chore: 更新构建 feature 的问题

feat: ACP 协议版本 remote control (#293 )
* fix: 添加 usage 字段缺失时的防御性防护第三方 API（如智谱 GLM）在某些流式响应中不返回 usage 字段，导致 usage.input_tokens 访问 undefined 崩溃并连锁影响后续所有请求。 - claude.ts: content_block_stop 创建消息时 fallback 到 EMPTY_USAGE - LocalAgentTask.tsx: usage 为 undefined 时提前返回 - tokens.ts: getTokenCountFromUsage 加 null guard 和 ?? 0 - cost-tracker.ts: input_tokens/output_tokens 加 ?? 0 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: ACP Plan 展示 — 支持 session/update plan 类型的可视化补全 PlanUpdate 类型定义（PlanEntry/Priority/Status），新建 PlanView 组件渲染进度条、状态图标和优先级标签，在 ChatInterface 中处理 plan 更新逻辑。 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: 穷鬼模式下跳过 verification agent 以节省 token Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * test: 补充 RCS 后端 + 前端测试覆盖 (+116 tests) 后端新增 3 个测试文件 (70 tests): - automationState: normalize/snapshot/equals 纯函数 - client-payload: toClientPayload 协议转换 - transport-normalize: normalizePayload + extractContent 前端新增 2 个测试文件 (46 tests): - utils: formatTime/statusClass/truncate/extractEventText 等 - api-client: getUuid/setUuid/api GET/POST 错误处理 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: RCS ACP 页面添加权限模式选择器 + 权限响应修复 - 新增权限模式选择器 UI（6种模式：默认/自动接受编辑/跳过权限/规划/不询问/自动判断） - 权限模式通过 ACP _meta 从 web → acp-link → agent 全链路传递 - 修复 PermissionPanel 点击"允许"发送 cancelled 而非 selected 的 bug - 权限模式和模型选择持久化到 localStorage - acp-link 直接连接路径同步支持 permissionMode 透传 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: RCS Web UI 重构 + QR 修复 + ACP 扫描自动跳转 - RCS Web UI 组件全面重构: Dialog 迁移 Radix UI, lazy loading, 主题系统改进, 组件样式优化 - IdentityPanel QR 码显示修复: requestAnimationFrame 延迟绘制解决 Radix Dialog Portal 挂载时序问题 - ACP QR 扫描自动跳转: IdentityPanel 扫描 ACP 格式 { url, token } 后存储 sessionStorage 并跳转 /code/?acp=1 - 新增 ACPDirectView 组件: ACP 直连视图, 用 ACPClient 连接并渲染 ACPMain 聊天界面 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: ACP 权限管道改进 — 模式同步 + bypass 检测 + 统一权限流水线 - agent.ts: applySessionMode 同步 appState.toolPermissionContext.mode - agent.ts: bypassPermissions 可用性检测 (非 root 或 sandbox 环境) - permissions.ts: createAcpCanUseTool 接入 hasPermissionsToUseTool 统一权限流水线, 替代原来分散的处理逻辑 - permissions.ts: 支持 onModeChange 回调, 模式变更时实时同步 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * fix: acp-link 支持 permissionMode 默认值传递给 agent 客户端 (Zed/VS Code 等) 的 new_session 不一定携带 permissionMode, 导致 agent 收到 _meta: undefined, permission 回退到 default。修复: handleNewSession 使用 fallback 链: 客户端传值 > config.permissionMode > ACP_PERMISSION_MODE 环境变量使用: ACP_PERMISSION_MODE=auto acp-link claude Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * docs: 更新文档及说明 * fix: 修复类型错误 * chore: 提交脚本 --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
2026-06-17 13:55:50 +00:00 · 2026-04-19 08:27:25 +08:00 · 2026-04-18 21:54:22 +08:00 · 2026-04-18 17:59:29 +08:00 · 2026-04-17 21:37:43 +08:00 · 2026-04-17 12:45:56 +00:00
442 changed files with 41917 additions and 6143 deletions
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -8,7 +8,7 @@ on:
 jobs:
  ci:
-    runs-on: macos-latest
+    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
@@ -23,8 +23,16 @@ jobs:
      - name: Type check
        run: bunx tsc --noEmit
-      - name: Test
+      - name: Test with Coverage
-        run: bun test
+        run: |
          set -o pipefail
          bun test --coverage --coverage-reporter=lcov 2>&1 | grep -vE '^\s*(\(pass\)|\(skip\))' | sed '/^.*\/__tests__\/.*:$/d' | cat -s
      - name: Upload coverage to Codecov
        uses: codecov/codecov-action@v5
        with:
          file: ./coverage/lcov.info
          token: ${{ secrets.CODECOV_TOKEN }}
      - name: Build
-        run: bun run build
+        run: bun run build:vite
--- a/.gitignore
+++ b/.gitignore
@@ -13,9 +13,8 @@ src/utils/vendor/
 # AI tool runtime directories
 .agents/
 .claude/
 .codex/
 .omx/
-
+.docs/task/
 # Binary / screenshot files (root only)
 /*.png
 *.bmp
@@ -30,3 +29,12 @@ __pycache__/
 logs
 data
 .omc
 .codex/*
 !.codex/agents/
 !.codex/agents/**
 !.codex/skills/
 !.codex/skills/**
 .codex/skills/.system/**
 !.codex/prompts/
 !.codex/prompts/**
--- a/.impeccable.md
+++ b/.impeccable.md
@@ -0,0 +1,78 @@
 # Impeccable Design Context
 ## Users
 **Primary**: Technical teams and enterprises using AI-assisted coding in production workflows.
 - DevOps engineers managing remote agents via RCS dashboard
 - Development teams collaborating through shared sessions
 - Individual developers using terminal CLI daily
 **Context**: Used during focused work sessions — debugging, code review, agent orchestration. Users are in "get things done" mode, not browsing. They value efficiency but also appreciate warmth and personality.
 **Job to be done**: Make advanced AI coding tools accessible and controllable, especially features that normally require enterprise accounts or Anthropic OAuth.
 ## Brand Personality
 **3 words**: Warm, Considered, Human
 **Voice**: Like a knowledgeable colleague who's genuinely enthusiastic about the craft — not a corporate product manager. Community-first, open, slightly playful. Chinese developer community culture (贴吧/discord 温暖氛围).
 **Emotional goals**: Confidence (this tool is solid), Warmth (this community is welcoming), Delight (small moments of personality make the difference).
 **References**:
 - **Anthropic's own design language** — their clean, considered aesthetic with warm undertones. The terra cotta/burnt orange as a human accent. Lots of breathing room. Typography-forward.
 - **NOT**: Generic AI product (no ChatGPT blue, no gradient text, no "AI slop"). NOT corporate SaaS (no Salesforce-blue dashboards, no enterprise sterility).
 **Anti-references**: Corporate enterprise dashboards, generic AI product pages, anything that looks like it was "designed by committee."
 ## Aesthetic Direction
 **Theme**: Light + Dark dual mode (user/system preference switch)
 **Tone**: Anthropomorphic warmth meets terminal precision. The brand orange (Claude's terra cotta) is the thread that ties everything together — it's the human element in a technical world.
 **Typography**: Clean, considered, with good hierarchy. Terminal-native for CLI; modern web fonts for Web UI (RCS dashboard, docs). Favor readability and personality.
 **Color**:
 - Primary: Claude orange family (`#D77757` / terra cotta)
 - Accent: Warm neutrals tinted toward orange
 - Semantic: Success/Error/Warning following Anthropic's established palette
 - Dark mode: Warm dark surfaces (not cold blue-black)
 **Differentiation**: The CCB brand sits at the intersection of "serious tool" and "community project." It should feel like Anthropic's design principles applied to an open-source context — less corporate polish, more human craft. The mascot "Clawd" and the playful "踩踩背" naming hint at personality that the design should honor.
 **Scope**: All Web UI — RCS control panel, documentation site, landing pages.
 ## Design Principles
 1. **Considered over clever** — Every design choice should feel intentional, not trendy. If it doesn't serve the user, it doesn't ship.
 2. **Warmth through subtlety** — Orange tints on neutrals, breathing room in layouts, personality in copy. Not giant emoji or aggressive color.
 3. **Density with clarity** — Technical users need information density, but not chaos. Every pixel earns its place.
 4. **Community voice** — The design should feel like it was made by people who use it, not by a distant design team. Slightly rough edges are fine if they're honest.
 5. **Anthropic's shadow** — When in doubt, follow Anthropic's design instincts — the clean layouts, the generous spacing, the warm color temperature. Then add the community touch.
 ## Existing Design Assets
 ### Brand Colors (from theme system)
 - Claude Orange: `rgb(215,119,87)` / `#D77757`
 - Claude Blue: `rgb(87,105,247)` / `#5769F7`
 - Permission Blue: `rgb(87,105,247)`
 - Auto Accept Violet: `rgb(135,0,255)`
 - Plan Mode Teal: `rgb(0,102,102)`
 - Success: `rgb(78,186,101)`
 - Error: `rgb(255,107,128)`
 - Warning: `rgb(255,193,7)`
 ### Logo
 - CCB text + orange play button icon
 - Dark/Light SVG variants in `docs/logo/`
 - Favicon: Orange circle `#D97706` with white play triangle
 ### Mascot
 - "Clawd" — terminal-art character with multiple poses
 - Theme-aware coloring
 ### Theme System
 - 7 variants: dark, light, dark-ansi, light-ansi, dark-daltonized, light-daltonized, auto
 - 89+ semantic color tokens
 - Full documentation in `packages/@ant/ink/docs/04-theme-system.md`
--- a/CLAUDE.md
+++ b/CLAUDE.md
@@ -4,7 +4,7 @@ This file provides guidance to Claude Code (claude.ai/code) when working with co
 ## Project Overview
-This is a **reverse-engineered / decompiled** version of Anthropic's official Claude Code CLI tool. The goal is to restore core functionality while trimming secondary capabilities. Many modules are stubbed or feature-flagged off. TypeScript strict mode is enforced — **`bunx tsc --noEmit` must pass with zero errors**.
+This is a **reverse-engineered / decompiled** version of Anthropic's official Claude Code CLI tool. The goal is to restore core functionality while trimming secondary capabilities. Many modules are stubbed or feature-flagged off. TypeScript strict mode is enforced（见 Working with This Codebase 段的 tsc 要求）。
 ## Git Commit Message Convention
@@ -39,8 +39,11 @@ echo "say hello" | bun run src/entrypoints/cli.tsx -p
 # Build (code splitting, outputs dist/cli.js + chunk files)
 bun run build
 # Build with Vite (alternative build pipeline)
 bun run build:vite
 # Test
-bun test                  # run all tests (2453 tests / 137 files / 0 fail)
+bun test                  # run all tests (3175 tests / 207 files / 0 fail)
 bun test src/utils/__tests__/hash.test.ts   # run single file
 bun test --coverage       # with coverage report
@@ -55,6 +58,8 @@ bun run health
 # Check unused exports
 bun run check:unused
 bun run typecheck
 # Remote Control Server
 bun run rcs
@@ -72,14 +77,14 @@ bun run docs:dev
 - **Build**: `build.ts` 执行 `Bun.build()` with `splitting: true`，入口 `src/entrypoints/cli.tsx`，输出 `dist/cli.js` + chunk files。Build 默认启用 19 个 feature（见下方 Feature Flag 段）。构建后自动替换 `import.meta.require` 为 Node.js 兼容版本（产物 bun/node 都可运行）。
 - **Dev mode**: `scripts/dev.ts` 通过 Bun `-d` flag 注入 `MACRO.*` defines，运行 `src/entrypoints/cli.tsx`。默认启用全部 feature。
 - **Module system**: ESM (`"type": "module"`), TSX with `react-jsx` transform.
- **Monorepo**: Bun workspaces — 14 个 internal packages in `packages/` resolved via `workspace:*`。
+- **Monorepo**: Bun workspaces — 15 个 workspace packages + 若干辅助目录 in `packages/` resolved via `workspace:*`。
 - **Lint/Format**: Biome (`biome.json`)。`bun run lint` / `bun run lint:fix` / `bun run format`。
 - **Defines**: 集中管理在 `scripts/defines.ts`。当前版本 `2.1.888`。
 - **CI**: GitHub Actions — `ci.yml`（构建+测试）、`release-rcs.yml`（RCS 发布）、`update-contributors.yml`（自动更新贡献者）。
 ### Entry & Bootstrap
-1. **`src/entrypoints/cli.tsx`** (323 行) — True entrypoint。`main()` 函数按优先级处理多条快速路径：
+1. **`src/entrypoints/cli.tsx`** (373 行) — True entrypoint。`main()` 函数按优先级处理多条快速路径：
   - `--version` / `-v` — 零模块加载
   - `--dump-system-prompt` — feature-gated (DUMP_SYSTEM_PROMPT)
   - `--claude-in-chrome-mcp` / `--chrome-native-host`
@@ -92,7 +97,7 @@ bun run docs:dev
   - `environment-runner` / `self-hosted-runner` — BYOC runner
   - `--tmux` + `--worktree` 组合
   - 默认路径：加载 `main.tsx` 启动完整 CLI
-2. **`src/main.tsx`** (~6970 行) — Commander.js CLI definition。注册大量 subcommands：`mcp` (serve/add/remove/list...)、`server`、`ssh`、`open`、`auth`、`plugin`、`agents`、`auto-mode`、`doctor`、`update` 等。主 `.action()` 处理器负责权限、MCP、会话恢复、REPL/Headless 模式分发。
+2. **`src/main.tsx`** (~6981 行) — Commander.js CLI definition。注册大量 subcommands：`mcp` (serve/add/remove/list...)、`server`、`ssh`、`open`、`auth`、`plugin`、`agents`、`auto-mode`、`doctor`、`update` 等。主 `.action()` 处理器负责权限、MCP、会话恢复、REPL/Headless 模式分发。
 3. **`src/entrypoints/init.ts`** — One-time initialization (telemetry, config, trust dialog)。
 ### Core Loop
@@ -110,8 +115,8 @@ bun run docs:dev
 ### Tool System
 - **`src/Tool.ts`** — Tool interface definition (`Tool` type) and utilities (`findToolByName`, `toolMatchesName`).
- **`src/tools.ts`** (387 行) — Tool registry. Assembles the tool list; some tools are conditionally loaded via `feature()` flags or `process.env.USER_TYPE`.
+- **`src/tools.ts`** (392 行) — Tool registry. Assembles the tool list; tools are imported from `@claude-code-best/builtin-tools` package. Some tools are conditionally loaded via `feature()` flags or `process.env.USER_TYPE`.
- **`src/tools/<ToolName>/`** — 55 个 tool 目录。主要分类：
+- **`packages/builtin-tools/src/tools/`** — 59 个子目录（含 shared/testing 等工具目录），通过 `@claude-code-best/builtin-tools` 包导出。主要分类：
  - **文件操作**: FileEditTool, FileReadTool, FileWriteTool, GlobTool, GrepTool
  - **Shell/执行**: BashTool, PowerShellTool, REPLTool
  - **Agent 系统**: AgentTool, TaskCreateTool, TaskUpdateTool, TaskListTool, TaskGetTool
@@ -119,7 +124,6 @@ bun run docs:dev
  - **Web/MCP**: WebFetchTool, WebSearchTool, MCPTool, McpAuthTool
  - **调度**: CronCreateTool, CronDeleteTool, CronListTool
  - **其他**: LSPTool, ConfigTool, SkillTool, EnterWorktreeTool, ExitWorktreeTool 等
 - **`src/tools/shared/`** — Tool 共享工具函数。
 ### UI Layer (Ink)
@@ -150,9 +154,17 @@ bun run docs:dev
 | `packages/@ant/computer-use-input/` | 键鼠模拟（dispatcher + darwin/win32/linux backend） |
 | `packages/@ant/computer-use-swift/` | 截图 + 应用管理（dispatcher + per-platform backend） |
 | `packages/@ant/claude-for-chrome-mcp/` | Chrome 浏览器控制（通过 `--chrome` 启用） |
-| `packages/remote-control-server/` | 自托管 Remote Control Server（Docker 部署，含 Web UI） |
+| `packages/@ant/model-provider/` | Model provider 抽象层 |
-| `packages/swarm/` | Swarm 解耦模块 |
+| `packages/builtin-tools/` | 内置工具集（60 个 tool 实现，通过 `@claude-code-best/builtin-tools` 导出） |
-| `packages/shell/` | Shell 抽象 |
+| `packages/agent-tools/` | Agent 工具集 |
 | `packages/acp-link/` | ACP 代理服务器（WebSocket → ACP agent 桥接） |
 | `packages/cc-knowledge/` | Claude Code 知识库（非 workspace 包） |
 | `packages/langfuse-dashboard/` | Langfuse 可观测性面板（非 workspace 包） |
 | `packages/mcp-client/` | MCP 客户端库 |
 | `packages/mcp-server/` | MCP 服务端库（非 workspace 包） |
 | `packages/remote-control-server/` | 自托管 Remote Control Server（Docker 部署，含 Web UI）— Web UI 已重构为 React + Vite + Radix UI，支持 ACP agent 接入 |
 | `packages/swarm/` | Swarm 解耦模块（非 workspace 包） |
 | `packages/shell/` | Shell 抽象（非 workspace 包） |
 | `packages/audio-capture-napi/` | 原生音频捕获（已恢复） |
 | `packages/color-diff-napi/` | 颜色差异计算（完整实现，11 tests） |
 | `packages/image-processor-napi/` | 图像处理（已恢复） |
@@ -161,11 +173,18 @@ bun run docs:dev
 ### Bridge / Remote Control
- **`src/bridge/`** (~37 files) — Remote Control / Bridge 模式。feature-gated by `BRIDGE_MODE`。包含 bridge API、会话管理、JWT 认证、消息传输、权限回调等。Entry: `bridgeMain.ts`。
+- **`src/bridge/`** (~38 files) — Remote Control / Bridge 模式。feature-gated by `BRIDGE_MODE`。包含 bridge API、会话管理、JWT 认证、消息传输、权限回调等。Entry: `bridgeMain.ts`。
- **`packages/remote-control-server/`** — 自托管 RCS，支持 Docker 部署，含 Web UI 控制面板。通过 `bun run rcs` 启动。
+- **`packages/remote-control-server/`** — 自托管 RCS，支持 Docker 部署，含 Web UI 控制面板（React 19 + Vite + Radix UI）。支持 ACP agent 通过 acp-link 接入（ACP WebSocket handler、relay handler、SSE event stream）。通过 `bun run rcs` 启动。
 - CLI 快速路径: `claude remote-control` / `claude rc` / `claude bridge`。
 - 详见 `docs/features/remote-control-self-hosting.md`。
 ### ACP Protocol (Agent Client Protocol)
 - **`src/services/acp/`** — ACP agent 实现，包含 `agent.ts`（AcpAgent 类）、`bridge.ts`（Claude Code ↔ ACP 桥接）、`permissions.ts`（权限处理）、`entry.ts`（入口）。
 - **`packages/acp-link/`** — ACP 代理服务器，将 WebSocket 客户端桥接到 ACP agent。提供 `acp-link` CLI 命令，支持自定义端口/HTTPS/认证/会话管理、RCS 集成（REST 注册 + WS identify 两步流程）、权限模式透传（fallback: 客户端传值 > config > `ACP_PERMISSION_MODE` 环境变量）。
 - ACP 权限管道改进：`createAcpCanUseTool` 统一权限流水线，`applySessionMode` 模式同步，`bypassPermissions` 可用性检测（非 root/sandbox 环境）。
 - ACP Plan 可视化已支持 `session/update plan` 类型的消息展示（PlanView 组件，含进度条/状态图标/优先级标签）。
 ### Daemon Mode
 - **`src/daemon/`** — Daemon 模式（长驻 supervisor）。feature-gated by `DAEMON`。包含 `main.ts`（entry）和 `workerRegistry.ts`（worker 管理）。
@@ -196,30 +215,13 @@ Feature flags control which functionality is enabled at runtime. 代码中统一
 ### Multi-API 兼容层
-所有兼容层均采用流适配器模式：将第三方 API 格式转为 Anthropic 内部格式，下游代码完全不改。
+支持 OpenAI、Gemini、Grok 三种第三方 API，通过 `/login` 命令配置，均采用流适配器模式转为 Anthropic 内部格式。详见各兼容层的 docs 文档。
-#### OpenAI 兼容层
+### 穷鬼模式（Budget Mode）
-通过 `CLAUDE_CODE_USE_OPENAI=1` 启用，支持 Ollama/DeepSeek/vLLM 等任意 OpenAI Chat Completions 协议端点。含 DeepSeek thinking mode 支持。
+- 通过 `/poor` 命令切换，持久化到 `settings.json`。
-
+- 启用后跳过 `extract_memories`、`prompt_suggestion` 和 `verification_agent`，显著减少 token 消耗。
- **`src/services/api/openai/`** — client、消息/工具转换、流适配、模型映射
+- 实现在 `src/commands/poor/poorMode.ts`。
 - 关键环境变量：`CLAUDE_CODE_USE_OPENAI`、`OPENAI_API_KEY`、`OPENAI_BASE_URL`、`OPENAI_MODEL`
 #### Gemini 兼容层
 通过 `CLAUDE_CODE_USE_GEMINI=1` 启用。独立环境变量体系。
 - **`src/services/api/gemini/`** — client、模型映射、类型定义
 - 关键环境变量：`GEMINI_API_KEY`（必填）、`GEMINI_MODEL`（直接指定）、`GEMINI_DEFAULT_SONNET_MODEL`/`GEMINI_DEFAULT_OPUS_MODEL`（按能力映射）
 - 模型映射优先级：`GEMINI_MODEL` > `GEMINI_DEFAULT_*_MODEL` > `ANTHROPIC_DEFAULT_*_MODEL`(已废弃) > 原样返回
 #### Grok 兼容层
 通过 `CLAUDE_CODE_USE_GROK=1` 启用。自定义模型映射支持 xAI Grok API。
 - **`src/services/api/grok/`** — client、模型映射
 详见各兼容层的 docs 文档。
 ### Stubbed/Deleted Modules
@@ -245,20 +247,29 @@ Feature flags control which functionality is enabled at runtime. 代码中统一
 ## Testing
 - **框架**: `bun:test`（内置断言 + mock）
- **当前状态**: 2472 tests / 138 files / 0 fail
+- **当前状态**: 3175 tests / 207 files / 0 fail
 - **单元测试**: 就近放置于 `src/**/__tests__/`，文件名 `<module>.test.ts`
 - **集成测试**: `tests/integration/` — 4 个文件（cli-arguments, context-build, message-pipeline, tool-chain）
 - **共享 mock/fixture**: `tests/mocks/`（api-responses, file-system, fixtures/）
 - **命名**: `describe("functionName")` + `test("behavior description")`，英文
 - **Mock 模式**: 对重依赖模块使用 `mock.module()` + `await import()` 解锁（必须内联在测试文件中，不能从共享 helper 导入）
 - **包测试**: `packages/` 下各包也有独立测试（如 `color-diff-napi` 11 tests）
 ### Mock 使用规范
 **只 mock 有副作用的依赖链，不 mock 纯函数/纯数据模块。**
 被迫 mock 的根源：`log.ts` / `debug.ts` → `bootstrap/state.ts`（模块级 `realpathSync` / `randomUUID` 副作用）。必须 mock 的模块：`log.ts`、`debug.ts`、`bun:bundle`、`settings/settings.js`、`config.ts`、`auth.ts`、第三方网络库。
 不要 mock：纯函数模块（`errors.ts`、`stringUtils.js`）、mock 值与真实实现相同的模块、mock 路径与实际 import 不匹配的模块。
 路径规则：统一用 `.ts` 扩展名 + `src/*` 别名路径，禁止双重 mock 同一模块。
 ### 类型检查
 项目使用 TypeScript strict 模式，**tsc 必须零错误**。每次修改后运行：
 ```bash
-bunx tsc --noEmit
+bun run typecheck          # equivalent to bun run typecheck
 ```
 **类型规范**：
@@ -271,7 +282,7 @@ bunx tsc --noEmit
 ## Working with This Codebase
- **tsc must pass** — `bunx tsc --noEmit` 必须零错误，任何修改都不能引入新的类型错误。
+- **tsc must pass** — `bun run typecheck` 必须零错误，任何修改都不能引入新的类型错误。
 - **Feature flags** — 默认全部关闭（`feature()` 返回 `false`）。Dev/build 各有自己的默认启用列表。不要在 `cli.tsx` 中重定义 `feature` 函数。
 - **React Compiler output** — Components have decompiled memoization boilerplate (`const $ = _c(N)`). This is normal.
 - **`bun:bundle` import** — `import { feature } from 'bun:bundle'` 是 Bun 内置模块，由运行时/构建器解析。不要用自定义函数替代它。**`feature()` 只能直接用在 `if` 语句或三元表达式的条件位置**（Bun 编译器限制），不能赋值给变量、不能放在箭头函数体里、不能作为 `&&` 链的一部分。正确：`if (feature('X')) {}` 或 `feature('X') ? a : b`。
@@ -281,3 +292,29 @@ bunx tsc --noEmit
 - **Biome 配置** — 大量 lint 规则被关闭（decompiled 代码不适合严格 lint）。`.tsx` 文件用 120 行宽 + 强制分号；其他文件 80 行宽 + 按需分号。
 - **Ink 框架在 `packages/@ant/ink/`** — 不是 `src/ink/`（该目录不存在）。Ink 相关的组件、hooks、keybindings 都在 packages 中。
 - **Provider 优先级** — `modelType` 参数 > 环境变量 > 默认 `firstParty`。新增 provider 需在 `src/utils/model/providers.ts` 注册。
 ## Design Context
 Impeccable 设计上下文保存在 `.impeccable.md` 中。设计 Web UI（RCS 控制面板、文档站、着陆页）时必须参考该文件。
 ### 核心设计原则
 1. **Considered over clever** — 每个设计选择都应感觉有意为之，而非追逐潮流
 2. **Warmth through subtlety** — 通过橙色色调的中性色、留白布局、有温度的文案来传达温暖
 3. **Density with clarity** — 技术用户需要信息密度，但不能混乱
 4. **Community voice** — 设计应感觉是由使用者创造的，而非遥远的设计团队
 5. **Anthropic's shadow** — 遵循 Anthropic 的设计直觉：干净的布局、充足的间距、温暖的色温
 ### 品牌色
 - 主色：Claude Orange `#D77757`（terra cotta）
 - 辅色：Claude Blue `#5769F7`
 - 暗色模式使用温暖的深色表面（非冷蓝黑色）
 ### 目标用户
 技术团队/企业，在专业工作流中使用 AI 辅助编程。友好的开源社区氛围，非企业 SaaS 风格。
 ### 视觉参考
 Anthropic 公司的设计风格 — 干净、考究、温暖的底色。大量留白，以排版为核心。避免 AI 产品常见的设计套路（渐变文字、玻璃态、霓虹色）。
--- a/README.md
+++ b/README.md
@@ -10,27 +10,25 @@
 > Which Claude do you like? The open source one is the best.
-牢 A (Anthropic) 官方 [Claude Code](https://docs.anthropic.com/en/docs/claude-code) CLI 工具的源码反编译/逆向还原项目。目标是将 Claude Code 大部分功能及工程化能力复现 (问就是老佛爷已经付过钱了)。虽然很难绷, 但是它叫做 CCB(踩踩背)...
+牢 A (Anthropic) 官方 [Claude Code](https://docs.anthropic.com/en/docs/claude-code) CLI 工具的源码反编译/逆向还原项目。目标是将 Claude Code 大部分功能及工程化能力复现 (问就是老佛爷已经付过钱了)。虽然很难绷, 但是它叫做 CCB(踩踩背)... 而且, 我们实现了企业版或者需要登陆 Claude 账号才能使用的特性, 实现技术普惠
 [文档在这里, 支持投稿 PR](https://ccb.agent-aura.top/) | [留影文档在这里](./Friends.md) | [Discord 群组](https://discord.gg/qZU6zS7Q)
 | 特性 | 说明 | 文档 |
 |------|------|------|
 | **Claude 群控技术** | Pipe IPC 多实例协作：同机 main/sub 自动编排 + LAN 跨机器零配置发现与通讯，`/pipes` 选择面板 + `Shift+↓` 交互 + 消息广播路由 | [Pipe IPC](https://ccb.agent-aura.top/docs/features/pipes-and-lan) / [LAN](https://ccb.agent-aura.top/docs/features/lan-pipes) |
-| Remote Control 私有部署 | Docker 自托管 RCS + Web UI | [文档](https://ccb.agent-aura.top/docs/features/remote-control-self-hosting) |
+| **ACP 协议一等一支持** | 支持接入 Zed、Cursor 等 IDE，支持会话恢复、Skills、权限桥接 | [文档](https://ccb.agent-aura.top/docs/features/acp-zed) |
-| /dream 记忆整理 | 自动整理和优化记忆文件 | [文档](https://ccb.agent-aura.top/docs/features/auto-dream) |
+| **Remote Control 私有部署** | Docker 自托管远程界面, 可以手机上看 CC | [文档](https://ccb.agent-aura.top/docs/features/remote-control-self-hosting) |
-| Web Search | 内置网页搜索工具 | [文档](https://ccb.agent-aura.top/docs/features/web-browser-tool) |
+| **Langfuse 监控** | 企业级 Agent 监控, 可以清晰看到每次 agent loop 细节, 可以一键转化为数据集 | [文档](https://ccb.agent-aura.top/docs/features/langfuse-monitoring) |
-| 自定义模型供应商 | OpenAI/Anthropic/Gemini/Grok 兼容 | [文档](https://ccb.agent-aura.top/docs/features/custom-platform-login) |
+| **Web Search** | 内置网页搜索工具, 支持 bing 和 brave 搜索 | [文档](https://ccb.agent-aura.top/docs/features/web-browser-tool) |
 | **Poor Mode** | 穷鬼模式，关闭记忆提取和键入建议,大幅度减少并发请求 | /poor 可以开关 |
 | **自定义模型供应商** | OpenAI/Anthropic/Gemini/Grok 兼容 | [文档](https://ccb.agent-aura.top/docs/features/custom-platform-login) |
 | Voice Mode | Push-to-Talk 语音输入 | [文档](https://ccb.agent-aura.top/docs/features/voice-mode) |
 | Computer Use | 屏幕截图、键鼠控制 | [文档](https://ccb.agent-aura.top/docs/features/computer-use) |
-| Chrome Use | 浏览器自动化、表单填写、数据抓取 | [魔改版](docs/features/chrome-use-mcp) [原生版](https://ccb.agent-aura.top/docs/features/claude-in-chrome-mcp) |
+| Chrome Use | 浏览器自动化、表单填写、数据抓取 | [自托管](https://ccb.agent-aura.top/docs/features/chrome-use-mcp) [原生版](https://ccb.agent-aura.top/docs/features/claude-in-chrome-mcp) |
 | Sentry | 企业级错误追踪 | [文档](https://ccb.agent-aura.top/docs/internals/sentry-setup) |
 | GrowthBook | 企业级特性开关 | [文档](https://ccb.agent-aura.top/docs/internals/growthbook-adapter) |
-| Langfuse 监控 | LLM 调用/工具执行/多 Agent 全链路追踪 | [文档](https://ccb.agent-aura.top/docs/features/langfuse-monitoring) |
+| /dream 记忆整理 | 自动整理和优化记忆文件 | [文档](https://ccb.agent-aura.top/docs/features/auto-dream) |
 | Poor Mode | 穷鬼模式，关闭记忆提取和键入建议 | /poor 可以开关 |
 - 🔮 [ ] V6 — 大规模重构石山代码，全面模块分包（全新分支，main 封存为历史版本）
 - 🚀 [想要启动项目](#快速开始源码版)
 - 🐛 [想要调试项目](#vs-code-调试)
--- a/build.ts
+++ b/build.ts
@@ -11,6 +11,7 @@ rmSync(outdir, { recursive: true, force: true })
 // Default features that match the official CLI build.
 // Additional features can be enabled via FEATURE_<NAME>=1 env vars.
 const DEFAULT_BUILD_FEATURES = [
  'BUDDY', 'TRANSCRIPT_CLASSIFIER', 'BRIDGE_MODE',
  'AGENT_TRIGGERS_REMOTE',
  'CHICAGO_MCP',
  'VOICE_MODE',
@@ -30,6 +31,8 @@ const DEFAULT_BUILD_FEATURES = [
  'ULTRAPLAN',
  // P2: daemon + remote control server
  'DAEMON',
  // ACP (Agent Client Protocol) agent mode
  'ACP',
  // PR-package restored features
  'WORKFLOW_SCRIPTS',
  'HISTORY_SNIP',
@@ -40,6 +43,8 @@ const DEFAULT_BUILD_FEATURES = [
  'KAIROS',
  'COORDINATOR_MODE',
  'LAN_PIPES',
  'BG_SESSIONS',
  'TEMPLATES',
  // 'REVIEW_ARTIFACT', // API 请求无响应，需进一步排查 schema 兼容性
  // P3: poor mode (disable extract_memories + prompt_suggestion)
  'POOR',
@@ -88,8 +93,27 @@ for (const file of files) {
  }
 }
 // Also patch unguarded globalThis.Bun destructuring from third-party deps
 // (e.g. @anthropic-ai/sandbox-runtime) so Node.js doesn't crash at import time.
 let bunPatched = 0
 const BUN_DESTRUCTURE = /var \{([^}]+)\} = globalThis\.Bun;?/g
 const BUN_DESTRUCTURE_SAFE = 'var {$1} = typeof globalThis.Bun !== "undefined" ? globalThis.Bun : {};'
 for (const file of files) {
  if (!file.endsWith('.js')) continue
  const filePath = join(outdir, file)
  const content = await readFile(filePath, 'utf-8')
  if (BUN_DESTRUCTURE.test(content)) {
    await writeFile(
      filePath,
      content.replace(BUN_DESTRUCTURE, BUN_DESTRUCTURE_SAFE),
    )
    bunPatched++
  }
 }
 BUN_DESTRUCTURE.lastIndex = 0
 console.log(
-  `Bundled ${result.outputs.length} files to ${outdir}/ (patched ${patched} for Node.js compat)`,
+  `Bundled ${result.outputs.length} files to ${outdir}/ (patched ${patched} for import.meta.require, ${bunPatched} for Bun destructure)`,
 )
 // Step 4: Copy native .node addon files (audio-capture)
@@ -119,46 +143,7 @@ const cliNode = join(outdir, 'cli-node.js')
 await writeFile(cliBun, '#!/usr/bin/env bun\nimport "./cli.js"\n')
-// Node.js entry needs a Bun API polyfill because Bun.build({ target: 'bun' })
+await writeFile(cliNode, '#!/usr/bin/env node\nimport "./cli.js"\n')
 // emits globalThis.Bun references (e.g. Bun.$ shell tag in computer-use-input,
 // Bun.which in chunk-ys6smqg9) that crash at import time under plain Node.js.
 const NODE_BUN_POLYFILL = `#!/usr/bin/env node
 // Bun API polyfill for Node.js runtime
 if (typeof globalThis.Bun === "undefined") {
  const { execFileSync } = await import("child_process");
  const { resolve, delimiter } = await import("path");
  const { accessSync, constants: { X_OK } } = await import("fs");
  function which(bin) {
    const isWin = process.platform === "win32";
    const pathExt = isWin ? (process.env.PATHEXT || ".EXE").split(";") : [""];
    for (const dir of (process.env.PATH || "").split(delimiter)) {
      for (const ext of pathExt) {
        const candidate = resolve(dir, bin + ext);
        try { accessSync(candidate, X_OK); return candidate; } catch {}
      }
    }
    return null;
  }
  // Bun.$ is the shell template tag (e.g. $\`osascript ...\`). Only used by
  // computer-use-input/darwin — stub it so the top-level destructuring
  // \`var { $ } = globalThis.Bun\` doesn't crash.
  function $(parts, ...args) {
    throw new Error("Bun.$ shell API is not available in Node.js. Use Bun runtime for this feature.");
  }
  function hash(data, seed) {
    let h = ((seed || 0) ^ 0x811c9dc5) >>> 0;
    for (let i = 0; i < data.length; i++) {
      h ^= data.charCodeAt(i);
      h = Math.imul(h, 0x01000193) >>> 0;
    }
    return h;
  }
  globalThis.Bun = { which, $, hash };
 }
 import "./cli.js"
 `
 await writeFile(cliNode, NODE_BUN_POLYFILL)
 // NOTE: when new Bun-specific globals appear in bundled output, add them here.
 // Make both executable
 const { chmodSync } = await import('fs')
--- a/bun.lock
+++ b/bun.lock
--- a/contributors.svg
+++ b/contributors.svg
--- a/docs/diagrams/agent-loop-simple.mmd
+++ b/docs/diagrams/agent-loop-simple.mmd
@@ -0,0 +1,17 @@
 flowchart TB
    START((输入)) --> CTX["Context 管理"]
    CTX --> LLM["LLM 流式输出"]
    LLM --> TC{tool_use?}
    TC --> |是| EXEC["执行工具"]
    EXEC --> CTX
    TC --> |否| DONE((完成))
    classDef proc fill:#eef,stroke:#66c,color:#224
    classDef decision fill:#fee,stroke:#c66,color:#422
    classDef io fill:#eff,stroke:#6cc,color:#244
    class CTX,LLM,EXEC proc
    class TC decision
    class START,DONE io
--- a/docs/diagrams/agent-loop.mmd
+++ b/docs/diagrams/agent-loop.mmd
@@ -0,0 +1,40 @@
 flowchart TB
    START((输入)) --> CTX["Context 管理"]
    CTX --> PRE["Pre-sampling Hook"]
    PRE --> LLM["LLM 流式输出"]
    LLM --> TC{tool_use?}
    TC --> |是| PERM{需权限?}
    PERM --> |是| USER["👤 用户审批"]
    USER --> |allow| TOOL_PRE
    USER --> |deny| DENIED["拒绝"]
    PERM --> |否| TOOL_PRE["Pre-tool Hook"]
    TOOL_PRE --> EXEC["并发执行工具"]
    EXEC --> TOOL_POST["Post-tool Hook"]
    TOOL_POST --> CTX
    DENIED --> CTX
    TC --> |否| POST["Post-sampling Hook"]
    POST --> STOP{"Stop Hook"}
    STOP --> |不通过| CTX
    STOP --> |通过| BUDGET{"Token Budget"}
    BUDGET --> |继续| CTX
    BUDGET --> |完成| DONE((完成))
    subgraph SUB["子 Agent"]
        FORK["AgentTool"] --> RECURSE["递归调用"]
    end
    EXEC -.-> FORK
    classDef proc fill:#eef,stroke:#66c,color:#224
    classDef decision fill:#fee,stroke:#c66,color:#422
    classDef hook fill:#ffe,stroke:#cc6,color:#442
    classDef io fill:#eff,stroke:#6cc,color:#244
    classDef sub fill:#efe,stroke:#6a6,color:#242
    class CTX,LLM,EXEC proc
    class TC,PERM,STOP,BUDGET decision
    class PRE,TOOL_PRE,TOOL_POST,POST hook
    class START,DONE,USER,DENIED io
    class FORK,RECURSE sub
--- a/docs/features/acp-link.md
+++ b/docs/features/acp-link.md
@@ -0,0 +1,205 @@
 # acp-link — ACP 代理服务器
 > 源码目录：`packages/acp-link/`
 > PR: #292
 > 新增时间：2026-04-18
 ## 一、功能概述
 `acp-link` 是一个 ACP (Agent Client Protocol) 代理服务器，将 WebSocket 客户端桥接到 ACP agent 的 stdio 接口。它让 ACP agent（如 Claude Code）可以通过 WebSocket 远程访问，而不仅限于本地 stdio。
 ### 核心特性
 - **WebSocket → stdio 桥接**：将浏览器/远程客户端的 WebSocket 连接转换为 ACP agent 的 stdin/stdout NDJSON 流
 - **会话管理**：创建、加载、恢复、列出、关闭会话
 - **权限审批流程**：客户端可远程审批 agent 的工具权限请求
 - **RCS 集成**：可与 Remote Control Server (RCS) 连接，将 ACP agent 注册到 RCS 并通过 Web UI 交互
 - **HTTPS 支持**：内置自签名证书生成，支持安全连接
 - **Token 认证**：自动生成或通过环境变量配置认证 token
 ## 二、架构
 ### 独立模式
 ```
 ┌──────────────────┐    WebSocket     ┌──────────────────┐    stdio/NDJSON    ┌──────────────┐
 │  浏览器/客户端     │ ◄──────────────►│  acp-link        │ ◄────────────────►│  ACP Agent   │
 │  (WS Client)     │  ws://host:port  │  (Proxy Server)  │  spawn subprocess │  (Claude等)   │
 └──────────────────┘                  └──────────────────┘                    └──────────────┘
 ```
 ### RCS 集成模式
 ```
 ┌──────────────┐    WebSocket     ┌──────────────────┐    stdio/NDJSON    ┌──────────────┐
 │  RCS Web UI  │ ◄──────────────►│  Remote Control  │ ◄─────────────────►│  acp-link    │
 │  (/code/*)   │  ACP Relay WS   │  Server (RCS)    │  ACP events        │  + Agent     │
 └──────────────┘                  └──────────────────┘                    └──────────────┘
 ```
 ### 文件结构
 ```
 packages/acp-link/
 ├── src/
 │   ├── server.ts        # 主服务器：WS 连接管理、会话管理、权限处理、消息桥接
 │   ├── rcs-upstream.ts  # RCS 上游客户端：REST 注册 + WS identify 两步流程
 │   ├── cert.ts          # TLS 证书生成（自签名）
 │   ├── logger.ts        # 日志模块
 │   ├── types.ts         # JSON-RPC 和 ACP 协议类型定义
 │   ├── cli/
 │   │   ├── bin.ts       # CLI 入口
 │   │   ├── command.ts   # 命令行参数解析
 │   │   ├── app.ts       # 应用启动
 │   │   └── context.ts   # 上下文配置
 │   └── __tests__/       # 测试（cert, server, types）
 ├── package.json
 └── tsconfig.json
 ```
 ## 三、安装与使用
 ### 基本用法
 ```bash
 # 直接运行（在 monorepo 中）
 # 注意：claude 本身不支持 ACP，需要用 ccb-bun --acp 启动 ACP agent
 bun packages/acp-link/src/cli/bin.ts ccb-bun -- --acp
 # 指定端口和主机
 acp-link --port 9000 --host 0.0.0.0 ccb-bun -- --acp
 # 启用 HTTPS（自签名证书）
 acp-link --https ccb-bun -- --acp
 # 调试模式
 acp-link --debug ccb-bun -- --acp
 ```
 ### CLI 参考
 ```
 USAGE
  acp-link [--port value] [--host value] [--debug] [--no-auth] [--https] <command>...
  acp-link --help
  acp-link --version
 FLAGS
       [--port]     Port to listen on                  [default = 9315]
       [--host]     Host to bind to                    [default = localhost]
       [--debug]    Enable debug logging to file
       [--no-auth]  Disable authentication (dangerous)
       [--https]    Enable HTTPS with self-signed cert
    -h  --help      Print help information and exit
    -v  --version   Print version information and exit
 ARGUMENTS
  command...  Agent command followed by its arguments (e.g. "ccb-bun -- --acp")
 ```
 ## 四、认证
 默认启动时自动生成随机 token。客户端连接时需通过 query 参数传递：
 ```
 ws://localhost:9315/ws?token=<your-token>
 ```
 配置固定 token：
 ```bash
 ACP_AUTH_TOKEN=my-fixed-token acp-link ccb-bun -- --acp
 ```
 禁用认证（不推荐，仅用于开发）：
 ```bash
 acp-link --no-auth ccb-bun -- --acp
 ```
 ## 五、RCS 集成
 acp-link 支持将 ACP agent 注册到 Remote Control Server，通过 Web UI 远程操控。
 ### 连接方式
 ```bash
 # 通过环境变量配置 RCS 连接
 ACP_RCS_URL=http://localhost:3000 \
 ACP_RCS_TOKEN=sk-rcs-your-key \
 ACP_RCS_NAME=my-agent \
 acp-link ccb-bun -- --acp
 ```
 ### 注册流程（两步）
 1. **REST 注册**：通过 `POST /v1/environments/bridge` 向 RCS 注册环境
 2. **WS identify**：建立 WebSocket 连接后发送 `identify` 消息（携带 agentId），替代完整 `register`
 ```
 acp-link                          RCS
   │                                │
   │── POST /v1/environments/bridge ──►│  (REST 注册)
   │◄── { agentId, sessionId } ───────│
   │                                │
   │── WS connect ─────────────────►│  (WebSocket)
   │── identify { agentId } ────────►│  (WS 标识)
   │◄── registered ─────────────────│
   │                                │
   │── ACP events ─────────────────►│  (双向消息转发)
   │◄── user prompts/permissions ───│
 ```
 ## 六、权限模式
 ### permissionMode 传递链
 权限模式通过整条链路传递：Web UI → RCS → acp-link → ACP agent。
 支持的权限模式：
 - `default` — 每次请求权限确认
 - `auto` — 自动判断
 - `acceptEdits` — 自动接受编辑
 - `plan` — 规划模式
 - `dontAsk` — 不询问
 - `bypassPermissions` — 绕过权限（需 sandbox 环境）
 ### fallback 链
 当客户端未显式传递 permissionMode 时，使用以下 fallback 链：
 ```
 客户端传值 > config.permissionMode > ACP_PERMISSION_MODE 环境变量
 ```
 示例：
 ```bash
 ACP_PERMISSION_MODE=auto acp-link ccb-bun -- --acp
 ```
 ## 七、权限管道（2026-04-18 改进）
 ### 模式同步
 `applySessionMode` 在 agent 切换权限模式时同步 `appState.toolPermissionContext.mode`，确保内部权限上下文与 ACP 客户端状态一致。
 ### 统一权限流水线
 `createAcpCanUseTool` 接入 `hasPermissionsToUseTool` 统一权限流水线，替代原来分散的处理逻辑。支持 `onModeChange` 回调，模式变更时实时同步。
 ### bypass 检测
 `bypassPermissions` 模式增加可用性检测 — 仅在非 root 或 sandbox 环境中允许启用，防止权限绕过的安全风险。
 ## 八、环境变量
 | 变量 | 说明 |
 |------|------|
 | `ACP_AUTH_TOKEN` | 固定认证 token（默认自动生成） |
 | `ACP_PERMISSION_MODE` | 默认权限模式 fallback |
 | `ACP_RCS_URL` | RCS 服务器地址（启用 RCS 集成） |
 | `ACP_RCS_TOKEN` | RCS API token |
 | `ACP_RCS_NAME` | Agent 名称（在 RCS 中显示） |
 | `ACP_RCS_CHANNEL_GROUP` | Channel group ID |
 | `ACP_MAX_SESSIONS` | 最大会话数 |
--- a/docs/features/acp-zed.md
+++ b/docs/features/acp-zed.md
@@ -0,0 +1,189 @@
 # ACP (Agent Client Protocol) — Zed / IDE 集成
 > Feature Flag: `FEATURE_ACP=1`（build 和 dev 模式默认启用）
 > 实现状态：可用（支持 Zed、Cursor 等 ACP 客户端）
 > 源码目录：`src/services/acp/`
 ## 一、功能概述
 ACP (Agent Client Protocol) 是一种标准化的 stdio 协议，允许 IDE 和编辑器通过 stdin/stdout 的 NDJSON 流驱动 AI Agent。CCB 实现了完整的 ACP agent 端，可以被 Zed、Cursor 等支持 ACP 的客户端直接调用。
 ### 核心特性
 - **会话管理**：新建 / 恢复 / 加载 / 分叉 / 关闭会话
 - **历史回放**：恢复会话时自动加载并回放对话历史
 - **权限桥接**：ACP 客户端的权限决策映射到 CCB 的工具权限系统
 - **斜杠命令 & Skills**：加载真实命令列表，支持 `/commit`、`/review` 等 prompt 型 skill
 - **Context Window 跟踪**：精确的 usage_update，含 model prefix matching
 - **Prompt 排队**：支持连续发送多条 prompt，自动排队处理
 - **模式切换**：auto / default / acceptEdits / plan / dontAsk / bypassPermissions
 - **模型切换**：运行时切换 AI 模型
 ## 二、架构
 ```
 ┌──────────────┐    NDJSON/stdio    ┌──────────────────┐
 │  Zed / IDE   │ ◄────────────────► │  CCB ACP Agent   │
 │  (Client)    │   stdin / stdout   │  (Agent)         │
 └──────────────┘                    │                  │
                                    │  entry.ts        │ ← stdio → NDJSON stream
                                    │  agent.ts        │ ← ACP protocol handler
                                    │  bridge.ts       │ ← SDKMessage → ACP SessionUpdate
                                    │  permissions.ts  │ ← 权限桥接
                                    │  utils.ts        │ ← 通用工具
                                    │                  │
                                    │  QueryEngine     │ ← 内部查询引擎
                                    └──────────────────┘
 ```
 ### 文件职责
 | 文件 | 职责 |
 |------|------|
 | `entry.ts` | 入口，创建 stdio → NDJSON stream，启动 `AgentSideConnection` |
 | `agent.ts` | 实现 ACP `Agent` 接口：会话 CRUD、prompt、cancel、模式/模型切换 |
 | `bridge.ts` | `SDKMessage` → ACP `SessionUpdate` 转换：文本/思考/工具/用量/编辑 diff |
 | `permissions.ts` | ACP `requestPermission()` → CCB `CanUseToolFn` 桥接 |
 | `utils.ts` | Pushable、流转换、权限模式解析、session fingerprint、路径显示 |
 ## 三、配置 Zed 编辑器
 ### 3.1 Zed settings.json 配置
 打开 Zed 的 `settings.json`（`Cmd+,` → Open Settings），添加 `agent_servers` 配置：
 ```json
 {
  "agent_servers": {
    "ccb": {
      "type": "custom",
      "command": "ccb",
      "args": ["--acp"]
    }
  }
 }
 ```
 ### 3.3 API 认证配置
 CCB 的 ACP agent 在启动时会自动加载 `settings.json` 中的环境变量（`ANTHROPIC_BASE_URL`、`ANTHROPIC_AUTH_TOKEN` 等）。确保已通过 `/login` 配置好 API 供应商。
 也可通过环境变量传入：
 ```json
 {
  "agent_servers": {
    "claude-code": {
      "command": "ccb",
      "args": ["--acp"],
      "env": {
        "ANTHROPIC_BASE_URL": "https://api.example.com/v1",
        "ANTHROPIC_AUTH_TOKEN": "sk-xxx"
      }
    }
  }
 }
 ```
 ### 3.4 在 Zed 中使用
 1. 配置完成后重启 Zed
 2. 打开任意项目目录
 3. 按 `Cmd+'`（macOS）或 `Ctrl+'`（Linux）打开 Agent Panel
 4. 在 Agent Panel 顶部的下拉菜单中选择 **claude-code**
 5. 开始对话
 ### 3.5 功能说明
 | 功能 | 操作 |
 |------|------|
 | 对话 | 在 Agent Panel 中直接输入消息 |
 | 斜杠命令 | 输入 `/` 查看可用 skills 列表（如 `/commit`、`/review`） |
 | 工具权限 | 弹出权限请求时选择 Allow / Reject / Always Allow |
 | 模式切换 | 通过 Agent Panel 的设置菜单切换 auto/default/plan 等模式 |
 | 模型切换 | 通过 Agent Panel 的设置菜单切换 AI 模型 |
 | 会话恢复 | 关闭重开 Zed 后，之前的会话可自动恢复（含历史消息） |
 ## 四、配置其他 ACP 客户端
 ACP 是开放协议，任何支持 ACP 的客户端都可以连接 CCB。通用配置模式：
 ```
 命令: ccb --acp
 参数: ["--acp"]
 通信: stdin/stdout NDJSON
 协议版本: ACP v1
 ```
 ### 4.1 Cursor
 在 Cursor 的设置中配置 MCP / Agent Server，使用同样的 `ccb --acp` 命令。
 ### 4.2 自定义客户端
 使用 `@agentclientprotocol/sdk` 可以快速构建 ACP 客户端：
 ```typescript
 import { ClientSideConnection, ndJsonStream } from '@agentclientprotocol/sdk'
 // 创建连接（将 ccb --acp 作为子进程启动）
 const child = spawn('ccb', ['--acp'])
 const stream = ndJsonStream(
  Writable.toWeb(child.stdin),
  Readable.toWeb(child.stdout),
 )
 const client = new ClientSideConnection(stream)
 // 初始化
 await client.initialize({ clientCapabilities: {} })
 // 创建会话
 const { sessionId } = await client.newSession({
  cwd: '/path/to/project',
 })
 // 发送 prompt
 const response = await client.prompt({
  sessionId,
  prompt: [{ type: 'text', text: 'Hello, explain this project' }],
 })
 // 监听 session 更新
 client.on('sessionUpdate', (update) => {
  console.log('Update:', update)
 })
 ```
 ## 五、ACP 协议支持矩阵
 | 方法 | 状态 | 说明 |
 |------|------|------|
 | `initialize` | ✅ | 返回 agent 信息和能力 |
 | `authenticate` | ✅ | 无需认证（自托管） |
 | `newSession` | ✅ | 创建新会话 |
 | `resumeSession` | ✅ | 恢复已有会话（含历史回放） |
 | `loadSession` | ✅ | 加载指定会话（含历史回放） |
 | `listSessions` | ✅ | 列出可用会话 |
 | `forkSession` | ✅ | 分叉会话 |
 | `closeSession` | ✅ | 关闭会话 |
 | `prompt` | ✅ | 发送消息，支持排队 |
 | `cancel` | ✅ | 取消当前/排队的 prompt |
 | `setSessionMode` | ✅ | 切换权限模式 |
 | `setSessionModel` | ✅ | 切换 AI 模型 |
 | `setSessionConfigOption` | ✅ | 动态修改配置 |
 ### SessionUpdate 类型
 | 类型 | 状态 | 说明 |
 |------|------|------|
 | `agent_message_chunk` | ✅ | 助手文本消息 |
 | `agent_thought_chunk` | ✅ | 思考/推理内容 |
 | `user_message_chunk` | ✅ | 用户消息（历史回放） |
 | `tool_call` | ✅ | 工具调用开始 |
 | `tool_call_update` | ✅ | 工具调用结果/状态更新 |
 | `usage_update` | ✅ | token 用量 + context window |
 | `plan` | ✅ | TodoWrite → plan entries |
 | `available_commands_update` | ✅ | 斜杠命令 & skills 列表 |
 | `current_mode_update` | ✅ | 模式切换通知 |
 | `config_option_update` | ✅ | 配置更新通知 |
--- a/docs/features/chrome-use-mcp.md
+++ b/docs/features/chrome-use-mcp.md
@@ -6,7 +6,7 @@
 ### 第一步：安装 Chrome 扩展
-1. 下载扩展：https://github.com/hangwin/mcp-chrome/releases（下载最新 zip）
+1. 下载扩展：https://github.com/hangwin/mcp-chrome/releases
 2. 解压 zip 文件
 3. 打开 Chrome 访问 `chrome://extensions/`
 4. 开启右上角「开发者模式」
--- a/docs/features/daemon-restructure-design.md
+++ b/docs/features/daemon-restructure-design.md
@@ -0,0 +1,318 @@
 # Daemon 重构设计方案
 > 分支: `feat/integrate-5-branches`
 > 基于: `f41745cb` (= main `11bb3f62` 内容)
 > 日期: 2026-04-13
 ## 一、问题概述
 ### 1.1 命令结构散乱
 当前后台进程相关的命令分布在三个不同的位置，没有统一的命名空间：
 | 命令 | 注册位置 | 入口 |
 |------|---------|------|
 | `claude daemon start/status/stop` | `cli.tsx` 快速路径 L203 | `daemon/main.ts` |
 | `claude ps` | `cli.tsx` 快速路径 L220 | `cli/bg.ts` |
 | `claude logs <x>` | `cli.tsx` 快速路径 L232 | `cli/bg.ts` |
 | `claude attach <x>` | `cli.tsx` 快速路径 L236 | `cli/bg.ts` |
 | `claude kill <x>` | `cli.tsx` 快速路径 L238 | `cli/bg.ts` |
 | `claude --bg` | `cli.tsx` 快速路径 L244 | `cli/bg.ts` |
 | `claude new/list/reply` | `cli.tsx` 快速路径 L250 | `cli/handlers/templateJobs.ts` |
 | `claude rollback` | `main.tsx` Commander.js L6525 | `cli/rollback.ts` |
 | `claude up` | `main.tsx` Commander.js L6511 | `cli/up.ts` |
 **问题**:
 - `ps/logs/attach/kill` 与 `daemon` 逻辑上都是后台进程管理，但互不关联
 - 这些命令都**只有 CLI 入口**，REPL 里输入 `/daemon` 或 `/ps` 不存在
 - `new/list/reply` 是模板任务系统的顶级命令，容易与其他命令冲突（特别是 `list`）
 ### 1.2 Windows 不支持
 `--bg` 和 `attach` 硬依赖 tmux：
 - `bg.ts:handleBgFlag()` 第一步就检查 tmux，不可用直接报错退出
 - `bg.ts:attachHandler()` 用 `tmux attach-session`，无 tmux 替代方案
 - Windows (包括 VS Code 终端) 完全无法使用后台会话功能
 ### 1.3 无 REPL 入口
 对比 `/mcp` 的双注册模式：
 - **CLI**: `claude mcp serve/add/remove/list` (Commander.js, `main.tsx:5760`)
 - **REPL**: `/mcp enable/disable/reconnect` (slash command, `commands/mcp/index.ts`)
 `daemon`/`bg`/`job` 系列只有 CLI 快速路径，REPL 中完全不可用。
 ## 二、目标
 1. **层级化命令结构**: 参照 `/mcp` 模式，将后台管理收归 `/daemon`，模板任务收归 `/job`
 2. **跨平台后台会话**: Windows / macOS / Linux 都能启动、附着、终止后台会话
 3. **双注册**: CLI (`claude daemon ...`) + REPL (`/daemon ...`) 同时可用
 4. **向后兼容**: 旧命令保留但输出 deprecation 提示
 ## 三、命令结构设计
 ### 3.1 `/daemon` — 后台进程管理
 合并 daemon supervisor + bg sessions 为统一命名空间：
 ```
 claude daemon <subcommand>     ← CLI 入口 (cli.tsx 快速路径)
 /daemon <subcommand>           ← REPL 入口 (slash command, local-jsx)
 子命令:
  status                       综合状态面板 (daemon + 所有会话)
  start [--dir <path>]         启动 daemon supervisor
  stop                         停止 daemon
  bg [args...]                 启动后台会话
  attach [target]              附着到后台会话
  logs [target]                查看会话日志
  kill [target]                终止会话
  (无参数)                     等同于 status
 ```
 **CLI 快速路径路由** (`cli.tsx`):
 ```typescript
 // 新: 统一入口
 if (feature('DAEMON') && args[0] === 'daemon') {
  const sub = args[1] || 'status'
  switch (sub) {
    case 'start': case 'stop': case 'status':
      await daemonMain([sub, ...args.slice(2)])
      break
    case 'bg':
      await bg.handleBgStart(args.slice(2))
      break
    case 'attach': case 'logs': case 'kill':
      await bg[`${sub}Handler`](args[2])
      break
  }
 }
 // 向后兼容 (deprecated)
 if (feature('BG_SESSIONS') && ['ps','logs','attach','kill'].includes(args[0])) {
  console.warn(`[deprecated] Use: claude daemon ${args[0] === 'ps' ? 'status' : args[0]}`)
  // ... delegate to daemon subcommand
 }
 ```
 **REPL 斜杠命令** (`commands/daemon/index.ts`):
 ```typescript
 const daemon = {
  type: 'local-jsx',
  name: 'daemon',
  description: 'Manage background sessions and daemon',
  argumentHint: '[status|start|stop|bg|attach|logs|kill]',
  isEnabled: () => feature('DAEMON') || feature('BG_SESSIONS'),
  load: () => import('./daemon.js'),
 } satisfies Command
 ```
 ### 3.2 `/job` — 模板任务管理
 ```
 claude job <subcommand>        ← CLI 入口
 /job <subcommand>              ← REPL 入口
 子命令:
  list                         列出模板和活跃任务
  new <template> [args]        从模板创建任务
  reply <id> <text>            回复任务
  status <id>                  查看任务状态
  (无参数)                     等同于 list
 ```
 ### 3.3 独立命令 (不变)
 ```
 claude up                      保持顶级 (简短的 bootstrap 命令)
 claude rollback [target]       保持顶级 (低频运维命令)
 ```
 ## 四、跨平台后台引擎
 ### 4.1 引擎抽象
 ```typescript
 // src/cli/bg/engine.ts
 export interface BgEngine {
  readonly name: string
  /** 当前平台是否可用 */
  available(): Promise<boolean>
  /** 启动后台会话 */
  start(opts: BgStartOptions): Promise<BgStartResult>
  /** 附着到后台会话（blocking） */
  attach(session: SessionEntry): Promise<void>
 }
 export interface BgStartOptions {
  sessionName: string
  args: string[]
  env: Record<string, string | undefined>
  logPath: string
  cwd: string
 }
 export interface BgStartResult {
  pid: number
  sessionName: string
  logPath: string
  engineUsed: string
 }
 ```
 ### 4.2 三种引擎实现
 | 引擎 | 平台 | 启动方式 | attach 方式 |
 |------|------|---------|------------|
 | TmuxEngine | macOS/Linux (有 tmux) | `tmux new-session -d` | `tmux attach-session` |
 | DetachedEngine | Windows / 无 tmux 的 macOS/Linux | `spawn({ detached, stdio→logFile })` | `tail -f` 日志文件 |
 #### DetachedEngine 详细设计
 **启动 (`start`)**:
 ```typescript
 // 1. 打开日志文件 fd
 const logFd = fs.openSync(logPath, 'a')
 // 2. detached spawn, stdout/stderr 重定向到日志
 const child = spawn(process.execPath, execArgs, {
  detached: true,
  stdio: ['ignore', logFd, logFd],
  env,
  cwd,
 })
 child.unref()
 fs.closeSync(logFd)
 // 3. 写 sessions/<PID>.json
 ```
 **附着 (`attach`)**:
 ```typescript
 // 跨平台 tail -f 实现
 // 1. 读取已有日志内容输出到 stdout
 // 2. fs.watch(logPath) 监听变化
 // 3. 每次变化读取新增内容
 // 4. Ctrl+C 退出 tail（不杀后台进程）
 ```
 #### 引擎选择逻辑
 ```typescript
 // src/cli/bg/engines/index.ts
 export async function selectEngine(): Promise<BgEngine> {
  if (process.platform === 'win32') {
    return new DetachedEngine()
  }
  const tmux = new TmuxEngine()
  if (await tmux.available()) {
    return tmux
  }
  return new DetachedEngine()
 }
 ```
 ### 4.3 SessionEntry 扩展
 ```typescript
 interface SessionEntry {
  // ... 现有字段
  engine: 'tmux' | 'detached'   // 新增: 记录使用的引擎
  tmuxSessionName?: string       // tmux 引擎才有
  logPath?: string               // 两种引擎都有
 }
 ```
 `attach` 时根据 `session.engine` 选择对应的 attach 策略。
 ## 五、文件变更清单
 ### 新增文件 (10 个)
 ```
 src/cli/bg/engine.ts                   BgEngine 接口定义
 src/cli/bg/engines/tmux.ts             TmuxEngine (从 bg.ts 提取)
 src/cli/bg/engines/detached.ts         DetachedEngine (新实现)
 src/cli/bg/engines/index.ts            引擎选择 + re-export
 src/cli/bg/tail.ts                     跨平台日志 tail (用于 detached attach)
 src/commands/daemon/index.ts           /daemon REPL 斜杠命令注册
 src/commands/daemon/daemon.tsx         /daemon 子命令路由 + status UI
 src/commands/job/index.ts              /job REPL 斜杠命令注册
 src/commands/job/job.tsx               /job 子命令路由 + UI
 docs/features/daemon-restructure-design.md  本设计文档
 ```
 ### 修改文件 (6 个)
 ```
 src/cli/bg.ts                          重构: handler 函数改为调用 BgEngine
 src/entrypoints/cli.tsx                快速路径: daemon 统一入口 + 向后兼容
 src/commands.ts                        注册 /daemon 和 /job 斜杠命令
 src/daemon/main.ts                     daemonMain() 增加 bg/ps/logs 子命令分发
 src/main.tsx                           Commander.js: 可选注册 daemon/job 子命令
 src/cli/handlers/templateJobs.ts       适配 /job 入口 (可能不需改)
 ```
 ### 不动的文件
 ```
 src/daemon/state.ts                    daemon PID 状态管理 (无需改)
 src/jobs/state.ts                      job 状态管理 (无需改)
 src/jobs/templates.ts                  模板发现 (无需改)
 src/jobs/classifier.ts                 任务分类器 (无需改)
 src/cli/rollback.ts                    保持顶级命令 (无需改)
 src/cli/up.ts                          保持顶级命令 (无需改)
 ```
 ## 六、可行性分析
 ### 6.1 风险评估
 | 风险 | 级别 | 缓解措施 |
 |------|------|---------|
 | cli.tsx 快速路径修改影响启动性能 | 低 | 仅改路由逻辑，import 仍然 lazy |
 | DetachedEngine 的 attach 在 Windows 上 fs.watch 不可靠 | 中 | 使用轮询 fallback (setInterval + fs.stat) |
 | 向后兼容的 deprecation 可能破坏脚本 | 低 | 旧命令保持可用，仅输出 stderr 警告 |
 | REPL 中 /daemon bg 需要 spawn 子进程 | 中 | 参考 /assistant 的 NewInstallWizard (已有 spawn 先例) |
 | tsc 类型兼容 | 低 | 接口定义清晰，不引入 any |
 ### 6.2 工作量估计
 | Task | 文件数 | 复杂度 |
 |------|--------|--------|
 | Task 013: BgEngine 抽象 + 引擎实现 | 5 新增 + 1 修改 | 中 |
 | Task 014: /daemon 命令层级化 | 3 新增 + 3 修改 | 中 |
 | Task 015: /job 命令层级化 | 2 新增 + 2 修改 | 低 |
 | Task 016: 向后兼容 + 测试 | 0 新增 + 2 修改 | 低 |
 ### 6.3 依赖关系
 ```
 Task 013 (BgEngine) ← 无依赖，可独立开发
 Task 014 (/daemon)  ← 依赖 Task 013 (引擎选择)
 Task 015 (/job)     ← 无依赖，可与 013 并行
 Task 016 (兼容)     ← 依赖 Task 014 + 015
 ```
 ## 七、设计决策记录
 ### D1: 为什么 daemon + bg sessions 合为一个命名空间？
 用户视角：都是"后台运行的东西"。分开会导致 `claude daemon status` 看 supervisor + `claude ps` 看会话，割裂感强。合并后 `claude daemon status` 一次性展示 supervisor 状态 + 所有会话列表。
 ### D2: 为什么 rollback/up 不收入 daemon？
 它们本质是**版本管理/环境初始化**，不是后台进程管理。`claude up` 是同步阻塞的 setup 脚本，不涉及 daemon 或后台会话。保持顶级更直观。
 ### D3: 为什么 DetachedEngine 的 attach 用 tail 而不是 IPC？
 1. 日志文件是最简单的跨平台方案，无需额外依赖
 2. UDS Pipe IPC 系统 (usePipeIpc) 设计用于实例间通信，不是终端附着
 3. tmux attach 的体验（完整 PTY）无法在纯 detached 模式下复制，tail 是最诚实的替代
 ### D4: 为什么不用 Windows Terminal 的 tab/pane API？
 Windows Terminal 的 `wt.exe` 新窗口/标签功能不够通用——用户可能在 VS Code、ConEmu、cmder 等终端中。detached + log 是唯一跨终端方案。
--- a/docs/features/kairos.md
+++ b/docs/features/kairos.md
@@ -1,7 +1,7 @@
 # KAIROS — 常驻助手模式
 > Feature Flag: `FEATURE_KAIROS=1`（及子 Feature）
-> 实现状态：核心框架完整，部分子模块为 stub
+> 实现状态：核心框架完整，部分子模块为 stub；proactive/sleep 节奏控制已可用
 > 引用数：154（全库最大）
 ## 一、功能概述
@@ -74,8 +74,9 @@ KAIROS 在系统提示中注入两大段落：
 SleepTool 是 KAIROS/Proactive 的节奏控制核心。工具描述让模型理解"休眠"概念：
 - 工具名：`Sleep`
- 功能：等待指定时间后响应 tick prompt
+- 功能：等待指定时间后响应 tick prompt；若队列出现新工作或 proactive 被关闭，会提前唤醒
 - 与 `<tick_tag>` 配合实现心跳式自主工作
 - 远程控制 surfaces 可通过 `automation_state` 看到 `standby` / `sleeping` 两种状态
 ### 3.3 Bridge 集成
@@ -172,8 +173,10 @@ FEATURE_KAIROS=1 FEATURE_TOKEN_BUDGET=1 bun run dev
 | `src/assistant/AssistantSessionChooser.ts` | — | Session 选择 UI（stub） |
 | `src/tools/BriefTool/` | — | BriefTool 实现（stub） |
 | `src/tools/SleepTool/prompt.ts` | ~30 | SleepTool 工具提示 |
 | `src/tools/SleepTool/SleepTool.ts` | ~200 | 休眠/唤醒与 automation metadata |
 | `src/services/mcp/channelNotification.ts` | 5 | 频道消息接入（stub） |
 | `src/memdir/memdir.ts` | — | 记忆目录管理（stub） |
 | `src/constants/prompts.ts:552-554,843-914` | 72 | 系统提示注入 |
 | `src/components/tasks/src/tasks/DreamTask/` | 3 | Dream 任务（stub） |
-| `src/proactive/index.ts` | — | Proactive 核心（stub，KAIROS 共享） |
+| `src/proactive/index.ts` | — | Proactive 核心（KAIROS 共享） |
 | `src/utils/sessionState.ts` | — | 向 bridge/CCR 暴露 automation 状态 |
--- a/docs/features/proactive.md
+++ b/docs/features/proactive.md
@@ -1,7 +1,7 @@
 # PROACTIVE — 主动模式
 > Feature Flag: `FEATURE_PROACTIVE=1`（与 `FEATURE_KAIROS=1` 共享功能）
-> 实现状态：核心模块全部 Stub，布线完整
+> 实现状态：核心循环与 SleepTool 已落地，部分外围文档仍在补齐
 > 引用数：37
 ## 一、功能概述
@@ -21,13 +21,13 @@ PROACTIVE 实现 Tick 驱动的自主代理。CLI 在用户不输入时也能持
 | 模块 | 文件 | 状态 | 说明 |
 |------|------|------|------|
-| 核心逻辑 | `src/proactive/index.ts` | **Stub** | `activateProactive()`、`deactivateProactive()`、`isProactiveActive() => false` |
+| 核心逻辑 | `src/proactive/index.ts` | **已实现** | `activateProactive()`、`deactivateProactive()`、`pause/resume`、`nextTickAt` 调度状态 |
 | SleepTool 提示 | `src/tools/SleepTool/prompt.ts` | **完整** | 工具提示定义（工具名：`Sleep`） |
 | 命令注册 | `src/commands.ts:62-65` | **布线** | 动态加载 `./commands/proactive.js` |
 | 工具注册 | `src/tools.ts:26-28` | **布线** | SleepTool 动态加载 |
-| REPL 集成 | `src/screens/REPL.tsx` | **布线** | tick 驱动逻辑、占位符、页脚 UI |
+| REPL 集成 | `src/screens/REPL.tsx` | **已实现** | tick 驱动、standby/sleeping 状态、页脚与 bridge automation metadata 上报 |
 | 系统提示 | `src/constants/prompts.ts:860-914` | **完整** | 自主工作行为指令（~55 行详细 prompt） |
-| 会话存储 | `src/utils/sessionStorage.ts:4892-4912` | **布线** | tick 消息注入对话流 |
+| 远控状态镜像 | `src/utils/sessionState.ts` | **已实现** | 向 remote-control/CCR 暴露 `automation_state` 元数据 |
 ### 2.2 系统提示内容
@@ -46,7 +46,7 @@ PROACTIVE 实现 Tick 驱动的自主代理。CLI 在用户不输入时也能持
 ### 2.3 数据流
 ```
-activateProactive() [需要实现]
+activateProactive()
      │
      ▼
 Tick 调度器启动
@@ -62,20 +62,22 @@ Tick 调度器启动
      └── 无事可做 → 必须调用 SleepTool
      │
      ▼
-SleepTool 等待 [需要实现]
+SleepTool 等待
      │
      ├── 用户插入新工作 / 队列中有命令 → 立即唤醒
      ├── proactive 被关闭 → 立即中断
      └── 进入休眠时向远端 surfaces 上报 `automation_state = sleeping`
      │
      ▼
 下一个 tick 到达
 ```
-## 三、需要补全的内容
+## 三、当前行为补充
-| 优先级 | 模块 | 工作量 | 说明 |
+- `standby`：proactive 已开启，当前没有执行中的 turn，且已调度下一个 tick。
-|--------|------|--------|------|
+- `sleeping`：模型显式调用 `SleepTool` 进入等待窗口。
-| 1 | `src/proactive/index.ts` | 中 | Tick 调度器、activate/deactivate 状态机、pause/resume |
+- remote-control/CCR 通过 `external_metadata.automation_state` 接收这两个状态，用于 Web UI 的 Autopilot 状态显示。
-| 2 | `src/tools/SleepTool/SleepTool.ts` | 小 | 工具执行（等待指定时间后触发 tick） |
+- `SleepTool` 现在不是纯定时器；它会在共享命令队列出现新工作时提前醒来。
 | 3 | `src/commands/proactive.js` | 小 | `/proactive` 斜杠命令处理器 |
 | 4 | `src/hooks/useProactive.ts` | 中 | React hook（REPL 引用但不存在） |
 ## 四、关键设计决策
@@ -101,9 +103,11 @@ FEATURE_PROACTIVE=1 FEATURE_KAIROS=1 FEATURE_KAIROS_BRIEF=1 bun run dev
 | 文件 | 职责 |
 |------|------|
-| `src/proactive/index.ts` | 核心逻辑（stub） |
+| `src/proactive/index.ts` | 核心逻辑与 next-tick 状态 |
 | `src/tools/SleepTool/prompt.ts` | SleepTool 工具提示 |
 | `src/tools/SleepTool/SleepTool.ts` | 休眠/唤醒执行逻辑 |
 | `src/constants/prompts.ts:860-914` | 自主工作系统提示 |
-| `src/screens/REPL.tsx` | REPL tick 集成 |
+| `src/screens/REPL.tsx` | REPL tick 集成与 automation 状态上报 |
 | `src/utils/sessionStorage.ts:4892-4912` | Tick 消息注入 |
 | `src/utils/sessionState.ts` | bridge/CCR metadata 镜像 |
 | `src/components/PromptInput/PromptInputFooterLeftSide.tsx` | 页脚 UI 状态 |
--- a/docs/features/remote-control-self-hosting.md
+++ b/docs/features/remote-control-self-hosting.md
@@ -13,17 +13,22 @@
 ┌──────────────────┐   HTTP/SSE        │  │ In-Memory    │    │
 │  Web UI 控制面板  │ ◄─────────────── │  │ Store        │    │
 │  (/code/*)       │                   │  └──────────────┘    │
-└──────────────────┘                   │  ┌──────────────┐    │
+│  (React + Vite)  │                   │  ┌──────────────┐    │
-                                       │  │ JWT Auth     │    │
+└──────────────────┘                   │  │ JWT Auth     │    │
                                       │  └──────────────┘    │
-                                       └──────────────────────┘
+┌──────────────────┐                   │  ┌──────────────┐    │
 │  acp-link        │ ◄── ACP Relay ─── │  │ ACP Handler  │    │
 │  + ACP Agent     │     WebSocket      │  └──────────────┘    │
 └──────────────────┘                   └──────────────────────┘
 ```
 **RCS 是一个纯内存的中间服务**，它的职责是：
 - 接收 Claude Code CLI 的环境注册和工作轮询
 - 接收 acp-link 的 ACP agent 注册，支持 WebSocket relay 桥接
 - 提供 Web UI 供操作者远程监控和审批
 - 通过 WebSocket/SSE 双向传输消息
 - 管理会话、环境、权限请求
 - 提供 ACP SSE event stream 供外部消费者订阅 channel group 事件
 ## 前置条件
@@ -138,13 +143,19 @@ bun run dist/cli.js
 /remote-control
 ```
-CLI 会向 RCS 注册环境，注册成功后在终端显示连接 URL：
+环境型 Remote Control（例如 `claude remote-control` 子命令）会向 RCS 注册环境，注册成功后在终端显示连接 URL：
 ```
 https://rcs.example.com/code?bridge=<environmentId>
 ```
-同时支持 QR 码扫码打开。该 URL 即 Web UI 控制面板入口，在浏览器中打开即可远程操控当前会话。
+交互式 REPL 方式（`--remote-control` 或 `/remote-control`）在某些桥接模式下也可能直接给出会话 URL：
 ```
 https://rcs.example.com/code/session_<id>
 ```
 两种 URL 都可以直接在浏览器打开并远程操控当前会话；只有 environment 模式才会出现在 Web UI 的环境列表中。
 若已连接，再次执行 `/remote-control` 会显示对话框，包含以下选项：
 - **Disconnect this session** — 断开远程连接
@@ -163,15 +174,70 @@ claude bridge
 ## Web UI 控制面板
-通过 `/remote-control` 命令获取 URL 后，在浏览器打开即可使用。功能：
+通过 `/remote-control` 命令获取 URL 后，在浏览器打开即可使用。
- 查看已注册的运行环境
+### 技术栈（v2，2026-04-18 重构）
 Web UI 已从原生 JS 重构为 **React + Vite + Radix UI**：
 - **框架**: React 19 + Vite 构建，TypeScript
 - **UI 组件**: Radix UI primitives（Dialog、Tabs、Select、Popover 等）
 - **聊天组件**: 完整的 ACP 聊天界面，支持 Plan 可视化、工具调用展示、权限审批
 - **AI Elements**: 独立的 AI 交互组件库（message、reasoning、tool、code-block、prompt-input 等）
 - **ACP 直连**: 支持 QR 码扫描自动跳转 ACP 直连视图（`ACPDirectView`）
 - **主题系统**: 暗色/亮色主题切换，遵循 Impeccable 设计系统
 ### 功能
 - 查看已注册的运行环境（environment 模式），区分 ACP Agent 和 Claude Code 类型
 - 创建和管理会话
 - 实时查看对话消息和工具调用
 - 查看 Autopilot 状态（`standby` / `sleeping`）和自动运行指示
 - 查看 authoritative task snapshots 驱动的 Tasks 面板
 - 审批 Claude Code 的工具权限请求
 - 权限模式选择器（6 种模式：默认/自动接受编辑/跳过权限/规划/不询问/自动判断）
 - 模型选择器（可选可用模型）
 - Plan 可视化（进度条、状态图标、优先级标签）
 - ACP QR 扫描自动跳转到 ACP 聊天界面
 Web UI 使用 UUID 认证（无需用户账户），适合受信任网络环境。
 ## ACP 支持
 RCS 支持 ACP (Agent Client Protocol) agent 通过 `acp-link` 包接入。
 ### 架构
 ```
 acp-link ──REST注册──► RCS POST /v1/environments/bridge
 acp-link ──WS identify──► RCS WebSocket (携带 agentId)
 acp-link ◄──ACP relay──► RCS ◄──Web UI WS──► 浏览器
 ```
 ### 后端组件
 | 文件 | 职责 |
 |------|------|
 | `src/routes/acp/index.ts` | ACP REST 路由：agents 列表、channel groups、relay |
 | `src/transport/acp-ws-handler.ts` | ACP WebSocket 处理：agent 注册、心跳、消息转发 |
 | `src/transport/acp-relay-handler.ts` | 前端 WS → acp-link 透传 + EventBus inbound 转发 |
 | `src/transport/acp-sse-writer.ts` | SSE event stream 供外部消费者订阅 |
 ### acp-link 连接
 详见 [acp-link 文档](./acp-link.md)。
 ```bash
 # 在 RCS 环境中启动 acp-link
 # 注意：claude 本身不支持 ACP，需要用 ccb-bun --acp
 ACP_RCS_URL=http://localhost:3000 \
 ACP_RCS_TOKEN=sk-rcs-your-key \
 ACP_RCS_NAME=my-agent \
 acp-link ccb-bun -- --acp
 ```
 ACP session 在 Web UI 中显示紫色标签，与普通 Claude Code session 区分。
 ## 工作流程详解
 ```
@@ -209,6 +275,7 @@ Web UI 使用 UUID 认证（无需用户账户），适合受信任网络环境
 9. 双向通信
    CLI ──消息/工具调用结果──► RCS ──► Browser
    CLI ◄──权限审批/指令───── RCS ◄──── Browser
    CLI ──automation_state / task_state──► RCS ──► Browser
 10. 心跳保活（每 20 秒）
    CLI ──POST /v1/environments/:id/work/:workId/heartbeat──► RCS
@@ -218,6 +285,13 @@ Web UI 使用 UUID 认证（无需用户账户），适合受信任网络环境
 ## 故障排查
 ### Web UI 看不到当前 Autopilot 状态
 - `standby`：proactive 已开启，正在等待下一个 tick
 - `sleeping`：模型正在 `SleepTool` 等待窗口中
 这两个状态通过 worker `external_metadata.automation_state` 上报。如果页面只显示普通 working spinner，优先检查 CLI 和 RCS 之间的 worker metadata PUT 是否成功。
 ### CLI 无法连接
 ```
@@ -275,4 +349,3 @@ curl https://rcs.example.com/health
 | 依赖 | claude.ai 订阅 + OAuth | 仅需 API Key |
 自托管模式的核心优势是：设置 `CLAUDE_BRIDGE_BASE_URL` 后，代码自动调用 `isSelfHostedBridge()` 返回 `true`，跳过所有 GrowthBook 和订阅检查，无需 claude.ai 账户即可使用。
--- a/docs/features/stub-recovery-design-1-4.md
+++ b/docs/features/stub-recovery-design-1-4.md
@@ -0,0 +1,310 @@
 # Stub 恢复设计 1-4
 > 日期：2026-04-12
 > 目标：基于当前代码边界，为下一阶段 4 个 stub/半 stub 命令面给出可实施的设计方案。
 > 排序原则：按建议实施顺序排序，不按问题严重性排序。
 ## 设计原则
 - 先做能独立闭环、收益明确、改动边界清晰的项。
 - 大项拆成 `MVP` 和 `Phase 2+`，避免一次性掉进大范围恢复。
 - 优先复用已有状态、传输层、日志与配置能力，不重造协议。
 - 设计以当前仓库实际代码为准，不以旧文档的理想状态为准。
 ## 1. `claude daemon status` / `claude daemon stop`
 ### 现状
 - `start` 路径已有完整 supervisor + worker 生命周期：
  [src/daemon/main.ts](</e:/Source_code/Claude-code-bast/src/daemon/main.ts:1>)
  [src/daemon/workerRegistry.ts](</e:/Source_code/Claude-code-bast/src/daemon/workerRegistry.ts:1>)
 - `status` / `stop` 目前只是占位输出：
  [src/daemon/main.ts](</e:/Source_code/Claude-code-bast/src/daemon/main.ts:49>)
 - `/remote-control-server` 有自己的命令内 UI 状态，但只维护当前进程内的 `daemonProcess`，并不适合作为跨进程 CLI 管理基础：
  [src/commands/remoteControlServer/remoteControlServer.tsx](</e:/Source_code/Claude-code-bast/src/commands/remoteControlServer/remoteControlServer.tsx:32>)
 ### 目标
 - 让 `claude daemon status` 和 `claude daemon stop` 在另一个 CLI 进程中也能正确工作。
 - 不依赖 TUI 内存态，不要求当前命令进程就是启动 daemon 的那个进程。
 ### MVP 方案
 - 新增 daemon 状态文件，例如：
  `~/.claude/daemon/remote-control.json`
 - `start` 时写入：
  - supervisor pid
  - cwd
  - startedAt
  - worker kinds
  - 最近状态
 - `status`：
  - 读取状态文件
  - 用现有进程探测能力验证 pid 是否存活
  - 输出 `running / stopped / stale`
  - stale 时自动清理状态文件
 - `stop`：
  - 读取 pid
  - 发送 `SIGTERM`
  - 等待退出
  - 超时后 `SIGKILL`
  - 清理状态文件
 ### 代码范围
 - 新增 `src/daemon/state.ts`
 - 修改 [src/daemon/main.ts](</e:/Source_code/Claude-code-bast/src/daemon/main.ts:1>)
 - 轻量修改 [src/commands/remoteControlServer/remoteControlServer.tsx](</e:/Source_code/Claude-code-bast/src/commands/remoteControlServer/remoteControlServer.tsx:32>)，让 UI 尽量读取同一份状态文件
 ### 验证
 1. `claude daemon start`
 2. 新开终端执行 `claude daemon status`
 3. 执行 `claude daemon stop`
 4. 再次执行 `claude daemon status`，确认返回 `stopped` 或清晰的 `stale cleaned`
 ### 风险
 - Windows 信号模型和 Unix 不同，`stop` 需要超时兜底。
 - 当前设计默认单 supervisor，不处理多实例并发。
 ### 工作量判断
 - 小
 - 适合作为下一步的首选实现项
 ## 2. `BG_SESSIONS`
 ### 现状
 - fast-path 已接好：
  [src/entrypoints/cli.tsx](</e:/Source_code/Claude-code-bast/src/entrypoints/cli.tsx:218>)
 - session registry 已有真实实现：
  [src/utils/concurrentSessions.ts](</e:/Source_code/Claude-code-bast/src/utils/concurrentSessions.ts:1>)
 - `exit` 在 bg session 内已会 `tmux detach-client`：
  [src/commands/exit/exit.tsx](</e:/Source_code/Claude-code-bast/src/commands/exit/exit.tsx:20>)
 - 但 CLI handler 仍全空：
  [src/cli/bg.ts](</e:/Source_code/Claude-code-bast/src/cli/bg.ts:1>)
 - task summary 仍然是 stub：
  [src/utils/taskSummary.ts](</e:/Source_code/Claude-code-bast/src/utils/taskSummary.ts:1>)
 ### 目标
 - 先把 `ps` / `logs` / `kill` 做成真正有用的 session 管理命令。
 - 不在第一阶段就强行补完 `attach` / `--bg`。
 ### Phase 2A：MVP
 - 实现 `ps`
  - 从 registry 读取 live sessions
  - 展示 pid、kind、sessionId、cwd、name、startedAt、bridgeSessionId
  - 如果有 activity/status，则一并展示
 - 实现 `logs`
  - 支持按 `sessionId / pid / name` 查找
  - 优先复用本地 transcript/log 读取能力
  - 如果 registry 里存在 `logPath`，支持 tail 文件
 - 实现 `kill`
  - 解析目标 session
  - 发退出信号
  - 清理 stale registry
 ### Phase 2B：后续
 - 实现 `attach`
 - 实现 `--bg`
 - 实现 `taskSummary` 的中途状态更新
 ### 为什么要拆
 - 现有 registry 记录了 `pid / sessionId / name / logPath`
 - 但没有可靠的 tmux attach target
 - 所以 `attach` 和 `--bg` 不是简单补 handler，而是需要补启动/附着元数据设计
 ### 代码范围
 - 修改 [src/cli/bg.ts](</e:/Source_code/Claude-code-bast/src/cli/bg.ts:1>)
 - 修改 [src/utils/concurrentSessions.ts](</e:/Source_code/Claude-code-bast/src/utils/concurrentSessions.ts:1>) 以便后续 attach/--bg 扩展
 - 修改 [src/utils/taskSummary.ts](</e:/Source_code/Claude-code-bast/src/utils/taskSummary.ts:1>)
 - 复用：
  [src/utils/sessionStorage.ts](</e:/Source_code/Claude-code-bast/src/utils/sessionStorage.ts:3870>)
  [src/utils/udsClient.ts](</e:/Source_code/Claude-code-bast/src/utils/udsClient.ts:1>)
 ### 验证
 1. `ps` 能列出 live sessions
 2. `logs <sessionId|pid|name>` 能输出对应日志
 3. `kill <sessionId|pid|name>` 能结束目标 session
 ### 风险
 - `attach` / `--bg` 第二阶段需要 tmux 元数据设计
 - Windows 下 tmux 路径需要明确降级策略
 ### 工作量判断
 - `ps/logs/kill` 中等
 - `attach/--bg` 明显更大，应分阶段
 ## 3. `TEMPLATES`
 ### 现状
 - 命令入口只有 fast-path：
  [src/entrypoints/cli.tsx](</e:/Source_code/Claude-code-bast/src/entrypoints/cli.tsx:249>)
 - handler 是空的：
  [src/cli/handlers/templateJobs.ts](</e:/Source_code/Claude-code-bast/src/cli/handlers/templateJobs.ts:1>)
 - `markdownConfigLoader` 已把 `templates` 纳入配置目录：
  [src/utils/markdownConfigLoader.ts](</e:/Source_code/Claude-code-bast/src/utils/markdownConfigLoader.ts:29>)
 - `query / stopHooks` 已预留 job classifier 链路：
  [src/query/stopHooks.ts](</e:/Source_code/Claude-code-bast/src/query/stopHooks.ts:103>)
 - `jobs/classifier.ts` 仍是 stub：
  [src/jobs/classifier.ts](</e:/Source_code/Claude-code-bast/src/jobs/classifier.ts:1>)
 ### 目标
 - 把 `new / list / reply` 做成可用的模板任务系统。
 - 第一阶段不碰复杂的自动分类与自动执行。
 ### MVP 方案
 - 模板来源：
  `.claude/templates/*.md`
 - 模板格式：
  复用现有 markdown + frontmatter 解析，不另外设计 DSL
 - `list`
  - 列出所有模板
  - 显示模板名、description、路径
 - `new <template> [args...]`
  - 解析模板
  - 在 `~/.claude/jobs/<job-id>/` 下创建 job 目录
  - 写入 `template.md`、`input.txt`、`state.json`
  - 返回 job id 与目录
 - `reply <job-id> <text>`
  - 将回复写入 `replies.jsonl` 或 `input.txt`
  - 更新 `state.json`
 ### Phase 2
 - 恢复 [src/jobs/classifier.ts](</e:/Source_code/Claude-code-bast/src/jobs/classifier.ts:1>)
 - 让带 `CLAUDE_JOB_DIR` 的 job session 在 turn 完成后自动更新 `state.json`
 - 再决定是否补自动 job runner
 ### 为什么要拆
 - 当前证据表明这是“template job commands”，不是单纯模板列表
 - 但自动 job 运行链路没有足够现成实现，先做文件系统 job lifecycle 更稳
 ### 代码范围
 - 修改 [src/cli/handlers/templateJobs.ts](</e:/Source_code/Claude-code-bast/src/cli/handlers/templateJobs.ts:1>)
 - 新增 `src/jobs/state.ts`
 - 新增 `src/jobs/templates.ts`
 - Phase 2 再改 [src/jobs/classifier.ts](</e:/Source_code/Claude-code-bast/src/jobs/classifier.ts:1>)
 ### 验证
 1. `list` 能列出 `.claude/templates`
 2. `new` 能创建 job 目录和状态文件
 3. `reply` 能更新 job 内容和状态
 4. Phase 2 再验证 classifier 写状态
 ### 风险
 - frontmatter schema 需要先定义最小字段集
 - 一旦扩展到“自动运行 job”，范围会明显膨胀
 ### 工作量判断
 - MVP 中等
 - 完整 job 系统偏大
 ## 4. `assistant [sessionId]`
 ### 现状
 - attach 主流程其实已经存在：
  [src/main.tsx](</e:/Source_code/Claude-code-bast/src/main.tsx:4708>)
 - 远端 viewer 所需基础模块已存在：
  [src/remote/RemoteSessionManager.ts](</e:/Source_code/Claude-code-bast/src/remote/RemoteSessionManager.ts:1>)
  [src/hooks/useAssistantHistory.ts](</e:/Source_code/Claude-code-bast/src/hooks/useAssistantHistory.ts:1>)
  [src/assistant/sessionHistory.ts](</e:/Source_code/Claude-code-bast/src/assistant/sessionHistory.ts:1>)
 - 真正 stub 的主要是：
  [src/assistant/sessionDiscovery.ts](</e:/Source_code/Claude-code-bast/src/assistant/sessionDiscovery.ts:1>)
  [src/assistant/AssistantSessionChooser.ts](</e:/Source_code/Claude-code-bast/src/assistant/AssistantSessionChooser.ts:1>)
  [src/commands/assistant/assistant.ts](</e:/Source_code/Claude-code-bast/src/commands/assistant/assistant.ts:7>)
  [src/assistant/index.ts](</e:/Source_code/Claude-code-bast/src/assistant/index.ts:1>)
 ### 目标
 - 不一次性恢复整个 KAIROS 助手系统。
 - 先做“明确 sessionId 的 viewer attach 可用”，再逐步补 discovery / chooser / install。
 ### Phase 4A：MVP
 - 只支持 `claude assistant <sessionId>`
 - 对 `claude assistant` 无参数模式，先返回明确提示：
  - 当前版本需要显式 `sessionId`
  - discovery 尚未启用
 - 这样可以直接复用现有 attach 分支，不必先恢复 chooser/install wizard
 ### Phase 4B
 - 恢复 `discoverAssistantSessions()`
 - 数据来源优先复用现有 sessions / bridge / teleport API，而不是新协议
 - 让 `claude assistant` 无参数时能拿到候选 session 列表
 ### Phase 4C
 - 恢复 `AssistantSessionChooser`
 - 多 session 时可交互选择
 ### Phase 4D
 - 最后考虑 install wizard 辅助函数
 - 这部分属于“没有 session 时如何引导”，不是 attach 核心路径
 ### 为什么要拆
 - attach 渲染层与远端消息通道大部分已经在
 - 真正缺的是“如何发现目标 session”和“如何交互选择”
 - 如果把 `src/assistant/index.ts` 的整套 KAIROS 正常模式也一起拉进来，范围会失控
 ### 代码范围
 - Phase 4A：
  - [src/main.tsx](</e:/Source_code/Claude-code-bast/src/main.tsx:4708>)
  - [src/commands/assistant/index.ts](</e:/Source_code/Claude-code-bast/src/commands/assistant/index.ts:1>)
 - Phase 4B：
  - [src/assistant/sessionDiscovery.ts](</e:/Source_code/Claude-code-bast/src/assistant/sessionDiscovery.ts:1>)
 - Phase 4C：
  - [src/assistant/AssistantSessionChooser.ts](</e:/Source_code/Claude-code-bast/src/assistant/AssistantSessionChooser.ts:1>)
 - Phase 4D：
  - [src/commands/assistant/assistant.ts](</e:/Source_code/Claude-code-bast/src/commands/assistant/assistant.ts:7>)
 ### 验证
 1. `claude assistant <sessionId>` 能进入 remote viewer
 2. 历史懒加载工作正常
 3. 无参数模式先给出明确提示
 4. 后续阶段再分别验证 discovery / chooser / install
 ### 风险
 - 这是四项里范围最大的
 - 一旦把 KAIROS 正常模式整体拉入，会从“viewer attach”膨胀成“完整 assistant mode 恢复”
 ### 工作量判断
 - Phase 4A 中等
 - 4A-4D 全做完很大
 ## 建议执行顺序
 1. `claude daemon status` / `claude daemon stop`
 2. `BG_SESSIONS` 先做 `ps/logs/kill`
 3. `TEMPLATES` 先做 job 文件系统 MVP
 4. `assistant [sessionId]` 先做显式 sessionId attach，再补 discovery/chooser/install
 ## 简短结论
 这四项里，最适合立刻实现的是 `daemon status/stop`。`BG_SESSIONS` 和 `TEMPLATES` 适合按 MVP 先补 handler 与文件系统闭环。`assistant [sessionId]` 不能整块硬上，应该按“attach → discovery → chooser → install”拆开恢复。
--- a/docs/task/task-001-daemon-status-stop.md
+++ b/docs/task/task-001-daemon-status-stop.md
@@ -0,0 +1,77 @@
 # Task 001: daemon status / stop
 > 来源: [stub-recovery-design-1-4.md](../features/stub-recovery-design-1-4.md) 第 1 项
 > 优先级: P0 (首选实现项)
 > 工作量: 小
 > 状态: DONE
 ## 目标
 让 `claude daemon status` 和 `claude daemon stop` 在任意 CLI 进程中都能正确工作，不依赖 TUI 内存态。
 ## 背景
 - `start` 路径已有完整 supervisor + worker 生命周期 (`src/daemon/main.ts`, `src/daemon/workerRegistry.ts`)
 - `status` / `stop` 目前只是占位输出 (`src/daemon/main.ts:49`)
 - `/remote-control-server` 有自己的命令内 UI 状态，但只维护当前进程内的 `daemonProcess`，不适合跨进程管理
 ## 实现方案
 ### 新增文件
 | 文件 | 说明 |
 |------|------|
 | `src/daemon/state.ts` | daemon 状态文件读写模块 |
 ### 修改文件
 | 文件 | 改动 |
 |------|------|
 | `src/daemon/main.ts` | `start` 写入状态文件；`status`/`stop` 调用 state 模块 |
 | `src/commands/remoteControlServer/remoteControlServer.tsx` | 读取同一份状态文件（轻量改动） |
 ### 状态文件
 路径: `~/.claude/daemon/remote-control.json`
 ```json
 {
  "pid": 12345,
  "cwd": "/path/to/project",
  "startedAt": "2026-04-12T10:00:00Z",
  "workerKinds": ["bridge", "rcs"],
  "lastStatus": "running"
 }
 ```
 ### status 逻辑
 1. 读取状态文件
 2. 用进程探测验证 pid 是否存活
 3. 输出 `running` / `stopped` / `stale`
 4. stale 时自动清理状态文件
 ### stop 逻辑
 1. 读取 pid
 2. 发送 `SIGTERM`
 3. 等待退出（超时兜底）
 4. 超时后 `SIGKILL`
 5. 清理状态文件
 ## 验证步骤
 - [ ] `claude daemon start` 正常启动并写入状态文件
 - [ ] 新开终端执行 `claude daemon status`，显示 `running`
 - [ ] 执行 `claude daemon stop`，daemon 正常退出
 - [ ] 再次执行 `claude daemon status`，返回 `stopped` 或 `stale cleaned`
 - [ ] Windows 下 stop 超时兜底正常工作
 ## 风险
 - Windows 信号模型和 Unix 不同，`stop` 需要超时兜底
 - 当前设计默认单 supervisor，不处理多实例并发
 ## 依赖
 无外部依赖，可独立实施。
--- a/docs/task/task-002-bg-sessions-ps-logs-kill.md
+++ b/docs/task/task-002-bg-sessions-ps-logs-kill.md
@@ -0,0 +1,80 @@
 # Task 002: BG_SESSIONS — ps / logs / kill
 > 来源: [stub-recovery-design-1-4.md](../features/stub-recovery-design-1-4.md) 第 2 项
 > 优先级: P1
 > 工作量: 中等
 > 状态: DONE
 > 阶段: Phase 2A (MVP)
 ## 目标
 把 `ps` / `logs` / `kill` 做成真正有用的 session 管理命令。不在第一阶段补完 `attach` / `--bg`。
 ## 背景
 - fast-path 已接好 (`src/entrypoints/cli.tsx:218`)
 - session registry 已有真实实现 (`src/utils/concurrentSessions.ts`)
 - `exit` 在 bg session 内已会 `tmux detach-client` (`src/commands/exit/exit.tsx:20`)
 - CLI handler 仍全空 (`src/cli/bg.ts`)
 - task summary 仍然是 stub (`src/utils/taskSummary.ts`)
 ## 实现方案
 ### 修改文件
 | 文件 | 改动 |
 |------|------|
 | `src/cli/bg.ts` | 实现 `ps` / `logs` / `kill` handler |
 | `src/utils/concurrentSessions.ts` | 扩展以便后续 attach/--bg 使用 |
 | `src/utils/taskSummary.ts` | 补充基础实现 |
 ### 复用模块
 - `src/utils/sessionStorage.ts` — session 存储
 - `src/utils/udsClient.ts` — UDS 通信
 ### ps 命令
 - 从 registry 读取 live sessions
 - 展示: pid, kind, sessionId, cwd, name, startedAt, bridgeSessionId
 - 如果有 activity/status，一并展示
 ### logs 命令
 - 支持按 `sessionId` / `pid` / `name` 查找
 - 优先复用本地 transcript/log 读取能力
 - 如果 registry 里存在 `logPath`，支持 tail 文件
 ### kill 命令
 - 解析目标 session
 - 发退出信号
 - 清理 stale registry
 ## 验证步骤
 - [ ] `ps` 能列出当前 live sessions
 - [ ] `logs <sessionId|pid|name>` 能输出对应日志
 - [ ] `kill <sessionId|pid|name>` 能结束目标 session 并清理 registry
 - [ ] 无 live session 时各命令有明确提示
 ## Phase 2B (后续)
 - [ ] 实现 `attach`
 - [ ] 实现 `--bg`
 - [ ] 实现 `taskSummary` 的中途状态更新
 ### 为什么拆分
 - 现有 registry 记录了 `pid / sessionId / name / logPath`
 - 但没有可靠的 tmux attach target
 - `attach` 和 `--bg` 需要补启动/附着元数据设计，不是简单补 handler
 ## 风险
 - `attach` / `--bg` 第二阶段需要 tmux 元数据设计
 - Windows 下 tmux 路径需要明确降级策略
 ## 依赖
 - Task 001 (daemon 状态管理可复用模式，但非硬性依赖)
--- a/docs/task/task-003-templates-job-mvp.md
+++ b/docs/task/task-003-templates-job-mvp.md
@@ -0,0 +1,87 @@
 # Task 003: TEMPLATES — job 文件系统 MVP
 > 来源: [stub-recovery-design-1-4.md](../features/stub-recovery-design-1-4.md) 第 3 项
 > 优先级: P2
 > 工作量: 中等
 > 状态: DONE
 > 阶段: MVP
 ## 目标
 把 `new` / `list` / `reply` 做成可用的模板任务系统。第一阶段不碰复杂的自动分类与自动执行。
 ## 背景
 - 命令入口只有 fast-path (`src/entrypoints/cli.tsx:249`)
 - handler 是空的 (`src/cli/handlers/templateJobs.ts`)
 - `markdownConfigLoader` 已把 `templates` 纳入配置目录 (`src/utils/markdownConfigLoader.ts:29`)
 - `query/stopHooks` 已预留 job classifier 链路 (`src/query/stopHooks.ts:103`)
 - `jobs/classifier.ts` 仍是 stub (`src/jobs/classifier.ts`)
 ## 实现方案
 ### 新增文件
 | 文件 | 说明 |
 |------|------|
 | `src/jobs/state.ts` | job 状态管理 |
 | `src/jobs/templates.ts` | 模板解析与列表 |
 ### 修改文件
 | 文件 | 改动 |
 |------|------|
 | `src/cli/handlers/templateJobs.ts` | 实现 `new` / `list` / `reply` handler |
 ### 模板来源
 `.claude/templates/*.md`
 ### 模板格式
 复用现有 markdown + frontmatter 解析，不另外设计 DSL。
 ### list 命令
 - 列出所有模板
 - 显示: 模板名, description, 路径
 ### new 命令
 - 解析模板
 - 在 `~/.claude/jobs/<job-id>/` 下创建 job 目录
 - 写入 `template.md`, `input.txt`, `state.json`
 - 返回 job id 与目录路径
 ### reply 命令
 - 将回复写入 `replies.jsonl` 或 `input.txt`
 - 更新 `state.json`
 ## 验证步骤
 - [ ] `list` 能列出 `.claude/templates` 下的所有模板
 - [ ] `new <template> [args...]` 能创建 job 目录和状态文件
 - [ ] `reply <job-id> <text>` 能更新 job 内容和状态
 - [ ] frontmatter schema 最小字段集已定义
 ## Phase 2 (后续)
 - [ ] 恢复 `src/jobs/classifier.ts`
 - [ ] 让带 `CLAUDE_JOB_DIR` 的 job session 在 turn 完成后自动更新 `state.json`
 - [ ] 再决定是否补自动 job runner
 ### 为什么拆分
 - 当前是 "template job commands"，不是单纯模板列表
 - 自动 job 运行链路没有足够现成实现
 - 先做文件系统 job lifecycle 更稳
 ## 风险
 - frontmatter schema 需要先定义最小字段集
 - 一旦扩展到"自动运行 job"，范围会明显膨胀
 ## 依赖
 无硬性依赖，可独立实施。
--- a/docs/task/task-004-assistant-session-attach.md
+++ b/docs/task/task-004-assistant-session-attach.md
@@ -0,0 +1,103 @@
 # Task 004: assistant [sessionId] — 分阶段恢复
 > 来源: [stub-recovery-design-1-4.md](../features/stub-recovery-design-1-4.md) 第 4 项
 > 优先级: P3
 > 工作量: Phase 4A 中等，4A-4D 全做完很大
 > 状态: Phase 4A DONE, 4B-4D TODO
 ## 目标
 不一次性恢复整个 KAIROS 助手系统。先做"明确 sessionId 的 viewer attach 可用"，再逐步补 discovery / chooser / install。
 ## 背景
 - attach 主流程已存在 (`src/main.tsx:4708`)
 - 远端 viewer 所需基础模块已存在:
  - `src/remote/RemoteSessionManager.ts`
  - `src/hooks/useAssistantHistory.ts`
  - `src/assistant/sessionHistory.ts`
 - 真正 stub 的主要是:
  - `src/assistant/sessionDiscovery.ts`
  - `src/assistant/AssistantSessionChooser.ts`
  - `src/commands/assistant/assistant.ts:7`
  - `src/assistant/index.ts`
 ## 分阶段实现
 ### Phase 4A: MVP — 显式 sessionId attach
 **修改文件:**
 | 文件 | 改动 |
 |------|------|
 | `src/main.tsx` | 确保 attach 分支可用 |
 | `src/commands/assistant/index.ts` | 实现显式 sessionId 参数入口 |
 **行为:**
 - `claude assistant <sessionId>` — 进入 remote viewer
 - `claude assistant` (无参数) — 返回明确提示: 当前版本需要显式 sessionId，discovery 尚未启用
 **验证:**
 - [ ] `claude assistant <sessionId>` 能进入 remote viewer
 - [ ] 历史懒加载工作正常
 - [ ] 无参数模式给出明确提示
 ### Phase 4B: session discovery
 **修改文件:**
 | 文件 | 改动 |
 |------|------|
 | `src/assistant/sessionDiscovery.ts` | 恢复 `discoverAssistantSessions()` |
 **行为:**
 - 数据来源优先复用现有 sessions / bridge / teleport API，不新增协议
 - `claude assistant` 无参数时能拿到候选 session 列表
 **验证:**
 - [ ] 无参数调用能列出可用 sessions
 - [ ] 数据来源复用现有通道
 ### Phase 4C: session chooser
 **修改文件:**
 | 文件 | 改动 |
 |------|------|
 | `src/assistant/AssistantSessionChooser.ts` | 恢复交互式选择器 |
 **行为:**
 - 多 session 时可交互选择
 **验证:**
 - [ ] 多个 session 时弹出选择器
 - [ ] 选择后正确 attach
 ### Phase 4D: install wizard
 **修改文件:**
 | 文件 | 改动 |
 |------|------|
 | `src/commands/assistant/assistant.ts` | 恢复 install wizard 辅助函数 |
 **行为:**
 - 没有 session 时如何引导用户
 **验证:**
 - [ ] 无可用 session 时引导用户创建/连接
 ## 为什么拆分
 - attach 渲染层与远端消息通道大部分已在
 - 真正缺的是"如何发现目标 session"和"如何交互选择"
 - 如果把 `src/assistant/index.ts` 的整套 KAIROS 正常模式也一起拉进来，范围会失控
 ## 风险
 - 这是四项里范围最大的
 - 一旦把 KAIROS 正常模式整体拉入，会从"viewer attach"膨胀成"完整 assistant mode 恢复"
 ## 依赖
 - Task 002 的 session registry 模式可复用
--- a/docs/task/task-013-bg-engine-abstraction.md
+++ b/docs/task/task-013-bg-engine-abstraction.md
@@ -0,0 +1,196 @@
 # Task 013: BgEngine 跨平台后台引擎抽象
 > 设计文档: [daemon-restructure-design.md](../features/daemon-restructure-design.md) § 四
 > 依赖: 无
 > 分支: `feat/integrate-5-branches`
 ## 目标
 将 `src/cli/bg.ts` 中硬编码的 tmux 逻辑提取为引擎抽象层，实现 TmuxEngine + DetachedEngine，使后台会话功能在 Windows / macOS / Linux 上都能工作。
 ## 背景
 当前 `bg.ts` 中 `handleBgFlag()` 和 `attachHandler()` 直接调用 tmux 命令。Windows 上 `--bg` 直接报错退出。需要一个引擎抽象层，根据平台和可用工具自动选择最佳方案。
 ## 文件清单
 ### 新增
 | 文件 | 说明 |
 |------|------|
 | `src/cli/bg/engine.ts` | BgEngine 接口 + BgStartOptions/BgStartResult 类型 |
 | `src/cli/bg/engines/tmux.ts` | TmuxEngine: 从 `bg.ts` 提取 tmux 相关逻辑 |
 | `src/cli/bg/engines/detached.ts` | DetachedEngine: spawn({ detached }) + logFile 重定向 |
 | `src/cli/bg/engines/index.ts` | selectEngine() 自动选择 + re-export |
 | `src/cli/bg/tail.ts` | 跨平台日志 tail: fs.watch + 轮询 fallback |
 ### 修改
 | 文件 | 变更 |
 |------|------|
 | `src/cli/bg.ts` | `handleBgFlag()` 改为调用 `selectEngine().start()`；`attachHandler()` 改为调用 `engine.attach()` |
 ## 实现方案
 ### 1. BgEngine 接口 (`src/cli/bg/engine.ts`)
 ```typescript
 export interface BgEngine {
  readonly name: string
  available(): Promise<boolean>
  start(opts: BgStartOptions): Promise<BgStartResult>
  attach(session: SessionEntry): Promise<void>
 }
 export interface BgStartOptions {
  sessionName: string
  args: string[]         // CLI args (去除 --bg)
  env: Record<string, string | undefined>
  logPath: string
  cwd: string
 }
 export interface BgStartResult {
  pid: number
  sessionName: string
  logPath: string
  engineUsed: 'tmux' | 'detached'
 }
 ```
 ### 2. TmuxEngine (`src/cli/bg/engines/tmux.ts`)
 从 `bg.ts:handleBgFlag()` 和 `bg.ts:attachHandler()` 提取:
 - `available()`: `execFileNoThrow('tmux', ['-V'])` 返回 code === 0
 - `start()`: `tmux new-session -d -s <name> <cmd>`
 - `attach()`: `tmux attach-session -t <session.tmuxSessionName>`
 ### 3. DetachedEngine (`src/cli/bg/engines/detached.ts`)
 ```typescript
 export class DetachedEngine implements BgEngine {
  readonly name = 'detached'
  async available(): Promise<boolean> {
    return true  // 总是可用
  }
  async start(opts: BgStartOptions): Promise<BgStartResult> {
    const logFd = openSync(opts.logPath, 'a')
    const child = spawn(process.execPath, [process.argv[1]!, ...opts.args], {
      detached: true,
      stdio: ['ignore', logFd, logFd],
      env: opts.env,
      cwd: opts.cwd,
    })
    child.unref()
    closeSync(logFd)
    return {
      pid: child.pid!,
      sessionName: opts.sessionName,
      logPath: opts.logPath,
      engineUsed: 'detached',
    }
  }
  async attach(session: SessionEntry): Promise<void> {
    // 委托给 tail.ts
    await tailLog(session.logPath!)
  }
 }
 ```
 ### 4. 日志 Tail (`src/cli/bg/tail.ts`)
 ```typescript
 /**
 * 跨平台实时日志输出。Ctrl+C 退出，不杀后台进程。
 *
 * 策略:
 * 1. 读取已有内容输出
 * 2. fs.watch() 监听文件变化 (主方案)
 * 3. 如果 fs.watch 不可靠 (某些 Windows 网络驱动器)，fallback 到 500ms 轮询
 */
 export async function tailLog(logPath: string): Promise<void>
 ```
 ### 5. 引擎选择 (`src/cli/bg/engines/index.ts`)
 ```typescript
 export async function selectEngine(): Promise<BgEngine> {
  if (process.platform === 'win32') {
    return new DetachedEngine()
  }
  const tmux = new TmuxEngine()
  if (await tmux.available()) {
    return tmux
  }
  return new DetachedEngine()
 }
 ```
 ### 6. bg.ts 重构
 `handleBgFlag()` 改名为 `handleBgStart()`，内部逻辑:
 ```typescript
 export async function handleBgStart(args: string[]): Promise<void> {
  const engine = await selectEngine()
  const sessionName = `claude-bg-${randomUUID().slice(0, 8)}`
  const logPath = join(getClaudeConfigHomeDir(), 'sessions', 'logs', `${sessionName}.log`)
  const result = await engine.start({
    sessionName,
    args: filteredArgs,
    env: { ...process.env, CLAUDE_CODE_SESSION_KIND: 'bg', ... },
    logPath,
    cwd: process.cwd(),
  })
  console.log(`Background session started: ${result.sessionName}`)
  console.log(`  Engine: ${result.engineUsed}`)
  console.log(`  Log: ${result.logPath}`)
  console.log(`  Use \`claude daemon attach ${result.sessionName}\` to reconnect.`)
 }
 ```
 `attachHandler()` 根据 `session.engine` 字段选择引擎:
 ```typescript
 export async function attachHandler(target: string | undefined): Promise<void> {
  // ... 找到 session
  if (session.engine === 'tmux' && session.tmuxSessionName) {
    const tmux = new TmuxEngine()
    await tmux.attach(session)
  } else {
    const detached = new DetachedEngine()
    await detached.attach(session)
  }
 }
 ```
 ## SessionEntry 扩展
 `sessions/<PID>.json` 新增 `engine` 字段:
 ```json
 {
  "pid": 12345,
  "engine": "detached",
  "logPath": "~/.claude/sessions/logs/claude-bg-a1b2c3d4.log",
  "sessionId": "...",
  "cwd": "..."
 }
 ```
 兼容旧格式: 如果 `engine` 字段缺失，检查 `tmuxSessionName` 存在则为 `tmux`，否则为 `detached`。
 ## 验证清单
 - [ ] Windows: `claude daemon bg` 启动后台会话，无 tmux 依赖
 - [ ] Windows: `claude daemon attach <name>` 以 tail 模式附着，Ctrl+C 退出不杀进程
 - [ ] macOS/Linux (有 tmux): 行为与当前一致
 - [ ] macOS/Linux (无 tmux): 自动 fallback 到 detached 引擎
 - [ ] `claude daemon status` 正确显示 engine 类型
 - [ ] 旧格式 session JSON (无 engine 字段) 兼容
 - [ ] tsc --noEmit 零错误
 - [ ] bun test 通过
--- a/docs/task/task-014-daemon-command-hierarchy.md
+++ b/docs/task/task-014-daemon-command-hierarchy.md
@@ -0,0 +1,275 @@
 # Task 014: /daemon 命令层级化
 > 设计文档: [daemon-restructure-design.md](../features/daemon-restructure-design.md) § 三.1
 > 依赖: Task 013 (BgEngine 抽象)
 > 分支: `feat/integrate-5-branches`
 ## 目标
 将散落的 `daemon start/stop/status` + `ps/logs/attach/kill` + `--bg` 统一收归 `/daemon` 命名空间，实现 CLI + REPL 双注册。
 ## 背景
 当前这些命令注册在两个互不关联的位置:
 - `cli.tsx:203-212`: `daemon [start|status|stop]` → `daemon/main.ts`
 - `cli.tsx:217-246`: `ps|logs|attach|kill|--bg` → `cli/bg.ts`
 需要合并为统一的 `claude daemon <subcommand>` 入口，并新增 REPL `/daemon` 斜杠命令。
 ## 文件清单
 ### 新增
 | 文件 | 说明 |
 |------|------|
 | `src/commands/daemon/index.ts` | `/daemon` REPL 斜杠命令注册 (type: local-jsx) |
 | `src/commands/daemon/daemon.tsx` | `/daemon` 子命令路由 + status UI 组件 |
 ### 修改
 | 文件 | 变更 |
 |------|------|
 | `src/entrypoints/cli.tsx` | 统一 daemon 快速路径: `daemon <sub>` 路由到对应 handler。旧命令 `ps/logs/attach/kill` 保留但输出 deprecation 警告后代理 |
 | `src/commands.ts` | 注册 `/daemon` 斜杠命令 (feature-gated: DAEMON \|\| BG_SESSIONS) |
 | `src/daemon/main.ts` | `daemonMain()` 扩展: 支持 `bg/attach/logs/kill/ps` 子命令 (委托给 bg.ts handlers) |
 ## 实现方案
 ### 1. CLI 快速路径统一 (`cli.tsx`)
 **改前** (两段独立路由):
 ```typescript
 // 段 1: daemon
 if (feature('DAEMON') && args[0] === 'daemon') {
  await daemonMain(args.slice(1))
 }
 // 段 2: bg sessions
 if (feature('BG_SESSIONS') && ['ps','logs','attach','kill'].includes(args[0])) {
  // ...switch/case
 }
 ```
 **改后** (统一入口):
 ```typescript
 // 统一 daemon 入口 — 合并 daemon supervisor + bg sessions
 if (
  (feature('DAEMON') || feature('BG_SESSIONS')) &&
  args[0] === 'daemon'
 ) {
  profileCheckpoint('cli_daemon_path')
  const { enableConfigs } = await import('../utils/config.js')
  enableConfigs()
  const { initSinks } = await import('../utils/sinks.js')
  initSinks()
  const { daemonMain } = await import('../daemon/main.js')
  await daemonMain(args.slice(1))
  return
 }
 // --bg 快捷方式 → daemon bg
 if (
  feature('BG_SESSIONS') &&
  (args.includes('--bg') || args.includes('--background'))
 ) {
  profileCheckpoint('cli_daemon_path')
  const { enableConfigs } = await import('../utils/config.js')
  enableConfigs()
  const bg = await import('../cli/bg.js')
  await bg.handleBgStart(args.filter(a => a !== '--bg' && a !== '--background'))
  return
 }
 // 向后兼容: ps/logs/attach/kill → daemon <sub> (deprecated)
 if (
  feature('BG_SESSIONS') &&
  ['ps', 'logs', 'attach', 'kill'].includes(args[0] ?? '')
 ) {
  const mapped = args[0] === 'ps' ? 'status' : args[0]
  console.error(`[deprecated] Use: claude daemon ${mapped} ${args.slice(1).join(' ')}`.trim())
  const { enableConfigs } = await import('../utils/config.js')
  enableConfigs()
  const { daemonMain } = await import('../daemon/main.js')
  await daemonMain([args[0]!, ...args.slice(1)])
  return
 }
 ```
 ### 2. daemonMain 扩展 (`daemon/main.ts`)
 ```typescript
 export async function daemonMain(args: string[]): Promise<void> {
  const subcommand = args[0] || 'status'
  switch (subcommand) {
    // --- Supervisor 管理 ---
    case 'start':
      await runSupervisor(args.slice(1))
      break
    case 'stop':
      await handleDaemonStop()
      break
    // --- 会话管理 (委托给 bg.ts) ---
    case 'status':
    case 'ps':
      await showUnifiedStatus()  // 新: daemon 状态 + 会话列表
      break
    case 'bg':
      const bg = await import('../cli/bg.js')
      await bg.handleBgStart(args.slice(1))
      break
    case 'attach':
      const bg2 = await import('../cli/bg.js')
      await bg2.attachHandler(args[1])
      break
    case 'logs':
      const bg3 = await import('../cli/bg.js')
      await bg3.logsHandler(args[1])
      break
    case 'kill':
      const bg4 = await import('../cli/bg.js')
      await bg4.killHandler(args[1])
      break
    case '--help': case '-h': case 'help':
      printHelp()
      break
    default:
      console.error(`Unknown daemon subcommand: ${subcommand}`)
      printHelp()
      process.exitCode = 1
  }
 }
 ```
 ### 3. 统一状态面板 (`showUnifiedStatus`)
 ```typescript
 async function showUnifiedStatus(): Promise<void> {
  // 1. Daemon supervisor 状态
  const daemonResult = queryDaemonStatus()
  console.log('=== Daemon Supervisor ===')
  switch (daemonResult.status) {
    case 'running':
      console.log(`  Status: running (PID: ${daemonResult.state!.pid})`)
      console.log(`  Workers: ${daemonResult.state!.workerKinds.join(', ')}`)
      break
    case 'stopped':
      console.log('  Status: stopped')
      break
    case 'stale':
      console.log('  Status: stale (cleaned up)')
      break
  }
  // 2. 后台会话列表
  console.log('\n=== Background Sessions ===')
  const bg = await import('../cli/bg.js')
  await bg.psHandler([])
 }
 ```
 ### 4. REPL 斜杠命令注册
 **`src/commands/daemon/index.ts`**:
 ```typescript
 import type { Command } from '../../commands.js'
 import { feature } from 'bun:bundle'
 const daemon = {
  type: 'local-jsx',
  name: 'daemon',
  description: 'Manage background sessions and daemon',
  argumentHint: '[status|start|stop|bg|attach|logs|kill]',
  isEnabled: () => {
    if (feature('DAEMON')) return true
    if (feature('BG_SESSIONS')) return true
    return false
  },
  load: () => import('./daemon.js'),
 } satisfies Command
 export default daemon
 ```
 **`src/commands/daemon/daemon.tsx`**:
 ```typescript
 export async function call(
  onDone: LocalJSXCommandOnDone,
  context: LocalJSXCommandContext,
  args: string,
 ): Promise<React.ReactNode> {
  const parts = args.trim().split(/\s+/)
  const sub = parts[0] || 'status'
  switch (sub) {
    case 'status':
    case 'ps':
      // 调用 showUnifiedStatus，捕获输出
      // 返回文本结果
      break
    case 'bg':
      // REPL 中启动后台会话
      break
    case 'start':
    case 'stop':
    case 'attach':
    case 'logs':
    case 'kill':
      // 委托给对应 handler
      break
    default:
      onDone(`Unknown: ${sub}. Use: status|start|stop|bg|attach|logs|kill`)
      return null
  }
 }
 ```
 **`src/commands.ts`** 添加:
 ```typescript
 // 条件导入
 const daemonCmd =
  feature('DAEMON') || feature('BG_SESSIONS')
    ? require('./commands/daemon/index.js').default
    : null
 // COMMANDS 数组中添加
 ...(daemonCmd ? [daemonCmd] : []),
 ```
 ### 5. 更新 help 文本 (`daemon/main.ts`)
 ```
 Claude Code Daemon — background process management
 USAGE
  claude daemon [subcommand]
 SUBCOMMANDS
  status      Show daemon and session status (default)
  start       Start the daemon supervisor
  stop        Stop the daemon
  bg          Start a background session
  attach      Attach to a background session
  logs        Show session logs
  kill        Kill a session
  help        Show this help
 REPL
  /daemon [subcommand]    Same commands available in interactive mode
 ```
 ## 验证清单
 - [ ] `claude daemon` (无参数) 显示统一状态面板
 - [ ] `claude daemon status` 显示 supervisor + 会话列表
 - [ ] `claude daemon start/stop` 与当前行为一致
 - [ ] `claude daemon bg` 启动后台会话 (调用 BgEngine)
 - [ ] `claude daemon attach/logs/kill <target>` 功能正常
 - [ ] `claude ps` 输出 deprecation 警告 + 正常工作
 - [ ] `claude logs/attach/kill` 同上
 - [ ] `claude --bg` 快捷方式正常
 - [ ] REPL 中 `/daemon` 可用，tab 补全显示
 - [ ] REPL 中 `/daemon status` 显示状态信息
 - [ ] tsc --noEmit 零错误
 - [ ] bun test 通过
--- a/docs/task/task-015-job-command-hierarchy.md
+++ b/docs/task/task-015-job-command-hierarchy.md
@@ -0,0 +1,177 @@
 # Task 015: /job 命令层级化
 > 设计文档: [daemon-restructure-design.md](../features/daemon-restructure-design.md) § 三.2
 > 依赖: 无 (可与 Task 013 并行)
 > 分支: `feat/integrate-5-branches`
 ## 目标
 将 `claude new/list/reply` 收归 `/job` 命名空间，实现 CLI + REPL 双注册。
 ## 背景
 当前 `new`, `list`, `reply` 是顶级 CLI 命令 (`cli.tsx:250-261`)，容易与其他命令冲突（特别是 `list` 这种通用词）。需要收归 `claude job <subcommand>` 并新增 REPL `/job` 入口。
 ## 文件清单
 ### 新增
 | 文件 | 说明 |
 |------|------|
 | `src/commands/job/index.ts` | `/job` REPL 斜杠命令注册 |
 | `src/commands/job/job.tsx` | `/job` 子命令路由 |
 ### 修改
 | 文件 | 变更 |
 |------|------|
 | `src/entrypoints/cli.tsx` | 新增 `job` 快速路径 + 旧 `new/list/reply` deprecation 代理 |
 | `src/commands.ts` | 注册 `/job` 斜杠命令 |
 ### 不动
 | 文件 | 说明 |
 |------|------|
 | `src/cli/handlers/templateJobs.ts` | 内部 handler 不变，只是被调用方式变了 |
 | `src/jobs/state.ts` | job 状态管理不变 |
 | `src/jobs/templates.ts` | 模板发现不变 |
 | `src/jobs/classifier.ts` | 任务分类器不变 |
 ## 实现方案
 ### 1. CLI 快速路径 (`cli.tsx`)
 **改后**:
 ```typescript
 // 新: claude job <subcommand>
 if (
  feature('TEMPLATES') &&
  args[0] === 'job'
 ) {
  profileCheckpoint('cli_templates_path')
  const { templatesMain } = await import('../cli/handlers/templateJobs.js')
  await templatesMain(args.slice(1))
  process.exit(0)
 }
 // 向后兼容 (deprecated)
 if (
  feature('TEMPLATES') &&
  (args[0] === 'new' || args[0] === 'list' || args[0] === 'reply')
 ) {
  console.error(`[deprecated] Use: claude job ${args[0]} ${args.slice(1).join(' ')}`.trim())
  profileCheckpoint('cli_templates_path')
  const { templatesMain } = await import('../cli/handlers/templateJobs.js')
  await templatesMain(args)
  process.exit(0)
 }
 ```
 ### 2. templateJobs.ts 新增 status 子命令
 在现有 `switch` 中增加:
 ```typescript
 case 'status':
  handleStatus(args.slice(1))
  break
 ```
 ```typescript
 function handleStatus(args: string[]): void {
  const jobId = args[0]
  if (!jobId) {
    console.error('Usage: claude job status <job-id>')
    process.exitCode = 1
    return
  }
  const state = readJobState(jobId)
  if (!state) {
    console.error(`Job not found: ${jobId}`)
    process.exitCode = 1
    return
  }
  console.log(`Job: ${state.jobId}`)
  console.log(`  Template: ${state.templateName}`)
  console.log(`  Status: ${state.status}`)
  console.log(`  Created: ${state.createdAt}`)
  console.log(`  Updated: ${state.updatedAt}`)
 }
 ```
 ### 3. REPL 斜杠命令
 **`src/commands/job/index.ts`**:
 ```typescript
 import type { Command } from '../../commands.js'
 import { feature } from 'bun:bundle'
 const job = {
  type: 'local-jsx',
  name: 'job',
  description: 'Manage template jobs',
  argumentHint: '[list|new|reply|status]',
  isEnabled: () => {
    if (feature('TEMPLATES')) return true
    return false
  },
  load: () => import('./job.js'),
 } satisfies Command
 export default job
 ```
 **`src/commands/job/job.tsx`**:
 ```typescript
 export async function call(
  onDone: LocalJSXCommandOnDone,
  _context: LocalJSXCommandContext,
  args: string,
 ): Promise<React.ReactNode> {
  const parts = args.trim().split(/\s+/)
  const sub = parts[0] || 'list'
  // 委托给 templatesMain
  const { templatesMain } = await import('../../cli/handlers/templateJobs.js')
  // 捕获 console.log 输出作为结果返回给 REPL
  const lines: string[] = []
  const origLog = console.log
  const origError = console.error
  console.log = (...a: unknown[]) => lines.push(a.join(' '))
  console.error = (...a: unknown[]) => lines.push(a.join(' '))
  try {
    await templatesMain([sub, ...parts.slice(1)])
  } finally {
    console.log = origLog
    console.error = origError
  }
  onDone(lines.join('\n') || 'Done.', { display: 'system' })
  return null
 }
 ```
 ### 4. commands.ts 注册
 ```typescript
 const jobCmd = feature('TEMPLATES')
  ? require('./commands/job/index.js').default
  : null
 // COMMANDS 数组:
 ...(jobCmd ? [jobCmd] : []),
 ```
 ## 验证清单
 - [ ] `claude job list` 列出模板
 - [ ] `claude job new <template>` 创建任务
 - [ ] `claude job reply <id> <text>` 回复任务
 - [ ] `claude job status <id>` 显示任务状态
 - [ ] `claude job` (无参数) 等同于 `claude job list`
 - [ ] `claude new/list/reply` 输出 deprecation 警告 + 正常工作
 - [ ] REPL 中 `/job` 可用
 - [ ] REPL 中 `/job list` 显示模板列表
 - [ ] tsc --noEmit 零错误
 - [ ] bun test 通过
--- a/docs/task/task-016-backward-compat-tests.md
+++ b/docs/task/task-016-backward-compat-tests.md
@@ -0,0 +1,123 @@
 # Task 016: 向后兼容 + 测试
 > 设计文档: [daemon-restructure-design.md](../features/daemon-restructure-design.md) § 五
 > 依赖: Task 014, Task 015
 > 分支: `feat/integrate-5-branches`
 ## 目标
 确保旧命令向后兼容 (deprecation 警告 + 正常代理)，并为重构后的命令结构编写测试。
 ## 文件清单
 ### 新增
 | 文件 | 说明 |
 |------|------|
 | `src/daemon/__tests__/daemonMain.test.ts` | daemonMain 子命令路由测试 |
 | `src/cli/bg/__tests__/engine.test.ts` | BgEngine 选择逻辑测试 |
 | `src/cli/bg/__tests__/detached.test.ts` | DetachedEngine 启动/停止测试 |
 | `src/cli/bg/__tests__/tail.test.ts` | 日志 tail 功能测试 |
 ### 修改
 | 文件 | 变更 |
 |------|------|
 | `src/entrypoints/cli.tsx` | 确认 deprecation 路径正确代理 |
 ## 实现方案
 ### 1. 向后兼容矩阵
 | 旧命令 | 新命令 | 处理方式 |
 |--------|--------|---------|
 | `claude ps` | `claude daemon status` | stderr 输出 `[deprecated] Use: claude daemon status`，然后执行 |
 | `claude logs <x>` | `claude daemon logs <x>` | 同上 |
 | `claude attach <x>` | `claude daemon attach <x>` | 同上 |
 | `claude kill <x>` | `claude daemon kill <x>` | 同上 |
 | `claude --bg` | `claude daemon bg` | 保留为快捷方式，**不** deprecate (太常用) |
 | `claude new <t>` | `claude job new <t>` | stderr deprecation + 执行 |
 | `claude list` | `claude job list` | stderr deprecation + 执行 |
 | `claude reply <id>` | `claude job reply <id>` | stderr deprecation + 执行 |
 **关键**: deprecation 输出到 stderr 而非 stdout，不影响脚本管道。
 ### 2. 测试计划
 #### 2.1 daemonMain 路由测试
 ```typescript
 describe('daemonMain', () => {
  test('无参数默认 status', async () => { ... })
  test('start 调用 runSupervisor', async () => { ... })
  test('stop 调用 handleDaemonStop', async () => { ... })
  test('bg 委托给 bg.handleBgStart', async () => { ... })
  test('attach 委托给 bg.attachHandler', async () => { ... })
  test('logs 委托给 bg.logsHandler', async () => { ... })
  test('kill 委托给 bg.killHandler', async () => { ... })
  test('未知子命令设置 exitCode=1', async () => { ... })
 })
 ```
 #### 2.2 引擎选择测试
 ```typescript
 describe('selectEngine', () => {
  test('win32 返回 DetachedEngine', async () => { ... })
  test('darwin + tmux 可用返回 TmuxEngine', async () => { ... })
  test('darwin + tmux 不可用返回 DetachedEngine', async () => { ... })
  test('linux + tmux 可用返回 TmuxEngine', async () => { ... })
 })
 ```
 #### 2.3 DetachedEngine 测试
 ```typescript
 describe('DetachedEngine', () => {
  test('available 始终返回 true', async () => { ... })
  test('start 创建 detached 子进程并写入日志', async () => { ... })
  test('start 返回的 PID 文件存在', async () => { ... })
 })
 ```
 #### 2.4 Tail 测试
 ```typescript
 describe('tailLog', () => {
  test('输出已有日志内容', async () => { ... })
  test('追加内容时实时输出', async () => { ... })
  test('SIGINT 退出 tail', async () => { ... })
 })
 ```
 ### 3. 集成验证脚本
 可选: 在 `scripts/` 下添加一个手动验证脚本:
 ```bash
 #!/bin/bash
 # scripts/verify-daemon-restructure.sh
 echo "=== 1. claude daemon status ==="
 bun run dev -- daemon status
 echo "=== 2. claude daemon bg (should start) ==="
 bun run dev -- daemon bg --help
 echo "=== 3. claude ps (deprecated) ==="
 bun run dev -- ps 2>&1 | head -1
 echo "=== 4. claude job list ==="
 bun run dev -- job list
 echo "=== 5. claude list (deprecated) ==="
 bun run dev -- list 2>&1 | head -1
 ```
 ## 验证清单
 - [ ] 旧命令全部正常工作 (仅多一行 stderr 警告)
 - [ ] `--bg` 保持无警告
 - [ ] 所有新增测试通过
 - [ ] 现有 2695 个测试无回归
 - [ ] tsc --noEmit 零错误
 - [ ] 手动在 Windows + macOS/Linux 上验证关键路径
--- a/docs/test-plans/openclaw-autonomy-baseline.md
+++ b/docs/test-plans/openclaw-autonomy-baseline.md
@@ -0,0 +1,88 @@
 # OpenClaw Autonomy Baseline Test Spec
 ## Purpose
 This test spec locks the current behavior of the existing trigger and context layers before any formal autonomy-subsystem implementation begins.
 At this stage, production code is read-only. Only test files, fixtures, and planning documents may change.
 ## Goal
 Establish a stable baseline around the parts of `Claude-code-bast` that later autonomy work is most likely to touch:
 - proactive state handling
 - cron task storage semantics
 - cron scheduler helper semantics
 - user-context cache and `CLAUDE.md` injection behavior
 ## Out of Scope for This Baseline Round
 - New authority behavior (`AGENTS.md` / `HEARTBEAT.md`)
 - New detached-run ledger behavior
 - New flow behavior
 - UI redesign
 ## Files Under Baseline Protection
 - `src/proactive/index.ts`
 - `src/utils/cronTasks.ts`
 - `src/utils/cronScheduler.ts`
 - `src/context.ts`
 ## Test Files Added In This Round
 - `src/proactive/__tests__/state.baseline.test.ts`
 - `src/commands/__tests__/proactive.baseline.test.ts`
 - `src/utils/__tests__/cronTasks.baseline.test.ts`
 - `src/utils/__tests__/cronScheduler.baseline.test.ts`
 - `src/__tests__/context.baseline.test.ts`
 ## Baseline Assertions
 ### Proactive state
 1. Activating proactive mode sets active state and activation source.
 2. Pausing proactive mode suppresses `shouldTick()` and clears `nextTickAt`.
 3. Blocking context suppresses `shouldTick()` and clears `nextTickAt`.
 4. Subscribers are notified on state transitions.
 5. The `/proactive` command enables proactive mode and emits the expected hidden reminder.
 6. The `/proactive` command disables proactive mode on the second invocation.
 ### Cron task storage
 1. Session-only cron tasks remain in memory only.
 2. Durable cron tasks are persisted to `.claude/scheduled_tasks.json`.
 3. Daemon-style `dir`-scoped reads exclude session-only cron tasks.
 4. `removeCronTasks()` without `dir` can remove session-only tasks.
 5. `removeCronTasks()` with `dir` does not mutate session-only task storage.
 ### Cron scheduler helpers
 1. `isRecurringTaskAged()` preserves current aging semantics.
 2. `buildMissedTaskNotification()` preserves the current AskUserQuestion safety wording.
 3. `buildMissedTaskNotification()` preserves code-fence hardening for prompt bodies that contain backticks.
 ### User context caching
 1. `getUserContext()` includes `currentDate`.
 2. `getUserContext()` includes mocked `claudeMd` content when memory loading is enabled.
 3. `CLAUDE_CODE_DISABLE_CLAUDE_MDS` suppresses `claudeMd`.
 4. `setSystemPromptInjection()` clears the memoized user-context cache.
 5. `getSystemContext()` reflects the injection after cache invalidation.
 ## Remaining Baseline Gaps
 The following areas are intentionally deferred because they require higher-cost harnessing and should still avoid production-code changes:
 1. `useScheduledTasks.ts` hook-level runtime behavior
 2. `src/cli/print.ts` full headless scheduler loop behavior
 3. `useProactive.ts` hook timer behavior
 4. end-to-end queue interaction between proactive ticks and `SleepTool`
 ## Acceptance
 This baseline round is complete when:
 1. The four new test files pass.
 2. No production source files are modified.
 3. The tests are stable enough to serve as a pre-implementation guardrail.
--- a/mint.json
+++ b/mint.json
@@ -138,6 +138,7 @@
            "docs/features/voice-mode",
            "docs/features/bridge-mode",
            "docs/features/remote-control-self-hosting",
            "docs/features/acp-link",
            "docs/features/proactive",
            "docs/features/ultraplan"
          ]
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "claude-code-best",
-  "version": "1.3.5",
+  "version": "1.4.3",
  "description": "Reverse-engineered Anthropic Claude Code CLI — interactive AI coding assistant in the terminal",
  "type": "module",
  "author": "claude-code-best <claude-code-best@proton.me>",
@@ -31,7 +31,8 @@
  },
  "workspaces": [
    "packages/*",
-    "packages/@ant/*"
+    "packages/@ant/*",
    "packages/@anthropic-ai/*"
  ],
  "files": [
    "dist",
@@ -40,6 +41,9 @@
  ],
  "scripts": {
    "build": "bun run build.ts",
    "build:vite": "vite build && bun run scripts/post-build.ts",
    "build:vite:only": "vite build",
    "build:bun": "bun run build.ts",
    "dev": "bun run scripts/dev.ts",
    "dev:inspect": "bun run scripts/dev-debug.ts",
    "prepublishOnly": "bun run build",
@@ -50,19 +54,19 @@
    "test": "bun test",
    "check:unused": "knip-bun",
    "health": "bun run scripts/health-check.ts",
-    "postinstall": "node scripts/postinstall.cjs && node scripts/setup-chrome-mcp.mjs",
+    "postinstall": "node scripts/run-parallel.mjs scripts/postinstall.cjs scripts/setup-chrome-mcp.mjs",
    "docs:dev": "npx mintlify dev",
    "typecheck": "tsc --noEmit",
    "rcs": "bun run scripts/rcs.ts"
  },
  "dependencies": {
-    "@claude-code-best/mcp-chrome-bridge": "^2.0.7"
+    "@agentclientprotocol/sdk": "^0.19.0",
    "@claude-code-best/mcp-chrome-bridge": "^2.0.8",
    "ws": "^8.20.0"
  },
  "devDependencies": {
    "@types/he": "^1.2.3",
    "@langfuse/otel": "^5.1.0",
    "@langfuse/tracing": "^5.1.0",
    "@types/lodash-es": "^4.17.12",
    "@alcalzone/ansi-tokenize": "^0.3.0",
    "@ant/model-provider": "workspace:*",
    "@ant/claude-for-chrome-mcp": "workspace:*",
    "@ant/computer-use-input": "workspace:*",
    "@ant/computer-use-mcp": "workspace:*",
@@ -75,9 +79,6 @@
    "@anthropic-ai/sdk": "^0.80.0",
    "@anthropic-ai/vertex-sdk": "^0.14.4",
    "@anthropic/ink": "workspace:*",
    "@claude-code-best/builtin-tools": "workspace:*",
    "@claude-code-best/agent-tools": "workspace:*",
    "@claude-code-best/mcp-client": "workspace:*",
    "@aws-sdk/client-bedrock": "^3.1020.0",
    "@aws-sdk/client-bedrock-runtime": "^3.1020.0",
    "@aws-sdk/client-sts": "^3.1020.0",
@@ -85,8 +86,13 @@
    "@aws-sdk/credential-providers": "^3.1020.0",
    "@azure/identity": "^4.13.1",
    "@biomejs/biome": "^2.4.10",
    "@claude-code-best/agent-tools": "workspace:*",
    "@claude-code-best/builtin-tools": "workspace:*",
    "@claude-code-best/mcp-client": "workspace:*",
    "@commander-js/extra-typings": "^14.0.0",
    "@growthbook/growthbook": "^1.6.5",
    "@langfuse/otel": "^5.1.0",
    "@langfuse/tracing": "^5.1.0",
    "@modelcontextprotocol/sdk": "^1.29.0",
    "@opentelemetry/api": "^1.9.1",
    "@opentelemetry/api-logs": "^0.214.0",
@@ -109,8 +115,11 @@
    "@sentry/node": "^10.47.0",
    "@smithy/core": "^3.23.13",
    "@smithy/node-http-handler": "^4.5.1",
-    "@types/bun": "^1.3.11",
+    "@types/bun": "^1.3.12",
    "@types/cacache": "^20.0.1",
    "@types/he": "^1.2.3",
    "@types/lodash-es": "^4.17.12",
    "@types/node": "^25.6.0",
    "@types/picomatch": "^4.0.3",
    "@types/plist": "^3.0.5",
    "@types/proper-lockfile": "^4.1.4",
@@ -166,6 +175,7 @@
    "react": "^19.2.4",
    "react-compiler-runtime": "^1.0.0",
    "react-reconciler": "^0.33.0",
    "rollup": "^4.60.1",
    "semver": "^7.7.4",
    "sharp": "^0.34.5",
    "shell-quote": "^1.8.3",
@@ -180,11 +190,11 @@
    "undici": "^7.24.6",
    "url-handler-napi": "workspace:*",
    "usehooks-ts": "^3.1.1",
    "vite": "^8.0.8",
    "vscode-jsonrpc": "^8.2.1",
    "vscode-languageserver-protocol": "^3.17.5",
    "vscode-languageserver-types": "^3.17.5",
    "wrap-ansi": "^10.0.0",
    "ws": "^8.20.0",
    "xss": "^1.0.15",
    "yaml": "^2.8.3",
    "zod": "^4.3.6"
--- a/packages/@ant/claude-for-chrome-mcp/tsconfig.json
+++ b/packages/@ant/claude-for-chrome-mcp/tsconfig.json
@@ -0,0 +1,5 @@
 {
  "extends": "../../../tsconfig.base.json",
  "include": ["src/**/*.ts"],
  "exclude": ["node_modules", "dist"]
 }
--- a/packages/@ant/computer-use-input/src/backends/darwin.ts
+++ b/packages/@ant/computer-use-input/src/backends/darwin.ts
@@ -5,9 +5,12 @@
 * mouse and keyboard via CoreGraphics events and System Events.
 */
-import { $ } from 'bun'
+import { execFile, execFileSync } from 'child_process'
 import { promisify } from 'util'
 import type { FrontmostAppInfo, InputBackend } from '../types.js'
 const execFileAsync = promisify(execFile)
 const KEY_MAP: Record<string, number> = {
  return: 36, enter: 36, tab: 48, space: 49, delete: 51, backspace: 51,
  escape: 53, esc: 53,
@@ -25,13 +28,17 @@ const MODIFIER_MAP: Record<string, string> = {
 }
 async function osascript(script: string): Promise<string> {
-  const result = await $`osascript -e ${script}`.quiet().nothrow().text()
+  const { stdout } = await execFileAsync('osascript', ['-e', script], {
-  return result.trim()
+    encoding: 'utf-8',
  })
  return stdout.trim()
 }
 async function jxa(script: string): Promise<string> {
-  const result = await $`osascript -l JavaScript -e ${script}`.quiet().nothrow().text()
+  const { stdout } = await execFileAsync('osascript', ['-l', 'JavaScript', '-e', script], {
-  return result.trim()
+    encoding: 'utf-8',
  })
  return stdout.trim()
 }
 function buildMouseJxa(eventType: string, x: number, y: number, btn: number, clickState?: number): string {
@@ -115,19 +122,14 @@ export const typeText: InputBackend['typeText'] = async (text) => {
 export const getFrontmostAppInfo: InputBackend['getFrontmostAppInfo'] = () => {
  try {
-    const result = Bun.spawnSync({
+    const output = execFileSync('osascript', ['-e', `
-      cmd: ['osascript', '-e', `
+      tell application "System Events"
-        tell application "System Events"
+        set frontApp to first application process whose frontmost is true
-          set frontApp to first application process whose frontmost is true
+        set appName to name of frontApp
-          set appName to name of frontApp
+        set bundleId to bundle identifier of frontApp
-          set bundleId to bundle identifier of frontApp
+        return bundleId & "|" & appName
-          return bundleId & "|" & appName
+      end tell
-        end tell
+    `], { encoding: 'utf-8', stdio: ['pipe', 'pipe', 'ignore'] }).trim()
      `],
      stdout: 'pipe',
      stderr: 'pipe',
    })
    const output = new TextDecoder().decode(result.stdout).trim()
    if (!output || !output.includes('|')) return null
    const [bundleId, appName] = output.split('|', 2)
    return { bundleId: bundleId!, appName: appName! }
--- a/packages/@ant/computer-use-input/tsconfig.json
+++ b/packages/@ant/computer-use-input/tsconfig.json
@@ -0,0 +1,5 @@
 {
  "extends": "../../../tsconfig.base.json",
  "include": ["src/**/*.ts"],
  "exclude": ["node_modules", "dist"]
 }
--- a/packages/@ant/computer-use-mcp/src/toolCalls.ts
+++ b/packages/@ant/computer-use-mcp/src/toolCalls.ts
@@ -37,16 +37,21 @@
 import type { CallToolResult } from "@modelcontextprotocol/sdk/types.js";
 import { randomUUID } from "node:crypto";
-/** Detect actual image MIME type from base64 data using magic bytes. */
+/** Detect actual image MIME type from base64 data by decoding the magic bytes. */
 function detectMimeFromBase64(b64: string): string {
-  // First byte is enough to distinguish PNG (0x89) from JPEG (0xFF)
+  // Decode first 12 raw bytes (16 base64 chars is enough) and check standard magic bytes.
-  const c = b64.charCodeAt(0);
+  // PNG:  89 50 4E 47
-  if (c === 0x89) return "image/png";
+  // JPEG: FF D8 FF
-  if (c === 0xFF) return "image/jpeg";
+  // RIFF+WEBP: "RIFF" at 0..3 + "WEBP" at 8..11
-  // RIFF = WebP
+  // GIF:  "GIF" at 0..2
-  if (c === 0x52) return "image/webp";
+  const raw = Buffer.from(b64.slice(0, 16), "base64");
-  // GIF
+  if (raw[0] === 0x89 && raw[1] === 0x50 && raw[2] === 0x4e && raw[3] === 0x47) return "image/png";
-  if (c === 0x47) return "image/gif";
+  if (raw[0] === 0xff && raw[1] === 0xd8 && raw[2] === 0xff) return "image/jpeg";
  if (
    raw[0] === 0x52 && raw[1] === 0x49 && raw[2] === 0x46 && raw[3] === 0x46 && // RIFF
    raw[8] === 0x57 && raw[9] === 0x45 && raw[10] === 0x42 && raw[11] === 0x50  // WEBP
  ) return "image/webp";
  if (raw[0] === 0x47 && raw[1] === 0x49 && raw[2] === 0x46) return "image/gif";
  return "image/png";
 }
--- a/packages/@ant/computer-use-mcp/tsconfig.json
+++ b/packages/@ant/computer-use-mcp/tsconfig.json
@@ -0,0 +1,5 @@
 {
  "extends": "../../../tsconfig.base.json",
  "include": ["src/**/*.ts"],
  "exclude": ["node_modules", "dist"]
 }
--- a/packages/@ant/computer-use-swift/src/backends/darwin.ts
+++ b/packages/@ant/computer-use-swift/src/backends/darwin.ts
@@ -274,4 +274,9 @@ export const screenshot: ScreenshotAPI = {
    if (displayId !== undefined) args.push('-D', String(displayId))
    return captureScreenToBase64(args)
  },
  captureWindowTarget(_titleOrHwnd: string | number): ScreenshotResult | null {
    // Window capture not supported on macOS via this backend
    return null
  },
 }
--- a/packages/@ant/computer-use-swift/src/backends/linux.ts
+++ b/packages/@ant/computer-use-swift/src/backends/linux.ts
@@ -275,4 +275,9 @@ export const screenshot: ScreenshotAPI = {
      return { base64: '', width: 0, height: 0 }
    }
  },
  captureWindowTarget(_titleOrHwnd: string | number): ScreenshotResult | null {
    // Window capture not supported on Linux via this backend
    return null
  },
 }
--- a/packages/@ant/computer-use-swift/src/types.ts
+++ b/packages/@ant/computer-use-swift/src/types.ts
@@ -76,6 +76,7 @@ export interface ScreenshotAPI {
    x: number, y: number, w: number, h: number,
    outW: number, outH: number, quality: number, displayId?: number,
  ): Promise<ScreenshotResult>
  captureWindowTarget(titleOrHwnd: string | number): ScreenshotResult | null
 }
 export interface SwiftBackend {
--- a/packages/@ant/computer-use-swift/tsconfig.json
+++ b/packages/@ant/computer-use-swift/tsconfig.json
@@ -0,0 +1,5 @@
 {
  "extends": "../../../tsconfig.json",
  "include": ["src/**/*.ts"],
  "exclude": ["node_modules", "dist"]
 }
--- a/packages/@ant/ink/tsconfig.json
+++ b/packages/@ant/ink/tsconfig.json
@@ -0,0 +1,5 @@
 {
  "extends": "../../../tsconfig.base.json",
  "include": ["src/**/*.ts", "src/**/*.tsx"],
  "exclude": ["node_modules", "dist"]
 }
--- a/packages/@ant/model-provider/package.json
+++ b/packages/@ant/model-provider/package.json
@@ -0,0 +1,18 @@
 {
  "name": "@ant/model-provider",
  "version": "1.0.0",
  "private": true,
  "type": "module",
  "main": "./src/index.ts",
  "types": "./src/index.ts",
  "exports": {
    ".": "./src/index.ts",
    "./types": "./src/types/index.ts",
    "./hooks": "./src/hooks/index.ts",
    "./client": "./src/client/index.ts"
  },
  "dependencies": {
    "@anthropic-ai/sdk": "^0.80.0",
    "openai": "^6.33.0"
  }
 }
--- a/packages/@ant/model-provider/src/client/index.ts
+++ b/packages/@ant/model-provider/src/client/index.ts
@@ -0,0 +1,27 @@
 import type { ClientFactories } from './types.js'
 let registeredFactories: ClientFactories | null = null
 /**
 * Register client factories from the main project.
 * Call this during application initialization.
 */
 export function registerClientFactories(factories: ClientFactories): void {
  registeredFactories = factories
 }
 /**
 * Get registered client factories.
 * Throws if not registered (fail-fast).
 */
 export function getClientFactories(): ClientFactories {
  if (!registeredFactories) {
    throw new Error(
      'Client factories not registered. ' +
        'Call registerClientFactories() during app initialization.',
    )
  }
  return registeredFactories
 }
 export type { ClientFactories }
--- a/packages/@ant/model-provider/src/client/types.ts
+++ b/packages/@ant/model-provider/src/client/types.ts
@@ -0,0 +1,35 @@
 /**
 * Client factory interfaces.
 * Authentication is handled externally — main project provides factory implementations.
 */
 export interface ClientFactories {
  /** Get Anthropic client (1st party, Bedrock, Foundry, Vertex) */
  getAnthropicClient: (params: {
    model?: string
    maxRetries: number
    fetchOverride?: unknown
    source?: string
  }) => Promise<unknown>
  /** Get OpenAI-compatible client */
  getOpenAIClient: (params: {
    maxRetries: number
    fetchOverride?: unknown
    source?: string
  }) => unknown
  /** Stream Gemini generate content */
  streamGeminiGenerateContent: (params: {
    model: string
    signal?: AbortSignal
    fetchOverride?: unknown
    body: Record<string, unknown>
  }) => AsyncIterable<unknown>
  /** Get Grok client (OpenAI-compatible) */
  getGrokClient: (params: {
    maxRetries: number
    fetchOverride?: unknown
    source?: string
  }) => unknown
 }
--- a/packages/@ant/model-provider/src/errorUtils.ts
+++ b/packages/@ant/model-provider/src/errorUtils.ts
@@ -0,0 +1,238 @@
 import type { APIError } from '@anthropic-ai/sdk'
 // SSL/TLS error codes from OpenSSL (used by both Node.js and Bun)
 // See: https://www.openssl.org/docs/man3.1/man3/X509_STORE_CTX_get_error.html
 const SSL_ERROR_CODES = new Set([
  // Certificate verification errors
  'UNABLE_TO_VERIFY_LEAF_SIGNATURE',
  'UNABLE_TO_GET_ISSUER_CERT',
  'UNABLE_TO_GET_ISSUER_CERT_LOCALLY',
  'CERT_SIGNATURE_FAILURE',
  'CERT_NOT_YET_VALID',
  'CERT_HAS_EXPIRED',
  'CERT_REVOKED',
  'CERT_REJECTED',
  'CERT_UNTRUSTED',
  // Self-signed certificate errors
  'DEPTH_ZERO_SELF_SIGNED_CERT',
  'SELF_SIGNED_CERT_IN_CHAIN',
  // Chain errors
  'CERT_CHAIN_TOO_LONG',
  'PATH_LENGTH_EXCEEDED',
  // Hostname/altname errors
  'ERR_TLS_CERT_ALTNAME_INVALID',
  'HOSTNAME_MISMATCH',
  // TLS handshake errors
  'ERR_TLS_HANDSHAKE_TIMEOUT',
  'ERR_SSL_WRONG_VERSION_NUMBER',
  'ERR_SSL_DECRYPTION_FAILED_OR_BAD_RECORD_MAC',
 ])
 export type ConnectionErrorDetails = {
  code: string
  message: string
  isSSLError: boolean
 }
 /**
 * Extracts connection error details from the error cause chain.
 * The Anthropic SDK wraps underlying errors in the `cause` property.
 * This function walks the cause chain to find the root error code/message.
 */
 export function extractConnectionErrorDetails(
  error: unknown,
 ): ConnectionErrorDetails | null {
  if (!error || typeof error !== 'object') {
    return null
  }
  // Walk the cause chain to find the root error with a code
  let current: unknown = error
  const maxDepth = 5 // Prevent infinite loops
  let depth = 0
  while (current && depth < maxDepth) {
    if (
      current instanceof Error &&
      'code' in current &&
      typeof current.code === 'string'
    ) {
      const code = current.code
      const isSSLError = SSL_ERROR_CODES.has(code)
      return {
        code,
        message: current.message,
        isSSLError,
      }
    }
    // Move to the next cause in the chain
    if (
      current instanceof Error &&
      'cause' in current &&
      current.cause !== current
    ) {
      current = current.cause
      depth++
    } else {
      break
    }
  }
  return null
 }
 /**
 * Returns an actionable hint for SSL/TLS errors, intended for contexts outside
 * the main API client (OAuth token exchange, preflight connectivity checks)
 * where `formatAPIError` doesn't apply.
 */
 export function getSSLErrorHint(error: unknown): string | null {
  const details = extractConnectionErrorDetails(error)
  if (!details?.isSSLError) {
    return null
  }
  return `SSL certificate error (${details.code}). If you are behind a corporate proxy or TLS-intercepting firewall, set NODE_EXTRA_CA_CERTS to your CA bundle path, or ask IT to allowlist *.anthropic.com. Run /doctor for details.`
 }
 /**
 * Strips HTML content (e.g., CloudFlare error pages) from a message string,
 * returning a user-friendly title or empty string if HTML is detected.
 * Returns the original message unchanged if no HTML is found.
 */
 function sanitizeMessageHTML(message: string): string {
  if (message.includes('<!DOCTYPE html') || message.includes('<html')) {
    const titleMatch = message.match(/<title>([^<]+)<\/title>/)
    if (titleMatch && titleMatch[1]) {
      return titleMatch[1].trim()
    }
    return ''
  }
  return message
 }
 /**
 * Detects if an error message contains HTML content (e.g., CloudFlare error pages)
 * and returns a user-friendly message instead
 */
 export function sanitizeAPIError(apiError: APIError): string {
  const message = apiError.message
  if (!message) {
    return ''
  }
  return sanitizeMessageHTML(message)
 }
 /**
 * Shapes of deserialized API errors from session JSONL.
 */
 type NestedAPIError = {
  error?: {
    message?: string
    error?: { message?: string }
  }
 }
 function hasNestedError(value: unknown): value is NestedAPIError {
  return (
    typeof value === 'object' &&
    value !== null &&
    'error' in value &&
    typeof value.error === 'object' &&
    value.error !== null
  )
 }
 /**
 * Extract a human-readable message from a deserialized API error that lacks
 * a top-level `.message`.
 */
 function extractNestedErrorMessage(error: APIError): string | null {
  if (!hasNestedError(error)) {
    return null
  }
  const narrowed: NestedAPIError = error
  const nested = narrowed.error
  // Standard Anthropic API shape: { error: { error: { message } } }
  const deepMsg = nested?.error?.message
  if (typeof deepMsg === 'string' && deepMsg.length > 0) {
    const sanitized = sanitizeMessageHTML(deepMsg)
    if (sanitized.length > 0) {
      return sanitized
    }
  }
  // Bedrock shape: { error: { message } }
  const msg = nested?.message
  if (typeof msg === 'string' && msg.length > 0) {
    const sanitized = sanitizeMessageHTML(msg)
    if (sanitized.length > 0) {
      return sanitized
    }
  }
  return null
 }
 export function formatAPIError(error: APIError): string {
  // Extract connection error details from the cause chain
  const connectionDetails = extractConnectionErrorDetails(error)
  if (connectionDetails) {
    const { code, isSSLError } = connectionDetails
    // Handle timeout errors
    if (code === 'ETIMEDOUT') {
      return 'Request timed out. Check your internet connection and proxy settings'
    }
    // Handle SSL/TLS errors with specific messages
    if (isSSLError) {
      switch (code) {
        case 'UNABLE_TO_VERIFY_LEAF_SIGNATURE':
        case 'UNABLE_TO_GET_ISSUER_CERT':
        case 'UNABLE_TO_GET_ISSUER_CERT_LOCALLY':
          return 'Unable to connect to API: SSL certificate verification failed. Check your proxy or corporate SSL certificates'
        case 'CERT_HAS_EXPIRED':
          return 'Unable to connect to API: SSL certificate has expired'
        case 'CERT_REVOKED':
          return 'Unable to connect to API: SSL certificate has been revoked'
        case 'DEPTH_ZERO_SELF_SIGNED_CERT':
        case 'SELF_SIGNED_CERT_IN_CHAIN':
          return 'Unable to connect to API: Self-signed certificate detected. Check your proxy or corporate SSL certificates'
        case 'ERR_TLS_CERT_ALTNAME_INVALID':
        case 'HOSTNAME_MISMATCH':
          return 'Unable to connect to API: SSL certificate hostname mismatch'
        case 'CERT_NOT_YET_VALID':
          return 'Unable to connect to API: SSL certificate is not yet valid'
        default:
          return `Unable to connect to API: SSL error (${code})`
      }
    }
  }
  if (error.message === 'Connection error.') {
    // If we have a code but it's not SSL, include it for debugging
    if (connectionDetails?.code) {
      return `Unable to connect to API (${connectionDetails.code})`
    }
    return 'Unable to connect to API. Check your internet connection'
  }
  // Guard: when deserialized from JSONL (e.g. --resume), the error object may
  // be a plain object without a `.message` property.
  if (!error.message) {
    return (
      extractNestedErrorMessage(error) ??
      `API error (status ${error.status ?? 'unknown'})`
    )
  }
  const sanitizedMessage = sanitizeAPIError(error)
  // Use sanitized message if it's different from the original (i.e., HTML was sanitized)
  return sanitizedMessage !== error.message && sanitizedMessage.length > 0
    ? sanitizedMessage
    : error.message
 }
--- a/packages/@ant/model-provider/src/hooks/index.ts
+++ b/packages/@ant/model-provider/src/hooks/index.ts
@@ -0,0 +1,27 @@
 import type { ModelProviderHooks } from './types.js'
 let registeredHooks: ModelProviderHooks | null = null
 /**
 * Register hooks from the main project.
 * Call this during application initialization.
 */
 export function registerHooks(hooks: ModelProviderHooks): void {
  registeredHooks = hooks
 }
 /**
 * Get registered hooks.
 * Throws if hooks not registered (fail-fast).
 */
 export function getHooks(): ModelProviderHooks {
  if (!registeredHooks) {
    throw new Error(
      'ModelProvider hooks not registered. ' +
        'Call registerHooks() during app initialization.',
    )
  }
  return registeredHooks
 }
 export type { ModelProviderHooks }
--- a/packages/@ant/model-provider/src/hooks/types.ts
+++ b/packages/@ant/model-provider/src/hooks/types.ts
@@ -0,0 +1,48 @@
 /**
 * Hooks for dependency injection.
 * Main project provides implementations; model-provider calls them.
 *
 * This decouples the model-provider from main project specifics like
 * analytics, cost tracking, feature flags, etc.
 */
 export interface ModelProviderHooks {
  /** Log an analytics event (replaces direct logEvent calls) */
  logEvent: (eventName: string, metadata?: Record<string, unknown>) => void
  /** Report API cost after each response */
  reportCost: (params: {
    costUSD: number
    usage: Record<string, unknown>
    model: string
  }) => void
  /** Get tool permission context */
  getToolPermissionContext?: () => Promise<Record<string, unknown>>
  /** Debug logging */
  logForDebugging: (msg: string, opts?: { level?: string }) => void
  /** Error logging */
  logError: (error: Error) => void
  /** Get feature flag value */
  getFeatureFlag?: (flagName: string) => unknown
  /** Get session ID */
  getSessionId: () => string
  /** Add a notification */
  addNotification?: (notification: Record<string, unknown>) => void
  /** Get API provider name */
  getAPIProvider: () => string
  /** Get user ID */
  getOrCreateUserID: () => string
  /** Check if non-interactive session */
  isNonInteractiveSession: () => boolean
  /** Get OAuth account info */
  getOauthAccountInfo?: () => Record<string, unknown> | undefined
 }
--- a/packages/@ant/model-provider/src/index.ts
+++ b/packages/@ant/model-provider/src/index.ts
@@ -0,0 +1,63 @@
 // @ant/model-provider
 // Model provider abstraction layer for Claude Code
 //
 // This package owns the model calling logic and provides:
 // - Core query functions (queryModelWithStreaming, etc.)
 // - Provider implementations (Anthropic, OpenAI, Gemini, Grok)
 // - Type definitions (Message, Tool, Usage, etc.)
 // - Dependency injection hooks (analytics, cost tracking, etc.)
 //
 // Initialization:
 //   registerClientFactories({ ... })  // inject auth clients
 //   registerHooks({ ... })            // inject analytics/cost/logging
 // Hooks (dependency injection)
 export { registerHooks, getHooks } from './hooks/index.js'
 export type { ModelProviderHooks } from './hooks/types.js'
 // Client factories
 export { registerClientFactories, getClientFactories } from './client/index.js'
 export type { ClientFactories } from './client/types.js'
 // Types
 export * from './types/index.js'
 // Provider model mappings
 export { resolveOpenAIModel } from './providers/openai/modelMapping.js'
 export { resolveGrokModel } from './providers/grok/modelMapping.js'
 export { resolveGeminiModel } from './providers/gemini/modelMapping.js'
 // Gemini provider utilities
 export { anthropicMessagesToGemini } from './providers/gemini/convertMessages.js'
 export { anthropicToolsToGemini, anthropicToolChoiceToGemini } from './providers/gemini/convertTools.js'
 export { adaptGeminiStreamToAnthropic } from './providers/gemini/streamAdapter.js'
 export {
  GEMINI_THOUGHT_SIGNATURE_FIELD,
  type GeminiContent,
  type GeminiGenerateContentRequest,
  type GeminiPart,
  type GeminiStreamChunk,
  type GeminiTool,
  type GeminiFunctionCallingConfig,
  type GeminiFunctionDeclaration,
  type GeminiFunctionCall,
  type GeminiFunctionResponse,
  type GeminiInlineData,
  type GeminiUsageMetadata,
  type GeminiCandidate,
 } from './providers/gemini/types.js'
 // Error utilities
 export {
  formatAPIError,
  extractConnectionErrorDetails,
  sanitizeAPIError,
  getSSLErrorHint,
  type ConnectionErrorDetails,
 } from './errorUtils.js'
 // Shared OpenAI conversion utilities
 export { anthropicMessagesToOpenAI } from './shared/openaiConvertMessages.js'
 export type { ConvertMessagesOptions } from './shared/openaiConvertMessages.js'
 export { anthropicToolsToOpenAI, anthropicToolChoiceToOpenAI } from './shared/openaiConvertTools.js'
 export { adaptOpenAIStreamToAnthropic } from './shared/openaiStreamAdapter.js'
--- a/packages/@ant/model-provider/src/providers/gemini/tests/convertMessages.test.ts
+++ b/packages/@ant/model-provider/src/providers/gemini/tests/convertMessages.test.ts
@@ -2,7 +2,7 @@ import { describe, expect, test } from 'bun:test'
 import type {
  AssistantMessage,
  UserMessage,
-} from '../../../../types/message.js'
+} from '../../../types/message.js'
 import { anthropicMessagesToGemini } from '../convertMessages.js'
 function makeUserMsg(content: string | any[]): UserMessage {
--- a/packages/@ant/model-provider/src/providers/gemini/tests/convertTools.test.ts
+++ b/packages/@ant/model-provider/src/providers/gemini/tests/convertTools.test.ts
--- a/packages/@ant/model-provider/src/providers/gemini/tests/modelMapping.test.ts
+++ b/packages/@ant/model-provider/src/providers/gemini/tests/modelMapping.test.ts
--- a/packages/@ant/model-provider/src/providers/gemini/tests/streamAdapter.test.ts
+++ b/packages/@ant/model-provider/src/providers/gemini/tests/streamAdapter.test.ts
--- a/packages/@ant/model-provider/src/providers/gemini/convertMessages.ts
+++ b/packages/@ant/model-provider/src/providers/gemini/convertMessages.ts
@@ -2,9 +2,8 @@ import type {
  BetaToolResultBlockParam,
  BetaToolUseBlock,
 } from '@anthropic-ai/sdk/resources/beta/messages/messages.mjs'
-import type { AssistantMessage, UserMessage } from '../../../types/message.js'
+import type { AssistantMessage, UserMessage } from '../../types/message.js'
-import { safeParseJSON } from '../../../utils/json.js'
+import type { SystemPrompt } from '../../types/systemPrompt.js'
 import type { SystemPrompt } from '../../../utils/systemPromptType.js'
 import {
  GEMINI_THOUGHT_SIGNATURE_FIELD,
  type GeminiContent,
@@ -12,6 +11,16 @@ import {
  type GeminiPart,
 } from './types.js'
 // Simple JSON parse utility (replaces safeParseJSON from main project)
 function safeParseJSON(json: string | null | undefined): unknown {
  if (!json) return null
  try {
    return JSON.parse(json)
  } catch {
    return null
  }
 }
 export function anthropicMessagesToGemini(
  messages: (UserMessage | AssistantMessage)[],
  systemPrompt: SystemPrompt,
@@ -113,7 +122,7 @@ function convertUserContentBlockToGeminiParts(
    ]
  }
-  // 将 Anthropic image 块转换为 Gemini inlineData
+  // Convert Anthropic image blocks to Gemini inlineData
  if (block.type === 'image') {
    const source = block.source as Record<string, unknown> | undefined
    if (source?.type === 'base64' && typeof source.data === 'string') {
@@ -127,7 +136,7 @@ function convertUserContentBlockToGeminiParts(
        },
      ]
    }
-    // url 类型的图片，Gemini 不直接支持，转为文本描述
+    // URL images not directly supported by Gemini, convert to text description
    if (source?.type === 'url' && typeof source.url === 'string') {
      return createTextGeminiParts(`[image: ${source.url}]`)
    }
--- a/packages/@ant/model-provider/src/providers/gemini/convertTools.ts
+++ b/packages/@ant/model-provider/src/providers/gemini/convertTools.ts
--- a/packages/@ant/model-provider/src/providers/gemini/modelMapping.ts
+++ b/packages/@ant/model-provider/src/providers/gemini/modelMapping.ts
@@ -17,14 +17,12 @@ export function resolveGeminiModel(anthropicModel: string): string {
    return cleanModel
  }
  // First, try Gemini-specific DEFAULT variables (separated from Anthropic)
  const geminiEnvVar = `GEMINI_DEFAULT_${family.toUpperCase()}_MODEL`
  const geminiModel = process.env[geminiEnvVar]
  if (geminiModel) {
    return geminiModel
  }
  // Fallback to Anthropic DEFAULT variables for backward compatibility
  const sharedEnvVar = `ANTHROPIC_DEFAULT_${family.toUpperCase()}_MODEL`
  const resolvedModel = process.env[sharedEnvVar]
  if (resolvedModel) {
--- a/packages/@ant/model-provider/src/providers/gemini/streamAdapter.ts
+++ b/packages/@ant/model-provider/src/providers/gemini/streamAdapter.ts
--- a/packages/@ant/model-provider/src/providers/gemini/types.ts
+++ b/packages/@ant/model-provider/src/providers/gemini/types.ts
--- a/packages/@ant/model-provider/src/providers/grok/tests/modelMapping.test.ts
+++ b/packages/@ant/model-provider/src/providers/grok/tests/modelMapping.test.ts
--- a/packages/@ant/model-provider/src/providers/grok/modelMapping.ts
+++ b/packages/@ant/model-provider/src/providers/grok/modelMapping.ts
@@ -2,8 +2,7 @@
 * Default mapping from Anthropic model names to Grok model names.
 *
 * Users can override per-family via GROK_DEFAULT_{FAMILY}_MODEL env vars,
- * or override the entire mapping via GROK_MODEL_MAP env var (JSON string):
+ * or override the entire mapping via GROK_MODEL_MAP env var (JSON string).
 *   GROK_MODEL_MAP='{"opus":"grok-4","sonnet":"grok-3","haiku":"grok-3-mini-fast"}'
 */
 const DEFAULT_MODEL_MAP: Record<string, string> = {
  'claude-sonnet-4-20250514': 'grok-3-mini-fast',
@@ -19,9 +18,6 @@ const DEFAULT_MODEL_MAP: Record<string, string> = {
  'claude-3-5-sonnet-20241022': 'grok-3-mini-fast',
 }
 /**
 * Family-level mapping defaults (used by GROK_MODEL_MAP).
 */
 const DEFAULT_FAMILY_MAP: Record<string, string> = {
  opus: 'grok-4.20-reasoning',
  sonnet: 'grok-3-mini-fast',
@@ -35,10 +31,6 @@ function getModelFamily(model: string): 'haiku' | 'sonnet' | 'opus' | null {
  return null
 }
 /**
 * Parse user-provided model map from GROK_MODEL_MAP env var.
 * Accepts JSON like: {"opus":"grok-4","sonnet":"grok-3","haiku":"grok-3-mini-fast"}
 */
 function getUserModelMap(): Record<string, string> | null {
  const raw = process.env.GROK_MODEL_MAP
  if (!raw) return null
@@ -55,18 +47,8 @@ function getUserModelMap(): Record<string, string> | null {
 /**
 * Resolve the Grok model name for a given Anthropic model.
 *
 * Priority:
 * 1. GROK_MODEL env var (override all)
 * 2. GROK_MODEL_MAP env var — JSON family map (e.g. {"opus":"grok-4"})
 * 3. GROK_DEFAULT_{FAMILY}_MODEL env var (e.g. GROK_DEFAULT_OPUS_MODEL)
 * 4. ANTHROPIC_DEFAULT_{FAMILY}_MODEL env var (backward compat)
 * 5. DEFAULT_MODEL_MAP lookup
 * 6. Family-level default
 * 7. Pass through original model name
 */
 export function resolveGrokModel(anthropicModel: string): string {
  // 1. Global override
  if (process.env.GROK_MODEL) {
    return process.env.GROK_MODEL
  }
@@ -74,34 +56,28 @@ export function resolveGrokModel(anthropicModel: string): string {
  const cleanModel = anthropicModel.replace(/\[1m\]$/, '')
  const family = getModelFamily(cleanModel)
  // 2. User-provided model map
  const userMap = getUserModelMap()
  if (userMap && family && userMap[family]) {
    return userMap[family]
  }
  if (family) {
    // 3. Grok-specific family override
    const grokEnvVar = `GROK_DEFAULT_${family.toUpperCase()}_MODEL`
    const grokOverride = process.env[grokEnvVar]
    if (grokOverride) return grokOverride
    // 4. Anthropic env var (backward compat)
    const anthropicEnvVar = `ANTHROPIC_DEFAULT_${family.toUpperCase()}_MODEL`
    const anthropicOverride = process.env[anthropicEnvVar]
    if (anthropicOverride) return anthropicOverride
  }
  // 5. Exact model name lookup
  if (DEFAULT_MODEL_MAP[cleanModel]) {
    return DEFAULT_MODEL_MAP[cleanModel]
  }
  // 6. Family-level default
  if (family && DEFAULT_FAMILY_MAP[family]) {
    return DEFAULT_FAMILY_MAP[family]
  }
  // 7. Pass through
  return cleanModel
 }
--- a/packages/@ant/model-provider/src/providers/openai/tests/modelMapping.test.ts
+++ b/packages/@ant/model-provider/src/providers/openai/tests/modelMapping.test.ts
--- a/packages/@ant/model-provider/src/providers/openai/modelMapping.ts
+++ b/packages/@ant/model-provider/src/providers/openai/modelMapping.ts
@@ -16,9 +16,6 @@ const DEFAULT_MODEL_MAP: Record<string, string> = {
  'claude-3-5-sonnet-20241022': 'gpt-4o',
 }
 /**
 * Determine the model family (haiku / sonnet / opus) from an Anthropic model ID.
 */
 function getModelFamily(model: string): 'haiku' | 'sonnet' | 'opus' | null {
  if (/haiku/i.test(model)) return 'haiku'
  if (/opus/i.test(model)) return 'opus'
@@ -37,23 +34,18 @@ function getModelFamily(model: string): 'haiku' | 'sonnet' | 'opus' | null {
 * 5. Pass through original model name
 */
 export function resolveOpenAIModel(anthropicModel: string): string {
  // Highest priority: explicit override
  if (process.env.OPENAI_MODEL) {
    return process.env.OPENAI_MODEL
  }
  // Strip [1m] suffix if present (Claude-specific modifier)
  const cleanModel = anthropicModel.replace(/\[1m\]$/, '')
  // Check family-specific overrides
  const family = getModelFamily(cleanModel)
  if (family) {
    // OpenAI-specific family override (preferred for openai provider)
    const openaiEnvVar = `OPENAI_DEFAULT_${family.toUpperCase()}_MODEL`
    const openaiOverride = process.env[openaiEnvVar]
    if (openaiOverride) return openaiOverride
    // Anthropic env var (backward compatibility)
    const anthropicEnvVar = `ANTHROPIC_DEFAULT_${family.toUpperCase()}_MODEL`
    const anthropicOverride = process.env[anthropicEnvVar]
    if (anthropicOverride) return anthropicOverride
--- a/packages/@ant/model-provider/src/shared/tests/openaiConvertMessages.test.ts
+++ b/packages/@ant/model-provider/src/shared/tests/openaiConvertMessages.test.ts
@@ -1,6 +1,6 @@
 import { describe, expect, test } from 'bun:test'
-import { anthropicMessagesToOpenAI } from '../convertMessages.js'
+import { anthropicMessagesToOpenAI } from '../openaiConvertMessages.js'
-import type { UserMessage, AssistantMessage } from '../../../../types/message.js'
+import type { UserMessage, AssistantMessage } from '../../types/message.js'
 // Helpers to create internal-format messages
 function makeUserMsg(content: string | any[]): UserMessage {
@@ -396,10 +396,6 @@ describe('DeepSeek thinking mode (enableThinking)', () => {
      { enableThinking: true },
    )
    // All 3 assistant messages are in the current turn (after last user msg is the last tool_result,
    // but the "last user message" boundary logic finds the last user-typed message).
    // Actually, tool_result messages are also UserMessage type, so the last user message
    // is the one with tool_result for toolu_002. All assistant messages after that should have reasoning.
    const assistants = result.filter(m => m.role === 'assistant')
    expect(assistants.length).toBe(3)
    // All iterations within the same turn preserve reasoning
@@ -435,6 +431,54 @@ describe('DeepSeek thinking mode (enableThinking)', () => {
    expect(assistant.reasoning_content).toBeUndefined()
  })
  // ── fix: reorder tool and user messages for OpenAI API compatibility (#168) ──
  test('tool messages come BEFORE user text when mixed in same turn', () => {
    // OpenAI requires: assistant(tool_calls) → tool → user
    // Bug: previously user text was emitted before tool messages
    const result = anthropicMessagesToOpenAI(
      [
        makeUserMsg('run ls'),
        makeAssistantMsg([
          { type: 'tool_use' as const, id: 'toolu_1', name: 'bash', input: { command: 'ls' } },
        ]),
        makeUserMsg([
          { type: 'tool_result' as const, tool_use_id: 'toolu_1', content: 'file.txt' },
          { type: 'text' as const, text: 'looks good' },
        ]),
      ],
      [] as any,
    )
    // Find the tool message and the user text message
    const toolIdx = result.findIndex(m => m.role === 'tool')
    const userTextIdx = result.findIndex(
      m => m.role === 'user' && typeof m.content === 'string' && m.content.includes('looks good'),
    )
    expect(toolIdx).toBeGreaterThanOrEqual(0)
    expect(userTextIdx).toBeGreaterThanOrEqual(0)
    // Tool MUST come before user text
    expect(toolIdx).toBeLessThan(userTextIdx)
  })
  test('tool message immediately follows assistant tool_calls (no user message in between)', () => {
    const result = anthropicMessagesToOpenAI(
      [
        makeUserMsg('do something'),
        makeAssistantMsg([
          { type: 'tool_use' as const, id: 'toolu_2', name: 'bash', input: { command: 'pwd' } },
        ]),
        makeUserMsg([
          { type: 'tool_result' as const, tool_use_id: 'toolu_2', content: '/home/user' },
        ]),
      ],
      [] as any,
    )
    const assistantIdx = result.findIndex(m => m.role === 'assistant' && (m as any).tool_calls)
    const toolIdx = result.findIndex(m => m.role === 'tool')
    expect(assistantIdx).toBeGreaterThanOrEqual(0)
    expect(toolIdx).toBe(assistantIdx + 1)
  })
  test('sets content to null when only thinking and tool_calls present', () => {
    const result = anthropicMessagesToOpenAI(
      [makeUserMsg('question'), makeAssistantMsg([
--- a/packages/@ant/model-provider/src/shared/tests/openaiConvertTools.test.ts
+++ b/packages/@ant/model-provider/src/shared/tests/openaiConvertTools.test.ts
@@ -1,5 +1,5 @@
 import { describe, expect, test } from 'bun:test'
-import { anthropicToolsToOpenAI, anthropicToolChoiceToOpenAI } from '../convertTools.js'
+import { anthropicToolsToOpenAI, anthropicToolChoiceToOpenAI } from '../openaiConvertTools.js'
 describe('anthropicToolsToOpenAI', () => {
  test('converts basic tool', () => {
--- a/packages/@ant/model-provider/src/shared/tests/openaiStreamAdapter.test.ts
+++ b/packages/@ant/model-provider/src/shared/tests/openaiStreamAdapter.test.ts
@@ -1,6 +1,6 @@
 import { describe, expect, test } from 'bun:test'
 import { adaptOpenAIStreamToAnthropic } from '../streamAdapter.js'
 import type { ChatCompletionChunk } from 'openai/resources/chat/completions/completions.mjs'
 import { adaptOpenAIStreamToAnthropic } from '../openaiStreamAdapter.js'
 /** Helper to create a mock async iterable from chunk array */
 function mockStream(chunks: ChatCompletionChunk[]): AsyncIterable<ChatCompletionChunk> {
--- a/packages/@ant/model-provider/src/shared/openaiConvertMessages.ts
+++ b/packages/@ant/model-provider/src/shared/openaiConvertMessages.ts
@@ -10,8 +10,8 @@ import type {
  ChatCompletionToolMessageParam,
  ChatCompletionUserMessageParam,
 } from 'openai/resources/chat/completions/completions.mjs'
-import type { AssistantMessage, UserMessage } from '../../../types/message.js'
+import type { AssistantMessage, UserMessage } from '../types/message.js'
-import type { SystemPrompt } from '../../../utils/systemPromptType.js'
+import type { SystemPrompt } from '../types/systemPrompt.js'
 export interface ConvertMessagesOptions {
  /** When true, preserve thinking blocks as reasoning_content on assistant messages
@@ -152,7 +152,6 @@ function convertInternalUserMessage(
    // OpenAI API requires that a tool message immediately follows the assistant
    // message with tool_calls. If we emit a user message first, the API will
    // reject the request with "insufficient tool messages following tool_calls".
    // See: https://github.com/anthropics/claude-code/issues/xxx
    for (const tr of toolResults) {
      result.push(convertToolResult(tr))
    }
--- a/packages/@ant/model-provider/src/shared/openaiConvertTools.ts
+++ b/packages/@ant/model-provider/src/shared/openaiConvertTools.ts
--- a/packages/@ant/model-provider/src/shared/openaiStreamAdapter.ts
+++ b/packages/@ant/model-provider/src/shared/openaiStreamAdapter.ts
@@ -51,10 +51,6 @@ export async function* adaptOpenAIStreamToAnthropic(
  let textBlockOpen = false
  // Track usage — all four Anthropic fields, populated from OpenAI usage fields:
  //   prompt_tokens                          → input_tokens
  //   completion_tokens                      → output_tokens
  //   prompt_tokens_details.cached_tokens    → cache_read_input_tokens
  //   (no standard OpenAI equivalent)        → cache_creation_input_tokens (always 0)
  let inputTokens = 0
  let outputTokens = 0
  let cachedReadTokens = 0
@@ -62,10 +58,7 @@ export async function* adaptOpenAIStreamToAnthropic(
  // Track all open content block indices (for cleanup)
  const openBlockIndices = new Set<number>()
-  // Deferred finish state: populated when finish_reason is encountered so that
+  // Deferred finish state
  // message_delta / message_stop are emitted AFTER the stream loop ends.
  // This ensures usage chunks that arrive after the finish_reason chunk are
  // captured before we emit the final token counts.
  let pendingFinishReason: string | null = null
  let pendingHasToolCalls = false
@@ -74,16 +67,9 @@ export async function* adaptOpenAIStreamToAnthropic(
    const delta = choice?.delta
    // Extract usage from any chunk that carries it.
    // Many OpenAI-compatible endpoints (e.g. DeepSeek) send usage in a separate
    // final chunk that arrives AFTER the finish_reason chunk. Reading it here
    // (before emitting message_delta) ensures the token counts are available
    // when we later emit message_delta.
    if (chunk.usage) {
      inputTokens = chunk.usage.prompt_tokens ?? inputTokens
      outputTokens = chunk.usage.completion_tokens ?? outputTokens
      // OpenAI prompt caching: prompt_tokens_details.cached_tokens
      // → Anthropic cache_read_input_tokens
      // Note: OpenAI has no equivalent for cache_creation_input_tokens.
      const details = (chunk.usage as any).prompt_tokens_details
      if (details?.cached_tokens != null) {
        cachedReadTokens = details.cached_tokens
@@ -118,7 +104,6 @@ export async function* adaptOpenAIStreamToAnthropic(
    if (!delta) continue
    // Handle reasoning_content → Anthropic thinking block
    // DeepSeek and compatible providers send delta.reasoning_content
    const reasoningContent = (delta as any).reasoning_content
    if (reasoningContent != null && reasoningContent !== '') {
      if (!thinkingBlockOpen) {
@@ -150,7 +135,7 @@ export async function* adaptOpenAIStreamToAnthropic(
    // Handle text content
    if (delta.content != null && delta.content !== '') {
      if (!textBlockOpen) {
-        // Close thinking block if still open (reasoning done, now generating answer)
+        // Close thinking block if still open
        if (thinkingBlockOpen) {
          yield {
            type: 'content_block_stop',
@@ -251,12 +236,8 @@ export async function* adaptOpenAIStreamToAnthropic(
      }
    }
-    // Handle finish: close all open content blocks and record the finish_reason.
+    // Handle finish
    // message_delta + message_stop are emitted AFTER the stream loop so that any
    // trailing usage chunk (sent after the finish chunk by some endpoints)
    // is captured first — ensuring token counts are non-zero.
    if (choice?.finish_reason) {
      // Close thinking block if still open
      if (thinkingBlockOpen) {
        yield {
          type: 'content_block_stop',
@@ -266,7 +247,6 @@ export async function* adaptOpenAIStreamToAnthropic(
        thinkingBlockOpen = false
      }
      // Close text block if still open
      if (textBlockOpen) {
        yield {
          type: 'content_block_stop',
@@ -276,7 +256,6 @@ export async function* adaptOpenAIStreamToAnthropic(
        textBlockOpen = false
      }
      // Close all tool blocks that haven't been closed yet
      for (const [, block] of toolBlocks) {
        if (openBlockIndices.has(block.contentIndex)) {
          yield {
@@ -287,14 +266,12 @@ export async function* adaptOpenAIStreamToAnthropic(
        }
      }
      // Defer message_delta / message_stop until after the loop so that any
      // trailing usage chunk is processed before we emit the final token counts.
      pendingFinishReason = choice.finish_reason
      pendingHasToolCalls = toolBlocks.size > 0
    }
  }
-  // Safety: close any remaining open blocks if stream ended without finish_reason
+  // Safety: close any remaining open blocks
  for (const idx of openBlockIndices) {
    yield {
      type: 'content_block_stop',
@@ -302,15 +279,8 @@ export async function* adaptOpenAIStreamToAnthropic(
    } as BetaRawMessageStreamEvent
  }
-  // Emit message_delta + message_stop now that the stream is fully consumed.
+  // Emit message_delta + message_stop
  // Usage values (inputTokens / outputTokens) reflect all chunks including any
  // trailing usage-only chunk sent after the finish_reason chunk.
  if (pendingFinishReason !== null) {
    // Map finish_reason to Anthropic stop_reason.
    // CRITICAL: When finish_reason is 'length' (token budget exhausted), always
    // report 'max_tokens' regardless of whether partial tool calls were received.
    // Otherwise the query loop would try to execute tool calls with incomplete
    // JSON arguments instead of triggering the max_tokens retry/recovery path.
    const stopReason =
      pendingFinishReason === 'length'
        ? 'max_tokens'
@@ -324,19 +294,6 @@ export async function* adaptOpenAIStreamToAnthropic(
        stop_reason: stopReason,
        stop_sequence: null,
      },
      // Carry all four Anthropic usage fields so queryModelOpenAI's message_delta
      // handler (which spreads this into the accumulated usage object) can override
      // every field that message_start emitted as 0. For endpoints that send usage
      // in a trailing chunk (e.g. DeepSeek), message_start is emitted on the first
      // content chunk before the trailing usage chunk arrives, so all four fields
      // start at 0. By the time we reach here (post-loop) the trailing chunk has
      // been processed and all values reflect the real counts.
      //
      // OpenAI → Anthropic field mapping:
      //   prompt_tokens                        → input_tokens
      //   completion_tokens                    → output_tokens
      //   prompt_tokens_details.cached_tokens  → cache_read_input_tokens
      //   (no OpenAI equivalent)               → cache_creation_input_tokens (stays 0)
      usage: {
        input_tokens: inputTokens,
        output_tokens: outputTokens,
@@ -353,11 +310,6 @@ export async function* adaptOpenAIStreamToAnthropic(
 /**
 * Map OpenAI finish_reason to Anthropic stop_reason.
 *
 * stop           → end_turn
 * tool_calls     → tool_use
 * length         → max_tokens
 * content_filter → end_turn
 */
 function mapFinishReason(reason: string): string {
  switch (reason) {
--- a/packages/@ant/model-provider/src/types/errors.ts
+++ b/packages/@ant/model-provider/src/types/errors.ts
@@ -0,0 +1,54 @@
 // Error type constants for the model provider package.
 // Error string constants extracted from src/services/api/errors.ts.
 // The full error handling functions remain in the main project (Phase 4).
 export const API_ERROR_MESSAGE_PREFIX = 'API Error'
 export const PROMPT_TOO_LONG_ERROR_MESSAGE = 'Prompt is too long'
 export const CREDIT_BALANCE_TOO_LOW_ERROR_MESSAGE = 'Credit balance is too low'
 export const INVALID_API_KEY_ERROR_MESSAGE = 'Not logged in · Please run /login'
 export const INVALID_API_KEY_ERROR_MESSAGE_EXTERNAL =
  'Invalid API key · Fix external API key'
 export const ORG_DISABLED_ERROR_MESSAGE_ENV_KEY_WITH_OAUTH =
  'Your ANTHROPIC_API_KEY belongs to a disabled organization · Unset the environment variable to use your subscription instead'
 export const ORG_DISABLED_ERROR_MESSAGE_ENV_KEY =
  'Your ANTHROPIC_API_KEY belongs to a disabled organization · Update or unset the environment variable'
 export const TOKEN_REVOKED_ERROR_MESSAGE =
  'OAuth token revoked · Please run /login'
 export const CCR_AUTH_ERROR_MESSAGE =
  'Authentication error · This may be a temporary network issue, please try again'
 export const REPEATED_529_ERROR_MESSAGE = 'Repeated 529 Overloaded errors'
 export const CUSTOM_OFF_SWITCH_MESSAGE =
  'Opus is experiencing high load, please use /model to switch to Sonnet'
 export const API_TIMEOUT_ERROR_MESSAGE = 'Request timed out'
 export const OAUTH_ORG_NOT_ALLOWED_ERROR_MESSAGE =
  'Your account does not have access to Claude Code. Please run /login.'
 /** Error classification types returned by classifyAPIError */
 export type APIErrorClassification =
  | 'aborted'
  | 'api_timeout'
  | 'repeated_529'
  | 'capacity_off_switch'
  | 'rate_limit'
  | 'server_overload'
  | 'prompt_too_long'
  | 'pdf_too_large'
  | 'pdf_password_protected'
  | 'image_too_large'
  | 'tool_use_mismatch'
  | 'unexpected_tool_result'
  | 'duplicate_tool_use_id'
  | 'invalid_model'
  | 'credit_balance_low'
  | 'invalid_api_key'
  | 'token_revoked'
  | 'oauth_org_not_allowed'
  | 'auth_error'
  | 'bedrock_model_access'
  | 'server_error'
  | 'client_error'
  | 'ssl_cert_error'
  | 'connection_error'
  | 'unknown'
--- a/packages/@ant/model-provider/src/types/index.ts
+++ b/packages/@ant/model-provider/src/types/index.ts
@@ -0,0 +1,6 @@
 // Type definitions for @ant/model-provider
 export * from './message.js'
 export * from './usage.js'
 export * from './errors.js'
 export * from './systemPrompt.js'
--- a/packages/@ant/model-provider/src/types/message.ts
+++ b/packages/@ant/model-provider/src/types/message.ts
@@ -0,0 +1,129 @@
 // Core message types for the model provider package.
 // Moved from src/types/message.ts to decouple the API layer from the main project.
 import type { UUID } from 'crypto'
 import type {
  ContentBlockParam,
  ContentBlock,
 } from '@anthropic-ai/sdk/resources/index.mjs'
 import type { BetaUsage } from '@anthropic-ai/sdk/resources/beta/messages/messages.mjs'
 /**
 * Base message type with discriminant `type` field and common properties.
 * Individual message subtypes (UserMessage, AssistantMessage, etc.) extend
 * this with narrower `type` literals and additional fields.
 */
 export type MessageType = 'user' | 'assistant' | 'system' | 'attachment' | 'progress' | 'grouped_tool_use' | 'collapsed_read_search'
 /** A single content element inside message.content arrays. */
 export type ContentItem = ContentBlockParam | ContentBlock
 export type MessageContent = string | ContentBlockParam[] | ContentBlock[]
 /**
 * Typed content array — used in narrowed message subtypes so that
 * `message.content[0]` resolves to `ContentItem` instead of
 * `string | ContentBlockParam | ContentBlock`.
 */
 export type TypedMessageContent = ContentItem[]
 export type Message = {
  type: MessageType
  uuid: UUID
  isMeta?: boolean
  isCompactSummary?: boolean
  toolUseResult?: unknown
  isVisibleInTranscriptOnly?: boolean
  attachment?: { type: string; toolUseID?: string; [key: string]: unknown; addedNames: string[]; addedLines: string[]; removedNames: string[] }
  message?: {
    role?: string
    id?: string
    content?: MessageContent
    usage?: BetaUsage | Record<string, unknown>
    [key: string]: unknown
  }
  [key: string]: unknown
 }
 export type AssistantMessage = Message & {
  type: 'assistant'
  message: NonNullable<Message['message']>
 }
 export type AttachmentMessage<T = { type: string; [key: string]: unknown }> = Message & { type: 'attachment'; attachment: T }
 export type ProgressMessage<T = unknown> = Message & { type: 'progress'; data: T }
 export type SystemLocalCommandMessage = Message & { type: 'system' }
 export type SystemMessage = Message & { type: 'system' }
 export type UserMessage = Message & {
  type: 'user'
  message: NonNullable<Message['message']>
  imagePasteIds?: number[]
 }
 export type NormalizedUserMessage = UserMessage
 export type RequestStartEvent = { type: string; [key: string]: unknown }
 export type StreamEvent = { type: string; [key: string]: unknown }
 export type SystemCompactBoundaryMessage = Message & {
  type: 'system'
  compactMetadata: {
    preservedSegment?: {
      headUuid: UUID
      tailUuid: UUID
      anchorUuid: UUID
      [key: string]: unknown
    }
    [key: string]: unknown
  }
 }
 export type TombstoneMessage = Message
 export type ToolUseSummaryMessage = Message
 export type MessageOrigin = string
 export type CompactMetadata = Record<string, unknown>
 export type SystemAPIErrorMessage = Message & { type: 'system' }
 export type SystemFileSnapshotMessage = Message & { type: 'system' }
 export type NormalizedAssistantMessage<T = unknown> = AssistantMessage
 export type NormalizedMessage = Message
 export type PartialCompactDirection = string
 export type StopHookInfo = {
  command?: string
  durationMs?: number
  [key: string]: unknown
 }
 export type SystemAgentsKilledMessage = Message & { type: 'system' }
 export type SystemApiMetricsMessage = Message & { type: 'system' }
 export type SystemAwaySummaryMessage = Message & { type: 'system' }
 export type SystemBridgeStatusMessage = Message & { type: 'system' }
 export type SystemInformationalMessage = Message & { type: 'system' }
 export type SystemMemorySavedMessage = Message & { type: 'system' }
 export type SystemMessageLevel = string
 export type SystemMicrocompactBoundaryMessage = Message & { type: 'system' }
 export type SystemPermissionRetryMessage = Message & { type: 'system' }
 export type SystemScheduledTaskFireMessage = Message & { type: 'system' }
 export type SystemStopHookSummaryMessage = Message & {
  type: 'system'
  subtype: string
  hookLabel: string
  hookCount: number
  totalDurationMs?: number
  hookInfos: StopHookInfo[]
 }
 export type SystemTurnDurationMessage = Message & { type: 'system' }
 export type GroupedToolUseMessage = Message & {
  type: 'grouped_tool_use'
  toolName: string
  messages: NormalizedAssistantMessage[]
  results: NormalizedUserMessage[]
  displayMessage: NormalizedAssistantMessage | NormalizedUserMessage
 }
 // CollapsibleMessage is used by the main project's CollapsedReadSearchGroup
 export type CollapsibleMessage =
  | AssistantMessage
  | UserMessage
  | GroupedToolUseMessage
 export type HookResultMessage = Message
 export type SystemThinkingMessage = Message & { type: 'system' }
--- a/packages/@ant/model-provider/src/types/systemPrompt.ts
+++ b/packages/@ant/model-provider/src/types/systemPrompt.ts
@@ -0,0 +1,10 @@
 // System prompt branded type.
 // Dependency-free so it can be imported from anywhere without circular imports.
 export type SystemPrompt = readonly string[] & {
  readonly __brand: 'SystemPrompt'
 }
 export function asSystemPrompt(value: readonly string[]): SystemPrompt {
  return value as SystemPrompt
 }
--- a/packages/@ant/model-provider/src/types/usage.ts
+++ b/packages/@ant/model-provider/src/types/usage.ts
@@ -0,0 +1,49 @@
 // Usage types for the model provider package.
 // Moved from src/entrypoints/sdk/sdkUtilityTypes.ts and src/services/api/emptyUsage.ts
 /**
 * Non-nullable usage object representing token consumption from an API response.
 * Moved from src/entrypoints/sdk/sdkUtilityTypes.ts
 */
 export type NonNullableUsage = {
  inputTokens?: number
  outputTokens?: number
  cacheReadInputTokens?: number
  cacheCreationInputTokens?: number
  input_tokens: number
  cache_creation_input_tokens: number
  cache_read_input_tokens: number
  output_tokens: number
  server_tool_use: { web_search_requests: number; web_fetch_requests: number }
  service_tier: string
  cache_creation: {
    ephemeral_1h_input_tokens: number
    ephemeral_5m_input_tokens: number
  }
  inference_geo: string
  iterations: unknown[]
  speed: string
  cache_deleted_input_tokens?: number
  [key: string]: unknown
 }
 /**
 * Zero-initialized usage object. Extracted from logging.ts so that
 * bridge/replBridge.ts can import it without transitively pulling in
 * api/errors.ts → utils/messages.ts → BashTool.tsx → the world.
 */
 export const EMPTY_USAGE: Readonly<NonNullableUsage> = {
  input_tokens: 0,
  cache_creation_input_tokens: 0,
  cache_read_input_tokens: 0,
  output_tokens: 0,
  server_tool_use: { web_search_requests: 0, web_fetch_requests: 0 },
  service_tier: 'standard',
  cache_creation: {
    ephemeral_1h_input_tokens: 0,
    ephemeral_5m_input_tokens: 0,
  },
  inference_geo: '',
  iterations: [],
  speed: 'standard',
 }
--- a/packages/@ant/model-provider/tsconfig.json
+++ b/packages/@ant/model-provider/tsconfig.json
@@ -0,0 +1,7 @@
 {
  "extends": "../../tsconfig.json",
  "compilerOptions": {
    "composite": true
  },
  "include": ["src/**/*.ts", "src/**/*.tsx"]
 }
--- a/packages/acp-link/.gitignore
+++ b/packages/acp-link/.gitignore
@@ -0,0 +1,34 @@
 # dependencies (bun install)
 node_modules
 # output
 out
 dist
 *.tgz
 # code coverage
 coverage
 *.lcov
 # logs
 logs
 _.log
 report.[0-9]_.[0-9]_.[0-9]_.[0-9]_.json
 # dotenv environment variable files
 .env
 .env.development.local
 .env.test.local
 .env.production.local
 .env.local
 # caches
 .eslintcache
 .cache
 *.tsbuildinfo
 # IntelliJ based IDEs
 .idea
 # Finder (MacOS) folder config
 .DS_Store
--- a/packages/acp-link/README.md
+++ b/packages/acp-link/README.md
@@ -0,0 +1,89 @@
 # acp-link
 ACP proxy server that bridges WebSocket clients to ACP (Agent Client Protocol) agents.
 > Source code adapted from [chrome-acp](https://github.com/Areo-Joe/chrome-acp).
 ## Installation
 ### From source
 ```bash
 # From monorepo root
 bun install
 ```
 ## Usage
 ```bash
 # Via global install
 acp-link /path/to/agent
 # Via source
 bun src/cli/bin.ts /path/to/agent
 ```
 ### Examples
 ```bash
 # Basic usage
 acp-link /path/to/agent
 # With custom port and host
 acp-link --port 9000 --host 0.0.0.0 /path/to/agent
 # With debug logging
 acp-link --debug /path/to/agent
 # Enable HTTPS with self-signed certificate
 acp-link --https /path/to/agent
 # Disable authentication (dangerous)
 acp-link --no-auth /path/to/agent
 # Pass arguments to the agent (use -- to separate)
 acp-link /path/to/agent -- --verbose --model gpt-4
 ```
 ## CLI Reference
 ```
 USAGE
  acp-link [--port value] [--host value] [--debug] [--no-auth] [--https] <command>...
  acp-link --help
  acp-link --version
 FLAGS
       [--port]     Port to listen on                  [default = 9315]
       [--host]     Host to bind to                    [default = localhost]
       [--debug]    Enable debug logging to file
       [--no-auth]  Disable authentication (dangerous)
       [--https]    Enable HTTPS with self-signed cert
    -h  --help      Print help information and exit
    -v  --version   Print version information and exit
 ARGUMENTS
  command...  Agent command followed by its arguments
 ```
 ## How It Works
 1. Listens for WebSocket connections from clients
 2. When a "connect" message is received, spawns the configured ACP agent as a subprocess
 3. Bridges messages between the WebSocket (client) and stdin/stdout (agent via ACP protocol)
 4. Supports session management: create, load, resume, list sessions
 5. Handles permission approval flow and heartbeat keepalive
 ## Authentication
 By default, a random token is auto-generated on startup. Pass it as a query parameter:
 ```
 ws://localhost:9315/ws?token=<your-token>
 ```
 Set `ACP_AUTH_TOKEN` env var to use a fixed token, or use `--no-auth` to disable (not recommended).
 ## License
 MIT
--- a/packages/acp-link/package.json
+++ b/packages/acp-link/package.json
@@ -0,0 +1,39 @@
 {
  "name": "acp-link",
  "version": "1.0.1",
  "description": "ACP proxy server that bridges WebSocket clients to ACP agents",
  "author": "claude-code-best",
  "type": "module",
  "main": "./dist/server.js",
  "types": "./dist/server.d.ts",
  "bin": {
    "acp-link": "dist/cli/bin.js"
  },
  "files": [
    "dist"
  ],
  "scripts": {
    "build": "tsc",
    "dev": "bun run src/cli/bin.ts",
    "prepublishOnly": "bun run build"
  },
  "devDependencies": {
    "@types/selfsigned": "^2.0.4",
    "@types/ws": "^8.18.1"
  },
  "dependencies": {
    "@agentclientprotocol/sdk": "^0.19.0",
    "@hono/node-server": "^1.13.8",
    "@hono/node-ws": "^1.0.5",
    "@stricli/auto-complete": "^1.2.4",
    "@stricli/core": "^1.2.4",
    "hono": "^4.7.0",
    "pino": "^10.3.0",
    "pino-pretty": "^13.1.3",
    "selfsigned": "^5.5.0"
  },
  "engines": {
    "node": ">=18"
  },
  "license": "MIT"
 }
--- a/packages/acp-link/src/tests/cert.test.ts
+++ b/packages/acp-link/src/tests/cert.test.ts
@@ -0,0 +1,28 @@
 import { describe, test, expect } from "bun:test";
 import { getLanIPs } from "../cert.js";
 describe("getLanIPs", () => {
  test("returns an array", () => {
    const ips = getLanIPs();
    expect(Array.isArray(ips)).toBe(true);
  });
  test("returns only IPv4 addresses", () => {
    const ips = getLanIPs();
    for (const ip of ips) {
      // IPv4 format: x.x.x.x
      expect(ip).toMatch(/^\d+\.\d+\.\d+\.\d+$/);
    }
  });
  test("does not include loopback addresses", () => {
    const ips = getLanIPs();
    expect(ips).not.toContain("127.0.0.1");
  });
  test("may be empty in isolated environments", () => {
    // This test just ensures it doesn't throw
    const ips = getLanIPs();
    expect(ips.length).toBeGreaterThanOrEqual(0);
  });
 });
--- a/packages/acp-link/src/tests/server.test.ts
+++ b/packages/acp-link/src/tests/server.test.ts
@@ -0,0 +1,75 @@
 import { describe, test, expect } from "bun:test";
 import type { ServerConfig } from "../server.js";
 describe("Server HTTP endpoints", () => {
  test("package.json has correct bin and main entries", async () => {
    const pkg = await import("../../package.json", { with: { type: "json" } });
    expect(pkg.default.name).toBe("acp-link");
    expect(pkg.default.main).toBe("./dist/server.js");
    expect(pkg.default.bin).toBeDefined();
    expect(pkg.default.bin["acp-link"]).toBe("dist/cli/bin.js");
  });
  test("ServerConfig interface accepts all expected fields", () => {
    const config: ServerConfig = {
      port: 9315,
      host: "localhost",
      command: "echo",
      args: [],
      cwd: "/tmp",
      debug: false,
      token: "test-token",
      https: false,
    };
    expect(config.port).toBe(9315);
    expect(config.token).toBe("test-token");
  });
  test("ServerConfig allows optional fields to be omitted", () => {
    const config: ServerConfig = {
      port: 9315,
      host: "localhost",
      command: "echo",
      args: [],
      cwd: "/tmp",
    };
    expect(config.debug).toBeUndefined();
    expect(config.token).toBeUndefined();
    expect(config.https).toBeUndefined();
  });
 });
 describe("WebSocket message types", () => {
  const clientMessageTypes = [
    "connect",
    "disconnect",
    "new_session",
    "prompt",
    "permission_response",
    "cancel",
    "set_session_model",
    "list_sessions",
    "load_session",
    "resume_session",
    "ping",
  ];
  test("all client message types are recognized", () => {
    expect(clientMessageTypes.length).toBe(11);
    expect(clientMessageTypes).toContain("ping");
    expect(clientMessageTypes).toContain("connect");
    expect(clientMessageTypes).toContain("cancel");
  });
 });
 describe("Heartbeat constants", () => {
  test("PERMISSION_TIMEOUT_MS is 5 minutes", () => {
    const PERMISSION_TIMEOUT_MS = 5 * 60 * 1000;
    expect(PERMISSION_TIMEOUT_MS).toBe(300_000);
  });
  test("HEARTBEAT_INTERVAL_MS is 30 seconds", () => {
    const HEARTBEAT_INTERVAL_MS = 30_000;
    expect(HEARTBEAT_INTERVAL_MS).toBe(30_000);
  });
 });
--- a/packages/acp-link/src/tests/types.test.ts
+++ b/packages/acp-link/src/tests/types.test.ts
@@ -0,0 +1,69 @@
 import { describe, test, expect } from "bun:test";
 import { isRequest, isResponse, isNotification } from "../types.js";
 import type { JsonRpcRequest, JsonRpcResponse, JsonRpcNotification } from "../types.js";
 describe("isRequest", () => {
  test("returns true for a valid JSON-RPC request", () => {
    const msg: JsonRpcRequest = { jsonrpc: "2.0", id: 1, method: "test" };
    expect(isRequest(msg)).toBe(true);
  });
  test("returns true for request with params", () => {
    const msg = { jsonrpc: "2.0" as const, id: "abc", method: "test", params: { x: 1 } };
    expect(isRequest(msg)).toBe(true);
  });
  test("returns false for response (no method)", () => {
    const msg: JsonRpcResponse = { jsonrpc: "2.0", id: 1, result: {} };
    expect(isRequest(msg)).toBe(false);
  });
  test("returns false for notification (no id)", () => {
    const msg: JsonRpcNotification = { jsonrpc: "2.0", method: "notify" };
    expect(isRequest(msg)).toBe(false);
  });
 });
 describe("isResponse", () => {
  test("returns true for a valid JSON-RPC response with result", () => {
    const msg: JsonRpcResponse = { jsonrpc: "2.0", id: 1, result: "ok" };
    expect(isResponse(msg)).toBe(true);
  });
  test("returns true for a valid JSON-RPC error response", () => {
    const msg: JsonRpcResponse = { jsonrpc: "2.0", id: 2, error: { code: -32600, message: "bad" } };
    expect(isResponse(msg)).toBe(true);
  });
  test("returns false for request (has method)", () => {
    const msg: JsonRpcRequest = { jsonrpc: "2.0", id: 1, method: "test" };
    expect(isResponse(msg)).toBe(false);
  });
  test("returns false for notification", () => {
    const msg: JsonRpcNotification = { jsonrpc: "2.0", method: "notify" };
    expect(isResponse(msg)).toBe(false);
  });
 });
 describe("isNotification", () => {
  test("returns true for a valid JSON-RPC notification", () => {
    const msg: JsonRpcNotification = { jsonrpc: "2.0", method: "update" };
    expect(isNotification(msg)).toBe(true);
  });
  test("returns true for notification with params", () => {
    const msg = { jsonrpc: "2.0" as const, method: "progress", params: { pct: 50 } };
    expect(isNotification(msg)).toBe(true);
  });
  test("returns false for request (has id)", () => {
    const msg: JsonRpcRequest = { jsonrpc: "2.0", id: 1, method: "test" };
    expect(isNotification(msg)).toBe(false);
  });
  test("returns false for response (no method)", () => {
    const msg: JsonRpcResponse = { jsonrpc: "2.0", id: 1, result: null };
    expect(isNotification(msg)).toBe(false);
  });
 });
--- a/packages/acp-link/src/cert.ts
+++ b/packages/acp-link/src/cert.ts
@@ -0,0 +1,174 @@
 /**
 * Self-signed certificate generation for HTTPS support
 */
 import { X509Certificate } from "node:crypto";
 import { existsSync, mkdirSync, readFileSync, writeFileSync } from "node:fs";
 import { homedir, networkInterfaces } from "node:os";
 import { join } from "node:path";
 import { generate } from "selfsigned";
 /**
 * Get all LAN IPv4 addresses
 */
 export function getLanIPs(): string[] {
  const ips: string[] = [];
  const nets = networkInterfaces();
  for (const name of Object.keys(nets)) {
    for (const net of nets[name] || []) {
      // Skip internal (loopback) and non-IPv4 addresses
      if (!net.internal && net.family === "IPv4") {
        ips.push(net.address);
      }
    }
  }
  return ips;
 }
 /**
 * Extract IP addresses from certificate's Subject Alternative Name (SAN)
 * SAN format: "IP Address:192.168.1.100, IP Address:127.0.0.1, DNS:localhost"
 */
 function extractSanIPs(x509: X509Certificate): string[] {
  const san = x509.subjectAltName;
  if (!san) return [];
  const ips: string[] = [];
  // Parse "IP Address:x.x.x.x" entries from SAN string
  const parts = san.split(", ");
  for (const part of parts) {
    const match = part.match(/^IP Address:(.+)$/);
    if (match && match[1]) {
      ips.push(match[1]);
    }
  }
  return ips;
 }
 const CERT_DIR = join(homedir(), ".acp-proxy");
 const KEY_PATH = join(CERT_DIR, "key.pem");
 const CERT_PATH = join(CERT_DIR, "cert.pem");
 // Certificate validity in days
 const CERT_VALIDITY_DAYS = 365;
 export interface TlsOptions {
  key: string;
  cert: string;
 }
 /**
 * Get or generate self-signed certificate
 * Certificates are cached in ~/.acp-proxy/
 */
 export async function getOrCreateCertificate(): Promise<TlsOptions> {
  // Ensure directory exists
  if (!existsSync(CERT_DIR)) {
    mkdirSync(CERT_DIR, { recursive: true });
  }
  // Check if certificates already exist and are still valid
  if (existsSync(KEY_PATH) && existsSync(CERT_PATH)) {
    const certPem = readFileSync(CERT_PATH, "utf-8");
    const keyPem = readFileSync(KEY_PATH, "utf-8");
    try {
      const x509 = new X509Certificate(certPem);
      const validTo = new Date(x509.validTo);
      const now = new Date();
      // Check if cert is expired or will expire within 7 days
      const daysUntilExpiry = Math.floor((validTo.getTime() - now.getTime()) / (1000 * 60 * 60 * 24));
      if (daysUntilExpiry <= 7) {
        // Certificate expired or expiring soon
        console.log(`⚠️  Certificate ${daysUntilExpiry <= 0 ? "expired" : `expires in ${daysUntilExpiry} days`}, regenerating...`);
      } else {
        // Check if current LAN IPs are in the certificate's SAN
        const currentLanIPs = getLanIPs();
        const certSanIPs = extractSanIPs(x509);
        // Check if all current LAN IPs are covered by the certificate
        const missingIPs = currentLanIPs.filter(ip => !certSanIPs.includes(ip));
        if (missingIPs.length === 0) {
          console.log(`🔐 Using existing certificate from ${CERT_DIR}`);
          console.log(`   Valid for ${daysUntilExpiry} more days`);
          return { key: keyPem, cert: certPem };
        }
        // LAN IP changed, regenerate
        console.log(`⚠️  LAN IP changed (missing: ${missingIPs.join(", ")}), regenerating certificate...`);
      }
    } catch {
      // Failed to parse certificate, regenerate
      console.log(`⚠️  Invalid certificate, regenerating...`);
    }
  }
  // Generate new self-signed certificate
  console.log(`🔐 Generating self-signed certificate...`);
  const attrs = [{ name: "commonName", value: "ACP Proxy Server" }];
  // Calculate expiry date
  const notAfterDate = new Date();
  notAfterDate.setDate(notAfterDate.getDate() + CERT_VALIDITY_DAYS);
  // Build altNames: localhost + loopback + all LAN IPs
  const altNames: Array<{ type: 1 | 2 | 6 | 7; value?: string; ip?: string }> = [
    { type: 2, value: "localhost" },
    { type: 7, ip: "127.0.0.1" },
    { type: 7, ip: "::1" },
  ];
  // Add all current LAN IPs
  const lanIPs = getLanIPs();
  for (const ip of lanIPs) {
    altNames.push({ type: 7, ip });
  }
  if (lanIPs.length > 0) {
    console.log(`   Including LAN IPs: ${lanIPs.join(", ")}`);
  }
  const pems = await generate(attrs, {
    keySize: 2048,
    notAfterDate,
    algorithm: "sha256",
    extensions: [
      {
        name: "basicConstraints",
        cA: true,
      },
      {
        name: "keyUsage",
        keyCertSign: true,
        digitalSignature: true,
        keyEncipherment: true,
      },
      {
        name: "extKeyUsage",
        serverAuth: true,
      },
      {
        name: "subjectAltName",
        altNames,
      },
    ],
  });
  // Save certificates
  writeFileSync(KEY_PATH, pems.private);
  writeFileSync(CERT_PATH, pems.cert);
  console.log(`✅ Certificate saved to ${CERT_DIR}`);
  console.log(`   Valid for ${CERT_VALIDITY_DAYS} days`);
  console.log(`   ⚠️  First access will show a security warning - click "Advanced" → "Proceed"`);
  return {
    key: pems.private,
    cert: pems.cert,
  };
 }
--- a/packages/acp-link/src/cli/app.ts
+++ b/packages/acp-link/src/cli/app.ts
@@ -0,0 +1,18 @@
 import { buildApplication } from "@stricli/core";
 import { createRequire } from "node:module";
 import { command } from "./command.js";
 const require = createRequire(import.meta.url);
 const pkg = require("../../package.json") as { version: string };
 export const app = buildApplication(command, {
  name: "acp-link",
  versionInfo: {
    currentVersion: pkg.version,
  },
  scanner: {
    caseStyle: "allow-kebab-for-camel",
    allowArgumentEscapeSequence: true,
  },
 });
--- a/packages/acp-link/src/cli/bin.ts
+++ b/packages/acp-link/src/cli/bin.ts
@@ -0,0 +1,7 @@
 #!/usr/bin/env node
 import { run } from "@stricli/core";
 import { app } from "./app.js";
 import { buildContext } from "./context.js";
 await run(app, process.argv.slice(2), buildContext());
--- a/packages/acp-link/src/cli/command.ts
+++ b/packages/acp-link/src/cli/command.ts
@@ -0,0 +1,90 @@
 import { buildCommand, numberParser } from "@stricli/core";
 import type { LocalContext } from "./context.js";
 export const command = buildCommand({
  docs: {
    brief: "Start the ACP proxy server",
    fullDescription:
      "Starts a WebSocket proxy server that bridges clients to ACP agents. " +
      "The agent command is spawned as a subprocess and communicates via stdin/stdout.\n\n" +
      "Use -- to pass arguments to the agent:\n" +
      "  acp-link /path/to/agent -- --verbose --model gpt-4\n\n" +
      "For remote access, set ACP_AUTH_TOKEN environment variable or let it auto-generate.",
  },
  parameters: {
    flags: {
      port: {
        kind: "parsed",
        parse: numberParser,
        brief: "Port to listen on",
        default: "9315",
      },
      host: {
        kind: "parsed",
        parse: String,
        brief: "Host to bind to (use 0.0.0.0 for remote access)",
        default: "localhost",
      },
      debug: {
        kind: "boolean",
        brief: "Enable debug logging to file",
        default: false,
      },
      "no-auth": {
        kind: "boolean",
        brief: "DANGEROUS: Disable authentication (not recommended)",
        default: false,
      },
      https: {
        kind: "boolean",
        brief: "Enable HTTPS with auto-generated self-signed certificate",
        default: false,
      },
    },
    positional: {
      kind: "array",
      parameter: {
        brief: "Agent command and arguments (use -- before agent flags)",
        parse: String,
        placeholder: "command",
      },
      minimum: 1,
    },
  },
  func: async function (
    this: LocalContext,
    flags: { port: number; host: string; debug: boolean; "no-auth": boolean; https: boolean },
    ...args: readonly string[]
  ) {
    const port = flags.port;
    const host = flags.host;
    const debug = flags.debug;
    const noAuth = flags["no-auth"];
    const https = flags.https;
    const [command, ...agentArgs] = args;
    const cwd = process.cwd();
    // Determine auth token
    // Priority: ACP_AUTH_TOKEN env var > auto-generate (unless --no-auth)
    let token: string | undefined;
    if (noAuth) {
      console.warn("⚠️  WARNING: Authentication disabled. This is dangerous for remote access!");
      token = undefined;
    } else {
      token = process.env.ACP_AUTH_TOKEN;
      if (!token) {
        // Auto-generate random token
        const { randomBytes } = await import("node:crypto");
        token = randomBytes(32).toString("hex");
      }
    }
    // Initialize logger
    const { initLogger } = await import("../logger.js");
    initLogger({ debug });
    // Import and run the server
    const { startServer } = await import("../server.js");
    await startServer({ port, host, command: command!, args: [...agentArgs], cwd, debug, token, https });
  },
 });
--- a/packages/acp-link/src/cli/context.ts
+++ b/packages/acp-link/src/cli/context.ts
@@ -0,0 +1,10 @@
 import type { CommandContext } from "@stricli/core";
 export interface LocalContext extends CommandContext {}
 export function buildContext(): LocalContext {
  return {
    process,
  };
 }
--- a/packages/acp-link/src/logger.ts
+++ b/packages/acp-link/src/logger.ts
@@ -0,0 +1,83 @@
 import pino from "pino";
 import { join } from "node:path";
 import { mkdirSync, existsSync } from "node:fs";
 let rootLogger: pino.Logger;
 export interface LoggerConfig {
  debug: boolean;
  logDir?: string;
 }
 /** Pretty-print config for console output */
 const PRETTY_CONFIG = {
  colorize: true,
  translateTime: "SYS:HH:MM:ss.l",
  ignore: "pid,hostname",
 } as const;
 export function initLogger(config: LoggerConfig): pino.Logger {
  const { debug, logDir } = config;
  if (debug) {
    const dir = logDir || join(process.cwd(), ".acp-proxy");
    if (!existsSync(dir)) {
      mkdirSync(dir, { recursive: true });
    }
    const now = new Date();
    const timestamp = now.toISOString()
      .replace(/T/, "_")
      .replace(/:/g, "-")
      .replace(/\..+/, "");
    const logFile = join(dir, `acp-proxy-${timestamp}.log`);
    // Debug mode: JSON to file + pretty to console (multistream)
    rootLogger = pino(
      {
        level: "trace",
        timestamp: pino.stdTimeFunctions.isoTime,
      },
      pino.transport({
        targets: [
          { target: "pino/file", options: { destination: logFile } },
          { target: "pino-pretty", options: { ...PRETTY_CONFIG, destination: 1 } },
        ],
      }),
    );
    console.log(`📝 Debug logging enabled: ${logFile}`);
  } else {
    rootLogger = pino(
      { level: "info", timestamp: pino.stdTimeFunctions.isoTime },
      pino.transport({
        target: "pino-pretty",
        options: { ...PRETTY_CONFIG, destination: 1 },
      }),
    );
  }
  return rootLogger;
 }
 /** Get the root logger (auto-creates a default one if not initialized). */
 export function getLogger(): pino.Logger {
  if (!rootLogger) {
    rootLogger = pino(
      { level: "info" },
      pino.transport({
        target: "pino-pretty",
        options: { ...PRETTY_CONFIG, destination: 1 },
      }),
    );
  }
  return rootLogger;
 }
 /**
 * Create a child logger scoped to a module.
 * Usage: `const log = createLogger("agent"); log.info({ pid }, "spawned")`
 */
 export function createLogger(module: string): pino.Logger {
  return getLogger().child({ module });
 }
--- a/packages/acp-link/src/rcs-upstream.ts
+++ b/packages/acp-link/src/rcs-upstream.ts
@@ -0,0 +1,258 @@
 import { createLogger } from "./logger.js";
 export interface RcsUpstreamConfig {
  rcsUrl: string;     // e.g. "http://localhost:3000"
  apiToken: string;
  agentName: string;
  channelGroupId?: string;
  capabilities?: Record<string, unknown>;
  maxSessions?: number;
 }
 /**
 * RCS upstream client — connects acp-link to a Remote Control Server.
 *
 * Lifecycle:
 * 1. connect() — opens WS to RCS
 * 2. Sends register message
 * 3. Waits for registered response
 * 4. Forwards all ACP events via send()
 * 5. Reconnects with exponential backoff on failure
 */
 export class RcsUpstreamClient {
  private static log = createLogger("rcs-upstream");
  private ws: WebSocket | null = null;
  private registered = false;
  private reconnectAttempts = 0;
  private closed = false;
  private readonly maxReconnectDelay = 30_000;
  private readonly baseReconnectDelay = 1_000;
  /** Agent ID obtained from REST registration */
  private agentId: string | null = null;
  /** Session ID from REST registration (ACP agents auto-create a session) */
  private sessionId: string | undefined;
  /** Handler for incoming ACP messages from RCS relay */
  private messageHandler: ((message: Record<string, unknown>) => void) | null = null;
  constructor(private config: RcsUpstreamConfig) {}
  /** Get the agent ID from REST registration */
  getAgentId(): string | null {
    return this.agentId;
  }
  /** Set handler for incoming ACP messages from RCS relay */
  setMessageHandler(handler: (message: Record<string, unknown>) => void): void {
    this.messageHandler = handler;
  }
  /** Register via REST API before establishing WS connection */
  private async registerViaRest(): Promise<string> {
    const baseUrl = this.config.rcsUrl
      .replace(/^ws:\/\//, "http://")
      .replace(/^wss:\/\//, "https://")
      .replace(/\/acp\/ws.*$/, "")
      .replace(/\/$/, "");
    const url = `${baseUrl}/v1/environments/bridge`;
    RcsUpstreamClient.log.info({ url }, "REST register");
    const resp = await fetch(url, {
      method: "POST",
      headers: {
        "Content-Type": "application/json",
        "Authorization": `Bearer ${this.config.apiToken}`,
      },
      body: JSON.stringify({
        machine_name: this.config.agentName,
        worker_type: "acp",
        bridge_id: this.config.channelGroupId || undefined,
        max_sessions: this.config.maxSessions,
        capabilities: this.config.capabilities,
      }),
    });
    if (!resp.ok) {
      const text = await resp.text();
      throw new Error(`REST register failed (${resp.status}): ${text}`);
    }
    const data = await resp.json() as { environment_id: string; environment_secret: string; status: string; session_id?: string };
    this.agentId = data.environment_id;
    this.sessionId = data.session_id;
    RcsUpstreamClient.log.info({ agentId: this.agentId, sessionId: this.sessionId }, "REST register success");
    return data.environment_id;
  }
  /** Normalize RCS URL: accept http(s) base URL and convert to ws(s) + /acp/ws path */
  private buildWsUrl(): string {
    let raw = this.config.rcsUrl;
    raw = raw.replace(/^http:\/\//, "ws://").replace(/^https:\/\//, "wss://");
    const url = new URL(raw);
    const path = url.pathname.replace(/\/+$/, "");
    if (!path || path === "/") {
      url.pathname = "/acp/ws";
    }
    if (this.config.apiToken) {
      url.searchParams.set("token", this.config.apiToken);
    }
    return url.toString();
  }
  /** Open connection to RCS: REST register → WS identify */
  async connect(): Promise<void> {
    if (this.closed) return;
    // Step 1: REST registration
    try {
      await this.registerViaRest();
    } catch (err) {
      RcsUpstreamClient.log.error({ err }, "REST registration failed");
      if (!this.closed) {
        this.scheduleReconnect();
      }
      return;
    }
    // Step 2: WebSocket connection with identify
    const wsUrl = this.buildWsUrl();
    RcsUpstreamClient.log.info({ url: wsUrl }, "connecting WS");
    return new Promise((resolve, reject) => {
      try {
        this.ws = new WebSocket(wsUrl);
        this.ws.onopen = () => {
          RcsUpstreamClient.log.debug("ws open — sending identify");
          this.ws!.send(
            JSON.stringify({
              type: "identify",
              agent_id: this.agentId,
            }),
          );
        };
        this.ws.onmessage = (event) => {
          let data: Record<string, unknown>;
          try {
            data = JSON.parse(event.data as string);
          } catch {
            RcsUpstreamClient.log.warn({ raw: String(event.data).slice(0, 200) }, "invalid JSON from server");
            return;
          }
          if (data.type === "identified") {
            RcsUpstreamClient.log.info({ agent_id: data.agent_id, channel_group_id: data.channel_group_id }, "identified");
            this.registered = true;
            this.reconnectAttempts = 0;
            const webBase = this.config.rcsUrl
              .replace(/^ws:\/\//, "http://")
              .replace(/^wss:\/\//, "https://")
              .replace(/\/acp\/ws.*$/, "")
              .replace(/\/$/, "");
            console.log();
            if (this.sessionId) {
              console.log(`  🔗 Dashboard: ${webBase}/code/?sid=${this.sessionId}`);
            } else {
              console.log(`  🔗 Dashboard: ${webBase}/code/`);
            }
            if (this.agentId) {
              console.log(`     Agent ID: ${this.agentId}`);
            }
            console.log();
            resolve();
          } else if (data.type === "registered") {
            // Legacy fallback: server still uses old register flow
            RcsUpstreamClient.log.info({ agent_id: data.agent_id }, "registered (legacy)");
            this.agentId = (data.agent_id as string) || this.agentId;
            this.registered = true;
            this.reconnectAttempts = 0;
            resolve();
          } else if (data.type === "error") {
            RcsUpstreamClient.log.error({ message: data.message }, "server error");
            if (!this.registered) {
              reject(new Error(data.message as string));
            }
          } else if (data.type === "keep_alive") {
            // ignore keepalive
          } else {
            // Forward ACP protocol messages to handler (for RCS relay support)
            RcsUpstreamClient.log.debug({ type: data.type }, "forwarding to relay handler");
            this.messageHandler?.(data);
          }
        };
        this.ws.onerror = () => {
          // onclose fires after onerror with the actual close code, so we log there
          if (!this.registered) {
            reject(new Error("WebSocket connection failed"));
          }
        };
        this.ws.onclose = (event) => {
          RcsUpstreamClient.log.info({ code: event.code, reason: event.reason || undefined }, "ws closed");
          this.registered = false;
          this.ws = null;
          if (!this.closed) {
            this.scheduleReconnect();
          }
        };
      } catch (err) {
        RcsUpstreamClient.log.error({ err }, "connect threw");
        reject(err);
      }
    });
  }
  /** Send an ACP message to RCS for broadcast */
  send(message: object): void {
    if (!this.ws || this.ws.readyState !== WebSocket.OPEN || !this.registered) {
      return;
    }
    try {
      this.ws.send(JSON.stringify(message));
    } catch (err) {
      RcsUpstreamClient.log.error({ err }, "send failed");
    }
  }
  /** Check if registered with RCS */
  isRegistered(): boolean {
    return this.registered && this.ws !== null && this.ws.readyState === WebSocket.OPEN;
  }
  /** Close the RCS connection permanently */
  async close(): Promise<void> {
    this.closed = true;
    this.registered = false;
    if (this.ws) {
      this.ws.close(1000, "client shutdown");
      this.ws = null;
    }
    RcsUpstreamClient.log.info("closed");
  }
  private scheduleReconnect(): void {
    if (this.closed) return;
    const delay = Math.min(
      this.baseReconnectDelay * 2 ** this.reconnectAttempts,
      this.maxReconnectDelay,
    );
    const jitter = delay * Math.random() * 0.2;
    const actualDelay = delay + jitter;
    this.reconnectAttempts++;
    RcsUpstreamClient.log.warn({ attempt: this.reconnectAttempts, delayMs: Math.round(actualDelay) }, "reconnecting");
    setTimeout(async () => {
      if (this.closed) return;
      try {
        await this.connect();
      } catch {
        // connect() itself logs the error; nothing to add here
      }
    }, actualDelay);
  }
 }
--- a/packages/acp-link/src/server.ts
+++ b/packages/acp-link/src/server.ts
@@ -0,0 +1,895 @@
 import { spawn, type ChildProcess } from "node:child_process";
 import { createServer as createHttpsServer } from "node:https";
 import { Writable, Readable } from "node:stream";
 import * as acp from "@agentclientprotocol/sdk";
 import { Hono } from "hono";
 import { serve } from "@hono/node-server";
 import { createNodeWebSocket } from "@hono/node-ws";
 import type { WSContext } from "hono/ws";
 import type { WebSocket as RawWebSocket } from "ws";
 import { createLogger } from "./logger.js";
 import { getOrCreateCertificate, getLanIPs } from "./cert.js";
 import { RcsUpstreamClient, type RcsUpstreamConfig } from "./rcs-upstream.js";
 export interface ServerConfig {
  port: number;
  host: string;
  command: string;
  args: string[];
  cwd: string;
  debug?: boolean;
  token?: string;
  https?: boolean;
  /** Default permission mode for new sessions (e.g. "auto", "default", "bypassPermissions") */
  permissionMode?: string;
 }
 // Pending permission request
 interface PendingPermission {
  resolve: (outcome: { outcome: "cancelled" } | { outcome: "selected"; optionId: string }) => void;
  timeout: ReturnType<typeof setTimeout>;
 }
 // PromptCapabilities from ACP protocol
 // Reference: Zed's prompt_capabilities to check image support
 interface PromptCapabilities {
  audio?: boolean;
  embeddedContext?: boolean;
  image?: boolean;
 }
 // SessionModelState from ACP protocol
 // Reference: Zed's AgentModelSelector reads from state.available_models
 interface SessionModelState {
  availableModels: Array<{
    modelId: string;
    name: string;
    description?: string | null;
  }>;
  currentModelId: string;
 }
 // AgentCapabilities from ACP protocol
 // Reference: Zed's AcpConnection.agent_capabilities
 // Matches SDK's AgentCapabilities exactly
 interface AgentCapabilities {
  _meta?: Record<string, unknown> | null;
  loadSession?: boolean;
  mcpCapabilities?: {
    _meta?: Record<string, unknown> | null;
    clientServers?: boolean;
  };
  promptCapabilities?: PromptCapabilities;
  sessionCapabilities?: {
    _meta?: Record<string, unknown> | null;
    fork?: Record<string, unknown> | null;
    list?: Record<string, unknown> | null;
    resume?: Record<string, unknown> | null;
  };
 }
 // Track connected clients and their agent connections
 interface ClientState {
  process: ChildProcess | null;
  connection: acp.ClientSideConnection | null;
  sessionId: string | null;
  pendingPermissions: Map<string, PendingPermission>;
  agentCapabilities: AgentCapabilities | null;
  promptCapabilities: PromptCapabilities | null;
  modelState: SessionModelState | null;
  isAlive: boolean;
 }
 // Module-level state (set when server starts)
 let AGENT_COMMAND: string;
 let AGENT_ARGS: string[];
 let AGENT_CWD: string;
 let SERVER_PORT: number;
 let SERVER_HOST: string;
 let AUTH_TOKEN: string | undefined;
 let DEFAULT_PERMISSION_MODE: string | undefined;
 const clients = new Map<WSContext, ClientState>();
 // Module-scoped child loggers
 const logWs = createLogger("ws");
 const logAgent = createLogger("agent");
 const logSession = createLogger("session");
 const logPrompt = createLogger("prompt");
 const logPerm = createLogger("perm");
 const logRelay = createLogger("relay");
 const logServer = createLogger("server");
 // RCS upstream client (optional — enabled via ACP_RCS_URL env var)
 let rcsUpstream: RcsUpstreamClient | null = null;
 /**
 * Create a virtual WSContext for RCS relay messages.
 * Responses via send() go to RCS upstream (not a local WS).
 */
 function createRelayWs(): WSContext {
  return {
    get readyState() { return 1; }, // always OPEN
    send: () => {}, // no-op — responses go through rcsUpstream.send()
    close: () => {},
    raw: null,
    isInner: false,
    url: "",
    origin: "",
    protocol: "",
  } as unknown as WSContext;
 }
 // Permission request timeout (5 minutes)
 const PERMISSION_TIMEOUT_MS = 5 * 60 * 1000;
 // Heartbeat interval for WebSocket ping/pong (30 seconds)
 const HEARTBEAT_INTERVAL_MS = 30_000;
 // Generate unique request ID
 function generateRequestId(): string {
  return `perm_${Date.now()}_${Math.random().toString(36).slice(2, 11)}`;
 }
 // Send a message to the WebSocket client (and optionally forward to RCS upstream)
 function send(ws: WSContext, type: string, payload?: unknown): void {
  if (ws.readyState === 1) {
    // WebSocket.OPEN
    ws.send(JSON.stringify({ type, payload }));
  }
  // Forward to RCS upstream if connected
  if (rcsUpstream?.isRegistered()) {
    rcsUpstream.send({ type, payload });
  }
 }
 // Create a Client implementation that forwards events to WebSocket
 function createClient(ws: WSContext, clientState: ClientState): acp.Client {
  return {
    async requestPermission(params) {
      const requestId = generateRequestId();
      logPerm.debug({ requestId, title: params.toolCall.title }, "requested");
      const outcomePromise = new Promise<{ outcome: "cancelled" } | { outcome: "selected"; optionId: string }>((resolve) => {
        const timeout = setTimeout(() => {
          logPerm.warn({ requestId }, "timed out");
          clientState.pendingPermissions.delete(requestId);
          resolve({ outcome: "cancelled" });
        }, PERMISSION_TIMEOUT_MS);
        clientState.pendingPermissions.set(requestId, { resolve, timeout });
      });
      send(ws, "permission_request", {
        requestId,
        sessionId: params.sessionId,
        options: params.options,
        toolCall: params.toolCall,
      });
      const outcome = await outcomePromise;
      logPerm.debug({ requestId, outcome: outcome.outcome }, "resolved");
      return { outcome };
    },
    async sessionUpdate(params) {
      send(ws, "session_update", params);
    },
    async readTextFile(params) {
      logWs.debug({ path: params.path }, "readTextFile");
      return { content: "" };
    },
    async writeTextFile(params) {
      logWs.debug({ path: params.path }, "writeTextFile");
      return {};
    },
  };
 }
 // Handle permission response from client
 function handlePermissionResponse(ws: WSContext, payload: { requestId: string; outcome: { outcome: "cancelled" } | { outcome: "selected"; optionId: string } }): void {
  const state = clients.get(ws);
  if (!state) {
    logPerm.warn("response from unknown client");
    return;
  }
  const pending = state.pendingPermissions.get(payload.requestId);
  if (!pending) {
    logPerm.warn({ requestId: payload.requestId }, "response for unknown request");
    return;
  }
  clearTimeout(pending.timeout);
  state.pendingPermissions.delete(payload.requestId);
  pending.resolve(payload.outcome);
 }
 // Cancel all pending permissions for a client (called on disconnect)
 function cancelPendingPermissions(clientState: ClientState): void {
  for (const [requestId, pending] of clientState.pendingPermissions) {
    logPerm.debug({ requestId }, "cancelled on disconnect");
    clearTimeout(pending.timeout);
    pending.resolve({ outcome: "cancelled" });
  }
  clientState.pendingPermissions.clear();
 }
 async function handleConnect(ws: WSContext): Promise<void> {
  const state = clients.get(ws);
  if (!state) return;
  // If already connected to a running agent, just resend status
  // This handles frontend reconnections without restarting the agent process
  // Check both .killed and .exitCode to detect crashed processes
  if (state.connection && state.process && !state.process.killed && state.process.exitCode === null) {
    logAgent.info("already connected, resending status");
    send(ws, "status", {
      connected: true,
      agentInfo: { name: AGENT_COMMAND },
      capabilities: state.agentCapabilities,
    });
    return;
  }
  // Kill existing process if any (only if not healthy)
  if (state.process) {
    cancelPendingPermissions(state);
    state.process.kill();
    state.process = null;
    state.connection = null;
  }
  try {
    logAgent.info({ command: AGENT_COMMAND, args: AGENT_ARGS }, "spawning");
    const agentProcess = spawn(AGENT_COMMAND, AGENT_ARGS, {
      cwd: AGENT_CWD,
      stdio: ["pipe", "pipe", "inherit"],
    });
    state.process = agentProcess;
    // Clean up state when agent process exits unexpectedly
    agentProcess.on("exit", (code) => {
      logAgent.info({ exitCode: code }, "agent process exited");
      // Only clear if this is still the current process
      if (state.process === agentProcess) {
        state.process = null;
        state.connection = null;
        state.sessionId = null;
      }
    });
    const input = Writable.toWeb(agentProcess.stdin!) as unknown as WritableStream<Uint8Array>;
    const output = Readable.toWeb(agentProcess.stdout!) as unknown as ReadableStream<Uint8Array>;
    const stream = acp.ndJsonStream(input, output);
    const connection = new acp.ClientSideConnection(
      (_agent) => createClient(ws, state),
      stream,
    );
    state.connection = connection;
    const initResult = await connection.initialize({
      protocolVersion: acp.PROTOCOL_VERSION,
      clientInfo: { name: "zed", version: "1.0.0" },
      clientCapabilities: {
        fs: { readTextFile: true, writeTextFile: true },
      },
    });
    const agentCaps = initResult.agentCapabilities;
    state.agentCapabilities = agentCaps ? {
      _meta: agentCaps._meta,
      loadSession: agentCaps.loadSession,
      mcpCapabilities: agentCaps.mcpCapabilities,
      promptCapabilities: agentCaps.promptCapabilities,
      sessionCapabilities: agentCaps.sessionCapabilities,
    } : null;
    state.promptCapabilities = agentCaps?.promptCapabilities ?? null;
    logAgent.info({
      protocolVersion: initResult.protocolVersion,
      loadSession: !!state.agentCapabilities?.loadSession,
      sessionList: !!state.agentCapabilities?.sessionCapabilities?.list,
      sessionResume: !!state.agentCapabilities?.sessionCapabilities?.resume,
      hasMcp: !!state.agentCapabilities?.mcpCapabilities,
    }, "initialized");
    send(ws, "status", {
      connected: true,
      agentInfo: initResult.agentInfo,
      capabilities: state.agentCapabilities,
    });
    connection.closed.then(() => {
      logAgent.info("connection closed");
      state.connection = null;
      state.sessionId = null;
      send(ws, "status", { connected: false });
    });
  } catch (error) {
    logAgent.error({ error: (error as Error).message }, "connect failed");
    send(ws, "error", { message: `Failed to connect: ${(error as Error).message}` });
  }
 }
 async function handleNewSession(
  ws: WSContext,
  params: { cwd?: string; permissionMode?: string },
 ): Promise<void> {
  const state = clients.get(ws);
  if (!state?.connection) {
    logAgent.warn({ hasState: !!state, hasProcess: !!state?.process, processKilled: state?.process?.killed, exitCode: state?.process?.exitCode }, "handleNewSession: not connected to agent");
    send(ws, "error", { message: "Not connected to agent" });
    return;
  }
  try {
    const sessionCwd = params.cwd || AGENT_CWD;
    const permissionMode = params.permissionMode || DEFAULT_PERMISSION_MODE;
    const result = await state.connection.newSession({
      cwd: sessionCwd,
      mcpServers: [],
      ...(permissionMode ? { _meta: { permissionMode } } : {}),
    });
    state.sessionId = result.sessionId;
    state.modelState = result.models ?? null;
    logSession.info({ sessionId: result.sessionId, cwd: sessionCwd, hasModels: !!result.models }, "created");
    send(ws, "session_created", {
      ...result,
      promptCapabilities: state.promptCapabilities,
      models: state.modelState,
    });
  } catch (error) {
    logSession.error({ error: (error as Error).message }, "create failed");
    send(ws, "error", { message: `Failed to create session: ${(error as Error).message}` });
  }
 }
 // ============================================================================
 // Session History Operations
 // Reference: Zed's AgentConnection trait - list_sessions, load_session, resume_session
 // ============================================================================
 async function handleListSessions(
  ws: WSContext,
  params: { cwd?: string; cursor?: string },
 ): Promise<void> {
  const state = clients.get(ws);
  if (!state?.connection) {
    logAgent.warn({ hasState: !!state, hasProcess: !!state?.process, processKilled: state?.process?.killed, exitCode: state?.process?.exitCode }, "handleListSessions: not connected to agent");
    send(ws, "error", { message: "Not connected to agent" });
    return;
  }
  if (!state.agentCapabilities?.sessionCapabilities?.list) {
    send(ws, "error", { message: "Listing sessions is not supported by this agent" });
    return;
  }
  try {
    const result = await state.connection.listSessions({
      cwd: params.cwd,
      cursor: params.cursor,
    });
    const MAX_SESSIONS = 20;
    const sessions = result.sessions.slice(0, MAX_SESSIONS);
    logSession.info({ total: result.sessions.length, returned: sessions.length, hasMore: !!result.nextCursor }, "listed");
    send(ws, "session_list", {
      sessions: sessions.map((s: acp.SessionInfo) => ({
        _meta: s._meta,
        cwd: s.cwd,
        sessionId: s.sessionId,
        title: s.title,
        updatedAt: s.updatedAt,
      })),
      nextCursor: result.nextCursor,
      _meta: result._meta,
    });
  } catch (error) {
    logSession.error({ error: (error as Error).message }, "list failed");
    send(ws, "error", { message: `Failed to list sessions: ${(error as Error).message}` });
  }
 }
 async function handleLoadSession(
  ws: WSContext,
  params: { sessionId: string; cwd?: string },
 ): Promise<void> {
  const state = clients.get(ws);
  if (!state?.connection) {
    logAgent.warn({ hasState: !!state, hasProcess: !!state?.process, processKilled: state?.process?.killed, exitCode: state?.process?.exitCode }, "handleLoadSession: not connected to agent");
    send(ws, "error", { message: "Not connected to agent" });
    return;
  }
  if (!state.agentCapabilities?.loadSession) {
    send(ws, "error", { message: "Loading sessions is not supported by this agent" });
    return;
  }
  try {
    const sessionCwd = params.cwd || AGENT_CWD;
    const sessionId = params.sessionId;
    const result = await state.connection.loadSession({
      sessionId,
      cwd: sessionCwd,
      mcpServers: [],
    });
    state.sessionId = sessionId;
    state.modelState = result.models ?? null;
    logSession.info({ sessionId, cwd: sessionCwd }, "loaded");
    send(ws, "session_loaded", {
      sessionId,
      promptCapabilities: state.promptCapabilities,
      models: state.modelState,
    });
  } catch (error) {
    logSession.error({ error: (error as Error).message }, "load failed");
    send(ws, "error", { message: `Failed to load session: ${(error as Error).message}` });
  }
 }
 async function handleResumeSession(
  ws: WSContext,
  params: { sessionId: string; cwd?: string },
 ): Promise<void> {
  const state = clients.get(ws);
  if (!state?.connection) {
    logAgent.warn({ hasState: !!state, hasProcess: !!state?.process, processKilled: state?.process?.killed, exitCode: state?.process?.exitCode }, "handleResumeSession: not connected to agent");
    send(ws, "error", { message: "Not connected to agent" });
    return;
  }
  if (!state.agentCapabilities?.sessionCapabilities?.resume) {
    send(ws, "error", { message: "Resuming sessions is not supported by this agent" });
    return;
  }
  try {
    const sessionCwd = params.cwd || AGENT_CWD;
    const sessionId = params.sessionId;
    const result = await state.connection.unstable_resumeSession({
      sessionId,
      cwd: sessionCwd,
    });
    state.sessionId = sessionId;
    state.modelState = result.models ?? null;
    logSession.info({ sessionId, cwd: sessionCwd }, "resumed");
    send(ws, "session_resumed", {
      sessionId,
      promptCapabilities: state.promptCapabilities,
      models: state.modelState,
    });
  } catch (error) {
    logSession.error({ error: (error as Error).message }, "resume failed");
    send(ws, "error", { message: `Failed to resume session: ${(error as Error).message}` });
  }
 }
 // Reference: Zed's AcpThread.send() forwards Vec<acp::ContentBlock> to agent
 async function handlePrompt(
  ws: WSContext,
  params: { content: ContentBlock[] },
 ): Promise<void> {
  const state = clients.get(ws);
  if (!state?.connection || !state.sessionId) {
    send(ws, "error", { message: "No active session" });
    return;
  }
  try {
    const firstText = params.content.find(b => b.type === "text")?.text;
    const images = params.content.filter(b => b.type === "image");
    logPrompt.debug({
      text: firstText?.slice(0, 100),
      imageCount: images.length,
      blockCount: params.content.length,
    }, "sending");
    const result = await state.connection.prompt({
      sessionId: state.sessionId,
      prompt: params.content as acp.ContentBlock[],
    });
    logPrompt.info({ stopReason: result.stopReason }, "completed");
    send(ws, "prompt_complete", result);
  } catch (error) {
    logPrompt.error({ error: (error as Error).message }, "failed");
    send(ws, "error", { message: `Prompt failed: ${(error as Error).message}` });
  }
 }
 function handleDisconnect(ws: WSContext): void {
  const state = clients.get(ws);
  if (!state) return;
  if (state.process) {
    state.process.kill();
    state.process = null;
  }
  state.connection = null;
  state.sessionId = null;
  send(ws, "status", { connected: false });
 }
 // Handle cancel request from client
 async function handleCancel(ws: WSContext): Promise<void> {
  const state = clients.get(ws);
  if (!state?.connection || !state.sessionId) {
    logWs.warn("cancel requested but no active session");
    return;
  }
  logSession.info({ sessionId: state.sessionId }, "cancel requested");
  cancelPendingPermissions(state);
  try {
    await state.connection.cancel({ sessionId: state.sessionId });
    logSession.info({ sessionId: state.sessionId }, "cancel sent");
  } catch (error) {
    logSession.error({ error: (error as Error).message }, "cancel failed");
  }
 }
 // Reference: Zed's AgentModelSelector.select_model() calls connection.set_session_model()
 async function handleSetSessionModel(
  ws: WSContext,
  params: { modelId: string },
 ): Promise<void> {
  const state = clients.get(ws);
  if (!state?.connection || !state.sessionId) {
    send(ws, "error", { message: "No active session" });
    return;
  }
  if (!state.modelState) {
    send(ws, "error", { message: "Model selection not supported by this agent" });
    return;
  }
  try {
    logSession.info({ sessionId: state.sessionId, modelId: params.modelId }, "setting model");
    await state.connection.unstable_setSessionModel({
      sessionId: state.sessionId,
      modelId: params.modelId,
    });
    state.modelState = { ...state.modelState, currentModelId: params.modelId };
    send(ws, "model_changed", { modelId: params.modelId });
    logSession.info({ modelId: params.modelId }, "model changed");
  } catch (error) {
    logSession.error({ error: (error as Error).message }, "set model failed");
    send(ws, "error", { message: `Failed to set model: ${(error as Error).message}` });
  }
 }
 // ContentBlock type matching @agentclientprotocol/sdk
 interface ContentBlock {
  type: string;
  text?: string;
  data?: string;
  mimeType?: string;
  uri?: string;
  name?: string;
 }
 interface ProxyMessage {
  type: "connect" | "disconnect" | "new_session" | "prompt" | "cancel" | "set_session_model";
  payload?: { cwd?: string } | { content: ContentBlock[] } | { modelId: string };
 }
 export async function startServer(config: ServerConfig): Promise<void> {
  const { port, host, command, args, cwd, token, https } = config;
  // Set module-level config
  AGENT_COMMAND = command;
  AGENT_ARGS = args;
  AGENT_CWD = cwd;
  SERVER_PORT = port;
  SERVER_HOST = host;
  AUTH_TOKEN = token;
  DEFAULT_PERMISSION_MODE = config.permissionMode || process.env.ACP_PERMISSION_MODE;
  // Initialize RCS upstream client if configured
  const rcsUrl = process.env.ACP_RCS_URL;
  const rcsToken = process.env.ACP_RCS_TOKEN;
  if (rcsUrl) {
    rcsUpstream = new RcsUpstreamClient({
      rcsUrl,
      apiToken: rcsToken || "",
      agentName: command,
      maxSessions: 1,
    });
    const relayWs = createRelayWs();
    const relayState: ClientState = {
      process: null,
      connection: null,
      sessionId: null,
      pendingPermissions: new Map(),
      agentCapabilities: null,
      promptCapabilities: null,
      modelState: null,
      isAlive: true,
    };
    clients.set(relayWs, relayState);
    rcsUpstream.setMessageHandler(async (msg) => {
      try {
        logRelay.debug({ type: msg.type }, "processing");
        switch (msg.type) {
          case "connect":
            await handleConnect(relayWs);
            break;
          case "disconnect":
            handleDisconnect(relayWs);
            break;
          case "new_session":
            await handleNewSession(relayWs, (msg.payload as { cwd?: string; permissionMode?: string }) || {});
            break;
          case "prompt":
            await handlePrompt(relayWs, msg.payload as { content: ContentBlock[] });
            break;
          case "permission_response":
            handlePermissionResponse(relayWs, msg.payload as { requestId: string; outcome: { outcome: "cancelled" } | { outcome: "selected"; optionId: string } });
            break;
          case "cancel":
            await handleCancel(relayWs);
            break;
          case "set_session_model":
            await handleSetSessionModel(relayWs, msg.payload as { modelId: string });
            break;
          case "list_sessions":
            await handleListSessions(relayWs, (msg.payload as { cwd?: string; cursor?: string }) || {});
            break;
          case "load_session":
            await handleLoadSession(relayWs, msg.payload as { sessionId: string; cwd?: string });
            break;
          case "resume_session":
            await handleResumeSession(relayWs, msg.payload as { sessionId: string; cwd?: string });
            break;
          case "ping":
            send(relayWs, "pong");
            break;
          default:
            logRelay.warn({ type: msg.type }, "unknown message type");
        }
      } catch (error) {
        logRelay.error({ error: (error as Error).message }, "handler error");
      }
    });
    rcsUpstream.connect().catch((err) => {
      logRelay.warn({ error: (err as Error).message }, "initial connection failed");
    });
    logRelay.info({ url: rcsUrl }, "upstream enabled");
  }
  const app = new Hono();
  const { injectWebSocket, upgradeWebSocket } = createNodeWebSocket({ app });
  // Health check endpoint
  app.get("/health", (c) => {
    return c.json({ status: "ok" });
  });
  // WebSocket endpoint with token validation
  app.get(
    "/ws",
    upgradeWebSocket((c) => {
      if (AUTH_TOKEN) {
        const url = new URL(c.req.url);
        const providedToken = url.searchParams.get("token");
        if (providedToken !== AUTH_TOKEN) {
          logWs.warn("connection rejected: invalid token");
          return {
            onOpen(_event, ws) {
              ws.close(4001, "Unauthorized: Invalid token");
            },
            onMessage() {},
            onClose() {},
          };
        }
      }
      return {
        onOpen(_event, ws) {
          logWs.info("client connected");
          const state: ClientState = {
            process: null,
            connection: null,
            sessionId: null,
            pendingPermissions: new Map(),
            agentCapabilities: null,
            promptCapabilities: null,
            modelState: null,
            isAlive: true,
          };
          clients.set(ws, state);
          const rawWs = ws.raw as RawWebSocket;
          rawWs.on("pong", () => {
            state.isAlive = true;
          });
        },
      async onMessage(event, ws) {
        try {
          const data = JSON.parse(event.data.toString());
          logWs.debug({ type: data.type }, "received");
          switch (data.type) {
            case "connect":
              await handleConnect(ws);
              break;
            case "disconnect":
              handleDisconnect(ws);
              break;
            case "new_session":
              await handleNewSession(ws, (data.payload as { cwd?: string; permissionMode?: string }) || {});
              break;
            case "prompt":
              await handlePrompt(ws, data.payload as { content: ContentBlock[] });
              break;
            case "permission_response":
              handlePermissionResponse(ws, data.payload);
              break;
            case "cancel":
              await handleCancel(ws);
              break;
            case "set_session_model":
              await handleSetSessionModel(ws, data.payload as { modelId: string });
              break;
            case "list_sessions":
              await handleListSessions(ws, (data.payload as { cwd?: string; cursor?: string }) || {});
              break;
            case "load_session":
              await handleLoadSession(ws, data.payload as { sessionId: string; cwd?: string });
              break;
            case "resume_session":
              await handleResumeSession(ws, data.payload as { sessionId: string; cwd?: string });
              break;
            case "ping":
              send(ws, "pong");
              break;
            default:
              send(ws, "error", { message: `Unknown message type: ${data.type}` });
          }
        } catch (error) {
          logWs.error({ error: (error as Error).message }, "message error");
          send(ws, "error", { message: `Error: ${(error as Error).message}` });
        }
      },
      onClose(_event, ws) {
        logWs.info("client disconnected");
        const state = clients.get(ws);
        if (state) {
          cancelPendingPermissions(state);
        }
        handleDisconnect(ws);
        clients.delete(ws);
      },
    };
    }),
  );
  // Create server with optional HTTPS
  let server;
  if (https) {
    const tlsOptions = await getOrCreateCertificate();
    server = serve({
      fetch: app.fetch,
      port,
      hostname: host,
      createServer: createHttpsServer,
      serverOptions: tlsOptions,
    });
  } else {
    server = serve({ fetch: app.fetch, port, hostname: host });
  }
  injectWebSocket(server);
  // Heartbeat: periodically ping all connected clients
  setInterval(() => {
    for (const [ws, state] of clients) {
      // Skip virtual relay connections (no raw socket, always alive)
      if (!ws.raw && state.isAlive) continue;
      if (!ws.raw) {
        // Connection already closed, clean up
        clients.delete(ws);
        continue;
      }
      if (!state.isAlive) {
        logWs.info("heartbeat timeout, terminating");
        (ws.raw as RawWebSocket).terminate();
        continue;
      }
      state.isAlive = false;
      (ws.raw as RawWebSocket).ping();
    }
  }, HEARTBEAT_INTERVAL_MS);
  // Protocol strings based on HTTPS mode
  const wsProtocol = https ? "wss" : "ws";
  // Get actual LAN IP when binding to 0.0.0.0
  let displayHost = host;
  if (host === "0.0.0.0") {
    const lanIPs = getLanIPs();
    displayHost = lanIPs[0] || "localhost";
  }
  // Build URLs
  const localWsUrl = `${wsProtocol}://localhost:${port}/ws`;
  const networkWsUrl = `${wsProtocol}://${displayHost}:${port}/ws`;
  // Print startup banner
  console.log();
  console.log(`  🚀 ACP Proxy Server${https ? " (HTTPS)" : ""}`);
  console.log();
  console.log(`  Connection:`);
  if (host === "0.0.0.0") {
    console.log(`    URL:   ${networkWsUrl}`);
  } else {
    console.log(`    URL:   ${localWsUrl}`);
  }
  if (AUTH_TOKEN) {
    console.log(`    Token: ${AUTH_TOKEN}`);
  }
  console.log();
  if (!AUTH_TOKEN) {
    console.log(`  ⚠️  Authentication disabled (--no-auth)`);
    console.log();
  }
  const agentDisplay = AGENT_ARGS.length > 0
    ? `${AGENT_COMMAND} ${AGENT_ARGS.join(" ")}`
    : AGENT_COMMAND;
  console.log(`  📦 Agent: ${agentDisplay}`);
  console.log(`     CWD:   ${AGENT_CWD}`);
  console.log();
  console.log(`  Press Ctrl+C to stop`);
  console.log();
  logServer.info({
    port,
    host,
    https,
    wsEndpoint: `${wsProtocol}://${displayHost}:${port}/ws`,
    agent: AGENT_COMMAND,
    agentArgs: AGENT_ARGS,
    cwd: AGENT_CWD,
    authEnabled: !!AUTH_TOKEN,
  }, "started");
  // Keep the server running
  await new Promise(() => {});
 }
 // Graceful shutdown — close RCS upstream on process exit
 process.on("SIGINT", async () => {
  if (rcsUpstream) {
    await rcsUpstream.close();
  }
  process.exit(0);
 });
 process.on("SIGTERM", async () => {
  if (rcsUpstream) {
    await rcsUpstream.close();
  }
  process.exit(0);
 });
--- a/packages/acp-link/src/types.ts
+++ b/packages/acp-link/src/types.ts
@@ -0,0 +1,150 @@
 // JSON-RPC 2.0 Types
 export interface JsonRpcRequest {
  jsonrpc: "2.0";
  id: string | number;
  method: string;
  params?: unknown;
 }
 export interface JsonRpcResponse {
  jsonrpc: "2.0";
  id: string | number;
  result?: unknown;
  error?: JsonRpcError;
 }
 export interface JsonRpcNotification {
  jsonrpc: "2.0";
  method: string;
  params?: unknown;
 }
 export interface JsonRpcError {
  code: number;
  message: string;
  data?: unknown;
 }
 export type JsonRpcMessage =
  | JsonRpcRequest
  | JsonRpcResponse
  | JsonRpcNotification;
 // Helper to check message types
 export function isRequest(msg: JsonRpcMessage): msg is JsonRpcRequest {
  return "method" in msg && "id" in msg;
 }
 export function isResponse(msg: JsonRpcMessage): msg is JsonRpcResponse {
  return "id" in msg && !("method" in msg);
 }
 export function isNotification(
  msg: JsonRpcMessage,
 ): msg is JsonRpcNotification {
  return "method" in msg && !("id" in msg);
 }
 // ACP Protocol Types
 // Client -> Server messages (from extension to proxy)
 export interface ProxyConnectParams {
  command: string; // Command to launch the agent (e.g., "claude-agent")
  args?: string[]; // Optional arguments
  cwd?: string; // Working directory for the agent
 }
 export interface ProxyMessage {
  type: "connect" | "disconnect" | "message";
  payload?: ProxyConnectParams | JsonRpcMessage;
 }
 // Server -> Client messages (from proxy to extension)
 export interface ProxyStatus {
  type: "status";
  connected: boolean;
  agentInfo?: {
    name?: string;
    version?: string;
  };
  error?: string;
 }
 export interface ProxyAgentMessage {
  type: "agent_message";
  payload: JsonRpcMessage;
 }
 export interface ProxyError {
  type: "error";
  message: string;
  code?: string;
 }
 export type ProxyResponse = ProxyStatus | ProxyAgentMessage | ProxyError;
 // ACP Initialization
 export interface InitializeParams {
  protocolVersion: string;
  clientInfo: {
    name: string;
    version: string;
  };
  capabilities?: ClientCapabilities;
 }
 export interface ClientCapabilities {
  streaming?: boolean;
  toolApproval?: boolean;
 }
 export interface InitializeResult {
  protocolVersion: string;
  serverInfo: {
    name: string;
    version: string;
  };
  capabilities?: ServerCapabilities;
 }
 export interface ServerCapabilities {
  streaming?: boolean;
  tools?: boolean;
 }
 // ACP Session
 export interface SessionSetupParams {
  sessionId?: string;
  context?: SessionContext;
 }
 export interface SessionContext {
  workingDirectory?: string;
  files?: string[];
 }
 // ACP Prompt
 export interface PromptParams {
  sessionId: string;
  messages: PromptMessage[];
 }
 export interface PromptMessage {
  role: "user" | "assistant";
  content: string | ContentPart[];
 }
 export interface ContentPart {
  type: "text" | "image" | "file";
  text?: string;
  data?: string;
  mimeType?: string;
  path?: string;
 }
 // Content streaming notification
 export interface ContentNotification {
  sessionId: string;
  content: string;
  done?: boolean;
 }
--- a/packages/acp-link/tsconfig.json
+++ b/packages/acp-link/tsconfig.json
@@ -0,0 +1,37 @@
 {
  "compilerOptions": {
    // Environment setup & latest features
    "lib": ["ESNext"],
    "target": "ES2022",
    "module": "NodeNext",
    "moduleDetection": "force",
    "allowJs": true,
    // Node.js module resolution
    "moduleResolution": "NodeNext",
    "verbatimModuleSyntax": true,
    // Output
    "outDir": "./dist",
    "rootDir": "./src",
    "declaration": true,
    "declarationMap": true,
    "sourceMap": true,
    // Best practices
    "strict": true,
    "skipLibCheck": true,
    "noFallthroughCasesInSwitch": true,
    "noUncheckedIndexedAccess": true,
    "noImplicitOverride": true,
    "esModuleInterop": true,
    "resolveJsonModule": true,
    // Some stricter flags (disabled by default)
    "noUnusedLocals": false,
    "noUnusedParameters": false,
    "noPropertyAccessFromIndexSignature": false
  },
  "include": ["src/**/*"],
  "exclude": ["node_modules", "dist", "src/__tests__"]
 }
--- a/packages/agent-tools/src/tests/compat.test.ts
+++ b/packages/agent-tools/src/tests/compat.test.ts
@@ -1,6 +1,6 @@
 import { describe, expect, test } from 'bun:test'
 import type { CoreTool, Tool, Tools, AnyObject, ToolResult, ValidationResult, PermissionResult } from '@claude-code-best/agent-tools'
-import type { Tool as HostTool } from '../../src/Tool.js'
+import type { Tool as HostTool } from '../../../../src/Tool.js'
 describe('agent-tools compatibility', () => {
  test('CoreTool structural compatibility with host Tool', () => {
@@ -27,7 +27,7 @@ describe('agent-tools compatibility', () => {
    }
    // This assignment should work if HostTool structurally extends CoreTool
-    const coreTool: CoreTool = mockHostTool as CoreTool
+    const coreTool: CoreTool = mockHostTool as unknown as CoreTool
    expect(coreTool.name).toBe('test')
    expect(coreTool.isEnabled()).toBe(true)
  })
--- a/packages/agent-tools/tsconfig.json
+++ b/packages/agent-tools/tsconfig.json
@@ -0,0 +1,5 @@
 {
  "extends": "../../tsconfig.base.json",
  "include": ["src/**/*.ts"],
  "exclude": ["node_modules", "dist"]
 }
--- a/packages/audio-capture-napi/tsconfig.json
+++ b/packages/audio-capture-napi/tsconfig.json
@@ -0,0 +1,5 @@
 {
  "extends": "../../tsconfig.base.json",
  "include": ["src/**/*.ts"],
  "exclude": ["node_modules", "dist"]
 }
--- a/packages/builtin-tools/src/tools/AgentTool/tests/agentDisplay.test.ts
+++ b/packages/builtin-tools/src/tools/AgentTool/tests/agentDisplay.test.ts
@@ -7,6 +7,17 @@ mock.module("src/utils/model/agent.js", () => ({
 mock.module("src/utils/settings/constants.js", () => ({
  getSourceDisplayName: (source: string) => source,
  getSourceDisplayNameLowercase: (source: string) => source,
  getSourceDisplayNameCapitalized: (source: string) => source,
  getSettingSourceName: (source: string) => source,
  getSettingSourceDisplayNameLowercase: (source: string) => source,
  getSettingSourceDisplayNameCapitalized: (source: string) => source,
  parseSettingSourcesFlag: () => [],
  getEnabledSettingSources: () => [],
  isSettingSourceEnabled: () => true,
  SETTING_SOURCES: ["localSettings", "userSettings", "projectSettings"],
  SOURCES: ["localSettings", "userSettings", "projectSettings"],
  CLAUDE_CODE_SETTINGS_SCHEMA_URL: "https://json.schemastore.org/claude-code-settings.json",
 }));
 const {
--- a/packages/builtin-tools/src/tools/AgentTool/tests/agentToolUtils.test.ts
+++ b/packages/builtin-tools/src/tools/AgentTool/tests/agentToolUtils.test.ts
@@ -87,7 +87,7 @@ mock.module("src/tasks/LocalAgentTask/LocalAgentTask.js", () => ({
  updateProgressFromMessage: noop,
 }));
-mock.module("src/utils/debug.js", () => ({
+mock.module("src/utils/debug.ts", () => ({
  getMinDebugLogLevel: () => "warn",
  isDebugMode: () => false,
  enableDebugLogging: () => false,
--- a/packages/builtin-tools/src/tools/BashTool/tests/commandSemantics.test.ts
+++ b/packages/builtin-tools/src/tools/BashTool/tests/commandSemantics.test.ts
@@ -1,11 +1,4 @@
-import { mock, describe, expect, test } from "bun:test";
+import { describe, expect, test } from "bun:test";
 // Mock commands.ts to cut the heavy shell/prefix.ts → analytics → api chain
 mock.module("src/utils/bash/commands.ts", () => ({
  splitCommand_DEPRECATED: (cmd: string) =>
    cmd.split(/\s*(?:[|;&]+)\s*/).filter(Boolean),
  quote: (args: string[]) => args.join(" "),
 }));
 const { interpretCommandResult } = await import("../commandSemantics");
--- a/packages/builtin-tools/src/tools/LSPTool/tests/formatters.test.ts
+++ b/packages/builtin-tools/src/tools/LSPTool/tests/formatters.test.ts
@@ -1,19 +1,10 @@
 import { mock, describe, expect, test } from "bun:test";
-mock.module("src/utils/debug.js", () => ({
+mock.module("src/utils/debug.ts", () => ({
  logForDebugging: () => {},
  isDebugMode: () => false,
 }));
 mock.module("src/utils/errors.js", () => ({
  errorMessage: (e: unknown) => String(e),
 }));
 mock.module("src/utils/stringUtils.js", () => ({
  plural: (n: number, singular: string, plural?: string) =>
    n === 1 ? singular : (plural ?? singular + "s"),
 }));
 const {
  formatGoToDefinitionResult,
  formatFindReferencesResult,
--- a/packages/builtin-tools/src/tools/PowerShellTool/tests/gitSafety.test.ts
+++ b/packages/builtin-tools/src/tools/PowerShellTool/tests/gitSafety.test.ts
@@ -7,6 +7,18 @@ mock.module("src/utils/cwd.js", () => ({
  getCwd: () => mockCwd,
 }));
 // Defensive: agent.test.ts can corrupt Bun's src/* path alias at runtime.
 mock.module("src/utils/powershell/parser.js", () => ({
  PS_TOKENIZER_DASH_CHARS: new Set(['-', '\u2013', '\u2014', '\u2015']),
  COMMON_ALIASES: {},
  commandHasArgAbbreviation: () => false,
  deriveSecurityFlags: () => ({}),
  getAllCommands: () => [],
  getVariablesByScope: () => [],
  hasCommandNamed: () => false,
  parsePowerShellCommandCached: () => ({ valid: false, errors: [], statements: [], variables: [], hasStopParsing: false, originalCommand: "" }),
 }))
 const { isGitInternalPathPS, isDotGitPathPS } = await import("../gitSafety");
 describe("isGitInternalPathPS", () => {
--- a/packages/builtin-tools/src/tools/PowerShellTool/tests/powershellSecurity.test.ts
+++ b/packages/builtin-tools/src/tools/PowerShellTool/tests/powershellSecurity.test.ts
@@ -32,6 +32,58 @@ mock.module("src/utils/powershell/dangerousCmdlets.js", () => ({
  ]),
 }));
 // Defensive: agent.test.ts can corrupt Bun's src/* path alias at runtime.
 // Provide parser stubs so powershellSecurity.ts loads without the alias.
 // The tests build ParsedPowerShellCommand objects manually via makeParsed(),
 // so the real parser implementations are not needed for these specific tests.
 const MOCK_COMMON_ALIASES: Record<string, string> = {
  iex: "Invoke-Expression",
  ii: "Invoke-Item",
  sal: "Set-Alias",
  ipmo: "Import-Module",
  iwmi: "Invoke-WmiMethod",
  saps: "Start-Process",
  start: "Start-Process",
 };
 mock.module("src/utils/powershell/parser.js", () => ({
  COMMON_ALIASES: MOCK_COMMON_ALIASES,
  commandHasArgAbbreviation: (cmd: any, fullParam: string, minPrefix: string) => {
    const fullLower = fullParam.toLowerCase()
    const prefixLower = minPrefix.toLowerCase()
    return cmd.args.some((a: string) => {
      const lower = a.toLowerCase()
      const colonIdx = lower.indexOf(':')
      const paramPart = colonIdx > 0 ? lower.slice(0, colonIdx) : lower
      return paramPart.startsWith(prefixLower) && fullLower.startsWith(paramPart)
    })
  },
  deriveSecurityFlags: () => ({ hasRedirectToVariable: false, hasPipelineVariable: false, hasFormatHex: false, hasScriptBlocks: false, hasSubExpressions: false, hasExpandableStrings: false, hasSplatting: false, hasStopParsing: false, hasMemberInvocations: false, hasAssignments: false }),
  getAllCommands: (parsed: any) => parsed.statements.flatMap((s: any) => s.commands || []),
  getVariablesByScope: () => [],
  hasCommandNamed: (parsed: any, name: string) => {
    const lower = name.toLowerCase()
    const canonicalFromAlias = MOCK_COMMON_ALIASES[lower]?.toLowerCase()
    return parsed.statements.some((s: any) => (s.commands || []).some((c: any) => {
      const cmdLower = c.name.toLowerCase()
      if (cmdLower === lower) return true
      const canonical = MOCK_COMMON_ALIASES[cmdLower]?.toLowerCase()
      if (canonical === lower) return true
      if (canonicalFromAlias && cmdLower === canonicalFromAlias) return true
      return false
    }))
  },
  parsePowerShellCommandCached: () => ({ valid: false, errors: [], statements: [], variables: [], hasStopParsing: false, originalCommand: "" }),
  PARSE_SCRIPT_BODY: "",
  WINDOWS_MAX_COMMAND_LENGTH: 32000,
  MAX_COMMAND_LENGTH: 32000,
  PS_TOKENIZER_DASH_CHARS: new Set(['-', '\u2013', '\u2014', '\u2015']),
  mapStatementType: (t: string) => t,
  mapElementType: (t: string) => t,
  classifyCommandName: () => ({ type: 'external', name: '' }),
  stripModulePrefix: (n: string) => n,
 }));
 // Real parser functions work without mocks since they're pure
 const { powershellCommandIsSafe } = await import("../powershellSecurity.js");
--- a/packages/builtin-tools/src/tools/PushNotificationTool/PushNotificationTool.ts
+++ b/packages/builtin-tools/src/tools/PushNotificationTool/PushNotificationTool.ts
@@ -1,7 +1,9 @@
 import { feature } from 'bun:bundle'
 import { z } from 'zod/v4'
 import type { ToolResultBlockParam } from 'src/Tool.js'
 import { buildTool } from 'src/Tool.js'
 import { lazySchema } from 'src/utils/lazySchema.js'
 import { logForDebugging } from 'src/utils/debug.js'
 const PUSH_NOTIFICATION_TOOL_NAME = 'PushNotification'
@@ -74,14 +76,58 @@ Requires Remote Control to be configured. Respects user notification settings (t
    }
  },
-  async call(_input: PushInput) {
+  async call(input: PushInput, context) {
-    // Push delivery is handled by the Remote Control / KAIROS transport layer.
+    const appState = context.getAppState()
-    // Without the KAIROS runtime, this tool is not available.
+
-    return {
+    // Try bridge delivery first (for remote/mobile viewers)
-      data: {
+    if (appState.replBridgeEnabled) {
-        sent: false,
+      if (feature('BRIDGE_MODE')) {
-        error: 'PushNotification requires the KAIROS transport layer.',
+        try {
-      },
+          const { getBridgeAccessToken, getBridgeBaseUrl } = await import(
            'src/bridge/bridgeConfig.js'
          )
          const { getSessionId } = await import('src/bootstrap/state.js')
          const token = getBridgeAccessToken()
          const sessionId = getSessionId()
          if (token && sessionId) {
            const baseUrl = getBridgeBaseUrl()
            const axios = (await import('axios')).default
            const response = await axios.post(
              `${baseUrl}/v1/sessions/${sessionId}/events`,
              {
                events: [
                  {
                    type: 'push_notification',
                    title: input.title,
                    body: input.body,
                    priority: input.priority ?? 'normal',
                  },
                ],
              },
              {
                headers: {
                  Authorization: `Bearer ${token}`,
                  'Content-Type': 'application/json',
                  'anthropic-version': '2023-06-01',
                },
                timeout: 10_000,
                validateStatus: (s: number) => s < 500,
              },
            )
            if (response.status >= 200 && response.status < 300) {
              logForDebugging(`[PushNotification] delivered via bridge session=${sessionId}`)
              return { data: { sent: true } }
            }
            logForDebugging(`[PushNotification] bridge delivery failed: status=${response.status}`)
          }
        } catch (e) {
          logForDebugging(`[PushNotification] bridge delivery error: ${e}`)
        }
      }
    }
    // Fallback: no bridge available, push was not delivered to a remote device.
    logForDebugging(`[PushNotification] no bridge available, not delivered: ${input.title}`)
    return { data: { sent: false, error: 'No Remote Control bridge configured. Notification not delivered.' } }
  },
 })
--- a/packages/builtin-tools/src/tools/SendUserFileTool/SendUserFileTool.ts
+++ b/packages/builtin-tools/src/tools/SendUserFileTool/SendUserFileTool.ts
@@ -70,14 +70,51 @@ Guidelines:
    }
  },
-  async call(_input: SendUserFileInput) {
+  async call(input: SendUserFileInput, context) {
-    // File transfer is handled by the KAIROS assistant transport layer.
+    const { file_path } = input
-    // Without the KAIROS runtime, this tool is not available.
+    const { stat } = await import('fs/promises')
    // Verify file exists and is readable
    let fileSize: number
    try {
      const fileStat = await stat(file_path)
      if (!fileStat.isFile()) {
        return {
          data: { sent: false, file_path, error: 'Path is not a file.' },
        }
      }
      fileSize = fileStat.size
    } catch {
      return {
        data: { sent: false, file_path, error: 'File does not exist or is not readable.' },
      }
    }
    // Attempt bridge upload if available (so web viewers can download)
    const appState = context.getAppState()
    let fileUuid: string | undefined
    if (appState.replBridgeEnabled) {
      try {
        const { uploadBriefAttachment } = await import(
          '@claude-code-best/builtin-tools/tools/BriefTool/upload.js'
        )
        fileUuid = await uploadBriefAttachment(file_path, fileSize, {
          replBridgeEnabled: true,
          signal: context.abortController.signal,
        })
      } catch {
        // Best-effort upload — local path is always available
      }
    }
    const delivered = !appState.replBridgeEnabled || Boolean(fileUuid)
    return {
      data: {
-        sent: false,
+        sent: delivered,
-        file_path: _input.file_path,
+        file_path,
-        error: 'SendUserFile requires the KAIROS assistant transport layer.',
+        size: fileSize,
        ...(fileUuid ? { file_uuid: fileUuid } : {}),
        ...(!delivered ? { error: 'Bridge upload failed. File available at local path.' } : {}),
      },
    }
  },
--- a/packages/builtin-tools/src/tools/SleepTool/SleepTool.ts
+++ b/packages/builtin-tools/src/tools/SleepTool/SleepTool.ts
@@ -3,8 +3,11 @@ import { z } from 'zod/v4'
 import type { ToolResultBlockParam } from 'src/Tool.js'
 import { buildTool } from 'src/Tool.js'
 import { lazySchema } from 'src/utils/lazySchema.js'
 import { notifyAutomationStateChanged } from 'src/utils/sessionState.js'
 import { SLEEP_TOOL_NAME, DESCRIPTION, SLEEP_TOOL_PROMPT } from './prompt.js'
 const SLEEP_WAKE_CHECK_INTERVAL_MS = 500
 const inputSchema = lazySchema(() =>
  z.strictObject({
    duration_seconds: z
@@ -19,6 +22,36 @@ type SleepInput = z.infer<InputSchema>
 type SleepOutput = { slept_seconds: number; interrupted: boolean }
 function isProactiveAutomationEnabled(): boolean {
  if (!(feature('PROACTIVE') || feature('KAIROS'))) {
    return false
  }
  const mod =
    require('src/proactive/index.js') as typeof import('src/proactive/index.js')
  return mod.isProactiveActive()
 }
 function isProactiveSleepAllowed(): boolean {
  if (!(feature('PROACTIVE') || feature('KAIROS'))) {
    return true
  }
  const mod =
    require('src/proactive/index.js') as typeof import('src/proactive/index.js')
  return mod.isProactiveActive()
 }
 function hasQueuedWakeSignal(): boolean {
  const queue =
    require('src/utils/messageQueueManager.js') as typeof import('src/utils/messageQueueManager.js')
  return queue.hasCommandsInQueue()
 }
 function shouldInterruptSleep(): boolean {
  return !isProactiveSleepAllowed() || hasQueuedWakeSignal()
 }
 export const SleepTool = buildTool({
  name: SLEEP_TOOL_NAME,
  searchHint: 'wait pause sleep rest idle duration timer',
@@ -42,6 +75,9 @@ export const SleepTool = buildTool({
  isReadOnly() {
    return true
  },
  interruptBehavior() {
    return 'cancel'
  },
  userFacingName() {
    return SLEEP_TOOL_NAME
@@ -67,53 +103,84 @@ export const SleepTool = buildTool({
  },
  async call(input: SleepInput, context) {
-    // Refuse to sleep when proactive mode is off — prevents the model from
+    // Don't enter sleep if proactive was disabled or new work arrived while
-    // re-issuing Sleep after an interruption caused by /proactive disable.
+    // the model was deciding to wait.
-    if (feature('PROACTIVE') || feature('KAIROS')) {
+    if (shouldInterruptSleep()) {
-      const mod =
+      return {
-        require('src/proactive/index.js') as typeof import('src/proactive/index.js')
+        data: {
-      if (!mod.isProactiveActive()) {
+          slept_seconds: 0,
-        return {
+          interrupted: true,
-          data: {
+        },
            slept_seconds: 0,
            interrupted: true,
          },
        }
      }
    }
    const { duration_seconds } = input
    const startTime = Date.now()
    const sleepUntil = startTime + duration_seconds * 1000
    if (isProactiveAutomationEnabled()) {
      notifyAutomationStateChanged({
        enabled: true,
        phase: 'sleeping',
        next_tick_at: null,
        sleep_until: sleepUntil,
      })
    }
    try {
      await new Promise<void>((resolve, reject) => {
-        const timer = setTimeout(resolve, duration_seconds * 1000)
+        let timer: ReturnType<typeof setTimeout> | null = null
        let wakeCheck: ReturnType<typeof setInterval> | null = null
        let settled = false
        const cleanup = () => {
          if (timer !== null) {
            clearTimeout(timer)
            timer = null
          }
          if (wakeCheck !== null) {
            clearInterval(wakeCheck)
            wakeCheck = null
          }
          context.abortController.signal.removeEventListener('abort', onAbort)
        }
        const finish = () => {
          if (settled) return
          settled = true
          cleanup()
          resolve()
        }
        const interrupt = () => {
          if (settled) return
          settled = true
          cleanup()
          reject(new Error('interrupted'))
        }
        const onAbort = () => {
          interrupt()
        }
        timer = setTimeout(finish, duration_seconds * 1000)
        // Abort via user interrupt
-        context.abortController.signal.addEventListener(
+        if (context.abortController.signal.aborted) {
-          'abort',
+          interrupt()
-          () => {
+          return
-            clearTimeout(timer)
+        }
-            clearInterval(proactiveCheck)
+        context.abortController.signal.addEventListener('abort', onAbort, {
-            reject(new Error('interrupted'))
+          once: true,
-          },
+        })
          { once: true },
        )
-        // Poll proactive state — if deactivated mid-sleep, interrupt early
+        // Poll proactive state and the shared command queue so new work can
-        // so the user doesn't have to wait for the full duration.
+        // wake Sleep without waiting for the full duration.
-        const proactiveCheck =
+        wakeCheck = setInterval(() => {
-          feature('PROACTIVE') || feature('KAIROS')
+          if (shouldInterruptSleep()) {
-            ? setInterval(() => {
+            interrupt()
-                const mod =
+          }
-                  require('src/proactive/index.js') as typeof import('src/proactive/index.js')
+        }, SLEEP_WAKE_CHECK_INTERVAL_MS)
                if (!mod.isProactiveActive()) {
                  clearTimeout(timer)
                  clearInterval(proactiveCheck)
                  reject(new Error('interrupted'))
                }
              }, 500)
            : (null as unknown as ReturnType<typeof setInterval>)
      })
      return {
        data: {
@@ -129,6 +196,17 @@ export const SleepTool = buildTool({
          interrupted: true,
        },
      }
    } finally {
      notifyAutomationStateChanged(
        isProactiveAutomationEnabled()
          ? {
              enabled: true,
              phase: null,
              next_tick_at: null,
              sleep_until: null,
            }
          : null,
      )
    }
  },
 })
--- a/packages/builtin-tools/src/tools/SleepTool/tests/SleepTool.test.ts
+++ b/packages/builtin-tools/src/tools/SleepTool/tests/SleepTool.test.ts
@@ -0,0 +1,41 @@
 import { beforeEach, describe, expect, test } from 'bun:test'
 import { SleepTool } from '../SleepTool'
 import {
  enqueue,
  getCommandQueue,
  resetCommandQueue,
 } from 'src/utils/messageQueueManager.js'
 describe('SleepTool', () => {
  beforeEach(() => {
    resetCommandQueue()
  })
  test('declares cancel interrupt behavior', () => {
    expect(SleepTool.interruptBehavior()).toBe('cancel')
  })
  test('wakes early when queued work arrives', async () => {
    const sleepPromise = SleepTool.call(
      { duration_seconds: 10 },
      { abortController: new AbortController() } as any,
    )
    setTimeout(() => {
      enqueue({
        value: 'wake up',
        mode: 'prompt',
      })
    }, 20)
    const result = await sleepPromise
    expect(result.data.interrupted).toBe(true)
    expect(result.data.slept_seconds).toBeLessThan(10)
    expect(getCommandQueue()).toHaveLength(1)
    expect(getCommandQueue()[0]).toMatchObject({
      value: 'wake up',
      mode: 'prompt',
    })
  })
 })
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
claude-code-best	4d939e5722	chore: 更新构建 feature 的问题	2026-04-19 08:27:25 +08:00
claude-code-best	2e9aaf4993	feat: ACP 协议版本 remote control (#293 ) * fix: 添加 usage 字段缺失时的防御性防护第三方 API（如智谱 GLM）在某些流式响应中不返回 usage 字段，导致 usage.input_tokens 访问 undefined 崩溃并连锁影响后续所有请求。 - claude.ts: content_block_stop 创建消息时 fallback 到 EMPTY_USAGE - LocalAgentTask.tsx: usage 为 undefined 时提前返回 - tokens.ts: getTokenCountFromUsage 加 null guard 和 ?? 0 - cost-tracker.ts: input_tokens/output_tokens 加 ?? 0 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: ACP Plan 展示 — 支持 session/update plan 类型的可视化补全 PlanUpdate 类型定义（PlanEntry/Priority/Status），新建 PlanView 组件渲染进度条、状态图标和优先级标签，在 ChatInterface 中处理 plan 更新逻辑。 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: 穷鬼模式下跳过 verification agent 以节省 token Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * test: 补充 RCS 后端 + 前端测试覆盖 (+116 tests) 后端新增 3 个测试文件 (70 tests): - automationState: normalize/snapshot/equals 纯函数 - client-payload: toClientPayload 协议转换 - transport-normalize: normalizePayload + extractContent 前端新增 2 个测试文件 (46 tests): - utils: formatTime/statusClass/truncate/extractEventText 等 - api-client: getUuid/setUuid/api GET/POST 错误处理 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: RCS ACP 页面添加权限模式选择器 + 权限响应修复 - 新增权限模式选择器 UI（6种模式：默认/自动接受编辑/跳过权限/规划/不询问/自动判断） - 权限模式通过 ACP _meta 从 web → acp-link → agent 全链路传递 - 修复 PermissionPanel 点击"允许"发送 cancelled 而非 selected 的 bug - 权限模式和模型选择持久化到 localStorage - acp-link 直接连接路径同步支持 permissionMode 透传 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: RCS Web UI 重构 + QR 修复 + ACP 扫描自动跳转 - RCS Web UI 组件全面重构: Dialog 迁移 Radix UI, lazy loading, 主题系统改进, 组件样式优化 - IdentityPanel QR 码显示修复: requestAnimationFrame 延迟绘制解决 Radix Dialog Portal 挂载时序问题 - ACP QR 扫描自动跳转: IdentityPanel 扫描 ACP 格式 { url, token } 后存储 sessionStorage 并跳转 /code/?acp=1 - 新增 ACPDirectView 组件: ACP 直连视图, 用 ACPClient 连接并渲染 ACPMain 聊天界面 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: ACP 权限管道改进 — 模式同步 + bypass 检测 + 统一权限流水线 - agent.ts: applySessionMode 同步 appState.toolPermissionContext.mode - agent.ts: bypassPermissions 可用性检测 (非 root 或 sandbox 环境) - permissions.ts: createAcpCanUseTool 接入 hasPermissionsToUseTool 统一权限流水线, 替代原来分散的处理逻辑 - permissions.ts: 支持 onModeChange 回调, 模式变更时实时同步 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * fix: acp-link 支持 permissionMode 默认值传递给 agent 客户端 (Zed/VS Code 等) 的 new_session 不一定携带 permissionMode, 导致 agent 收到 _meta: undefined, permission 回退到 default。修复: handleNewSession 使用 fallback 链: 客户端传值 > config.permissionMode > ACP_PERMISSION_MODE 环境变量使用: ACP_PERMISSION_MODE=auto acp-link claude Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * docs: 更新文档及说明 * fix: 修复类型错误 * chore: 提交脚本 --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>	2026-04-18 21:54:22 +08:00
claude-code-best	34154ee3f5	feat: 支持 acp-link 包进行 acp 通用的 remote-control (#292 ) * fix: 修复超时问题 * feat: 添加 acp-link 代码 * refactor: 样式重构完成 * feat: RCS 添加 ACP 后端支持 - 新增 ACP WebSocket handler (agent 注册、EventBus 订阅) - 新增 relay handler (前端 WS → acp-link 透传 + EventBus inbound 转发) - 新增 SSE event stream 供外部消费者订阅 channel group 事件 - ACP REST 接口无鉴权 (agents、channel-groups) - WebSocket 端点保留 token 鉴权 - SPA 路由 /acp/ 指向 acp.html Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: 添加 ACP 专属前端界面 - 新增 /acp/ SPA 页面 (agent 列表 + 实时交互) - Agent 列表按 channel group 分组，显示在线状态 - 通过 RCS WebSocket relay 与 agent 通信 - Vite multi-page 构建 (index.html + acp.html) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: acp-link 支持 RCS relay 双向通信 - rcs-upstream 新增 messageHandler 转发非控制消息 - server.ts 新增虚拟 WS + relay client state 处理 relay ACP 消息 - newSession/loadSession 补充 mcpServers 参数 - 连接成功后显示 ACP Dashboard URL Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * refactor: 移除 FileExplorer 及文件操作相关代码 - 删除 FileExplorer 组件 - ACPMain 移除 Files tab，仅保留 Chat 和 History - client.ts 移除 listDir/readFile/onFileChanges 等方法 - types.ts 移除 FileItem/FileContent/FileChange 等类型 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * fix: 修复类型问题 * feat: RCS 后端统一 ACP/Bridge 注册逻辑 - store: EnvironmentRecord 增加 capabilities 字段、storeFindEnvironmentByMachineName 复用逻辑 - store: 新增 storeGetSessionOwners，支持未绑定 session 自动 claim - environment: registerEnvironment 支持 ACP 复用已有记录，返回 session_id - session: resolveOwnedWebSessionId 支持无 owner session 自动绑定 - acp-ws-handler: 新增 handleIdentify 支持 REST+WS 两步注册 - acp routes: /acp/relay 和 /acp/agents 支持 UUID 认证 - event-bus: 增加 error 类型 payload 日志 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: acp-link 改 REST 注册 + WS identify 两步流程 - rcs-upstream: 新增 registerViaRest() 通过 POST /v1/environments/bridge 注册 - rcs-upstream: WS 连接后发送 identify 替代 register，携带 agentId - rcs-upstream: 入口链接改为 /code/?sid=${sessionId} 实现用户绑定 - server: 修复心跳跳过 relay 虚拟连接的 bug - server: maxSessions 配置传入 RCS upstream Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: 前端统一 Chat 组件 + ACP 聊天界面重构 - 新增 chat/ 组件: ChatView, ChatInput, MessageBubble, ToolCallGroup, PermissionPanel, SessionSidebar, CommandMenu - ACPMain: 重构支持完整 ACP 协议交互（session/prompt/permission） - rcs-chat-adapter: 统一 bridge session SSE 适配器 - ACPClient: 增强 session 管理、permission 流程、streaming 支持 - index.css: 新增 chat 相关样式、动画、布局 - useCommands: 新增快捷命令 hook Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * refactor: 删除 /acp/ 独立页面，ACP 聊天统一到 /code/:sessionId - 删除 acp.html、acp-main.tsx 入口文件和 pages/acp/ 目录 - SessionDetail: ACP session 在同一页面渲染 ACPSessionDetail 组件 - App.tsx: ?sid= 参数自动调用 apiBind 绑定用户 UUID - Dashboard: 统一 session 列表导航，ACP 显示紫色标签 - relay-client: 改用 UUID 认证替代 API token - EnvironmentList: 显示 workerType 标签（ACP Agent / Claude Code） - index.ts: 移除 /acp/ SPA 路由，vite.config 移除 acp 入口 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * build: 更新构建及测试修复 --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>	2026-04-18 17:59:29 +08:00
claude-code-best	29cc74a170	docs: 更新 CLAUDE.md	2026-04-17 21:37:43 +08:00
claude-code-best	d2b66d9d2c	docs: update contributors	2026-04-17 12:45:56 +00:00
claude-code-best	d70e7f7f05	feat: 支持 langfuse 工具调用映射	2026-04-17 20:45:14 +08:00
Cheng Zi Feng	72a2093cd6	feat(remote-control): 优化 Web 展示、状态同步与桥接控制流程 (#288 ) Co-authored-by: chengzifeng <chengzifeng@meituan.com>	2026-04-17 16:21:27 +08:00
claude-code-best	b5c299f5d2	build: CI 添加通过过滤	2026-04-17 11:33:57 +08:00
claude-code-best	ac42ce2d67	fix: 解决 node 下 loading 按钮计算错误问题	2026-04-17 10:42:40 +08:00
claude-code-best	c659912517	docs: 更新说明	2026-04-17 10:22:56 +08:00
claude-code-best	a14b7f352b	test: 修正 mock 的滥用情况	2026-04-17 10:13:09 +08:00
claude-code-best	c5ab83a3fc	fix: 修复 linux 端的安装问题	2026-04-17 09:51:59 +08:00
claude-code-best	03b7f9b453	chore: 1.4.1	2026-04-17 09:45:36 +08:00
claude-code-best	bddd146f25	feat: 重构供应商层次 (#286 ) * refactor: 创建 @anthropic-ai/model-provider 包骨架与类型定义 - 新建 workspace 包 packages/@anthropic-ai/model-provider - 定义 ModelProviderHooks 接口（依赖注入：分析、成本、日志等） - 定义 ClientFactories 接口（Anthropic/OpenAI/Gemini/Grok 客户端工厂） - 搬入核心类型：Message 体系、NonNullableUsage、EMPTY_USAGE、SystemPrompt、错误常量 - 主项目 src/types/message.ts 等改为 re-export，保持向后兼容 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * refactor: 提升 OpenAI 转换器和模型映射到 model-provider 包 - 搬入 OpenAI 消息转换（convertMessages）、工具转换（convertTools）、流适配（streamAdapter） - 搬入 OpenAI 和 Grok 模型映射（resolveOpenAIModel、resolveGrokModel） - 主项目文件改为 thin re-export proxy Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * refactor: 搬入 Gemini 兼容层到 model-provider 包 - 搬入 Gemini 类型定义、消息转换、工具转换、流适配、模型映射 - 主项目 gemini/ 目录下文件改为 thin re-export proxy Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * refactor: 搬入 errorUtils 并迁移消费者导入到 model-provider - 搬入 formatAPIError、extractConnectionErrorDetails 等 errorUtils - 迁移 10 个消费者文件直接从 @anthropic-ai/model-provider 导入 - 更新 emptyUsage、sdkUtilityTypes、systemPromptType 为 re-export proxy Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: compact 模型降级为 -1 模式（Opus→Sonnet, Sonnet→Haiku） Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * docs: 添加 agent-loop 绘图 * Revert "feat: compact 模型降级为 -1 模式（Opus→Sonnet, Sonnet→Haiku）" This reverts commit `e458d6391d`. * docs: 添加简化版 agent loop * fix: 修复 n 快捷键导致关闭的问题 * fix: 修复 node 下 ws 没打包问题 * docs: 修复链接 * test: 添加测试支持 * fix: 修复类型问题(#267) (#271) * fix: 修复 Bun 的 polyfill 问题 * fix: 类型修复完成 * feat: 统一所有包的类型文件 * fix: 修复构建问题 * test: 修复类型校验 (#279) * fix: 修复 Bun 的 polyfill 问题 * fix: 类型修复完成 * feat: 统一所有包的类型文件 * fix: 修复构建问题 * fix(remote-control): harden self-hosted session flows (#278) Co-authored-by: chengzifeng <chengzifeng@meituan.com> * docs: update contributors * build: 新增 vite 构建流程 * feat: 添加环境变量支持以覆盖 max_tokens 设置 * feat(langfuse): LLM generation 记录工具定义将 Anthropic 格式的工具定义转换为 Langfuse 兼容的 OpenAI 格式，并在 generation 的 input 中以 { messages, tools } 结构传入，以便在 Langfuse UI 中查看完整的工具定义信息。 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: 添加对 ACP 协议的支持 (#284) * feat: 适配 zed acp 协议 * docs: 完善 acp 文档 * chore: 1.4.0 * conflict: 解决冲突 * feat: 添加测试覆盖率上报 * style: 改名加移动文件夹位置 * refactor: 移动测试用例及实现 * test: 修复测试用例完成 --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com> Co-authored-by: Cheng Zi Feng <1154238323@qq.com> Co-authored-by: chengzifeng <chengzifeng@meituan.com> Co-authored-by: claude-code-best <272536312+claude-code-best@users.noreply.github.com>	2026-04-17 09:33:14 +08:00
claude-code-best	c8d08d235b	Feat/integrate lint preview (#285 ) * feat: 适配 zed acp 协议 * docs: 完善 acp 文档 * feat: integrate feature branches + daemon/job 命令层级化 + 跨平台后台引擎 Cherry-picked from origin/lint/preview (`637c908`), excluding lint-only changes. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * fix: correct detectMimeFromBase64 to decode raw bytes from base64 Cherry-picked from origin/lint/preview (`ee36954`). Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * fix: daemon 子进程 spawn 跨平台修复 + CliLaunchSpec 集中化重构 Cherry-picked from origin/lint/preview (`c5f52cd`), excluding lint-only formatting changes. - 新建 src/utils/cliLaunch.ts: 集中化 CLI 子进程启动层 - 修复 --daemon-worker=kind 等号格式解析 - 修复 daemon/bg fast path 缺少 setShellIfWindows() - 修复 checkPathExists 用 existsSync 替代 execSync('dir') - 7 个 spawn 站点迁移到 CliLaunchSpec Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * fix: merge tsconfig.base.json into tsconfig.json with full compiler options The cherry-pick from `637c908` dropped jsx/strict/etc settings when removing tsconfig.base.json. This commit restores them in a single tsconfig.json. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * fix: merge tsconfig.base.json into tsconfig.json with full compiler options The cherry-pick from `637c908` dropped jsx/strict/etc settings when removing tsconfig.base.json. This commit restores them in a single tsconfig.json. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>	2026-04-16 20:59:29 +08:00
claude-code-best	a02dc0bded	chore: 1.4.0	2026-04-16 20:48:09 +08:00
claude-code-best	3cb1e50b25	feat: 添加对 ACP 协议的支持 (#284 ) * feat: 适配 zed acp 协议 * docs: 完善 acp 文档	2026-04-16 20:31:50 +08:00
claude-code-best	cfab161e28	feat(langfuse): LLM generation 记录工具定义将 Anthropic 格式的工具定义转换为 Langfuse 兼容的 OpenAI 格式，并在 generation 的 input 中以 { messages, tools } 结构传入，以便在 Langfuse UI 中查看完整的工具定义信息。 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-04-16 15:31:18 +08:00
claude-code-best	90027279e6	feat: 添加环境变量支持以覆盖 max_tokens 设置	2026-04-16 13:01:07 +08:00
claude-code-best	3470783ced	build: 新增 vite 构建流程	2026-04-16 12:39:19 +08:00
claude-code-best	8169b96250	docs: update contributors	2026-04-16 02:46:47 +00:00
Cheng Zi Feng	fe08cacf8d	fix(remote-control): harden self-hosted session flows (#278 ) Co-authored-by: chengzifeng <chengzifeng@meituan.com>	2026-04-16 10:46:31 +08:00
claude-code-best	5a4c820e1d	test: 修复类型校验 (#279 ) * fix: 修复 Bun 的 polyfill 问题 * fix: 类型修复完成 * feat: 统一所有包的类型文件 * fix: 修复构建问题	2026-04-16 10:28:47 +08:00
claude-code-best	1a4e9702c2	fix: 修复类型问题(#267 ) (#271 ) * fix: 修复 Bun 的 polyfill 问题 * fix: 类型修复完成 * feat: 统一所有包的类型文件 * fix: 修复构建问题	2026-04-15 10:54:00 +08:00
claude-code-best	2273a0bcfe	docs: 修复链接	2026-04-14 21:19:36 +08:00
claude-code-best	b80483c23e	fix: 修复 node 下 ws 没打包问题	2026-04-14 21:19:25 +08:00
claude-code-best	8442aaadd2	fix: 修复 n 快捷键导致关闭的问题	2026-04-14 21:18:36 +08:00