Skip to content

feat(cli-mode): CLI 模式替代 Agent SDK,走交互式配额#2470

Open
tier2tech-tian wants to merge 129 commits into
nanocoai:mainfrom
tier2tech-tian:feat/cli-mode-impl
Open

feat(cli-mode): CLI 模式替代 Agent SDK,走交互式配额#2470
tier2tech-tian wants to merge 129 commits into
nanocoai:mainfrom
tier2tech-tian:feat/cli-mode-impl

Conversation

@tier2tech-tian
Copy link
Copy Markdown

@tier2tech-tian tier2tech-tian commented May 14, 2026

Summary

  • agent-runner 新增 runCliQuery() 路径,指定群 useCliMode: true 后每轮 spawn claude --print --resume 替代 Agent SDK query()
  • 核心:清除 CLAUDE_AGENT_SDK_CLIENT_APP 环境变量,不带 x-client-app header,走交互式配额
  • 纯函数 + 40 个单元测试全部通过

改动文件

  • src/types.ts — ContainerConfig 加 useCliMode 字段
  • container/agent-runner/src/cli-runner.ts — 新文件,核心逻辑
  • container/agent-runner/src/index.ts — main() 中 useCliMode 分叉
  • src/container-runner.ts / src/index.ts / src/task-scheduler.ts — 透传 useCliMode
  • src/cli-runner.test.ts — 40 个单元测试

Test plan

  • 40 个纯函数单测通过(parseStreamJsonLine/buildCliArgs/buildMcpConfig/mapToContainerOutput/buildCliEnv)
  • 宿主侧 tsc 零新增错误
  • Codex Review 通过(4 个 Important 已修复)
  • E2E:对 oc_df0d2dcb8747d8bcc2047c60ddcc7120 设置 useCliMode 后验证

🤖 Generated with Claude Code

tianjunjie and others added 30 commits April 4, 2026 22:19
feat: 自动注册群聊 + /notrigger /trigger 指令切换
4e31a6e
fix(memory): 修复 storage 函数缺少 userId 参数导致记忆写入失败
1de2841 
- saveProfile/loadProfile/loadFacts/storeFacts/enforceMaxFacts 加 userId 参数
- INSERT/SELECT SQL 加 user_id 字段
- ON CONFLICT 匹配复合主键 (group_folder, user_id)
- CREATE INDEX 移到 migrateAddUserId 之后避免迁移报错
- E2E 验证通过:5 条 facts + profile + CLAUDE.md 注入
feat: 添加 /clear 指令清除 session(对齐 Claude Code)
5cf7b72
feat(memory): 记忆按 user_id 跨群共享,去掉 group_folder 隔离
c174514 
查询时只按 user_id 过滤(不再按 group_folder),同一用户在不同群的记忆互通。
写入时保留 group_folder 追踪来源。
feat: 添加 /account 指令切换 Anthropic 账号
a242f99 
- /account 列出所有可用 secrets 及当前绑定
- /account <name> 切换到指定账号
- 切换后自动清除 session,下次对话用新 key
- 通过 OneCLI agents set-secrets 实现
fix: /account 命令参数格式修复 (onecli 需要 --id)
e55c42f
feat: /account auto on|off 自动轮换 Anthropic 账号
6f801ad 
- 429/rate_limit/overloaded 检测 → 自动切到下一个 OneCLI secret
- 60s 防抖 + 全部耗尽 10min cooldown
- 轮换状态持久化 SQLite,重启保留
- runAgent 集成重试(轮换后自动重试 1 次)
- 21 个新测试覆盖全部逻辑
fix: additionalMounts containerPath 使用相对路径(ai 而非 /workspace/extra/ai)
8513e44 
validateAdditionalMounts 会自动拼 /workspace/extra/ 前缀,
配置里只需要相对路径。绝对路径会被安全校验拒绝。
fix: 正式回复到达时删除飞书进度卡片
36b016d 
之前只从内存 Map 删除引用,飞书里的黄色卡片永远停在「⏳ 处理中...」
现在正式回复到达时调 im.message.delete 删除进度卡片
feat: Agent 工具调用进度实时显示到飞书卡片
b7305e4 
- agent-runner: tool_use 消息通过 writeOutput(status='progress') 输出
- container-runner: ContainerOutput.status 支持 'progress'
- index.ts: progress 消息转发给 channel.sendMessage
- feishu channel: 进度消息聚合到黄色卡片,正式回复到达后删除卡片
- 支持 Bash/Read/Write/Edit/WebSearch 等工具类型的 emoji 图标
fix: agent-runner ContainerOutput 类型支持 progress + null newSessionId
c40f37c
fix: 正式回复卡片不显示标题栏,只有进度卡片才带标题
1008ff0 
正式回复(含代码块/表格等)用无标题卡片,视觉更干净
进度卡片保留黄色标题「⏳ 处理中...」以区分
fix: 进度卡片完成后改绿色标题「✅ 已完成」而非删除
86e9847 
+ agent-runner 加 debug 日志查看 assistant 消息结构
fix: agent-runner newSessionId 用 undefined 代替 null 避免 tsc 编译错误
4f48e8b 
+ 从 message.message.content 取 tool_use blocks(Claude Code SDK 结构)
fix: 记忆系统 userId 全链路贯穿(之前改动被覆盖导致 user_id 全为空)
7977dab 
- index.ts: 从 lastUserMsg.sender 提取 memorySenderId
- queue.ts: add() 加 userId,QueueEntry 含 userId
- updater.ts: updateMemory/applyUpdates 传 userId
- inject.ts: injectMemory 传 userId 到 loadProfile/loadFacts/MemoryStore
- 所有调用链: processGroupMessages → queue.add → updater → storage 全程传递
feat: 容器内挂载宿主 SSH key 支持 git push
e758635
feat: 容器内自动注入 GitHub token 支持 gh CLI
72e7b0b
@claude
chore: add .worktrees/ to gitignore
0ee15ec 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
feat: 飞书 Channel 支持图片收发和合并转发
5b8f927 
- 接收图片消息:下载到 group/images/,Agent 可读取
- 接收合并转发:递归解析子消息(text/image/post/merge_forward)
- Post 富文本图片提取
- 发送图片:检测回复中的图片路径,上传飞书并发送
- 安全限制:MAX_MERGE_TEXT_LEN=8000, MAX_MERGE_IMAGES=5, MAX_MERGE_DEPTH=1
- 5 个新测试覆盖解析逻辑

参考 Nine adapter.py 翻译为 TypeScript
feat: 正式回复卡片底部显示 token usage 脚注
c91bcb0 
- sendPlainOrCard 接受 usage 参数,追加灰色脚注
- 纯文本回复有 usage 时强制升级为卡片
- 完成卡片也保留 usage(两处都显示)
@claude
feat(feishu): 进度卡片自动旋转 spinner + 计时器
92ced9a 
- buildProgressCard 新增 startTime 参数,header 显示已用时间 (Xs/XmYs)
- setTyping(true) 启动 3s 间隔 setInterval 自动 patch 卡片刷新 spinner
- 三重清理防泄露:setTyping(false) + 卡片完成 + 10 分钟硬上限
- progressCards entry 新增 startTime 字段记录创建时间

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@claude
docs: add local-runner OpenSpec change
eb755b8 
Spec for replacing Docker container agent runtime with Node.js
child process spawn. Includes proposal, requirements (R1-R8),
design, tasks, and test plan.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
fix: maxFacts=0 时关闭 enforceMaxFacts 限制(不删除旧记忆)
d6cee1c
@claude
feat: make agent-runner paths configurable via workspacePaths
d3b9697 
Replace all hardcoded /workspace/* paths with configurable PATHS
object from ContainerInput.workspacePaths. Add NANOCLAW_IPC_DIR
to mcpServers.nanoclaw.env for MCP server path injection.

Changes:
- index.ts: 5 independent + 1 derived path references replaced
- ipc-mcp-stdio.ts: IPC_DIR reads from NANOCLAW_IPC_DIR env
- Remove Docker-specific /tmp/input.json cleanup
- Handle undefined global/extra paths gracefully

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@claude
feat: replace Docker spawn with Node.js child process
2791540 
Rewrite container-runner.ts to spawn agent-runner as a local
Node.js child process instead of Docker container.

New functions:
- resolveWorkspacePaths: compute host paths per group
- prepareGroupSession: per-group .claude dir + skills sync
- buildLocalEnv: filtered env for child process
- getCredentials: OneCLI CLI → process.env → .env fallback
- getFeishuToken: User Token → Tenant Token fallback
- parseEnvOutput: parse KEY=VALUE format
- checkAgentRunnerDist: verify dist/index.js exists
- killProcessTree: SIGTERM → 5s → SIGKILL process group

Removed:
- Docker spawn, buildContainerArgs, buildVolumeMounts
- @onecli-sh/sdk import (replaced with CLI mode)
- container-runtime.js import
- mount-security.js import
- ensureContainerSystemRunning from index.ts

Preserved: detectRateLimit, rotateAccount, writeTasksSnapshot,
writeGroupsSnapshot

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@claude
feat: remove Docker dependencies, add build:agent script
422e016 
- Delete container-runtime.ts, mount-security.ts
- Delete container/Dockerfile, container/build.sh
- Remove CONTAINER_IMAGE, CONTAINER_TIMEOUT, CONTAINER_MAX_OUTPUT_SIZE,
  MOUNT_ALLOWLIST_PATH from config.ts
- Rename MAX_CONCURRENT_CONTAINERS → MAX_CONCURRENT_AGENTS
- Add "build:agent" npm script for agent-runner compilation
- Update comments to remove Docker references

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@claude
docs: update CLAUDE.md for local runner mode
7f09329 
- Update Quick Context: containers → local child processes
- Update Key Files: container-runner description
- Update Credentials: OneCLI CLI mode
- Update Development: add build:agent, security note, limitations
- Replace Container Build Cache with Docker Rollback section

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@claude
test: rewrite tests for local runner mode
495b0ee 
- Rewrite container-runner.test.ts: remove Docker mocks, verify
  node spawn with detached flag, workspacePaths in stdin, cwd,
  parseEnvOutput, checkAgentRunnerDist, resolveWorkspacePaths,
  prepareGroupSession, timeout behavior
- Fix account-rotate.test.ts: remove container-runtime and
  mount-security mocks, add env and group-folder mocks

All 322 tests passing.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
fix(feishu): 卡片加 update_multi:true 修复 header 不刷新
dc05e12
fix: loadFacts/loadProfile 同时查用户记忆+全局记忆(user_id='')
7296317 
导入的 Mem0 数据 user_id='',之前 WHERE user_id=? 只查当前用户,
导致 1904 条全局记忆搜不到。改为 WHERE user_id=? OR user_id=''。
tianjunjie and others added 26 commits April 18, 2026 09:16
@claude
chore: tsconfig 排除测试文件,修复 build 编译错误
2f7df66 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix: cursor 推进改为回复成功后执行,防止重启丢消息
8d1d1c1 
原逻辑在 agent 启动前就提前推进 cursor,进程被杀时回滚来不及
执行,导致重启后消息被认为已处理而丢失。

改为:
- 成功路径:bot 回复入库后推进 cursor
- error+已发回复:推进 cursor(防重复回复)
- error+未发回复:不推进(允许重启后重试)
- 删除不再需要的 previousCursor 回滚机制

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
feat: 主群跨群发消息 + 启动时群名同步 + 巡检脚本
1de7a66 
- send_message MCP tool 新增 target_chat_jid 参数,仅 main group 可用
- 启动时自动调用 syncGroups 同步飞书群名到 DB
- 新增 patrol.sh 巡检脚本,供定时任务读取各群状态

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
feat: kickoff 流程加入测试计划步骤(Step 6)
25e9175 
评审增加可测试性维度,汇报前要求制定 P0/P1/P2 测试分层计划

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix: 巡检脚本 TMP_DIR 未 export 导致 python3 读不到数据
7f7ab36 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix: 巡检逻辑从"待处理消息数"改为"谁在等谁"
f27edfb 
旧逻辑统计 agent 最后回复后的用户消息数,不准确(用户已读但没被标记)。
新逻辑看最后一条消息是用户还是 agent 发的,加空闲时长。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix: IPC send_message 发出的 bot 消息存入 messages.db
07d46be 
之前 agent 通过 send_message MCP tool 发的消息只走飞书不入库,
导致巡检脚本看不到 bot 回复,误判"谁在等谁"。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
feat: tool_use 摘要也存入 messages.db
84a4347 
agent 调用工具时的进度事件(如 "🔧 Bash: ls -la")存入 DB,
供巡检和搜索使用,可以看到 agent 在做什么。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix: review 修复 — patrol SQL 用 MAX(rowid) 防多行 + ipc.ts 去硬编码
0420d80 
- patrol.sh: turn 检测 SQL 从 MAX(timestamp) 改为 MAX(rowid),避免同时间戳多行匹配
- ipc.ts: send_message 存储时用 ASSISTANT_NAME 替代硬编码 '二狗'

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
feat: 跨群消息触发目标群 agent 回复
bf6c300 
- IpcDeps 新增 enqueueMessageCheck,跨群消息发送后 enqueue 目标群
- 跨群消息存入 DB 时标记为非 bot 消息(is_from_me=false),让目标 agent 视为用户指令
- 同群消息行为不变

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix: IPC 文件先删后处理,防止 poll 竞态导致消息重复发送
d52c8bd 
根因:IPC poll 间隔 1 秒,sendMessage 飞书 API 调用超过 1 秒时,
下一个 cycle 读到同一个文件导致重复处理。
修复:readFileSync 后立即 unlinkSync,再执行异步操作。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix: IPC send_message 30 秒窗口去重,防止 session resume 重复发送
7d3f902 
根因:launchctl restart 后 Claude SDK session resume (resumeAt=latest) 会
重新执行被 kill 中断的 tool calls,导致 send_message 被重复调用。
修复:host 侧 IPC watcher 用 chatJid+content hash 做 30 秒窗口去重。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix: 跨群消息触发修复 + idle 容器唤醒 + IPC 去重增强
615acd9 
- is_from_me 改为 OR 条件绕过整个 trigger 检查(之前在 AND 内只绕过 sender 校验)
- enqueueMessageCheck 对 idle 容器调用 closeStdin 唤醒处理新消息
- trigger pattern 去掉 ^ 前缀锚点,支持消息中间 @bot
- IPC send_message 30s 窗口去重,防 session resume 重发
- IPC error handler 增加 existsSync 守卫,防已删文件 rename 报错

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
docs: 更新 kickoff/openspec/systematic-debugging skill 文档
70773c7 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix: 飞书消息 sender_name 从 mentions 查找改为调 contact API
5abd913 
原逻辑从 mentions 数组查发送者姓名,但 mentions 只含被 @的人,
导致 fallback 到 open_id,agent 无法识别用户身份。
改为调飞书 contact.user.get API + 内存缓存。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix: 飞书 sender_name 改用 chatMembers API 批量获取群成员名
d8d3316 
contact API 即使有 contact:user.base:readonly 权限,tenant_access_token
也拿不到 name 字段。改用 im/v1/chats/{chat_id}/members 接口,一次拉取
全部群成员并缓存,后续同群消息直接命中缓存。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
feat(voice): Pushover 语音通知 MVP(只对主会话)
2f95353 
飞书回复的同时,把内容剥离媒体标记、送 LLM 摘要、推 Pushover,
iOS 端"朗读通知"自动朗读。fire-and-forget,不阻塞飞书主流程。

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
@claude
chore(model): 全局默认模型切换至 claude-opus-4-7
d9162dc 
- src/container-runner.ts: 新建群 settings.json 默认 model
- src/index.ts: + 前缀触发的 Opus 路由(包括 piped 路径)
- container/agent-runner/src/index.ts: runner fallback defaultModel

Sonnet 路由不变。已同步刷新 10 个存量 session 的 settings.json。

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
@claude
fix(ipc): 跨群消息 target_chat_jid 自动补全 fs: 前缀
7ec2fa9 
agent 传 oc_xxx 格式时自动规范化为 fs:oc_xxx,
避免 findChannel 匹配失败导致消息静默丢失。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
feat(logger): 日志系统升级 — JSON/Pretty 双模 + correlation ID + 日志轮转
de36812 
三阶段改造:
1. 时间戳带日期(pretty: MM-DD HH:MM:SS.mmm, json: ISO 8601)+ JSON/Pretty 自动切换
2. AsyncLocalStorage 自动注入 traceId/chatJid(376 处调用零改动)
3. RotatingFileStream 按大小轮转(默认 10MB × 7 归档)

新增文件: log-context.ts, logger.test.ts (15 tests)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
refactor(feishu): renameChat 去掉头像生成,只改群名
0aff787 
头像生成逻辑不再需要,简化为仅调用 im.chat.update 更新群名。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix(ipc): host 侧跨群消息 JID 前缀补全
644dcac 
agent-runner 侧已有修复(7ec2fa9),但 host 侧 ipc.ts 的
watcher 也需要对 oc_xxx 格式的 JID 补全 fs: 前缀,否则
findChannel 匹配不到目标 channel 导致消息静默丢失。

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
feat(feishu): 引用消息 DB 优先查询 — bot 回复以飞书 message_id 入库
684e2d9 
sendPlainOrCard/sendMessage 返回飞书 API 的 message_id,bot 回复入库时
优先用飞书 message_id 作为 DB 主键。fetchReplyContext 先查 DB 再 fallback
飞书 API,解决引用卡片消息时只能看到 [互动卡片] 的问题。

改动:
- sendPlainOrCard: void → string | undefined(返回飞书 message_id)
- sendMessage/extractAndSendMedia: 透传 message_id
- Channel 接口 + task-scheduler/ipc 类型同步
- fetchReplyContext: DB 优先查询 + 静态 import getMessageById
- 16 个新单元测试(DB 命中/miss/异常/截断/卡片/token 失败)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@tier2tech-tian
Merge pull request #3 from tier2tech-tian/feat/pushover-voice
23aa942 
feat: Pushover 语音通知 + IPC 跨群消息 + 日志系统升级
@claude
feat(cli-mode): 新增 CLI 模式替代 Agent SDK,走交互式配额
05d87a5 
agent-runner 新增 runCliQuery() 路径,指定群 useCliMode: true 后
每轮 spawn claude --print --resume 替代 Agent SDK query()。
核心:清除 CLAUDE_AGENT_SDK_CLIENT_APP 环境变量,不带 x-client-app header。

改动:
- types.ts: ContainerConfig 加 useCliMode 字段
- cli-runner.ts: 纯函数(parseStreamJsonLine/buildCliArgs/buildMcpConfig/
  mapToContainerOutput/buildCliEnv)+ runCliQuery 主函数
- index.ts (agent-runner): main() 中 useCliMode 分叉
- container-runner.ts/index.ts/task-scheduler.ts: 透传 useCliMode
- cli-runner.test.ts: 38 个单元测试全部通过

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@claude
fix(cli-mode): Codex Review 修复 — 类型对齐、数组输出、错误安全
a863031 
Review 发现 5 个 Important 问题,修复 4 个:
- #1: ContainerOutput 补齐 modelContextWindows 字段
- #3: system error message 加 typeof guard
- #4: mapToContainerOutput 返回数组,不丢中间输出
- nanocoai#5: CLI 循环中去除重复 success output

新增 2 个测试用例(40 total):
- system error 非字符串 message 回退
- assistant 混合 text+tool_use 全部返回

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This was referenced May 15, 2026
Open
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@gavrielc gavrielc Awaiting requested review from gavrielc gavrielc is a code owner

@gabi-simons gabi-simons Awaiting requested review from gabi-simons gabi-simons is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tier2tech-tian