meshcode 2.10.42__tar.gz → 2.10.43__tar.gz

{meshcode-2.10.42 → meshcode-2.10.43}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: meshcode
-Version: 2.10.42
+Version: 2.10.43
 Summary: Real-time communication between AI agents — Supabase-backed CLI
 Author-email: MeshCode <hello@meshcode.io>
 License: MIT

{meshcode-2.10.42 → meshcode-2.10.43}/meshcode/__init__.py

@@ -1,2 +1,2 @@
 """MeshCode — Real-time communication between AI agents."""
-__version__ = "2.10.42"
+__version__ = "2.10.43"

{meshcode-2.10.42 → meshcode-2.10.43}/meshcode/comms_v4.py

@@ -352,6 +352,48 @@ def send_notification(project, name, from_agent, pending=1):
         pass
 
 
+def _nudge_windows_terminal(name, pending, tty, pid):
+    """Activate the agent's terminal window on Windows.
+
+    Uses PowerShell + kernel32 to find the console window by process ID and
+    bring it to the foreground. Does NOT send keystrokes — that would risk
+    confirming prompts or interrupting bypass mode. The window activation
+    combined with the desktop notification is enough to alert the user.
+    """
+    if not pid:
+        return
+    try:
+        pid = int(pid)
+    except (ValueError, TypeError):
+        return
+    try:
+        ps_script = f'''
+$proc = Get-Process -Id {pid} -ErrorAction SilentlyContinue
+if ($proc -and $proc.MainWindowHandle -ne 0) {{
+    Add-Type @"
+    using System;
+    using System.Runtime.InteropServices;
+    public class WinApi {{
+        [DllImport("user32.dll")] public static extern bool SetForegroundWindow(IntPtr hWnd);
+        [DllImport("user32.dll")] public static extern bool ShowWindow(IntPtr hWnd, int nCmdShow);
+    }}
+"@
+    [WinApi]::ShowWindow($proc.MainWindowHandle, 9)
+    [WinApi]::SetForegroundWindow($proc.MainWindowHandle)
+}}
+'''
+        subprocess.run(
+            ["powershell", "-NoProfile", "-Command", ps_script],
+            stdout=subprocess.DEVNULL, stderr=subprocess.DEVNULL,
+            timeout=10,
+        )
+        log_msg(f"[nudge] Windows: activated terminal for {name} (pid={pid})")
+    except subprocess.TimeoutExpired:
+        log_msg(f"[nudge] Windows: PowerShell timed out for {name}")
+    except Exception as e:
+        log_msg(f"[nudge] Windows: failed for {name}: {e}")
+
+
 def _is_pid_alive(pid):
     """Return True iff the given pid corresponds to a live process."""
     if not pid:
@@ -796,8 +838,10 @@ def nudge_agent(project, name, from_agent=""):
     message = f"Tienes {pending} mensaje(s). Revisa: meshcode read {project} {name}"
     escaped_message = message.replace('\\', '\\\\').replace('"', '\\"')
 
-    # Only attempt AppleScript nudge on macOS
+    # Non-macOS: use platform-specific terminal nudge
     if sys.platform != "darwin":
+        if sys.platform == "win32":
+            _nudge_windows_terminal(name, pending, tty, cached_pid)
         send_notification(project, name, from_agent, pending)
         mark_nudged(project, name)
         return True

{meshcode-2.10.42 → meshcode-2.10.43}/meshcode/meshcode_mcp/server.py

@@ -108,14 +108,14 @@ _SEEN_TTL = 300.0  # 5 minutes
 # ============================================================
 # Auto-wake: when agent is NOT in meshcode_wait and a message
 # arrives, inject text into the terminal to wake the agent.
-# DEFAULT: ON. Disable with MESHCODE_AUTO_WAKE=0 if you don't want it.
 # ============================================================
 _IN_WAIT = False  # True while meshcode_wait is blocking
-# Default OFF as of 2.10.27 — the AppleScript/PowerShell keystroke injection
-# wrote nudge text directly into the user's terminal, which corrupts stdin on
-# terminals that don't interpret ANSI, interrupts the user mid-typing, and
-# duplicates what the dashboard already surfaces. Opt-in with
-# MESHCODE_AUTO_WAKE=1 for users who want the legacy behavior.
+# Default OFF — keystroke injection can corrupt stdin on some terminals.
+# The primary nudge path is now in comms_v4.nudge_agent() which uses
+# platform-specific window activation (SetForegroundWindow on Windows,
+# AppleScript on macOS) + desktop notification.
+# Set MESHCODE_AUTO_WAKE=1 to also inject text into the terminal from
+# the MCP server side (useful if comms_v4 nudge doesn't reach the agent).
 _AUTO_WAKE = os.environ.get("MESHCODE_AUTO_WAKE", "0").lower() in ("1", "true", "yes")
 
 
@@ -197,8 +197,10 @@ def _try_auto_wake(from_agent: str, preview: str) -> None:
             Add-Type -AssemblyName System.Windows.Forms
             [System.Windows.Forms.SendKeys]::SendWait("{sk_safe}{{ENTER}}")
             '''
-            subprocess.Popen(["powershell", "-Command", ps_script],
-                             stdout=subprocess.DEVNULL, stderr=subprocess.DEVNULL)
+            # Use subprocess.run with timeout to prevent orphaned PowerShell processes
+            subprocess.run(["powershell", "-NoProfile", "-Command", ps_script],
+                           stdout=subprocess.DEVNULL, stderr=subprocess.DEVNULL,
+                           timeout=10)
             log.info("auto-wake: injected nudge via PowerShell SendKeys")
         else:
             # Linux — xdotool takes args directly, not shell-interpolated (safe)
@@ -3026,6 +3028,25 @@ def meshcode_recall_search(query: str) -> Dict[str, Any]:
     })
 
 
+# ----------------- BUG REPORTING -----------------
+
+@mcp.tool()
+@with_working_status
+def meshcode_report_bug(description: str) -> Dict[str, Any]:
+    """Report a bug from within the mesh. Visible in admin panel.
+
+    Args:
+        description: What went wrong — include steps to reproduce if possible.
+    """
+    api_key = _get_api_key()
+    return be.sb_rpc("mc_report_bug", {
+        "p_api_key": api_key,
+        "p_description": description,
+        "p_meshwork_name": PROJECT_NAME,
+        "p_agent_name": AGENT_NAME,
+    })
+
+
 # ----------------- HEALTH CHECK -----------------
 
 @mcp.tool()

{meshcode-2.10.42 → meshcode-2.10.43}/meshcode/run_agent.py

@@ -363,13 +363,30 @@ def _claude_supports_bypass(editor_cmd: str) -> bool:
     """
     try:
         use_shell = sys.platform == "win32" and editor_cmd.lower().endswith((".cmd", ".bat"))
+        print(f"[meshcode] bypass-detect: checking '{editor_cmd}' (shell={use_shell})", file=sys.stderr)
         r = subprocess.run(
             [editor_cmd, "--help"],
             capture_output=True, text=True, timeout=10,
             shell=use_shell,
         )
-        return "--dangerously-skip-permissions" in r.stdout
-    except Exception:
+        found = "--dangerously-skip-permissions" in r.stdout
+        if found:
+            print(f"[meshcode] bypass-detect: ✓ flag found — bypass mode available", file=sys.stderr)
+        else:
+            stdout_len = len(r.stdout)
+            stderr_preview = (r.stderr or "")[:200]
+            print(f"[meshcode] bypass-detect: ✗ flag NOT found in --help output ({stdout_len} chars, exit={r.returncode})", file=sys.stderr)
+            if stderr_preview:
+                print(f"[meshcode] bypass-detect: stderr: {stderr_preview}", file=sys.stderr)
+        return found
+    except subprocess.TimeoutExpired:
+        print(f"[meshcode] bypass-detect: ✗ '{editor_cmd} --help' timed out after 10s", file=sys.stderr)
+        return False
+    except FileNotFoundError:
+        print(f"[meshcode] bypass-detect: ✗ '{editor_cmd}' not found in PATH", file=sys.stderr)
+        return False
+    except Exception as e:
+        print(f"[meshcode] bypass-detect: ✗ unexpected error: {e}", file=sys.stderr)
         return False
 
 
@@ -377,17 +394,22 @@ def _detect_editor() -> Optional[str]:
     """Pick the user's preferred MCP-aware editor."""
     override = os.environ.get("MESHCODE_EDITOR", "").strip().lower()
     if override:
-        if shutil.which(override):
-            return override
+        resolved = shutil.which(override)
+        if resolved:
+            # On Windows, return resolved path to preserve .cmd/.bat extension
+            return resolved if sys.platform == "win32" else override
         print(f"[meshcode] WARNING: MESHCODE_EDITOR='{override}' not found in PATH", file=sys.stderr)
 
     # Detection order: most likely to be installed + best per-workspace MCP
     # support first. codex is last because its MCP config is GLOBAL only —
     # launching it doesn't take a workspace-scoped .mcp.json, so it should
     # only be picked if nothing else is available.
+    # On Windows, return the fully-resolved path so .cmd/.bat extension is
+    # preserved — needed for shell=True detection in bypass and launch paths.
     for cmd in ("claude", "cursor", "code", "windsurf", "codex"):
-        if shutil.which(cmd):
-            return cmd
+        resolved = shutil.which(cmd)
+        if resolved:
+            return resolved if sys.platform == "win32" else cmd
 
     # Windows fallback: check common install locations not in PATH
     if sys.platform == "win32":
@@ -655,6 +677,8 @@ def run(agent: str, project: Optional[str] = None, editor_override: Optional[str
         # MCP" bucket and survive ESC. Verified with a minimal FastMCP
         # repro side-by-side: Built-in dies, Local survives, same SDK code.
         mode = resolve_permission_mode(permission_override)
+        print(f"[meshcode]   Editor resolved: {editor}", file=sys.stderr)
+        print(f"[meshcode]   Permission mode resolved: {mode}", file=sys.stderr)
         cmd = [editor]
         if mode == "bypass":
             if _claude_supports_bypass(editor):

{meshcode-2.10.42 → meshcode-2.10.43}/meshcode/secrets.py

@@ -47,6 +47,33 @@ DEFAULT_PROFILE = "default"
 LEGACY_CREDS_FILE = Path.home() / ".meshcode" / "credentials.json"
 
 
+# ============================================================
+# File permission helpers
+# ============================================================
+
+
+def _restrict_perms(path: "Path") -> None:
+    """Restrict file to owner-only access on all platforms.
+
+    On Windows, os.chmod(0o600) is a no-op — must use icacls to remove
+    inherited ACLs and grant only the current user Full Control.
+    """
+    try:
+        if sys.platform == "win32":
+            import subprocess
+            username = os.environ.get("USERNAME", os.environ.get("USER", ""))
+            if username:
+                subprocess.run(
+                    ["icacls", str(path), "/inheritance:r",
+                     "/grant:r", f"{username}:(F)"],
+                    capture_output=True, timeout=5,
+                )
+        else:
+            os.chmod(path, 0o600)
+    except Exception:
+        pass
+
+
 # ============================================================
 # Keyring backend probe
 # ============================================================
@@ -129,10 +156,7 @@ def _save_index(idx: Dict[str, Any]) -> None:
     PROFILE_INDEX.parent.mkdir(parents=True, exist_ok=True)
     tmp = PROFILE_INDEX.with_suffix(".tmp")
     tmp.write_text(json.dumps(idx, indent=2), encoding="utf-8")
-    try:
-        os.chmod(tmp, 0o600)
-    except Exception:
-        pass
+    _restrict_perms(tmp)
     tmp.replace(PROFILE_INDEX)
 
 
@@ -182,10 +206,7 @@ def set_api_key(api_key: str, profile: str = DEFAULT_PROFILE,
     fallback_path = Path.home() / ".meshcode" / f"credentials.{profile}.json"
     fallback_path.parent.mkdir(parents=True, exist_ok=True)
     fallback_path.write_text(json.dumps({"api_key": api_key, **(meta or {})}, indent=2), encoding="utf-8")
-    try:
-        os.chmod(fallback_path, 0o600)
-    except Exception:
-        pass
+    _restrict_perms(fallback_path)
     _index_set(profile, {"backend": "file-fallback", **(meta or {})})
     return True
 

{meshcode-2.10.42 → meshcode-2.10.43}/meshcode/setup_clients.py

@@ -204,11 +204,31 @@ def _build_server_block(project: str, project_id: str, agent: str, role: str,
     }
 
 
+def _restrict_perms(path: Path) -> None:
+    """Restrict file to owner-only access (Windows-aware)."""
+    try:
+        if sys.platform == "win32":
+            import subprocess
+            username = os.environ.get("USERNAME", os.environ.get("USER", ""))
+            if username:
+                subprocess.run(
+                    ["icacls", str(path), "/inheritance:r",
+                     "/grant:r", f"{username}:(F)"],
+                    capture_output=True, timeout=5,
+                )
+        else:
+            os.chmod(path, 0o600)
+    except Exception:
+        pass
+
+
 def _atomic_write_json(path: Path, data: dict) -> None:
     path.parent.mkdir(parents=True, exist_ok=True)
     tmp = path.with_suffix(path.suffix + ".tmp")
     tmp.write_text(json.dumps(data, indent=2), encoding="utf-8")
+    _restrict_perms(tmp)
     tmp.replace(path)
+    _restrict_perms(path)
 
 
 def _toml_escape(s: str) -> str:

{meshcode-2.10.42 → meshcode-2.10.43}/meshcode.egg-info/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: meshcode
-Version: 2.10.42
+Version: 2.10.43
 Summary: Real-time communication between AI agents — Supabase-backed CLI
 Author-email: MeshCode <hello@meshcode.io>
 License: MIT

{meshcode-2.10.42 → meshcode-2.10.43}/pyproject.toml

@@ -4,7 +4,7 @@ build-backend = "setuptools.build_meta"
 
 [project]
 name = "meshcode"
-version = "2.10.42"
+version = "2.10.43"
 description = "Real-time communication between AI agents — Supabase-backed CLI"
 readme = "README.md"
 license = {text = "MIT"}