+    'openssl',
+    'C:/Program Files/Git/usr/bin/openssl.exe',
+    'C:/Program Files (x86)/Git/usr/bin/openssl.exe',
+  ];
+  let generated = false;
+  for (const openssl of opensslPaths) {
+    try {
+      execSync(
+        `"${openssl}" req -x509 -newkey rsa:2048 -nodes -keyout "${keyPath}" -out "${certPath}" -days 1 -subj "/CN=${domain}"`,
+        { timeout: 10000, stdio: 'pipe' }
+      );
+      generated = true;
+      break;
+    } catch {}
+  }
+  if (!generated) {
+    try { fs.rmSync(tempDir, { recursive: true, force: true }); } catch {}
+    return null;
+  }
+  return { keyPath, certPath, tempDir };
+};
+
+const importSessionViaChromeDirectLaunch = async (targetSessionPath, chromeRoot, profileName) => {
+  // Windows Chrome 145+: v20 App Bound Encryption으로 외부에서 쿠키 복호화 불가
+  // HTTPS 서버 + DNS 리다이렉션으로 Chrome이 보내는 Cookie 헤더에서 세션 추출
+  if (isChromeRunning()) {
+    throw new Error(
+      'Chrome이 실행 중입니다. --from-chrome 세션 추출을 위해 Chrome을 종료한 후 다시 시도해 주세요.'
+    );
+  }
+
+  const chromePath = findWindowsChromePath();
+  if (!chromePath) {
+    throw new Error('Chrome 실행 파일을 찾을 수 없습니다.');
+  }
+
+  // 1. 자체 서명 인증서 생성 (openssl 필요)
+  const cert = generateSelfSignedCert('www.tistory.com');
+  if (!cert) {
+    throw new Error(
+      'openssl을 찾을 수 없습니다. Git for Windows를 설치하면 openssl이 포함됩니다.'
+    );
+  }
+
+  const https = require('https');
+  const { spawn } = require('child_process');
+
+  // 2. HTTPS 서버 시작 (포트 443)
+  const server = https.createServer({
+    key: fs.readFileSync(cert.keyPath),
+    cert: fs.readFileSync(cert.certPath),
+  });
+
+  try {
+    await new Promise((resolve, reject) => {
+      server.on('error', reject);
+      server.listen(443, '127.0.0.1', resolve);
+    });
+  } catch (e) {
+    try { fs.rmSync(cert.tempDir, { recursive: true, force: true }); } catch {}
+    throw new Error(`포트 443 바인딩 실패: ${e.message}. 관리자 권한으로 실행해 주세요.`);
+  }
+
+  // 3. 쿠키 수신 Promise
+  let chromeProc = null;
+  const cookiePromise = new Promise((resolve, reject) => {
+    const timeout = setTimeout(() => {
+      reject(new Error('Chrome 쿠키 추출 시간 초과 (15초)'));
+    }, 15000);
+
+    server.on('request', (req, res) => {
+      res.writeHead(200, { 'Content-Type': 'text/html' });
+      res.end('<html><body>Session captured. You can close this window.</body></html>');
+
+      if (req.url === '/' || req.url === '') {
+        clearTimeout(timeout);
+        const cookieHeader = req.headers.cookie || '';
+        resolve(cookieHeader);
+      }
+    });
+  });
+
+  // 4. Chrome 실행 (기본 프로필, DNS 리다이렉션, 인증서 오류 무시)
+  chromeProc = spawn(chromePath, [
+    '--no-first-run',
+    '--no-default-browser-check',
+    `--profile-directory=${profileName}`,
+    '--host-resolver-rules=MAP www.tistory.com 127.0.0.1',
+    '--ignore-certificate-errors',
+    'https://www.tistory.com/',
+  ], { detached: true, stdio: 'ignore' });
+  chromeProc.unref();
+
+  try {
+    const cookieHeader = await cookiePromise;
+
+    // Cookie 헤더 파싱
+    const cookies = cookieHeader.split(';')
+      .map(c => c.trim())
+      .filter(Boolean)
+      .map(c => {
+        const eqIdx = c.indexOf('=');
+        if (eqIdx < 0) return null;
+        return { name: c.slice(0, eqIdx).trim(), value: c.slice(eqIdx + 1).trim() };
+      })
+      .filter(Boolean);
+
+    const tssession = cookies.find(c => c.name === 'TSSESSION');
+    if (!tssession || !tssession.value) {
+      throw new Error(
+        'Chrome에 티스토리 로그인 세션이 없습니다. Chrome에서 먼저 티스토리에 로그인해 주세요.'
+      );
+    }
+
+    // Cookie 헤더에는 domain/path/expires 정보가 없으므로 기본값 설정
+    const payload = {
+      cookies: cookies.map(c => ({
+        name: c.name,
+        value: c.value,
+        domain: '.tistory.com',
+        path: '/',
+        expires: -1,
+        httpOnly: false,
+        secure: true,
+        sameSite: 'None',
+      })),
+      updatedAt: new Date().toISOString(),
+    };
+
+    await fs.promises.mkdir(path.dirname(targetSessionPath), { recursive: true });
+    await fs.promises.writeFile(targetSessionPath, JSON.stringify(payload, null, 2), 'utf-8');
+
+    return { cookieCount: cookies.length };
+  } finally {
+    server.close();
+    if (chromeProc) {
+      try { execSync(`taskkill /F /PID ${chromeProc.pid} /T`, { stdio: 'ignore', timeout: 5000 }); } catch {}
+    }
+    try { fs.rmSync(cert.tempDir, { recursive: true, force: true }); } catch {}
+  }
+};
+
 const importSessionFromChrome = async (targetSessionPath, profileName = 'Default') => {
-  const chromeRoot = path.join(os.homedir(), 'Library', 'Application Support', 'Google', 'Chrome');
+  let chromeRoot;
+  if (process.platform === 'win32') {
+    chromeRoot = path.join(process.env.LOCALAPPDATA || path.join(os.homedir(), 'AppData', 'Local'), 'Google', 'Chrome', 'User Data');
+  } else {
+    chromeRoot = path.join(os.homedir(), 'Library', 'Application Support', 'Google', 'Chrome');
+  }
   if (!fs.existsSync(chromeRoot)) {
     throw new Error('Chrome이 설치되어 있지 않습니다.');
   }
 
   const profileDir = path.join(chromeRoot, profileName);
-  const cookiesDb = path.join(profileDir, 'Cookies');
+  // Windows 최신 Chrome은 Network/Cookies, 이전 버전은 Cookies
+  let cookiesDb = path.join(profileDir, 'Network', 'Cookies');
+  if (!fs.existsSync(cookiesDb)) {
+    cookiesDb = path.join(profileDir, 'Cookies');
+  }
   if (!fs.existsSync(cookiesDb)) {
     throw new Error(`Chrome 프로필 "${profileName}"에 쿠키 DB가 없습니다.`);
   }
 
-  // 1) Keychain에서 Chrome 암호화 키 추출
-  let keychainPassword;
-  try {
-    keychainPassword = execSync(
-      'security find-generic-password -s "Chrome Safe Storage" -w',
-      { encoding: 'utf-8', timeout: 5000 }
-    ).trim();
-  } catch {
-    throw new Error('Chrome Safe Storage 키를 Keychain에서 읽을 수 없습니다. macOS 권한을 확인해 주세요.');
+  let derivedKey;
+  if (process.platform === 'win32') {
+    // Windows: Local State → DPAPI로 마스터 키 복호화
+    derivedKey = getWindowsChromeMasterKey(chromeRoot);
+  } else {
+    // macOS: Keychain에서 Chrome 암호화 키 추출
+    let keychainPassword;
+    try {
+      keychainPassword = execSync(
+        'security find-generic-password -s "Chrome Safe Storage" -w',
+        { encoding: 'utf-8', timeout: 5000 }
+      ).trim();
+    } catch {
+      throw new Error('Chrome Safe Storage 키를 Keychain에서 읽을 수 없습니다. macOS 권한을 확인해 주세요.');
+    }
+    derivedKey = crypto.pbkdf2Sync(keychainPassword, 'saltysalt', 1003, 16, 'sha1');
   }
-  const derivedKey = crypto.pbkdf2Sync(keychainPassword, 'saltysalt', 1003, 16, 'sha1');
 
-  // 2) Chrome에서 tistory + kakao 쿠키 복호화 추출
+  // Chrome에서 tistory + kakao 쿠키 복호화 추출
   const tistoryCookies = extractChromeCookies(cookiesDb, derivedKey, '%tistory.com');
   const kakaoCookies = extractChromeCookies(cookiesDb, derivedKey, '%kakao.com');
 
@@ -1829,6 +2120,11 @@ const importSessionFromChrome = async (targetSessionPath, profileName = 'Default
   // 3) 카카오 세션 쿠키가 있으면 Playwright에 주입 후 자동 로그인
   const hasKakaoSession = kakaoCookies.some(c => c.domain.includes('kakao.com') && (c.name === '_kawlt' || c.name === '_kawltea' || c.name === '_karmt'));
   if (!hasKakaoSession) {
+    // Windows v20 App Bound Encryption: DPAPI만으로 복호화 불가
+    // Playwright persistent context (pipe 모드)로 Chrome 기본 프로필에서 직접 추출
+    if (process.platform === 'win32') {
+      return await importSessionViaChromeDirectLaunch(targetSessionPath, chromeRoot, profileName);
+    }
     throw new Error('Chrome에 카카오 로그인 세션이 없습니다. Chrome에서 먼저 카카오 계정에 로그인해 주세요.');
   }
 

package/src/scripts/vss-copy.ps1

@@ -0,0 +1,28 @@
+param(
+    [Parameter(Mandatory=$true)][string]$SourcePath,
+    [Parameter(Mandatory=$true)][string]$DestPath
+)
+
+$ErrorActionPreference = 'Stop'
+
+$drive = $SourcePath.Substring(0, 2) + '\'
+$relativePath = $SourcePath.Substring(2)
+
+try {
+    $shadow = (Get-WmiObject -List Win32_ShadowCopy).Create($drive, 'ClientAccessible')
+    $shadowObj = Get-WmiObject Win32_ShadowCopy | Where-Object { $_.ID -eq $shadow.ShadowID }
+    $shadowPath = $shadowObj.DeviceObject + $relativePath
+
+    cmd /c "copy `"$shadowPath`" `"$DestPath`" /y" | Out-Null
+
+    $shadowObj.Delete()
+
+    if (Test-Path $DestPath) {
+        Write-Output 'OK'
+    } else {
+        Write-Output 'FAIL'
+    }
+} catch {
+    Write-Error $_
+    exit 1
+}