viruagent-cli 0.3.3 → 0.3.5

package/README.ko.md

@@ -64,8 +64,10 @@ Tell the user that viruagent-cli installation is complete.
 
 ## 로그인
 
+### Tistory
+
 ```bash
-# Chrome 세션 임포트 (ID/PW 불필요, macOS 전용)
+# Chrome 세션 임포트 (ID/PW 불필요, macOS & Windows)
 npx viruagent-cli login --from-chrome
 
 # 특정 Chrome 프로필 사용
@@ -75,8 +77,21 @@ npx viruagent-cli login --from-chrome --profile "Profile 2"
 npx viruagent-cli login --username <id> --password <pw> --headless
 ```
 
+### Naver Blog
+
+```bash
+# Chrome 세션 임포트 (권장)
+npx viruagent-cli login --provider naver --from-chrome
+
+# 수동 로그인 (브라우저에서 직접 로그인)
+npx viruagent-cli login --provider naver --manual
+
+# 자동 로그인 (ID/PW)
+npx viruagent-cli login --provider naver --username <id> --password <pw>
+```
+
 > [!TIP]
-> `--from-chrome`은 macOS Keychain을 통해 Chrome 쿠키 DB를 직접 복호화합니다. 브라우저 실행 없이, 2FA 없이, 1초 내 완료됩니다.
+> `--from-chrome`은 Chrome에서 직접 쿠키를 추출합니다 — macOS Keychain 또는 Windows DPAPI를 사용하며, CDP 폴백도 지원합니다. 브라우저 실행 없이, 2FA 없이, 1초 내 완료됩니다.
 
 ## 사용법
 
@@ -102,7 +117,7 @@ npx viruagent-cli login --username <id> --password <pw> --headless
 | 플랫폼 | 상태 |
 | --- | --- |
 | Tistory | 지원 |
-| Naver Blog | 예정 |
+| Naver Blog | 지원 |
 
 ## 기술 스택
 
@@ -110,9 +125,10 @@ npx viruagent-cli login --username <id> --password <pw> --headless
 | --- | --- |
 | CLI 프레임워크 | Commander.js |
 | 브라우저 자동화 | Playwright (Chromium) |
-| 쿠키 복호화 | macOS Keychain + AES-128-CBC |
+| 쿠키 복호화 | macOS Keychain + AES-128-CBC / Windows DPAPI + AES-256-GCM / CDP 폴백 |
 | 세션 관리 | JSON 파일 (`~/.viruagent-cli/`) |
-| 이미지 검색 | DuckDuckGo, Wikimedia, Commons |
+| 이미지 검색 | DuckDuckGo, Wikimedia Commons |
+| 네이버 에디터 | SE Editor 컴포넌트 모델 + RabbitWrite API |
 | 출력 형식 | JSON envelope (`{ ok, data }` / `{ ok, error, hint }`) |
 
 ## Contributing

package/README.md

@@ -64,8 +64,10 @@ Tell the user that viruagent-cli installation is complete.
 
 ## Login
 
+### Tistory
+
 ```bash
-# Import session from Chrome (no ID/PW needed, macOS only)
+# Import session from Chrome (no ID/PW needed, macOS & Windows)
 npx viruagent-cli login --from-chrome
 
 # Use a specific Chrome profile
@@ -75,8 +77,21 @@ npx viruagent-cli login --from-chrome --profile "Profile 2"
 npx viruagent-cli login --username <id> --password <pw> --headless
 ```
 
+### Naver Blog
+
+```bash
+# Import session from Chrome (recommended)
+npx viruagent-cli login --provider naver --from-chrome
+
+# Manual login via browser
+npx viruagent-cli login --provider naver --manual
+
+# Auto login with credentials
+npx viruagent-cli login --provider naver --username <id> --password <pw>
+```
+
 > [!TIP]
-> `--from-chrome` decrypts Chrome's cookie database directly via macOS Keychain. No browser launch, no 2FA — completes in under 1 second.
+> `--from-chrome` extracts cookies from Chrome directly — via macOS Keychain or Windows DPAPI, with CDP fallback. No browser launch, no 2FA — completes in under 1 second.
 
 ## Usage
 
@@ -102,7 +117,7 @@ Ask the agent for detailed usage or customization help.
 | Platform | Status |
 | --- | --- |
 | Tistory | Supported |
-| Naver Blog | Planned |
+| Naver Blog | Supported |
 
 ## Tech Stack
 
@@ -110,9 +125,10 @@ Ask the agent for detailed usage or customization help.
 | --- | --- |
 | CLI Framework | Commander.js |
 | Browser Automation | Playwright (Chromium) |
-| Cookie Decryption | macOS Keychain + AES-128-CBC |
+| Cookie Decryption | macOS Keychain + AES-128-CBC / Windows DPAPI + AES-256-GCM / CDP fallback |
 | Session Management | JSON file (`~/.viruagent-cli/`) |
-| Image Search | DuckDuckGo, Wikimedia, Commons |
+| Image Search | DuckDuckGo, Wikimedia Commons |
+| Naver Editor | SE Editor component model + RabbitWrite API |
 | Output Format | JSON envelope (`{ ok, data }` / `{ ok, error, hint }`) |
 
 ## Contributing

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "viruagent-cli",
-  "version": "0.3.3",
+  "version": "0.3.5",
   "description": "AI-agent-optimized CLI for blog publishing (Tistory, Naver)",
   "private": false,
   "type": "commonjs",

package/skills/viruagent.md

@@ -28,6 +28,8 @@ All responses are JSON: `{ "ok": true, "data": {...} }` on success, `{ "ok": fal
 
 ## Step 2: Check authentication
 
+### Tistory
+
 ```bash
 npx viruagent-cli status --provider tistory
 ```
@@ -40,10 +42,29 @@ npx viruagent-cli login --provider tistory --username <user> --password <pass> -
 
 If 2FA is required (response contains `pending_2fa`), ask the user to approve the login on their mobile device (Kakao app notification), then retry the status check.
 
+### Naver Blog
+
+```bash
+npx viruagent-cli status --provider naver
+```
+
+If not logged in, authenticate (recommended: Chrome import):
+
+```bash
+# Chrome session import (recommended, fastest)
+npx viruagent-cli login --provider naver --from-chrome
+
+# Manual login via browser
+npx viruagent-cli login --provider naver --manual
+
+# Auto login with credentials (NAVER_USERNAME / NAVER_PASSWORD env vars also work)
+npx viruagent-cli login --provider naver --username <user> --password <pass>
+```
+
 ## Step 3: Get categories (for publish)
 
 ```bash
-npx viruagent-cli list-categories --provider tistory
+npx viruagent-cli list-categories --provider <tistory|naver>
 ```
 
 Ask the user which category to use if not specified.
@@ -60,6 +81,10 @@ When the user asks to write a blog post:
 
 Every post must follow this structure. Write in the same language as the user's request.
 
+#### Tistory HTML Template
+
+Tistory uses `data-ke-*` attributes for styling.
+
 ```html
 <!-- 1. Hook (blockquote style2 for topic quote) -->
 <blockquote data-ke-style="style2">[One impactful sentence that captures the core insight or tension]</blockquote>
@@ -105,14 +130,65 @@ Every post must follow this structure. Write in the same language as the user's
 <p data-ke-size="size18">[Closing 1~2 sentences — suggest a concrete, immediate action. Not vague "stay tuned" but specific "try this tomorrow"]</p>
 ```
 
+#### Naver Blog HTML Template
+
+Naver converts HTML to editor components server-side. Do NOT use `data-ke-*` attributes. Use plain HTML with `<p>&nbsp;</p>` for spacing.
+
+```html
+<!-- 1. Hook -->
+<blockquote>[One impactful sentence that captures the core insight or tension]</blockquote>
+<p>&nbsp;</p>
+
+<!-- 2. Introduction (2~3 paragraphs) -->
+<p>[Describe the situation the reader relates to — paint a vivid picture, 3~5 sentences]</p>
+<p>[Set expectations: what angle this post takes, what the reader will gain]</p>
+<p>&nbsp;</p>
+
+<!-- 3. Body (3~4 sections with h2, each section has 2~3 paragraphs) -->
+<h2>[Section 1 Title — keyword-rich]</h2>
+<p>[Explain the concept or situation in 3~5 sentences. Include evidence: expert quotes, data, or real-world examples]</p>
+<p>[Deepen the point with analysis, comparison, or implication. Connect to the reader's experience]</p>
+<ul>
+  <li>[Key point — only use lists for 3+ concrete items worth scanning]</li>
+  <li>[Key point]</li>
+  <li>[Key point]</li>
+</ul>
+<p>&nbsp;</p>
+
+<h2>[Section 2 Title]</h2>
+<p>[Introduce a new angle, case study, or supporting argument. 3~5 sentences with specific details]</p>
+<p>[Analyze why this matters. Use <strong>bold</strong> for key terms. Connect back to the main thesis]</p>
+<p>&nbsp;</p>
+
+<h2>[Section 3 Title]</h2>
+<p>[Practical application or actionable insight. Show, don't just tell]</p>
+<p>[Bridge to the conclusion — "what this all means"]</p>
+<p>&nbsp;</p>
+
+<!-- 4. Summary / Key Takeaways -->
+<h2>핵심 정리</h2>
+<ul>
+  <li>[Takeaway 1 — one complete sentence, not a fragment]</li>
+  <li>[Takeaway 2]</li>
+  <li>[Takeaway 3]</li>
+</ul>
+<p>&nbsp;</p>
+
+<!-- 5. Closing -->
+<p>[Closing 1~2 sentences — suggest a concrete, immediate action]</p>
+```
+
 ### Writing Rules
 
 - **Title**: Include the primary keyword. 10~20 characters. Short and impactful.
 - **Length**: 3000~4000 characters (한글 기준). Aim for depth, not padding.
 - **Paragraphs**: 3~5 sentences each. Develop ideas fully within a paragraph before moving on. Do NOT write 1~2 sentence paragraphs repeatedly.
-- **Font size**: Use `<p data-ke-size="size18">` for all body text paragraphs. Use `<p data-ke-size="size16">&nbsp;</p>` only for spacing between sections.
-- **Spacing**: Use `<p data-ke-size="size16">&nbsp;</p>` between sections for line breaks (Tistory-specific).
-- **Hook**: Always use `<blockquote data-ke-style="style2">` for the opening topic quote.
+- **Font size (Tistory)**: Use `<p data-ke-size="size18">` for all body text paragraphs. Use `<p data-ke-size="size16">&nbsp;</p>` only for spacing between sections.
+- **Font size (Naver)**: Use plain `<p>` tags. Do NOT use `data-ke-*` attributes — Naver's editor ignores them.
+- **Spacing (Tistory)**: Use `<p data-ke-size="size16">&nbsp;</p>` between sections for line breaks.
+- **Spacing (Naver)**: Use `<p>&nbsp;</p>` between sections.
+- **Hook (Tistory)**: Always use `<blockquote data-ke-style="style2">` for the opening topic quote.
+- **Hook (Naver)**: Use plain `<blockquote>` — Naver converts it to a quotation component.
 - **Introduction**: 2~3 paragraphs that set context and build reader empathy before diving into the body.
 - **Body sections**: Each h2 section must have 2~3 substantial paragraphs. Do NOT jump straight to bullet lists.
 - **Lists**: Use sparingly — only for 3+ concrete, scannable items. Default to paragraphs for explanation and analysis.
@@ -141,6 +217,8 @@ npx viruagent-cli publish \
 
 ## Step 5: Publish
 
+### Tistory
+
 ```bash
 npx viruagent-cli publish \
   --provider tistory \
@@ -154,12 +232,28 @@ npx viruagent-cli publish \
   --minimum-image-count 1
 ```
 
-For drafts, use `save-draft` instead of `publish`.
+### Naver Blog
+
+```bash
+npx viruagent-cli publish \
+  --provider naver \
+  --title "Post Title" \
+  --content "<h2>...</h2><p>...</p>" \
+  --category <id> \
+  --tags "tag1,tag2,tag3,tag4,tag5" \
+  --visibility public \
+  --related-image-keywords "keyword1,keyword2" \
+  --image-upload-limit 1 \
+  --minimum-image-count 1
+```
+
+For drafts, use `save-draft` instead of `publish` (Naver saves as private post).
 
 ### Image Rules (MUST FOLLOW)
 
 - **Always** include `--related-image-keywords` with 2~3 keywords relevant to the post topic
-- **Always** set `--image-upload-limit 2` and `--minimum-image-count 1`
+- **Tistory**: set `--image-upload-limit 2` and `--minimum-image-count 1`
+- **Naver**: set `--image-upload-limit 1` and `--minimum-image-count 1`
 - Keywords should be in English for better image search results
 - Never use `--no-auto-upload-images` unless the user explicitly asks
 

package/src/providers/naver/auth.js

@@ -0,0 +1,180 @@
+const fs = require('fs');
+const path = require('path');
+const { chromium } = require('playwright');
+const { readNaverCredentials, sleep } = require('./utils');
+const { isLoggedInByCookies, persistNaverSession } = require('./session');
+const { NAVER_LOGIN_SELECTORS, NAVER_LOGIN_ERROR_PATTERNS } = require('./selectors');
+
+const ANTI_DETECTION_SCRIPT = `
+  Object.defineProperty(navigator, 'webdriver', { get: () => undefined });
+  Object.defineProperty(navigator, 'plugins', { get: () => [1, 2, 3, 4, 5] });
+  Object.defineProperty(navigator, 'languages', { get: () => ['ko-KR', 'ko', 'en-US', 'en'] });
+  window.chrome = { runtime: {} };
+`;
+
+const waitForNaverLoginFinish = async (page, context, timeoutMs = 45000) => {
+  const deadline = Date.now() + timeoutMs;
+  while (Date.now() < deadline) {
+    if (await isLoggedInByCookies(context)) return true;
+
+    const url = page.url();
+    if (url.includes('naver.com') && !url.includes('nid.naver.com/nidlogin')) return true;
+
+    await sleep(1000);
+  }
+  return false;
+};
+
+const checkLoginResult = async (page) => {
+  const content = await page.content();
+  const patterns = NAVER_LOGIN_ERROR_PATTERNS;
+
+  if (content.includes(patterns.wrongPassword)) {
+    return { success: false, error: 'wrong_password', message: '비밀번호가 잘못되었습니다.' };
+  }
+  if (content.includes(patterns.accountProtected)) {
+    return { success: false, error: 'account_protected', message: '계정 보호조치가 활성화되어 있습니다.' };
+  }
+  if (content.includes(patterns.regionBlocked)) {
+    return { success: false, error: 'region_blocked', message: '허용하지 않은 지역에서 접속이 감지되었습니다.' };
+  }
+  if (content.includes(patterns.usageRestricted)) {
+    return { success: false, error: 'usage_restricted', message: '비정상적인 활동이 감지되어 이용이 제한되었습니다.' };
+  }
+  if (content.includes(patterns.twoFactor)) {
+    return { success: false, error: 'two_factor', message: '2단계 인증이 필요합니다. --manual 모드로 로그인해 주세요.' };
+  }
+
+  // 캡차 감지
+  const hasCaptcha = patterns.captcha.some((p) => content.toLowerCase().includes(p.toLowerCase()));
+  if (hasCaptcha) {
+    return { success: false, error: 'captcha', message: '캡차가 감지되었습니다. --manual 또는 --from-chrome 모드를 사용해 주세요.' };
+  }
+
+  // 성공 (운영원칙 위반 포함)
+  if (content.includes(patterns.operationViolation) || content.includes(patterns.newDevice)) {
+    return { success: true };
+  }
+
+  const url = page.url();
+  if (url.includes('naver.com') && !url.includes('nid.naver.com/nidlogin')) {
+    return { success: true };
+  }
+
+  return { success: false, error: 'unknown', message: '로그인 상태를 확인할 수 없습니다.' };
+};
+
+const createAskForAuthentication = ({ sessionPath, naverApi }) => async ({
+  headless = false,
+  manual = false,
+  username,
+  password,
+} = {}) => {
+  fs.mkdirSync(path.dirname(sessionPath), { recursive: true });
+
+  const resolvedUsername = username || readNaverCredentials().username;
+  const resolvedPassword = password || readNaverCredentials().password;
+
+  if (!manual && (!resolvedUsername || !resolvedPassword)) {
+    throw new Error('네이버 로그인에 id/pw가 필요합니다. 환경변수 NAVER_USERNAME/NAVER_PASSWORD를 설정하거나 --manual 모드를 사용해 주세요.');
+  }
+
+  const browser = await chromium.launch({
+    headless: manual ? false : headless,
+  });
+
+  const context = await browser.newContext({
+    userAgent: 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36',
+    viewport: { width: 1366, height: 768 },
+    locale: 'ko-KR',
+    timezoneId: 'Asia/Seoul',
+  });
+
+  await context.addInitScript(ANTI_DETECTION_SCRIPT);
+  const page = context.pages()[0] || (await context.newPage());
+
+  try {
+    await page.goto('https://nid.naver.com/nidlogin.login', { waitUntil: 'domcontentloaded' });
+    await sleep(1500);
+
+    let loginSuccess = false;
+
+    if (manual) {
+      console.log('');
+      console.log('==============================');
+      console.log('수동 로그인 모드로 전환합니다.');
+      console.log('브라우저에서 직접 네이버 로그인을 완료해 주세요.');
+      console.log('최대 5분 내에 로그인을 완료해 주세요.');
+      console.log('==============================');
+      loginSuccess = await waitForNaverLoginFinish(page, context, 300000);
+    } else {
+      // JS 인젝션으로 ID/PW 입력 (fill() 대신 — 봇 감지 우회)
+      await page.evaluate((id) => {
+        const el = document.getElementById('id');
+        if (el) el.value = id;
+      }, resolvedUsername);
+      await sleep(300);
+
+      await page.evaluate((pw) => {
+        const el = document.getElementById('pw');
+        if (el) el.value = pw;
+      }, resolvedPassword);
+      await sleep(300);
+
+      // 로그인 유지 체크
+      const keepCheck = await page.$(NAVER_LOGIN_SELECTORS.keepLogin);
+      if (keepCheck) {
+        await keepCheck.click().catch(() => {});
+        await sleep(300);
+      }
+
+      // 로그인 버튼 클릭
+      const loginBtn = await page.$(NAVER_LOGIN_SELECTORS.submit);
+      if (loginBtn) {
+        await loginBtn.click();
+      } else {
+        await page.keyboard.press('Enter');
+      }
+      await sleep(3000);
+
+      // 결과 확인
+      const result = await checkLoginResult(page);
+      if (!result.success) {
+        throw new Error(result.message);
+      }
+
+      loginSuccess = await waitForNaverLoginFinish(page, context, 15000);
+      if (!loginSuccess) {
+        // URL 기반 추가 확인
+        const url = page.url();
+        if (url.includes('naver.com') && !url.includes('nid.naver.com/nidlogin')) {
+          loginSuccess = true;
+        }
+      }
+    }
+
+    if (!loginSuccess) {
+      throw new Error('네이버 로그인에 실패했습니다. 아이디/비밀번호를 확인하거나 --manual 모드를 사용해 주세요.');
+    }
+
+    await persistNaverSession(context, sessionPath);
+
+    naverApi.resetState();
+    const blogId = await naverApi.initBlog();
+    return {
+      provider: 'naver',
+      loggedIn: true,
+      blogId,
+      blogUrl: `https://blog.naver.com/${blogId}`,
+      sessionPath,
+    };
+  } finally {
+    if (browser) {
+      await browser.close().catch(() => {});
+    }
+  }
+};
+
+module.exports = {
+  createAskForAuthentication,
+};

package/src/providers/naver/chromeImport.js

@@ -0,0 +1,195 @@
+const fs = require('fs');
+const path = require('path');
+const os = require('os');
+const crypto = require('crypto');
+const { execSync, execFileSync } = require('child_process');
+
+const NAVER_SESSION_COOKIES = ['NID_AUT', 'NID_SES'];
+
+const decryptChromeCookieMac = (encryptedValue, derivedKey) => {
+  if (!encryptedValue || encryptedValue.length < 4) return '';
+  const prefix = encryptedValue.slice(0, 3).toString('ascii');
+  if (prefix !== 'v10') return encryptedValue.toString('utf-8');
+
+  const encrypted = encryptedValue.slice(3);
+  const iv = Buffer.alloc(16, 0x20);
+  const decipher = crypto.createDecipheriv('aes-128-cbc', derivedKey, iv);
+  decipher.setAutoPadding(true);
+  try {
+    const dec = Buffer.concat([decipher.update(encrypted), decipher.final()]);
+    let start = dec.length;
+    for (let i = dec.length - 1; i >= 0; i--) {
+      if (dec[i] >= 0x20 && dec[i] <= 0x7e) { start = i; }
+      else { break; }
+    }
+    return start < dec.length ? dec.slice(start).toString('utf-8') : '';
+  } catch {
+    return '';
+  }
+};
+
+const getWindowsChromeMasterKey = (chromeRoot) => {
+  const localStatePath = path.join(chromeRoot, 'Local State');
+  if (!fs.existsSync(localStatePath)) {
+    throw new Error('Chrome Local State 파일을 찾을 수 없습니다.');
+  }
+  const localState = JSON.parse(fs.readFileSync(localStatePath, 'utf-8'));
+  const encryptedKeyB64 = localState.os_crypt && localState.os_crypt.encrypted_key;
+  if (!encryptedKeyB64) {
+    throw new Error('Chrome Local State에서 암호화 키를 찾을 수 없습니다.');
+  }
+  const encryptedKeyWithPrefix = Buffer.from(encryptedKeyB64, 'base64');
+  const encryptedKey = encryptedKeyWithPrefix.slice(5);
+  const encHex = encryptedKey.toString('hex');
+
+  const psScript = `
+Add-Type -AssemblyName System.Security
+$encBytes = [byte[]]::new(${encryptedKey.length})
+$hex = '${encHex}'
+for ($i = 0; $i -lt $encBytes.Length; $i++) {
+  $encBytes[$i] = [Convert]::ToByte($hex.Substring($i * 2, 2), 16)
+}
+$decBytes = [System.Security.Cryptography.ProtectedData]::Unprotect($encBytes, $null, [System.Security.Cryptography.DataProtectionScope]::CurrentUser)
+$decHex = -join ($decBytes | ForEach-Object { $_.ToString('x2') })
+Write-Output $decHex
+`.trim().replace(/\n/g, '; ');
+
+  try {
+    const decHex = execSync(
+      `powershell -NoProfile -Command "${psScript}"`,
+      { encoding: 'utf-8', timeout: 10000 }
+    ).trim();
+    return Buffer.from(decHex, 'hex');
+  } catch {
+    throw new Error('Chrome 암호화 키를 DPAPI로 복호화할 수 없습니다.');
+  }
+};
+
+const decryptChromeCookieWindows = (encryptedValue, masterKey) => {
+  if (!encryptedValue || encryptedValue.length < 4) return '';
+  const prefix = encryptedValue.slice(0, 3).toString('ascii');
+  if (prefix !== 'v10' && prefix !== 'v20') return encryptedValue.toString('utf-8');
+
+  const nonce = encryptedValue.slice(3, 3 + 12);
+  const authTag = encryptedValue.slice(encryptedValue.length - 16);
+  const ciphertext = encryptedValue.slice(3 + 12, encryptedValue.length - 16);
+
+  try {
+    const decipher = crypto.createDecipheriv('aes-256-gcm', masterKey, nonce);
+    decipher.setAuthTag(authTag);
+    const dec = Buffer.concat([decipher.update(ciphertext), decipher.final()]);
+    return dec.toString('utf-8');
+  } catch {
+    return '';
+  }
+};
+
+const decryptChromeCookie = (encryptedValue, key) => {
+  if (process.platform === 'win32') {
+    return decryptChromeCookieWindows(encryptedValue, key);
+  }
+  return decryptChromeCookieMac(encryptedValue, key);
+};
+
+const extractChromeCookies = (cookiesDb, derivedKey, domainPattern) => {
+  const tempDb = path.join(os.tmpdir(), `viruagent-naver-cookies-${Date.now()}.db`);
+
+  const backupCmd = process.platform === 'win32'
+    ? `.backup "${tempDb}"`
+    : `.backup '${tempDb.replace(/'/g, "''")}'`;
+  try {
+    execFileSync('sqlite3', [cookiesDb, backupCmd], { stdio: 'ignore', timeout: 10000 });
+  } catch {
+    let copied = false;
+    try {
+      fs.copyFileSync(cookiesDb, tempDb);
+      copied = true;
+    } catch {}
+    if (!copied) {
+      throw new Error('Chrome 쿠키 DB 복사에 실패했습니다. Chrome이 실행 중이면 종료 후 다시 시도해 주세요.');
+    }
+  }
+
+  for (const suffix of ['-wal', '-shm', '-journal']) {
+    try { fs.unlinkSync(tempDb + suffix); } catch {}
+  }
+
+  try {
+    const query = `SELECT host_key, name, value, hex(encrypted_value), path, expires_utc, is_secure, is_httponly, samesite FROM cookies WHERE host_key LIKE '${domainPattern}'`;
+    const rows = execFileSync('sqlite3', ['-separator', '||', tempDb, query], {
+      encoding: 'utf-8',
+      timeout: 5000,
+    }).trim();
+    if (!rows) return [];
+
+    const chromeEpochOffset = 11644473600;
+    const sameSiteMap = { '-1': 'None', '0': 'None', '1': 'Lax', '2': 'Strict' };
+    return rows.split('\n').map((row) => {
+      const [domain, name, plainValue, encHex, cookiePath, expiresUtc, isSecure, isHttpOnly, sameSite] = row.split('||');
+      let value = plainValue || '';
+      if (!value && encHex) {
+        value = decryptChromeCookie(Buffer.from(encHex, 'hex'), derivedKey);
+      }
+      if (value && !/^[\x20-\x7E]*$/.test(value)) value = '';
+      const expires = expiresUtc === '0' ? -1 : Math.floor(Number(expiresUtc) / 1000000) - chromeEpochOffset;
+      return { name, value, domain, path: cookiePath || '/', expires, httpOnly: isHttpOnly === '1', secure: isSecure === '1', sameSite: sameSiteMap[sameSite] || 'None' };
+    }).filter((c) => c.value);
+  } finally {
+    try { fs.unlinkSync(tempDb); } catch {}
+  }
+};
+
+const importSessionFromChrome = async (targetSessionPath, profileName = 'Default') => {
+  let chromeRoot;
+  if (process.platform === 'win32') {
+    chromeRoot = path.join(process.env.LOCALAPPDATA || path.join(os.homedir(), 'AppData', 'Local'), 'Google', 'Chrome', 'User Data');
+  } else {
+    chromeRoot = path.join(os.homedir(), 'Library', 'Application Support', 'Google', 'Chrome');
+  }
+  if (!fs.existsSync(chromeRoot)) {
+    throw new Error('Chrome이 설치되어 있지 않습니다.');
+  }
+
+  const profileDir = path.join(chromeRoot, profileName);
+  let cookiesDb = path.join(profileDir, 'Network', 'Cookies');
+  if (!fs.existsSync(cookiesDb)) {
+    cookiesDb = path.join(profileDir, 'Cookies');
+  }
+  if (!fs.existsSync(cookiesDb)) {
+    throw new Error(`Chrome 프로필 "${profileName}"에 쿠키 DB가 없습니다.`);
+  }
+
+  let derivedKey;
+  if (process.platform === 'win32') {
+    derivedKey = getWindowsChromeMasterKey(chromeRoot);
+  } else {
+    let keychainPassword;
+    try {
+      keychainPassword = execSync(
+        'security find-generic-password -s "Chrome Safe Storage" -w',
+        { encoding: 'utf-8', timeout: 5000 }
+      ).trim();
+    } catch {
+      throw new Error('Chrome Safe Storage 키를 Keychain에서 읽을 수 없습니다. macOS 권한을 확인해 주세요.');
+    }
+    derivedKey = crypto.pbkdf2Sync(keychainPassword, 'saltysalt', 1003, 16, 'sha1');
+  }
+
+  const naverCookies = extractChromeCookies(cookiesDb, derivedKey, '%naver.com');
+
+  const hasAuth = naverCookies.some((c) => c.name === 'NID_AUT' && c.value) &&
+    naverCookies.some((c) => c.name === 'NID_SES' && c.value);
+
+  if (!hasAuth) {
+    throw new Error('Chrome에 네이버 로그인 세션이 없습니다. Chrome에서 먼저 네이버에 로그인해 주세요.');
+  }
+
+  const payload = { cookies: naverCookies, updatedAt: new Date().toISOString() };
+  await fs.promises.mkdir(path.dirname(targetSessionPath), { recursive: true });
+  await fs.promises.writeFile(targetSessionPath, JSON.stringify(payload, null, 2), 'utf-8');
+  return { cookieCount: naverCookies.length };
+};
+
+module.exports = {
+  importSessionFromChrome,
+};