wyrm-mcp 7.2.0 → 7.2.2

package/dist/cloud/sync-engine.js

@@ -1,176 +1,5 @@
-/**
- * wyrm cloud sync — the change-detect + push + pull + merge engine.
- *
- * v1.1 semantics (incremental + tombstones):
- *   - PUSH: rows with cross_project_visibility != 'within' AND
- *     updated_at > last_push_updated_at_ms get serialised + encrypted +
- *     uploaded. Plus any pending tombstones from sync_tombstones.
- *   - PULL: fetch peer deltas since pull_cursor. Decrypt. kind='tombstone'
- *     → DELETE locally. All other kinds → INSERT OR REPLACE on (kind, row_id).
- *     Last-write-wins on conflicts.
- *   - This is intentionally NOT a CRDT — for v1 we're solving "same operator
- *     on phone + laptop". v2 (team tier) will add real conflict semantics.
- *
- * Tables synced in v1:
- *   - ground_truths    (kind='truth')
- *   - memory_artifacts (kind='memory_artifact')
- *   - quests           (kind='quest')
- *   - design_tokens    (kind='design_token')
- *   - design_references (kind='design_reference')
- *
- * Sessions / hour_entries / failure_patterns are intentionally NOT synced
- * yet — they're per-device time-series data that doesn't merge cleanly.
- *
- * @copyright 2026 Ghost Protocol (Pvt) Ltd.
- */
-import { readFileSync, writeFileSync, existsSync } from 'node:fs';
-import { join } from 'node:path';
-import { WyrmDB } from '../database.js';
-import { CloudClient, loadSession, saveSession, resolveCloudDir } from './client.js';
-import { encrypt, decrypt } from './crypto.js';
-import { classifySession, computeMachineFp } from './machine-id.js';
-/** Resolve the pull-cursor file at call time (honors WYRM_CLOUD_DIR). */
-function cursorFilePath() {
-    return join(resolveCloudDir(), 'cloud-cursor.json');
-}
-// Default (privacy-first) tables — these have `cross_project_visibility`
-// and the operator opts in by setting it to 'org' or 'public'.
-export const DEFAULT_TABLES = [
-    { kind: 'truth', table: 'ground_truths', hasVisibility: true },
-    { kind: 'memory_artifact', table: 'memory_artifacts', hasVisibility: true },
-    { kind: 'quest', table: 'quests', hasVisibility: true },
-    { kind: 'design_token', table: 'design_tokens', hasVisibility: true },
-    { kind: 'design_reference', table: 'design_references', hasVisibility: true },
-    // Skills carry the SKILL.md body (migration 25) so they're portable across
-    // machines. Gated by per-row `cross_project_visibility` (DEFAULT 'within' =
-    // private) exactly like the rows above — a skill only egresses once the
-    // operator promotes it (`wyrm skill share <name>`), never by default.
-    { kind: 'skill', table: 'skills', hasVisibility: true },
-];
-/**
- * Tables that NEVER sync, even in `--all` mode. These are per-device
- * telemetry, derived state, or volatile bookkeeping that doesn't merge
- * meaningfully across devices.
- */
-const DENYLIST_TABLES = new Set([
-    // Per-device timing / activity
-    'sessions', 'agent_actions', 'agent_presence', 'session_seen_artifacts',
-    // Logs (per-device, append-only, would balloon storage)
-    'tool_call_log', 'llm_query_log', 'external_call_log',
-    'token_savings_log', 'cost_tracking', 'usage_events', 'audit_log',
-    // Derived / cache state
-    'indexing_queue', 'vectors', 'symbol_index', 'update_check',
-    // Sync internals — never sync the sync state itself
-    'sync_conflicts', 'sync_log', 'sync_tombstones', 'wyrm_cloud_sync_state',
-    // Local config (machine-specific)
-    'mcp_client_configs', 'watch_dirs', 'global_context', 'schema_versions',
-    // Conservatively skip failure_patterns — per-device debugging context
-    'failure_patterns',
-]);
-/**
- * FTS shadow tables (auto-maintained by SQLite from base tables).
- * These get rebuilt from the base table, never sync them directly.
- */
-const FTS_SHADOW_PATTERN = /_fts(_config|_data|_docsize|_idx)?$/;
-/**
- * Discover every syncable table in the local DB at runtime.
- *
- *   - Skips FTS shadow tables (auto-derived from base tables)
- *   - Skips entries in DENYLIST_TABLES (per-device or volatile)
- *   - Tables WITH `cross_project_visibility` keep `hasVisibility=true`
- *     so the default opt-in semantics still work for them
- *   - Tables WITHOUT it get `hasVisibility=false` (synced unconditionally
- *     in `--all` mode; never in default mode)
- *
- * The `kind` is derived from the table name (drop trailing 's' for
- * common plurals: `skills` → `skill`, `projects` → `project`). This
- * keeps the wire format stable even if the local table layout changes.
- */
-function discoverTables(db) {
-    const raw = db.getDatabase();
-    const out = [...DEFAULT_TABLES];
-    const known = new Set(DEFAULT_TABLES.map((t) => t.table));
-    try {
-        const rows = raw.prepare(`SELECT name FROM sqlite_master
-       WHERE type='table' AND name NOT LIKE 'sqlite_%'`).all();
-        for (const r of rows) {
-            const name = r.name;
-            if (known.has(name))
-                continue;
-            if (DENYLIST_TABLES.has(name))
-                continue;
-            if (FTS_SHADOW_PATTERN.test(name))
-                continue;
-            if (!SAFE_IDENT.test(name))
-                continue;
-            // Require an `id` column — primary key for INSERT OR REPLACE
-            const cols = raw.prepare(`PRAGMA table_info(${name})`).all();
-            if (!cols.some((c) => c.name === 'id'))
-                continue;
-            const hasVis = cols.some((c) => c.name === 'cross_project_visibility');
-            out.push({ kind: tableToKind(name), table: name, hasVisibility: hasVis });
-        }
-    }
-    catch { /* fall back to defaults */ }
-    return out;
-}
-function tableToKind(table) {
-    // For dynamically-discovered tables, use the table name verbatim as
-    // the kind. Plural-stripping was buggy (`context` → `contex`,
-    // `data_lake` → `data_lak`) and the kind is just an opaque routing
-    // label anyway — round-tripping via the same registry on both sides
-    // means there's no benefit to "prettifying" it.
-    //
-    // DEFAULT_TABLES still uses explicit singular kinds (truth, quest,
-    // etc.) for backwards-compatibility with deltas already pushed by
-    // earlier CLI versions.
-    return table;
-}
-/**
- * Build the inbound-apply column whitelist for a table dynamically by
- * reading the local schema. Local schema is trusted (it's our own DB,
- * not from peers); the whitelist defends against a malicious peer
- * sending crafted column names by ONLY accepting columns that exist
- * locally. Anything else is dropped before SQL generation.
- */
-function columnWhitelist(db, table) {
-    if (!SAFE_IDENT.test(table))
-        return new Set();
-    try {
-        const raw = db.getDatabase();
-        const cols = raw.prepare(`PRAGMA table_info(${table})`).all();
-        return new Set(cols.filter((c) => SAFE_IDENT.test(c.name)).map((c) => c.name));
-    }
-    catch {
-        return new Set();
-    }
-}
-// Validation regex for table/column identifiers — defence-in-depth.
-const SAFE_IDENT = /^[a-z_][a-z0-9_]*$/i;
-// ── Cursor persistence ────────────────────────────────────────────────────
-function loadCursor() {
-    const empty = { pull_cursor: 0, last_push_updated_ms: 0, last_push_at: 0, last_pull_at: 0 };
-    const file = cursorFilePath();
-    if (!existsSync(file))
-        return empty;
-    try {
-        const raw = JSON.parse(readFileSync(file, 'utf-8'));
-        return { ...empty, ...raw };
-    }
-    catch {
-        return empty;
-    }
-}
-function saveCursor(c) {
-    writeFileSync(cursorFilePath(), JSON.stringify(c, null, 2), { mode: 0o600 });
-}
-// ── Tombstone table ───────────────────────────────────────────────────────
-// We keep deletion intents in a local sync_tombstones table. Other code
-// paths that DELETE a synced row should also INSERT into sync_tombstones
-// (see recordTombstone below). The sync push drains this table.
-function ensureTombstoneTable(db) {
-    const raw = db.getDatabase();
-    raw.exec(`
+import{readFileSync as O,writeFileSync as k,existsSync as D}from"node:fs";import{join as I}from"node:path";import{WyrmDB as $}from"../database.js";import{CloudClient as C,loadSession as L,saveSession as A,resolveCloudDir as v}from"./client.js";import{encrypt as S,decrypt as j}from"./crypto.js";import{classifySession as x,computeMachineFp as P}from"./machine-id.js";function T(){return I(v(),"cloud-cursor.json")}const b=[{kind:"truth",table:"ground_truths",hasVisibility:!0},{kind:"memory_artifact",table:"memory_artifacts",hasVisibility:!0},{kind:"quest",table:"quests",hasVisibility:!0},{kind:"design_token",table:"design_tokens",hasVisibility:!0},{kind:"design_reference",table:"design_references",hasVisibility:!0},{kind:"skill",table:"skills",hasVisibility:!0}],U=new Set(["sessions","agent_actions","agent_presence","session_seen_artifacts","tool_call_log","llm_query_log","external_call_log","token_savings_log","cost_tracking","usage_events","audit_log","indexing_queue","vectors","symbol_index","update_check","sync_conflicts","sync_log","sync_tombstones","wyrm_cloud_sync_state","mcp_client_configs","watch_dirs","global_context","schema_versions","failure_patterns"]),W=/_fts(_config|_data|_docsize|_idx)?$/;function F(e){const t=e.getDatabase(),s=[...b],r=new Set(b.map(o=>o.table));try{const o=t.prepare(`SELECT name FROM sqlite_master
+       WHERE type='table' AND name NOT LIKE 'sqlite_%'`).all();for(const n of o){const l=n.name;if(r.has(l)||U.has(l)||W.test(l)||!h.test(l))continue;const _=t.prepare(`PRAGMA table_info(${l})`).all();if(!_.some(c=>c.name==="id"))continue;const d=_.some(c=>c.name==="cross_project_visibility");s.push({kind:l,table:l,hasVisibility:d})}}catch{}return s}function re(e){return e}function M(e,t){if(!h.test(t))return new Set;try{const r=e.getDatabase().prepare(`PRAGMA table_info(${t})`).all();return new Set(r.filter(o=>h.test(o.name)).map(o=>o.name))}catch{return new Set}}const h=/^[a-z_][a-z0-9_]*$/i;function H(){const e={pull_cursor:0,last_push_updated_ms:0,last_push_at:0,last_pull_at:0},t=T();if(!D(t))return e;try{const s=JSON.parse(O(t,"utf-8"));return{...e,...s}}catch{return e}}function V(e){k(T(),JSON.stringify(e,null,2),{mode:384})}function N(e){e.getDatabase().exec(`
     CREATE TABLE IF NOT EXISTS sync_tombstones (
       id INTEGER PRIMARY KEY AUTOINCREMENT,
       kind TEXT NOT NULL,
@@ -181,376 +10,11 @@ function ensureTombstoneTable(db) {
     );
     CREATE INDEX IF NOT EXISTS idx_sync_tombstones_pending
       ON sync_tombstones(pushed_at_ms);
-  `);
-}
-/**
- * Record a deletion intent. Call this from any code path that DELETEs a
- * row in one of the synced tables, BEFORE the actual delete runs (so
- * we capture intent even if the local delete races a sync). Idempotent.
- *
- * Accepts any kind — we no longer hard-validate against the registry
- * because the registry is discovered dynamically at sync time.
- */
-export function recordTombstone(db, kind, rowId) {
-    if (typeof kind !== 'string' || kind.length === 0 || kind.length > 64)
-        return;
-    ensureTombstoneTable(db);
-    const raw = db.getDatabase();
-    raw.prepare(`INSERT OR IGNORE INTO sync_tombstones (kind, row_id, deleted_at_ms)
-     VALUES (?, ?, ?)`).run(kind, String(rowId), Date.now());
-}
-/**
- * Thrown when the session's machine fingerprint does not match this
- * machine (a copied cloud.json → device_id collision → silent 0-row
- * pulls, failure #40). Caught by the CLI and rendered as guidance.
- */
-export class CopiedSessionError extends Error {
-    constructor(message) {
-        super(message);
-        this.name = 'CopiedSessionError';
-    }
-}
-/** True when the operator has explicitly opted to proceed past the guard. */
-function copiedSessionAllowed(force) {
-    return !!force || process.env.WYRM_ALLOW_COPIED_SESSION === '1';
-}
-/**
- * Guard against a copied cloud session (failure #40). Recompute this
- * machine's fingerprint and compare to the one stored at login:
- *   - 'adopt'    → no fp on the session (pre-7.0.3). Write the current fp
- *                  in place, silently. Avoids false alarms on every
- *                  existing install after upgrade.
- *   - 'match'    → silent, normal.
- *   - 'mismatch' → this session was minted on another machine. Both boxes
- *                  share one device_id; cross-device pull silently returns
- *                  0. Warn LOUD on stderr and STOP (throw), unless --force
- *                  / WYRM_ALLOW_COPIED_SESSION=1.
- *
- * stderr ONLY — stdout is the MCP wire when this module is server-imported.
- */
-export function guardCopiedSession(session, saveAdopted, force) {
-    const verdict = classifySession(session.machine_fp);
-    if (verdict.state === 'match')
-        return;
-    if (verdict.state === 'adopt') {
-        // Backward compat: pre-7.0.3 session has no fp. Adopt this machine
-        // silently — only a PRESENT-but-different fp is suspicious.
-        saveAdopted(computeMachineFp());
-        return;
-    }
-    // mismatch
-    const lines = [
-        '',
-        '⚠ WYRM CLOUD: this session looks COPIED from another machine.',
-        '',
-        `  Stored machine fingerprint: ${verdict.stored.slice(0, 12)}…`,
-        `  This machine\'s fingerprint: ${verdict.current.slice(0, 12)}…`,
-        '',
-        '  Both machines now share ONE device_id. The cloud pull query skips a',
-        '  device\'s own deltas, so each machine filters the OTHER\'s changes out:',
-        '  push works but pull silently returns 0 rows (peer memory looks MISSING).',
-        '',
-        '  FIX — give this machine its own identity (keep your encryption key):',
-        '    rm ~/.wyrm/cloud.json ~/.wyrm/cloud-cursor.json   # NOT cloud.key',
-        '    wyrm cloud login',
-        '',
-        '  If this is a legitimate change (e.g. you renamed this host), re-run with:',
-        '    wyrm cloud sync --force        (or set WYRM_ALLOW_COPIED_SESSION=1)',
-        '',
-    ];
-    if (copiedSessionAllowed(force)) {
-        // Warn but continue. Also adopt the current fp so the operator isn't
-        // nagged every sync after an intentional, acknowledged change.
-        console.error(lines.join('\n'));
-        console.error('  Proceeding anyway (--force / WYRM_ALLOW_COPIED_SESSION=1); fingerprint updated.');
-        console.error('');
-        saveAdopted(verdict.current);
-        return;
-    }
-    console.error(lines.join('\n'));
-    throw new CopiedSessionError('Cloud session looks copied from another machine (device_id collision). Re-login or pass --force.');
-}
-export async function runSync(opts = {}) {
-    const session = loadSession();
-    if (!session || !session.device_id) {
-        throw new Error('Not logged in or device not registered. Run `wyrm cloud login`.');
-    }
-    // Failure #40 guard: detect a copied session before doing any work.
-    guardCopiedSession(session, (fp) => { saveSession({ ...session, machine_fp: fp }); }, opts.force);
-    const client = new CloudClient(session.base, session.session);
-    const cursor = loadCursor();
-    const db = new WyrmDB();
-    ensureTombstoneTable(db);
-    const result = { pushed: 0, pulled: 0, deleted_local: 0, errors: [] };
-    // Build the table registry: defaults always; in --all mode, expand to
-    // every discoverable syncable table in the local DB.
-    const tables = opts.all ? discoverTables(db) : DEFAULT_TABLES;
-    // ── PUSH ──
-    const upserts = collectChangedRows(db, tables, cursor.last_push_updated_ms, !!opts.all, result.errors);
-    const tombstones = collectPendingTombstones(db);
-    const allDeltas = [
-        ...upserts.map((r) => ({
-            kind: r.kind,
-            row_id: String(r.row_id),
-            visibility: r.visibility,
-            payload_b64: encrypt(JSON.stringify(r.row)),
-            updated_at: r.updated_at,
-        })),
-        ...tombstones.map((t) => ({
-            kind: 'tombstone',
-            row_id: `${t.kind}:${t.row_id}`,
-            visibility: 'org',
-            payload_b64: encrypt(JSON.stringify({ kind: t.kind, row_id: t.row_id, deleted_at_ms: t.deleted_at_ms })),
-            updated_at: t.deleted_at_ms,
-        })),
-    ];
-    if (allDeltas.length > 0 && !opts.dryRun) {
-        const CHUNK = 50;
-        let maxUpdatedAt = cursor.last_push_updated_ms;
-        for (let i = 0; i < allDeltas.length; i += CHUNK) {
-            const chunk = allDeltas.slice(i, i + CHUNK);
-            try {
-                const resp = await client.syncPush(session.device_id, chunk);
-                result.pushed += resp.accepted;
-                if (resp.rejected > 0) {
-                    for (const r of resp.rejected_details) {
-                        result.errors.push(`push: ${r.reason} on ${r.id.slice(0, 8)}…`);
-                    }
-                }
-                // Track the high-water mark from what we sent in this chunk.
-                // Server-side validates/clamps; we trust our local timestamps here.
-                for (const d of chunk) {
-                    if (d.updated_at && d.updated_at > maxUpdatedAt)
-                        maxUpdatedAt = d.updated_at;
-                }
-            }
-            catch (err) {
-                result.errors.push(`push chunk failed: ${err instanceof Error ? err.message : err}`);
-            }
-        }
-        cursor.last_push_updated_ms = maxUpdatedAt;
-        cursor.last_push_at = Date.now();
-        if (tombstones.length > 0)
-            markTombstonesPushed(db, tombstones.map((t) => t.id));
-    }
-    else {
-        result.pushed = allDeltas.length;
-    }
-    // ── PULL ──
-    if (!opts.dryRun) {
-        let cur = cursor.pull_cursor;
-        let pages = 0;
-        pullLoop: while (pages < 50) {
-            let resp;
-            try {
-                resp = await client.syncPull(session.device_id, cur, 100);
-            }
-            catch (err) {
-                result.errors.push(`pull failed: ${err instanceof Error ? err.message : err}`);
-                break;
-            }
-            if (resp.deltas.length === 0)
-                break;
-            for (const d of resp.deltas) {
-                try {
-                    const plaintext = decrypt(d.payload_b64);
-                    if (d.kind === 'tombstone') {
-                        const { kind, row_id } = JSON.parse(plaintext);
-                        if (applyTombstone(db, tables, kind, row_id))
-                            result.deleted_local++;
-                    }
-                    else {
-                        const row = JSON.parse(plaintext);
-                        applyRow(db, tables, d.kind, d.row_id, row);
-                        result.pulled++;
-                    }
-                }
-                catch (err) {
-                    // A delta we couldn't decrypt/parse/apply is sticky — STOP
-                    // advancing the cursor so we don't drop it on the floor.
-                    // Operator sees the error and can decide what to do (it might
-                    // be a key mismatch, a future schema, or genuine corruption).
-                    result.errors.push(`apply ${d.kind}:${d.row_id}: ${err instanceof Error ? err.message : err}`);
-                    break pullLoop;
-                }
-            }
-            cur = resp.next_cursor;
-            if (!resp.has_more)
-                break;
-            pages++;
-        }
-        cursor.pull_cursor = cur;
-        cursor.last_pull_at = Date.now();
-    }
-    saveCursor(cursor);
-    return result;
-}
-/**
- * Parse a SQLite `datetime('now')`-style string into ms epoch.
- * Format: "YYYY-MM-DD HH:MM:SS" in UTC. Falls back to 0 on parse failure.
- */
-function parseSqliteDatetimeMs(s) {
-    if (typeof s !== 'string' || s.length === 0)
-        return 0;
-    // Treat as UTC. Replace space with T so Date parses ISO-like.
-    const iso = s.includes('T') ? s : s.replace(' ', 'T') + 'Z';
-    const t = Date.parse(iso);
-    return Number.isFinite(t) ? t : 0;
-}
-function tableHasColumn(db, table, column) {
-    try {
-        const raw = db.getDatabase();
-        // PRAGMA can't be parameterised; identifiers are validated upstream.
-        const rows = raw.prepare(`PRAGMA table_info(${table})`).all();
-        return rows.some((r) => r.name === column);
-    }
-    catch {
-        return false;
-    }
-}
-export function collectChangedRows(db, tables, sinceMs, allMode, errors) {
-    const out = [];
-    const rawDb = db.getDatabase();
-    // [grove isolation] Gate cloud replication by projects.sync_policy when the
-    // column is present. Computed once; cheap.
-    const projectsHasSyncPolicy = tableHasColumn(db, 'projects', 'sync_policy');
-    for (const t of tables) {
-        if (!SAFE_IDENT.test(t.table))
-            continue;
-        // In default mode: skip tables that have no visibility column
-        // (they were never meant for opt-in privacy). In --all mode: sync
-        // every discovered table regardless.
-        if (!allMode && !t.hasVisibility)
-            continue;
-        try {
-            const hasUpdatedAt = tableHasColumn(db, t.table, 'updated_at');
-            // [sec 6.3.1] Honor per-row privacy in BOTH default and --all mode:
-            // visibility-bearing tables NEVER replicate 'within' (operator-private)
-            // rows to the cloud. --all still widens to column-less tables, but it no
-            // longer overrides an explicit per-row privacy marking. Use the encrypted
-            // full-DB snapshot (cloud-backup) for a literal everything-backup.
-            const visClause = t.hasVisibility
-                ? `WHERE cross_project_visibility IN ('org', 'public')`
-                : `WHERE 1=1`;
-            // [grove isolation] Only replicate rows whose grove opts into cloud sync
-            // (projects.sync_policy IN 'cloud','team'). Project-less rows fall back to
-            // the per-row visibility gate above. A 'private' grove (the default, incl.
-            // GHOST PROTOCOL) NEVER replicates, even in --all mode.
-            const groveClause = (projectsHasSyncPolicy && tableHasColumn(db, t.table, 'project_id'))
-                ? `AND (project_id IS NULL OR project_id IN (SELECT id FROM projects WHERE sync_policy IN ('cloud', 'team')))`
-                : ``;
-            const updatedClause = hasUpdatedAt
-                ? `AND (? = 0 OR strftime('%s', updated_at) * 1000 > ?)`
-                : ``;
-            // ORDER BY updated_at so the chunked push processes rows in
-            // monotonically-increasing time order. Without this, a chunk
-            // that fails would advance the cursor past rows in EARLIER
-            // chunks that succeeded, permanently skipping the failed rows.
-            const orderClause = hasUpdatedAt ? `ORDER BY updated_at ASC` : ``;
-            const sql = `SELECT * FROM ${t.table} ${visClause} ${groveClause} ${updatedClause} ${orderClause}`;
-            const stmt = rawDb.prepare(sql);
-            const rows = hasUpdatedAt
-                ? stmt.all(sinceMs, sinceMs)
-                : stmt.all();
-            for (const row of rows) {
-                const updatedMs = parseSqliteDatetimeMs(row.updated_at);
-                if (sinceMs > 0 && updatedMs > 0 && updatedMs <= sinceMs)
-                    continue;
-                // For tables without visibility, mark visibility 'org' so the
-                // server's pull-from-peers logic can still surface them across
-                // the operator's own devices.
-                const vis = t.hasVisibility
-                    ? String(row.cross_project_visibility ?? 'within')
-                    : 'org';
-                out.push({
-                    kind: t.kind,
-                    row_id: (row.id ?? '?'),
-                    visibility: vis,
-                    row,
-                    updated_at: updatedMs || Date.now(),
-                });
-            }
-        }
-        catch (err) {
-            const msg = err instanceof Error ? err.message : String(err);
-            if (/no such table/i.test(msg))
-                continue;
-            errors.push(`collect ${t.table}: ${msg}`);
-        }
-    }
-    // Final pass: order by updated_at ACROSS tables too. The cursor
-    // advances on per-chunk-success; if rows from table A and B interleave
-    // by updated_at, we need them globally ordered so a failed B-chunk
-    // doesn't strand A-rows on the next iteration.
-    out.sort((a, b) => (a.updated_at ?? 0) - (b.updated_at ?? 0));
-    return out;
-}
-function collectPendingTombstones(db) {
-    const raw = db.getDatabase();
-    try {
-        return raw.prepare(`SELECT id, kind, row_id, deleted_at_ms
+  `)}function ie(e,t,s){if(typeof t!="string"||t.length===0||t.length>64)return;N(e),e.getDatabase().prepare(`INSERT OR IGNORE INTO sync_tombstones (kind, row_id, deleted_at_ms)
+     VALUES (?, ?, ?)`).run(t,String(s),Date.now())}class q extends Error{constructor(t){super(t),this.name="CopiedSessionError"}}function Y(e){return!!e||process.env.WYRM_ALLOW_COPIED_SESSION==="1"}function G(e,t,s){const r=x(e.machine_fp);if(r.state==="match")return;if(r.state==="adopt"){t(P());return}const o=["","\u26A0 WYRM CLOUD: this session looks COPIED from another machine.","",`  Stored machine fingerprint: ${r.stored.slice(0,12)}\u2026`,`  This machine's fingerprint: ${r.current.slice(0,12)}\u2026`,"","  Both machines now share ONE device_id. The cloud pull query skips a","  device's own deltas, so each machine filters the OTHER's changes out:","  push works but pull silently returns 0 rows (peer memory looks MISSING).","","  FIX \u2014 give this machine its own identity (keep your encryption key):","    rm ~/.wyrm/cloud.json ~/.wyrm/cloud-cursor.json   # NOT cloud.key","    wyrm cloud login","","  If this is a legitimate change (e.g. you renamed this host), re-run with:","    wyrm cloud sync --force        (or set WYRM_ALLOW_COPIED_SESSION=1)",""];if(Y(s)){console.error(o.join(`
+`)),console.error("  Proceeding anyway (--force / WYRM_ALLOW_COPIED_SESSION=1); fingerprint updated."),console.error(""),t(r.current);return}throw console.error(o.join(`
+`)),new q("Cloud session looks copied from another machine (device_id collision). Re-login or pass --force.")}async function ae(e={}){const t=L();if(!t||!t.device_id)throw new Error("Not logged in or device not registered. Run `wyrm cloud login`.");G(t,i=>{A({...t,machine_fp:i})},e.force);const s=new C(t.base,t.session),r=H(),o=new $;N(o);const n={pushed:0,pulled:0,deleted_local:0,errors:[]},l=e.all?F(o):b,_=J(o,l,r.last_push_updated_ms,!!e.all,n.errors),d=K(o),c=[..._.map(i=>({kind:i.kind,row_id:String(i.row_id),visibility:i.visibility,payload_b64:S(JSON.stringify(i.row)),updated_at:i.updated_at})),...d.map(i=>({kind:"tombstone",row_id:`${i.kind}:${i.row_id}`,visibility:"org",payload_b64:S(JSON.stringify({kind:i.kind,row_id:i.row_id,deleted_at_ms:i.deleted_at_ms})),updated_at:i.deleted_at_ms}))];if(c.length>0&&!e.dryRun){let m=r.last_push_updated_ms;for(let a=0;a<c.length;a+=50){const p=c.slice(a,a+50);try{const u=await s.syncPush(t.device_id,p);if(n.pushed+=u.accepted,u.rejected>0)for(const f of u.rejected_details)n.errors.push(`push: ${f.reason} on ${f.id.slice(0,8)}\u2026`);for(const f of p)f.updated_at&&f.updated_at>m&&(m=f.updated_at)}catch(u){n.errors.push(`push chunk failed: ${u instanceof Error?u.message:u}`)}}r.last_push_updated_ms=m,r.last_push_at=Date.now(),d.length>0&&X(o,d.map(a=>a.id))}else n.pushed=c.length;if(!e.dryRun){let i=r.pull_cursor,m=0;e:for(;m<50;){let a;try{a=await s.syncPull(t.device_id,i,100)}catch(p){n.errors.push(`pull failed: ${p instanceof Error?p.message:p}`);break}if(a.deltas.length===0)break;for(const p of a.deltas)try{const u=j(p.payload_b64);if(p.kind==="tombstone"){const{kind:f,row_id:w}=JSON.parse(u);Q(o,l,f,w)&&n.deleted_local++}else{const f=JSON.parse(u);z(o,l,p.kind,p.row_id,f),n.pulled++}}catch(u){n.errors.push(`apply ${p.kind}:${p.row_id}: ${u instanceof Error?u.message:u}`);break e}if(i=a.next_cursor,!a.has_more)break;m++}r.pull_cursor=i,r.last_pull_at=Date.now()}return V(r),n}function B(e){if(typeof e!="string"||e.length===0)return 0;const t=e.includes("T")?e:e.replace(" ","T")+"Z",s=Date.parse(t);return Number.isFinite(s)?s:0}function g(e,t,s){try{return e.getDatabase().prepare(`PRAGMA table_info(${t})`).all().some(n=>n.name===s)}catch{return!1}}function J(e,t,s,r,o){const n=[],l=e.getDatabase(),_=g(e,"projects","sync_policy");for(const d of t)if(h.test(d.table)&&!(!r&&!d.hasVisibility))try{const c=g(e,d.table,"updated_at"),i=d.hasVisibility?"WHERE cross_project_visibility IN ('org', 'public')":"WHERE 1=1",m=_&&g(e,d.table,"project_id")?"AND (project_id IS NULL OR project_id IN (SELECT id FROM projects WHERE sync_policy IN ('cloud', 'team')))":"",a=c?"AND (? = 0 OR strftime('%s', updated_at) * 1000 > ?)":"",p=c?"ORDER BY updated_at ASC":"",u=`SELECT * FROM ${d.table} ${i} ${m} ${a} ${p}`,f=l.prepare(u),w=c?f.all(s,s):f.all();for(const y of w){const E=B(y.updated_at);if(s>0&&E>0&&E<=s)continue;const R=d.hasVisibility?String(y.cross_project_visibility??"within"):"org";n.push({kind:d.kind,row_id:y.id??"?",visibility:R,row:y,updated_at:E||Date.now()})}}catch(c){const i=c instanceof Error?c.message:String(c);if(/no such table/i.test(i))continue;o.push(`collect ${d.table}: ${i}`)}return n.sort((d,c)=>(d.updated_at??0)-(c.updated_at??0)),n}function K(e){const t=e.getDatabase();try{return t.prepare(`SELECT id, kind, row_id, deleted_at_ms
        FROM sync_tombstones
        WHERE pushed_at_ms IS NULL
        ORDER BY id ASC
-       LIMIT 500`).all();
-    }
-    catch {
-        return [];
-    }
-}
-function markTombstonesPushed(db, ids) {
-    if (ids.length === 0)
-        return;
-    const raw = db.getDatabase();
-    const now = Date.now();
-    const stmt = raw.prepare(`UPDATE sync_tombstones SET pushed_at_ms = ? WHERE id = ?`);
-    const tx = raw.transaction((tIds) => {
-        for (const id of tIds)
-            stmt.run(now, id);
-    });
-    try {
-        tx(ids);
-    }
-    catch { /* best-effort */ }
-}
-// ── Apply a pulled row (last-write-wins) ──────────────────────────────────
-function applyRow(db, tables, kind, _rowId, row) {
-    const target = tables.find((t) => t.kind === kind);
-    if (!target)
-        return; // unknown kind — peer is on a newer/different schema
-    if (!SAFE_IDENT.test(target.table)) {
-        throw new Error(`apply ${kind}: refusing unsafe table name ${target.table}`);
-    }
-    // Build the column whitelist dynamically from the LOCAL schema. Local
-    // schema is trusted; the peer's payload is not. This blocks any
-    // crafted column name that doesn't exist locally — including SQL
-    // injection attempts like `id) VALUES (...); DROP TABLE x;--`.
-    const allowed = columnWhitelist(db, target.table);
-    if (allowed.size === 0) {
-        throw new Error(`apply ${kind}: ${target.table} has no readable schema`);
-    }
-    const cols = Object.keys(row).filter((c) => allowed.has(c) && SAFE_IDENT.test(c));
-    if (cols.length === 0) {
-        throw new Error(`apply ${kind}: no columns from peer payload matched local schema`);
-    }
-    const rawDb = db.getDatabase();
-    const placeholders = cols.map(() => '?').join(',');
-    const colList = cols.join(',');
-    const values = cols.map((c) => row[c]);
-    try {
-        rawDb.prepare(`INSERT OR REPLACE INTO ${target.table} (${colList}) VALUES (${placeholders})`).run(...values);
-    }
-    catch (err) {
-        throw new Error(`apply ${kind} failed: ${err instanceof Error ? err.message : err}`);
-    }
-}
-/** Returns true if a row was actually deleted (vs. already gone). Throws on real DB errors. */
-function applyTombstone(db, tables, kind, rowId) {
-    const target = tables.find((t) => t.kind === kind);
-    if (!target || !SAFE_IDENT.test(target.table))
-        return false;
-    const raw = db.getDatabase();
-    const res = raw.prepare(`DELETE FROM ${target.table} WHERE id = ?`).run(rowId);
-    return res.changes > 0;
-}
-//# sourceMappingURL=sync-engine.js.map
+       LIMIT 500`).all()}catch{return[]}}function X(e,t){if(t.length===0)return;const s=e.getDatabase(),r=Date.now(),o=s.prepare("UPDATE sync_tombstones SET pushed_at_ms = ? WHERE id = ?"),n=s.transaction(l=>{for(const _ of l)o.run(r,_)});try{n(t)}catch{}}function z(e,t,s,r,o){const n=t.find(a=>a.kind===s);if(!n)return;if(!h.test(n.table))throw new Error(`apply ${s}: refusing unsafe table name ${n.table}`);const l=M(e,n.table);if(l.size===0)throw new Error(`apply ${s}: ${n.table} has no readable schema`);const _=Object.keys(o).filter(a=>l.has(a)&&h.test(a));if(_.length===0)throw new Error(`apply ${s}: no columns from peer payload matched local schema`);const d=e.getDatabase(),c=_.map(()=>"?").join(","),i=_.join(","),m=_.map(a=>o[a]);try{d.prepare(`INSERT OR REPLACE INTO ${n.table} (${i}) VALUES (${c})`).run(...m)}catch(a){throw new Error(`apply ${s} failed: ${a instanceof Error?a.message:a}`)}}function Q(e,t,s,r){const o=t.find(_=>_.kind===s);return!o||!h.test(o.table)?!1:e.getDatabase().prepare(`DELETE FROM ${o.table} WHERE id = ?`).run(r).changes>0}export{q as CopiedSessionError,b as DEFAULT_TABLES,J as collectChangedRows,G as guardCopiedSession,ie as recordTombstone,ae as runSync};