wotann 0.5.93 → 0.5.94

package/dist/security/skills-guard.js

@@ -7,9 +7,13 @@
  * escalation, agent config persistence, hardcoded secrets, and invisible text.
  */
 import { createHash } from "node:crypto";
-import { existsSync, lstatSync, readFileSync, readdirSync, realpathSync, } from "node:fs";
+import { existsSync, lstatSync, readFileSync, readdirSync, realpathSync } from "node:fs";
 import { extname, isAbsolute, join, relative, resolve } from "node:path";
-export const TRUSTED_SKILL_REPOS = new Set(["openai/skills", "anthropics/skills", "huggingface/skills"]);
+export const TRUSTED_SKILL_REPOS = new Set([
+    "openai/skills",
+    "anthropics/skills",
+    "huggingface/skills",
+]);
 export const INSTALL_POLICY = {
     builtin: ["allow", "allow", "allow"],
     trusted: ["allow", "allow", "block"],
@@ -405,7 +409,14 @@ export function contentHash(path) {
     return `sha256:${h.digest("hex").slice(0, 16)}`;
 }
 function p(pattern, patternId, severity, category, description, recommendation) {
-    return { regex: new RegExp(pattern, "i"), patternId, severity, category, description, recommendation };
+    return {
+        regex: new RegExp(pattern, "i"),
+        patternId,
+        severity,
+        category,
+        description,
+        recommendation,
+    };
 }
 function buildScanResult(input) {
     const issues = deduplicateIssues(input.findings);
@@ -489,7 +500,17 @@ function checkStructure(skillDir) {
     return findings;
 }
 function structuralIssue(patternId, severity, category, file, match, description, recommendation) {
-    return { pattern: category, patternId, category, file, line: 0, match, severity, description, recommendation };
+    return {
+        pattern: category,
+        patternId,
+        category,
+        file,
+        line: 0,
+        match,
+        severity,
+        description,
+        recommendation,
+    };
 }
 function listFiles(root) {
     return listEntries(root).filter((entry) => {
@@ -524,7 +545,7 @@ function isInside(child, parent) {
 function worstSeverity(issues) {
     if (issues.length === 0)
         return "info";
-    return issues.reduce((worst, issue) => (SEVERITY_ORDER[issue.severity] < SEVERITY_ORDER[worst] ? issue.severity : worst), "info");
+    return issues.reduce((worst, issue) => SEVERITY_ORDER[issue.severity] < SEVERITY_ORDER[worst] ? issue.severity : worst, "info");
 }
 function compareIssueSeverity(a, b) {
     return SEVERITY_ORDER[a.severity] - SEVERITY_ORDER[b.severity];

package/dist/ui/raw-mode-guard.d.ts

@@ -38,6 +38,20 @@ export interface RawModeStream {
  * state is preserved when it works) inside a try/catch. If it throws
  * here, the resolver falls through to `/dev/tty` or refuses cleanly
  * instead of mounting Ink into the silent loop.
+ *
+ * Node 25 `_handle` exception (added 2026-05-28 — empirical evidence
+ * from user diagnostic): on Node v25.x, the probe call throws
+ *   "Cannot read properties of undefined (reading '_handle')"
+ * because the libuv TTY binding (`this._handle`) isn't initialized at
+ * probe time — Node 25 lazily binds it on first I/O. The same
+ * `setRawMode` call AT INK'S RENDER COMMIT succeeds because by then
+ * Ink has read from the stream and the binding is live. Treating
+ * this specific error as "passes" (optimistic) lets the mount
+ * proceed; the `mount-interactive-ink` Ink-throw backstop catches
+ * any genuine failure at render time and writes the same actionable
+ * guidance. False-positive cost: a runtime error message instead of
+ * a guard refusal — same end UX. True-positive value: working TUI
+ * under Node 25, which is the user's current default.
  */
 export declare function isRawModeCapable(stream: unknown): boolean;
 export interface ResolveStdinOptions {

package/dist/ui/raw-mode-guard.js

@@ -35,6 +35,20 @@ import { ReadStream } from "node:tty";
  * state is preserved when it works) inside a try/catch. If it throws
  * here, the resolver falls through to `/dev/tty` or refuses cleanly
  * instead of mounting Ink into the silent loop.
+ *
+ * Node 25 `_handle` exception (added 2026-05-28 — empirical evidence
+ * from user diagnostic): on Node v25.x, the probe call throws
+ *   "Cannot read properties of undefined (reading '_handle')"
+ * because the libuv TTY binding (`this._handle`) isn't initialized at
+ * probe time — Node 25 lazily binds it on first I/O. The same
+ * `setRawMode` call AT INK'S RENDER COMMIT succeeds because by then
+ * Ink has read from the stream and the binding is live. Treating
+ * this specific error as "passes" (optimistic) lets the mount
+ * proceed; the `mount-interactive-ink` Ink-throw backstop catches
+ * any genuine failure at render time and writes the same actionable
+ * guidance. False-positive cost: a runtime error message instead of
+ * a guard refusal — same end UX. True-positive value: working TUI
+ * under Node 25, which is the user's current default.
  */
 export function isRawModeCapable(stream) {
     if (stream === null || typeof stream !== "object")
@@ -48,10 +62,22 @@ export function isRawModeCapable(stream) {
         setRawMode(currentIsRaw);
         return true;
     }
-    catch {
-        return false;
+    catch (e) {
+        return isNode25HandleInitDefer(e);
     }
 }
+/**
+ * Detect the Node 25+ "_handle is undefined at probe time" pattern.
+ * Matches both the literal `_handle` reference and the broader libuv
+ * binding init-order race that surfaces under the same wording. Kept
+ * separate from `isRawModeCapable` so the rationale lives next to
+ * the matcher and the same logic can drive `probeStdinDetail`.
+ */
+function isNode25HandleInitDefer(e) {
+    if (!(e instanceof Error))
+        return false;
+    return e.message.includes("_handle");
+}
 /**
  * Open the controlling terminal as a raw-capable input stream, or
  * `null` if there is none (Windows without a console, detached

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "wotann",
-  "version": "0.5.93",
+  "version": "0.5.94",
   "description": "WOTANN — The All-Father of AI Agent Harnesses",
   "type": "module",
   "main": "dist/index.js",