npm - web-agent-bridge - Versions diffs - 3.2.0 → 3.4.0 - Mend

web-agent-bridge 3.2.0 → 3.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (256) hide show

package/LICENSE +84 -72
package/README.ar.md +1304 -1152
package/README.md +298 -1635
package/bin/agent-runner.js +474 -474
package/bin/cli.js +237 -138
package/bin/wab-init.js +223 -0
package/bin/wab.js +80 -80
package/examples/azure-dns-wab.js +83 -0
package/examples/bidi-agent.js +119 -119
package/examples/cloudflare-wab-dns.js +121 -0
package/examples/cpanel-wab-dns.js +114 -0
package/examples/cross-site-agent.js +91 -91
package/examples/dns-discovery-agent.js +166 -0
package/examples/gcp-dns-wab.js +76 -0
package/examples/governance-agent.js +169 -0
package/examples/mcp-agent.js +94 -94
package/examples/next-app-router/README.md +44 -44
package/examples/plesk-wab-dns.js +103 -0
package/examples/puppeteer-agent.js +108 -108
package/examples/route53-wab-dns.js +144 -0
package/examples/saas-dashboard/README.md +55 -55
package/examples/safe-mode-agent.js +96 -0
package/examples/shopify-hydrogen/README.md +74 -74
package/examples/vision-agent.js +171 -171
package/examples/wab-sign.js +74 -0
package/examples/wab-verify.js +60 -0
package/examples/wordpress-elementor/README.md +77 -77
package/package.json +19 -6
package/public/.well-known/agent-tools.json +180 -180
package/public/.well-known/ai-assets.json +59 -59
package/public/.well-known/security.txt +8 -0
package/public/.well-known/wab.json +28 -0
package/public/activate.html +368 -0
package/public/adoption-metrics.html +188 -0
package/public/agent-workspace.html +349 -349
package/public/ai.html +198 -198
package/public/api.html +413 -412
package/public/azure-dns-integration.html +289 -0
package/public/browser.html +486 -486
package/public/cloudflare-integration.html +380 -0
package/public/commander-dashboard.html +243 -243
package/public/cookies.html +210 -210
package/public/cpanel-integration.html +398 -0
package/public/css/agent-workspace.css +1713 -1713
package/public/css/premium.css +317 -317
package/public/css/styles.css +1263 -1235
package/public/dashboard.html +707 -706
package/public/dns.html +436 -0
package/public/docs.html +588 -587
package/public/feed.xml +89 -89
package/public/gcp-dns-integration.html +318 -0
package/public/growth.html +465 -463
package/public/index.html +1266 -982
package/public/integrations.html +556 -0
package/public/js/activate.js +145 -0
package/public/js/agent-workspace.js +1740 -1740
package/public/js/auth-nav.js +65 -31
package/public/js/auth-redirect.js +12 -12
package/public/js/cookie-consent.js +56 -56
package/public/js/dns.js +438 -0
package/public/js/wab-demo-page.js +721 -721
package/public/js/ws-client.js +74 -74
package/public/llms-full.txt +360 -360
package/public/llms.txt +125 -125
package/public/login.html +85 -85
package/public/mesh-dashboard.html +328 -328
package/public/openapi.json +669 -580
package/public/phone-shield.html +281 -0
package/public/plesk-integration.html +375 -0
package/public/premium-dashboard.html +2489 -2489
package/public/premium.html +793 -793
package/public/privacy.html +297 -297
package/public/provider-onboarding.html +172 -0
package/public/provider-sandbox.html +134 -0
package/public/providers.html +359 -0
package/public/register.html +105 -105
package/public/registrar-integrations.html +141 -0
package/public/robots.txt +99 -87
package/public/route53-integration.html +531 -0
package/public/script/wab-consent.d.ts +36 -36
package/public/script/wab-consent.js +104 -104
package/public/script/wab-schema.js +131 -131
package/public/script/wab.d.ts +108 -108
package/public/script/wab.min.js +580 -580
package/public/security.txt +8 -0
package/public/shieldqr.html +231 -0
package/public/sitemap.xml +6 -0
package/public/terms.html +256 -256
package/public/wab-trust.html +200 -0
package/public/wab-vs-protocols.html +210 -0
package/public/whitepaper.html +449 -0
package/script/ai-agent-bridge.js +1754 -1754
package/sdk/README.md +99 -99
package/sdk/agent-mesh.js +449 -449
package/sdk/auto-discovery.js +288 -0
package/sdk/commander.js +262 -262
package/sdk/governance.js +262 -0
package/sdk/index.d.ts +464 -464
package/sdk/index.js +25 -1
package/sdk/multi-agent.js +318 -318
package/sdk/package.json +2 -2
package/sdk/safe-mode.js +221 -0
package/sdk/safety-shield.js +219 -0
package/sdk/schema-discovery.js +83 -83
package/server/adapters/index.js +520 -520
package/server/config/plans.js +367 -367
package/server/config/secrets.js +102 -102
package/server/control-plane/index.js +301 -301
package/server/data-plane/index.js +354 -354
package/server/index.js +670 -427
package/server/llm/index.js +404 -404
package/server/middleware/adminAuth.js +35 -35
package/server/middleware/auth.js +50 -50
package/server/middleware/featureGate.js +88 -88
package/server/middleware/rateLimits.js +100 -100
package/server/middleware/sensitiveAction.js +157 -0
package/server/migrations/001_add_analytics_indexes.sql +7 -7
package/server/migrations/002_premium_features.sql +418 -418
package/server/migrations/003_ads_integer_cents.sql +33 -33
package/server/migrations/004_agent_os.sql +158 -158
package/server/migrations/005_marketplace_metering.sql +126 -126
package/server/migrations/007_governance.sql +106 -0
package/server/migrations/008_plans.sql +144 -0
package/server/migrations/009_shieldqr.sql +30 -0
package/server/migrations/010_extended_trust.sql +33 -0
package/server/models/adapters/index.js +33 -33
package/server/models/adapters/mysql.js +183 -183
package/server/models/adapters/postgresql.js +172 -172
package/server/models/adapters/sqlite.js +7 -7
package/server/models/db.js +740 -681
package/server/observability/failure-analysis.js +337 -337
package/server/observability/index.js +394 -394
package/server/protocol/capabilities.js +223 -223
package/server/protocol/index.js +243 -243
package/server/protocol/schema.js +584 -584
package/server/registry/certification.js +271 -271
package/server/registry/index.js +326 -326
package/server/routes/admin-plans.js +76 -0
package/server/routes/admin-premium.js +673 -671
package/server/routes/admin-shieldqr.js +90 -0
package/server/routes/admin-trust-monitor.js +83 -0
package/server/routes/admin.js +549 -261
package/server/routes/ads.js +130 -130
package/server/routes/agent-workspace.js +540 -540
package/server/routes/api.js +150 -150
package/server/routes/auth.js +71 -71
package/server/routes/billing.js +57 -45
package/server/routes/commander.js +316 -316
package/server/routes/demo-showcase.js +332 -332
package/server/routes/demo-store.js +154 -0
package/server/routes/discovery.js +2348 -417
package/server/routes/gateway.js +173 -157
package/server/routes/governance.js +208 -0
package/server/routes/license.js +251 -240
package/server/routes/mesh.js +469 -469
package/server/routes/noscript.js +543 -543
package/server/routes/plans.js +33 -0
package/server/routes/premium-v2.js +686 -686
package/server/routes/premium.js +724 -724
package/server/routes/providers.js +650 -0
package/server/routes/runtime.js +2148 -2147
package/server/routes/shieldqr.js +88 -0
package/server/routes/sovereign.js +465 -385
package/server/routes/universal.js +200 -185
package/server/routes/wab-api.js +850 -501
package/server/runtime/container-worker.js +111 -111
package/server/runtime/container.js +448 -448
package/server/runtime/distributed-worker.js +362 -362
package/server/runtime/event-bus.js +210 -210
package/server/runtime/index.js +253 -253
package/server/runtime/queue.js +599 -599
package/server/runtime/replay.js +666 -666
package/server/runtime/sandbox.js +266 -266
package/server/runtime/scheduler.js +534 -534
package/server/runtime/session-engine.js +293 -293
package/server/runtime/state-manager.js +188 -188
package/server/security/cross-site-redactor.js +196 -0
package/server/security/dry-run.js +180 -0
package/server/security/human-gate-rate-limit.js +147 -0
package/server/security/human-gate-transports.js +178 -0
package/server/security/human-gate.js +281 -0
package/server/security/index.js +368 -368
package/server/security/intent-engine.js +245 -0
package/server/security/reward-guard.js +171 -0
package/server/security/rollback-store.js +239 -0
package/server/security/token-scope.js +404 -0
package/server/security/url-policy.js +139 -0
package/server/services/agent-chat.js +506 -506
package/server/services/agent-learning.js +601 -575
package/server/services/agent-memory.js +625 -625
package/server/services/agent-mesh.js +555 -539
package/server/services/agent-symphony.js +717 -717
package/server/services/agent-tasks.js +1807 -1807
package/server/services/api-key-engine.js +292 -261
package/server/services/cluster.js +894 -894
package/server/services/commander.js +738 -738
package/server/services/edge-compute.js +440 -440
package/server/services/email.js +233 -204
package/server/services/governance.js +466 -0
package/server/services/hosted-runtime.js +205 -205
package/server/services/lfd.js +635 -635
package/server/services/local-ai.js +389 -389
package/server/services/marketplace.js +270 -270
package/server/services/metering.js +182 -182
package/server/services/modules/affiliate-intelligence.js +93 -93
package/server/services/modules/agent-firewall.js +90 -90
package/server/services/modules/bounty.js +89 -89
package/server/services/modules/collective-bargaining.js +92 -92
package/server/services/modules/dark-pattern.js +66 -66
package/server/services/modules/gov-intelligence.js +45 -45
package/server/services/modules/neural.js +55 -55
package/server/services/modules/notary.js +49 -49
package/server/services/modules/price-time-machine.js +86 -86
package/server/services/modules/protocol.js +104 -104
package/server/services/negotiation.js +439 -439
package/server/services/plans.js +214 -0
package/server/services/plugins.js +771 -771
package/server/services/premium.js +1 -1
package/server/services/price-intelligence.js +566 -566
package/server/services/price-shield.js +1137 -1137
package/server/services/provider-clients.js +740 -0
package/server/services/reputation.js +465 -465
package/server/services/search-engine.js +357 -357
package/server/services/security.js +513 -513
package/server/services/self-healing.js +843 -843
package/server/services/shieldqr.js +322 -0
package/server/services/sovereign-shield.js +542 -0
package/server/services/ssl-inspector.js +42 -0
package/server/services/ssl-monitor.js +167 -0
package/server/services/stripe.js +205 -192
package/server/services/swarm.js +788 -788
package/server/services/universal-scraper.js +662 -661
package/server/services/verification.js +481 -481
package/server/services/vision.js +1163 -1163
package/server/services/wab-crypto.js +178 -0
package/server/utils/cache.js +125 -125
package/server/utils/migrate.js +81 -81
package/server/utils/safe-fetch.js +228 -0
package/server/utils/secureFields.js +50 -50
package/server/ws.js +161 -161
package/templates/artisan-marketplace.yaml +104 -104
package/templates/book-price-scout.yaml +98 -98
package/templates/electronics-price-tracker.yaml +108 -108
package/templates/flight-deal-hunter.yaml +113 -113
package/templates/freelancer-direct.yaml +116 -116
package/templates/grocery-price-compare.yaml +93 -93
package/templates/hotel-direct-booking.yaml +113 -113
package/templates/local-services.yaml +98 -98
package/templates/olive-oil-tunisia.yaml +88 -88
package/templates/organic-farm-fresh.yaml +101 -101
package/templates/restaurant-direct.yaml +97 -97
package/public/score.html +0 -263
package/server/migrations/006_growth_suite.sql +0 -138
package/server/routes/growth.js +0 -962
package/server/services/fairness-engine.js +0 -409
package/server/services/fairness.js +0 -420

package/server/routes/premium-v2.js CHANGED Viewed

@@ -1,686 +1,686 @@
-'use strict';
-const express = require('express');
-const router = express.Router();
-const { authenticateToken } = require('../middleware/auth');
-const { findSiteById } = require('../models/db');
-const memory = require('../services/agent-memory');
-const healing = require('../services/self-healing');
-const vision = require('../services/vision');
-const swarm = require('../services/swarm');
-const plugins = require('../services/plugins');
-// ─── Middleware ───────────────────────────────────────────────────────────────
-function requireSiteOwnership(req, res, next) {
-  const siteId = req.params.siteId || req.body.siteId;
-  if (!siteId) return res.status(400).json({ error: 'siteId is required' });
-  const site = findSiteById.get(siteId);
-  if (!site) return res.status(404).json({ error: 'Site not found' });
-  if (site.user_id !== req.user.id) return res.status(403).json({ error: 'Access denied' });
-  req.site = site;
-  next();
-}
-// ═════════════════════════════════════════════════════════════════════════════
-//  MEMORY API
-// ═════════════════════════════════════════════════════════════════════════════
-router.post('/memory/:siteId/store', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { agentId, type, category, key, value, importance, ttlSeconds } = req.body;
-    if (!agentId || !key) return res.status(400).json({ error: 'agentId and key are required' });
-    const result = memory.storeMemory(req.params.siteId, agentId, { type, category, key, value, importance, ttlSeconds });
-    res.status(201).json({ memory: result });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to store memory', details: err.message });
-  }
-});
-router.post('/memory/:siteId/recall', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { agentId, query, category, type, limit, minImportance } = req.body;
-    if (!agentId) return res.status(400).json({ error: 'agentId is required' });
-    const results = memory.recallMemories(req.params.siteId, agentId, { query, category, type, limit, minImportance });
-    res.json({ memories: results, count: results.length });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to recall memories', details: err.message });
-  }
-});
-router.post('/memory/:siteId/associate', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { sourceId, targetId, relationship, strength } = req.body;
-    if (!sourceId || !targetId || !relationship) {
-      return res.status(400).json({ error: 'sourceId, targetId, and relationship are required' });
-    }
-    const result = memory.associateMemories(sourceId, targetId, relationship, strength);
-    res.status(201).json({ association: result });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to associate memories', details: err.message });
-  }
-});
-router.delete('/memory/:siteId/:memoryId', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const ok = memory.forgetMemory(req.params.memoryId);
-    if (!ok) return res.status(404).json({ error: 'Memory not found' });
-    res.json({ success: true });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to forget memory', details: err.message });
-  }
-});
-router.post('/memory/:siteId/consolidate', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { agentId } = req.body;
-    if (!agentId) return res.status(400).json({ error: 'agentId is required' });
-    const stats = memory.consolidateMemories(req.params.siteId, agentId);
-    res.json({ stats });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to consolidate memories', details: err.message });
-  }
-});
-router.get('/memory/:siteId/stats', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { agentId } = req.query;
-    if (!agentId) return res.status(400).json({ error: 'agentId query param is required' });
-    const stats = memory.getMemoryStats(req.params.siteId, agentId);
-    res.json({ stats });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get memory stats', details: err.message });
-  }
-});
-router.post('/memory/:siteId/session/start', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { agentId, context } = req.body;
-    if (!agentId) return res.status(400).json({ error: 'agentId is required' });
-    const session = memory.startSession(req.params.siteId, agentId, context);
-    res.status(201).json({ session });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to start session', details: err.message });
-  }
-});
-router.post('/memory/:siteId/session/:sessionId/end', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { summary } = req.body;
-    const ok = memory.endSession(req.params.sessionId, summary);
-    if (!ok) return res.status(404).json({ error: 'Session not found' });
-    res.json({ success: true });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to end session', details: err.message });
-  }
-});
-router.get('/memory/:siteId/sessions', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { agentId, limit } = req.query;
-    if (!agentId) return res.status(400).json({ error: 'agentId query param is required' });
-    const sessions = memory.getSessionHistory(req.params.siteId, agentId, {
-      limit: limit ? parseInt(limit, 10) : undefined,
-    });
-    res.json({ sessions });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get session history', details: err.message });
-  }
-});
-router.get('/memory/:siteId/preferences', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { agentId } = req.query;
-    if (!agentId) return res.status(400).json({ error: 'agentId query param is required' });
-    const preferences = memory.getPreferences(req.params.siteId, agentId);
-    res.json({ preferences });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get preferences', details: err.message });
-  }
-});
-router.post('/memory/:siteId/preferences', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { agentId, key, value } = req.body;
-    if (!agentId || !key) return res.status(400).json({ error: 'agentId and key are required' });
-    const result = memory.recordPreference(req.params.siteId, agentId, key, value);
-    res.status(201).json({ preference: result });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to record preference', details: err.message });
-  }
-});
-router.get('/memory/:siteId/export', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { agentId, format } = req.query;
-    if (!agentId) return res.status(400).json({ error: 'agentId query param is required' });
-    const data = memory.exportMemories(req.params.siteId, agentId, { format });
-    if (format === 'csv') {
-      res.setHeader('Content-Type', 'text/csv');
-      res.setHeader('Content-Disposition', 'attachment; filename="memories.csv"');
-      return res.send(data);
-    }
-    res.setHeader('Content-Type', 'application/json');
-    res.send(data);
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to export memories', details: err.message });
-  }
-});
-router.post('/memory/:siteId/import', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { agentId, data } = req.body;
-    if (!agentId || !Array.isArray(data)) {
-      return res.status(400).json({ error: 'agentId and data (array) are required' });
-    }
-    const result = memory.importMemories(req.params.siteId, agentId, data);
-    res.status(201).json(result);
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to import memories', details: err.message });
-  }
-});
-// ═════════════════════════════════════════════════════════════════════════════
-//  SELF-HEALING API
-// ═════════════════════════════════════════════════════════════════════════════
-router.post('/healing/:siteId/register', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { actionName, selector, selectorType, elementSignature } = req.body;
-    if (!actionName || !selector) {
-      return res.status(400).json({ error: 'actionName and selector are required' });
-    }
-    const result = healing.registerSelector(req.params.siteId, { actionName, selector, selectorType, elementSignature });
-    res.status(201).json({ selector: result });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to register selector', details: err.message });
-  }
-});
-router.post('/healing/:siteId/heal', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { actionName, failedSelector, pageElements } = req.body;
-    if (!actionName || !failedSelector) {
-      return res.status(400).json({ error: 'actionName and failedSelector are required' });
-    }
-    const result = healing.healSelector(req.params.siteId, actionName, failedSelector, pageElements || []);
-    res.json(result);
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to heal selector', details: err.message });
-  }
-});
-router.post('/healing/:siteId/correct', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { registryId, oldSelector, newSelector, correctedBy, reason, shared } = req.body;
-    if (!oldSelector || !newSelector) {
-      return res.status(400).json({ error: 'oldSelector and newSelector are required' });
-    }
-    const result = healing.submitCorrection(req.params.siteId, registryId, {
-      oldSelector, newSelector, correctedBy, reason, shared,
-    });
-    res.status(201).json({ correction: result });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to submit correction', details: err.message });
-  }
-});
-router.get('/healing/:siteId/suggestions', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { failedSelector } = req.query;
-    if (!failedSelector) return res.status(400).json({ error: 'failedSelector query param is required' });
-    const suggestions = healing.getCommunitySuggestions(req.params.siteId, failedSelector);
-    res.json({ suggestions });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get community suggestions', details: err.message });
-  }
-});
-router.post('/healing/:siteId/verify', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { actionName, elementData } = req.body;
-    if (!actionName || !elementData) {
-      return res.status(400).json({ error: 'actionName and elementData are required' });
-    }
-    const result = healing.verifySelector(req.params.siteId, actionName, elementData);
-    res.json(result);
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to verify selector', details: err.message });
-  }
-});
-router.get('/healing/:siteId/health', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const health = healing.getSelectorHealth(req.params.siteId);
-    res.json({ health });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get selector health', details: err.message });
-  }
-});
-router.get('/healing/:siteId/history', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { limit, actionName } = req.query;
-    const history = healing.getHealingHistory(req.params.siteId, {
-      limit: limit ? parseInt(limit, 10) : undefined,
-      actionName,
-    });
-    res.json({ history });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get healing history', details: err.message });
-  }
-});
-router.post('/healing/:siteId/snapshot', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { url, elements } = req.body;
-    if (!url || !Array.isArray(elements)) {
-      return res.status(400).json({ error: 'url and elements (array) are required' });
-    }
-    const result = healing.snapshotElements(req.params.siteId, url, elements);
-    res.status(201).json({ snapshot: result });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to snapshot elements', details: err.message });
-  }
-});
-router.post('/healing/:siteId/drift', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { url, currentElements } = req.body;
-    if (!url || !Array.isArray(currentElements)) {
-      return res.status(400).json({ error: 'url and currentElements (array) are required' });
-    }
-    const result = healing.detectDrift(req.params.siteId, url, currentElements);
-    res.json(result);
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to detect drift', details: err.message });
-  }
-});
-// ═════════════════════════════════════════════════════════════════════════════
-//  VISION API
-// ═════════════════════════════════════════════════════════════════════════════
-router.put('/vision/:siteId/config', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { provider, model, endpoint, apiKey, maxResolution, cacheTtl } = req.body;
-    const config = vision.configureVision(req.params.siteId, { provider, model, endpoint, apiKey, maxResolution, cacheTtl });
-    res.json({ config });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to configure vision', details: err.message });
-  }
-});
-router.get('/vision/:siteId/config', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const config = vision.getVisionConfig(req.params.siteId);
-    if (!config) return res.status(404).json({ error: 'Vision not configured for this site' });
-    res.json({ config });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get vision config', details: err.message });
-  }
-});
-router.post('/vision/:siteId/analyze', authenticateToken, requireSiteOwnership, async (req, res) => {
-  try {
-    const { screenshotBase64, url, prompt } = req.body;
-    if (!screenshotBase64) return res.status(400).json({ error: 'screenshotBase64 is required' });
-    const result = await vision.analyzeScreenshot(req.params.siteId, { screenshotBase64, url, prompt });
-    res.json(result);
-  } catch (err) {
-    const status = err.message.includes('not configured') || err.message.includes('disabled') ? 400 : 500;
-    res.status(status).json({ error: 'Failed to analyze screenshot', details: err.message });
-  }
-});
-router.post('/vision/:siteId/find-element', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { url, description, type, label } = req.body;
-    const elements = vision.findElement(req.params.siteId, url, { description, type, label });
-    res.json({ elements, count: elements.length });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to find element', details: err.message });
-  }
-});
-router.post('/vision/:siteId/compare', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { url, screenshotAHash, screenshotBHash } = req.body;
-    if (!screenshotAHash || !screenshotBHash) {
-      return res.status(400).json({ error: 'screenshotAHash and screenshotBHash are required' });
-    }
-    const result = vision.compareScreenshots(req.params.siteId, url, screenshotAHash, screenshotBHash);
-    res.json(result);
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to compare screenshots', details: err.message });
-  }
-});
-router.get('/vision/:siteId/cache-stats', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const stats = vision.getCacheStats(req.params.siteId);
-    res.json({ stats });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get cache stats', details: err.message });
-  }
-});
-router.delete('/vision/:siteId/cache', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { olderThan } = req.query;
-    const result = vision.clearCache(req.params.siteId, {
-      olderThan: olderThan ? parseInt(olderThan, 10) : undefined,
-    });
-    res.json(result);
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to clear cache', details: err.message });
-  }
-});
-router.get('/vision/:siteId/history', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { limit, url } = req.query;
-    const history = vision.getVisionHistory(req.params.siteId, {
-      limit: limit ? parseInt(limit, 10) : undefined,
-      url,
-    });
-    res.json({ history });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get vision history', details: err.message });
-  }
-});
-router.get('/vision/models', (_req, res) => {
-  try {
-    const models = vision.getSupportedModels();
-    res.json({ models });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get supported models', details: err.message });
-  }
-});
-// ═════════════════════════════════════════════════════════════════════════════
-//  SWARM API
-// ═════════════════════════════════════════════════════════════════════════════
-router.put('/swarm/:siteId/config', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { name, strategy, maxAgents, timeoutMs, mergeStrategy } = req.body;
-    const config = swarm.configureSwarm(req.params.siteId, { name, strategy, maxAgents, timeoutMs, mergeStrategy });
-    res.json({ config });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to configure swarm', details: err.message });
-  }
-});
-router.get('/swarm/:siteId/config', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const config = swarm.getSwarmConfig(req.params.siteId);
-    if (!config) return res.status(404).json({ error: 'Swarm not configured for this site' });
-    res.json({ config });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get swarm config', details: err.message });
-  }
-});
-router.post('/swarm/:siteId/tasks', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { taskType, objective, parameters } = req.body;
-    if (!objective) return res.status(400).json({ error: 'objective is required' });
-    const task = swarm.createTask(req.params.siteId, {
-      taskType, objective, parameters, createdBy: req.user.id,
-    });
-    res.status(201).json({ task });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to create task', details: err.message });
-  }
-});
-router.post('/swarm/tasks/:taskId/agents', authenticateToken, (req, res) => {
-  try {
-    const { agents: agentDefinitions } = req.body;
-    if (!Array.isArray(agentDefinitions) || agentDefinitions.length === 0) {
-      return res.status(400).json({ error: 'agents (non-empty array) is required' });
-    }
-    const agents = swarm.assignAgents(req.params.taskId, agentDefinitions);
-    res.status(201).json({ agents });
-  } catch (err) {
-    const status = err.message.includes('not found') ? 404 : 500;
-    res.status(status).json({ error: 'Failed to assign agents', details: err.message });
-  }
-});
-router.post('/swarm/tasks/:taskId/run', authenticateToken, async (req, res) => {
-  try {
-    const result = await swarm.runSwarmTask(req.params.taskId);
-    res.json(result);
-  } catch (err) {
-    const status = err.message.includes('not found') ? 404
-      : err.message.includes('cancelled') ? 400
-      : err.message.includes('No agents') ? 400 : 500;
-    res.status(status).json({ error: 'Failed to run swarm task', details: err.message });
-  }
-});
-router.get('/swarm/tasks/:taskId', authenticateToken, (req, res) => {
-  try {
-    const status = swarm.getTaskStatus(req.params.taskId);
-    if (!status) return res.status(404).json({ error: 'Task not found' });
-    res.json({ task: status });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get task status', details: err.message });
-  }
-});
-router.get('/swarm/tasks/:taskId/result', authenticateToken, (req, res) => {
-  try {
-    const result = swarm.getTaskResult(req.params.taskId);
-    if (!result) return res.status(404).json({ error: 'Task not found' });
-    res.json(result);
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get task result', details: err.message });
-  }
-});
-router.post('/swarm/tasks/:taskId/cancel', authenticateToken, (req, res) => {
-  try {
-    const result = swarm.cancelTask(req.params.taskId);
-    if (!result) return res.status(404).json({ error: 'Task not found' });
-    res.json(result);
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to cancel task', details: err.message });
-  }
-});
-router.get('/swarm/:siteId/history', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { limit, taskType } = req.query;
-    const history = swarm.getSwarmHistory(req.params.siteId, {
-      limit: limit ? parseInt(limit, 10) : undefined,
-      taskType,
-    });
-    res.json({ history });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get swarm history', details: err.message });
-  }
-});
-router.get('/swarm/:siteId/stats', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const stats = swarm.getSwarmStats(req.params.siteId);
-    res.json({ stats });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get swarm stats', details: err.message });
-  }
-});
-// ═════════════════════════════════════════════════════════════════════════════
-//  PLUGINS API
-// ═════════════════════════════════════════════════════════════════════════════
-router.get('/plugins/marketplace', (req, res) => {
-  try {
-    const { category, search, limit, offset } = req.query;
-    const result = plugins.listPlugins({
-      category, search,
-      limit: limit ? parseInt(limit, 10) : undefined,
-      offset: offset ? parseInt(offset, 10) : undefined,
-    });
-    res.json(result);
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to list plugins', details: err.message });
-  }
-});
-router.get('/plugins/hooks', (req, res) => {
-  try {
-    const hooks = plugins.getAvailableHooks();
-    res.json({ hooks });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get available hooks', details: err.message });
-  }
-});
-router.get('/plugins/:pluginId', authenticateToken, (req, res) => {
-  try {
-    const plugin = plugins.getPlugin(req.params.pluginId);
-    if (!plugin) return res.status(404).json({ error: 'Plugin not found' });
-    res.json({ plugin });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get plugin', details: err.message });
-  }
-});
-router.post('/plugins/register', authenticateToken, (req, res) => {
-  try {
-    const { name, description, version, author, hooks, configSchema, category } = req.body;
-    if (!name || !version) return res.status(400).json({ error: 'name and version are required' });
-    const plugin = plugins.registerPlugin({
-      name, description, version, author, hooks, configSchema, category,
-      registeredBy: req.user.id,
-    });
-    res.status(201).json({ plugin });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to register plugin', details: err.message });
-  }
-});
-router.post('/plugins/:pluginId/install/:siteId', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { config } = req.body;
-    const installation = plugins.installPlugin(req.params.pluginId, req.params.siteId, req.user.id, config);
-    res.status(201).json({ installation });
-  } catch (err) {
-    const status = err.message.includes('not found') ? 404 : 500;
-    res.status(status).json({ error: 'Failed to install plugin', details: err.message });
-  }
-});
-router.delete('/plugins/:pluginId/uninstall/:siteId', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const ok = plugins.uninstallPlugin(req.params.pluginId, req.params.siteId);
-    if (!ok) return res.status(404).json({ error: 'Plugin installation not found' });
-    res.json({ success: true });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to uninstall plugin', details: err.message });
-  }
-});
-router.put('/plugins/installations/:installationId/config', authenticateToken, (req, res) => {
-  try {
-    const { config } = req.body;
-    if (!config) return res.status(400).json({ error: 'config is required' });
-    const result = plugins.configurePlugin(req.params.installationId, config);
-    if (!result) return res.status(404).json({ error: 'Installation not found' });
-    res.json({ installation: result });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to configure plugin', details: err.message });
-  }
-});
-router.get('/plugins/installed/:siteId', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const installed = plugins.getInstalledPlugins(req.params.siteId);
-    res.json({ plugins: installed });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get installed plugins', details: err.message });
-  }
-});
-router.post('/plugins/:pluginId/rate', authenticateToken, (req, res) => {
-  try {
-    const { rating, review } = req.body;
-    if (rating == null || rating < 1 || rating > 5) {
-      return res.status(400).json({ error: 'rating (1-5) is required' });
-    }
-    const result = plugins.ratePlugin(req.params.pluginId, req.user.id, rating);
-    res.status(201).json(result);
-  } catch (err) {
-    const status = err.message.includes('not found') ? 404 : 500;
-    res.status(status).json({ error: 'Failed to rate plugin', details: err.message });
-  }
-});
-router.get('/plugins/:pluginId/stats', authenticateToken, (req, res) => {
-  try {
-    const stats = plugins.getPluginStats(req.params.pluginId);
-    if (!stats) return res.status(404).json({ error: 'Plugin not found' });
-    res.json({ stats });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get plugin stats', details: err.message });
-  }
-});
-router.post('/plugins/hooks/:hookName/execute/:siteId', authenticateToken, requireSiteOwnership, async (req, res) => {
-  try {
-    const { payload } = req.body;
-    const result = await plugins.executeHook(req.params.hookName, req.params.siteId, payload || {});
-    res.json(result);
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to execute hook', details: err.message });
-  }
-});
-router.get('/plugins/hooks/log/:siteId', authenticateToken, requireSiteOwnership, (req, res) => {
-  try {
-    const { limit, hookName } = req.query;
-    const logs = plugins.getHookExecutionLog(req.params.siteId, {
-      limit: limit ? parseInt(limit, 10) : undefined,
-      hookName,
-    });
-    res.json({ logs });
-  } catch (err) {
-    res.status(500).json({ error: 'Failed to get hook execution log', details: err.message });
-  }
-});
-module.exports = router;
+'use strict';
+const express = require('express');
+const router = express.Router();
+const { authenticateToken } = require('../middleware/auth');
+const { findSiteById } = require('../models/db');
+const memory = require('../services/agent-memory');
+const healing = require('../services/self-healing');
+const vision = require('../services/vision');
+const swarm = require('../services/swarm');
+const plugins = require('../services/plugins');
+// ─── Middleware ───────────────────────────────────────────────────────────────
+function requireSiteOwnership(req, res, next) {
+  const siteId = req.params.siteId || req.body.siteId;
+  if (!siteId) return res.status(400).json({ error: 'siteId is required' });
+  const site = findSiteById.get(siteId);
+  if (!site) return res.status(404).json({ error: 'Site not found' });
+  if (site.user_id !== req.user.id) return res.status(403).json({ error: 'Access denied' });
+  req.site = site;
+  next();
+}
+// ═════════════════════════════════════════════════════════════════════════════
+//  MEMORY API
+// ═════════════════════════════════════════════════════════════════════════════
+router.post('/memory/:siteId/store', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { agentId, type, category, key, value, importance, ttlSeconds } = req.body;
+    if (!agentId || !key) return res.status(400).json({ error: 'agentId and key are required' });
+    const result = memory.storeMemory(req.params.siteId, agentId, { type, category, key, value, importance, ttlSeconds });
+    res.status(201).json({ memory: result });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to store memory', details: err.message });
+  }
+});
+router.post('/memory/:siteId/recall', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { agentId, query, category, type, limit, minImportance } = req.body;
+    if (!agentId) return res.status(400).json({ error: 'agentId is required' });
+    const results = memory.recallMemories(req.params.siteId, agentId, { query, category, type, limit, minImportance });
+    res.json({ memories: results, count: results.length });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to recall memories', details: err.message });
+  }
+});
+router.post('/memory/:siteId/associate', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { sourceId, targetId, relationship, strength } = req.body;
+    if (!sourceId || !targetId || !relationship) {
+      return res.status(400).json({ error: 'sourceId, targetId, and relationship are required' });
+    }
+    const result = memory.associateMemories(sourceId, targetId, relationship, strength);
+    res.status(201).json({ association: result });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to associate memories', details: err.message });
+  }
+});
+router.delete('/memory/:siteId/:memoryId', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const ok = memory.forgetMemory(req.params.memoryId);
+    if (!ok) return res.status(404).json({ error: 'Memory not found' });
+    res.json({ success: true });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to forget memory', details: err.message });
+  }
+});
+router.post('/memory/:siteId/consolidate', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { agentId } = req.body;
+    if (!agentId) return res.status(400).json({ error: 'agentId is required' });
+    const stats = memory.consolidateMemories(req.params.siteId, agentId);
+    res.json({ stats });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to consolidate memories', details: err.message });
+  }
+});
+router.get('/memory/:siteId/stats', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { agentId } = req.query;
+    if (!agentId) return res.status(400).json({ error: 'agentId query param is required' });
+    const stats = memory.getMemoryStats(req.params.siteId, agentId);
+    res.json({ stats });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get memory stats', details: err.message });
+  }
+});
+router.post('/memory/:siteId/session/start', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { agentId, context } = req.body;
+    if (!agentId) return res.status(400).json({ error: 'agentId is required' });
+    const session = memory.startSession(req.params.siteId, agentId, context);
+    res.status(201).json({ session });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to start session', details: err.message });
+  }
+});
+router.post('/memory/:siteId/session/:sessionId/end', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { summary } = req.body;
+    const ok = memory.endSession(req.params.sessionId, summary);
+    if (!ok) return res.status(404).json({ error: 'Session not found' });
+    res.json({ success: true });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to end session', details: err.message });
+  }
+});
+router.get('/memory/:siteId/sessions', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { agentId, limit } = req.query;
+    if (!agentId) return res.status(400).json({ error: 'agentId query param is required' });
+    const sessions = memory.getSessionHistory(req.params.siteId, agentId, {
+      limit: limit ? parseInt(limit, 10) : undefined,
+    });
+    res.json({ sessions });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get session history', details: err.message });
+  }
+});
+router.get('/memory/:siteId/preferences', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { agentId } = req.query;
+    if (!agentId) return res.status(400).json({ error: 'agentId query param is required' });
+    const preferences = memory.getPreferences(req.params.siteId, agentId);
+    res.json({ preferences });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get preferences', details: err.message });
+  }
+});
+router.post('/memory/:siteId/preferences', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { agentId, key, value } = req.body;
+    if (!agentId || !key) return res.status(400).json({ error: 'agentId and key are required' });
+    const result = memory.recordPreference(req.params.siteId, agentId, key, value);
+    res.status(201).json({ preference: result });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to record preference', details: err.message });
+  }
+});
+router.get('/memory/:siteId/export', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { agentId, format } = req.query;
+    if (!agentId) return res.status(400).json({ error: 'agentId query param is required' });
+    const data = memory.exportMemories(req.params.siteId, agentId, { format });
+    if (format === 'csv') {
+      res.setHeader('Content-Type', 'text/csv');
+      res.setHeader('Content-Disposition', 'attachment; filename="memories.csv"');
+      return res.send(data);
+    }
+    res.setHeader('Content-Type', 'application/json');
+    res.send(data);
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to export memories', details: err.message });
+  }
+});
+router.post('/memory/:siteId/import', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { agentId, data } = req.body;
+    if (!agentId || !Array.isArray(data)) {
+      return res.status(400).json({ error: 'agentId and data (array) are required' });
+    }
+    const result = memory.importMemories(req.params.siteId, agentId, data);
+    res.status(201).json(result);
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to import memories', details: err.message });
+  }
+});
+// ═════════════════════════════════════════════════════════════════════════════
+//  SELF-HEALING API
+// ═════════════════════════════════════════════════════════════════════════════
+router.post('/healing/:siteId/register', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { actionName, selector, selectorType, elementSignature } = req.body;
+    if (!actionName || !selector) {
+      return res.status(400).json({ error: 'actionName and selector are required' });
+    }
+    const result = healing.registerSelector(req.params.siteId, { actionName, selector, selectorType, elementSignature });
+    res.status(201).json({ selector: result });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to register selector', details: err.message });
+  }
+});
+router.post('/healing/:siteId/heal', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { actionName, failedSelector, pageElements } = req.body;
+    if (!actionName || !failedSelector) {
+      return res.status(400).json({ error: 'actionName and failedSelector are required' });
+    }
+    const result = healing.healSelector(req.params.siteId, actionName, failedSelector, pageElements || []);
+    res.json(result);
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to heal selector', details: err.message });
+  }
+});
+router.post('/healing/:siteId/correct', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { registryId, oldSelector, newSelector, correctedBy, reason, shared } = req.body;
+    if (!oldSelector || !newSelector) {
+      return res.status(400).json({ error: 'oldSelector and newSelector are required' });
+    }
+    const result = healing.submitCorrection(req.params.siteId, registryId, {
+      oldSelector, newSelector, correctedBy, reason, shared,
+    });
+    res.status(201).json({ correction: result });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to submit correction', details: err.message });
+  }
+});
+router.get('/healing/:siteId/suggestions', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { failedSelector } = req.query;
+    if (!failedSelector) return res.status(400).json({ error: 'failedSelector query param is required' });
+    const suggestions = healing.getCommunitySuggestions(req.params.siteId, failedSelector);
+    res.json({ suggestions });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get community suggestions', details: err.message });
+  }
+});
+router.post('/healing/:siteId/verify', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { actionName, elementData } = req.body;
+    if (!actionName || !elementData) {
+      return res.status(400).json({ error: 'actionName and elementData are required' });
+    }
+    const result = healing.verifySelector(req.params.siteId, actionName, elementData);
+    res.json(result);
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to verify selector', details: err.message });
+  }
+});
+router.get('/healing/:siteId/health', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const health = healing.getSelectorHealth(req.params.siteId);
+    res.json({ health });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get selector health', details: err.message });
+  }
+});
+router.get('/healing/:siteId/history', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { limit, actionName } = req.query;
+    const history = healing.getHealingHistory(req.params.siteId, {
+      limit: limit ? parseInt(limit, 10) : undefined,
+      actionName,
+    });
+    res.json({ history });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get healing history', details: err.message });
+  }
+});
+router.post('/healing/:siteId/snapshot', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { url, elements } = req.body;
+    if (!url || !Array.isArray(elements)) {
+      return res.status(400).json({ error: 'url and elements (array) are required' });
+    }
+    const result = healing.snapshotElements(req.params.siteId, url, elements);
+    res.status(201).json({ snapshot: result });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to snapshot elements', details: err.message });
+  }
+});
+router.post('/healing/:siteId/drift', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { url, currentElements } = req.body;
+    if (!url || !Array.isArray(currentElements)) {
+      return res.status(400).json({ error: 'url and currentElements (array) are required' });
+    }
+    const result = healing.detectDrift(req.params.siteId, url, currentElements);
+    res.json(result);
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to detect drift', details: err.message });
+  }
+});
+// ═════════════════════════════════════════════════════════════════════════════
+//  VISION API
+// ═════════════════════════════════════════════════════════════════════════════
+router.put('/vision/:siteId/config', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { provider, model, endpoint, apiKey, maxResolution, cacheTtl } = req.body;
+    const config = vision.configureVision(req.params.siteId, { provider, model, endpoint, apiKey, maxResolution, cacheTtl });
+    res.json({ config });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to configure vision', details: err.message });
+  }
+});
+router.get('/vision/:siteId/config', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const config = vision.getVisionConfig(req.params.siteId);
+    if (!config) return res.status(404).json({ error: 'Vision not configured for this site' });
+    res.json({ config });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get vision config', details: err.message });
+  }
+});
+router.post('/vision/:siteId/analyze', authenticateToken, requireSiteOwnership, async (req, res) => {
+  try {
+    const { screenshotBase64, url, prompt } = req.body;
+    if (!screenshotBase64) return res.status(400).json({ error: 'screenshotBase64 is required' });
+    const result = await vision.analyzeScreenshot(req.params.siteId, { screenshotBase64, url, prompt });
+    res.json(result);
+  } catch (err) {
+    const status = err.message.includes('not configured') || err.message.includes('disabled') ? 400 : 500;
+    res.status(status).json({ error: 'Failed to analyze screenshot', details: err.message });
+  }
+});
+router.post('/vision/:siteId/find-element', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { url, description, type, label } = req.body;
+    const elements = vision.findElement(req.params.siteId, url, { description, type, label });
+    res.json({ elements, count: elements.length });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to find element', details: err.message });
+  }
+});
+router.post('/vision/:siteId/compare', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { url, screenshotAHash, screenshotBHash } = req.body;
+    if (!screenshotAHash || !screenshotBHash) {
+      return res.status(400).json({ error: 'screenshotAHash and screenshotBHash are required' });
+    }
+    const result = vision.compareScreenshots(req.params.siteId, url, screenshotAHash, screenshotBHash);
+    res.json(result);
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to compare screenshots', details: err.message });
+  }
+});
+router.get('/vision/:siteId/cache-stats', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const stats = vision.getCacheStats(req.params.siteId);
+    res.json({ stats });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get cache stats', details: err.message });
+  }
+});
+router.delete('/vision/:siteId/cache', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { olderThan } = req.query;
+    const result = vision.clearCache(req.params.siteId, {
+      olderThan: olderThan ? parseInt(olderThan, 10) : undefined,
+    });
+    res.json(result);
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to clear cache', details: err.message });
+  }
+});
+router.get('/vision/:siteId/history', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { limit, url } = req.query;
+    const history = vision.getVisionHistory(req.params.siteId, {
+      limit: limit ? parseInt(limit, 10) : undefined,
+      url,
+    });
+    res.json({ history });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get vision history', details: err.message });
+  }
+});
+router.get('/vision/models', (_req, res) => {
+  try {
+    const models = vision.getSupportedModels();
+    res.json({ models });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get supported models', details: err.message });
+  }
+});
+// ═════════════════════════════════════════════════════════════════════════════
+//  SWARM API
+// ═════════════════════════════════════════════════════════════════════════════
+router.put('/swarm/:siteId/config', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { name, strategy, maxAgents, timeoutMs, mergeStrategy } = req.body;
+    const config = swarm.configureSwarm(req.params.siteId, { name, strategy, maxAgents, timeoutMs, mergeStrategy });
+    res.json({ config });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to configure swarm', details: err.message });
+  }
+});
+router.get('/swarm/:siteId/config', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const config = swarm.getSwarmConfig(req.params.siteId);
+    if (!config) return res.status(404).json({ error: 'Swarm not configured for this site' });
+    res.json({ config });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get swarm config', details: err.message });
+  }
+});
+router.post('/swarm/:siteId/tasks', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { taskType, objective, parameters } = req.body;
+    if (!objective) return res.status(400).json({ error: 'objective is required' });
+    const task = swarm.createTask(req.params.siteId, {
+      taskType, objective, parameters, createdBy: req.user.id,
+    });
+    res.status(201).json({ task });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to create task', details: err.message });
+  }
+});
+router.post('/swarm/tasks/:taskId/agents', authenticateToken, (req, res) => {
+  try {
+    const { agents: agentDefinitions } = req.body;
+    if (!Array.isArray(agentDefinitions) || agentDefinitions.length === 0) {
+      return res.status(400).json({ error: 'agents (non-empty array) is required' });
+    }
+    const agents = swarm.assignAgents(req.params.taskId, agentDefinitions);
+    res.status(201).json({ agents });
+  } catch (err) {
+    const status = err.message.includes('not found') ? 404 : 500;
+    res.status(status).json({ error: 'Failed to assign agents', details: err.message });
+  }
+});
+router.post('/swarm/tasks/:taskId/run', authenticateToken, async (req, res) => {
+  try {
+    const result = await swarm.runSwarmTask(req.params.taskId);
+    res.json(result);
+  } catch (err) {
+    const status = err.message.includes('not found') ? 404
+      : err.message.includes('cancelled') ? 400
+      : err.message.includes('No agents') ? 400 : 500;
+    res.status(status).json({ error: 'Failed to run swarm task', details: err.message });
+  }
+});
+router.get('/swarm/tasks/:taskId', authenticateToken, (req, res) => {
+  try {
+    const status = swarm.getTaskStatus(req.params.taskId);
+    if (!status) return res.status(404).json({ error: 'Task not found' });
+    res.json({ task: status });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get task status', details: err.message });
+  }
+});
+router.get('/swarm/tasks/:taskId/result', authenticateToken, (req, res) => {
+  try {
+    const result = swarm.getTaskResult(req.params.taskId);
+    if (!result) return res.status(404).json({ error: 'Task not found' });
+    res.json(result);
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get task result', details: err.message });
+  }
+});
+router.post('/swarm/tasks/:taskId/cancel', authenticateToken, (req, res) => {
+  try {
+    const result = swarm.cancelTask(req.params.taskId);
+    if (!result) return res.status(404).json({ error: 'Task not found' });
+    res.json(result);
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to cancel task', details: err.message });
+  }
+});
+router.get('/swarm/:siteId/history', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { limit, taskType } = req.query;
+    const history = swarm.getSwarmHistory(req.params.siteId, {
+      limit: limit ? parseInt(limit, 10) : undefined,
+      taskType,
+    });
+    res.json({ history });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get swarm history', details: err.message });
+  }
+});
+router.get('/swarm/:siteId/stats', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const stats = swarm.getSwarmStats(req.params.siteId);
+    res.json({ stats });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get swarm stats', details: err.message });
+  }
+});
+// ═════════════════════════════════════════════════════════════════════════════
+//  PLUGINS API
+// ═════════════════════════════════════════════════════════════════════════════
+router.get('/plugins/marketplace', (req, res) => {
+  try {
+    const { category, search, limit, offset } = req.query;
+    const result = plugins.listPlugins({
+      category, search,
+      limit: limit ? parseInt(limit, 10) : undefined,
+      offset: offset ? parseInt(offset, 10) : undefined,
+    });
+    res.json(result);
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to list plugins', details: err.message });
+  }
+});
+router.get('/plugins/hooks', (req, res) => {
+  try {
+    const hooks = plugins.getAvailableHooks();
+    res.json({ hooks });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get available hooks', details: err.message });
+  }
+});
+router.get('/plugins/:pluginId', authenticateToken, (req, res) => {
+  try {
+    const plugin = plugins.getPlugin(req.params.pluginId);
+    if (!plugin) return res.status(404).json({ error: 'Plugin not found' });
+    res.json({ plugin });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get plugin', details: err.message });
+  }
+});
+router.post('/plugins/register', authenticateToken, (req, res) => {
+  try {
+    const { name, description, version, author, hooks, configSchema, category } = req.body;
+    if (!name || !version) return res.status(400).json({ error: 'name and version are required' });
+    const plugin = plugins.registerPlugin({
+      name, description, version, author, hooks, configSchema, category,
+      registeredBy: req.user.id,
+    });
+    res.status(201).json({ plugin });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to register plugin', details: err.message });
+  }
+});
+router.post('/plugins/:pluginId/install/:siteId', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { config } = req.body;
+    const installation = plugins.installPlugin(req.params.pluginId, req.params.siteId, req.user.id, config);
+    res.status(201).json({ installation });
+  } catch (err) {
+    const status = err.message.includes('not found') ? 404 : 500;
+    res.status(status).json({ error: 'Failed to install plugin', details: err.message });
+  }
+});
+router.delete('/plugins/:pluginId/uninstall/:siteId', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const ok = plugins.uninstallPlugin(req.params.pluginId, req.params.siteId);
+    if (!ok) return res.status(404).json({ error: 'Plugin installation not found' });
+    res.json({ success: true });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to uninstall plugin', details: err.message });
+  }
+});
+router.put('/plugins/installations/:installationId/config', authenticateToken, (req, res) => {
+  try {
+    const { config } = req.body;
+    if (!config) return res.status(400).json({ error: 'config is required' });
+    const result = plugins.configurePlugin(req.params.installationId, config);
+    if (!result) return res.status(404).json({ error: 'Installation not found' });
+    res.json({ installation: result });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to configure plugin', details: err.message });
+  }
+});
+router.get('/plugins/installed/:siteId', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const installed = plugins.getInstalledPlugins(req.params.siteId);
+    res.json({ plugins: installed });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get installed plugins', details: err.message });
+  }
+});
+router.post('/plugins/:pluginId/rate', authenticateToken, (req, res) => {
+  try {
+    const { rating, review } = req.body;
+    if (rating == null || rating < 1 || rating > 5) {
+      return res.status(400).json({ error: 'rating (1-5) is required' });
+    }
+    const result = plugins.ratePlugin(req.params.pluginId, req.user.id, rating);
+    res.status(201).json(result);
+  } catch (err) {
+    const status = err.message.includes('not found') ? 404 : 500;
+    res.status(status).json({ error: 'Failed to rate plugin', details: err.message });
+  }
+});
+router.get('/plugins/:pluginId/stats', authenticateToken, (req, res) => {
+  try {
+    const stats = plugins.getPluginStats(req.params.pluginId);
+    if (!stats) return res.status(404).json({ error: 'Plugin not found' });
+    res.json({ stats });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get plugin stats', details: err.message });
+  }
+});
+router.post('/plugins/hooks/:hookName/execute/:siteId', authenticateToken, requireSiteOwnership, async (req, res) => {
+  try {
+    const { payload } = req.body;
+    const result = await plugins.executeHook(req.params.hookName, req.params.siteId, payload || {});
+    res.json(result);
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to execute hook', details: err.message });
+  }
+});
+router.get('/plugins/hooks/log/:siteId', authenticateToken, requireSiteOwnership, (req, res) => {
+  try {
+    const { limit, hookName } = req.query;
+    const logs = plugins.getHookExecutionLog(req.params.siteId, {
+      limit: limit ? parseInt(limit, 10) : undefined,
+      hookName,
+    });
+    res.json({ logs });
+  } catch (err) {
+    res.status(500).json({ error: 'Failed to get hook execution log', details: err.message });
+  }
+});
+module.exports = router;