Update config.yaml

Add files via upload
2026-05-17 21:44:43 +02:00 · 2026-03-25 03:29:53 +08:00 · 2026-03-25 03:26:13 +08:00 · 2026-03-25 03:24:33 +08:00 · 2026-03-25 03:08:10 +08:00 · 2026-03-25 03:06:37 +08:00
61 changed files with 12932 additions and 417 deletions
@@ -92,6 +92,7 @@ CyberStrikeAI is an **AI-native security testing platform** built in Go. It inte
 - 🛡️ Vulnerability management with CRUD operations, severity tracking, status workflow, and statistics
 - 📋 Batch task management: create task queues, add multiple tasks, and execute them sequentially
 - 🎭 Role-based testing: predefined security testing roles (Penetration Testing, CTF, Web App Scanning, etc.) with custom prompts and tool restrictions
 - 🧩 **Multi-agent mode (Eino DeepAgent)**: optional orchestration where a coordinator delegates work to Markdown-defined sub-agents via the `task` tool; main agent in `agents/orchestrator.md` (or `kind: orchestrator`), sub-agents under `agents/*.md`; chat mode switch when `multi_agent.enabled` is true (see [Multi-agent doc](docs/MULTI_AGENT_EINO.md))
 - 🎯 Skills system: 20+ predefined security testing skills (SQL injection, XSS, API security, etc.) that can be attached to roles or called on-demand by AI agents
 - 📱 **Chatbot**: DingTalk and Lark (Feishu) long-lived connections so you can talk to CyberStrikeAI from mobile (see [Robot / Chatbot guide](docs/robot_en.md) for setup and commands)
 - 🐚 **WebShell management**: Add and manage WebShell connections (e.g. IceSword/AntSword compatible), use a virtual terminal for command execution, a built-in file manager for file operations, and an AI assistant tab that orchestrates tests and keeps per-connection conversation history; supports PHP, ASP, ASPX, JSP and custom shell types with configurable request method and command parameter.
@@ -174,10 +175,20 @@ go build -o cyberstrike-ai cmd/server/main.go
 ### Version Update (No Breaking Changes)
-**CyberStrikeAI version update (when there are no compatibility changes):**
+**CyberStrikeAI one-click upgrade (recommended):**
-1. Download the latest source code.
+1. (First time) enable the script: `chmod +x upgrade.sh`
-2. Copy the old project's `/data` folder and `config.yaml` file into the new source directory.
+2. Upgrade with: `./upgrade.sh` (optional flags: `--tag vX.Y.Z`, `--no-venv`, `--preserve-custom`, `--yes`)
-3. Restart with: `chmod +x run.sh && ./run.sh`
+3. The script will back up your `config.yaml` and `data/`, upgrade the code from GitHub Release, update `config.yaml`'s `version`, then restart the server.
 Recommended one-liner:
 `chmod +x upgrade.sh && ./upgrade.sh --yes`
 If something goes wrong, you can restore from `.upgrade-backup/` (or manually copy `/data` and `config.yaml` back) and run `./run.sh` again.
 Requirements / tips:
 * You need `curl` or `wget` for downloading Release packages.
 * `rsync` is recommended/required for the safe code sync.
 * If GitHub API rate-limits you, set `export GITHUB_TOKEN="..."` before running `./upgrade.sh`.
 ⚠️ **Note:** This procedure only applies to version updates without compatibility or breaking changes. If a release includes compatibility changes, this method may not apply.
@@ -185,6 +196,7 @@ go build -o cyberstrike-ai cmd/server/main.go
 ### Core Workflows
 - **Conversation testing** – Natural-language prompts trigger toolchains with streaming SSE output.
 - **Single vs multi-agent** – With `multi_agent.enabled: true`, the chat UI can switch between **single** (classic ReAct loop) and **multi** (Eino DeepAgent + `task` sub-agents). Multi mode uses `/api/multi-agent/stream`; tools are bridged from the same MCP stack as single-agent.
 - **Role-based testing** – Select from predefined security testing roles (Penetration Testing, CTF, Web App Scanning, API Security Testing, etc.) to customize AI behavior and tool availability. Each role applies custom system prompts and can restrict available tools for focused testing scenarios.
 - **Tool monitor** – Inspect running jobs, execution logs, and large-result attachments.
 - **History & audit** – Every conversation and tool invocation is stored in SQLite with replay.
@@ -228,6 +240,15 @@ go build -o cyberstrike-ai cmd/server/main.go
   ```
 2. Restart the server or reload configuration; the role appears in the role selector dropdown.
 ### Multi-Agent Mode (Eino DeepAgent)
 - **What it is** – An optional second execution path based on CloudWeGo **Eino** `adk/prebuilt/deep`: a **coordinator** (main agent) calls a **`task`** tool to run ephemeral **sub-agents**, each with its own model loop and tool set derived from the current role.
 - **Markdown agents** – Under `agents_dir` (default `agents/`, relative to `config.yaml`), define:
  - **Orchestrator**: file name `orchestrator.md` *or* any `.md` with front matter `kind: orchestrator` (only **one** per directory). Sets Deep agent name/id, description, and optional full system prompt (body); if the body is empty, `multi_agent.orchestrator_instruction` and then Eino defaults apply.
  - **Sub-agents**: other `*.md` files (YAML front matter + body as instruction). They are **not** used as `task` targets if classified as orchestrator.
 - **Management** – Web UI: **Agents → Agent management** for CRUD on Markdown agents; API prefix `/api/multi-agent/markdown-agents`.
 - **Config** – `multi_agent` block in `config.yaml`: `enabled`, `default_mode` (`single` | `multi`), `robot_use_multi_agent`, `batch_use_multi_agent`, `max_iteration`, `orchestrator_instruction`, optional YAML `sub_agents` merged with disk (same `id` → Markdown wins).
 - **Details** – Streaming events, robots, batch queue, and troubleshooting: **[docs/MULTI_AGENT_EINO.md](docs/MULTI_AGENT_EINO.md)**.
 ### Skills System
 - **Predefined skills** – System includes 20+ predefined security testing skills (SQL injection, XSS, API security, cloud security, container security, etc.) in the `skills/` directory.
 - **Skill hints in prompts** – When a role is selected, skill names attached to that role are added to the system prompt as recommendations. Skill content is not automatically injected; AI agents must use the `read_skill` tool to access skill details when needed.
@@ -418,6 +439,7 @@ A test SSE MCP server is available at `cmd/test-sse-mcp-server/` for validation
 ### Automation Hooks
 - **REST APIs** – everything the UI uses (auth, conversations, tool runs, monitor, vulnerabilities, roles) is available over JSON.
 - **Multi-agent APIs** – `POST /api/multi-agent/stream` (SSE, when enabled), `POST /api/multi-agent` (non-streaming), Markdown agents under `/api/multi-agent/markdown-agents` (list/get/create/update/delete).
 - **Role APIs** – manage security testing roles via `/api/roles` endpoints: `GET /api/roles` (list all roles), `GET /api/roles/:name` (get role), `POST /api/roles` (create role), `PUT /api/roles/:name` (update role), `DELETE /api/roles/:name` (delete role). Roles are stored as YAML files in the `roles/` directory and support hot-reload.
 - **Vulnerability APIs** – manage vulnerabilities via `/api/vulnerabilities` endpoints: `GET /api/vulnerabilities` (list with filters), `POST /api/vulnerabilities` (create), `GET /api/vulnerabilities/:id` (get), `PUT /api/vulnerabilities/:id` (update), `DELETE /api/vulnerabilities/:id` (delete), `GET /api/vulnerabilities/stats` (statistics).
 - **Batch Task APIs** – manage batch task queues via `/api/batch-tasks` endpoints: `POST /api/batch-tasks` (create queue), `GET /api/batch-tasks` (list queues), `GET /api/batch-tasks/:queueId` (get queue), `POST /api/batch-tasks/:queueId/start` (start execution), `POST /api/batch-tasks/:queueId/cancel` (cancel), `DELETE /api/batch-tasks/:queueId` (delete), `POST /api/batch-tasks/:queueId/tasks` (add task), `PUT /api/batch-tasks/:queueId/tasks/:taskId` (update task), `DELETE /api/batch-tasks/:queueId/tasks/:taskId` (delete task). Tasks execute sequentially, each creating a separate conversation with full status tracking.
@@ -466,6 +488,13 @@ knowledge:
    hybrid_weight: 0.7  # Weight for vector search (1.0 = pure vector, 0.0 = pure keyword)
 roles_dir: "roles"  # Role configuration directory (relative to config file)
 skills_dir: "skills"  # Skills directory (relative to config file)
 agents_dir: "agents"  # Multi-agent Markdown definitions (orchestrator + sub-agents)
 multi_agent:
  enabled: false
  default_mode: "single"   # single | multi (UI default when multi-agent is enabled)
  robot_use_multi_agent: false
  batch_use_multi_agent: false
  orchestrator_instruction: ""  # Optional; used when orchestrator.md body is empty
 ```
 ### Tool Definition Example (`tools/nmap.yaml`)
@@ -510,6 +539,7 @@ enabled: true
 ## Related documentation
 - [Multi-agent mode (Eino)](docs/MULTI_AGENT_EINO.md): DeepAgent orchestration, `agents/*.md`, APIs, and chat/stream behavior.
 - [Robot / Chatbot guide (DingTalk & Lark)](docs/robot_en.md): Full setup, commands, and troubleshooting for using CyberStrikeAI from DingTalk or Lark on your phone. **Follow this doc to avoid common pitfalls.**
 ## Project Layout
@@ -522,7 +552,8 @@ CyberStrikeAI/
 ├── tools/               # YAML tool recipes (100+ examples provided)
 ├── roles/               # Role configurations (12+ predefined security testing roles)
 ├── skills/              # Skills directory (20+ predefined security testing skills)
-├── docs/                # Documentation (e.g. robot/chbot guide)
+├── agents/              # Multi-agent Markdown (orchestrator.md + sub-agent *.md)
 ├── docs/                # Documentation (e.g. robot/chatbot guide, MULTI_AGENT_EINO.md)
 ├── images/              # Docs screenshots & diagrams
 ├── config.yaml          # Runtime configuration
 ├── run.sh               # Convenience launcher
@@ -91,6 +91,7 @@ CyberStrikeAI 是一款 **AI 原生安全测试平台**，基于 Go 构建，集
 - 🛡️ 漏洞管理功能：完整的漏洞 CRUD 操作，支持严重程度分级、状态流转、按对话/严重程度/状态过滤，以及统计看板
 - 📋 批量任务管理：创建任务队列，批量添加任务，依次顺序执行，支持任务编辑与状态跟踪
 - 🎭 角色化测试：预设安全测试角色（渗透测试、CTF、Web 应用扫描等），支持自定义提示词和工具限制
 - 🧩 **多代理模式（Eino DeepAgent）**：可选编排——协调主代理通过 `task` 调度 Markdown 定义的子代理；主代理见 `agents/orchestrator.md` 或 front matter `kind: orchestrator`，子代理为 `agents/*.md`；开启 `multi_agent.enabled` 后聊天可切换单代理/多代理（详见 [多代理说明](docs/MULTI_AGENT_EINO.md)）
 - 🎯 Skills 技能系统：20+ 预设安全测试技能（SQL 注入、XSS、API 安全等），可附加到角色或由 AI 按需调用
 - 📱 **机器人**：支持钉钉、飞书长连接，在手机端与 CyberStrikeAI 对话（配置与命令详见 [机器人使用说明](docs/robot.md)）
 - 🐚 **WebShell 管理**：添加与管理 WebShell 连接（兼容冰蝎/蚁剑等），通过虚拟终端执行命令、内置文件管理进行文件操作，并提供按连接维度保存历史的 AI 助手标签页；支持 PHP/ASP/ASPX/JSP 及自定义类型，可配置请求方法与命令参数。
@@ -173,9 +174,19 @@ go build -o cyberstrike-ai cmd/server/main.go
 ### CyberStrikeAI 版本更新（无兼容性问题）
-1. 下载最新源代码；
+1. （首次使用）启用脚本：`chmod +x upgrade.sh`
-2. 将旧项目的 `/data` 文件夹、`config.yaml` 文件复制至新版源代码目录；
+2. 一键升级：`./upgrade.sh`（可选参数：`--tag vX.Y.Z`、`--no-venv`、`--preserve-custom`、`--yes`）
-3. 执行命令重启：`chmod +x run.sh && ./run.sh`
+3. 脚本会备份你的 `config.yaml` 和 `data/`，从 GitHub Release 升级代码，更新 `config.yaml` 的 `version` 字段后重启服务。
 推荐的一键指令：
 `chmod +x upgrade.sh && ./upgrade.sh --yes`
 如果升级失败，可以从 `.upgrade-backup/` 恢复，或按旧方式手动拷贝 `/data` 和 `config.yaml` 后再运行 `./run.sh`。
 依赖/提示：
 * 需要 `curl` 或 `wget` 用于下载 GitHub Release 包。
 * 建议/需要 `rsync` 用于安全同步代码。
 * 如果遇到 GitHub API 限流，运行前设置 `export GITHUB_TOKEN="..."` 再执行 `./upgrade.sh`。
 ⚠️ **注意：** 仅适用于无兼容性变更的版本更新。若版本存在兼容性调整，此方法不适用。
@@ -183,6 +194,7 @@ go build -o cyberstrike-ai cmd/server/main.go
 ### 常用流程
 - **对话测试**：自然语言触发多步工具编排，SSE 实时输出。
 - **单代理 / 多代理**：配置 `multi_agent.enabled: true` 后，聊天界面可切换 **单代理**（原有 ReAct 循环）与 **多代理**（Eino DeepAgent + `task` 子代理）。多代理走 `/api/multi-agent/stream`，MCP 工具与单代理同源桥接。
 - **角色化测试**：从预设的安全测试角色（渗透测试、CTF、Web 应用扫描、API 安全测试等）中选择，自定义 AI 行为和可用工具。每个角色可应用自定义系统提示词，并可限制可用工具列表，实现聚焦的测试场景。
 - **工具监控**：查看任务队列、执行日志、大文件附件。
 - **会话历史**：所有对话与工具调用保存在 SQLite，可随时重放。
@@ -226,6 +238,15 @@ go build -o cyberstrike-ai cmd/server/main.go
   ```
 2. 重启服务或重新加载配置，角色会出现在角色选择下拉菜单中。
 ### 多代理模式（Eino DeepAgent）
 - **能力说明**：基于 CloudWeGo **Eino** `adk/prebuilt/deep` 的可选路径：**协调主代理**通过内置 **`task`** 工具启动短时**子代理**，各子代理独立推理，工具集来自当前聊天所选角色（与单代理一致来源）。
 - **Markdown 定义**：在 `agents_dir`（默认 `agents/`，相对 `config.yaml` 所在目录）维护：
  - **主代理**：固定文件名 `orchestrator.md`，或任意 `.md` 且在 front matter 写 `kind: orchestrator`（**同一目录仅允许一个**主代理）。配置 Deep 的 name/id、description 与可选完整系统提示（正文）；正文为空时依次使用 `multi_agent.orchestrator_instruction`、Eino 内置默认提示。
  - **子代理**：其余 `*.md`（YAML front matter + 正文作 instruction），不参与主代理定义的文件才会进入 `task` 可选列表。
 - **界面管理**：**Agents → Agent 管理** 对 Markdown 增删改查；HTTP API 前缀 `/api/multi-agent/markdown-agents`。
 - **配置项**：`config.yaml` 中 `multi_agent`：`enabled`、`default_mode`（`single` | `multi`）、`robot_use_multi_agent`、`batch_use_multi_agent`、`max_iteration`、`orchestrator_instruction` 等；可选在 YAML 写 `sub_agents` 与目录合并（同 `id` 时以 Markdown 为准）。
 - **更多细节**：流式事件、机器人与批量任务、排障等见 **[docs/MULTI_AGENT_EINO.md](docs/MULTI_AGENT_EINO.md)**。
 ### Skills 技能系统
 - **预设技能**：系统内置 20+ 个预设的安全测试技能（SQL 注入、XSS、API 安全、云安全、容器安全等），位于 `skills/` 目录。
 - **提示词中的技能提示**：当选择某个角色时，该角色附加的技能名称会作为推荐添加到系统提示词中。技能内容不会自动注入，AI 智能体需要时需使用 `read_skill` 工具获取技能详情。
@@ -416,6 +437,7 @@ CyberStrikeAI 支持通过三种传输模式连接外部 MCP 服务器：
 ### 自动化与安全
 - **REST API**：认证、会话、任务、监控、漏洞管理、角色管理等接口全部开放，可与 CI/CD 集成。
 - **多代理 API**：`POST /api/multi-agent/stream`（SSE，需启用多代理）、`POST /api/multi-agent`（非流式）；Markdown 子代理/主代理管理见 `/api/multi-agent/markdown-agents`（列表/读写/增删）。
 - **角色管理 API**：通过 `/api/roles` 端点管理安全测试角色：`GET /api/roles`（列表）、`GET /api/roles/:name`（获取角色）、`POST /api/roles`（创建角色）、`PUT /api/roles/:name`（更新角色）、`DELETE /api/roles/:name`（删除角色）。角色以 YAML 文件形式存储在 `roles/` 目录，支持热加载。
 - **漏洞管理 API**：通过 `/api/vulnerabilities` 端点管理漏洞：`GET /api/vulnerabilities`（列表，支持过滤）、`POST /api/vulnerabilities`（创建）、`GET /api/vulnerabilities/:id`（获取）、`PUT /api/vulnerabilities/:id`（更新）、`DELETE /api/vulnerabilities/:id`（删除）、`GET /api/vulnerabilities/stats`（统计）。
 - **批量任务 API**：通过 `/api/batch-tasks` 端点管理批量任务队列：`POST /api/batch-tasks`（创建队列）、`GET /api/batch-tasks`（列表）、`GET /api/batch-tasks/:queueId`（获取队列）、`POST /api/batch-tasks/:queueId/start`（开始执行）、`POST /api/batch-tasks/:queueId/cancel`（取消）、`DELETE /api/batch-tasks/:queueId`（删除队列）、`POST /api/batch-tasks/:queueId/tasks`（添加任务）、`PUT /api/batch-tasks/:queueId/tasks/:taskId`（更新任务）、`DELETE /api/batch-tasks/:queueId/tasks/:taskId`（删除任务）。任务依次顺序执行，每个任务创建独立对话，支持完整状态跟踪。
@@ -464,6 +486,13 @@ knowledge:
    hybrid_weight: 0.7  # 混合检索权重（0-1），向量检索的权重，1.0 表示纯向量检索，0.0 表示纯关键词检索
 roles_dir: "roles"  # 角色配置文件目录（相对于配置文件所在目录）
 skills_dir: "skills"  # Skills 目录（相对于配置文件所在目录）
 agents_dir: "agents"  # 多代理 Markdown（主代理 orchestrator.md + 子代理 *.md）
 multi_agent:
  enabled: false
  default_mode: "single"   # single | multi（开启多代理时的界面默认模式）
  robot_use_multi_agent: false
  batch_use_multi_agent: false
  orchestrator_instruction: ""  # 可选；orchestrator.md 正文为空时使用
 ```
 ### 工具模版示例（`tools/nmap.yaml`）
@@ -508,6 +537,7 @@ enabled: true
 ## 相关文档
 - [多代理模式（Eino）](docs/MULTI_AGENT_EINO.md)：DeepAgent 编排、`agents/*.md`、接口与流式说明。
 - [机器人使用说明（钉钉 / 飞书）](docs/robot.md)：在手机端通过钉钉、飞书与 CyberStrikeAI 对话的完整配置步骤、命令与排查说明，**建议按该文档操作以避免走弯路**。
 ## 项目结构
@@ -520,7 +550,8 @@ CyberStrikeAI/
 ├── tools/               # YAML 工具目录（含 100+ 示例）
 ├── roles/               # 角色配置文件目录（含 12+ 预设安全测试角色）
 ├── skills/              # Skills 目录（含 20+ 预设安全测试技能）
-├── docs/                # 说明文档（如机器人使用说明）
+├── agents/              # 多代理 Markdown（orchestrator.md + 子代理 *.md）
 ├── docs/                # 说明文档（如机器人使用说明、MULTI_AGENT_EINO.md）
 ├── images/              # 文档配图
 ├── config.yaml          # 运行配置
 ├── run.sh               # 启动脚本
@@ -0,0 +1,42 @@
 ---
 id: attack-surface-enumeration
 name: 攻击面枚举专员
 description: 基于侦察/情报输入，梳理服务、技术栈、依赖与潜在入口；输出结构化攻击面图谱与验证优先级。
 tools: []
 max_iterations: 0
 ---
 你是授权安全评估流程中的**攻击面枚举子代理**。你的任务是把“侦察得到的线索”变成可验证的攻击面清单，并为后续的漏洞分析/验证提供优先级与证据抓手。
 ## 核心职责
 - 将已知资产（域名/IP/主机/应用/网络段/账号类型）映射到可见服务面：端口/协议/HTTP(S) 路径/产品指纹/中间件信息（以可证据化为准）。
 - 汇总“可能的入口点（entrypoints）”与“可能的信任边界（trust boundaries）”：例如用户输入边界、鉴权边界、内部/外部边界。
 - 形成攻击路径的**优先级列表**：高价值入口先于低价值入口；优先考虑可复现证据、可验证条件明确的条目。
 ## 安全边界
 - 不提供可直接用于未授权入侵的具体利用链/payload 细节。
 - 不做破坏性验证；如需要操作，优先选择非破坏性探测与“只读证据”。
 - 禁止再次调用 `task`。
 ## 输入（来自协调主代理或上游子代理）
 - Scope & ROE（允许/拒绝项）
 - Recon/Intel 输出（资产、指纹、疑似暴露面）
 - 已知约束（时间窗、环境差异、认证方式）
 ## 输出格式（严格按此结构输出）
 1) Asset Map（资产-服务映射）
 - 每个资产一条：资产标识 / 发现的服务 / 证据摘要 / 置信度
 2) Tech & Dependency Fingerprints（技术栈与依赖）
 - 每条：技术点 / 证据来源 / 可能的版本范围 / 影响点（仅说明安全相关含义）
 3) Trust Boundaries & Entry Points（信任边界与入口）
 - 每条入口：入口类型 / 可能风险 / 需要的验证证据
 4) Prioritized Attack Surface（优先级）
 - 给出 Top-N：理由必须是“证据可验证 + 影响价值高 + 可控风险”
 5) Follow-up Verification Plan（后续验证建议）
 - 对每个优先条目：建议由哪个阶段子代理接手、需要补测的最小证据集
 输出后直接结束。遇到证据不足的条目标注为“需要补证据”。 
@@ -0,0 +1,33 @@
 ---
 id: cleanup-rollback
 name: 清理与回滚专员
 description: 为授权测试设计清理/回滚验证清单，确保最小残留与可审计可复核。
 tools: []
 max_iterations: 0
 ---
 你是授权安全评估流程中的**清理与回滚子代理**。你的任务是为“测试结束后如何安全回收资源、减少残留与风险”提供结构化清单，并明确需要哪些证据来证明已完成清理/回滚。
 ## 禁止项（必须遵守）
 - 不提供可用于未授权系统清理或隐蔽痕迹的对抗性操作细节。
 - 不涉及绕过审计/篡改日志的内容。
 - 禁止再次调用 `task`。
 ## 核心职责
 - 将“可能留下的痕迹类型”按层级列出：账号/会话、配置变更、文件/目录、服务/计划任务、网络连接/监听、临时工件等（只做分类与回收清单，不写具体攻击清除命令）。
 - 给出回滚优先级：先回滚高风险/难以复现的变更，再清理低风险工件。
 - 设计可验证证据：哪些日志片段、变更记录、资源状态可以证明清理完成。
 - 与报告阶段衔接：在报告中应如何披露清理策略与验证证据。
 ## 输出格式（严格按此结构输出）
 1) Cleanup Checklist（清理清单）
 - 每条：残留类型 / 需要回滚或删除的对象类别 / 优先级 / 验证方式
 2) Evidence of Cleanup（清理完成证据）
 - 每类证据：证据类型 / 期望内容摘要 / 位置或来源（按上游信息填）
 3) Risk & Residual Control（残留风险与控制）
 - 可能仍残留的风险类别与建议监控方式（只做高层建议）
 4) Handoff to Reporting（交接给报告的要点）
 - 报告里应包含哪些字段以证明“合规清理”。 
@@ -0,0 +1,43 @@
 ---
 id: engagement-planning
 name: 参与规划专员
 description: 定义参与范围、规则(ROE)与成功标准；产出迭代式测试蓝图与证据清单（不执行入侵）。
 tools: []
 max_iterations: 0
 ---
 你是授权安全评估流程中的**参与规划子代理**。你的目标是在协调主代理委派执行前，把“要测什么/怎么证明/哪些边界绝不越过”先说清楚，并输出可落地的迭代计划。
 ## 核心约束（必须遵守）
 - 只在获得用户明确授权与边界条件后推进；遇到缺失信息时列出必须澄清的点。
 - 不产出可直接复用于未授权入侵的具体武器化步骤（包括但不限于可直接执行的利用链/持久化操作参数）。
 - 不执行破坏性行为；对影响范围与回滚策略要有前置说明。
 - 禁止再次调用 `task`；如需要后续执行由协调主代理决定并委派其它子代理。
 ## 你需要完成的工作
 - 解析用户目标：范围、时间窗、资产范围（域名/IP/应用/端口/账号类型）、允许的测试类型（验证/复现/影响证明）与禁止项。
 - 将红队流程拆成阶段，并把阶段与“需要的证据”对应起来（证据可复核、可记录）。
 - 形成迭代式测试蓝图：每轮的输入来自上轮证据，输出应是可用于下一轮的结构化结论。
 ## 输出格式（严格按此结构输出，便于协调者汇总）
 1) Scope & ROE（范围与规则）
 - 允许范围（资产/接口/时间/账户类型）
 - 禁止范围（拒绝项、避免项）
 - 假设条件（如果缺失则标注为假设）
 2) Success Criteria（成功标准）
 - 哪些证据算“已验证”（示例：请求/响应、日志片段、截图、时间戳、可复现步骤概要）
 - 哪些证据算“需要补测”
 3) Phase Plan（阶段计划）
 - Phase-1：输入 / 目标 / 证据交付物 / 后续交给谁
 - Phase-2：同上
 - Phase-3：同上（至少列出 3 个阶段）
 4) Evidence Checklist（证据清单）
 - 每类发现对应需要的证据字段（如：资产、时间、影响面、严重程度、复现要点、缓解建议）
 5) Open Questions（待澄清问题）
 - 不足以继续的关键问题（尽量少而关键）
 当你完成以上输出时，直接停止；不要向协调主代理以外的人解释过多背景。将所有不确定性标注为“需要补证据/需要澄清”。 
@@ -0,0 +1,32 @@
 ---
 id: impact-exfiltration
 name: 影响与数据外泄证明专员
 description: 以最小影响方式设计“业务影响/数据可达性”的证明方案；强调脱敏、最小化数据暴露与回滚。
 tools: []
 max_iterations: 0
 ---
 你是授权安全评估流程中的**影响与数据外泄（或等价影响）证明子代理**。你的任务是把“可能能做什么”转化为“如何用最小化与可审计的证据证明影响”，而不是进行真实窃取或破坏。
 ## 禁止项（必须遵守）
 - 不提供可用于未授权数据窃取的具体步骤、脚本或数据导出方法。
 - 不对真实生产环境进行大规模数据抽取或不可回滚操作。
 - 禁止再次调用 `task`。
 ## 核心职责
 - 明确影响证明的边界：证明“能访问/能操作/能读到什么程度”即可，并避免真实敏感数据泄露。
 - 设计最小证据集：例如只取脱敏样本、只展示元数据（字段名/数量/访问控制判定）、提供可复核的审计日志片段。
 - 将影响证明衔接到后续阶段：报告/修复建议/清理回滚。
 ## 输出格式（严格按此结构输出）
 1) Impact Model（影响模型）
 - 影响类型 / 可能受影响资产（按上游输入）/ 业务后果（以高层描述）/ 证明目标
 2) Minimal Impact Evidence（最小影响证据设计）
 - 每条包含：证据类型 / 最小化方式（脱敏/元数据/截图摘要）/ 预期可见结果 / 回滚与停止条件
 3) Data Handling Guidance（数据处理与合规）
 - 你要求执行的最小化原则（如不导出明文敏感字段、不保留原始样本等，用描述性语言）
 4) Recommended Next Agent（下一步建议）
 - 建议交给 `reporting-remediation` 和 `cleanup-rollback` 的证据输入要点。 
@@ -0,0 +1,13 @@
 ---
 id: intel-collection
 name: 信息收集专员
 description: 公开情报、资产指纹、泄露线索、目录与接口发现、第三方暴露面梳理；适合在授权范围内做大范围情报汇总。
 tools: []
 max_iterations: 0
 ---
 你是授权安全评估中的**信息收集**子代理。侧重 OSINT、子域/端口/技术栈指纹、公开仓库与泄露面、业务与组织架构线索（均在合法授权范围内）。
 - 优先用工具拿可验证事实，标注信息来源与置信度；避免无依据推测。
 - 输出结构化（目标、发现项、证据摘要、建议后续动作），便于协调者合并进总报告。
 - 不执行未授权的入侵或社工骚扰；双用途技术仅用于甲方书面授权场景。
@@ -0,0 +1,13 @@
 ---
 id: lateral-movement
 name: 内网横向专员
 description: 已获得初始据点后的内网发现、凭证与会话利用、横向移动与权限维持思路（仅授权演练/渗透环境）。
 tools: []
 max_iterations: 0
 ---
 你是**内网横向与后渗透**子代理，仅用于客户书面授权的内网评估、红队演练或封闭实验环境。
 - 聚焦：内网拓扑与关键资产推断、凭据与令牌利用、常见横向协议与服务、权限路径与域/云环境注意事项（在工具与可见数据范围内）。
 - 每一步说明假设前提与证据；禁止对未授权网段、生产无关系统或真实用户数据进行操作。
 - 输出结构化：当前据点能力、发现的主机/服务、建议的下一步（可交给其他子代理或主代理编排）、风险与回滚注意点。
@@ -0,0 +1,33 @@
 ---
 id: opsec-evasion
 name: 运维安全与干扰最小化专员
 description: 从测试噪声、可观测性、蓝队告警与回滚风险角度，设计“低干扰验证策略”和证据采集方式（不提供绕过手段）。
 tools: []
 max_iterations: 0
 ---
 你是授权安全评估流程中的**运维安全（OPSEC）与干扰最小化子代理**。你的目标是让整个测试过程在授权与可控范围内尽量“少打扰、少破坏、易回溯”，并确保证据链完整。
 ## 禁止项（必须遵守）
 - 不提供可用于规避检测/规避审计的具体绕过方法、规避策略或可直接执行的对抗手段。
 - 不输出可用于未授权恶意活动的“隐蔽化武器化技巧”。
 - 禁止再次调用 `task`。
 ## 核心职责
 - 基于上游阶段的计划与入口点，识别可能带来噪声/风险的动作类型（高频扫描、破坏性请求、过载风险、不可回滚变更等）。
 - 为每类动作给出“替代策略”：例如降低频率、优先最小证据采集、使用只读路径验证、对影响面做范围收缩等（只给策略层级）。
 - 给出告警/审计可观测性建议：需要哪些日志字段来证明行为合规与结果可验证。
 - 明确停止条件：发现不可控影响时应立即停止并回滚/上报。
 ## 输出格式（严格按此结构输出）
 1) Noise & Risk Hotspots（噪声与风险热点）
 - 列出可能产生影响的阶段/入口/动作类别，并说明风险原因与证据需要
 2) Low-Interference Strategy（低干扰策略）
 - 每条包含：动作类别 / 替代策略（高层）/ 需要观察的负面信号 / 预期收益
 3) Auditability & Evidence Requirements（可审计性与证据要求）
 - 建议记录哪些证据字段（时间戳、目标、请求摘要、响应摘要、变更清单、回滚确认）
 4) Stop & Rollback Criteria（停止与回滚标准）
 - 触发阈值/不可控情况（用描述性语言即可） 
@@ -0,0 +1,66 @@
 ---
 id: cyberstrike-deep
 name: 协调主代理
 description: 多代理模式下的 Deep 编排者：在已授权安全场景中与 MCP 工具、task 子代理协同，负责规划、委派、汇总与对用户交付。
 ---
 你是 **CyberStrikeAI** 多代理模式下的 **协调主代理（Deep 编排者）**。**优先通过编排**把合适的工作交给专用子代理，再整合结果；仅在委派不划算或必须你亲自衔接时，才由你直接密集调用 MCP 工具完成。
 ## 多代理协调（你的核心职责）
 - **规划与拆分**：先理解用户目标与范围，把任务拆成可并行或可串行的子目标，明确每个子任务的输入、输出与验收标准。
 - **委派优先策略**：如果当前目标可以拆成相互独立或仅弱依赖的多个子目标，优先通过 **多次 `task`** 并行/批量委派子代理获取证据，而不是只靠你一个人直接完成所有工作。除非用户要求“只做一个很小的动作”，否则优先把任务拆成至少两类阶段并分别委派（例如：侦察/枚举 作为一类阶段，验证/复现 作为另一类阶段，最后再由你做汇总收敛）。
 - **委派（task）**：对「多步、独立、可封装交付物」的工作（专项侦察、代码审计思路、格式化报告素材、大批量检索与归纳、证据收集与结构化输出）使用 `task` 交给匹配子代理；在委派内容里写清：
  - 子代理要完成的**单一子目标**
  - 约束条件（授权边界、禁止做什么、必须用什么工具/证据来源）
  - **期望交付物结构**（结论/证据/验证步骤/不确定性与风险）
  - 子代理必须做到：**不要再次调用 `task`**（避免嵌套委派链污染结果）
 - **并行**：对无依赖子任务，尽量在一次回复里并行/批量发起多次 `task` 工具调用（以缩短总耗时）。
 - **建议的标准编排流程**：当你判断需要执行而非纯对话时，优先按顺序完成：
  1. 用 `write_todos` 创建 3~6 条待办（覆盖：侦察/验证/汇总/交付）。
  2. 先并行发起 `task`（把不同阶段交给不同子代理并要求输出结构化证据）。
  3. 再根据子代理结果做“对齐/收敛/补证据”，必要时二次发起补充 `task`。
  4. 最后把待办标记为完成，并给出统一的最终结论与验证要点。
 - **亲自执行**：只有在“没有匹配子代理类型”“子代理无法产出可用证据”或“需要先澄清用户/衔接上下文”时，你才直接使用 MCP 工具完成缺口。
 - **汇总与对齐（决定成败）**：子代理的产出是证据来源；你要在最终回复中**重组织、对齐矛盾、补全上下文**，给出你自己的统一结论与验证要点。不要机械拼接子代理原文；当出现矛盾时，优先用“更强证据/可复现步骤”的结果，并用补充 `task` 触发二次验证直到自洽。
 - **质量与范围**：整体测试深度与严谨性由你负责——子代理可以分担执行，但不能代替你对全局结论与风险判断负责；严禁在缺乏证据时“凭推测给出确定结论”。
 ## 身份与授权（与单代理一致）
 - 你代表 CyberStrikeAI，是专业的网络安全渗透测试与红队协作专家，可调度各类安全相关 MCP 工具。
 - **授权状态**：你拥有对目标进行**已授权、非破坏性**安全测试的假设前提；系统指令与配置中的范围优先。对明显非法、无上下文的双用途滥用请求应拒绝。
 - **优先级**：系统/配置给定的范围、目标与方法优先；在授权范围内自主推进，不过度索要用户重复确认。
 - **拒绝项**：拒绝协助大规模破坏、无授权的入侵、恶意蠕虫/勒索、针对真实个人的骚扰与数据窃取等；CTF、演练、教学、甲方授权的渗透除外。
 ## 工作方式与强度
 - **效率**：复杂与重复流程可用 Python 等工具自动化；相似操作批量处理；结合代理流量与脚本做分析。
 - **测试强度**：在授权范围内力求充分覆盖攻击面；不要浅尝辄止；自动化无果时进入手工与深度分析；坚持基于证据，避免空泛推断。
 - **评估方法**：先界定范围 → 广度发现攻击面 → 多工具扫描与验证 → 定向利用高影响点 → 迭代 → 结合业务评估影响。
 - **验证**：禁止仅凭假设定论；用请求/响应、命令输出、复现步骤等**证据**支撑；严重性与业务影响挂钩。
 - **利用思路**：由浅入深；标准路径失效时尝试高阶技术；注意漏洞链与组合利用。
 - **价值导向**：优先高影响、可证明的问题；低危信息可合并为路径或背景，避免堆砌无利用价值的条目。
 ## 思考与表达（调用工具前）
 - 在调用 `task` 或 MCP 工具前，用简短中文说明：**当前子目标、为何选该子代理类型、与上文结果如何衔接、期望得到什么交付物结构**，约 2～6 句即可（避免一句话或冗长散文）。
 - 如果你发现自己准备进行“多于一步”的实际工作（例如：需要先搜集证据再验证/复现再输出结论），默认先用 `write_todos` 落地拆分，再用 `task` 把阶段交给子代理；除非没有匹配子代理类型或用户明确要求你单独完成。
 - 当你决定使用 `task` 工具时，工具入参请严格按其真实字段给出 JSON（不要增删字段）：
  - `{"subagent_type":"<任务对应的子代理类型>","description":"<给子代理的委派任务说明（含约束与输出结构）>"}`  
 - 记住：**`task` 子代理的“中间过程”不保证对你可见**，因此你必须在最终回复里把“子代理返回的单次结构化结果”当作主要证据来源进行汇总与验证。
 - 面向用户的最终回复应**结构清晰**（结论/发现摘要、证据与验证步骤、风险与不确定性、下一步建议），便于复制与复核。
 ## 工具与 MCP
 - **工具失败**：读懂错误原因；修正参数重试；换替代工具；有局部收获则继续推进；确不可行时向用户说明并给替代方案；勿因单次失败放弃整体任务。
 - **漏洞记录**：发现**有效漏洞**时，必须使用 **`record_vulnerability`** 记录（标题、描述、严重程度、类型、目标、证明 POC、影响、修复建议）。严重程度使用 critical / high / medium / low / info。记录后可在授权范围内继续测试。
 - **编排进度（待办）**：当你的任务包含 3 个或以上步骤，或你准备委派多个子目标并行/串行推进时，优先使用 `write_todos` 来向用户展示“当前在做什么/接下来做什么”。维护约束：同一时刻最多一个条目处于 `in_progress`；完成后立刻标记 `completed`；遇到阻塞就保留为 `in_progress` 并继续推进。
 - **强触发建议（提升多 agent 使用率）**：如果你将要进行任何“证据收集/枚举/扫描/验证/复现/整理报告”这类实质执行动作，且不只是单步查询，请优先在第一个工具调用前就用 `write_todos` 建立计划；随后用 `task` 委派至少一个子代理获取结构化证据，而不是自己把全部步骤做完。
 - **技能库 Skills**：需要领域方法论文档时，先用 **`list_skills`** 浏览，再用 **`read_skill`** 读取相关内容；知识库用于零散检索，Skills 用于成体系方法。子代理若具备相同工具，也可在委派说明中提示其按需读取。
 - **知识检索（快速补足背景）**：当需要漏洞类型/验证方法/常见绕过等“方法论”而不是直接工具执行细节时，优先用 `search_knowledge_base` 获取可落地的证据线索。
 ## 与子代理的分工原则
 - 子代理适合：**上下文隔离的长任务、重复试错、专项角色**；你适合：**全局策略、合并结论、对用户承诺式答复、跨子任务的一致性检查**。
 - 若子代理结果不完整或相互矛盾，由你发起补充 task 或亲自补测，直到在授权与范围内给出自洽结论。
@@ -0,0 +1,13 @@
 ---
 id: penetration
 name: 渗透测试专员
 description: 授权范围内的漏洞验证、利用链构造、权限提升与影响证明；在得到侦察/情报输入后做深度利用与复现。
 tools: []
 max_iterations: 0
 ---
 你是授权渗透测试中的**渗透与利用**子代理。在明确范围与目标前提下，进行漏洞验证、利用链分析、权限提升路径与业务影响说明。
 - 以证据为中心：请求/响应、Payload、命令输出、截图说明等，便于审计与复现。
 - 先确认边界与禁止项（如拒绝 DoS、数据破坏）；发现有效漏洞时按协调者要求使用 `record_vulnerability` 等流程（若你的工具集中包含）。
 - 输出包含：攻击路径摘要、关键步骤、影响评估、修复与缓解建议；语言简洁，便于主代理汇总。
@@ -0,0 +1,33 @@
 ---
 id: persistence-maintenance
 name: 持久化与后续通道专员
 description: 评估授权环境下的持久化/维持访问思路、风险权衡与回滚验证；以最小影响方式证明可行性。
 tools: []
 max_iterations: 0
 ---
 你是授权安全评估流程中的**持久化与访问维持评估子代理**。你的任务不是提供可直接复用于未授权场景的持久化操作细节，而是对“如何证明在授权范围内具备维持/复用访问能力”进行风险控制与证据设计。
 ## 禁止项（必须遵守）
 - 不输出可直接用于未授权系统建立持久性的可执行指令/参数化操作步骤。
 - 不进行高风险持久化落地；如需要验证，仅建议非破坏性、可回滚或“仅读取/模拟”的证据方式。
 - 禁止再次调用 `task`。
 ## 核心职责
 - 在权限提升/初始据点等上游输入基础上，列出持久化的思路类别（仅类别级别）及其风险与可回滚性。
 - 针对每类持久化思路，定义“最小证明证据集”（例如：配置项是否存在、访问是否能复用、在约束条件下是否可维持能力等）。
 - 输出回滚与残留控制要点（证明你不会留下不可控痕迹）。
 - 将后续衔接到横向移动/影响证明/报告收敛阶段。
 ## 输出格式（严格按此结构输出）
 1) Persistence Options（持久化思路清单）
 - 每条包含：思路类别 / 适用前置条件 / 风险等级 / 可回滚性 / 最小证明证据
 2) Minimal Evidence Verification（最小证据验证设计）
 - 每条：验证目标 / 只读/低影响验证方式的高层描述 / 正/负证据示例 / 停止条件
 3) Rollback & Residue Control（回滚与残留控制）
 - 列出需要清理/验证的痕迹类型（配置、会话、日志、服务变更等层级描述即可）
 4) Recommended Next Steps（下一步建议）
 - 建议由哪个阶段子代理接手，以及需要哪些证据输入。 
@@ -0,0 +1,35 @@
 ---
 id: privilege-escalation
 name: 权限提升专员
 description: 在已获得初始访问/受限权限的前提下，评估权限提升可能性、证据需求与安全验证方法（仅限授权环境）。
 tools: []
 max_iterations: 0
 ---
 你是授权安全评估流程中的**权限提升与最小影响验证子代理**。你的目标是在不提供武器化利用细节的前提下，系统性分析从“当前权限级别”到“更高权限/更大能力”可能跨越的条件，并明确需要哪些证据来确认。
 ## 禁止项（必须遵守）
 - 不输出可直接复用于未授权场景的利用步骤、脚本、参数化 payload 或持久化指令。
 - 不进行破坏性行为；避免对真实生产系统造成额外风险。
 - 禁止再次调用 `task`。
 ## 核心职责
 - 基于上游阶段提供的当前能力（账号/令牌/会话类型/可访问的资源/可用服务信息）列出“可能的提升路径”类别。
 - 对每条路径给出：前置条件、可验证证据点、失败情况下应观察的反证信号、以及风险等级。
 - 提供安全验证方法的高层描述（例如：检查权限配置、验证最小集合的访问是否被允许、对比响应差异等）。
 - 将可能的结果与后续阶段连接：例如权限提升确认后交给“横向移动/持久化/影响证明”。
 ## 输出格式（严格按此结构输出）
 1) Current Access & Constraints（当前访问与约束）
 - 当前权限层级 / 可用身份（类型）/ 限制项（如网络分段、鉴权方式、时间窗）
 2) Escalation Vectors（权限提升向量）
 - 每条包含：向量类型 / 需要的前置条件 / 证据点（如何证明）/ 风险与可控性 / 对后续阶段的价值
 3) Safe Validation Plan（安全验证计划）
 - 每条向量给出：最小验证动作（非武器化、只读或低影响）/ 预期正证据 / 预期负证据 / 回滚或停止条件
 4) Recommended Next Agent（下一步建议）
 - 明确建议由哪个子代理接手（例如 `lateral-movement` / `persistence-maintenance` / `impact-exfiltration` / `reporting-remediation`）
 输出后直接结束。 
@@ -0,0 +1,9 @@
 ---
 id: recon
 name: 侦察专员
 description: 负责信息收集、资产测绘与初始攻击面分析。
 tools: []
 max_iterations: 0
 ---
 你是授权渗透测试流程中的侦察子代理。优先使用工具收集事实，避免无根据推测；输出简洁，便于协调者汇总。
@@ -0,0 +1,37 @@
 ---
 id: reporting-remediation
 name: 报告撰写与修复建议专员
 description: 将已收集的证据汇总为可交付报告结构，并给出面向修复的建议与回归验证要点。
 tools: []
 max_iterations: 0
 ---
 你是授权安全评估流程中的**报告撰写与修复建议子代理**。你的任务是把多阶段输出的证据统一成结构化发现，并提供可执行的修复与验证建议。
 ## 禁止项（必须遵守）
 - 不输出可用于未授权入侵的武器化利用细节（例如具体payload、绕过参数、可直接落地的攻击脚本）。
 - 禁止再次调用 `task`。
 ## 核心职责
 - 汇总：把上游子代理产生的证据片段、时间线、影响评估、验证结论整理到统一的“发现条目”中。
 - 分类：按严重程度（critical/high/medium/low/info）与影响面（系统/应用/账号/网络）组织。
 - 修复建议：给出工程上可落地的缓解/修复方向，并说明预期效果与回归验证要点。
 - 风险沟通：在不泄露敏感细节的前提下，写出对业务负责的结论。
 ## 输出格式（严格按此结构输出）
 1) Executive Summary（管理层摘要）
 - 参与范围、总体结论、最关键风险（Top-3）、总体建议方向
 2) Findings & Evidence（发现与证据）
 - 每条发现：标题 / 严重程度 / 影响面 / 验证结论 / 证据摘要 / 复现要点（高层，不给武器化细节）/ 修复建议 / 回归验证
 3) Timeline & Process（时间线与过程说明）
 - 关键阶段/证据产生时间/由谁负责的验证结论（如已知）
 4) Remediation Roadmap（修复路线图）
 - 按“优先级-成本-收益”组织建议项
 5) Appendix（附录）
 - 术语、假设、证据清单索引（按证据类型列出即可）
 输出后直接结束。 
@@ -0,0 +1,39 @@
 ---
 id: vulnerability-triage
 name: 漏洞分诊专员
 description: 基于攻击面与证据线索进行漏洞候选筛选、优先级排序与“验证路径”设计（以证据为中心，不直接武器化）。
 tools: []
 max_iterations: 0
 ---
 你是授权安全评估流程中的**漏洞分诊/验证路径规划子代理**。你不负责直接交付可用于未授权入侵的利用步骤；你的工作是把“可能问题”转化为“可验证的安全假设”，并明确需要什么证据来确认或否定。
 ## 禁止项（必须遵守）
 - 不输出可直接执行的利用链/payload/持久化参数等武器化内容。
 - 不进行破坏性操作或高风险测试；如需操作，优先“只读验证/最小影响验证”。
 - 禁止再次调用 `task`。
 ## 你需要输入（来自上游阶段）
 - 攻击面枚举结果（资产/服务/入口/信任边界）
 - 可能的漏洞类型线索（来自公开信息、日志片段、扫描结果、版本指纹）
 - 约束与成功标准（来自参与规划或协调主代理）
 ## 你需要完成的工作
 - 把候选风险归类到可验证的假设：例如“认证绕过风险（需验证访问控制证据）”“敏感配置暴露（需验证配置片段/响应头/页面）”“注入类风险（需验证输入验证与回显/错误差异）”等（只做类别层级，不给具体攻击载荷）。
 - 给每条候选提供：验证目标、最小证据集、验证方法的高层描述、预期的正/负证据样式、风险与回滚注意点。
 - 产出优先级：按证据可得性、影响价值、实施风险、对后续阶段的必要性排序。
 ## 输出格式（严格按此结构输出）
 1) Candidate Findings（候选发现）
 - 每条包含：候选类型 / 影响面（资产/入口）/ 证据线索摘要 / 置信度（low/medium/high）/ 需要的最小证据
 2) Verification Paths（验证路径）
 - 每条包含：假设 / 需要验证的访问控制点 / 需要观察的响应特征（正/负）/ 由哪个阶段接手（可给出建议）
 3) Prioritized Backlog（优先级待办）
 - Top-5：每条给出“为什么优先”（必须是证据可验证 + 风险可控 + 影响价值）
 4) Uncertainties & Missing Evidence（不确定性与缺口）
 - 列出最关键的缺口（尽量少，但要关键）
 输出后直接结束。 
@@ -10,23 +10,19 @@
 # ============================================
 # 前端显示的版本号（可选，不填则显示默认版本）
-version: "v1.3.27"
+version: "v1.4.2"
 # 服务器配置
 server:
  host: 0.0.0.0 # 监听地址，0.0.0.0 表示监听所有网络接口
-  port: 8080     # HTTP 服务端口，可通过浏览器访问 http://localhost:8080
+  port: 8080 # HTTP 服务端口，可通过浏览器访问 http://localhost:8080
 # 认证配置
 auth:
  password:  # Web 登录密码，请修改为强密码
-  session_duration_hours: 12          # 登录有效期（小时），超时后需重新登录
+  session_duration_hours: 12 # 登录有效期（小时），超时后需重新登录
 # 日志配置
 log:
-  level: info   # 日志级别: debug(调试), info(信息), warn(警告), error(错误)
+  level: info # 日志级别: debug(调试), info(信息), warn(警告), error(错误)
  output: stdout # 日志输出位置: stdout(标准输出), stderr(标准错误), 或文件路径
 # ============================================
 # 对话相关配置
 # ============================================
@@ -39,34 +35,43 @@ log:
 #   - 其他兼容 OpenAI 协议的 API
 # 常用模型: gpt-4, gpt-3.5-turbo, deepseek-chat, claude-3-opus 等
 openai:
-  base_url: https://api.deepseek.com/v1 # API 基础 URL（必填）
+  base_url: https://dashscope.aliyuncs.com/compatible-mode/v1 # API 基础 URL（必填）
-  api_key: sk-xxxx                       # API 密钥（必填）
+  api_key: sk-xxxxxx # API 密钥（必填）
-  model: deepseek-chat                   # 模型名称（必填）
+  model: qwen3-max # 模型名称（必填）
-  max_total_tokens: 120000              # LLM 相关上下文的最大 Token 数限制（内存压缩和攻击链构建会共用此配置）
+  max_total_tokens: 120000 # LLM 相关上下文的最大 Token 数限制（内存压缩和攻击链构建会共用此配置）
 # ============================================
 # 信息收集（FOFA）配置（可选）
 # ============================================
 # 用于「信息收集」页面调用 FOFA API（后端代理，避免前端暴露 key）
 # 也可通过环境变量配置：FOFA_EMAIL / FOFA_API_KEY（优先级更高）
 fofa:
-  base_url: "https://fofa.info/api/v1/search/all" # 可选，留空则使用默认
+  base_url: https://fofa.info/api/v1/search/all # 可选，留空则使用默认
-  email: ""   # FOFA 账号邮箱（可选，建议在系统设置中填写）
+  email: "" # FOFA 账号邮箱（可选，建议在系统设置中填写）
  api_key: "" # FOFA API Key（可选，建议在系统设置中填写）
 # Agent 配置
 # 达到最大迭代次数时，AI 会自动总结测试结果
 agent:
-  max_iterations: 120           # 最大迭代次数，AI 代理最多执行多少轮工具调用
+  max_iterations: 120 # 最大迭代次数，AI 代理最多执行多少轮工具调用
  large_result_threshold: 102400 # 大结果阈值（字节），默认50KB，超过此大小会自动保存到存储
  result_storage_dir: tmp # 结果存储目录，大结果会保存在此目录下
  tool_timeout_minutes: 30 # 单次工具执行最大时长（分钟），超时自动终止；0 表示不限制（不推荐，易出现长时间挂起）
-  
+# 多代理（CloudWeGo Eino DeepAgent，与上方单 Agent /api/agent-loop 并存）
 # 依赖在 go.mod 中拉取；若下载失败可设置: go env -w GOPROXY=https://goproxy.cn,direct
 # 启用后需重启服务才会注册 /api/multi-agent 与 /api/multi-agent/stream；前端可选「多代理」模式走 stream 接口
 multi_agent:
  enabled: true
  default_mode: multi # single | multi（前端默认，仍可用界面切换）
  robot_use_multi_agent: true # true 时企业微信/钉钉/飞书机器人也走 Eino 多代理（成本更高）
  batch_use_multi_agent: true # true 时「批量任务」队列中每个子任务也走 Eino 多代理（成本更高）
  max_iteration: 0 # Deep 主代理最大轮次，0 表示沿用 agent.max_iterations
  sub_agent_max_iterations: 120
  without_general_sub_agent: false # false 时保留 Deep 内置 general-purpose 子代理
  without_write_todos: false
  orchestrator_instruction: "" # 非空且未使用 agents/orchestrator.md 正文时作为 Deep 主代理系统提示；若存在 orchestrator.md（或某 .md 含 kind: orchestrator），正文非空则优先用文件，否则仍用此处；留空且无文件正文时用 Eino 默认
 # 数据库配置
 database:
-  path: data/conversations.db    # SQLite 数据库文件路径，用于存储对话历史和消息
+  path: data/conversations.db # SQLite 数据库文件路径，用于存储对话历史和消息
  knowledge_db_path: data/knowledge.db # 知识库数据库文件路径（可选，为空则使用会话数据库），用于存储知识库项和向量嵌入，可独立复制和复用
 # ============================================
 # 任务管理相关配置
 # ============================================
@@ -85,7 +90,6 @@ security:
  #   short - 优先使用 short_description（简短描述，省 token），为空时用 description
  #   full  - 使用 description（详细描述）
  tool_description_mode: full
 # ============================================
 # MCP 相关配置
 # ============================================
@@ -98,27 +102,24 @@ mcp:
  port: 8081 # MCP 服务器端口
  auth_header: "X-MCP-Token" # 鉴权：请求需携带该 header 且值与 auth_header_value 一致方可调用。留空表示不鉴权
  auth_header_value: "" # 鉴权密钥值（与 auth_header 配合使用，建议使用随机字符串）
 # 外部 MCP 配置
 external_mcp:
  servers: {}
 # ============================================
 # 知识库相关配置
 # ============================================
 knowledge:
-  enabled: false                    # 是否启用知识检索功能
+  enabled: false # 是否启用知识检索功能
-  base_path: knowledge_base         # 知识库目录路径（相对于配置文件所在目录）
+  base_path: knowledge_base # 知识库目录路径（相对于配置文件所在目录）
  embedding:
-    provider: openai                # 嵌入模型提供商（目前仅支持openai）
+    provider: openai # 嵌入模型提供商（目前仅支持openai）
-    model: text-embedding-v4        # 嵌入模型名称
+    model: text-embedding-v4 # 嵌入模型名称
    base_url: https://api.deepseek.com/v1 # 留空则使用OpenAI配置的base_url
-    api_key: sk-xxxxxx              # 留空则使用OpenAI配置的api_key
+    api_key: sk-xxxxxx # 留空则使用OpenAI配置的api_key
  retrieval:
-    top_k: 5                        # 检索返回的Top-K结果数量
+    top_k: 5 # 检索返回的Top-K结果数量
-    similarity_threshold: 0.7       # 相似度阈值（0-1），低于此值的结果将被过滤
+    similarity_threshold: 0.7 # 相似度阈值（0-1），低于此值的结果将被过滤
-    hybrid_weight: 0.7              # 混合检索权重（0-1），向量检索的权重，1.0表示纯向量检索，0.0表示纯关键词检索
+    hybrid_weight: 0.7 # 混合检索权重（0-1），向量检索的权重，1.0表示纯向量检索，0.0表示纯关键词检索
  # ============================================
  # 索引配置（用于解决 API 限制问题）
  # ============================================
@@ -135,7 +136,6 @@ knowledge:
    # 重试配置
    max_retries: 3 # 最大重试次数（默认 3），遇到速率限制或服务器错误时自动重试
    retry_delay_ms: 1000 # 重试间隔毫秒数（默认 1000），每次重试会递增延迟
 # ============================================
 # 机器人配置（企业微信、钉钉、飞书）
 # ============================================
@@ -151,14 +151,13 @@ robots:
    agent_id: 0
  dingtalk: # 钉钉
    enabled: false
-    client_id: 
+    client_id: ""
-    client_secret: 
+    client_secret: ""
  lark: # 飞书
    enabled: false
    app_id: ""
    app_secret: ""
    verify_token: ""
 # ============================================
 # Skills 相关配置
 # ============================================
@@ -166,7 +165,13 @@ robots:
 # 系统会从该目录加载所有skills，每个skill应是一个目录，包含SKILL.md文件
 # 例如：skills/sql-injection-testing/SKILL.md
 skills_dir: skills # Skills配置文件目录（相对于配置文件所在目录）
-
+# ============================================
 # 多代理子 Agent（Markdown，唯一维护处）
 # ============================================
 # 每个 .md：YAML front matter（name / id / description / tools / bind_role / max_iterations / 可选 kind: orchestrator）+ 正文为系统提示词
 # 主代理：固定文件名 orchestrator.md，或任意文件名 + front matter kind: orchestrator（全目录仅允许一个）；主代理不参与 task 子代理列表
 # 高级用法：仍可在 multi_agent 块内写 sub_agents，会与本文目录合并且同 id 时 YAML 可被 .md 覆盖
 agents_dir: agents
 # ============================================
 # 角色相关配置
 # ============================================
@@ -0,0 +1,57 @@
 # Eino 多代理改造说明（DeepAgent）
 本文档记录 **单 Agent（原有 ReAct）** 与 **多 Agent（CloudWeGo Eino `adk/prebuilt/deep`）** 并存的改造范围、进度与后续事项。
 ## 总体结论
 - **改造已可用于生产试验**：流式对话、MCP 工具桥接、配置开关、前端模式切换均已落地。
 - **入口策略**：主聊天与 WebShell AI 在开启多代理且用户选择「多代理」模式时走 `/api/multi-agent/stream`；机器人 `robot_use_multi_agent`、批量任务 `batch_use_multi_agent` 可分别开启；二者均需 `multi_agent.enabled`。
 ## 已完成项
 | 项 | 说明 |
 |----|------|
 | 依赖与代理 | `go.mod` 直接依赖 `github.com/cloudwego/eino`、`eino-ext/.../openai`；`go.mod` 注释与 `scripts/bootstrap-go.sh` 指导 **GOPROXY**（如 `https://goproxy.cn,direct`）。 |
 | 配置 | `config.yaml` → `multi_agent`：`enabled`、`default_mode`、`robot_use_multi_agent`、`max_iteration`、`sub_agents`（含可选 `bind_role`）等；结构体见 `internal/config/config.go`。 |
 | Markdown 子代理 / 主代理 | **常规用法**：在 `agents_dir`（默认 `agents/`）下放 `*.md`（front matter + 正文）。**子代理**供 Deep `task` 调度；**主代理**为 `orchestrator.md` 或 `kind: orchestrator` 的单个文件，定义协调者 `description` / 系统提示（正文空则回退 `orchestrator_instruction` / Eino 默认）。可选：`multi_agent.sub_agents` 与目录合并（同 id 时 Markdown 覆盖）。管理：**Agents → Agent管理**；API：`/api/multi-agent/markdown-agents*`。 |
 | MCP 桥 | `internal/einomcp`：`ToolsFromDefinitions` + 会话 ID 持有者，执行走 `Agent.ExecuteMCPToolForConversation`。 |
 | 编排 | `internal/multiagent/runner.go`：`deep.New` + 子 `ChatModelAgent` + `adk.NewRunner`（`EnableStreaming: true`），事件映射为现有 SSE `tool_call` / `response_delta` 等。 |
 | HTTP | `POST /api/multi-agent`（非流式）、`POST /api/multi-agent/stream`（SSE）；路由**常注册**，是否可用由运行时 `multi_agent.enabled` 决定（流式未启用时 SSE 内 `error` + `done`）。 |
 | 会话准备 | `internal/handler/multi_agent_prepare.go`：`prepareMultiAgentSession`（含 **WebShell** `CreateConversationWithWebshell`、工具白名单与单代理一致）。 |
 | 单 Agent | `internal/agent` 增加 `ToolsForRole`、`ExecuteMCPToolForConversation`；原 `/api/agent-loop` 未删改语义。 |
 | 前端 | 主聊天：`multi_agent.enabled` 时显示「模式」下拉；WebShell AI 与主聊天共用 `localStorage` 键 `cyberstrike-chat-agent-mode`。设置页可写 `multi_agent` 标量到 YAML。 |
 | 流式兼容 | 与 `/api/agent-loop/stream` 共用 `handleStreamEvent`：`conversation`、`progress`、`response_start` / `response_delta`、`thinking` / `thinking_stream_*`（模型 `ReasoningContent`）、`tool_*`、`response`、`done` 等；`tool_result` 带 `toolCallId` 与 `tool_call` 联动；`data.mcpExecutionIds` 与进度 i18n 已对齐。 |
 | 批量任务 | `batch_use_multi_agent: true` 时 `executeBatchQueue` 中每子任务调用 `RunDeepAgent`（`roleTools` 沿用队列角色；Eino 路径不注入 `roleSkills` 系统提示，与 Web 多代理会话一致）。 |
 | 配置 API | `GET /api/config` 返回 `multi_agent: { enabled, default_mode, robot_use_multi_agent, sub_agent_count }`；`PUT /api/config` 可更新前三项（不覆盖 `sub_agents`）。 |
 | OpenAPI | 多代理路径说明已更新（流式未启用为 SSE 错误事件）。 |
 | 机器人 | `ProcessMessageForRobot` 在 `enabled && robot_use_multi_agent` 时调用 `multiagent.RunDeepAgent`。 |
 ## 进行中 / 待办（ backlog ）
 | 优先级 | 项 | 说明 |
 |--------|----|------|
 | P3 | **观测与计费** | Eino 事件可进一步打结构化日志 / trace id，便于排障。 |
 | P3 | **测试** | 增加 `internal/multiagent` 与 einomcp 的集成测试（mock model 或录屏回放）。 |
 ## 关键文件索引
 - `internal/multiagent/runner.go` — DeepAgent 组装与事件循环  
 - `internal/handler/multi_agent.go` — SSE 与（同步）HTTP  
 - `internal/handler/multi_agent_prepare.go` — 会话准备（含 WebShell）  
 - `internal/einomcp/` — MCP → Eino Tool  
 - `config.yaml` — `multi_agent` 示例块  
 - `web/static/js/chat.js` — 模式选择与 stream URL  
 - `web/static/js/webshell.js` — WebShell AI 流式 URL 与主聊天模式对齐  
 - `web/static/js/settings.js` — 多代理标量保存  
 ## 版本记录
 | 日期 | 说明 |
 |------|------|
 | 2026-03-22 | 首版：Eino DeepAgent + stream + 前端开关 + GOPROXY 脚本。 |
 | 2026-03-22 | 补充：进度文档、`prepareMultiAgentSession` 抽取、WebShell 后端对齐、`POST /api/multi-agent`、OpenAPI `/api/multi-agent*` 条目。 |
 | 2026-03-22 | 路由常注册、流式未启用 SSE 错误、`robot_use_multi_agent`、设置页持久化、WebShell/机器人多代理、`bind_role` 子代理 Skills/tools。 |
 | 2026-03-22 | `tool_result.toolCallId`、`ReasoningContent`→思考流、`batch_use_multi_agent` 与批量队列 Eino 执行。 |
 | 2026-03-22 | 流式工具事件：按稳定签名去重，避免每 chunk 刷屏与「未知工具」；最终回复去重相同段落；内置调度显示为 `task`。 |
 | 2026-03-22 | `agents/*.md` 子代理定义、`agents_dir`、合并进 `RunDeepAgent`、前端 Agents 菜单与 CRUD API。 |
 | 2026-03-22 | `orchestrator.md` / `kind: orchestrator` 主代理、列表主/子标记、与 `orchestrator_instruction` 优先级。 |
@@ -1,13 +1,20 @@
 module cyberstrike-ai
 // 若 go mod download 超时，可执行: go env -w GOPROXY=https://goproxy.cn,direct
 // 或使用 scripts/bootstrap-go.sh
 go 1.24.0
 toolchain go1.24.4
 require (
 	github.com/bytedance/sonic v1.15.0
 	github.com/cloudwego/eino v0.8.4
 	github.com/cloudwego/eino-ext/components/model/openai v0.1.10
 	github.com/creack/pty v1.1.24
 	github.com/eino-contrib/jsonschema v1.0.3
 	github.com/gin-gonic/gin v1.9.1
-	github.com/google/uuid v1.5.0
+	github.com/google/uuid v1.6.0
 	github.com/gorilla/websocket v1.5.0
 	github.com/larksuite/oapi-sdk-go/v3 v3.4.22
 	github.com/mattn/go-sqlite3 v1.14.18
@@ -20,9 +27,16 @@ require (
 )
 require (
-	github.com/bytedance/sonic v1.9.1 // indirect
+	github.com/bahlo/generic-list-go v0.2.0 // indirect
-	github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311 // indirect
+	github.com/bmatcuk/doublestar/v4 v4.10.0 // indirect
 	github.com/buger/jsonparser v1.1.1 // indirect
 	github.com/bytedance/gopkg v0.1.3 // indirect
 	github.com/bytedance/sonic/loader v0.5.0 // indirect
 	github.com/cloudwego/base64x v0.1.6 // indirect
 	github.com/cloudwego/eino-ext/libs/acl/openai v0.1.14 // indirect
 	github.com/dlclark/regexp2 v1.10.0 // indirect
 	github.com/dustin/go-humanize v1.0.1 // indirect
 	github.com/evanphx/json-patch v0.5.2 // indirect
 	github.com/gabriel-vasile/mimetype v1.4.2 // indirect
 	github.com/gin-contrib/sse v0.1.0 // indirect
 	github.com/go-playground/locales v0.14.1 // indirect
@@ -31,23 +45,33 @@ require (
 	github.com/goccy/go-json v0.10.2 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/google/jsonschema-go v0.3.0 // indirect
 	github.com/goph/emperror v0.17.2 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
-	github.com/klauspost/cpuid/v2 v2.2.4 // indirect
+	github.com/klauspost/cpuid/v2 v2.2.9 // indirect
 	github.com/leodido/go-urn v1.2.4 // indirect
 	github.com/mailru/easyjson v0.7.7 // indirect
 	github.com/mattn/go-isatty v0.0.19 // indirect
 	github.com/meguminnnnnnnnn/go-openai v0.1.1 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
-	github.com/pelletier/go-toml/v2 v2.0.8 // indirect
+	github.com/nikolalohinski/gonja v1.5.3 // indirect
 	github.com/pelletier/go-toml/v2 v2.0.9 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/sirupsen/logrus v1.9.3 // indirect
 	github.com/slongfield/pyfmt v0.0.0-20220222012616-ea85ff4c361f // indirect
 	github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
 	github.com/ugorji/go/codec v1.2.11 // indirect
 	github.com/wk8/go-ordered-map/v2 v2.1.8 // indirect
 	github.com/yargevad/filepathx v1.0.0 // indirect
 	github.com/yosida95/uritemplate/v3 v3.0.2 // indirect
 	go.uber.org/multierr v1.11.0 // indirect
-	golang.org/x/arch v0.3.0 // indirect
+	golang.org/x/arch v0.11.0 // indirect
-	golang.org/x/crypto v0.14.0 // indirect
+	golang.org/x/crypto v0.31.0 // indirect
-	golang.org/x/net v0.17.0 // indirect
+	golang.org/x/exp v0.0.0-20230713183714-613f0c0eb8a1 // indirect
 	golang.org/x/net v0.24.0 // indirect
 	golang.org/x/oauth2 v0.30.0 // indirect
-	golang.org/x/sys v0.13.0 // indirect
+	golang.org/x/sys v0.28.0 // indirect
-	golang.org/x/text v0.13.0 // indirect
+	golang.org/x/text v0.21.0 // indirect
 	google.golang.org/protobuf v1.30.0 // indirect
 )
@@ -1,9 +1,31 @@
-github.com/bytedance/sonic v1.5.0/go.mod h1:ED5hyg4y6t3/9Ku1R6dU/4KyJ48DZ4jPhfY1O2AihPM=
+github.com/airbrake/gobrake v3.6.1+incompatible/go.mod h1:wM4gu3Cn0W0K7GUuVWnlXZU11AGBXMILnrdOU8Kn00o=
-github.com/bytedance/sonic v1.9.1 h1:6iJ6NqdoxCDr6mbY8h18oSO+cShGSMRGCEo7F2h0x8s=
+github.com/bahlo/generic-list-go v0.2.0 h1:5sz/EEAK+ls5wF+NeqDpk5+iNdMDXrh3z3nPnH1Wvgk=
-github.com/bytedance/sonic v1.9.1/go.mod h1:i736AoUSYt75HyZLoJW9ERYxcy6eaN6h4BZXU064P/U=
+github.com/bahlo/generic-list-go v0.2.0/go.mod h1:2KvAjgMlE5NNynlg/5iLrrCCZ2+5xWbdbCW3pNTGyYg=
-github.com/chenzhuoyu/base64x v0.0.0-20211019084208-fb5309c8db06/go.mod h1:DH46F32mSOjUmXrMHnKwZdA8wcEefY7UVqBKYGjpdQY=
+github.com/bitly/go-simplejson v0.5.0/go.mod h1:cXHtHw4XUPsvGaxgjIAn8PhEWG9NfngEKAMDJEczWVA=
-github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311 h1:qSGYFH7+jGhDF8vLC+iwCD4WpbV1EBDSzWkJODFLams=
+github.com/bmatcuk/doublestar/v4 v4.10.0 h1:zU9WiOla1YA122oLM6i4EXvGW62DvKZVxIe6TYWexEs=
-github.com/chenzhuoyu/base64x v0.0.0-20221115062448-fe3a3abad311/go.mod h1:b583jCggY9gE99b6G5LEC39OIiVsWj+R97kbl5odCEk=
+github.com/bmatcuk/doublestar/v4 v4.10.0/go.mod h1:xBQ8jztBU6kakFMg+8WGxn0c6z1fTSPVIjEY1Wr7jzc=
 github.com/bmizerany/assert v0.0.0-20160611221934-b7ed37b82869/go.mod h1:Ekp36dRnpXw/yCqJaO+ZrUyxD+3VXMFFr56k5XYrpB4=
 github.com/buger/jsonparser v1.1.1 h1:2PnMjfWD7wBILjqQbt530v576A/cAbQvEW9gGIpYMUs=
 github.com/buger/jsonparser v1.1.1/go.mod h1:6RYKKt7H4d4+iWqouImQ9R2FZql3VbhNgx27UK13J/0=
 github.com/bugsnag/bugsnag-go v1.4.0/go.mod h1:2oa8nejYd4cQ/b0hMIopN0lCRxU0bueqREvZLWFrtK8=
 github.com/bugsnag/panicwrap v1.2.0/go.mod h1:D/8v3kj0zr8ZAKg1AQ6crr+5VwKN5eIywRkfhyM/+dE=
 github.com/bytedance/gopkg v0.1.3 h1:TPBSwH8RsouGCBcMBktLt1AymVo2TVsBVCY4b6TnZ/M=
 github.com/bytedance/gopkg v0.1.3/go.mod h1:576VvJ+eJgyCzdjS+c4+77QF3p7ubbtiKARP3TxducM=
 github.com/bytedance/mockey v1.3.0 h1:ONLRdvhqmCfr9rTasUB8ZKCfvbdD2tohOg4u+4Q/ed0=
 github.com/bytedance/mockey v1.3.0/go.mod h1:1BPHF9sol5R1ud/+0VEHGQq/+i2lN+GTsr3O2Q9IENY=
 github.com/bytedance/sonic v1.15.0 h1:/PXeWFaR5ElNcVE84U0dOHjiMHQOwNIx3K4ymzh/uSE=
 github.com/bytedance/sonic v1.15.0/go.mod h1:tFkWrPz0/CUCLEF4ri4UkHekCIcdnkqXw9VduqpJh0k=
 github.com/bytedance/sonic/loader v0.5.0 h1:gXH3KVnatgY7loH5/TkeVyXPfESoqSBSBEiDd5VjlgE=
 github.com/bytedance/sonic/loader v0.5.0/go.mod h1:AR4NYCk5DdzZizZ5djGqQ92eEhCCcdf5x77udYiSJRo=
 github.com/certifi/gocertifi v0.0.0-20190105021004-abcd57078448/go.mod h1:GJKEexRPVJrBSOjoqN5VNOIKJ5Q3RViH6eu3puDRwx4=
 github.com/cloudwego/base64x v0.1.6 h1:t11wG9AECkCDk5fMSoxmufanudBtJ+/HemLstXDLI2M=
 github.com/cloudwego/base64x v0.1.6/go.mod h1:OFcloc187FXDaYHvrNIjxSe8ncn0OOM8gEHfghB2IPU=
 github.com/cloudwego/eino v0.8.4 h1:aFKJK82MmPR6dm5y5J7IXivYSvh4HkcXwf18j6vyhmk=
 github.com/cloudwego/eino v0.8.4/go.mod h1:+2N4nsMPxA6kGBHpH+75JuTfEcGprAMTdsZESrShKpU=
 github.com/cloudwego/eino-ext/components/model/openai v0.1.10 h1:zVkU4rZUUUUAPEXOGs98n8nsT/NZvQ9zWY0B9h2US7k=
 github.com/cloudwego/eino-ext/components/model/openai v0.1.10/go.mod h1:smEeTKXe8uz+HDUBQn0yZhpx7mmOUKFQyguLfjAQ57I=
 github.com/cloudwego/eino-ext/libs/acl/openai v0.1.14 h1:yOZII6VYaL00CVZYba+HUixFygsW0Xz/1QjQ5htj1Ls=
 github.com/cloudwego/eino-ext/libs/acl/openai v0.1.14/go.mod h1:1xMQZ8eE11pkEoTAEy8UlaAY817qGVMvjpDPGSIO3Ns=
 github.com/creack/pty v1.1.24 h1:bJrF4RRfyJnbTJqzRLHzcGaZK1NeM5kTC9jGgovnR1s=
 github.com/creack/pty v1.1.24/go.mod h1:08sCNb52WyoAwi2QDyzUCTgcvVFhUzewun7wtTfvcwE=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
@@ -11,12 +33,22 @@ github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/dlclark/regexp2 v1.10.0 h1:+/GIL799phkJqYW+3YbOd8LCcbHzT0Pbo8zl70MHsq0=
 github.com/dlclark/regexp2 v1.10.0/go.mod h1:DHkYz0B9wPfa6wondMfaivmHpzrQ3v9q8cnmRbL6yW8=
 github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkpeCY=
 github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto=
 github.com/eino-contrib/jsonschema v1.0.3 h1:2Kfsm1xlMV0ssY2nuxshS4AwbLFuqmPmzIjLVJ1Fsp0=
 github.com/eino-contrib/jsonschema v1.0.3/go.mod h1:cpnX4SyKjWjGC7iN2EbhxaTdLqGjCi0e9DxpLYxddD4=
 github.com/evanphx/json-patch v0.5.2 h1:xVCHIVMUu1wtM/VkR9jVZ45N3FhZfYMMYGorLCR8P3k=
 github.com/evanphx/json-patch v0.5.2/go.mod h1:ZWS5hhDbVDyob71nXKNL0+PWn6ToqBHMikGIFbs31qQ=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
 github.com/gabriel-vasile/mimetype v1.4.2 h1:w5qFW6JKBz9Y393Y4q372O9A7cUSequkh1Q7OhCmWKU=
 github.com/gabriel-vasile/mimetype v1.4.2/go.mod h1:zApsH/mKG4w07erKIaJPFiX0Tsq9BFQgN3qGY5GnNgA=
 github.com/getsentry/raven-go v0.2.0/go.mod h1:KungGk8q33+aIAZUIVWZDr2OfAEBsO49PX4NzFV5kcQ=
 github.com/gin-contrib/sse v0.1.0 h1:Y/yl/+YNO8GZSjAhjMsSuLt29uWRFHdHYUb5lYOV9qE=
 github.com/gin-contrib/sse v0.1.0/go.mod h1:RHrZQHXnP2xjPF+u1gW/2HnVO7nvIa9PG3Gm+fLHvGI=
 github.com/gin-gonic/gin v1.9.1 h1:4idEAncQnU5cB7BeOkPtxjfCSye0AAm1R0RVIqJ+Jmg=
 github.com/gin-gonic/gin v1.9.1/go.mod h1:hPrL7YrpYKXt5YId3A/Tnip5kqbEAP+KLuI3SUcPTeU=
 github.com/go-check/check v0.0.0-20180628173108-788fd7840127 h1:0gkP6mzaMqkmpcJYCFOLkIBwI7xFExG03bbkOkCvUPI=
 github.com/go-check/check v0.0.0-20180628173108-788fd7840127/go.mod h1:9ES+weclKsC9YodN5RgxqK/VD9HM9JsCSh7rNhMZE98=
 github.com/go-playground/assert/v2 v2.2.0 h1:JvknZsQTYeFEAhQwI4qEt9cyV5ONwRHC+lYKSsYSR8s=
 github.com/go-playground/assert/v2 v2.2.0/go.mod h1:VDjEfimB/XKnb+ZQfWdccd7VUvScMdVu0Titje2rxJ4=
 github.com/go-playground/locales v0.14.1 h1:EWaQ/wswjilfKLTECiXz7Rh+3BjFhfDFKv/oXslEjJA=
@@ -27,10 +59,12 @@ github.com/go-playground/validator/v10 v10.14.0 h1:vgvQWe3XCz3gIeFDm/HnTIbj6UGmg
 github.com/go-playground/validator/v10 v10.14.0/go.mod h1:9iXMNT7sEkjXb0I+enO7QXmzG6QCsPWY4zveKFVRSyU=
 github.com/goccy/go-json v0.10.2 h1:CrxCmQqYDkv1z7lO7Wbh2HN93uovUHgrECaO5ZrCXAU=
 github.com/goccy/go-json v0.10.2/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
 github.com/gofrs/uuid v3.2.0+incompatible/go.mod h1:b2aQJv3Z4Fp6yNu3cdSllBxTCLRxnplIgP/c0N/04lM=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
 github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q=
 github.com/golang-jwt/jwt/v5 v5.2.2 h1:Rl4B7itRWVtYIHFrSNd7vhTiz9UpLdi6gZhZ3wEeDy8=
 github.com/golang-jwt/jwt/v5 v5.2.2/go.mod h1:pqrtFR0X4osieyHYxtmOUWsAWrfe1Q5UVIyoH402zdk=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.5.0/go.mod h1:FsONVRAS9T7sI+LIUmWTfcYkHO4aIWwzhcaSAoJOfIk=
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.7.0 h1:wk8382ETsv4JYUZwIsn6YpYiWiBsYLSJiTsyBybVuN8=
@@ -38,25 +72,49 @@ github.com/google/go-cmp v0.7.0/go.mod h1:pXiqmnSA92OHEEa9HXL2W4E7lf9JzCmGVUdgjX
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/jsonschema-go v0.3.0 h1:6AH2TxVNtk3IlvkkhjrtbUc4S8AvO0Xii0DxIygDg+Q=
 github.com/google/jsonschema-go v0.3.0/go.mod h1:r5quNTdLOYEz95Ru18zA0ydNbBuYoo9tgaYcxEYhJVE=
-github.com/google/uuid v1.5.0 h1:1p67kYwdtXjb0gL0BPiP1Av9wiZPo5A8z2cWkTZ+eyU=
+github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0=
-github.com/google/uuid v1.5.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
+github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 github.com/goph/emperror v0.17.2 h1:yLapQcmEsO0ipe9p5TaN22djm3OFV/TfM/fcYP0/J18=
 github.com/goph/emperror v0.17.2/go.mod h1:+ZbQ+fUNO/6FNiUo0ujtMjhgad9Xa6fQL9KhH4LNHic=
 github.com/gopherjs/gopherjs v1.17.2 h1:fQnZVsXk8uxXIStYb0N4bGk7jeyTalG/wsZjQ25dO0g=
 github.com/gopherjs/gopherjs v1.17.2/go.mod h1:pRRIvn/QzFLrKfvEz3qUuEhtE/zLCWfreZ6J5gM2i+k=
 github.com/gorilla/websocket v1.5.0 h1:PPwGk2jz7EePpoHN/+ClbZu8SPxiqlu12wZP/3sWmnc=
 github.com/gorilla/websocket v1.5.0/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/hpcloud/tail v1.0.0/go.mod h1:ab1qPbhIpdTxEkNHXyeSf5vhxWSCs/tWer42PpOxQnU=
 github.com/jessevdk/go-flags v1.4.0/go.mod h1:4FA24M0QyGHXBuZZK/XkWh8h0e1EYbRYJSGM75WSRxI=
 github.com/josharian/intern v1.0.0/go.mod h1:5DoeVV0s6jJacbCEi61lwdGj/aVlrQvzHFFd8Hwg//Y=
 github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
 github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
 github.com/jtolds/gls v4.20.0+incompatible h1:xdiiI2gbIgH/gLH7ADydsJ1uDOEzR8yvV7C0MuV77Wo=
 github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU=
 github.com/kardianos/osext v0.0.0-20190222173326-2bc1f35cddc0/go.mod h1:1NbS8ALrpOvjt0rHPNLyCIeMtbizbir8U//inJ+zuB8=
 github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
-github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
+github.com/klauspost/cpuid/v2 v2.2.9 h1:66ze0taIn2H33fBvCkXuv9BmCwDfafmiIVpKV9kKGuY=
-github.com/klauspost/cpuid/v2 v2.2.4 h1:acbojRNwl3o09bUq+yDCtZFc1aiwaAAxtcn8YkZXnvk=
+github.com/klauspost/cpuid/v2 v2.2.9/go.mod h1:rqkxqrZ1EhYM9G+hXH7YdowN5R5RGN6NK4QwQ3WMXF8=
-github.com/klauspost/cpuid/v2 v2.2.4/go.mod h1:RVVoqg1df56z8g3pUjL/3lE5UfnlrJX8tyFgg4nqhuY=
+github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
 github.com/kr/pretty v0.1.0 h1:L/CwN0zerZDmRFUapSPitk6f+Q3+0za1rQkzVuMiMFI=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
 github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
 github.com/larksuite/oapi-sdk-go/v3 v3.4.22 h1:57daKuslQPX9X3hC2idc5bu8bl2krfsBGWGJ6b5FlD8=
 github.com/larksuite/oapi-sdk-go/v3 v3.4.22/go.mod h1:ZEplY+kwuIrj/nqw5uSCINNATcH3KdxSN7y+UxYY5fI=
 github.com/leodido/go-urn v1.2.4 h1:XlAE/cm/ms7TE/VMVoduSpNBoyc2dOxHs5MZSwAN63Q=
 github.com/leodido/go-urn v1.2.4/go.mod h1:7ZrI8mTSeBSHl/UaRyKQW1qZeMgak41ANeCNaVckg+4=
 github.com/mailru/easyjson v0.7.7 h1:UGYAvKxe3sBsEDzO8ZeWOSlIQfWFlxbzLZe7hwFURr0=
 github.com/mailru/easyjson v0.7.7/go.mod h1:xzfreul335JAWq5oZzymOObrkdz5UnU4kGfJJLY9Nlc=
 github.com/mattn/go-colorable v0.1.2 h1:/bC9yWikZXAL9uJdulbSfyVNIR3n3trXl+v8+1sx8mU=
 github.com/mattn/go-colorable v0.1.2/go.mod h1:U0ppj6V5qS13XJ6of8GYAs25YV2eR4EVcfRqFIhoBtE=
 github.com/mattn/go-isatty v0.0.19 h1:JITubQf0MOLdlGRuRq+jtsDlekdYPia9ZFsB8h/APPA=
 github.com/mattn/go-isatty v0.0.19/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
 github.com/mattn/go-sqlite3 v1.14.18 h1:JL0eqdCOq6DJVNPSvArO/bIV9/P7fbGrV00LZHc+5aI=
 github.com/mattn/go-sqlite3 v1.14.18/go.mod h1:2eHXhiwb8IkHr+BDWZGa96P6+rkvnG63S2DGjv9HUNg=
 github.com/meguminnnnnnnnn/go-openai v0.1.1 h1:u/IMMgrj/d617Dh/8BKAwlcstD74ynOJzCtVl+y8xAs=
 github.com/meguminnnnnnnnn/go-openai v0.1.1/go.mod h1:qs96ysDmxhE4BZoU45I43zcyfnaYxU3X+aRzLko/htY=
 github.com/mgutz/ansi v0.0.0-20170206155736-9520e82c474b h1:j7+1HpAFS1zy5+Q4qx1fWh90gTKwiN4QCGoY9TWyyO4=
 github.com/mgutz/ansi v0.0.0-20170206155736-9520e82c474b/go.mod h1:01TrycV0kFyexm33Z7vhZRXopbI8J3TDReVlkTgMUxE=
 github.com/modelcontextprotocol/go-sdk v1.2.0 h1:Y23co09300CEk8iZ/tMxIX1dVmKZkzoSBZOpJwUnc/s=
 github.com/modelcontextprotocol/go-sdk v1.2.0/go.mod h1:6fM3LCm3yV7pAs8isnKLn07oKtB0MP9LHd3DfAcKw10=
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
@@ -64,71 +122,109 @@ github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9Gz0M=
 github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
-github.com/pelletier/go-toml/v2 v2.0.8 h1:0ctb6s9mE31h0/lhu+J6OPmVeDxJn+kYnJc2jZR9tGQ=
+github.com/nikolalohinski/gonja v1.5.3 h1:GsA+EEaZDZPGJ8JtpeGN78jidhOlxeJROpqMT9fTj9c=
-github.com/pelletier/go-toml/v2 v2.0.8/go.mod h1:vuYfssBdrU2XDZ9bYydBu6t+6a6PYNcZljzZR9VXg+4=
+github.com/nikolalohinski/gonja v1.5.3/go.mod h1:RmjwxNiXAEqcq1HeK5SSMmqFJvKOfTfXhkJv6YBtPa4=
 github.com/onsi/ginkgo v1.6.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/ginkgo v1.8.0/go.mod h1:lLunBs/Ym6LB5Z9jYTR76FiuTmxDTDusOGeTQH+WWjE=
 github.com/onsi/gomega v1.5.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
 github.com/pelletier/go-toml/v2 v2.0.9 h1:uH2qQXheeefCCkuBBSLi7jCiSmj3VRh2+Goq2N7Xxu0=
 github.com/pelletier/go-toml/v2 v2.0.9/go.mod h1:tJU2Z3ZkXwnxa4DPO899bsyIoywizdUvyaeZurnPPDc=
 github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4=
 github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
 github.com/pkoukk/tiktoken-go v0.1.8 h1:85ENo+3FpWgAACBaEUVp+lctuTcYUO7BtmfhlN/QTRo=
 github.com/pkoukk/tiktoken-go v0.1.8/go.mod h1:9NiV+i9mJKGj1rYOT+njbv+ZwA/zJxYdewGl6qVatpg=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/rollbar/rollbar-go v1.0.2/go.mod h1:AcFs5f0I+c71bpHlXNNDbOWJiKwjFDtISeXco0L5PKQ=
 github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
 github.com/sirupsen/logrus v1.9.3 h1:dueUQJ1C2q9oE3F7wvmSGAaVtTmUizReu6fjN8uqzbQ=
 github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
 github.com/slongfield/pyfmt v0.0.0-20220222012616-ea85ff4c361f h1:Z2cODYsUxQPofhpYRMQVwWz4yUVpHF+vPi+eUdruUYI=
 github.com/slongfield/pyfmt v0.0.0-20220222012616-ea85ff4c361f/go.mod h1:JqzWyvTuI2X4+9wOHmKSQCYxybB/8j6Ko43qVmXDuZg=
 github.com/smarty/assertions v1.15.0 h1:cR//PqUBUiQRakZWqBiFFQ9wb8emQGDb0HeGdqGByCY=
 github.com/smarty/assertions v1.15.0/go.mod h1:yABtdzeQs6l1brC900WlRNwj6ZR55d7B+E8C6HtKdec=
 github.com/smartystreets/goconvey v1.8.1 h1:qGjIddxOk4grTu9JPOU31tVfq3cNdBlNa5sSznIX1xY=
 github.com/smartystreets/goconvey v1.8.1/go.mod h1:+/u4qLyY6x1jReYOp7GOM2FSt8aP9CzCZL03bI28W60=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/objx v0.5.2/go.mod h1:FRsXN1f5AsAjCGJKqEizvkpNtU+EGNCLh3NxZ/8L+MA=
 github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.8.2/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
-github.com/stretchr/testify v1.8.3 h1:RP3t2pwF7cMEbC1dqtB6poj3niw/9gnV4Cjg5oW5gtY=
+github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
-github.com/stretchr/testify v1.8.3/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
+github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/stretchr/testify v1.11.1 h1:7s2iGBzp5EwR7/aIZr8ao5+dra3wiQyKjjFuvgVKu7U=
 github.com/stretchr/testify v1.11.1/go.mod h1:wZwfW3scLgRK+23gO65QZefKpKQRnfz6sD981Nm4B6U=
 github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS4MhqMhdFk5YI=
 github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
 github.com/ugorji/go/codec v1.2.11 h1:BMaWp1Bb6fHwEtbplGBGJ498wD+LKlNSl25MjdZY4dU=
 github.com/ugorji/go/codec v1.2.11/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
 github.com/uouuou/dingtalk-stream-sdk-go v0.0.0-20250626025113-079132acc406 h1:b72HNsEnmTRn7vhWGOfbWHAkA5RbRCk0Pbc56V2WAuY=
 github.com/uouuou/dingtalk-stream-sdk-go v0.0.0-20250626025113-079132acc406/go.mod h1:ln3IqPYYocZbYvl9TAOrG/cxGR9xcn4pnZRLdCTEGEU=
 github.com/wk8/go-ordered-map/v2 v2.1.8 h1:5h/BUHu93oj4gIdvHHHGsScSTMijfx5PeYkE/fJgbpc=
 github.com/wk8/go-ordered-map/v2 v2.1.8/go.mod h1:5nJHM5DyteebpVlHnWMV0rPz6Zp7+xBAnxjb1X5vnTw=
 github.com/x-cray/logrus-prefixed-formatter v0.5.2 h1:00txxvfBM9muc0jiLIEAkAcIMJzfthRT6usrui8uGmg=
 github.com/x-cray/logrus-prefixed-formatter v0.5.2/go.mod h1:2duySbKsL6M18s5GU7VPsoEPHyzalCE06qoARUCeBBE=
 github.com/yargevad/filepathx v1.0.0 h1:SYcT+N3tYGi+NvazubCNlvgIPbzAk7i7y2dwg3I5FYc=
 github.com/yargevad/filepathx v1.0.0/go.mod h1:BprfX/gpYNJHJfc35GjRRpVcwWXS89gGulUIU5tK3tA=
 github.com/yosida95/uritemplate/v3 v3.0.2 h1:Ed3Oyj9yrmi9087+NczuL5BwkIc4wvTb5zIM+UJPGz4=
 github.com/yosida95/uritemplate/v3 v3.0.2/go.mod h1:ILOh0sOhIJR3+L/8afwt/kE++YT040gmv5BQTMR2HP4=
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 go.uber.org/goleak v1.2.0 h1:xqgm/S+aQvhWFTtR0XK3Jvg7z8kGV8P4X14IzwN3Eqk=
 go.uber.org/goleak v1.2.0/go.mod h1:XJYK+MuIchqpmGmUSAzotztawfKvYLUIgg7guXrwVUo=
 go.uber.org/mock v0.4.0 h1:VcM4ZOtdbR4f6VXfiOpwpVJDL6lCReaZ6mw31wqh7KU=
 go.uber.org/mock v0.4.0/go.mod h1:a6FSlNadKUHUa9IP5Vyt1zh4fC7uAwxMutEAscFbkZc=
 go.uber.org/multierr v1.11.0 h1:blXXJkSxSSfBVBlC76pxqeO+LN3aDfLQo+309xJstO0=
 go.uber.org/multierr v1.11.0/go.mod h1:20+QtiLqy0Nd6FdQB9TLXag12DsQkrbs3htMFfDN80Y=
 go.uber.org/zap v1.26.0 h1:sI7k6L95XOKS281NhVKOFCUNIvv9e0w4BF8N3u+tCRo=
 go.uber.org/zap v1.26.0/go.mod h1:dtElttAiwGvoJ/vj4IwHBS/gXsEu/pZ50mUIRWuG0so=
-golang.org/x/arch v0.0.0-20210923205945-b76863e36670/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
+golang.org/x/arch v0.11.0 h1:KXV8WWKCXm6tRpLirl2szsO5j/oOODwZf4hATmGVNs4=
-golang.org/x/arch v0.3.0 h1:02VY4/ZcO/gBOH6PUaoiptASxtXU10jazRCP865E97k=
+golang.org/x/arch v0.11.0/go.mod h1:FEVrYAQjsQXMVJ1nsMoVVXPZg6p2JE2mx8psSWTDQys=
-golang.org/x/arch v0.3.0/go.mod h1:5om86z9Hs0C8fWVUuoMHwpExlXzs5Tkyp9hOrfG7pp8=
+golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.14.0 h1:wBqGXzWJW6m1XrIKlAH0Hs1JJ7+9KBwnIO8v66Q9cHc=
+golang.org/x/crypto v0.31.0 h1:ihbySMvVjLAeSH1IbfcRTkD/iNscyz8rGzjF/E5hV6U=
-golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4=
+golang.org/x/crypto v0.31.0/go.mod h1:kDsLvtWBEx7MV9tJOj9bnXsPbxwJQ6csT/x4KIN4Ssk=
 golang.org/x/exp v0.0.0-20230713183714-613f0c0eb8a1 h1:MGwJjxBy0HJshjDNfLsYO8xppfqWlA5ZT9OhtUUhTNw=
 golang.org/x/exp v0.0.0-20230713183714-613f0c0eb8a1/go.mod h1:FXUEEKJgO7OQYeo8N01OfiKP8RXMtf6e8aTskBGqWdc=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.17.0 h1:pVaXccu2ozPjCXewfr1S7xza/zcXTity9cCdXQYSjIM=
+golang.org/x/net v0.24.0 h1:1PcaxkF854Fu3+lvBIx5SYn9wRlBzzcnHZSiaFFAb0w=
-golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE=
+golang.org/x/net v0.24.0/go.mod h1:2Q7sJY5mzlzWjKtYUEXSlBWCdyaioyXzRB2RtU8KVE8=
 golang.org/x/oauth2 v0.30.0 h1:dnDm7JmhM45NNpd8FDDeLhK6FwqbOf4MLCM9zb1BOHI=
 golang.org/x/oauth2 v0.30.0/go.mod h1:B++QgG3ZKulg6sRPGD/mqlHQs5rB3Ml9erfeDY7xKlU=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20220704084225-05e143d24a9e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.13.0 h1:Af8nKPmuFypiUBjVoU9V20FiaFXOcuZI21p0ycVYYGE=
+golang.org/x/sys v0.28.0 h1:Fksou7UEQUWlKvIdsqzJmUmCX3cZuD2+P3XyyzwMhlA=
-golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.27.0 h1:WP60Sv1nlK1T6SupCHbXzSaN0b9wUmsPoRS9b61A23Q=
 golang.org/x/term v0.27.0/go.mod h1:iMsnZpn0cago0GOrHO2+Y7u7JPn5AylBrcoWkElMTSM=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.13.0 h1:ablQoSUd0tRdKxZewP80B+BaqeKJuVhuRxj/dkrun3k=
+golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
-golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
+golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
 golang.org/x/time v0.14.0 h1:MRx4UaLrDotUKUdCIqzPC48t1Y9hANFKIRpNx+Te8PI=
 golang.org/x/time v0.14.0/go.mod h1:eL/Oa2bBBK0TkX57Fyni+NgnyQQN4LitPmob2Hjnqw4=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
@@ -144,9 +240,12 @@ golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8T
 google.golang.org/protobuf v1.26.0-rc.1/go.mod h1:jlhhOSvTdKEhbULTjvd4ARK9grFBp09yW+WbY/TyQbw=
 google.golang.org/protobuf v1.30.0 h1:kPPoIgf3TsEvrm0PFe15JQ+570QVxYzEvvHqChK+cng=
 google.golang.org/protobuf v1.30.0/go.mod h1:HV8QOd/L58Z+nl8r43ehVNZIU/HEI6OcFqwMG9pJV4I=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127 h1:qIbj1fsPNlZgppZ+VLlY7N33q108Sa+fhmuc+sWQYwY=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
 gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 rsc.io/pdf v0.1.1/go.mod h1:n8OzWcQ6Sp37PL01nO98y4iUCRdTGarVfzxY20ICaU4=
@@ -15,6 +15,7 @@ import (
 	"cyberstrike-ai/internal/mcp"
 	"cyberstrike-ai/internal/mcp/builtin"
 	"cyberstrike-ai/internal/openai"
 	"cyberstrike-ai/internal/security"
 	"cyberstrike-ai/internal/storage"
 	"go.uber.org/zap"
@@ -196,6 +197,7 @@ type OpenAIRequest struct {
 	Model    string        `json:"model"`
 	Messages []ChatMessage `json:"messages"`
 	Tools    []Tool        `json:"tools,omitempty"`
 	Stream   bool          `json:"stream,omitempty"`
 }
 // OpenAIResponse OpenAI API响应
@@ -529,6 +531,7 @@ func (a *Agent) AgentLoopWithProgress(ctx context.Context, userInput string, his
 	var currentReActInput string
 	maxIterations := a.maxIterations
 	thinkingStreamSeq := 0
 	for i := 0; i < maxIterations; i++ {
 		// 先获取本轮可用工具并统计 tools token，再压缩，以便压缩时预留 tools 占用的空间
 		tools := a.getAvailableTools(roleTools)
@@ -630,7 +633,28 @@ func (a *Agent) AgentLoopWithProgress(ctx context.Context, userInput string, his
 		// 调用OpenAI
 		sendProgress("progress", "正在调用AI模型...", nil)
-		response, err := a.callOpenAI(ctx, messages, tools)
+		thinkingStreamSeq++
 		thinkingStreamId := fmt.Sprintf("thinking-stream-%s-%d-%d", conversationID, i+1, thinkingStreamSeq)
 		thinkingStreamStarted := false
 		response, err := a.callOpenAIStreamWithToolCalls(ctx, messages, tools, func(delta string) error {
 			if delta == "" {
 				return nil
 			}
 			if !thinkingStreamStarted {
 				thinkingStreamStarted = true
 				sendProgress("thinking_stream_start", " ", map[string]interface{}{
 					"streamId":   thinkingStreamId,
 					"iteration":  i + 1,
 					"toolStream": false,
 				})
 			}
 			sendProgress("thinking_stream_delta", delta, map[string]interface{}{
 				"streamId":  thinkingStreamId,
 				"iteration": i + 1,
 			})
 			return nil
 		})
 		if err != nil {
 			// API调用失败，保存当前的ReAct输入和错误信息作为输出
 			result.LastReActInput = currentReActInput
@@ -682,10 +706,12 @@ func (a *Agent) AgentLoopWithProgress(ctx context.Context, userInput string, his
 		// 检查是否有工具调用
 		if len(choice.Message.ToolCalls) > 0 {
-			// 如果有思考内容，先发送思考事件
+			// 思考内容：如果本轮启用了思考流式增量（thinking_stream_*），前端会去重；
 			// 同时也需要在该“思考阶段结束”时补一条可落库的 thinking（用于刷新后持久化展示）。
 			if choice.Message.Content != "" {
 				sendProgress("thinking", choice.Message.Content, map[string]interface{}{
 					"iteration": i + 1,
 					"streamId":  thinkingStreamId,
 				})
 			}
@@ -717,7 +743,21 @@ func (a *Agent) AgentLoopWithProgress(ctx context.Context, userInput string, his
 				})
 				// 执行工具
-				execResult, err := a.executeToolViaMCP(ctx, toolCall.Function.Name, toolCall.Function.Arguments)
+				toolCtx := context.WithValue(ctx, security.ToolOutputCallbackCtxKey, security.ToolOutputCallback(func(chunk string) {
 					if strings.TrimSpace(chunk) == "" {
 						return
 					}
 					sendProgress("tool_result_delta", chunk, map[string]interface{}{
 						"toolName":    toolCall.Function.Name,
 						"toolCallId":  toolCall.ID,
 						"index":       idx + 1,
 						"total":       len(choice.Message.ToolCalls),
 						"iteration":   i + 1,
 						// success 在最终 tool_result 事件里会以 success/isError 标记为准
 					})
 				}))
 				execResult, err := a.executeToolViaMCP(toolCtx, toolCall.Function.Name, toolCall.Function.Arguments)
 				if err != nil {
 					// 构建详细的错误信息，帮助AI理解问题并做出决策
 					errorMsg := a.formatToolError(toolCall.Function.Name, toolCall.Function.Arguments, err)
@@ -792,16 +832,23 @@ func (a *Agent) AgentLoopWithProgress(ctx context.Context, userInput string, his
 					Content: "这是最后一次迭代。请总结到目前为止的所有测试结果、发现的问题和已完成的工作。如果需要继续测试，请提供详细的下一步执行计划。请直接回复，不要调用工具。",
 				})
 				messages = a.applyMemoryCompression(ctx, messages, 0) // 总结时不带 tools，不预留
-				// 立即调用OpenAI获取总结
+				// 流式调用OpenAI获取总结（不提供工具，强制AI直接回复）
-				summaryResponse, err := a.callOpenAI(ctx, messages, []Tool{}) // 不提供工具，强制AI直接回复
+				sendProgress("response_start", "", map[string]interface{}{
-				if err == nil && summaryResponse != nil && len(summaryResponse.Choices) > 0 {
+					"conversationId":     conversationID,
-					summaryChoice := summaryResponse.Choices[0]
+					"mcpExecutionIds":   result.MCPExecutionIDs,
-					if summaryChoice.Message.Content != "" {
+					"messageGeneratedBy": "summary",
-						result.Response = summaryChoice.Message.Content
+				})
-						result.LastReActOutput = result.Response
+				streamText, _ := a.callOpenAIStreamText(ctx, messages, []Tool{}, func(delta string) error {
-						sendProgress("progress", "总结生成完成", nil)
+					sendProgress("response_delta", delta, map[string]interface{}{
-						return result, nil
+						"conversationId": conversationID,
-					}
+					})
 					return nil
 				})
 				if strings.TrimSpace(streamText) != "" {
 					result.Response = streamText
 					result.LastReActOutput = result.Response
 					sendProgress("progress", "总结生成完成", nil)
 					return result, nil
 				}
 				// 如果获取总结失败，跳出循环，让后续逻辑处理
 				break
@@ -817,7 +864,7 @@ func (a *Agent) AgentLoopWithProgress(ctx context.Context, userInput string, his
 		})
 		// 发送AI思考内容（如果没有工具调用）
-		if choice.Message.Content != "" {
+		if choice.Message.Content != "" && !thinkingStreamStarted {
 			sendProgress("thinking", choice.Message.Content, map[string]interface{}{
 				"iteration": i + 1,
 			})
@@ -832,16 +879,23 @@ func (a *Agent) AgentLoopWithProgress(ctx context.Context, userInput string, his
 				Content: "这是最后一次迭代。请总结到目前为止的所有测试结果、发现的问题和已完成的工作。如果需要继续测试，请提供详细的下一步执行计划。请直接回复，不要调用工具。",
 			})
 			messages = a.applyMemoryCompression(ctx, messages, 0) // 总结时不带 tools，不预留
-			// 立即调用OpenAI获取总结
+			// 流式调用OpenAI获取总结（不提供工具，强制AI直接回复）
-			summaryResponse, err := a.callOpenAI(ctx, messages, []Tool{}) // 不提供工具，强制AI直接回复
+			sendProgress("response_start", "", map[string]interface{}{
-			if err == nil && summaryResponse != nil && len(summaryResponse.Choices) > 0 {
+				"conversationId":     conversationID,
-				summaryChoice := summaryResponse.Choices[0]
+				"mcpExecutionIds":   result.MCPExecutionIDs,
-				if summaryChoice.Message.Content != "" {
+				"messageGeneratedBy": "summary",
-					result.Response = summaryChoice.Message.Content
+			})
-					result.LastReActOutput = result.Response
+			streamText, _ := a.callOpenAIStreamText(ctx, messages, []Tool{}, func(delta string) error {
-					sendProgress("progress", "总结生成完成", nil)
+				sendProgress("response_delta", delta, map[string]interface{}{
-					return result, nil
+					"conversationId": conversationID,
-				}
+				})
 				return nil
 			})
 			if strings.TrimSpace(streamText) != "" {
 				result.Response = streamText
 				result.LastReActOutput = result.Response
 				sendProgress("progress", "总结生成完成", nil)
 				return result, nil
 			}
 			// 如果获取总结失败，使用当前回复作为结果
 			if choice.Message.Content != "" {
@@ -872,15 +926,23 @@ func (a *Agent) AgentLoopWithProgress(ctx context.Context, userInput string, his
 	messages = append(messages, finalSummaryPrompt)
 	messages = a.applyMemoryCompression(ctx, messages, 0) // 总结时不带 tools，不预留
-	summaryResponse, err := a.callOpenAI(ctx, messages, []Tool{}) // 不提供工具，强制AI直接回复
+	// 流式调用OpenAI获取总结（不提供工具，强制AI直接回复）
-	if err == nil && summaryResponse != nil && len(summaryResponse.Choices) > 0 {
+	sendProgress("response_start", "", map[string]interface{}{
-		summaryChoice := summaryResponse.Choices[0]
+		"conversationId":     conversationID,
-		if summaryChoice.Message.Content != "" {
+		"mcpExecutionIds":   result.MCPExecutionIDs,
-			result.Response = summaryChoice.Message.Content
+		"messageGeneratedBy": "max_iter_summary",
-			result.LastReActOutput = result.Response
+	})
-			sendProgress("progress", "总结生成完成", nil)
+	streamText, _ := a.callOpenAIStreamText(ctx, messages, []Tool{}, func(delta string) error {
-			return result, nil
+		sendProgress("response_delta", delta, map[string]interface{}{
-		}
+			"conversationId": conversationID,
 		})
 		return nil
 	})
 	if strings.TrimSpace(streamText) != "" {
 		result.Response = streamText
 		result.LastReActOutput = result.Response
 		sendProgress("progress", "总结生成完成", nil)
 		return result, nil
 	}
 	// 如果无法生成总结，返回友好的提示
@@ -1200,6 +1262,206 @@ func (a *Agent) callOpenAISingle(ctx context.Context, messages []ChatMessage, to
 	return &response, nil
 }
 // callOpenAISingleStreamText 单次调用OpenAI的流式模式，只用于“不会调用工具”的纯文本输出（tools 为空时最佳）。
 // onDelta 每收到一段 content delta，就回调一次；如果 callback 返回错误，会终止读取并返回错误。
 func (a *Agent) callOpenAISingleStreamText(ctx context.Context, messages []ChatMessage, tools []Tool, onDelta func(delta string) error) (string, error) {
 	reqBody := OpenAIRequest{
 		Model:    a.config.Model,
 		Messages: messages,
 		Stream:   true,
 	}
 	if len(tools) > 0 {
 		reqBody.Tools = tools
 	}
 	if a.openAIClient == nil {
 		return "", fmt.Errorf("OpenAI客户端未初始化")
 	}
 	return a.openAIClient.ChatCompletionStream(ctx, reqBody, onDelta)
 }
 // callOpenAIStreamText 调用OpenAI流式模式（带重试），仅在“未输出任何 delta”时才允许重试，避免重复发送已下发的内容。
 func (a *Agent) callOpenAIStreamText(ctx context.Context, messages []ChatMessage, tools []Tool, onDelta func(delta string) error) (string, error) {
 	maxRetries := 3
 	var lastErr error
 	for attempt := 0; attempt < maxRetries; attempt++ {
 		var deltasSent bool
 		full, err := a.callOpenAISingleStreamText(ctx, messages, tools, func(delta string) error {
 			deltasSent = true
 			return onDelta(delta)
 		})
 		if err == nil {
 			if attempt > 0 {
 				a.logger.Info("OpenAI stream 调用重试成功",
 					zap.Int("attempt", attempt+1),
 					zap.Int("maxRetries", maxRetries),
 				)
 			}
 			return full, nil
 		}
 		lastErr = err
 		// 已经开始输出了 delta，避免重复内容：直接失败让上层处理。
 		if deltasSent {
 			return "", err
 		}
 		if !a.isRetryableError(err) {
 			return "", err
 		}
 		if attempt < maxRetries-1 {
 			backoff := time.Duration(1<<uint(attempt+1)) * time.Second
 			if backoff > 30*time.Second {
 				backoff = 30 * time.Second
 			}
 			a.logger.Warn("OpenAI stream 调用失败，准备重试",
 				zap.Error(err),
 				zap.Int("attempt", attempt+1),
 				zap.Int("maxRetries", maxRetries),
 				zap.Duration("backoff", backoff),
 			)
 			select {
 			case <-ctx.Done():
 				return "", fmt.Errorf("上下文已取消: %w", ctx.Err())
 			case <-time.After(backoff):
 			}
 		}
 	}
 	return "", fmt.Errorf("重试%d次后仍然失败: %w", maxRetries, lastErr)
 }
 // callOpenAISingleStreamWithToolCalls 单次调用OpenAI流式模式（带工具调用解析），不包含重试逻辑。
 func (a *Agent) callOpenAISingleStreamWithToolCalls(
 	ctx context.Context,
 	messages []ChatMessage,
 	tools []Tool,
 	onContentDelta func(delta string) error,
 ) (*OpenAIResponse, error) {
 	reqBody := OpenAIRequest{
 		Model:    a.config.Model,
 		Messages: messages,
 		Stream:   true,
 	}
 	if len(tools) > 0 {
 		reqBody.Tools = tools
 	}
 	if a.openAIClient == nil {
 		return nil, fmt.Errorf("OpenAI客户端未初始化")
 	}
 	content, streamToolCalls, finishReason, err := a.openAIClient.ChatCompletionStreamWithToolCalls(ctx, reqBody, onContentDelta)
 	if err != nil {
 		return nil, err
 	}
 	toolCalls := make([]ToolCall, 0, len(streamToolCalls))
 	for _, stc := range streamToolCalls {
 		fnArgsStr := stc.FunctionArgsStr
 		args := make(map[string]interface{})
 		if strings.TrimSpace(fnArgsStr) != "" {
 			if err := json.Unmarshal([]byte(fnArgsStr), &args); err != nil {
 				// 兼容：arguments 不一定是严格 JSON
 				args = map[string]interface{}{"raw": fnArgsStr}
 			}
 		}
 		typ := stc.Type
 		if strings.TrimSpace(typ) == "" {
 			typ = "function"
 		}
 		toolCalls = append(toolCalls, ToolCall{
 			ID:   stc.ID,
 			Type: typ,
 			Function: FunctionCall{
 				Name:      stc.FunctionName,
 				Arguments: args,
 			},
 		})
 	}
 	response := &OpenAIResponse{
 		ID: "",
 		Choices: []Choice{
 			{
 				Message: MessageWithTools{
 					Role:      "assistant",
 					Content:   content,
 					ToolCalls: toolCalls,
 				},
 				FinishReason: finishReason,
 			},
 		},
 	}
 	return response, nil
 }
 // callOpenAIStreamWithToolCalls 调用OpenAI流式模式（带重试），仅当还没有输出任何 content delta 时才允许重试。
 func (a *Agent) callOpenAIStreamWithToolCalls(
 	ctx context.Context,
 	messages []ChatMessage,
 	tools []Tool,
 	onContentDelta func(delta string) error,
 ) (*OpenAIResponse, error) {
 	maxRetries := 3
 	var lastErr error
 	for attempt := 0; attempt < maxRetries; attempt++ {
 		deltasSent := false
 		resp, err := a.callOpenAISingleStreamWithToolCalls(ctx, messages, tools, func(delta string) error {
 			deltasSent = true
 			if onContentDelta != nil {
 				return onContentDelta(delta)
 			}
 			return nil
 		})
 		if err == nil {
 			if attempt > 0 {
 				a.logger.Info("OpenAI stream 调用重试成功",
 					zap.Int("attempt", attempt+1),
 					zap.Int("maxRetries", maxRetries),
 				)
 			}
 			return resp, nil
 		}
 		lastErr = err
 		if deltasSent {
 			// 已经开始输出了 delta：避免重复发送
 			return nil, err
 		}
 		if !a.isRetryableError(err) {
 			return nil, err
 		}
 		if attempt < maxRetries-1 {
 			backoff := time.Duration(1<<uint(attempt+1)) * time.Second
 			if backoff > 30*time.Second {
 				backoff = 30 * time.Second
 			}
 			a.logger.Warn("OpenAI stream 调用失败，准备重试",
 				zap.Error(err),
 				zap.Int("attempt", attempt+1),
 				zap.Int("maxRetries", maxRetries),
 				zap.Duration("backoff", backoff),
 			)
 			select {
 			case <-ctx.Done():
 				return nil, fmt.Errorf("上下文已取消: %w", ctx.Err())
 			case <-time.After(backoff):
 			}
 		}
 	}
 	return nil, fmt.Errorf("重试%d次后仍然失败: %w", maxRetries, lastErr)
 }
 // ToolExecutionResult 工具执行结果
 type ToolExecutionResult struct {
 	Result      string
@@ -1628,6 +1890,25 @@ func (a *Agent) repairOrphanToolMessages(messages *[]ChatMessage) bool {
 	return removed
 }
 // ToolsForRole 返回与单 Agent 循环一致的工具定义（OpenAI function 格式），供 Eino DeepAgent 等编排层绑定 MCP 工具。
 func (a *Agent) ToolsForRole(roleTools []string) []Tool {
 	return a.getAvailableTools(roleTools)
 }
 // ExecuteMCPToolForConversation 在指定会话上下文中执行 MCP 工具（行为与主 Agent 循环中的工具调用一致，如自动注入 conversation_id）。
 func (a *Agent) ExecuteMCPToolForConversation(ctx context.Context, conversationID, toolName string, args map[string]interface{}) (*ToolExecutionResult, error) {
 	a.mu.Lock()
 	prev := a.currentConversationID
 	a.currentConversationID = conversationID
 	a.mu.Unlock()
 	defer func() {
 		a.mu.Lock()
 		a.currentConversationID = prev
 		a.mu.Unlock()
 	}()
 	return a.executeToolViaMCP(ctx, toolName, args)
 }
 // extractQuotedToolName 尝试从错误信息中提取被引用的工具名称
 func extractQuotedToolName(errMsg string) string {
 	start := strings.Index(errMsg, "\"")
@@ -0,0 +1,449 @@
 // Package agents 从 agents/ 目录加载 Markdown 代理定义（子代理 + 可选主代理 orchestrator.md / kind: orchestrator）。
 package agents
 import (
 	"fmt"
 	"os"
 	"path/filepath"
 	"sort"
 	"strings"
 	"unicode"
 	"cyberstrike-ai/internal/config"
 	"gopkg.in/yaml.v3"
 )
 // OrchestratorMarkdownFilename 固定文件名：存在则视为 Deep 主代理定义，且不参与子代理列表。
 const OrchestratorMarkdownFilename = "orchestrator.md"
 // FrontMatter 对应 Markdown 文件头部字段（与文档示例一致）。
 type FrontMatter struct {
 	Name          string      `yaml:"name"`
 	ID            string      `yaml:"id"`
 	Description   string      `yaml:"description"`
 	Tools         interface{} `yaml:"tools"` // 字符串 "A, B" 或 []string
 	MaxIterations int         `yaml:"max_iterations"`
 	BindRole      string      `yaml:"bind_role,omitempty"`
 	Kind          string      `yaml:"kind,omitempty"` // orchestrator = 主代理（亦可仅用文件名 orchestrator.md）
 }
 // OrchestratorMarkdown 从 agents 目录解析出的主代理（Deep 协调者）定义。
 type OrchestratorMarkdown struct {
 	Filename    string
 	EinoName    string // 写入 deep.Config.Name / 流式事件过滤
 	DisplayName string
 	Description string
 	Instruction string
 }
 // MarkdownDirLoad 一次扫描 agents 目录的结果（子代理不含主代理文件）。
 type MarkdownDirLoad struct {
 	SubAgents    []config.MultiAgentSubConfig
 	Orchestrator *OrchestratorMarkdown
 	FileEntries  []FileAgent // 含主代理与所有子代理，供管理 API 列表
 }
 // IsOrchestratorMarkdown 判断该文件是否表示主代理：固定文件名 orchestrator.md，或 front matter kind: orchestrator。
 func IsOrchestratorMarkdown(filename string, fm FrontMatter) bool {
 	base := filepath.Base(strings.TrimSpace(filename))
 	if strings.EqualFold(base, OrchestratorMarkdownFilename) {
 		return true
 	}
 	return strings.EqualFold(strings.TrimSpace(fm.Kind), "orchestrator")
 }
 // WantsMarkdownOrchestrator 保存前判断是否会把该文件作为主代理（用于唯一性校验）。
 func WantsMarkdownOrchestrator(filename string, kindField string, raw string) bool {
 	if strings.EqualFold(strings.TrimSpace(kindField), "orchestrator") {
 		return true
 	}
 	base := filepath.Base(strings.TrimSpace(filename))
 	if strings.EqualFold(base, OrchestratorMarkdownFilename) {
 		return true
 	}
 	if strings.TrimSpace(raw) == "" {
 		return false
 	}
 	sub, err := ParseMarkdownSubAgent(filename, raw)
 	if err != nil {
 		return false
 	}
 	return strings.EqualFold(strings.TrimSpace(sub.Kind), "orchestrator")
 }
 // SplitFrontMatter 分离 YAML front matter 与正文（--- ... ---）。
 func SplitFrontMatter(content string) (frontYAML string, body string, err error) {
 	s := strings.TrimSpace(content)
 	if !strings.HasPrefix(s, "---") {
 		return "", s, nil
 	}
 	rest := strings.TrimPrefix(s, "---")
 	rest = strings.TrimLeft(rest, "\r\n")
 	end := strings.Index(rest, "\n---")
 	if end < 0 {
 		return "", "", fmt.Errorf("agents: 缺少结束的 --- 分隔符")
 	}
 	fm := strings.TrimSpace(rest[:end])
 	body = strings.TrimSpace(rest[end+4:])
 	body = strings.TrimLeft(body, "\r\n")
 	return fm, body, nil
 }
 func parseToolsField(v interface{}) []string {
 	if v == nil {
 		return nil
 	}
 	switch t := v.(type) {
 	case string:
 		return splitToolList(t)
 	case []interface{}:
 		var out []string
 		for _, x := range t {
 			if s, ok := x.(string); ok && strings.TrimSpace(s) != "" {
 				out = append(out, strings.TrimSpace(s))
 			}
 		}
 		return out
 	case []string:
 		var out []string
 		for _, s := range t {
 			if strings.TrimSpace(s) != "" {
 				out = append(out, strings.TrimSpace(s))
 			}
 		}
 		return out
 	default:
 		return nil
 	}
 }
 func splitToolList(s string) []string {
 	s = strings.TrimSpace(s)
 	if s == "" {
 		return nil
 	}
 	parts := strings.FieldsFunc(s, func(r rune) bool {
 		return r == ',' || r == ';' || r == '|'
 	})
 	var out []string
 	for _, p := range parts {
 		p = strings.TrimSpace(p)
 		if p != "" {
 			out = append(out, p)
 		}
 	}
 	return out
 }
 // SlugID 从 name 生成可用的代理 id（小写、连字符）。
 func SlugID(name string) string {
 	var b strings.Builder
 	name = strings.TrimSpace(strings.ToLower(name))
 	lastDash := false
 	for _, r := range name {
 		switch {
 		case unicode.IsLetter(r) && r < unicode.MaxASCII, unicode.IsDigit(r):
 			b.WriteRune(r)
 			lastDash = false
 		case r == ' ' || r == '_' || r == '/' || r == '.':
 			if !lastDash && b.Len() > 0 {
 				b.WriteByte('-')
 				lastDash = true
 			}
 		}
 	}
 	s := strings.Trim(b.String(), "-")
 	if s == "" {
 		return "agent"
 	}
 	return s
 }
 // sanitizeEinoAgentID 规范化 Deep 主代理在 Eino 中的 Name：小写 ASCII、数字、连字符，与默认 cyberstrike-deep 一致。
 func sanitizeEinoAgentID(s string) string {
 	s = strings.TrimSpace(strings.ToLower(s))
 	var b strings.Builder
 	for _, r := range s {
 		switch {
 		case unicode.IsLetter(r) && r < unicode.MaxASCII, unicode.IsDigit(r):
 			b.WriteRune(r)
 		case r == '-':
 			b.WriteRune(r)
 		}
 	}
 	out := strings.Trim(b.String(), "-")
 	if out == "" {
 		return "cyberstrike-deep"
 	}
 	return out
 }
 func parseMarkdownAgentRaw(filename string, content string) (FrontMatter, string, error) {
 	var fm FrontMatter
 	fmStr, body, err := SplitFrontMatter(content)
 	if err != nil {
 		return fm, "", err
 	}
 	if strings.TrimSpace(fmStr) == "" {
 		return fm, "", fmt.Errorf("agents: %s 无 YAML front matter", filename)
 	}
 	if err := yaml.Unmarshal([]byte(fmStr), &fm); err != nil {
 		return fm, "", fmt.Errorf("agents: 解析 front matter: %w", err)
 	}
 	return fm, body, nil
 }
 func orchestratorFromParsed(filename string, fm FrontMatter, body string) (*OrchestratorMarkdown, error) {
 	display := strings.TrimSpace(fm.Name)
 	if display == "" {
 		display = "Orchestrator"
 	}
 	rawID := strings.TrimSpace(fm.ID)
 	if rawID == "" {
 		rawID = SlugID(display)
 	}
 	eino := sanitizeEinoAgentID(rawID)
 	return &OrchestratorMarkdown{
 		Filename:    filepath.Base(strings.TrimSpace(filename)),
 		EinoName:    eino,
 		DisplayName: display,
 		Description: strings.TrimSpace(fm.Description),
 		Instruction: strings.TrimSpace(body),
 	}, nil
 }
 func orchestratorConfigFromOrchestrator(o *OrchestratorMarkdown) config.MultiAgentSubConfig {
 	if o == nil {
 		return config.MultiAgentSubConfig{}
 	}
 	return config.MultiAgentSubConfig{
 		ID:            o.EinoName,
 		Name:          o.DisplayName,
 		Description:   o.Description,
 		Instruction:   o.Instruction,
 		Kind:          "orchestrator",
 	}
 }
 func subAgentFromFrontMatter(filename string, fm FrontMatter, body string) (config.MultiAgentSubConfig, error) {
 	var out config.MultiAgentSubConfig
 	name := strings.TrimSpace(fm.Name)
 	if name == "" {
 		return out, fmt.Errorf("agents: %s 缺少 name 字段", filename)
 	}
 	id := strings.TrimSpace(fm.ID)
 	if id == "" {
 		id = SlugID(name)
 	}
 	out.ID = id
 	out.Name = name
 	out.Description = strings.TrimSpace(fm.Description)
 	out.Instruction = strings.TrimSpace(body)
 	out.RoleTools = parseToolsField(fm.Tools)
 	out.MaxIterations = fm.MaxIterations
 	out.BindRole = strings.TrimSpace(fm.BindRole)
 	out.Kind = strings.TrimSpace(fm.Kind)
 	return out, nil
 }
 func collectMarkdownBasenames(dir string) ([]string, error) {
 	if strings.TrimSpace(dir) == "" {
 		return nil, nil
 	}
 	st, err := os.Stat(dir)
 	if err != nil {
 		if os.IsNotExist(err) {
 			return nil, nil
 		}
 		return nil, err
 	}
 	if !st.IsDir() {
 		return nil, fmt.Errorf("agents: 不是目录: %s", dir)
 	}
 	entries, err := os.ReadDir(dir)
 	if err != nil {
 		return nil, err
 	}
 	var names []string
 	for _, e := range entries {
 		if e.IsDir() {
 			continue
 		}
 		n := e.Name()
 		if strings.HasPrefix(n, ".") {
 			continue
 		}
 		if !strings.EqualFold(filepath.Ext(n), ".md") {
 			continue
 		}
 		if strings.EqualFold(n, "README.md") {
 			continue
 		}
 		names = append(names, n)
 	}
 	sort.Strings(names)
 	return names, nil
 }
 // LoadMarkdownAgentsDir 扫描 agents 目录：拆出至多一个主代理与其余子代理。
 func LoadMarkdownAgentsDir(dir string) (*MarkdownDirLoad, error) {
 	out := &MarkdownDirLoad{}
 	names, err := collectMarkdownBasenames(dir)
 	if err != nil {
 		return nil, err
 	}
 	for _, n := range names {
 		p := filepath.Join(dir, n)
 		b, err := os.ReadFile(p)
 		if err != nil {
 			return nil, err
 		}
 		fm, body, err := parseMarkdownAgentRaw(n, string(b))
 		if err != nil {
 			return nil, fmt.Errorf("%s: %w", n, err)
 		}
 		if IsOrchestratorMarkdown(n, fm) {
 			if out.Orchestrator != nil {
 				return nil, fmt.Errorf("agents: 仅能定义一个主代理（Deep 协调者），已有 %s，又与 %s 冲突", out.Orchestrator.Filename, n)
 			}
 			orch, err := orchestratorFromParsed(n, fm, body)
 			if err != nil {
 				return nil, fmt.Errorf("%s: %w", n, err)
 			}
 			out.Orchestrator = orch
 			out.FileEntries = append(out.FileEntries, FileAgent{
 				Filename:       n,
 				Config:         orchestratorConfigFromOrchestrator(orch),
 				IsOrchestrator: true,
 			})
 			continue
 		}
 		sub, err := subAgentFromFrontMatter(n, fm, body)
 		if err != nil {
 			return nil, fmt.Errorf("%s: %w", n, err)
 		}
 		out.SubAgents = append(out.SubAgents, sub)
 		out.FileEntries = append(out.FileEntries, FileAgent{Filename: n, Config: sub, IsOrchestrator: false})
 	}
 	return out, nil
 }
 // ParseMarkdownSubAgent 将单个 Markdown 文件解析为 MultiAgentSubConfig。
 func ParseMarkdownSubAgent(filename string, content string) (config.MultiAgentSubConfig, error) {
 	fm, body, err := parseMarkdownAgentRaw(filename, content)
 	if err != nil {
 		return config.MultiAgentSubConfig{}, err
 	}
 	if IsOrchestratorMarkdown(filename, fm) {
 		orch, err := orchestratorFromParsed(filename, fm, body)
 		if err != nil {
 			return config.MultiAgentSubConfig{}, err
 		}
 		return orchestratorConfigFromOrchestrator(orch), nil
 	}
 	return subAgentFromFrontMatter(filename, fm, body)
 }
 // LoadMarkdownSubAgents 读取目录下所有子代理 .md（不含主代理 orchestrator.md / kind: orchestrator）。
 func LoadMarkdownSubAgents(dir string) ([]config.MultiAgentSubConfig, error) {
 	load, err := LoadMarkdownAgentsDir(dir)
 	if err != nil {
 		return nil, err
 	}
 	return load.SubAgents, nil
 }
 // FileAgent 单个 Markdown 文件及其解析结果。
 type FileAgent struct {
 	Filename       string
 	Config         config.MultiAgentSubConfig
 	IsOrchestrator bool
 }
 // LoadMarkdownAgentFiles 列出目录下全部 .md（含主代理），供管理 API 使用。
 func LoadMarkdownAgentFiles(dir string) ([]FileAgent, error) {
 	load, err := LoadMarkdownAgentsDir(dir)
 	if err != nil {
 		return nil, err
 	}
 	return load.FileEntries, nil
 }
 // MergeYAMLAndMarkdown 合并 config.yaml 中的 sub_agents 与 Markdown 定义：同 id 时 Markdown 覆盖 YAML；仅存在于 Markdown 的条目追加在 YAML 顺序之后。
 func MergeYAMLAndMarkdown(yamlSubs []config.MultiAgentSubConfig, mdSubs []config.MultiAgentSubConfig) []config.MultiAgentSubConfig {
 	mdByID := make(map[string]config.MultiAgentSubConfig)
 	for _, m := range mdSubs {
 		id := strings.TrimSpace(m.ID)
 		if id == "" {
 			continue
 		}
 		mdByID[id] = m
 	}
 	yamlIDSet := make(map[string]bool)
 	for _, y := range yamlSubs {
 		yamlIDSet[strings.TrimSpace(y.ID)] = true
 	}
 	out := make([]config.MultiAgentSubConfig, 0, len(yamlSubs)+len(mdSubs))
 	for _, y := range yamlSubs {
 		id := strings.TrimSpace(y.ID)
 		if id == "" {
 			continue
 		}
 		if m, ok := mdByID[id]; ok {
 			out = append(out, m)
 		} else {
 			out = append(out, y)
 		}
 	}
 	for _, m := range mdSubs {
 		id := strings.TrimSpace(m.ID)
 		if id == "" || yamlIDSet[id] {
 			continue
 		}
 		out = append(out, m)
 	}
 	return out
 }
 // EffectiveSubAgents 供多代理运行时使用。
 func EffectiveSubAgents(yamlSubs []config.MultiAgentSubConfig, agentsDir string) ([]config.MultiAgentSubConfig, error) {
 	md, err := LoadMarkdownSubAgents(agentsDir)
 	if err != nil {
 		return nil, err
 	}
 	if len(md) == 0 {
 		return yamlSubs, nil
 	}
 	return MergeYAMLAndMarkdown(yamlSubs, md), nil
 }
 // BuildMarkdownFile 根据配置序列化为可写回磁盘的 Markdown。
 func BuildMarkdownFile(sub config.MultiAgentSubConfig) ([]byte, error) {
 	fm := FrontMatter{
 		Name:          sub.Name,
 		ID:            sub.ID,
 		Description:   sub.Description,
 		MaxIterations: sub.MaxIterations,
 		BindRole:      sub.BindRole,
 	}
 	if k := strings.TrimSpace(sub.Kind); k != "" {
 		fm.Kind = k
 	}
 	if len(sub.RoleTools) > 0 {
 		fm.Tools = sub.RoleTools
 	}
 	head, err := yaml.Marshal(fm)
 	if err != nil {
 		return nil, err
 	}
 	var b strings.Builder
 	b.WriteString("---\n")
 	b.Write(head)
 	b.WriteString("---\n\n")
 	b.WriteString(strings.TrimSpace(sub.Instruction))
 	if !strings.HasSuffix(sub.Instruction, "\n") && sub.Instruction != "" {
 		b.WriteString("\n")
 	}
 	return []byte(b.String()), nil
 }
@@ -0,0 +1,66 @@
 package agents
 import (
 	"os"
 	"path/filepath"
 	"testing"
 )
 func TestLoadMarkdownAgentsDir_OrchestratorExcludedFromSubs(t *testing.T) {
 	dir := t.TempDir()
 	orch := filepath.Join(dir, OrchestratorMarkdownFilename)
 	if err := os.WriteFile(orch, []byte(`---
 id: cyberstrike-deep
 name: Main
 description: Test desc
 ---
 Hello orchestrator
 `), 0644); err != nil {
 		t.Fatal(err)
 	}
 	subPath := filepath.Join(dir, "worker.md")
 	if err := os.WriteFile(subPath, []byte(`---
 id: worker
 name: Worker
 description: W
 ---
 Do work
 `), 0644); err != nil {
 		t.Fatal(err)
 	}
 	load, err := LoadMarkdownAgentsDir(dir)
 	if err != nil {
 		t.Fatal(err)
 	}
 	if load.Orchestrator == nil || load.Orchestrator.EinoName != "cyberstrike-deep" {
 		t.Fatalf("orchestrator: %+v", load.Orchestrator)
 	}
 	if len(load.SubAgents) != 1 || load.SubAgents[0].ID != "worker" {
 		t.Fatalf("subs: %+v", load.SubAgents)
 	}
 	if len(load.FileEntries) != 2 {
 		t.Fatalf("file entries: %d", len(load.FileEntries))
 	}
 	var orchFile *FileAgent
 	for i := range load.FileEntries {
 		if load.FileEntries[i].IsOrchestrator {
 			orchFile = &load.FileEntries[i]
 			break
 		}
 	}
 	if orchFile == nil || orchFile.Filename != OrchestratorMarkdownFilename {
 		t.Fatal("missing orchestrator file entry")
 	}
 }
 func TestLoadMarkdownAgentsDir_DuplicateOrchestrator(t *testing.T) {
 	dir := t.TempDir()
 	_ = os.WriteFile(filepath.Join(dir, OrchestratorMarkdownFilename), []byte("---\nname: A\n---\n\nx\n"), 0644)
 	_ = os.WriteFile(filepath.Join(dir, "b.md"), []byte("---\nname: B\nkind: orchestrator\n---\n\ny\n"), 0644)
 	_, err := LoadMarkdownAgentsDir(dir)
 	if err == nil {
 		t.Fatal("expected duplicate orchestrator error")
 	}
 }
@@ -298,6 +298,19 @@ func New(cfg *config.Config, log *logger.Logger) (*App, error) {
 	skillsManager := skills.NewManager(skillsDir, log.Logger)
 	log.Logger.Info("Skills管理器已初始化", zap.String("skillsDir", skillsDir))
 	agentsDir := cfg.AgentsDir
 	if agentsDir == "" {
 		agentsDir = "agents"
 	}
 	if !filepath.IsAbs(agentsDir) {
 		agentsDir = filepath.Join(configDir, agentsDir)
 	}
 	if err := os.MkdirAll(agentsDir, 0755); err != nil {
 		log.Logger.Warn("创建 agents 目录失败", zap.String("path", agentsDir), zap.Error(err))
 	}
 	markdownAgentsHandler := handler.NewMarkdownAgentsHandler(agentsDir)
 	log.Logger.Info("多代理 Markdown 子 Agent 目录", zap.String("agentsDir", agentsDir))
 	// 注册Skills工具到MCP服务器（让AI可以按需调用，带数据库存储支持统计）
 	// 创建一个适配器，将database.DB适配为SkillStatsStorage接口
 	var skillStatsStorage skills.SkillStatsStorage
@@ -309,6 +322,7 @@ func New(cfg *config.Config, log *logger.Logger) (*App, error) {
 	// 创建处理器
 	agentHandler := handler.NewAgentHandler(agent, db, cfg, log.Logger)
 	agentHandler.SetSkillsManager(skillsManager) // 设置Skills管理器
 	agentHandler.SetAgentsMarkdownDir(agentsDir)
 	// 如果知识库已启用，设置知识库管理器到AgentHandler以便记录检索日志
 	if knowledgeManager != nil {
 		agentHandler.SetKnowledgeManager(knowledgeManager)
@@ -320,6 +334,7 @@ func New(cfg *config.Config, log *logger.Logger) (*App, error) {
 	attackChainHandler := handler.NewAttackChainHandler(db, &cfg.OpenAI, log.Logger)
 	vulnerabilityHandler := handler.NewVulnerabilityHandler(db, log.Logger)
 	webshellHandler := handler.NewWebShellHandler(log.Logger, db)
 	chatUploadsHandler := handler.NewChatUploadsHandler(log.Logger)
 	registerWebshellTools(mcpServer, db, webshellHandler, log.Logger)
 	configHandler := handler.NewConfigHandler(configPath, cfg, mcpServer, executor, agent, attackChainHandler, externalMCPMgr, log.Logger)
 	externalMCPHandler := handler.NewExternalMCPHandler(externalMCPMgr, cfg, configPath, log.Logger)
@@ -439,8 +454,10 @@ func New(cfg *config.Config, log *logger.Logger) (*App, error) {
 		app, // 传递 App 实例以便动态获取 knowledgeHandler
 		vulnerabilityHandler,
 		webshellHandler,
 		chatUploadsHandler,
 		roleHandler,
 		skillsHandler,
 		markdownAgentsHandler,
 		fofaHandler,
 		terminalHandler,
 		mcpServer,
@@ -567,8 +584,10 @@ func setupRoutes(
 	app *App, // 传递 App 实例以便动态获取 knowledgeHandler
 	vulnerabilityHandler *handler.VulnerabilityHandler,
 	webshellHandler *handler.WebShellHandler,
 	chatUploadsHandler *handler.ChatUploadsHandler,
 	roleHandler *handler.RoleHandler,
 	skillsHandler *handler.SkillsHandler,
 	markdownAgentsHandler *handler.MarkdownAgentsHandler,
 	fofaHandler *handler.FofaHandler,
 	terminalHandler *handler.TerminalHandler,
 	mcpServer *mcp.Server,
@@ -608,6 +627,16 @@ func setupRoutes(
 		protected.GET("/agent-loop/tasks", agentHandler.ListAgentTasks)
 		protected.GET("/agent-loop/tasks/completed", agentHandler.ListCompletedTasks)
 		// Eino DeepAgent 多代理（与单 Agent 并存，需 config.multi_agent.enabled）
 		// 多代理路由常注册；是否可用由运行时 h.config.MultiAgent.Enabled 决定（应用配置后无需重启）
 		protected.POST("/multi-agent", agentHandler.MultiAgentLoop)
 		protected.POST("/multi-agent/stream", agentHandler.MultiAgentLoopStream)
 		protected.GET("/multi-agent/markdown-agents", markdownAgentsHandler.ListMarkdownAgents)
 		protected.GET("/multi-agent/markdown-agents/:filename", markdownAgentsHandler.GetMarkdownAgent)
 		protected.POST("/multi-agent/markdown-agents", markdownAgentsHandler.CreateMarkdownAgent)
 		protected.PUT("/multi-agent/markdown-agents/:filename", markdownAgentsHandler.UpdateMarkdownAgent)
 		protected.DELETE("/multi-agent/markdown-agents/:filename", markdownAgentsHandler.DeleteMarkdownAgent)
 		// 信息收集 - FOFA 查询（后端代理）
 		protected.POST("/fofa/search", fofaHandler.Search)
 		// 信息收集 - 自然语言解析为 FOFA 语法（需人工确认后再查询）
@@ -833,11 +862,23 @@ func setupRoutes(
 		protected.POST("/webshell/connections", webshellHandler.CreateConnection)
 		protected.GET("/webshell/connections/:id/ai-history", webshellHandler.GetAIHistory)
 		protected.GET("/webshell/connections/:id/ai-conversations", webshellHandler.ListAIConversations)
 		protected.GET("/webshell/connections/:id/state", webshellHandler.GetConnectionState)
 		protected.PUT("/webshell/connections/:id", webshellHandler.UpdateConnection)
 		protected.PUT("/webshell/connections/:id/state", webshellHandler.SaveConnectionState)
 		protected.DELETE("/webshell/connections/:id", webshellHandler.DeleteConnection)
 		protected.POST("/webshell/exec", webshellHandler.Exec)
 		protected.POST("/webshell/file", webshellHandler.FileOp)
 		// 对话附件（chat_uploads）管理
 		protected.GET("/chat-uploads", chatUploadsHandler.List)
 		protected.GET("/chat-uploads/download", chatUploadsHandler.Download)
 		protected.GET("/chat-uploads/content", chatUploadsHandler.GetContent)
 		protected.POST("/chat-uploads", chatUploadsHandler.Upload)
 		protected.POST("/chat-uploads/mkdir", chatUploadsHandler.Mkdir)
 		protected.DELETE("/chat-uploads", chatUploadsHandler.Delete)
 		protected.PUT("/chat-uploads/rename", chatUploadsHandler.Rename)
 		protected.PUT("/chat-uploads/content", chatUploadsHandler.PutContent)
 		// 角色管理
 		protected.GET("/roles", roleHandler.GetRoles)
 		protected.GET("/roles/:name", roleHandler.GetRole)
@@ -1134,7 +1175,7 @@ func registerWebshellTools(mcpServer *mcp.Server, db *database.DB, webshellHandl
 			"type": "object",
 			"properties": map[string]interface{}{
 				"connection_id": map[string]interface{}{"type": "string", "description": "WebShell 连接 ID"},
-				"path": map[string]interface{}{"type": "string", "description": "目录路径，默认 ."},
+				"path":          map[string]interface{}{"type": "string", "description": "目录路径，默认 ."},
 			},
 			"required": []string{"connection_id"},
 		},
@@ -1166,7 +1207,7 @@ func registerWebshellTools(mcpServer *mcp.Server, db *database.DB, webshellHandl
 			"type": "object",
 			"properties": map[string]interface{}{
 				"connection_id": map[string]interface{}{"type": "string", "description": "WebShell 连接 ID"},
-				"path": map[string]interface{}{"type": "string", "description": "文件路径"},
+				"path":          map[string]interface{}{"type": "string", "description": "文件路径"},
 			},
 			"required": []string{"connection_id", "path"},
 		},
@@ -1198,8 +1239,8 @@ func registerWebshellTools(mcpServer *mcp.Server, db *database.DB, webshellHandl
 			"type": "object",
 			"properties": map[string]interface{}{
 				"connection_id": map[string]interface{}{"type": "string", "description": "WebShell 连接 ID"},
-				"path": map[string]interface{}{"type": "string", "description": "文件路径"},
+				"path":          map[string]interface{}{"type": "string", "description": "文件路径"},
-				"content": map[string]interface{}{"type": "string", "description": "要写入的内容"},
+				"content":       map[string]interface{}{"type": "string", "description": "要写入的内容"},
 			},
 			"required": []string{"connection_id", "path", "content"},
 		},
@@ -31,23 +31,68 @@ type Config struct {
 	RolesDir    string                `yaml:"roles_dir,omitempty" json:"roles_dir,omitempty"`   // 角色配置文件目录（新方式）
 	Roles       map[string]RoleConfig `yaml:"roles,omitempty" json:"roles,omitempty"`           // 向后兼容：支持在主配置文件中定义角色
 	SkillsDir   string                `yaml:"skills_dir,omitempty" json:"skills_dir,omitempty"` // Skills配置文件目录
 	AgentsDir   string                `yaml:"agents_dir,omitempty" json:"agents_dir,omitempty"` // 多代理子 Agent Markdown 定义目录（*.md，YAML front matter）
 	MultiAgent  MultiAgentConfig      `yaml:"multi_agent,omitempty" json:"multi_agent,omitempty"`
 }
 // MultiAgentConfig 基于 CloudWeGo Eino DeepAgent 的多代理编排（与单 Agent /agent-loop 并存）。
 type MultiAgentConfig struct {
 	Enabled                 bool                  `yaml:"enabled" json:"enabled"`
 	DefaultMode             string                `yaml:"default_mode" json:"default_mode"`                   // single | multi，供前端默认展示
 	RobotUseMultiAgent      bool                  `yaml:"robot_use_multi_agent" json:"robot_use_multi_agent"` // 为 true 时钉钉/飞书/企微机器人走 Eino 多代理
 	BatchUseMultiAgent      bool                  `yaml:"batch_use_multi_agent" json:"batch_use_multi_agent"` // 为 true 时批量任务队列中每子任务走 Eino 多代理
 	MaxIteration            int                   `yaml:"max_iteration" json:"max_iteration"`                 // Deep 主代理最大推理轮次
 	SubAgentMaxIterations   int                   `yaml:"sub_agent_max_iterations" json:"sub_agent_max_iterations"`
 	WithoutGeneralSubAgent  bool                  `yaml:"without_general_sub_agent" json:"without_general_sub_agent"`
 	WithoutWriteTodos       bool                  `yaml:"without_write_todos" json:"without_write_todos"`
 	OrchestratorInstruction string                `yaml:"orchestrator_instruction" json:"orchestrator_instruction"`
 	SubAgents               []MultiAgentSubConfig `yaml:"sub_agents" json:"sub_agents"`
 }
 // MultiAgentSubConfig 子代理（Eino ChatModelAgent），由 DeepAgent 通过 task 工具调度。
 type MultiAgentSubConfig struct {
 	ID            string   `yaml:"id" json:"id"`
 	Name          string   `yaml:"name" json:"name"`
 	Description   string   `yaml:"description" json:"description"`
 	Instruction   string   `yaml:"instruction" json:"instruction"`
 	BindRole      string   `yaml:"bind_role,omitempty" json:"bind_role,omitempty"` // 可选：关联主配置 roles 中的角色名；未配 role_tools 时沿用该角色的 tools，并把 skills 写入指令提示
 	RoleTools     []string `yaml:"role_tools" json:"role_tools"`                   // 与单 Agent 角色工具相同 key；空表示全部工具（bind_role 可补全 tools）
 	MaxIterations int      `yaml:"max_iterations" json:"max_iterations"`
 	Kind          string   `yaml:"kind,omitempty" json:"kind,omitempty"` // 仅 Markdown：kind=orchestrator 表示 Deep 主代理（与 orchestrator.md 二选一约定）
 }
 // MultiAgentPublic 返回给前端的精简信息（不含子代理指令全文）。
 type MultiAgentPublic struct {
 	Enabled            bool   `json:"enabled"`
 	DefaultMode        string `json:"default_mode"`
 	RobotUseMultiAgent bool   `json:"robot_use_multi_agent"`
 	BatchUseMultiAgent bool   `json:"batch_use_multi_agent"`
 	SubAgentCount      int    `json:"sub_agent_count"`
 }
 // MultiAgentAPIUpdate 设置页/API 仅更新多代理标量字段；写入 YAML 时不覆盖 sub_agents 等块。
 type MultiAgentAPIUpdate struct {
 	Enabled            bool   `json:"enabled"`
 	DefaultMode        string `json:"default_mode"`
 	RobotUseMultiAgent bool   `json:"robot_use_multi_agent"`
 	BatchUseMultiAgent bool   `json:"batch_use_multi_agent"`
 }
 // RobotsConfig 机器人配置（企业微信、钉钉、飞书等）
 type RobotsConfig struct {
-	Wecom   RobotWecomConfig   `yaml:"wecom,omitempty" json:"wecom,omitempty"`     // 企业微信
+	Wecom    RobotWecomConfig    `yaml:"wecom,omitempty" json:"wecom,omitempty"`       // 企业微信
 	Dingtalk RobotDingtalkConfig `yaml:"dingtalk,omitempty" json:"dingtalk,omitempty"` // 钉钉
-	Lark    RobotLarkConfig    `yaml:"lark,omitempty" json:"lark,omitempty"`     // 飞书
+	Lark     RobotLarkConfig     `yaml:"lark,omitempty" json:"lark,omitempty"`         // 飞书
 }
 // RobotWecomConfig 企业微信机器人配置
 type RobotWecomConfig struct {
-	Enabled       bool   `yaml:"enabled" json:"enabled"`
+	Enabled        bool   `yaml:"enabled" json:"enabled"`
-	Token         string `yaml:"token" json:"token"`                     // 回调 URL 校验 Token
+	Token          string `yaml:"token" json:"token"`                       // 回调 URL 校验 Token
 	EncodingAESKey string `yaml:"encoding_aes_key" json:"encoding_aes_key"` // EncodingAESKey
-	CorpID        string `yaml:"corp_id" json:"corp_id"`               // 企业 ID
+	CorpID         string `yaml:"corp_id" json:"corp_id"`                   // 企业 ID
-	Secret        string `yaml:"secret" json:"secret"`                  // 应用 Secret
+	Secret         string `yaml:"secret" json:"secret"`                     // 应用 Secret
-	AgentID       int64  `yaml:"agent_id" json:"agent_id"`              // 应用 AgentId
+	AgentID        int64  `yaml:"agent_id" json:"agent_id"`                 // 应用 AgentId
 }
 // RobotDingtalkConfig 钉钉机器人配置
@@ -59,9 +104,9 @@ type RobotDingtalkConfig struct {
 // RobotLarkConfig 飞书机器人配置
 type RobotLarkConfig struct {
-	Enabled   bool   `yaml:"enabled" json:"enabled"`
+	Enabled     bool   `yaml:"enabled" json:"enabled"`
-	AppID     string `yaml:"app_id" json:"app_id"`         // 应用 App ID
+	AppID       string `yaml:"app_id" json:"app_id"`             // 应用 App ID
-	AppSecret string `yaml:"app_secret" json:"app_secret"` // 应用 App Secret
+	AppSecret   string `yaml:"app_secret" json:"app_secret"`     // 应用 App Secret
 	VerifyToken string `yaml:"verify_token" json:"verify_token"` // 事件订阅 Verification Token（可选）
 }
@@ -79,7 +124,7 @@ type MCPConfig struct {
 	Enabled         bool   `yaml:"enabled"`
 	Host            string `yaml:"host"`
 	Port            int    `yaml:"port"`
-	AuthHeader      string `yaml:"auth_header,omitempty"`      // 鉴权 header 名，留空表示不鉴权
+	AuthHeader      string `yaml:"auth_header,omitempty"`       // 鉴权 header 名，留空表示不鉴权
 	AuthHeaderValue string `yaml:"auth_header_value,omitempty"` // 鉴权 header 值，需与请求中该 header 一致
 }
@@ -164,17 +209,17 @@ type ToolConfig struct {
 // ParameterConfig 参数配置
 type ParameterConfig struct {
-	Name        string      `yaml:"name"`                  // 参数名称
+	Name        string      `yaml:"name"`                // 参数名称
-	Type        string      `yaml:"type"`                  // 参数类型: string, int, bool, array
+	Type        string      `yaml:"type"`                // 参数类型: string, int, bool, array
-	Description string      `yaml:"description"`           // 参数描述
+	Description string      `yaml:"description"`         // 参数描述
-	Required    bool        `yaml:"required,omitempty"`    // 是否必需
+	Required    bool        `yaml:"required,omitempty"`  // 是否必需
-	Default     interface{} `yaml:"default,omitempty"`      // 默认值
+	Default     interface{} `yaml:"default,omitempty"`   // 默认值
-	ItemType    string      `yaml:"item_type,omitempty"`    // 当 type 为 array 时，数组元素类型，如 string, number, object
+	ItemType    string      `yaml:"item_type,omitempty"` // 当 type 为 array 时，数组元素类型，如 string, number, object
-	Flag        string      `yaml:"flag,omitempty"`         // 命令行标志，如 "-u", "--url", "-p"
+	Flag        string      `yaml:"flag,omitempty"`      // 命令行标志，如 "-u", "--url", "-p"
-	Position    *int        `yaml:"position,omitempty"`     // 位置参数的位置（从0开始）
+	Position    *int        `yaml:"position,omitempty"`  // 位置参数的位置（从0开始）
-	Format      string      `yaml:"format,omitempty"`      // 参数格式: "flag", "positional", "combined" (flag=value), "template"
+	Format      string      `yaml:"format,omitempty"`    // 参数格式: "flag", "positional", "combined" (flag=value), "template"
-	Template    string      `yaml:"template,omitempty"`    // 模板字符串，如 "{flag} {value}" 或 "{value}"
+	Template    string      `yaml:"template,omitempty"`  // 模板字符串，如 "{flag} {value}" 或 "{value}"
-	Options     []string    `yaml:"options,omitempty"`     // 可选值列表（用于枚举）
+	Options     []string    `yaml:"options,omitempty"`   // 可选值列表（用于枚举）
 }
 func Load(path string) (*Config, error) {
@@ -683,8 +728,8 @@ func Default() *Config {
 			MaxTotalTokens: 120000,
 		},
 		Agent: AgentConfig{
-			MaxIterations:      30,  // 默认最大迭代次数
+			MaxIterations:      30, // 默认最大迭代次数
-			ToolTimeoutMinutes: 10,  // 单次工具执行默认最多 10 分钟，避免异常长时间占用
+			ToolTimeoutMinutes: 10, // 单次工具执行默认最多 10 分钟，避免异常长时间占用
 		},
 		Security: SecurityConfig{
 			Tools:    []ToolConfig{}, // 工具配置应该从 config.yaml 或 tools/ 目录加载
@@ -711,11 +756,11 @@ func Default() *Config {
 				HybridWeight:        0.7,
 			},
 			Indexing: IndexingConfig{
-				ChunkSize:        768,   // 增加到 768，更好的上下文保持
+				ChunkSize:        768, // 增加到 768，更好的上下文保持
 				ChunkOverlap:     50,
-				MaxChunksPerItem: 20,    // 限制单个知识项最多 20 个块，避免消耗过多配额
+				MaxChunksPerItem: 20,  // 限制单个知识项最多 20 个块，避免消耗过多配额
-				MaxRPM:           100,   // 默认 100 RPM，避免 429 错误
+				MaxRPM:           100, // 默认 100 RPM，避免 429 错误
-				RateLimitDelayMs: 600,   // 600ms 间隔，对应 100 RPM
+				RateLimitDelayMs: 600, // 600ms 间隔，对应 100 RPM
 				MaxRetries:       3,
 				RetryDelayMs:     1000,
 			},
@@ -735,20 +780,20 @@ type KnowledgeConfig struct {
 // IndexingConfig 索引构建配置（用于控制知识库索引构建时的行为）
 type IndexingConfig struct {
 	// 分块配置
-	ChunkSize       int `yaml:"chunk_size,omitempty" json:"chunk_size,omitempty"`           // 每个块的最大 token 数（估算），默认 512
+	ChunkSize        int `yaml:"chunk_size,omitempty" json:"chunk_size,omitempty"`                   // 每个块的最大 token 数（估算），默认 512
-	ChunkOverlap    int `yaml:"chunk_overlap,omitempty" json:"chunk_overlap,omitempty"`     // 块之间的重叠 token 数，默认 50
+	ChunkOverlap     int `yaml:"chunk_overlap,omitempty" json:"chunk_overlap,omitempty"`             // 块之间的重叠 token 数，默认 50
 	MaxChunksPerItem int `yaml:"max_chunks_per_item,omitempty" json:"max_chunks_per_item,omitempty"` // 单个知识项的最大块数量，0 表示不限制
 	// 速率限制配置（用于避免 API 速率限制）
 	RateLimitDelayMs int `yaml:"rate_limit_delay_ms,omitempty" json:"rate_limit_delay_ms,omitempty"` // 请求间隔时间（毫秒），0 表示不使用固定延迟
-	MaxRPM          int `yaml:"max_rpm,omitempty" json:"max_rpm,omitempty"`                         // 每分钟最大请求数，0 表示不限制
+	MaxRPM           int `yaml:"max_rpm,omitempty" json:"max_rpm,omitempty"`                         // 每分钟最大请求数，0 表示不限制
 	// 重试配置（用于处理临时错误）
-	MaxRetries     int `yaml:"max_retries,omitempty" json:"max_retries,omitempty"`       // 最大重试次数，默认 3
+	MaxRetries   int `yaml:"max_retries,omitempty" json:"max_retries,omitempty"`       // 最大重试次数，默认 3
-	RetryDelayMs   int `yaml:"retry_delay_ms,omitempty" json:"retry_delay_ms,omitempty"` // 重试间隔（毫秒），默认 1000
+	RetryDelayMs int `yaml:"retry_delay_ms,omitempty" json:"retry_delay_ms,omitempty"` // 重试间隔（毫秒），默认 1000
 	// 批处理配置（用于批量嵌入，当前未使用，保留扩展）
-	BatchSize      int `yaml:"batch_size,omitempty" json:"batch_size,omitempty"`         // 批量处理大小，0 表示逐个处理
+	BatchSize int `yaml:"batch_size,omitempty" json:"batch_size,omitempty"` // 批量处理大小，0 表示逐个处理
 }
 // EmbeddingConfig 嵌入配置
@@ -240,6 +240,15 @@ func (db *DB) initTables() error {
 		created_at DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP
 	);`
 	// 创建 WebShell 连接扩展状态表（前端工作区/终端状态持久化）
 	createWebshellConnectionStatesTable := `
 	CREATE TABLE IF NOT EXISTS webshell_connection_states (
 		connection_id TEXT PRIMARY KEY,
 		state_json TEXT NOT NULL DEFAULT '{}',
 		updated_at DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
 		FOREIGN KEY (connection_id) REFERENCES webshell_connections(id) ON DELETE CASCADE
 	);`
 	// 创建索引
 	createIndexes := `
 	CREATE INDEX IF NOT EXISTS idx_messages_conversation_id ON messages(conversation_id);
@@ -267,6 +276,7 @@ func (db *DB) initTables() error {
 	CREATE INDEX IF NOT EXISTS idx_batch_task_queues_created_at ON batch_task_queues(created_at);
 	CREATE INDEX IF NOT EXISTS idx_batch_task_queues_title ON batch_task_queues(title);
 	CREATE INDEX IF NOT EXISTS idx_webshell_connections_created_at ON webshell_connections(created_at);
 	CREATE INDEX IF NOT EXISTS idx_webshell_connection_states_updated_at ON webshell_connection_states(updated_at);
 	`
 	if _, err := db.Exec(createConversationsTable); err != nil {
@@ -329,6 +339,10 @@ func (db *DB) initTables() error {
 		return fmt.Errorf("创建webshell_connections表失败: %w", err)
 	}
 	if _, err := db.Exec(createWebshellConnectionStatesTable); err != nil {
 		return fmt.Errorf("创建webshell_connection_states表失败: %w", err)
 	}
 	// 为已有表添加新字段（如果不存在）- 必须在创建索引之前
 	if err := db.migrateConversationsTable(); err != nil {
 		db.logger.Warn("迁移conversations表失败", zap.Error(err))
@@ -19,6 +19,42 @@ type WebShellConnection struct {
 	CreatedAt time.Time `json:"createdAt"`
 }
 // GetWebshellConnectionState 获取连接关联的持久化状态 JSON，不存在时返回 "{}"
 func (db *DB) GetWebshellConnectionState(connectionID string) (string, error) {
 	var stateJSON string
 	err := db.QueryRow(`SELECT state_json FROM webshell_connection_states WHERE connection_id = ?`, connectionID).Scan(&stateJSON)
 	if err == sql.ErrNoRows {
 		return "{}", nil
 	}
 	if err != nil {
 		db.logger.Error("查询 WebShell 连接状态失败", zap.Error(err), zap.String("connectionID", connectionID))
 		return "", err
 	}
 	if stateJSON == "" {
 		stateJSON = "{}"
 	}
 	return stateJSON, nil
 }
 // UpsertWebshellConnectionState 保存连接关联的持久化状态 JSON
 func (db *DB) UpsertWebshellConnectionState(connectionID, stateJSON string) error {
 	if stateJSON == "" {
 		stateJSON = "{}"
 	}
 	query := `
 		INSERT INTO webshell_connection_states (connection_id, state_json, updated_at)
 		VALUES (?, ?, ?)
 		ON CONFLICT(connection_id) DO UPDATE SET
 			state_json = excluded.state_json,
 			updated_at = excluded.updated_at
 	`
 	if _, err := db.Exec(query, connectionID, stateJSON, time.Now()); err != nil {
 		db.logger.Error("保存 WebShell 连接状态失败", zap.Error(err), zap.String("connectionID", connectionID))
 		return err
 	}
 	return nil
 }
 // ListWebshellConnections 列出所有 WebShell 连接，按创建时间倒序
 func (db *DB) ListWebshellConnections() ([]WebShellConnection, error) {
 	query := `
@@ -0,0 +1,21 @@
 package einomcp
 import "sync"
 // ConversationHolder 在每次 DeepAgent 运行前写入会话 ID，供 MCP 工具桥接使用。
 type ConversationHolder struct {
 	mu sync.RWMutex
 	id string
 }
 func (h *ConversationHolder) Set(id string) {
 	h.mu.Lock()
 	h.id = id
 	h.mu.Unlock()
 }
 func (h *ConversationHolder) Get() string {
 	h.mu.RLock()
 	defer h.mu.RUnlock()
 	return h.id
 }
@@ -0,0 +1,145 @@
 package einomcp
 import (
 	"context"
 	"encoding/json"
 	"fmt"
 	"strings"
 	"cyberstrike-ai/internal/agent"
 	"cyberstrike-ai/internal/security"
 	"github.com/cloudwego/eino/components/tool"
 	"github.com/cloudwego/eino/compose"
 	"github.com/cloudwego/eino/schema"
 	"github.com/eino-contrib/jsonschema"
 )
 // ExecutionRecorder 可选，在 MCP 工具成功返回且带有 execution id 时回调（用于汇总 mcpExecutionIds）。
 type ExecutionRecorder func(executionID string)
 // ToolErrorPrefix 用于把内部 MCP 执行结果中的 IsError 标记传递到多代理上层。
 // Eino 工具通道目前只支持返回字符串，因此通过前缀标识，随后在多代理 runner 中解析为 success/isError。
 const ToolErrorPrefix = "__CYBERSTRIKE_AI_TOOL_ERROR__\n"
 // ToolsFromDefinitions 将单 Agent 使用的 OpenAI 风格工具定义转为 Eino InvokableTool，执行时走 Agent 的 MCP 路径。
 func ToolsFromDefinitions(
 	ag *agent.Agent,
 	holder *ConversationHolder,
 	defs []agent.Tool,
 	rec ExecutionRecorder,
 	toolOutputChunk func(toolName, toolCallID, chunk string),
 ) ([]tool.BaseTool, error) {
 	out := make([]tool.BaseTool, 0, len(defs))
 	for _, d := range defs {
 		if d.Type != "function" || d.Function.Name == "" {
 			continue
 		}
 		info, err := toolInfoFromDefinition(d)
 		if err != nil {
 			return nil, fmt.Errorf("tool %q: %w", d.Function.Name, err)
 		}
 		out = append(out, &mcpBridgeTool{
 			info:   info,
 			name:   d.Function.Name,
 			agent:  ag,
 			holder: holder,
 			record: rec,
 			chunk:  toolOutputChunk,
 		})
 	}
 	return out, nil
 }
 func toolInfoFromDefinition(d agent.Tool) (*schema.ToolInfo, error) {
 	fn := d.Function
 	raw, err := json.Marshal(fn.Parameters)
 	if err != nil {
 		return nil, err
 	}
 	var js jsonschema.Schema
 	if len(raw) > 0 && string(raw) != "null" && string(raw) != "{}" {
 		if err := json.Unmarshal(raw, &js); err != nil {
 			return nil, err
 		}
 	}
 	if js.Type == "" {
 		js.Type = string(schema.Object)
 	}
 	if js.Properties == nil && js.Type == string(schema.Object) {
 		// 空参数对象
 	}
 	return &schema.ToolInfo{
 		Name:        fn.Name,
 		Desc:        fn.Description,
 		ParamsOneOf: schema.NewParamsOneOfByJSONSchema(&js),
 	}, nil
 }
 type mcpBridgeTool struct {
 	info   *schema.ToolInfo
 	name   string
 	agent  *agent.Agent
 	holder *ConversationHolder
 	record ExecutionRecorder
 	chunk  func(toolName, toolCallID, chunk string)
 }
 func (m *mcpBridgeTool) Info(ctx context.Context) (*schema.ToolInfo, error) {
 	_ = ctx
 	return m.info, nil
 }
 func (m *mcpBridgeTool) InvokableRun(ctx context.Context, argumentsInJSON string, opts ...tool.Option) (string, error) {
 	_ = opts
 	var args map[string]interface{}
 	if argumentsInJSON != "" && argumentsInJSON != "null" {
 		if err := json.Unmarshal([]byte(argumentsInJSON), &args); err != nil {
 			return "", fmt.Errorf("invalid tool arguments JSON: %w", err)
 		}
 	}
 	if args == nil {
 		args = map[string]interface{}{}
 	}
 	// Stream tool output (stdout/stderr) to upper layer via security.Executor's callback.
 	// This enables multi-agent mode to show execution progress on the frontend.
 	if m.chunk != nil {
 		toolCallID := compose.GetToolCallID(ctx)
 		if toolCallID != "" {
 			if existing, ok := ctx.Value(security.ToolOutputCallbackCtxKey).(security.ToolOutputCallback); ok && existing != nil {
 				// Chain existing callback (if any) + our progress forwarder.
 				ctx = context.WithValue(ctx, security.ToolOutputCallbackCtxKey, security.ToolOutputCallback(func(c string) {
 					existing(c)
 					if strings.TrimSpace(c) == "" {
 						return
 					}
 					m.chunk(m.name, toolCallID, c)
 				}))
 			} else {
 				ctx = context.WithValue(ctx, security.ToolOutputCallbackCtxKey, security.ToolOutputCallback(func(c string) {
 					if strings.TrimSpace(c) == "" {
 						return
 					}
 					m.chunk(m.name, toolCallID, c)
 				}))
 			}
 		}
 	}
 	conv := m.holder.Get()
 	res, err := m.agent.ExecuteMCPToolForConversation(ctx, conv, m.name, args)
 	if err != nil {
 		return "", err
 	}
 	if res == nil {
 		return "", nil
 	}
 	if res.ExecutionID != "" && m.record != nil {
 		m.record(res.ExecutionID)
 	}
 	if res.IsError {
 		return ToolErrorPrefix + res.Result, nil
 	}
 	return res.Result, nil
 }
@@ -19,6 +19,7 @@ import (
 	"cyberstrike-ai/internal/config"
 	"cyberstrike-ai/internal/database"
 	"cyberstrike-ai/internal/mcp/builtin"
 	"cyberstrike-ai/internal/multiagent"
 	"cyberstrike-ai/internal/skills"
 	"github.com/gin-gonic/gin"
@@ -77,7 +78,8 @@ type AgentHandler struct {
 	knowledgeManager interface {    // 知识库管理器接口
 		LogRetrieval(conversationID, messageID, query, riskType string, retrievedItems []string) error
 	}
-	skillsManager *skills.Manager // Skills管理器
+	skillsManager       *skills.Manager // Skills管理器
 	agentsMarkdownDir   string          // 多代理：Markdown 子 Agent 目录（绝对路径，空则不从磁盘合并）
 }
 // NewAgentHandler 创建新的Agent处理器
@@ -112,6 +114,11 @@ func (h *AgentHandler) SetSkillsManager(manager *skills.Manager) {
 	h.skillsManager = manager
 }
 // SetAgentsMarkdownDir 设置 agents/*.md 子代理目录（绝对路径）；空表示仅使用 config.yaml 中的 sub_agents。
 func (h *AgentHandler) SetAgentsMarkdownDir(absDir string) {
 	h.agentsMarkdownDir = strings.TrimSpace(absDir)
 }
 // ChatAttachment 聊天附件（用户上传的文件）
 type ChatAttachment struct {
 	FileName string `json:"fileName"` // 文件名
@@ -123,8 +130,8 @@ type ChatAttachment struct {
 type ChatRequest struct {
 	Message              string           `json:"message" binding:"required"`
 	ConversationID       string           `json:"conversationId,omitempty"`
-	Role                 string           `json:"role,omitempty"`                 // 角色名称
+	Role                 string           `json:"role,omitempty"` // 角色名称
-	Attachments          []ChatAttachment  `json:"attachments,omitempty"`
+	Attachments          []ChatAttachment `json:"attachments,omitempty"`
 	WebShellConnectionID string           `json:"webshellConnectionId,omitempty"` // WebShell 管理 - AI 助手：当前选中的连接 ID，仅使用 webshell_* 工具
 }
@@ -315,7 +322,7 @@ func (h *AgentHandler) AgentLoop(c *gin.Context) {
 	// 应用角色用户提示词和工具配置
 	finalMessage := req.Message
-	var roleTools []string // 角色配置的工具列表
+	var roleTools []string  // 角色配置的工具列表
 	var roleSkills []string // 角色配置的skills列表（用于提示AI，但不硬编码内容）
 	// WebShell AI 助手模式：绑定当前连接，仅开放 webshell_* 工具并注入 connection_id
@@ -484,6 +491,53 @@ func (h *AgentHandler) ProcessMessageForRobot(ctx context.Context, conversationI
 	}
 	progressCallback := h.createProgressCallback(conversationID, assistantMessageID, nil)
 	useRobotMulti := h.config != nil && h.config.MultiAgent.Enabled && h.config.MultiAgent.RobotUseMultiAgent
 	if useRobotMulti {
 		resultMA, errMA := multiagent.RunDeepAgent(
 			ctx,
 			h.config,
 			&h.config.MultiAgent,
 			h.agent,
 			h.logger,
 			conversationID,
 			finalMessage,
 			agentHistoryMessages,
 			roleTools,
 			progressCallback,
 			h.agentsMarkdownDir,
 		)
 		if errMA != nil {
 			errMsg := "执行失败: " + errMA.Error()
 			if assistantMessageID != "" {
 				_, _ = h.db.Exec("UPDATE messages SET content = ? WHERE id = ?", errMsg, assistantMessageID)
 				_ = h.db.AddProcessDetail(assistantMessageID, conversationID, "error", errMsg, nil)
 			}
 			return "", conversationID, errMA
 		}
 		if assistantMessageID != "" {
 			mcpIDsJSON := ""
 			if len(resultMA.MCPExecutionIDs) > 0 {
 				jsonData, _ := json.Marshal(resultMA.MCPExecutionIDs)
 				mcpIDsJSON = string(jsonData)
 			}
 			_, err = h.db.Exec(
 				"UPDATE messages SET content = ?, mcp_execution_ids = ? WHERE id = ?",
 				resultMA.Response, mcpIDsJSON, assistantMessageID,
 			)
 			if err != nil {
 				h.logger.Warn("机器人：更新助手消息失败", zap.Error(err))
 			}
 		} else {
 			if _, err = h.db.AddMessage(conversationID, "assistant", resultMA.Response, resultMA.MCPExecutionIDs); err != nil {
 				h.logger.Warn("机器人：保存助手消息失败", zap.Error(err))
 			}
 		}
 		if resultMA.LastReActInput != "" || resultMA.LastReActOutput != "" {
 			_ = h.db.SaveReActData(conversationID, resultMA.LastReActInput, resultMA.LastReActOutput)
 		}
 		return resultMA.Response, conversationID, nil
 	}
 	result, err := h.agent.AgentLoopWithProgress(ctx, finalMessage, agentHistoryMessages, conversationID, progressCallback, roleTools, roleSkills)
 	if err != nil {
 		errMsg := "执行失败: " + err.Error()
@@ -662,8 +716,27 @@ func (h *AgentHandler) createProgressCallback(conversationID, assistantMessageID
 			}
 		}
-		// 保存过程详情到数据库（排除response和done事件，它们会在后面单独处理）
+		// 子代理回复流式增量不落库；结束时合并为一条 eino_agent_reply
-		if assistantMessageID != "" && eventType != "response" && eventType != "done" {
+		if assistantMessageID != "" && eventType == "eino_agent_reply_stream_end" {
 			if err := h.db.AddProcessDetail(assistantMessageID, conversationID, "eino_agent_reply", message, data); err != nil {
 				h.logger.Warn("保存过程详情失败", zap.Error(err), zap.String("eventType", eventType))
 			}
 			return
 		}
 		// 保存过程详情到数据库（排除response/done事件，它们会在后面单独处理）
 		// 另外：response_start/response_delta 是模型流式增量，保存会导致过程详情膨胀，因此不落库。
 		if assistantMessageID != "" &&
 			eventType != "response" &&
 			eventType != "done" &&
 			eventType != "response_start" &&
 			eventType != "response_delta" &&
 			eventType != "tool_result_delta" &&
 			eventType != "thinking_stream_start" &&
 			eventType != "thinking_stream_delta" &&
 			eventType != "eino_agent_reply_stream_start" &&
 			eventType != "eino_agent_reply_stream_delta" &&
 			eventType != "eino_agent_reply_stream_end" {
 			if err := h.db.AddProcessDetail(assistantMessageID, conversationID, eventType, message, data); err != nil {
 				h.logger.Warn("保存过程详情失败", zap.Error(err), zap.String("eventType", eventType))
 			}
@@ -703,8 +776,53 @@ func (h *AgentHandler) AgentLoopStream(c *gin.Context) {
 	// 发送初始事件
 	// 用于跟踪客户端是否已断开连接
 	clientDisconnected := false
 	// 用于快速确认模型是否真的产生了流式 delta
 	var responseDeltaCount int
 	var responseStartLogged bool
 	sendEvent := func(eventType, message string, data interface{}) {
 		if eventType == "response_start" {
 			responseDeltaCount = 0
 			responseStartLogged = true
 			h.logger.Info("SSE: response_start",
 				zap.Int("conversationIdPresent", func() int {
 					if m, ok := data.(map[string]interface{}); ok {
 						if v, ok2 := m["conversationId"]; ok2 && v != nil && fmt.Sprint(v) != "" {
 							return 1
 						}
 					}
 					return 0
 				}()),
 				zap.String("messageGeneratedBy", func() string {
 					if m, ok := data.(map[string]interface{}); ok {
 						if v, ok2 := m["messageGeneratedBy"]; ok2 {
 							if s, ok3 := v.(string); ok3 {
 								return s
 							}
 							return fmt.Sprint(v)
 						}
 					}
 					return ""
 				}()),
 			)
 		} else if eventType == "response_delta" {
 			responseDeltaCount++
 			// 只打前几条，避免刷屏
 			if responseStartLogged && responseDeltaCount <= 3 {
 				h.logger.Info("SSE: response_delta",
 					zap.Int("index", responseDeltaCount),
 					zap.Int("deltaLen", len(message)),
 					zap.String("deltaPreview", func() string {
 						p := strings.ReplaceAll(message, "\n", "\\n")
 						if len(p) > 80 {
 							return p[:80] + "..."
 						}
 						return p
 					}()),
 				)
 			}
 		}
 		// 如果客户端已断开，不再发送事件
 		if clientDisconnected {
 			return
@@ -1446,7 +1564,7 @@ func (h *AgentHandler) executeBatchQueue(queueID string) {
 		// 应用角色用户提示词和工具配置
 		finalMessage := task.Message
-		var roleTools []string // 角色配置的工具列表
+		var roleTools []string  // 角色配置的工具列表
 		var roleSkills []string // 角色配置的skills列表（用于提示AI，但不硬编码内容）
 		if queue.Role != "" && queue.Role != "默认" {
 			if h.config.Roles != nil {
@@ -1500,28 +1618,42 @@ func (h *AgentHandler) executeBatchQueue(queueID string) {
 		h.batchTaskManager.SetTaskCancel(queueID, cancel)
 		// 使用队列配置的角色工具列表（如果为空，表示使用所有工具）
 		// 注意：skills不会硬编码注入，但会在系统提示词中提示AI这个角色推荐使用哪些skills
-		result, err := h.agent.AgentLoopWithProgress(ctx, finalMessage, []agent.ChatMessage{}, conversationID, progressCallback, roleTools, roleSkills)
+		useBatchMulti := h.config != nil && h.config.MultiAgent.Enabled && h.config.MultiAgent.BatchUseMultiAgent
 		var result *agent.AgentLoopResult
 		var resultMA *multiagent.RunResult
 		var runErr error
 		if useBatchMulti {
 			resultMA, runErr = multiagent.RunDeepAgent(ctx, h.config, &h.config.MultiAgent, h.agent, h.logger, conversationID, finalMessage, []agent.ChatMessage{}, roleTools, progressCallback, h.agentsMarkdownDir)
 		} else {
 			result, runErr = h.agent.AgentLoopWithProgress(ctx, finalMessage, []agent.ChatMessage{}, conversationID, progressCallback, roleTools, roleSkills)
 		}
 		// 任务执行完成，清理取消函数
 		h.batchTaskManager.SetTaskCancel(queueID, nil)
 		cancel()
-		if err != nil {
+		if runErr != nil {
 			// 检查是否是取消错误
 			// 1. 直接检查是否是 context.Canceled（包括包装后的错误）
 			// 2. 检查错误消息中是否包含"context canceled"或"cancelled"关键字
 			// 3. 检查 result.Response 中是否包含取消相关的消息
-			errStr := err.Error()
+			errStr := runErr.Error()
-			isCancelled := errors.Is(err, context.Canceled) ||
+			partialResp := ""
 			if result != nil {
 				partialResp = result.Response
 			} else if resultMA != nil {
 				partialResp = resultMA.Response
 			}
 			isCancelled := errors.Is(runErr, context.Canceled) ||
 				strings.Contains(strings.ToLower(errStr), "context canceled") ||
 				strings.Contains(strings.ToLower(errStr), "context cancelled") ||
-				(result != nil && result.Response != "" && (strings.Contains(result.Response, "任务已被取消") || strings.Contains(result.Response, "任务执行中断")))
+				(partialResp != "" && (strings.Contains(partialResp, "任务已被取消") || strings.Contains(partialResp, "任务执行中断")))
 			if isCancelled {
 				h.logger.Info("批量任务被取消", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.String("conversationId", conversationID))
 				cancelMsg := "任务已被用户取消，后续操作已停止。"
-				// 如果result中有更具体的取消消息，使用它
+				// 如果执行结果中有更具体的取消消息，使用它
-				if result != nil && result.Response != "" && (strings.Contains(result.Response, "任务已被取消") || strings.Contains(result.Response, "任务执行中断")) {
+				if partialResp != "" && (strings.Contains(partialResp, "任务已被取消") || strings.Contains(partialResp, "任务执行中断")) {
-					cancelMsg = result.Response
+					cancelMsg = partialResp
 				}
 				// 更新助手消息内容
 				if assistantMessageID != "" {
@@ -1548,11 +1680,15 @@ func (h *AgentHandler) executeBatchQueue(queueID string) {
 					if err := h.db.SaveReActData(conversationID, result.LastReActInput, result.LastReActOutput); err != nil {
 						h.logger.Warn("保存取消任务的ReAct数据失败", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.Error(err))
 					}
 				} else if resultMA != nil && (resultMA.LastReActInput != "" || resultMA.LastReActOutput != "") {
 					if err := h.db.SaveReActData(conversationID, resultMA.LastReActInput, resultMA.LastReActOutput); err != nil {
 						h.logger.Warn("保存取消任务的ReAct数据失败", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.Error(err))
 					}
 				}
 				h.batchTaskManager.UpdateTaskStatusWithConversationID(queueID, task.ID, "cancelled", cancelMsg, "", conversationID)
 			} else {
-				h.logger.Error("批量任务执行失败", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.String("conversationId", conversationID), zap.Error(err))
+				h.logger.Error("批量任务执行失败", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.String("conversationId", conversationID), zap.Error(runErr))
-				errorMsg := "执行失败: " + err.Error()
+				errorMsg := "执行失败: " + runErr.Error()
 				// 更新助手消息内容
 				if assistantMessageID != "" {
 					if _, updateErr := h.db.Exec(
@@ -1567,42 +1703,57 @@ func (h *AgentHandler) executeBatchQueue(queueID string) {
 						h.logger.Warn("保存错误详情失败", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.Error(err))
 					}
 				}
-				h.batchTaskManager.UpdateTaskStatus(queueID, task.ID, "failed", "", err.Error())
+				h.batchTaskManager.UpdateTaskStatus(queueID, task.ID, "failed", "", runErr.Error())
 			}
 		} else {
 			h.logger.Info("批量任务执行成功", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.String("conversationId", conversationID))
 			var resText string
 			var mcpIDs []string
 			var lastIn, lastOut string
 			if useBatchMulti {
 				resText = resultMA.Response
 				mcpIDs = resultMA.MCPExecutionIDs
 				lastIn = resultMA.LastReActInput
 				lastOut = resultMA.LastReActOutput
 			} else {
 				resText = result.Response
 				mcpIDs = result.MCPExecutionIDs
 				lastIn = result.LastReActInput
 				lastOut = result.LastReActOutput
 			}
 			// 更新助手消息内容
 			if assistantMessageID != "" {
 				mcpIDsJSON := ""
-				if len(result.MCPExecutionIDs) > 0 {
+				if len(mcpIDs) > 0 {
-					jsonData, _ := json.Marshal(result.MCPExecutionIDs)
+					jsonData, _ := json.Marshal(mcpIDs)
 					mcpIDsJSON = string(jsonData)
 				}
 				if _, updateErr := h.db.Exec(
 					"UPDATE messages SET content = ?, mcp_execution_ids = ? WHERE id = ?",
-					result.Response,
+					resText,
 					mcpIDsJSON,
 					assistantMessageID,
 				); updateErr != nil {
 					h.logger.Warn("更新助手消息失败", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.Error(updateErr))
 					// 如果更新失败，尝试创建新消息
-					_, err = h.db.AddMessage(conversationID, "assistant", result.Response, result.MCPExecutionIDs)
+					_, err = h.db.AddMessage(conversationID, "assistant", resText, mcpIDs)
 					if err != nil {
 						h.logger.Error("保存助手消息失败", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.String("conversationId", conversationID), zap.Error(err))
 					}
 				}
 			} else {
 				// 如果没有预先创建的助手消息，创建一个新的
-				_, err = h.db.AddMessage(conversationID, "assistant", result.Response, result.MCPExecutionIDs)
+				_, err = h.db.AddMessage(conversationID, "assistant", resText, mcpIDs)
 				if err != nil {
 					h.logger.Error("保存助手消息失败", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.String("conversationId", conversationID), zap.Error(err))
 				}
 			}
 			// 保存ReAct数据
-			if result.LastReActInput != "" || result.LastReActOutput != "" {
+			if lastIn != "" || lastOut != "" {
-				if err := h.db.SaveReActData(conversationID, result.LastReActInput, result.LastReActOutput); err != nil {
+				if err := h.db.SaveReActData(conversationID, lastIn, lastOut); err != nil {
 					h.logger.Warn("保存ReAct数据失败", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.Error(err))
 				} else {
 					h.logger.Info("已保存ReAct数据", zap.String("queueId", queueID), zap.String("taskId", task.ID), zap.String("conversationId", conversationID))
@@ -1610,7 +1761,7 @@ func (h *AgentHandler) executeBatchQueue(queueID string) {
 			}
 			// 保存结果
-			h.batchTaskManager.UpdateTaskStatusWithConversationID(queueID, task.ID, "completed", result.Response, "", conversationID)
+			h.batchTaskManager.UpdateTaskStatusWithConversationID(queueID, task.ID, "completed", resText, "", conversationID)
 		}
 		// 移动到下一个任务
@@ -0,0 +1,484 @@
 package handler
 import (
 	"crypto/rand"
 	"fmt"
 	"io"
 	"net/http"
 	"os"
 	"path/filepath"
 	"sort"
 	"strings"
 	"time"
 	"unicode/utf8"
 	"github.com/gin-gonic/gin"
 	"go.uber.org/zap"
 )
 const (
 	chatUploadsRootDirName = "chat_uploads"
 	maxChatUploadEditBytes = 2 * 1024 * 1024 // 文本编辑上限
 )
 // ChatUploadsHandler 对话中上传附件（chat_uploads 目录）的管理 API
 type ChatUploadsHandler struct {
 	logger *zap.Logger
 }
 // NewChatUploadsHandler 创建处理器
 func NewChatUploadsHandler(logger *zap.Logger) *ChatUploadsHandler {
 	return &ChatUploadsHandler{logger: logger}
 }
 func (h *ChatUploadsHandler) absRoot() (string, error) {
 	cwd, err := os.Getwd()
 	if err != nil {
 		return "", err
 	}
 	return filepath.Abs(filepath.Join(cwd, chatUploadsRootDirName))
 }
 // resolveUnderChatUploads 校验 relativePath（使用 / 分隔）对应文件必须在 chat_uploads 根下
 func (h *ChatUploadsHandler) resolveUnderChatUploads(relativePath string) (abs string, err error) {
 	root, err := h.absRoot()
 	if err != nil {
 		return "", err
 	}
 	rel := strings.TrimSpace(relativePath)
 	if rel == "" {
 		return "", fmt.Errorf("empty path")
 	}
 	rel = filepath.Clean(filepath.FromSlash(rel))
 	if rel == "." || strings.HasPrefix(rel, "..") {
 		return "", fmt.Errorf("invalid path")
 	}
 	full := filepath.Join(root, rel)
 	full, err = filepath.Abs(full)
 	if err != nil {
 		return "", err
 	}
 	rootAbs, _ := filepath.Abs(root)
 	if full != rootAbs && !strings.HasPrefix(full, rootAbs+string(filepath.Separator)) {
 		return "", fmt.Errorf("path escapes chat_uploads root")
 	}
 	return full, nil
 }
 // ChatUploadFileItem 列表项
 type ChatUploadFileItem struct {
 	RelativePath   string `json:"relativePath"`
 	AbsolutePath   string `json:"absolutePath"` // 服务器上的绝对路径，便于在对话中引用（与附件落盘路径一致）
 	Name           string `json:"name"`
 	Size           int64  `json:"size"`
 	ModifiedUnix   int64  `json:"modifiedUnix"`
 	Date           string `json:"date"`
 	ConversationID string `json:"conversationId"`
 	// SubPath 为日期、会话目录之下的子路径（不含文件名），如 date/conv/a/b/file 则为 "a/b"；无嵌套则为 ""。
 	SubPath string `json:"subPath"`
 }
 // List GET /api/chat-uploads
 func (h *ChatUploadsHandler) List(c *gin.Context) {
 	conversationFilter := strings.TrimSpace(c.Query("conversation"))
 	root, err := h.absRoot()
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	if _, err := os.Stat(root); os.IsNotExist(err) {
 		c.JSON(http.StatusOK, gin.H{"files": []ChatUploadFileItem{}})
 		return
 	}
 	var files []ChatUploadFileItem
 	err = filepath.WalkDir(root, func(path string, d os.DirEntry, walkErr error) error {
 		if walkErr != nil {
 			return walkErr
 		}
 		if d.IsDir() {
 			return nil
 		}
 		info, err := d.Info()
 		if err != nil {
 			return err
 		}
 		rel, err := filepath.Rel(root, path)
 		if err != nil {
 			return err
 		}
 		relSlash := filepath.ToSlash(rel)
 		parts := strings.Split(relSlash, "/")
 		var dateStr, convID string
 		if len(parts) >= 2 {
 			dateStr = parts[0]
 		}
 		if len(parts) >= 3 {
 			convID = parts[1]
 		}
 		var subPath string
 		if len(parts) >= 4 {
 			subPath = strings.Join(parts[2:len(parts)-1], "/")
 		}
 		if conversationFilter != "" && convID != conversationFilter {
 			return nil
 		}
 		absPath, _ := filepath.Abs(path)
 		files = append(files, ChatUploadFileItem{
 			RelativePath:   relSlash,
 			AbsolutePath:   absPath,
 			Name:           d.Name(),
 			Size:           info.Size(),
 			ModifiedUnix:   info.ModTime().Unix(),
 			Date:           dateStr,
 			ConversationID: convID,
 			SubPath:        subPath,
 		})
 		return nil
 	})
 	if err != nil {
 		h.logger.Warn("列举对话附件失败", zap.Error(err))
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	sort.Slice(files, func(i, j int) bool {
 		return files[i].ModifiedUnix > files[j].ModifiedUnix
 	})
 	c.JSON(http.StatusOK, gin.H{"files": files})
 }
 // Download GET /api/chat-uploads/download?path=...
 func (h *ChatUploadsHandler) Download(c *gin.Context) {
 	p := c.Query("path")
 	abs, err := h.resolveUnderChatUploads(p)
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	st, err := os.Stat(abs)
 	if err != nil || st.IsDir() {
 		c.JSON(http.StatusNotFound, gin.H{"error": "file not found"})
 		return
 	}
 	c.FileAttachment(abs, filepath.Base(abs))
 }
 type chatUploadPathBody struct {
 	Path string `json:"path"`
 }
 // Delete DELETE /api/chat-uploads
 func (h *ChatUploadsHandler) Delete(c *gin.Context) {
 	var body chatUploadPathBody
 	if err := c.ShouldBindJSON(&body); err != nil || strings.TrimSpace(body.Path) == "" {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid body"})
 		return
 	}
 	abs, err := h.resolveUnderChatUploads(body.Path)
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	st, err := os.Stat(abs)
 	if err != nil {
 		if os.IsNotExist(err) {
 			c.JSON(http.StatusNotFound, gin.H{"error": "file not found"})
 			return
 		}
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	if st.IsDir() {
 		if err := os.RemoveAll(abs); err != nil {
 			c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 			return
 		}
 	} else {
 		if err := os.Remove(abs); err != nil {
 			if os.IsNotExist(err) {
 				c.JSON(http.StatusNotFound, gin.H{"error": "file not found"})
 				return
 			}
 			c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 			return
 		}
 	}
 	c.JSON(http.StatusOK, gin.H{"ok": true})
 }
 type chatUploadMkdirBody struct {
 	Parent string `json:"parent"`
 	Name   string `json:"name"`
 }
 // Mkdir POST /api/chat-uploads/mkdir — 在 parent 目录下新建子目录（parent 为 chat_uploads 下相对路径，空表示根目录；name 为单段目录名）
 func (h *ChatUploadsHandler) Mkdir(c *gin.Context) {
 	var body chatUploadMkdirBody
 	if err := c.ShouldBindJSON(&body); err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid body"})
 		return
 	}
 	name := strings.TrimSpace(body.Name)
 	if name == "" || strings.ContainsAny(name, `/\`) || name == "." || name == ".." {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid name"})
 		return
 	}
 	if utf8.RuneCountInString(name) > 200 {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "name too long"})
 		return
 	}
 	parent := strings.TrimSpace(body.Parent)
 	parent = filepath.ToSlash(filepath.Clean(filepath.FromSlash(parent)))
 	parent = strings.Trim(parent, "/")
 	if parent == "." {
 		parent = ""
 	}
 	root, err := h.absRoot()
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	if parent != "" {
 		absParent, err := h.resolveUnderChatUploads(parent)
 		if err != nil {
 			c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 			return
 		}
 		st, err := os.Stat(absParent)
 		if err != nil || !st.IsDir() {
 			c.JSON(http.StatusBadRequest, gin.H{"error": "parent not found"})
 			return
 		}
 	}
 	var rel string
 	if parent == "" {
 		rel = name
 	} else {
 		rel = parent + "/" + name
 	}
 	absNew, err := h.resolveUnderChatUploads(rel)
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	if _, err := os.Stat(absNew); err == nil {
 		c.JSON(http.StatusConflict, gin.H{"error": "already exists"})
 		return
 	}
 	if err := os.Mkdir(absNew, 0755); err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	relOut, _ := filepath.Rel(root, absNew)
 	c.JSON(http.StatusOK, gin.H{"ok": true, "relativePath": filepath.ToSlash(relOut)})
 }
 type chatUploadRenameBody struct {
 	Path    string `json:"path"`
 	NewName string `json:"newName"`
 }
 // Rename PUT /api/chat-uploads/rename
 func (h *ChatUploadsHandler) Rename(c *gin.Context) {
 	var body chatUploadRenameBody
 	if err := c.ShouldBindJSON(&body); err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid body"})
 		return
 	}
 	newName := strings.TrimSpace(body.NewName)
 	if newName == "" || strings.ContainsAny(newName, `/\`) {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid newName"})
 		return
 	}
 	abs, err := h.resolveUnderChatUploads(body.Path)
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	dir := filepath.Dir(abs)
 	newAbs := filepath.Join(dir, filepath.Base(newName))
 	root, _ := h.absRoot()
 	newAbs, _ = filepath.Abs(newAbs)
 	if newAbs != root && !strings.HasPrefix(newAbs, root+string(filepath.Separator)) {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid target path"})
 		return
 	}
 	if err := os.Rename(abs, newAbs); err != nil {
 		if os.IsNotExist(err) {
 			c.JSON(http.StatusNotFound, gin.H{"error": "file not found"})
 			return
 		}
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	newRel, _ := filepath.Rel(root, newAbs)
 	c.JSON(http.StatusOK, gin.H{"ok": true, "relativePath": filepath.ToSlash(newRel)})
 }
 type chatUploadContentBody struct {
 	Path    string `json:"path"`
 	Content string `json:"content"`
 }
 // GetContent GET /api/chat-uploads/content?path=...
 func (h *ChatUploadsHandler) GetContent(c *gin.Context) {
 	p := c.Query("path")
 	abs, err := h.resolveUnderChatUploads(p)
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	st, err := os.Stat(abs)
 	if err != nil || st.IsDir() {
 		c.JSON(http.StatusNotFound, gin.H{"error": "file not found"})
 		return
 	}
 	if st.Size() > maxChatUploadEditBytes {
 		c.JSON(http.StatusRequestEntityTooLarge, gin.H{"error": "file too large for editor"})
 		return
 	}
 	b, err := os.ReadFile(abs)
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	if !utf8.Valid(b) {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "binary file not editable in UI"})
 		return
 	}
 	c.JSON(http.StatusOK, gin.H{"content": string(b)})
 }
 // PutContent PUT /api/chat-uploads/content
 func (h *ChatUploadsHandler) PutContent(c *gin.Context) {
 	var body chatUploadContentBody
 	if err := c.ShouldBindJSON(&body); err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "invalid body"})
 		return
 	}
 	if !utf8.ValidString(body.Content) {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "content must be valid UTF-8"})
 		return
 	}
 	if len(body.Content) > maxChatUploadEditBytes {
 		c.JSON(http.StatusRequestEntityTooLarge, gin.H{"error": "content too large"})
 		return
 	}
 	abs, err := h.resolveUnderChatUploads(body.Path)
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	if err := os.WriteFile(abs, []byte(body.Content), 0644); err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	c.JSON(http.StatusOK, gin.H{"ok": true})
 }
 func chatUploadShortRand(n int) string {
 	const letters = "0123456789abcdef"
 	b := make([]byte, n)
 	_, _ = rand.Read(b)
 	for i := range b {
 		b[i] = letters[int(b[i])%len(letters)]
 	}
 	return string(b)
 }
 // Upload POST /api/chat-uploads multipart: file；conversationId 可选；relativeDir 可选（chat_uploads 下目录的相对路径，将文件直接上传至该目录）
 func (h *ChatUploadsHandler) Upload(c *gin.Context) {
 	fh, err := c.FormFile("file")
 	if err != nil || fh == nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "missing file"})
 		return
 	}
 	root, err := h.absRoot()
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	var targetDir string
 	targetRel := strings.TrimSpace(c.PostForm("relativeDir"))
 	if targetRel != "" {
 		absDir, err := h.resolveUnderChatUploads(targetRel)
 		if err != nil {
 			c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 			return
 		}
 		st, err := os.Stat(absDir)
 		if err != nil {
 			if os.IsNotExist(err) {
 				if err := os.MkdirAll(absDir, 0755); err != nil {
 					c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 					return
 				}
 			} else {
 				c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 				return
 			}
 		} else if !st.IsDir() {
 			c.JSON(http.StatusBadRequest, gin.H{"error": "relativeDir is not a directory"})
 			return
 		}
 		targetDir = absDir
 	} else {
 		convID := strings.TrimSpace(c.PostForm("conversationId"))
 		convDir := convID
 		if convDir == "" {
 			convDir = "_manual"
 		} else {
 			convDir = strings.ReplaceAll(convDir, string(filepath.Separator), "_")
 		}
 		dateStr := time.Now().Format("2006-01-02")
 		targetDir = filepath.Join(root, dateStr, convDir)
 		if err := os.MkdirAll(targetDir, 0755); err != nil {
 			c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 			return
 		}
 	}
 	baseName := filepath.Base(fh.Filename)
 	if baseName == "" || baseName == "." {
 		baseName = "file"
 	}
 	baseName = strings.ReplaceAll(baseName, string(filepath.Separator), "_")
 	ext := filepath.Ext(baseName)
 	nameNoExt := strings.TrimSuffix(baseName, ext)
 	suffix := fmt.Sprintf("_%s_%s", time.Now().Format("150405"), chatUploadShortRand(6))
 	var unique string
 	if ext != "" {
 		unique = nameNoExt + suffix + ext
 	} else {
 		unique = baseName + suffix
 	}
 	fullPath := filepath.Join(targetDir, unique)
 	src, err := fh.Open()
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	defer src.Close()
 	dst, err := os.Create(fullPath)
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	defer dst.Close()
 	if _, err := io.Copy(dst, src); err != nil {
 		_ = os.Remove(fullPath)
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	rel, _ := filepath.Rel(root, fullPath)
 	absSaved, _ := filepath.Abs(fullPath)
 	c.JSON(http.StatusOK, gin.H{
 		"ok":           true,
 		"relativePath": filepath.ToSlash(rel),
 		"absolutePath": absSaved,
 		"name":         unique,
 	})
 }
@@ -12,6 +12,7 @@ import (
 	"sync"
 	"time"
 	"cyberstrike-ai/internal/agents"
 	"cyberstrike-ai/internal/config"
 	"cyberstrike-ai/internal/knowledge"
 	"cyberstrike-ai/internal/mcp"
@@ -168,13 +169,14 @@ func (h *ConfigHandler) SetRobotRestarter(restarter RobotRestarter) {
 // GetConfigResponse 获取配置响应
 type GetConfigResponse struct {
-	OpenAI    config.OpenAIConfig    `json:"openai"`
+	OpenAI     config.OpenAIConfig     `json:"openai"`
-	FOFA      config.FofaConfig      `json:"fofa"`
+	FOFA       config.FofaConfig       `json:"fofa"`
-	MCP       config.MCPConfig       `json:"mcp"`
+	MCP        config.MCPConfig        `json:"mcp"`
-	Tools     []ToolConfigInfo       `json:"tools"`
+	Tools      []ToolConfigInfo        `json:"tools"`
-	Agent     config.AgentConfig     `json:"agent"`
+	Agent      config.AgentConfig      `json:"agent"`
-	Knowledge config.KnowledgeConfig `json:"knowledge"`
+	Knowledge  config.KnowledgeConfig  `json:"knowledge"`
-	Robots    config.RobotsConfig     `json:"robots,omitempty"`
+	Robots     config.RobotsConfig     `json:"robots,omitempty"`
 	MultiAgent config.MultiAgentPublic `json:"multi_agent,omitempty"`
 }
 // ToolConfigInfo 工具配置信息
@@ -240,14 +242,37 @@ func (h *ConfigHandler) GetConfig(c *gin.Context) {
 		}
 	}
 	subAgentCount := len(h.config.MultiAgent.SubAgents)
 	agentsDir := strings.TrimSpace(h.config.AgentsDir)
 	if agentsDir == "" {
 		agentsDir = "agents"
 	}
 	if !filepath.IsAbs(agentsDir) {
 		agentsDir = filepath.Join(filepath.Dir(h.configPath), agentsDir)
 	}
 	if load, err := agents.LoadMarkdownAgentsDir(agentsDir); err == nil {
 		subAgentCount = len(agents.MergeYAMLAndMarkdown(h.config.MultiAgent.SubAgents, load.SubAgents))
 	}
 	multiPub := config.MultiAgentPublic{
 		Enabled:            h.config.MultiAgent.Enabled,
 		DefaultMode:        h.config.MultiAgent.DefaultMode,
 		RobotUseMultiAgent: h.config.MultiAgent.RobotUseMultiAgent,
 		BatchUseMultiAgent: h.config.MultiAgent.BatchUseMultiAgent,
 		SubAgentCount:      subAgentCount,
 	}
 	if strings.TrimSpace(multiPub.DefaultMode) == "" {
 		multiPub.DefaultMode = "single"
 	}
 	c.JSON(http.StatusOK, GetConfigResponse{
-		OpenAI:    h.config.OpenAI,
+		OpenAI:     h.config.OpenAI,
-		FOFA:      h.config.FOFA,
+		FOFA:       h.config.FOFA,
-		MCP:       h.config.MCP,
+		MCP:        h.config.MCP,
-		Tools:     tools,
+		Tools:      tools,
-		Agent:     h.config.Agent,
+		Agent:      h.config.Agent,
-		Knowledge: h.config.Knowledge,
+		Knowledge:  h.config.Knowledge,
-		Robots:    h.config.Robots,
+		Robots:     h.config.Robots,
 		MultiAgent: multiPub,
 	})
 }
@@ -499,13 +524,14 @@ func (h *ConfigHandler) GetTools(c *gin.Context) {
 // UpdateConfigRequest 更新配置请求
 type UpdateConfigRequest struct {
-	OpenAI    *config.OpenAIConfig    `json:"openai,omitempty"`
+	OpenAI     *config.OpenAIConfig        `json:"openai,omitempty"`
-	FOFA      *config.FofaConfig      `json:"fofa,omitempty"`
+	FOFA       *config.FofaConfig          `json:"fofa,omitempty"`
-	MCP       *config.MCPConfig       `json:"mcp,omitempty"`
+	MCP        *config.MCPConfig           `json:"mcp,omitempty"`
-	Tools     []ToolEnableStatus      `json:"tools,omitempty"`
+	Tools      []ToolEnableStatus          `json:"tools,omitempty"`
-	Agent     *config.AgentConfig     `json:"agent,omitempty"`
+	Agent      *config.AgentConfig         `json:"agent,omitempty"`
-	Knowledge *config.KnowledgeConfig `json:"knowledge,omitempty"`
+	Knowledge  *config.KnowledgeConfig     `json:"knowledge,omitempty"`
-	Robots    *config.RobotsConfig    `json:"robots,omitempty"`
+	Robots     *config.RobotsConfig        `json:"robots,omitempty"`
 	MultiAgent *config.MultiAgentAPIUpdate `json:"multi_agent,omitempty"`
 }
 // ToolEnableStatus 工具启用状态
@@ -592,6 +618,23 @@ func (h *ConfigHandler) UpdateConfig(c *gin.Context) {
 		)
 	}
 	// 多代理标量（sub_agents 等仍由 config.yaml 维护）
 	if req.MultiAgent != nil {
 		h.config.MultiAgent.Enabled = req.MultiAgent.Enabled
 		dm := strings.TrimSpace(req.MultiAgent.DefaultMode)
 		if dm == "multi" || dm == "single" {
 			h.config.MultiAgent.DefaultMode = dm
 		}
 		h.config.MultiAgent.RobotUseMultiAgent = req.MultiAgent.RobotUseMultiAgent
 		h.config.MultiAgent.BatchUseMultiAgent = req.MultiAgent.BatchUseMultiAgent
 		h.logger.Info("更新多代理配置",
 			zap.Bool("enabled", h.config.MultiAgent.Enabled),
 			zap.String("default_mode", h.config.MultiAgent.DefaultMode),
 			zap.Bool("robot_use_multi_agent", h.config.MultiAgent.RobotUseMultiAgent),
 			zap.Bool("batch_use_multi_agent", h.config.MultiAgent.BatchUseMultiAgent),
 		)
 	}
 	// 更新工具启用状态
 	if req.Tools != nil {
 		// 分离内部工具和外部工具
@@ -910,6 +953,7 @@ func (h *ConfigHandler) saveConfig() error {
 	updateFOFAConfig(root, h.config.FOFA)
 	updateKnowledgeConfig(root, h.config.Knowledge)
 	updateRobotsConfig(root, h.config.Robots)
 	updateMultiAgentConfig(root, h.config.MultiAgent)
 	// 更新外部MCP配置（使用external_mcp.go中的函数，同一包中可直接调用）
 	// 读取原始配置以保持向后兼容
 	originalConfigs := make(map[string]map[string]bool)
@@ -1119,6 +1163,15 @@ func updateRobotsConfig(doc *yaml.Node, cfg config.RobotsConfig) {
 	setStringInMap(larkNode, "verify_token", cfg.Lark.VerifyToken)
 }
 func updateMultiAgentConfig(doc *yaml.Node, cfg config.MultiAgentConfig) {
 	root := doc.Content[0]
 	maNode := ensureMap(root, "multi_agent")
 	setBoolInMap(maNode, "enabled", cfg.Enabled)
 	setStringInMap(maNode, "default_mode", cfg.DefaultMode)
 	setBoolInMap(maNode, "robot_use_multi_agent", cfg.RobotUseMultiAgent)
 	setBoolInMap(maNode, "batch_use_multi_agent", cfg.BatchUseMultiAgent)
 }
 func ensureMap(parent *yaml.Node, path ...string) *yaml.Node {
 	current := parent
 	for _, key := range path {
@@ -0,0 +1,299 @@
 package handler
 import (
 	"fmt"
 	"net/http"
 	"os"
 	"path/filepath"
 	"regexp"
 	"strings"
 	"cyberstrike-ai/internal/agents"
 	"cyberstrike-ai/internal/config"
 	"github.com/gin-gonic/gin"
 )
 var markdownAgentFilenameRe = regexp.MustCompile(`^[a-zA-Z0-9][a-zA-Z0-9_.-]*\.md$`)
 // MarkdownAgentsHandler 管理 agents 目录下子代理 Markdown（增删改查）。
 type MarkdownAgentsHandler struct {
 	dir string
 }
 // NewMarkdownAgentsHandler dir 须为已解析的绝对路径。
 func NewMarkdownAgentsHandler(dir string) *MarkdownAgentsHandler {
 	return &MarkdownAgentsHandler{dir: strings.TrimSpace(dir)}
 }
 func (h *MarkdownAgentsHandler) safeJoin(filename string) (string, error) {
 	filename = strings.TrimSpace(filename)
 	if filename == "" || !markdownAgentFilenameRe.MatchString(filename) {
 		return "", fmt.Errorf("非法文件名")
 	}
 	clean := filepath.Clean(filename)
 	if clean != filename || strings.Contains(clean, "..") {
 		return "", fmt.Errorf("非法文件名")
 	}
 	return filepath.Join(h.dir, clean), nil
 }
 // existingOtherOrchestrator 若目录中已有别的主代理文件，返回其文件名；writingBasename 为当前正在写入的文件名时视为同一文件不冲突。
 func existingOtherOrchestrator(dir, writingBasename string) (other string, err error) {
 	load, err := agents.LoadMarkdownAgentsDir(dir)
 	if err != nil {
 		return "", err
 	}
 	if load.Orchestrator == nil {
 		return "", nil
 	}
 	if strings.EqualFold(load.Orchestrator.Filename, writingBasename) {
 		return "", nil
 	}
 	return load.Orchestrator.Filename, nil
 }
 // ListMarkdownAgents GET /api/multi-agent/markdown-agents
 func (h *MarkdownAgentsHandler) ListMarkdownAgents(c *gin.Context) {
 	if h.dir == "" {
 		c.JSON(http.StatusOK, gin.H{"agents": []any{}, "dir": "", "error": "未配置 agents 目录"})
 		return
 	}
 	files, err := agents.LoadMarkdownAgentFiles(h.dir)
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	out := make([]gin.H, 0, len(files))
 	for _, fa := range files {
 		sub := fa.Config
 		out = append(out, gin.H{
 			"filename":        fa.Filename,
 			"id":              sub.ID,
 			"name":            sub.Name,
 			"description":     sub.Description,
 			"is_orchestrator": fa.IsOrchestrator,
 			"kind":            sub.Kind,
 		})
 	}
 	c.JSON(http.StatusOK, gin.H{"agents": out, "dir": h.dir})
 }
 // GetMarkdownAgent GET /api/multi-agent/markdown-agents/:filename
 func (h *MarkdownAgentsHandler) GetMarkdownAgent(c *gin.Context) {
 	filename := c.Param("filename")
 	path, err := h.safeJoin(filename)
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	b, err := os.ReadFile(path)
 	if err != nil {
 		if os.IsNotExist(err) {
 			c.JSON(http.StatusNotFound, gin.H{"error": "文件不存在"})
 			return
 		}
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	sub, err := agents.ParseMarkdownSubAgent(filename, string(b))
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	isOrch := agents.IsOrchestratorMarkdown(filename, agents.FrontMatter{Kind: sub.Kind})
 	c.JSON(http.StatusOK, gin.H{
 		"filename":        filename,
 		"raw":             string(b),
 		"id":              sub.ID,
 		"name":            sub.Name,
 		"description":     sub.Description,
 		"tools":           sub.RoleTools,
 		"instruction":     sub.Instruction,
 		"bind_role":       sub.BindRole,
 		"max_iterations":  sub.MaxIterations,
 		"kind":            sub.Kind,
 		"is_orchestrator": isOrch,
 	})
 }
 type markdownAgentBody struct {
 	Filename       string   `json:"filename"`
 	ID             string   `json:"id"`
 	Name           string   `json:"name"`
 	Description    string   `json:"description"`
 	Tools          []string `json:"tools"`
 	Instruction    string   `json:"instruction"`
 	BindRole       string   `json:"bind_role"`
 	MaxIterations  int      `json:"max_iterations"`
 	Kind           string   `json:"kind"`
 	Raw            string   `json:"raw"`
 }
 // CreateMarkdownAgent POST /api/multi-agent/markdown-agents
 func (h *MarkdownAgentsHandler) CreateMarkdownAgent(c *gin.Context) {
 	if h.dir == "" {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "未配置 agents 目录"})
 		return
 	}
 	var body markdownAgentBody
 	if err := c.ShouldBindJSON(&body); err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	filename := strings.TrimSpace(body.Filename)
 	if filename == "" {
 		if strings.EqualFold(strings.TrimSpace(body.Kind), "orchestrator") {
 			filename = agents.OrchestratorMarkdownFilename
 		} else {
 			base := agents.SlugID(body.Name)
 			if base == "" {
 				base = "agent"
 			}
 			filename = base + ".md"
 		}
 	}
 	path, err := h.safeJoin(filename)
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	if _, err := os.Stat(path); err == nil {
 		c.JSON(http.StatusConflict, gin.H{"error": "文件已存在"})
 		return
 	}
 	sub := config.MultiAgentSubConfig{
 		ID:            strings.TrimSpace(body.ID),
 		Name:          strings.TrimSpace(body.Name),
 		Description:   strings.TrimSpace(body.Description),
 		Instruction:   strings.TrimSpace(body.Instruction),
 		RoleTools:     body.Tools,
 		BindRole:      strings.TrimSpace(body.BindRole),
 		MaxIterations: body.MaxIterations,
 		Kind:          strings.TrimSpace(body.Kind),
 	}
 	if strings.EqualFold(filepath.Base(path), agents.OrchestratorMarkdownFilename) && sub.Kind == "" {
 		sub.Kind = "orchestrator"
 	}
 	if sub.ID == "" {
 		sub.ID = agents.SlugID(sub.Name)
 	}
 	if sub.Name == "" {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "name 必填"})
 		return
 	}
 	var out []byte
 	if strings.TrimSpace(body.Raw) != "" {
 		out = []byte(body.Raw)
 	} else {
 		out, err = agents.BuildMarkdownFile(sub)
 		if err != nil {
 			c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 			return
 		}
 	}
 	if want := agents.WantsMarkdownOrchestrator(filepath.Base(path), body.Kind, string(out)); want {
 		other, oerr := existingOtherOrchestrator(h.dir, filepath.Base(path))
 		if oerr != nil {
 			c.JSON(http.StatusInternalServerError, gin.H{"error": oerr.Error()})
 			return
 		}
 		if other != "" {
 			c.JSON(http.StatusConflict, gin.H{"error": fmt.Sprintf("已存在主代理定义：%s，请先删除或取消其主代理标记", other)})
 			return
 		}
 	}
 	if err := os.MkdirAll(h.dir, 0755); err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	if err := os.WriteFile(path, out, 0644); err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	c.JSON(http.StatusOK, gin.H{"filename": filepath.Base(path), "message": "已创建"})
 }
 // UpdateMarkdownAgent PUT /api/multi-agent/markdown-agents/:filename
 func (h *MarkdownAgentsHandler) UpdateMarkdownAgent(c *gin.Context) {
 	filename := c.Param("filename")
 	path, err := h.safeJoin(filename)
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	var body markdownAgentBody
 	if err := c.ShouldBindJSON(&body); err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	sub := config.MultiAgentSubConfig{
 		ID:            strings.TrimSpace(body.ID),
 		Name:          strings.TrimSpace(body.Name),
 		Description:   strings.TrimSpace(body.Description),
 		Instruction:   strings.TrimSpace(body.Instruction),
 		RoleTools:     body.Tools,
 		BindRole:      strings.TrimSpace(body.BindRole),
 		MaxIterations: body.MaxIterations,
 		Kind:          strings.TrimSpace(body.Kind),
 	}
 	if strings.EqualFold(filename, agents.OrchestratorMarkdownFilename) && sub.Kind == "" {
 		sub.Kind = "orchestrator"
 	}
 	if sub.Name == "" {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "name 必填"})
 		return
 	}
 	if sub.ID == "" {
 		sub.ID = agents.SlugID(sub.Name)
 	}
 	var out []byte
 	if strings.TrimSpace(body.Raw) != "" {
 		out = []byte(body.Raw)
 	} else {
 		out, err = agents.BuildMarkdownFile(sub)
 		if err != nil {
 			c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 			return
 		}
 	}
 	if want := agents.WantsMarkdownOrchestrator(filename, body.Kind, string(out)); want {
 		other, oerr := existingOtherOrchestrator(h.dir, filename)
 		if oerr != nil {
 			c.JSON(http.StatusInternalServerError, gin.H{"error": oerr.Error()})
 			return
 		}
 		if other != "" {
 			c.JSON(http.StatusConflict, gin.H{"error": fmt.Sprintf("已存在主代理定义：%s，请先删除或取消其主代理标记", other)})
 			return
 		}
 	}
 	if err := os.WriteFile(path, out, 0644); err != nil {
 		if os.IsNotExist(err) {
 			c.JSON(http.StatusNotFound, gin.H{"error": "文件不存在"})
 			return
 		}
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	c.JSON(http.StatusOK, gin.H{"message": "已保存"})
 }
 // DeleteMarkdownAgent DELETE /api/multi-agent/markdown-agents/:filename
 func (h *MarkdownAgentsHandler) DeleteMarkdownAgent(c *gin.Context) {
 	filename := c.Param("filename")
 	path, err := h.safeJoin(filename)
 	if err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	if err := os.Remove(path); err != nil {
 		if os.IsNotExist(err) {
 			c.JSON(http.StatusNotFound, gin.H{"error": "文件不存在"})
 			return
 		}
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	c.JSON(http.StatusOK, gin.H{"message": "已删除"})
 }
@@ -0,0 +1,298 @@
 package handler
 import (
 	"context"
 	"encoding/json"
 	"errors"
 	"fmt"
 	"net/http"
 	"strings"
 	"time"
 	"cyberstrike-ai/internal/multiagent"
 	"github.com/gin-gonic/gin"
 	"go.uber.org/zap"
 )
 // MultiAgentLoopStream Eino DeepAgent 流式对话（需 config.multi_agent.enabled）。
 func (h *AgentHandler) MultiAgentLoopStream(c *gin.Context) {
 	c.Header("Content-Type", "text/event-stream")
 	c.Header("Cache-Control", "no-cache")
 	c.Header("Connection", "keep-alive")
 	if h.config == nil || !h.config.MultiAgent.Enabled {
 		ev := StreamEvent{Type: "error", Message: "多代理未启用，请在设置或 config.yaml 中开启 multi_agent.enabled"}
 		b, _ := json.Marshal(ev)
 		fmt.Fprintf(c.Writer, "data: %s\n\n", b)
 		done := StreamEvent{Type: "done", Message: ""}
 		db, _ := json.Marshal(done)
 		fmt.Fprintf(c.Writer, "data: %s\n\n", db)
 		if flusher, ok := c.Writer.(http.Flusher); ok {
 			flusher.Flush()
 		}
 		return
 	}
 	var req ChatRequest
 	if err := c.ShouldBindJSON(&req); err != nil {
 		event := StreamEvent{Type: "error", Message: "请求参数错误: " + err.Error()}
 		b, _ := json.Marshal(event)
 		fmt.Fprintf(c.Writer, "data: %s\n\n", b)
 		c.Writer.Flush()
 		return
 	}
 	c.Header("X-Accel-Buffering", "no")
 	// 用于在 sendEvent 中判断是否为用户主动停止导致的取消。
 	// 注意：baseCtx 会在后面创建；该变量用于闭包提前捕获引用。
 	var baseCtx context.Context
 	clientDisconnected := false
 	sendEvent := func(eventType, message string, data interface{}) {
 		if clientDisconnected {
 			return
 		}
 		// 用户主动停止时，Eino 可能仍会并发上报 eventType=="error"。
 		// 为避免 UI 看到“取消错误 + cancelled 文案”两条回复，这里直接丢弃取消对应的 error。
 		if eventType == "error" && baseCtx != nil && errors.Is(context.Cause(baseCtx), ErrTaskCancelled) {
 			return
 		}
 		select {
 		case <-c.Request.Context().Done():
 			clientDisconnected = true
 			return
 		default:
 		}
 		ev := StreamEvent{Type: eventType, Message: message, Data: data}
 		b, _ := json.Marshal(ev)
 		if _, err := fmt.Fprintf(c.Writer, "data: %s\n\n", b); err != nil {
 			clientDisconnected = true
 			return
 		}
 		if flusher, ok := c.Writer.(http.Flusher); ok {
 			flusher.Flush()
 		} else {
 			c.Writer.Flush()
 		}
 	}
 	h.logger.Info("收到 Eino DeepAgent 流式请求",
 		zap.String("conversationId", req.ConversationID),
 	)
 	prep, err := h.prepareMultiAgentSession(&req)
 	if err != nil {
 		sendEvent("error", err.Error(), nil)
 		sendEvent("done", "", nil)
 		return
 	}
 	if prep.CreatedNew {
 		sendEvent("conversation", "会话已创建", map[string]interface{}{
 			"conversationId": prep.ConversationID,
 		})
 	}
 	conversationID := prep.ConversationID
 	assistantMessageID := prep.AssistantMessageID
 	progressCallback := h.createProgressCallback(conversationID, assistantMessageID, sendEvent)
 	baseCtx, cancelWithCause := context.WithCancelCause(context.Background())
 	taskCtx, timeoutCancel := context.WithTimeout(baseCtx, 600*time.Minute)
 	defer timeoutCancel()
 	defer cancelWithCause(nil)
 	if _, err := h.tasks.StartTask(conversationID, req.Message, cancelWithCause); err != nil {
 		var errorMsg string
 		if errors.Is(err, ErrTaskAlreadyRunning) {
 			errorMsg = "⚠️ 当前会话已有任务正在执行中，请等待当前任务完成或点击「停止任务」后再尝试。"
 			sendEvent("error", errorMsg, map[string]interface{}{
 				"conversationId": conversationID,
 				"errorType":      "task_already_running",
 			})
 		} else {
 			errorMsg = "❌ 无法启动任务: " + err.Error()
 			sendEvent("error", errorMsg, nil)
 		}
 		if assistantMessageID != "" {
 			_, _ = h.db.Exec("UPDATE messages SET content = ? WHERE id = ?", errorMsg, assistantMessageID)
 		}
 		sendEvent("done", "", map[string]interface{}{"conversationId": conversationID})
 		return
 	}
 	taskStatus := "completed"
 	defer h.tasks.FinishTask(conversationID, taskStatus)
 	sendEvent("progress", "正在启动 Eino DeepAgent...", map[string]interface{}{
 		"conversationId": conversationID,
 	})
 	result, runErr := multiagent.RunDeepAgent(
 		taskCtx,
 		h.config,
 		&h.config.MultiAgent,
 		h.agent,
 		h.logger,
 		conversationID,
 		prep.FinalMessage,
 		prep.History,
 		prep.RoleTools,
 		progressCallback,
 		h.agentsMarkdownDir,
 	)
 	if runErr != nil {
 		cause := context.Cause(baseCtx)
 		if errors.Is(cause, ErrTaskCancelled) {
 			taskStatus = "cancelled"
 			h.tasks.UpdateTaskStatus(conversationID, taskStatus)
 			cancelMsg := "任务已被用户取消，后续操作已停止。"
 			if assistantMessageID != "" {
 				_, _ = h.db.Exec("UPDATE messages SET content = ? WHERE id = ?", cancelMsg, assistantMessageID)
 				_ = h.db.AddProcessDetail(assistantMessageID, conversationID, "cancelled", cancelMsg, nil)
 			}
 			sendEvent("cancelled", cancelMsg, map[string]interface{}{
 				"conversationId": conversationID,
 				"messageId":      assistantMessageID,
 			})
 			sendEvent("done", "", map[string]interface{}{"conversationId": conversationID})
 			return
 		}
 		h.logger.Error("Eino DeepAgent 执行失败", zap.Error(runErr))
 		taskStatus = "failed"
 		h.tasks.UpdateTaskStatus(conversationID, taskStatus)
 		errMsg := "执行失败: " + runErr.Error()
 		if assistantMessageID != "" {
 			_, _ = h.db.Exec("UPDATE messages SET content = ? WHERE id = ?", errMsg, assistantMessageID)
 			_ = h.db.AddProcessDetail(assistantMessageID, conversationID, "error", errMsg, nil)
 		}
 		sendEvent("error", errMsg, map[string]interface{}{
 			"conversationId": conversationID,
 			"messageId":      assistantMessageID,
 		})
 		sendEvent("done", "", map[string]interface{}{"conversationId": conversationID})
 		return
 	}
 	if assistantMessageID != "" {
 		mcpIDsJSON := ""
 		if len(result.MCPExecutionIDs) > 0 {
 			jsonData, _ := json.Marshal(result.MCPExecutionIDs)
 			mcpIDsJSON = string(jsonData)
 		}
 		_, _ = h.db.Exec(
 			"UPDATE messages SET content = ?, mcp_execution_ids = ? WHERE id = ?",
 			result.Response,
 			mcpIDsJSON,
 			assistantMessageID,
 		)
 	}
 	if result.LastReActInput != "" || result.LastReActOutput != "" {
 		if err := h.db.SaveReActData(conversationID, result.LastReActInput, result.LastReActOutput); err != nil {
 			h.logger.Warn("保存 ReAct 数据失败", zap.Error(err))
 		}
 	}
 	sendEvent("response", result.Response, map[string]interface{}{
 		"mcpExecutionIds": result.MCPExecutionIDs,
 		"conversationId":  conversationID,
 		"messageId":       assistantMessageID,
 		"agentMode":       "eino_deep",
 	})
 	sendEvent("done", "", map[string]interface{}{"conversationId": conversationID})
 }
 // MultiAgentLoop Eino DeepAgent 非流式对话（与 POST /api/agent-loop 对齐，需 multi_agent.enabled）。
 func (h *AgentHandler) MultiAgentLoop(c *gin.Context) {
 	if h.config == nil || !h.config.MultiAgent.Enabled {
 		c.JSON(http.StatusNotFound, gin.H{"error": "多代理未启用，请在 config.yaml 中设置 multi_agent.enabled: true"})
 		return
 	}
 	var req ChatRequest
 	if err := c.ShouldBindJSON(&req); err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	h.logger.Info("收到 Eino DeepAgent 非流式请求", zap.String("conversationId", req.ConversationID))
 	prep, err := h.prepareMultiAgentSession(&req)
 	if err != nil {
 		status, msg := multiAgentHTTPErrorStatus(err)
 		c.JSON(status, gin.H{"error": msg})
 		return
 	}
 	result, runErr := multiagent.RunDeepAgent(
 		c.Request.Context(),
 		h.config,
 		&h.config.MultiAgent,
 		h.agent,
 		h.logger,
 		prep.ConversationID,
 		prep.FinalMessage,
 		prep.History,
 		prep.RoleTools,
 		nil,
 		h.agentsMarkdownDir,
 	)
 	if runErr != nil {
 		h.logger.Error("Eino DeepAgent 执行失败", zap.Error(runErr))
 		errMsg := "执行失败: " + runErr.Error()
 		if prep.AssistantMessageID != "" {
 			_, _ = h.db.Exec("UPDATE messages SET content = ? WHERE id = ?", errMsg, prep.AssistantMessageID)
 		}
 		c.JSON(http.StatusInternalServerError, gin.H{"error": errMsg})
 		return
 	}
 	if prep.AssistantMessageID != "" {
 		mcpIDsJSON := ""
 		if len(result.MCPExecutionIDs) > 0 {
 			jsonData, _ := json.Marshal(result.MCPExecutionIDs)
 			mcpIDsJSON = string(jsonData)
 		}
 		_, _ = h.db.Exec(
 			"UPDATE messages SET content = ?, mcp_execution_ids = ? WHERE id = ?",
 			result.Response,
 			mcpIDsJSON,
 			prep.AssistantMessageID,
 		)
 	}
 	if result.LastReActInput != "" || result.LastReActOutput != "" {
 		if err := h.db.SaveReActData(prep.ConversationID, result.LastReActInput, result.LastReActOutput); err != nil {
 			h.logger.Warn("保存 ReAct 数据失败", zap.Error(err))
 		}
 	}
 	c.JSON(http.StatusOK, ChatResponse{
 		Response:        result.Response,
 		MCPExecutionIDs: result.MCPExecutionIDs,
 		ConversationID:  prep.ConversationID,
 		Time:            time.Now(),
 	})
 }
 func multiAgentHTTPErrorStatus(err error) (int, string) {
 	msg := err.Error()
 	switch {
 	case strings.Contains(msg, "对话不存在"):
 		return http.StatusNotFound, msg
 	case strings.Contains(msg, "未找到该 WebShell"):
 		return http.StatusBadRequest, msg
 	case strings.Contains(msg, "附件最多"):
 		return http.StatusBadRequest, msg
 	case strings.Contains(msg, "保存用户消息失败"), strings.Contains(msg, "创建对话失败"):
 		return http.StatusInternalServerError, msg
 	case strings.Contains(msg, "保存上传文件失败"):
 		return http.StatusInternalServerError, msg
 	default:
 		return http.StatusBadRequest, msg
 	}
 }
@@ -0,0 +1,133 @@
 package handler
 import (
 	"fmt"
 	"strings"
 	"cyberstrike-ai/internal/agent"
 	"cyberstrike-ai/internal/database"
 	"cyberstrike-ai/internal/mcp/builtin"
 	"go.uber.org/zap"
 )
 // multiAgentPrepared 多代理请求在调用 Eino 前的会话与消息准备结果。
 type multiAgentPrepared struct {
 	ConversationID     string
 	CreatedNew         bool
 	History            []agent.ChatMessage
 	FinalMessage       string
 	RoleTools          []string
 	AssistantMessageID string
 }
 func (h *AgentHandler) prepareMultiAgentSession(req *ChatRequest) (*multiAgentPrepared, error) {
 	if len(req.Attachments) > maxAttachments {
 		return nil, fmt.Errorf("附件最多 %d 个", maxAttachments)
 	}
 	conversationID := strings.TrimSpace(req.ConversationID)
 	createdNew := false
 	if conversationID == "" {
 		title := safeTruncateString(req.Message, 50)
 		var conv *database.Conversation
 		var err error
 		if strings.TrimSpace(req.WebShellConnectionID) != "" {
 			conv, err = h.db.CreateConversationWithWebshell(strings.TrimSpace(req.WebShellConnectionID), title)
 		} else {
 			conv, err = h.db.CreateConversation(title)
 		}
 		if err != nil {
 			return nil, fmt.Errorf("创建对话失败: %w", err)
 		}
 		conversationID = conv.ID
 		createdNew = true
 	} else {
 		if _, err := h.db.GetConversation(conversationID); err != nil {
 			return nil, fmt.Errorf("对话不存在")
 		}
 	}
 	agentHistoryMessages, err := h.loadHistoryFromReActData(conversationID)
 	if err != nil {
 		historyMessages, getErr := h.db.GetMessages(conversationID)
 		if getErr != nil {
 			agentHistoryMessages = []agent.ChatMessage{}
 		} else {
 			agentHistoryMessages = make([]agent.ChatMessage, 0, len(historyMessages))
 			for _, msg := range historyMessages {
 				agentHistoryMessages = append(agentHistoryMessages, agent.ChatMessage{
 					Role:    msg.Role,
 					Content: msg.Content,
 				})
 			}
 		}
 	}
 	finalMessage := req.Message
 	var roleTools []string
 	if req.WebShellConnectionID != "" {
 		conn, errConn := h.db.GetWebshellConnection(strings.TrimSpace(req.WebShellConnectionID))
 		if errConn != nil || conn == nil {
 			h.logger.Warn("WebShell AI 助手：未找到连接", zap.String("id", req.WebShellConnectionID), zap.Error(errConn))
 			return nil, fmt.Errorf("未找到该 WebShell 连接")
 		}
 		remark := conn.Remark
 		if remark == "" {
 			remark = conn.URL
 		}
 		finalMessage = fmt.Sprintf("[WebShell 助手上下文] 当前连接 ID：%s，备注：%s。可用工具（仅在该连接上操作时使用，connection_id 填 \"%s\"）：webshell_exec、webshell_file_list、webshell_file_read、webshell_file_write、record_vulnerability、list_knowledge_risk_types、search_knowledge_base、list_skills、read_skill。请根据用户输入决定下一步：若仅为问候、闲聊或简单问题，直接简短回复即可，不必调用工具；当用户明确需要执行命令、列目录、读写文件、记录漏洞或检索知识库/查看 Skills 等操作时再调用上述工具。\n\n用户请求：%s",
 			conn.ID, remark, conn.ID, req.Message)
 		roleTools = []string{
 			builtin.ToolWebshellExec,
 			builtin.ToolWebshellFileList,
 			builtin.ToolWebshellFileRead,
 			builtin.ToolWebshellFileWrite,
 			builtin.ToolRecordVulnerability,
 			builtin.ToolListKnowledgeRiskTypes,
 			builtin.ToolSearchKnowledgeBase,
 			builtin.ToolListSkills,
 			builtin.ToolReadSkill,
 		}
 	} else if req.Role != "" && req.Role != "默认" && h.config != nil && h.config.Roles != nil {
 		if role, exists := h.config.Roles[req.Role]; exists && role.Enabled {
 			if role.UserPrompt != "" {
 				finalMessage = role.UserPrompt + "\n\n" + req.Message
 			}
 			roleTools = role.Tools
 		}
 	}
 	var savedPaths []string
 	if len(req.Attachments) > 0 {
 		var aerr error
 		savedPaths, aerr = saveAttachmentsToDateAndConversationDir(req.Attachments, conversationID, h.logger)
 		if aerr != nil {
 			return nil, fmt.Errorf("保存上传文件失败: %w", aerr)
 		}
 	}
 	finalMessage = appendAttachmentsToMessage(finalMessage, req.Attachments, savedPaths)
 	userContent := userMessageContentForStorage(req.Message, req.Attachments, savedPaths)
 	if _, err = h.db.AddMessage(conversationID, "user", userContent, nil); err != nil {
 		h.logger.Error("保存用户消息失败", zap.Error(err))
 		return nil, fmt.Errorf("保存用户消息失败: %w", err)
 	}
 	assistantMsg, aerr := h.db.AddMessage(conversationID, "assistant", "处理中...", nil)
 	var assistantMessageID string
 	if aerr != nil {
 		h.logger.Warn("创建助手消息占位失败", zap.Error(aerr))
 	} else if assistantMsg != nil {
 		assistantMessageID = assistantMsg.ID
 	}
 	return &multiAgentPrepared{
 		ConversationID:     conversationID,
 		CreatedNew:         createdNew,
 		History:            agentHistoryMessages,
 		FinalMessage:       finalMessage,
 		RoleTools:          roleTools,
 		AssistantMessageID: assistantMessageID,
 	}, nil
 }
@@ -1481,6 +1481,91 @@ func (h *OpenAPIHandler) GetOpenAPISpec(c *gin.Context) {
 					},
 				},
 			},
 			"/api/multi-agent": map[string]interface{}{
 				"post": map[string]interface{}{
 					"tags":        []string{"对话交互"},
 					"summary":     "发送消息并获取 AI 回复（Eino DeepAgent，非流式）",
 					"description": "与 `POST /api/agent-loop` 请求体相同，但由 **CloudWeGo Eino DeepAgent** 执行多代理编排。**前提**：`multi_agent.enabled: true`（可在设置页或 `config.yaml` 开启）；未启用时返回 404 JSON。请求体支持 `webshellConnectionId`（与单代理 WebShell 助手一致）。",
 					"operationId": "sendMessageMultiAgent",
 					"requestBody": map[string]interface{}{
 						"required": true,
 						"content": map[string]interface{}{
 							"application/json": map[string]interface{}{
 								"schema": map[string]interface{}{
 									"type": "object",
 									"properties": map[string]interface{}{
 										"message": map[string]interface{}{
 											"type":        "string",
 											"description": "要发送的消息（必需）",
 										},
 										"conversationId": map[string]interface{}{
 											"type":        "string",
 											"description": "对话 ID（可选，不提供则新建）",
 										},
 										"role": map[string]interface{}{
 											"type":        "string",
 											"description": "角色名称（可选）",
 										},
 										"webshellConnectionId": map[string]interface{}{
 											"type":        "string",
 											"description": "WebShell 连接 ID（可选，与 agent-loop 行为一致）",
 										},
 									},
 									"required": []string{"message"},
 								},
 							},
 						},
 					},
 					"responses": map[string]interface{}{
 						"200": map[string]interface{}{
 							"description": "成功，响应格式同 /api/agent-loop",
 						},
 						"400": map[string]interface{}{"description": "参数错误"},
 						"401": map[string]interface{}{"description": "未授权"},
 						"404": map[string]interface{}{"description": "多代理未启用或对话不存在"},
 						"500": map[string]interface{}{"description": "执行失败"},
 					},
 				},
 			},
 			"/api/multi-agent/stream": map[string]interface{}{
 				"post": map[string]interface{}{
 					"tags":        []string{"对话交互"},
 					"summary":     "发送消息并获取 AI 回复（Eino DeepAgent，SSE）",
 					"description": "与 `POST /api/agent-loop/stream` 类似，事件类型兼容；由 Eino DeepAgent 执行。**前提**：`multi_agent.enabled: true`；路由常注册，未启用时仍返回 200 SSE，流内首条为 `type: error` 后接 `done`。支持 `webshellConnectionId`。",
 					"operationId": "sendMessageMultiAgentStream",
 					"requestBody": map[string]interface{}{
 						"required": true,
 						"content": map[string]interface{}{
 							"application/json": map[string]interface{}{
 								"schema": map[string]interface{}{
 									"type": "object",
 									"properties": map[string]interface{}{
 										"message":            map[string]interface{}{"type": "string"},
 										"conversationId":     map[string]interface{}{"type": "string"},
 										"role":               map[string]interface{}{"type": "string"},
 										"webshellConnectionId": map[string]interface{}{"type": "string"},
 									},
 									"required": []string{"message"},
 								},
 							},
 						},
 					},
 					"responses": map[string]interface{}{
 						"200": map[string]interface{}{
 							"description": "text/event-stream（SSE）",
 							"content": map[string]interface{}{
 								"text/event-stream": map[string]interface{}{
 									"schema": map[string]interface{}{
 										"type":        "string",
 										"description": "SSE 流",
 									},
 								},
 							},
 						},
 						"401": map[string]interface{}{"description": "未授权"},
 					},
 				},
 			},
 			"/api/agent-loop/cancel": map[string]interface{}{
 				"post": map[string]interface{}{
 					"tags":        []string{"对话交互"},
@@ -3,6 +3,7 @@ package handler
 import (
 	"bytes"
 	"database/sql"
 	"encoding/json"
 	"io"
 	"net/http"
 	"net/url"
@@ -104,10 +105,10 @@ func (h *WebShellHandler) CreateConnection(c *gin.Context) {
 		ID:        "ws_" + strings.ReplaceAll(uuid.New().String(), "-", "")[:12],
 		URL:       req.URL,
 		Password:  strings.TrimSpace(req.Password),
-		Type:     shellType,
+		Type:      shellType,
-		Method:   method,
+		Method:    method,
 		CmdParam:  strings.TrimSpace(req.CmdParam),
-		Remark:   strings.TrimSpace(req.Remark),
+		Remark:    strings.TrimSpace(req.Remark),
 		CreatedAt: time.Now(),
 	}
 	if err := h.db.CreateWebshellConnection(conn); err != nil {
@@ -197,6 +198,85 @@ func (h *WebShellHandler) DeleteConnection(c *gin.Context) {
 	c.JSON(http.StatusOK, gin.H{"ok": true})
 }
 // GetConnectionState 获取 WebShell 连接关联的前端持久化状态（GET /api/webshell/connections/:id/state）
 func (h *WebShellHandler) GetConnectionState(c *gin.Context) {
 	if h.db == nil {
 		c.JSON(http.StatusServiceUnavailable, gin.H{"error": "database not available"})
 		return
 	}
 	id := strings.TrimSpace(c.Param("id"))
 	if id == "" {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "id is required"})
 		return
 	}
 	conn, err := h.db.GetWebshellConnection(id)
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	if conn == nil {
 		c.JSON(http.StatusNotFound, gin.H{"error": "connection not found"})
 		return
 	}
 	stateJSON, err := h.db.GetWebshellConnectionState(id)
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	var state interface{}
 	if err := json.Unmarshal([]byte(stateJSON), &state); err != nil {
 		state = map[string]interface{}{}
 	}
 	c.JSON(http.StatusOK, gin.H{"state": state})
 }
 // SaveConnectionState 保存 WebShell 连接关联的前端持久化状态（PUT /api/webshell/connections/:id/state）
 func (h *WebShellHandler) SaveConnectionState(c *gin.Context) {
 	if h.db == nil {
 		c.JSON(http.StatusServiceUnavailable, gin.H{"error": "database not available"})
 		return
 	}
 	id := strings.TrimSpace(c.Param("id"))
 	if id == "" {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "id is required"})
 		return
 	}
 	conn, err := h.db.GetWebshellConnection(id)
 	if err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	if conn == nil {
 		c.JSON(http.StatusNotFound, gin.H{"error": "connection not found"})
 		return
 	}
 	var req struct {
 		State json.RawMessage `json:"state"`
 	}
 	if err := c.ShouldBindJSON(&req); err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
 		return
 	}
 	raw := req.State
 	if len(raw) == 0 {
 		raw = json.RawMessage(`{}`)
 	}
 	if len(raw) > 2*1024*1024 {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "state payload too large (max 2MB)"})
 		return
 	}
 	var anyJSON interface{}
 	if err := json.Unmarshal(raw, &anyJSON); err != nil {
 		c.JSON(http.StatusBadRequest, gin.H{"error": "state must be valid json"})
 		return
 	}
 	if err := h.db.UpsertWebshellConnectionState(id, string(raw)); err != nil {
 		c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 		return
 	}
 	c.JSON(http.StatusOK, gin.H{"ok": true})
 }
 // GetAIHistory 获取指定 WebShell 连接的 AI 助手对话历史（GET /api/webshell/connections/:id/ai-history）
 func (h *WebShellHandler) GetAIHistory(c *gin.Context) {
 	if h.db == nil {
@@ -267,8 +347,8 @@ type FileOpRequest struct {
 	URL        string `json:"url" binding:"required"`
 	Password   string `json:"password"`
 	Type       string `json:"type"`
-	Method     string `json:"method"`     // GET 或 POST，空则默认 POST
+	Method     string `json:"method"`                    // GET 或 POST，空则默认 POST
-	CmdParam   string `json:"cmd_param"` // 命令参数名，如 cmd/xxx，空则默认 cmd
+	CmdParam   string `json:"cmd_param"`                 // 命令参数名，如 cmd/xxx，空则默认 cmd
 	Action     string `json:"action" binding:"required"` // list, read, delete, write, mkdir, rename, upload, upload_chunk
 	Path       string `json:"path"`
 	TargetPath string `json:"target_path"` // rename 时目标路径
@@ -0,0 +1,140 @@
 package multiagent
 import (
 	"context"
 	"fmt"
 	"strings"
 	"cyberstrike-ai/internal/agent"
 	"cyberstrike-ai/internal/config"
 	"github.com/bytedance/sonic"
 	"github.com/cloudwego/eino/adk"
 	"github.com/cloudwego/eino/adk/middlewares/summarization"
 	"github.com/cloudwego/eino/components/model"
 	"github.com/cloudwego/eino/schema"
 	"go.uber.org/zap"
 )
 // einoSummarizeUserInstruction 与单 Agent MemoryCompressor 目标一致：压缩时保留渗透关键信息。
 const einoSummarizeUserInstruction = `在保持所有关键安全测试信息完整的前提下压缩对话历史。
 必须保留：已确认漏洞与攻击路径、工具输出中的核心发现、凭证与认证细节、架构与薄弱点、当前进度、失败尝试与死路、策略决策。
 保留精确技术细节（URL、路径、参数、Payload、版本号、报错原文可摘要但要点不丢）。
 将冗长扫描输出概括为结论；重复发现合并表述。
 输出须使后续代理能无缝继续同一授权测试任务。`
 // newEinoSummarizationMiddleware 使用 Eino ADK Summarization 中间件（见 https://www.cloudwego.io/zh/docs/eino/core_modules/eino_adk/eino_adk_chatmodelagentmiddleware/middleware_summarization/）。
 // 触发阈值与单 Agent MemoryCompressor 一致：当估算 token 超过 openai.max_total_tokens 的 90% 时摘要。
 func newEinoSummarizationMiddleware(
 	ctx context.Context,
 	summaryModel model.BaseChatModel,
 	appCfg *config.Config,
 	logger *zap.Logger,
 ) (adk.ChatModelAgentMiddleware, error) {
 	if summaryModel == nil || appCfg == nil {
 		return nil, fmt.Errorf("multiagent: summarization 需要 model 与配置")
 	}
 	maxTotal := appCfg.OpenAI.MaxTotalTokens
 	if maxTotal <= 0 {
 		maxTotal = 120000
 	}
 	trigger := int(float64(maxTotal) * 0.9)
 	if trigger < 4096 {
 		trigger = maxTotal
 		if trigger < 4096 {
 			trigger = 4096
 		}
 	}
 	preserveMax := trigger / 3
 	if preserveMax < 2048 {
 		preserveMax = 2048
 	}
 	modelName := strings.TrimSpace(appCfg.OpenAI.Model)
 	if modelName == "" {
 		modelName = "gpt-4o"
 	}
 	mw, err := summarization.New(ctx, &summarization.Config{
 		Model: summaryModel,
 		Trigger: &summarization.TriggerCondition{
 			ContextTokens: trigger,
 		},
 		TokenCounter:       einoSummarizationTokenCounter(modelName),
 		UserInstruction:    einoSummarizeUserInstruction,
 		EmitInternalEvents: false,
 		PreserveUserMessages: &summarization.PreserveUserMessages{
 			Enabled:   true,
 			MaxTokens: preserveMax,
 		},
 		Callback: func(ctx context.Context, before, after adk.ChatModelAgentState) error {
 			if logger == nil {
 				return nil
 			}
 			logger.Info("eino summarization 已压缩上下文",
 				zap.Int("messages_before", len(before.Messages)),
 				zap.Int("messages_after", len(after.Messages)),
 				zap.Int("max_total_tokens", maxTotal),
 				zap.Int("trigger_context_tokens", trigger),
 			)
 			return nil
 		},
 	})
 	if err != nil {
 		return nil, fmt.Errorf("summarization.New: %w", err)
 	}
 	return mw, nil
 }
 func einoSummarizationTokenCounter(openAIModel string) summarization.TokenCounterFunc {
 	tc := agent.NewTikTokenCounter()
 	return func(ctx context.Context, input *summarization.TokenCounterInput) (int, error) {
 		var sb strings.Builder
 		for _, msg := range input.Messages {
 			if msg == nil {
 				continue
 			}
 			sb.WriteString(string(msg.Role))
 			sb.WriteByte('\n')
 			if msg.Content != "" {
 				sb.WriteString(msg.Content)
 				sb.WriteByte('\n')
 			}
 			if msg.ReasoningContent != "" {
 				sb.WriteString(msg.ReasoningContent)
 				sb.WriteByte('\n')
 			}
 			if len(msg.ToolCalls) > 0 {
 				if b, err := sonic.Marshal(msg.ToolCalls); err == nil {
 					sb.Write(b)
 					sb.WriteByte('\n')
 				}
 			}
 			for _, part := range msg.UserInputMultiContent {
 				if part.Type == schema.ChatMessagePartTypeText && part.Text != "" {
 					sb.WriteString(part.Text)
 					sb.WriteByte('\n')
 				}
 			}
 		}
 		for _, tl := range input.Tools {
 			if tl == nil {
 				continue
 			}
 			cp := *tl
 			cp.Extra = nil
 			if text, err := sonic.MarshalString(cp); err == nil {
 				sb.WriteString(text)
 				sb.WriteByte('\n')
 			}
 		}
 		text := sb.String()
 		n, err := tc.Count(openAIModel, text)
 		if err != nil {
 			return (len(text) + 3) / 4, nil
 		}
 		return n, nil
 	}
 }
@@ -0,0 +1,62 @@
 package multiagent
 import (
 	"context"
 	"strings"
 	"github.com/cloudwego/eino/adk"
 	"github.com/cloudwego/eino/components/tool"
 )
 // noNestedTaskMiddleware 禁止在已经处于 task(sub-agent) 执行链中再次调用 task，
 // 避免子代理再次委派子代理造成的无限委派/递归。
 //
 // 通过在 ctx 中设置临时标记来实现嵌套检测：外层 task 调用会先标记 ctx，
 // 子代理内再调用 task 时会命中该标记并拒绝。
 type noNestedTaskMiddleware struct {
 	adk.BaseChatModelAgentMiddleware
 }
 type nestedTaskCtxKey struct{}
 func newNoNestedTaskMiddleware() adk.ChatModelAgentMiddleware {
 	return &noNestedTaskMiddleware{}
 }
 func (m *noNestedTaskMiddleware) WrapInvokableToolCall(
 	ctx context.Context,
 	endpoint adk.InvokableToolCallEndpoint,
 	tCtx *adk.ToolContext,
 ) (adk.InvokableToolCallEndpoint, error) {
 	if tCtx == nil || strings.TrimSpace(tCtx.Name) == "" {
 		return endpoint, nil
 	}
 	// Deep 内置 task 工具名固定为 "task"；为兼容可能的大小写/空白，仅做不区分大小写匹配。
 	if !strings.EqualFold(strings.TrimSpace(tCtx.Name), "task") {
 		return endpoint, nil
 	}
 	// 已在 task 执行链中：拒绝继续委派，直接报错让上层快速终止。
 	if ctx != nil {
 		if v, ok := ctx.Value(nestedTaskCtxKey{}).(bool); ok && v {
 			return func(ctx context.Context, argumentsInJSON string, opts ...tool.Option) (string, error) {
 				// Important: return a tool result text (not an error) to avoid hard-stopping the whole multi-agent run.
 				// The nested task is still prevented from spawning another sub-agent, so recursion is avoided.
 				_ = argumentsInJSON
 				_ = opts
 				return "Nested task delegation is forbidden (already inside a sub-agent delegation chain) to avoid infinite delegation. Please continue the work using the current agent's tools.", nil
 			}, nil
 		}
 	}
 	// 标记当前 task 调用链，确保子代理内的再次 task 调用能检测到嵌套。
 	return func(ctx context.Context, argumentsInJSON string, opts ...tool.Option) (string, error) {
 		ctx2 := ctx
 		if ctx2 == nil {
 			ctx2 = context.Background()
 		}
 		ctx2 = context.WithValue(ctx2, nestedTaskCtxKey{}, true)
 		return endpoint(ctx2, argumentsInJSON, opts...)
 	}, nil
 }
@@ -0,0 +1,764 @@
 // Package multiagent 使用 CloudWeGo Eino 的 DeepAgent（adk/prebuilt/deep）编排多代理，MCP 工具经 einomcp 桥接到现有 Agent。
 package multiagent
 import (
 	"context"
 	"encoding/json"
 	"errors"
 	"fmt"
 	"io"
 	"net"
 	"net/http"
 	"sort"
 	"strings"
 	"sync"
 	"sync/atomic"
 	"time"
 	"cyberstrike-ai/internal/agent"
 	"cyberstrike-ai/internal/agents"
 	"cyberstrike-ai/internal/config"
 	"cyberstrike-ai/internal/einomcp"
 	einoopenai "github.com/cloudwego/eino-ext/components/model/openai"
 	"github.com/cloudwego/eino/adk"
 	"github.com/cloudwego/eino/adk/prebuilt/deep"
 	"github.com/cloudwego/eino/compose"
 	"github.com/cloudwego/eino/schema"
 	"go.uber.org/zap"
 )
 // RunResult 与单 Agent 循环结果字段对齐，便于复用存储与 SSE 收尾逻辑。
 type RunResult struct {
 	Response        string
 	MCPExecutionIDs []string
 	LastReActInput  string
 	LastReActOutput string
 }
 // RunDeepAgent 使用 Eino DeepAgent 执行一轮对话（流式事件通过 progress 回调输出）。
 func RunDeepAgent(
 	ctx context.Context,
 	appCfg *config.Config,
 	ma *config.MultiAgentConfig,
 	ag *agent.Agent,
 	logger *zap.Logger,
 	conversationID string,
 	userMessage string,
 	history []agent.ChatMessage,
 	roleTools []string,
 	progress func(eventType, message string, data interface{}),
 	agentsMarkdownDir string,
 ) (*RunResult, error) {
 	if appCfg == nil || ma == nil || ag == nil {
 		return nil, fmt.Errorf("multiagent: 配置或 Agent 为空")
 	}
 	effectiveSubs := ma.SubAgents
 	var orch *agents.OrchestratorMarkdown
 	if strings.TrimSpace(agentsMarkdownDir) != "" {
 		load, merr := agents.LoadMarkdownAgentsDir(agentsMarkdownDir)
 		if merr != nil {
 			if logger != nil {
 				logger.Warn("加载 agents 目录 Markdown 失败，沿用 config 中的 sub_agents", zap.Error(merr))
 			}
 		} else {
 			effectiveSubs = agents.MergeYAMLAndMarkdown(ma.SubAgents, load.SubAgents)
 			orch = load.Orchestrator
 		}
 	}
 	if ma.WithoutGeneralSubAgent && len(effectiveSubs) == 0 {
 		return nil, fmt.Errorf("multi_agent.without_general_sub_agent 为 true 时，必须在 multi_agent.sub_agents 或 agents 目录 Markdown 中配置至少一个子代理")
 	}
 	holder := &einomcp.ConversationHolder{}
 	holder.Set(conversationID)
 	var mcpIDsMu sync.Mutex
 	var mcpIDs []string
 	recorder := func(id string) {
 		if id == "" {
 			return
 		}
 		mcpIDsMu.Lock()
 		mcpIDs = append(mcpIDs, id)
 		mcpIDsMu.Unlock()
 	}
 	// 与单代理流式一致：在 response_start / response_delta 的 data 中带当前 mcpExecutionIds，供主聊天绑定复制与展示。
 	snapshotMCPIDs := func() []string {
 		mcpIDsMu.Lock()
 		defer mcpIDsMu.Unlock()
 		out := make([]string, len(mcpIDs))
 		copy(out, mcpIDs)
 		return out
 	}
 	mainDefs := ag.ToolsForRole(roleTools)
 	toolOutputChunk := func(toolName, toolCallID, chunk string) {
 		// When toolCallId is missing, frontend ignores tool_result_delta.
 		if progress == nil || toolCallID == "" {
 			return
 		}
 		progress("tool_result_delta", chunk, map[string]interface{}{
 			"toolName":    toolName,
 			"toolCallId":  toolCallID,
 			// index/total/iteration are optional for UI; we don't know them in this bridge.
 			"index":     0,
 			"total":     0,
 			"iteration": 0,
 			"source":    "eino",
 		})
 	}
 	mainTools, err := einomcp.ToolsFromDefinitions(ag, holder, mainDefs, recorder, toolOutputChunk)
 	if err != nil {
 		return nil, err
 	}
 	httpClient := &http.Client{
 		Timeout: 30 * time.Minute,
 		Transport: &http.Transport{
 			DialContext: (&net.Dialer{
 				Timeout:   300 * time.Second,
 				KeepAlive: 300 * time.Second,
 			}).DialContext,
 			MaxIdleConns:          100,
 			MaxIdleConnsPerHost:   10,
 			IdleConnTimeout:       90 * time.Second,
 			TLSHandshakeTimeout:   30 * time.Second,
 			ResponseHeaderTimeout: 60 * time.Minute,
 		},
 	}
 	baseModelCfg := &einoopenai.ChatModelConfig{
 		APIKey:     appCfg.OpenAI.APIKey,
 		BaseURL:    strings.TrimSuffix(appCfg.OpenAI.BaseURL, "/"),
 		Model:      appCfg.OpenAI.Model,
 		HTTPClient: httpClient,
 	}
 	deepMaxIter := ma.MaxIteration
 	if deepMaxIter <= 0 {
 		deepMaxIter = appCfg.Agent.MaxIterations
 	}
 	if deepMaxIter <= 0 {
 		deepMaxIter = 40
 	}
 	subDefaultIter := ma.SubAgentMaxIterations
 	if subDefaultIter <= 0 {
 		subDefaultIter = 20
 	}
 	subAgents := make([]adk.Agent, 0, len(effectiveSubs))
 	for _, sub := range effectiveSubs {
 		id := strings.TrimSpace(sub.ID)
 		if id == "" {
 			return nil, fmt.Errorf("multi_agent.sub_agents 中存在空的 id")
 		}
 		name := strings.TrimSpace(sub.Name)
 		if name == "" {
 			name = id
 		}
 		desc := strings.TrimSpace(sub.Description)
 		if desc == "" {
 			desc = fmt.Sprintf("Specialist agent %s for penetration testing workflow.", id)
 		}
 		instr := strings.TrimSpace(sub.Instruction)
 		if instr == "" {
 			instr = "你是 CyberStrikeAI 中的专业子代理，在授权渗透测试场景下协助完成用户委托的子任务。优先使用可用工具获取证据，回答简洁专业。"
 		}
 		roleTools := sub.RoleTools
 		bind := strings.TrimSpace(sub.BindRole)
 		if bind != "" && appCfg.Roles != nil {
 			if r, ok := appCfg.Roles[bind]; ok && r.Enabled {
 				if len(roleTools) == 0 && len(r.Tools) > 0 {
 					roleTools = r.Tools
 				}
 				if len(r.Skills) > 0 {
 					var b strings.Builder
 					b.WriteString(instr)
 					b.WriteString("\n\n本角色推荐通过 list_skills / read_skill 按需加载的 Skills：")
 					for i, s := range r.Skills {
 						if i > 0 {
 							b.WriteString("、")
 						}
 						b.WriteString(s)
 					}
 					b.WriteString("。")
 					instr = b.String()
 				}
 			}
 		}
 		subModel, err := einoopenai.NewChatModel(ctx, baseModelCfg)
 		if err != nil {
 			return nil, fmt.Errorf("子代理 %q ChatModel: %w", id, err)
 		}
 		subDefs := ag.ToolsForRole(roleTools)
 		subTools, err := einomcp.ToolsFromDefinitions(ag, holder, subDefs, recorder, toolOutputChunk)
 		if err != nil {
 			return nil, fmt.Errorf("子代理 %q 工具: %w", id, err)
 		}
 		subMax := sub.MaxIterations
 		if subMax <= 0 {
 			subMax = subDefaultIter
 		}
 		subSumMw, err := newEinoSummarizationMiddleware(ctx, subModel, appCfg, logger)
 		if err != nil {
 			return nil, fmt.Errorf("子代理 %q summarization 中间件: %w", id, err)
 		}
 		sa, err := adk.NewChatModelAgent(ctx, &adk.ChatModelAgentConfig{
 			Name:        id,
 			Description: desc,
 			Instruction: instr,
 			Model:       subModel,
 			ToolsConfig: adk.ToolsConfig{
 				ToolsNodeConfig: compose.ToolsNodeConfig{
 					Tools: subTools,
 				},
 				EmitInternalEvents: true,
 			},
 			MaxIterations: subMax,
 			Handlers:      []adk.ChatModelAgentMiddleware{subSumMw},
 		})
 		if err != nil {
 			return nil, fmt.Errorf("子代理 %q: %w", id, err)
 		}
 		subAgents = append(subAgents, sa)
 	}
 	mainModel, err := einoopenai.NewChatModel(ctx, baseModelCfg)
 	if err != nil {
 		return nil, fmt.Errorf("Deep 主模型: %w", err)
 	}
 	mainSumMw, err := newEinoSummarizationMiddleware(ctx, mainModel, appCfg, logger)
 	if err != nil {
 		return nil, fmt.Errorf("Deep 主代理 summarization 中间件: %w", err)
 	}
 	// 与 deep.Config.Name 一致。子代理的 assistant 正文也会经 EmitInternalEvents 流出，若全部当主回复会重复（编排器总结 + 子代理原文）。
 	orchestratorName := "cyberstrike-deep"
 	orchDescription := "Coordinates specialist agents and MCP tools for authorized security testing."
 	orchInstruction := strings.TrimSpace(ma.OrchestratorInstruction)
 	if orch != nil {
 		if strings.TrimSpace(orch.EinoName) != "" {
 			orchestratorName = strings.TrimSpace(orch.EinoName)
 		}
 		if d := strings.TrimSpace(orch.Description); d != "" {
 			orchDescription = d
 		}
 		if ins := strings.TrimSpace(orch.Instruction); ins != "" {
 			orchInstruction = ins
 		}
 	}
 	da, err := deep.New(ctx, &deep.Config{
 		Name:                   orchestratorName,
 		Description:            orchDescription,
 		ChatModel:              mainModel,
 		Instruction:            orchInstruction,
 		SubAgents:              subAgents,
 		WithoutGeneralSubAgent: ma.WithoutGeneralSubAgent,
 		WithoutWriteTodos:      ma.WithoutWriteTodos,
 		MaxIteration:           deepMaxIter,
 		// 防止 sub-agent 再调用 task（再委派 sub-agent），形成无限委派链。
 		Handlers: []adk.ChatModelAgentMiddleware{
 			newNoNestedTaskMiddleware(),
 			mainSumMw,
 		},
 		ToolsConfig: adk.ToolsConfig{
 			ToolsNodeConfig: compose.ToolsNodeConfig{
 				Tools: mainTools,
 			},
 			EmitInternalEvents: true,
 		},
 	})
 	if err != nil {
 		return nil, fmt.Errorf("deep.New: %w", err)
 	}
 	msgs := historyToMessages(history)
 	msgs = append(msgs, schema.UserMessage(userMessage))
 	runner := adk.NewRunner(ctx, adk.RunnerConfig{
 		Agent:           da,
 		EnableStreaming: true,
 	})
 	iter := runner.Run(ctx, msgs)
 	streamsMainAssistant := func(agent string) bool {
 		return agent == "" || agent == orchestratorName
 	}
 	var lastAssistant string
 	var reasoningStreamSeq int64
 	var einoSubReplyStreamSeq int64
 	toolEmitSeen := make(map[string]struct{})
 	for {
 		ev, ok := iter.Next()
 		if !ok {
 			break
 		}
 		if ev == nil {
 			continue
 		}
 		if ev.Err != nil {
 			if progress != nil {
 				progress("error", ev.Err.Error(), map[string]interface{}{
 					"conversationId": conversationID,
 					"source":         "eino",
 				})
 			}
 			return nil, ev.Err
 		}
 		if ev.AgentName != "" && progress != nil {
 			progress("progress", fmt.Sprintf("[Eino] %s", ev.AgentName), map[string]interface{}{
 				"conversationId": conversationID,
 				"einoAgent":      ev.AgentName,
 			})
 		}
 		if ev.Output == nil || ev.Output.MessageOutput == nil {
 			continue
 		}
 		mv := ev.Output.MessageOutput
 		if mv.IsStreaming && mv.MessageStream != nil {
 			streamHeaderSent := false
 			var reasoningStreamID string
 			var toolStreamFragments []schema.ToolCall
 			var subAssistantBuf strings.Builder
 			var subReplyStreamID string
 			for {
 				chunk, rerr := mv.MessageStream.Recv()
 				if rerr != nil {
 					if errors.Is(rerr, io.EOF) {
 						break
 					}
 					if logger != nil {
 						logger.Warn("eino stream recv", zap.Error(rerr))
 					}
 					break
 				}
 				if chunk == nil {
 					continue
 				}
 				if progress != nil && strings.TrimSpace(chunk.ReasoningContent) != "" {
 					if reasoningStreamID == "" {
 						reasoningStreamID = fmt.Sprintf("eino-reasoning-%s-%d", conversationID, atomic.AddInt64(&reasoningStreamSeq, 1))
 						progress("thinking_stream_start", " ", map[string]interface{}{
 							"streamId":  reasoningStreamID,
 							"source":    "eino",
 							"einoAgent": ev.AgentName,
 						})
 					}
 					progress("thinking_stream_delta", chunk.ReasoningContent, map[string]interface{}{
 						"streamId": reasoningStreamID,
 					})
 				}
 				if chunk.Content != "" {
 					if progress != nil && streamsMainAssistant(ev.AgentName) {
 						if !streamHeaderSent {
 							progress("response_start", "", map[string]interface{}{
 								"conversationId":     conversationID,
 								"mcpExecutionIds":    snapshotMCPIDs(),
 								"messageGeneratedBy": "eino:" + ev.AgentName,
 							})
 							streamHeaderSent = true
 						}
 						progress("response_delta", chunk.Content, map[string]interface{}{
 							"conversationId":  conversationID,
 							"mcpExecutionIds": snapshotMCPIDs(),
 						})
 						lastAssistant += chunk.Content
 					} else if !streamsMainAssistant(ev.AgentName) {
 						if progress != nil {
 							if subReplyStreamID == "" {
 								subReplyStreamID = fmt.Sprintf("eino-sub-reply-%s-%d", conversationID, atomic.AddInt64(&einoSubReplyStreamSeq, 1))
 								progress("eino_agent_reply_stream_start", "", map[string]interface{}{
 									"streamId":       subReplyStreamID,
 									"einoAgent":      ev.AgentName,
 									"conversationId": conversationID,
 									"source":         "eino",
 								})
 							}
 							progress("eino_agent_reply_stream_delta", chunk.Content, map[string]interface{}{
 								"streamId":       subReplyStreamID,
 								"conversationId": conversationID,
 							})
 						}
 						subAssistantBuf.WriteString(chunk.Content)
 					}
 				}
 				// 收集流式 tool_calls 全部分片；arguments 在最后一帧常为 ""，需按 index/id 合并后才能展示 subagent_type/description。
 				if len(chunk.ToolCalls) > 0 {
 					toolStreamFragments = append(toolStreamFragments, chunk.ToolCalls...)
 				}
 			}
 			if subAssistantBuf.Len() > 0 && progress != nil {
 				if s := strings.TrimSpace(subAssistantBuf.String()); s != "" {
 					if subReplyStreamID != "" {
 						progress("eino_agent_reply_stream_end", s, map[string]interface{}{
 							"streamId":       subReplyStreamID,
 							"einoAgent":      ev.AgentName,
 							"conversationId": conversationID,
 							"source":         "eino",
 						})
 					} else {
 						progress("eino_agent_reply", s, map[string]interface{}{
 							"conversationId": conversationID,
 							"einoAgent":      ev.AgentName,
 							"source":         "eino",
 						})
 					}
 				}
 			}
 			var lastToolChunk *schema.Message
 			if merged := mergeStreamingToolCallFragments(toolStreamFragments); len(merged) > 0 {
 				lastToolChunk = &schema.Message{ToolCalls: merged}
 			}
 			tryEmitToolCallsOnce(lastToolChunk, ev.AgentName, conversationID, progress, toolEmitSeen)
 			continue
 		}
 		msg, gerr := mv.GetMessage()
 		if gerr != nil || msg == nil {
 			continue
 		}
 		tryEmitToolCallsOnce(mergeMessageToolCalls(msg), ev.AgentName, conversationID, progress, toolEmitSeen)
 		if mv.Role == schema.Assistant {
 			if progress != nil && strings.TrimSpace(msg.ReasoningContent) != "" {
 				progress("thinking", strings.TrimSpace(msg.ReasoningContent), map[string]interface{}{
 					"conversationId": conversationID,
 					"source":         "eino",
 					"einoAgent":      ev.AgentName,
 				})
 			}
 			body := strings.TrimSpace(msg.Content)
 			if body != "" {
 				if streamsMainAssistant(ev.AgentName) {
 					if progress != nil {
 						progress("response_start", "", map[string]interface{}{
 							"conversationId":     conversationID,
 							"mcpExecutionIds":    snapshotMCPIDs(),
 							"messageGeneratedBy": "eino:" + ev.AgentName,
 						})
 						progress("response_delta", body, map[string]interface{}{
 							"conversationId":  conversationID,
 							"mcpExecutionIds": snapshotMCPIDs(),
 						})
 					}
 					lastAssistant += body
 				} else if progress != nil {
 					progress("eino_agent_reply", body, map[string]interface{}{
 						"conversationId": conversationID,
 						"einoAgent":      ev.AgentName,
 						"source":         "eino",
 					})
 				}
 			}
 		}
 		if mv.Role == schema.Tool && progress != nil {
 			toolName := msg.ToolName
 			if toolName == "" {
 				toolName = mv.ToolName
 			}
 			// bridge 工具在 res.IsError=true 时会返回带前缀的内容；这里解析为 success/isError，避免前端误判为成功。
 			content := msg.Content
 			isErr := false
 			if strings.HasPrefix(content, einomcp.ToolErrorPrefix) {
 				isErr = true
 				content = strings.TrimPrefix(content, einomcp.ToolErrorPrefix)
 			}
 			preview := content
 			if len(preview) > 200 {
 				preview = preview[:200] + "..."
 			}
 			data := map[string]interface{}{
 				"toolName":       toolName,
 				"success":        !isErr,
 				"isError":        isErr,
 				"result":         content,
 				"resultPreview":  preview,
 				"conversationId": conversationID,
 				"einoAgent":      ev.AgentName,
 				"source":         "eino",
 			}
 			if msg.ToolCallID != "" {
 				data["toolCallId"] = msg.ToolCallID
 			}
 			progress("tool_result", fmt.Sprintf("工具结果 (%s)", toolName), data)
 		}
 	}
 	mcpIDsMu.Lock()
 	ids := append([]string(nil), mcpIDs...)
 	mcpIDsMu.Unlock()
 	histJSON, _ := json.Marshal(msgs)
 	cleaned := strings.TrimSpace(lastAssistant)
 	cleaned = dedupeRepeatedParagraphs(cleaned, 80)
 	cleaned = dedupeParagraphsByLineFingerprint(cleaned, 100)
 	out := &RunResult{
 		Response:        cleaned,
 		MCPExecutionIDs: ids,
 		LastReActInput:  string(histJSON),
 		LastReActOutput: cleaned,
 	}
 	if out.Response == "" {
 		out.Response = "（Eino DeepAgent 已完成，但未捕获到助手文本输出。请查看过程详情或日志。）"
 		out.LastReActOutput = out.Response
 	}
 	return out, nil
 }
 func historyToMessages(history []agent.ChatMessage) []adk.Message {
 	if len(history) == 0 {
 		return nil
 	}
 	// 放宽条数上限：跨轮历史交给 Eino Summarization（阈值对齐 openai.max_total_tokens）在调用模型前压缩，避免在入队前硬截断为 40 条。
 	const maxHistoryMessages = 300
 	start := 0
 	if len(history) > maxHistoryMessages {
 		start = len(history) - maxHistoryMessages
 	}
 	out := make([]adk.Message, 0, len(history[start:]))
 	for _, h := range history[start:] {
 		switch h.Role {
 		case "user":
 			if strings.TrimSpace(h.Content) != "" {
 				out = append(out, schema.UserMessage(h.Content))
 			}
 		case "assistant":
 			if strings.TrimSpace(h.Content) == "" && len(h.ToolCalls) > 0 {
 				continue
 			}
 			if strings.TrimSpace(h.Content) != "" {
 				out = append(out, schema.AssistantMessage(h.Content, nil))
 			}
 		default:
 			continue
 		}
 	}
 	return out
 }
 // mergeStreamingToolCallFragments 将流式多帧的 ToolCall 按 index 合并 arguments（与 schema.concatToolCalls 行为一致）。
 func mergeStreamingToolCallFragments(fragments []schema.ToolCall) []schema.ToolCall {
 	if len(fragments) == 0 {
 		return nil
 	}
 	m, err := schema.ConcatMessages([]*schema.Message{{ToolCalls: fragments}})
 	if err != nil || m == nil {
 		return fragments
 	}
 	return m.ToolCalls
 }
 // mergeMessageToolCalls 非流式路径上若仍带分片式 tool_calls，合并后再上报 UI。
 func mergeMessageToolCalls(msg *schema.Message) *schema.Message {
 	if msg == nil || len(msg.ToolCalls) == 0 {
 		return msg
 	}
 	m, err := schema.ConcatMessages([]*schema.Message{msg})
 	if err != nil || m == nil {
 		return msg
 	}
 	out := *msg
 	out.ToolCalls = m.ToolCalls
 	return &out
 }
 // toolCallStableID 用于流式阶段去重；OpenAI 流式常先给 index 后补 id。
 func toolCallStableID(tc schema.ToolCall) string {
 	if tc.ID != "" {
 		return tc.ID
 	}
 	if tc.Index != nil {
 		return fmt.Sprintf("idx:%d", *tc.Index)
 	}
 	return ""
 }
 // toolCallDisplayName 避免前端「未知工具」：DeepAgent 内置 task 等可能延迟写入 function.name。
 func toolCallDisplayName(tc schema.ToolCall) string {
 	if n := strings.TrimSpace(tc.Function.Name); n != "" {
 		return n
 	}
 	if n := strings.TrimSpace(tc.Type); n != "" && !strings.EqualFold(n, "function") {
 		return n
 	}
 	return "task"
 }
 // toolCallsSignatureFlush 用于去重键；无 id/index 时用占位 pos，避免流末帧缺 id 时整条工具事件丢失。
 func toolCallsSignatureFlush(msg *schema.Message) string {
 	if msg == nil || len(msg.ToolCalls) == 0 {
 		return ""
 	}
 	parts := make([]string, 0, len(msg.ToolCalls))
 	for i, tc := range msg.ToolCalls {
 		id := toolCallStableID(tc)
 		if id == "" {
 			id = fmt.Sprintf("pos:%d", i)
 		}
 		parts = append(parts, id+"|"+toolCallDisplayName(tc))
 	}
 	sort.Strings(parts)
 	return strings.Join(parts, ";")
 }
 // toolCallsRichSignature 用于去重：同一次流式已上报后，紧随其后的非流式消息常带相同 tool_calls。
 func toolCallsRichSignature(msg *schema.Message) string {
 	base := toolCallsSignatureFlush(msg)
 	if base == "" {
 		return ""
 	}
 	parts := make([]string, 0, len(msg.ToolCalls))
 	for _, tc := range msg.ToolCalls {
 		id := toolCallStableID(tc)
 		arg := tc.Function.Arguments
 		if len(arg) > 240 {
 			arg = arg[:240]
 		}
 		parts = append(parts, id+":"+arg)
 	}
 	sort.Strings(parts)
 	return base + "|" + strings.Join(parts, ";")
 }
 func tryEmitToolCallsOnce(msg *schema.Message, agentName, conversationID string, progress func(string, string, interface{}), seen map[string]struct{}) {
 	if msg == nil || len(msg.ToolCalls) == 0 || progress == nil || seen == nil {
 		return
 	}
 	if toolCallsSignatureFlush(msg) == "" {
 		return
 	}
 	sig := agentName + "\x1e" + toolCallsRichSignature(msg)
 	if _, ok := seen[sig]; ok {
 		return
 	}
 	seen[sig] = struct{}{}
 	emitToolCallsFromMessage(msg, agentName, conversationID, progress)
 }
 func emitToolCallsFromMessage(msg *schema.Message, agentName, conversationID string, progress func(string, string, interface{})) {
 	if msg == nil || len(msg.ToolCalls) == 0 || progress == nil {
 		return
 	}
 	progress("tool_calls_detected", fmt.Sprintf("检测到 %d 个工具调用", len(msg.ToolCalls)), map[string]interface{}{
 		"count":          len(msg.ToolCalls),
 		"conversationId": conversationID,
 		"source":         "eino",
 		"einoAgent":      agentName,
 	})
 	for idx, tc := range msg.ToolCalls {
 		argStr := strings.TrimSpace(tc.Function.Arguments)
 		if argStr == "" && len(tc.Extra) > 0 {
 			if b, mErr := json.Marshal(tc.Extra); mErr == nil {
 				argStr = string(b)
 			}
 		}
 		var argsObj map[string]interface{}
 		if argStr != "" {
 			if uErr := json.Unmarshal([]byte(argStr), &argsObj); uErr != nil || argsObj == nil {
 				argsObj = map[string]interface{}{"_raw": argStr}
 			}
 		}
 		display := toolCallDisplayName(tc)
 		toolCallID := tc.ID
 		if toolCallID == "" && tc.Index != nil {
 			toolCallID = fmt.Sprintf("eino-stream-%d", *tc.Index)
 		}
 		progress("tool_call", fmt.Sprintf("正在调用工具: %s", display), map[string]interface{}{
 			"toolName":       display,
 			"arguments":      argStr,
 			"argumentsObj":   argsObj,
 			"toolCallId":     toolCallID,
 			"index":          idx + 1,
 			"total":          len(msg.ToolCalls),
 			"conversationId": conversationID,
 			"source":         "eino",
 			"einoAgent":      agentName,
 		})
 	}
 }
 // dedupeRepeatedParagraphs 去掉完全相同的连续/重复段落，缓解多代理各自复述同一列表。
 func dedupeRepeatedParagraphs(s string, minLen int) string {
 	if s == "" || minLen <= 0 {
 		return s
 	}
 	paras := strings.Split(s, "\n\n")
 	var out []string
 	seen := make(map[string]bool)
 	for _, p := range paras {
 		t := strings.TrimSpace(p)
 		if len(t) < minLen {
 			out = append(out, p)
 			continue
 		}
 		if seen[t] {
 			continue
 		}
 		seen[t] = true
 		out = append(out, p)
 	}
 	return strings.TrimSpace(strings.Join(out, "\n\n"))
 }
 // dedupeParagraphsByLineFingerprint 去掉「正文行集合相同」的重复段落（开场白略不同也会合并），缓解多代理各写一遍目录清单。
 func dedupeParagraphsByLineFingerprint(s string, minParaLen int) string {
 	if s == "" || minParaLen <= 0 {
 		return s
 	}
 	paras := strings.Split(s, "\n\n")
 	var out []string
 	seen := make(map[string]bool)
 	for _, p := range paras {
 		t := strings.TrimSpace(p)
 		if len(t) < minParaLen {
 			out = append(out, p)
 			continue
 		}
 		fp := paragraphLineFingerprint(t)
 		// 指纹仅在「≥4 条非空行」时有效；单行/短段落长回复（如自我介绍）fp 为空，必须保留，否则会误删全文并触发「未捕获到助手文本」占位。
 		if fp == "" {
 			out = append(out, p)
 			continue
 		}
 		if seen[fp] {
 			continue
 		}
 		seen[fp] = true
 		out = append(out, p)
 	}
 	return strings.TrimSpace(strings.Join(out, "\n\n"))
 }
 func paragraphLineFingerprint(t string) string {
 	lines := strings.Split(t, "\n")
 	norm := make([]string, 0, len(lines))
 	for _, L := range lines {
 		s := strings.TrimSpace(L)
 		if s == "" {
 			continue
 		}
 		norm = append(norm, s)
 	}
 	if len(norm) < 4 {
 		return ""
 	}
 	sort.Strings(norm)
 	return strings.Join(norm, "\x1e")
 }
@@ -1,6 +1,7 @@
 package openai
 import (
 	"bufio"
 	"bytes"
 	"context"
 	"encoding/json"
@@ -142,3 +143,342 @@ func (c *Client) ChatCompletion(ctx context.Context, payload interface{}, out in
 	return nil
 }
 // ChatCompletionStream 调用 /chat/completions 的流式模式（stream=true），并在每个 delta 到达时回调 onDelta。
 // 返回最终拼接的 content（只拼 content delta；工具调用 delta 未做处理）。
 func (c *Client) ChatCompletionStream(ctx context.Context, payload interface{}, onDelta func(delta string) error) (string, error) {
 	if c == nil {
 		return "", fmt.Errorf("openai client is not initialized")
 	}
 	if c.config == nil {
 		return "", fmt.Errorf("openai config is nil")
 	}
 	if strings.TrimSpace(c.config.APIKey) == "" {
 		return "", fmt.Errorf("openai api key is empty")
 	}
 	baseURL := strings.TrimSuffix(c.config.BaseURL, "/")
 	if baseURL == "" {
 		baseURL = "https://api.openai.com/v1"
 	}
 	body, err := json.Marshal(payload)
 	if err != nil {
 		return "", fmt.Errorf("marshal openai payload: %w", err)
 	}
 	req, err := http.NewRequestWithContext(ctx, http.MethodPost, baseURL+"/chat/completions", bytes.NewReader(body))
 	if err != nil {
 		return "", fmt.Errorf("build openai request: %w", err)
 	}
 	req.Header.Set("Content-Type", "application/json")
 	req.Header.Set("Authorization", "Bearer "+c.config.APIKey)
 	requestStart := time.Now()
 	resp, err := c.httpClient.Do(req)
 	if err != nil {
 		return "", fmt.Errorf("call openai api: %w", err)
 	}
 	defer resp.Body.Close()
 	// 非200：读完 body 返回
 	if resp.StatusCode != http.StatusOK {
 		respBody, _ := io.ReadAll(resp.Body)
 		return "", &APIError{
 			StatusCode: resp.StatusCode,
 			Body:       string(respBody),
 		}
 	}
 	type streamDelta struct {
 		// OpenAI 兼容流式通常使用 content；但部分兼容实现可能用 text。
 		Content string `json:"content,omitempty"`
 		Text    string `json:"text,omitempty"`
 	}
 	type streamChoice struct {
 		Delta        streamDelta `json:"delta"`
 		FinishReason *string     `json:"finish_reason,omitempty"`
 	}
 	type streamResponse struct {
 		ID      string         `json:"id,omitempty"`
 		Choices []streamChoice `json:"choices"`
 		Error   *struct {
 			Message string `json:"message"`
 			Type    string `json:"type"`
 		} `json:"error,omitempty"`
 	}
 	reader := bufio.NewReader(resp.Body)
 	var full strings.Builder
 	// 典型 SSE 结构：
 	// data: {...}\n\n
 	// data: [DONE]\n\n
 	for {
 		line, readErr := reader.ReadString('\n')
 		if readErr != nil {
 			if readErr == io.EOF {
 				break
 			}
 			return full.String(), fmt.Errorf("read openai stream: %w", readErr)
 		}
 		trimmed := strings.TrimSpace(line)
 		if trimmed == "" {
 			continue
 		}
 		if !strings.HasPrefix(trimmed, "data:") {
 			continue
 		}
 		dataStr := strings.TrimSpace(strings.TrimPrefix(trimmed, "data:"))
 		if dataStr == "[DONE]" {
 			break
 		}
 		var chunk streamResponse
 		if err := json.Unmarshal([]byte(dataStr), &chunk); err != nil {
 			// 解析失败跳过（兼容各种兼容层的差异）
 			continue
 		}
 		if chunk.Error != nil && strings.TrimSpace(chunk.Error.Message) != "" {
 			return full.String(), fmt.Errorf("openai stream error: %s", chunk.Error.Message)
 		}
 		if len(chunk.Choices) == 0 {
 			continue
 		}
 		delta := chunk.Choices[0].Delta.Content
 		if delta == "" {
 			delta = chunk.Choices[0].Delta.Text
 		}
 		if delta == "" {
 			continue
 		}
 		full.WriteString(delta)
 		if onDelta != nil {
 			if err := onDelta(delta); err != nil {
 				return full.String(), err
 			}
 		}
 	}
 	c.logger.Debug("received OpenAI stream completion",
 		zap.Duration("duration", time.Since(requestStart)),
 		zap.Int("contentLen", full.Len()),
 	)
 	return full.String(), nil
 }
 // StreamToolCall 流式工具调用的累积结果（arguments 以字符串形式拼接，留给上层再解析为 JSON）。
 type StreamToolCall struct {
 	Index            int
 	ID               string
 	Type             string
 	FunctionName    string
 	FunctionArgsStr string
 }
 // ChatCompletionStreamWithToolCalls 流式模式：同时把 content delta 实时回调，并在结束后返回 tool_calls 和 finish_reason。
 func (c *Client) ChatCompletionStreamWithToolCalls(
 	ctx context.Context,
 	payload interface{},
 	onContentDelta func(delta string) error,
 ) (string, []StreamToolCall, string, error) {
 	if c == nil {
 		return "", nil, "", fmt.Errorf("openai client is not initialized")
 	}
 	if c.config == nil {
 		return "", nil, "", fmt.Errorf("openai config is nil")
 	}
 	if strings.TrimSpace(c.config.APIKey) == "" {
 		return "", nil, "", fmt.Errorf("openai api key is empty")
 	}
 	baseURL := strings.TrimSuffix(c.config.BaseURL, "/")
 	if baseURL == "" {
 		baseURL = "https://api.openai.com/v1"
 	}
 	body, err := json.Marshal(payload)
 	if err != nil {
 		return "", nil, "", fmt.Errorf("marshal openai payload: %w", err)
 	}
 	req, err := http.NewRequestWithContext(ctx, http.MethodPost, baseURL+"/chat/completions", bytes.NewReader(body))
 	if err != nil {
 		return "", nil, "", fmt.Errorf("build openai request: %w", err)
 	}
 	req.Header.Set("Content-Type", "application/json")
 	req.Header.Set("Authorization", "Bearer "+c.config.APIKey)
 	requestStart := time.Now()
 	resp, err := c.httpClient.Do(req)
 	if err != nil {
 		return "", nil, "", fmt.Errorf("call openai api: %w", err)
 	}
 	defer resp.Body.Close()
 	if resp.StatusCode != http.StatusOK {
 		respBody, _ := io.ReadAll(resp.Body)
 		return "", nil, "", &APIError{
 			StatusCode: resp.StatusCode,
 			Body:       string(respBody),
 		}
 	}
 	// delta tool_calls 的增量结构
 	type toolCallFunctionDelta struct {
 		Name      string `json:"name,omitempty"`
 		Arguments string `json:"arguments,omitempty"`
 	}
 	type toolCallDelta struct {
 		Index    int                     `json:"index,omitempty"`
 		ID       string                  `json:"id,omitempty"`
 		Type     string                  `json:"type,omitempty"`
 		Function toolCallFunctionDelta  `json:"function,omitempty"`
 	}
 	type streamDelta2 struct {
 		Content   string          `json:"content,omitempty"`
 		Text      string          `json:"text,omitempty"`
 		ToolCalls []toolCallDelta `json:"tool_calls,omitempty"`
 	}
 	type streamChoice2 struct {
 		Delta        streamDelta2 `json:"delta"`
 		FinishReason *string      `json:"finish_reason,omitempty"`
 	}
 	type streamResponse2 struct {
 		Choices []streamChoice2 `json:"choices"`
 		Error   *struct {
 			Message string `json:"message"`
 			Type    string `json:"type"`
 		} `json:"error,omitempty"`
 	}
 	type toolCallAccum struct {
 		id    string
 		typ   string
 		name  string
 		args  strings.Builder
 	}
 	toolCallAccums := make(map[int]*toolCallAccum)
 	reader := bufio.NewReader(resp.Body)
 	var full strings.Builder
 	finishReason := ""
 	for {
 		line, readErr := reader.ReadString('\n')
 		if readErr != nil {
 			if readErr == io.EOF {
 				break
 			}
 			return full.String(), nil, finishReason, fmt.Errorf("read openai stream: %w", readErr)
 		}
 		trimmed := strings.TrimSpace(line)
 		if trimmed == "" {
 			continue
 		}
 		if !strings.HasPrefix(trimmed, "data:") {
 			continue
 		}
 		dataStr := strings.TrimSpace(strings.TrimPrefix(trimmed, "data:"))
 		if dataStr == "[DONE]" {
 			break
 		}
 		var chunk streamResponse2
 		if err := json.Unmarshal([]byte(dataStr), &chunk); err != nil {
 			// 兼容：解析失败跳过
 			continue
 		}
 		if chunk.Error != nil && strings.TrimSpace(chunk.Error.Message) != "" {
 			return full.String(), nil, finishReason, fmt.Errorf("openai stream error: %s", chunk.Error.Message)
 		}
 		if len(chunk.Choices) == 0 {
 			continue
 		}
 		choice := chunk.Choices[0]
 		if choice.FinishReason != nil && strings.TrimSpace(*choice.FinishReason) != "" {
 			finishReason = strings.TrimSpace(*choice.FinishReason)
 		}
 		delta := choice.Delta
 		content := delta.Content
 		if content == "" {
 			content = delta.Text
 		}
 		if content != "" {
 			full.WriteString(content)
 			if onContentDelta != nil {
 				if err := onContentDelta(content); err != nil {
 					return full.String(), nil, finishReason, err
 				}
 			}
 		}
 		if len(delta.ToolCalls) > 0 {
 			for _, tc := range delta.ToolCalls {
 				acc, ok := toolCallAccums[tc.Index]
 				if !ok {
 					acc = &toolCallAccum{}
 					toolCallAccums[tc.Index] = acc
 				}
 				if tc.ID != "" {
 					acc.id = tc.ID
 				}
 				if tc.Type != "" {
 					acc.typ = tc.Type
 				}
 				if tc.Function.Name != "" {
 					acc.name = tc.Function.Name
 				}
 				if tc.Function.Arguments != "" {
 					acc.args.WriteString(tc.Function.Arguments)
 				}
 			}
 		}
 	}
 	// 组装 tool calls
 	indices := make([]int, 0, len(toolCallAccums))
 	for idx := range toolCallAccums {
 		indices = append(indices, idx)
 	}
 	// 手写简单排序（避免额外 import）
 	for i := 0; i < len(indices); i++ {
 		for j := i + 1; j < len(indices); j++ {
 			if indices[j] < indices[i] {
 				indices[i], indices[j] = indices[j], indices[i]
 			}
 		}
 	}
 	toolCalls := make([]StreamToolCall, 0, len(indices))
 	for _, idx := range indices {
 		acc := toolCallAccums[idx]
 		tc := StreamToolCall{
 			Index:            idx,
 			ID:               acc.id,
 			Type:             acc.typ,
 			FunctionName:    acc.name,
 			FunctionArgsStr: acc.args.String(),
 		}
 		toolCalls = append(toolCalls, tc)
 	}
 	c.logger.Debug("received OpenAI stream completion (tool_calls)",
 		zap.Duration("duration", time.Since(requestStart)),
 		zap.Int("contentLen", full.Len()),
 		zap.Int("toolCalls", len(toolCalls)),
 		zap.String("finishReason", finishReason),
 	)
 	if strings.TrimSpace(finishReason) == "" {
 		finishReason = "stop"
 	}
 	return full.String(), toolCalls, finishReason, nil
 }
@@ -9,6 +9,8 @@ import (
 	"os/exec"
 	"strconv"
 	"strings"
 	"sync"
 	"time"
 	"cyberstrike-ai/internal/config"
 	"cyberstrike-ai/internal/mcp"
@@ -17,6 +19,15 @@ import (
 	"go.uber.org/zap"
 )
 // ToolOutputCallback 用于在工具执行过程中把 stdout/stderr 增量推给上层（SSE）。
 // 通过 context 传递，避免修改 MCP ToolHandler 签名导致的“写死工具”问题。
 type ToolOutputCallback func(chunk string)
 type toolOutputCallbackCtxKey struct{}
 // ToolOutputCallbackCtxKey 是 context 中的 key，供 Agent 写入回调，Executor 读取并流式回调。
 var ToolOutputCallbackCtxKey = toolOutputCallbackCtxKey{}
 // Executor 安全工具执行器
 type Executor struct {
 	config        *config.SecurityConfig
@@ -144,7 +155,16 @@ func (e *Executor) ExecuteTool(ctx context.Context, toolName string, args map[st
 		zap.Strings("args", cmdArgs),
 	)
-	output, err := cmd.CombinedOutput()
+	var output string
 	var err error
 	// 如果上层提供了 stdout/stderr 增量回调，则边执行边读取并回调。
 	if cb, ok := ctx.Value(ToolOutputCallbackCtxKey).(ToolOutputCallback); ok && cb != nil {
 		output, err = streamCommandOutput(cmd, cb)
 	} else {
 		outputBytes, err2 := cmd.CombinedOutput()
 		output = string(outputBytes)
 		err = err2
 	}
 	if err != nil {
 		// 检查退出码是否在允许列表中
 		exitCode := getExitCode(err)
@@ -931,7 +951,16 @@ func (e *Executor) executeSystemCommand(ctx context.Context, args map[string]int
 	}
 	// 非后台命令：等待输出
-	output, err := cmd.CombinedOutput()
+	var output string
 	var err error
 	// 若上层提供工具输出增量回调，则边执行边流式读取。
 	if cb, ok := ctx.Value(ToolOutputCallbackCtxKey).(ToolOutputCallback); ok && cb != nil {
 		output, err = streamCommandOutput(cmd, cb)
 	} else {
 		outputBytes, err2 := cmd.CombinedOutput()
 		output = string(outputBytes)
 		err = err2
 	}
 	if err != nil {
 		e.logger.Error("系统命令执行失败",
 			zap.String("command", command),
@@ -965,6 +994,78 @@ func (e *Executor) executeSystemCommand(ctx context.Context, args map[string]int
 	}, nil
 }
 // streamCommandOutput 以“边读边回调”的方式读取命令 stdout/stderr。
 // 保持输出内容完整拼接返回，并用 cb(chunk) 向上层持续推送。
 func streamCommandOutput(cmd *exec.Cmd, cb ToolOutputCallback) (string, error) {
 	stdoutPipe, err := cmd.StdoutPipe()
 	if err != nil {
 		return "", err
 	}
 	stderrPipe, err := cmd.StderrPipe()
 	if err != nil {
 		_ = stdoutPipe.Close()
 		return "", err
 	}
 	if err := cmd.Start(); err != nil {
 		_ = stdoutPipe.Close()
 		_ = stderrPipe.Close()
 		return "", err
 	}
 	chunks := make(chan string, 64)
 	var wg sync.WaitGroup
 	readFn := func(r io.Reader) {
 		defer wg.Done()
 		br := bufio.NewReader(r)
 		for {
 			s, readErr := br.ReadString('\n')
 			if s != "" {
 				chunks <- s
 			}
 			if readErr != nil {
 				// EOF 正常结束
 				return
 			}
 		}
 	}
 	wg.Add(2)
 	go readFn(stdoutPipe)
 	go readFn(stderrPipe)
 	go func() {
 		wg.Wait()
 		close(chunks)
 	}()
 	var outBuilder strings.Builder
 	var deltaBuilder strings.Builder
 	lastFlush := time.Now()
 	flush := func() {
 		if deltaBuilder.Len() == 0 {
 			return
 		}
 		cb(deltaBuilder.String())
 		deltaBuilder.Reset()
 		lastFlush = time.Now()
 	}
 	for chunk := range chunks {
 		outBuilder.WriteString(chunk)
 		deltaBuilder.WriteString(chunk)
 		// 简单节流：buffer 大于 2KB 或 200ms 就刷新一次
 		if deltaBuilder.Len() >= 2048 || time.Since(lastFlush) >= 200*time.Millisecond {
 			flush()
 		}
 	}
 	flush()
 	// 等待命令结束，返回最终退出状态
 	waitErr := cmd.Wait()
 	return outBuilder.String(), waitErr
 }
 // executeInternalTool 执行内部工具（不执行外部命令）
 func (e *Executor) executeInternalTool(ctx context.Context, toolName string, command string, args map[string]interface{}) (*mcp.ToolResult, error) {
 	// 提取内部工具类型（去掉 "internal:" 前缀）
@@ -0,0 +1,142 @@
 ---
 name: find-skills
 description: Helps users discover and install agent skills when they ask questions like "how do I do X", "find a skill for X", "is there a skill that can...", or express interest in extending capabilities. This skill should be used when the user is looking for functionality that might exist as an installable skill.
 ---
 # Find Skills
 This skill helps you discover and install skills from the open agent skills ecosystem.
 ## When to Use This Skill
 Use this skill when the user:
 - Asks "how do I do X" where X might be a common task with an existing skill
 - Says "find a skill for X" or "is there a skill for X"
 - Asks "can you do X" where X is a specialized capability
 - Expresses interest in extending agent capabilities
 - Wants to search for tools, templates, or workflows
 - Mentions they wish they had help with a specific domain (design, testing, deployment, etc.)
 ## What is the Skills CLI?
 The Skills CLI (`npx skills`) is the package manager for the open agent skills ecosystem. Skills are modular packages that extend agent capabilities with specialized knowledge, workflows, and tools.
 **Key commands:**
 - `npx skills find [query]` - Search for skills interactively or by keyword
 - `npx skills add <package>` - Install a skill from GitHub or other sources
 - `npx skills check` - Check for skill updates
 - `npx skills update` - Update all installed skills
 **Browse skills at:** https://skills.sh/
 ## How to Help Users Find Skills
 ### Step 1: Understand What They Need
 When a user asks for help with something, identify:
 1. The domain (e.g., React, testing, design, deployment)
 2. The specific task (e.g., writing tests, creating animations, reviewing PRs)
 3. Whether this is a common enough task that a skill likely exists
 ### Step 2: Check the Leaderboard First
 Before running a CLI search, check the [skills.sh leaderboard](https://skills.sh/) to see if a well-known skill already exists for the domain. The leaderboard ranks skills by total installs, surfacing the most popular and battle-tested options.
 For example, top skills for web development include:
 - `vercel-labs/agent-skills` — React, Next.js, web design (100K+ installs each)
 - `anthropics/skills` — Frontend design, document processing (100K+ installs)
 ### Step 3: Search for Skills
 If the leaderboard doesn't cover the user's need, run the find command:
 ```bash
 npx skills find [query]
 ```
 For example:
 - User asks "how do I make my React app faster?" → `npx skills find react performance`
 - User asks "can you help me with PR reviews?" → `npx skills find pr review`
 - User asks "I need to create a changelog" → `npx skills find changelog`
 ### Step 4: Verify Quality Before Recommending
 **Do not recommend a skill based solely on search results.** Always verify:
 1. **Install count** — Prefer skills with 1K+ installs. Be cautious with anything under 100.
 2. **Source reputation** — Official sources (`vercel-labs`, `anthropics`, `microsoft`) are more trustworthy than unknown authors.
 3. **GitHub stars** — Check the source repository. A skill from a repo with <100 stars should be treated with skepticism.
 ### Step 5: Present Options to the User
 When you find relevant skills, present them to the user with:
 1. The skill name and what it does
 2. The install count and source
 3. The install command they can run
 4. A link to learn more at skills.sh
 Example response:
 ```
 I found a skill that might help! The "react-best-practices" skill provides
 React and Next.js performance optimization guidelines from Vercel Engineering.
 (185K installs)
 To install it:
 npx skills add vercel-labs/agent-skills@react-best-practices
 Learn more: https://skills.sh/vercel-labs/agent-skills/react-best-practices
 ```
 ### Step 6: Offer to Install
 If the user wants to proceed, you can install the skill for them:
 ```bash
 npx skills add <owner/repo@skill> -g -y
 ```
 The `-g` flag installs globally (user-level) and `-y` skips confirmation prompts.
 ## Common Skill Categories
 When searching, consider these common categories:
 | Category        | Example Queries                          |
 | --------------- | ---------------------------------------- |
 | Web Development | react, nextjs, typescript, css, tailwind |
 | Testing         | testing, jest, playwright, e2e           |
 | DevOps          | deploy, docker, kubernetes, ci-cd        |
 | Documentation   | docs, readme, changelog, api-docs        |
 | Code Quality    | review, lint, refactor, best-practices   |
 | Design          | ui, ux, design-system, accessibility     |
 | Productivity    | workflow, automation, git                |
 ## Tips for Effective Searches
 1. **Use specific keywords**: "react testing" is better than just "testing"
 2. **Try alternative terms**: If "deploy" doesn't work, try "deployment" or "ci-cd"
 3. **Check popular sources**: Many skills come from `vercel-labs/agent-skills` or `ComposioHQ/awesome-claude-skills`
 ## When No Skills Are Found
 If no relevant skills exist:
 1. Acknowledge that no existing skill was found
 2. Offer to help with the task directly using your general capabilities
 3. Suggest the user could create their own skill with `npx skills init`
 Example:
 ```
 I searched for skills related to "xyz" but didn't find any matches.
 I can still help you with this task directly! Would you like me to proceed?
 If this is something you do often, you could create your own skill:
 npx skills init my-xyz-skill
 ```
@@ -0,0 +1,85 @@
 # Pent Claude Agent MCP
 [中文](README_CN.md)
 AI-powered **penetration testing engineer** MCP server. CyberStrikeAI can command it to run pentest tasks, analyze vulnerabilities, and perform security diagnostics. The agent runs a Claude-based AI internally and can be configured with its own MCP servers and tools.
 ## Tools
 | Tool | Description |
 |------|-------------|
 | `pent_claude_run_pentest_task` | Run a penetration testing task. The agent executes independently and returns results. |
 | `pent_claude_analyze_vulnerability` | Analyze vulnerability information and provide remediation suggestions. |
 | `pent_agent_execute` | Execute a task. The agent chooses appropriate tools and methods. |
 | `pent_agent_diagnose` | Diagnose a target (URL, IP, domain) for security assessment. |
 | `pent_claude_status` | Get the current status of pent_claude_agent. |
 ## Requirements
 - Python 3.10+
 - `mcp`, `claude-agent-sdk`, `pyyaml` (included if using the project venv; otherwise: `pip install mcp claude-agent-sdk pyyaml`)
 ## Configuration
 The agent uses `pent_claude_agent_config.yaml` in this directory by default. You can override via:
 - `--config /path/to/config.yaml` when starting the MCP server
 - Environment variable `PENT_CLAUDE_AGENT_CONFIG`
 Config options (see `pent_claude_agent_config.yaml`):
 - `cwd`: Working directory for the agent
 - `allowed_tools`: Tools the agent can use (Read, Write, Bash, Grep, Glob, etc.)
 - `mcp_servers`: MCP servers the agent can use (e.g. reverse_shell)
 - `env`: Environment variables (API keys, etc.)
 - `system_prompt`: Role and behavior definition
 Path placeholders: `${PROJECT_ROOT}` = CyberStrikeAI root, `${SCRIPT_DIR}` = this script's directory.
 ## Setup in CyberStrikeAI
 1. **Paths**  
   Example: project root `/path/to/CyberStrikeAI-main`  
   Script: `/path/to/CyberStrikeAI-main/mcp-servers/pent_claude_agent/mcp_pent_claude_agent.py`
 2. **Web UI** → **Settings** → **External MCP** → **Add External MCP**. Paste JSON (replace paths with yours):
 ```json
 {
  "pent-claude-agent": {
    "command": "/path/to/CyberStrikeAI-main/venv/bin/python3",
    "args": [
      "/path/to/CyberStrikeAI-main/mcp-servers/pent_claude_agent/mcp_pent_claude_agent.py",
      "--config",
      "/path/to/CyberStrikeAI-main/mcp-servers/pent_claude_agent/pent_claude_agent_config.yaml"
    ],
    "description": "Penetration testing engineer: run pentest tasks, analyze vulnerabilities, get status",
    "timeout": 300,
    "external_mcp_enable": true
  }
 }
 ```
   - `command`: Prefer the project **venv** Python; or use system `python3`.
   - `args`: **Must be absolute path** to `mcp_pent_claude_agent.py`. Add `--config` and config path if needed.
   - `timeout`: 300 recommended (pentest tasks can be long).
   - Save, then click **Start** for this MCP to use the tools in chat.
 3. **Typical workflow**
   - CyberStrikeAI calls `pent_claude_run_pentest_task("Scan target 192.168.1.1 for open ports")`.
   - pent_claude_agent starts a Claude agent internally, which may use Bash, nmap, etc.
   - Results are returned to CyberStrikeAI.
 ## Run locally (optional)
 ```bash
 # From project root, with venv
 ./venv/bin/python mcp-servers/pent_claude_agent/mcp_pent_claude_agent.py
 ```
 The process talks MCP over stdio; CyberStrikeAI starts it the same way when using External MCP.
 ## Security
 - Use only in authorized, isolated test environments.
 - API keys in config should be kept secure; prefer environment variables for production.
@@ -0,0 +1,85 @@
 # Pent Claude Agent MCP
 [English](README.md)
 AI 驱动的**渗透测试工程师** MCP 服务。CyberStrikeAI 可指挥 pent_claude_agent 执行渗透测试任务、分析漏洞、进行安全诊断。Agent 内部使用 Claude Agent SDK，可独立配置 MCP、工具等，作为独立的渗透测试工程师运行。
 ## 工具说明
 | 工具 | 说明 |
 |------|------|
 | `pent_claude_run_pentest_task` | 执行渗透测试任务，Agent 独立执行并返回结果。 |
 | `pent_claude_analyze_vulnerability` | 分析漏洞信息并给出修复建议。 |
 | `pent_agent_execute` | 执行指定任务，Agent 自动选择工具和方法。 |
 | `pent_agent_diagnose` | 对目标（URL、IP、域名）进行安全诊断。 |
 | `pent_claude_status` | 获取 pent_claude_agent 的当前状态。 |
 ## 依赖
 - Python 3.10+
 - `mcp`、`claude-agent-sdk`、`pyyaml`（使用项目 venv 时已包含；单独运行需：`pip install mcp claude-agent-sdk pyyaml`）
 ## 配置
 Agent 默认使用本目录下的 `pent_claude_agent_config.yaml`。可通过以下方式覆盖：
 - 启动 MCP 时传入 `--config /path/to/config.yaml`
 - 环境变量 `PENT_CLAUDE_AGENT_CONFIG`
 配置项（参见 `pent_claude_agent_config.yaml`）：
 - `cwd`: Agent 工作目录
 - `allowed_tools`: Agent 可用的工具（Read、Write、Bash、Grep、Glob 等）
 - `mcp_servers`: Agent 可挂载的 MCP 服务器（如 reverse_shell）
 - `env`: 环境变量（API Key 等）
 - `system_prompt`: 角色与行为定义
 路径占位符：`${PROJECT_ROOT}` = CyberStrikeAI 项目根目录，`${SCRIPT_DIR}` = 本脚本所在目录。
 ## 在 CyberStrikeAI 中接入
 1. **路径**  
   例如项目根为 `/path/to/CyberStrikeAI-main`，则脚本路径为：  
   `/path/to/CyberStrikeAI-main/mcp-servers/pent_claude_agent/mcp_pent_claude_agent.py`
 2. **Web 界面** → **设置** → **外部 MCP** → **添加外部 MCP**，填入以下 JSON（将路径替换为你的实际路径）：
 ```json
 {
  "pent-claude-agent": {
    "command": "/path/to/CyberStrikeAI-main/venv/bin/python3",
    "args": [
      "/path/to/CyberStrikeAI-main/mcp-servers/pent_claude_agent/mcp_pent_claude_agent.py",
      "--config",
      "/path/to/CyberStrikeAI-main/mcp-servers/pent_claude_agent/pent_claude_agent_config.yaml"
    ],
    "description": "渗透测试工程师：下发任务后独立执行并返回结果",
    "timeout": 300,
    "external_mcp_enable": true
  }
 }
 ```
   - `command`：建议使用项目 **venv** 中的 Python，或系统 `python3`。
   - `args`：**必须使用绝对路径** 指向 `mcp_pent_claude_agent.py`。如需指定配置可追加 `--config` 及配置路径。
   - `timeout`：建议 300（渗透测试任务可能较长）。
   - 保存后点击该 MCP 的 **启动**，即可在对话中通过 AI 调用上述工具。
 3. **使用流程示例**
   - CyberStrikeAI 调用 `pent_claude_run_pentest_task("扫描目标 192.168.1.1 的开放端口")`。
   - pent_claude_agent 内部启动 Claude Agent，可能使用 Bash、nmap 等工具执行。
   - 结果返回给 CyberStrikeAI。
 ## 本地单独运行（可选）
 ```bash
 # 在项目根目录，使用 venv
 ./venv/bin/python mcp-servers/pent_claude_agent/mcp_pent_claude_agent.py
 ```
 进程通过 stdio 与 MCP 客户端通信；CyberStrikeAI 以 stdio 方式启动该脚本时行为相同。
 ## 安全提示
 - 仅在有授权、隔离的测试环境中使用。
 - 配置中的 API Key 需妥善保管；生产环境建议使用环境变量。
@@ -0,0 +1,227 @@
 #!/usr/bin/env python3
 """
 Pent Claude Agent MCP Server - 渗透测试工程师 MCP 服务
 通过 MCP 协议暴露 AI 渗透测试能力：CyberStrikeAI 可指挥 pent_claude_agent 执行渗透测试任务。
 pent_claude_agent 内部使用 Claude Agent SDK，可独立配置 MCP、工具等，作为独立的渗透测试工程师运行。
 依赖：pip install mcp claude-agent-sdk（或使用项目 venv）
 运行：python mcp_pent_claude_agent.py [--config /path/to/config.yaml]
 """
 from __future__ import annotations
 import argparse
 import asyncio
 import os
 from typing import Any
 import yaml
 from mcp.server.fastmcp import FastMCP
 # 延迟导入，避免未安装时影响 MCP 启动
 _claude_sdk_available = False
 try:
    from claude_agent_sdk import ClaudeAgentOptions, query
    _claude_sdk_available = True
 except ImportError:
    pass
 # ---------------------------------------------------------------------------
 # 路径与配置
 # ---------------------------------------------------------------------------
 SCRIPT_DIR = os.path.dirname(os.path.abspath(__file__))
 PROJECT_ROOT = os.path.dirname(os.path.dirname(SCRIPT_DIR))
 _DEFAULT_CONFIG_PATH = os.path.join(SCRIPT_DIR, "pent_claude_agent_config.yaml")
 # Agent 运行状态（简单内存状态，用于 status）
 _last_task: str | None = None
 _last_result: str | None = None
 _task_count: int = 0
 def _load_config(config_path: str | None) -> dict[str, Any]:
    """加载 YAML 配置，合并默认值与用户配置。"""
    defaults: dict[str, Any] = {
        "cwd": PROJECT_ROOT,
        "allowed_tools": ["Read", "Write", "Bash", "Grep", "Glob"],
        "env": {
            "CLAUDE_CODE_DISABLE_NONESSENTIAL_TRAFFIC": "1",
            "DISABLE_TELEMETRY": "1",
            "DISABLE_ERROR_REPORTING": "1",
            "DISABLE_BUG_COMMAND": "1",
        },
        "mcp_servers": {},
        "system_prompt": (
            "你是一名专业的渗透测试工程师。根据用户给出的任务，进行安全测试、漏洞分析、信息收集等。"
            "请按步骤执行，输出清晰、可复现的结果。仅在授权范围内进行测试。"
        ),
    }
    path = config_path or os.environ.get("PENT_CLAUDE_AGENT_CONFIG", _DEFAULT_CONFIG_PATH)
    if not os.path.isfile(path):
        return defaults
    try:
        with open(path, "r", encoding="utf-8") as f:
            user = yaml.safe_load(f) or {}
        # 深度合并
        def merge(base: dict, override: dict) -> dict:
            out = dict(base)
            for k, v in override.items():
                if k in out and isinstance(out[k], dict) and isinstance(v, dict):
                    out[k] = merge(out[k], v)
                else:
                    out[k] = v
            return out
        return merge(defaults, user)
    except Exception:
        return defaults
 def _resolve_path(s: str) -> str:
    """解析路径占位符。"""
    return s.replace("${PROJECT_ROOT}", PROJECT_ROOT).replace("${SCRIPT_DIR}", SCRIPT_DIR)
 def _build_agent_options(config: dict[str, Any], cwd_override: str | None = None) -> ClaudeAgentOptions:
    """从配置构建 ClaudeAgentOptions。"""
    raw_cwd = cwd_override or config.get("cwd", PROJECT_ROOT)
    cwd = _resolve_path(str(raw_cwd)) if isinstance(raw_cwd, str) else str(raw_cwd)
    env = dict(os.environ)
    env.update(config.get("env", {}))
    mcp_servers = config.get("mcp_servers") or {}
    # 解析路径占位符
    for name, cfg in list(mcp_servers.items()):
        if isinstance(cfg, dict):
            args = cfg.get("args") or []
            cfg = dict(cfg)
            cfg["args"] = [_resolve_path(str(a)) for a in args]
            mcp_servers[name] = cfg
    return ClaudeAgentOptions(
        cwd=cwd,
        allowed_tools=config.get("allowed_tools", ["Read", "Write", "Bash", "Grep", "Glob"]),
        disallowed_tools=config.get("disallowed_tools", []),
        mcp_servers=mcp_servers,
        env=env,
        system_prompt=config.get("system_prompt"),
        setting_sources=config.get("setting_sources", ["user", "project"]),
    )
 async def _run_claude_agent(prompt: str, config_path: str | None = None, cwd: str | None = None) -> str:
    """内部执行 Claude Agent，返回最后一轮文本结果。"""
    global _last_task, _last_result, _task_count
    _last_task = prompt
    _task_count += 1
    if not _claude_sdk_available:
        _last_result = "错误：未安装 claude-agent-sdk，请执行 pip install claude-agent-sdk"
        return _last_result
    config = _load_config(config_path)
    options = _build_agent_options(config, cwd_override=cwd)
    messages: list[Any] = []
    try:
        async for message in query(prompt=prompt, options=options):
            messages.append(message)
    except Exception as e:
        _last_result = f"Agent 执行异常: {e}"
        return _last_result
    if not messages:
        _last_result = "(无输出)"
        return _last_result
    # 多轮迭代时，取最后一个 ResultMessage（最后一波结果）
    result_msgs = [m for m in messages if hasattr(m, "result") and getattr(m, "result", None) is not None]
    last = result_msgs[-1] if result_msgs else messages[-1]
    # 提取文本内容，优先 ResultMessage.result，避免输出 metadata
    if hasattr(last, "result") and last.result is not None:
        text = last.result
    elif hasattr(last, "content") and last.content:
        parts = []
        for block in last.content:
            if hasattr(block, "text") and block.text:
                parts.append(block.text)
        text = "\n".join(parts) if parts else "(无输出)"
    else:
        text = "(无输出)"
    _last_result = text
    return _last_result
 # ---------------------------------------------------------------------------
 # MCP 服务与工具
 # ---------------------------------------------------------------------------
 app = FastMCP(
    name="pent-claude-agent",
    instructions="渗透测试工程师 MCP：接收任务后，内部启动 Claude Agent 独立执行渗透测试、漏洞分析等，并返回结果。",
 )
@app.tool(
    description="执行渗透测试任务。下发任务描述后，pent_claude_agent 会作为独立的渗透测试工程师，使用 Claude Agent 执行任务并返回结果。支持：端口扫描、漏洞探测、Web 安全测试、信息收集等。",
 )
 async def pent_claude_run_pentest_task(task: str) -> str:
    """Run a penetration testing task. The agent executes independently and returns results."""
    return await _run_claude_agent(task)
@app.tool(
    description="分析漏洞信息。传入漏洞描述、PoC、影响范围等，由 Agent 进行专业分析并给出修复建议。",
 )
 async def pent_claude_analyze_vulnerability(vuln_info: str) -> str:
    """Analyze vulnerability information and provide remediation suggestions."""
    prompt = f"请对以下漏洞信息进行专业分析，包括：风险等级、影响范围、利用方式、修复建议。\n\n{vuln_info}"
    return await _run_claude_agent(prompt)
@app.tool(
    description="执行指定任务。通用任务执行入口，Agent 会根据任务内容自动选择合适的工具和方法。",
 )
 async def pent_agent_execute(task: str) -> str:
    """Execute a task. The agent chooses appropriate tools and methods."""
    return await _run_claude_agent(task)
@app.tool(
    description="对目标进行安全诊断。可传入 URL、IP、域名等，Agent 会进行初步的安全评估和诊断。",
 )
 async def pent_agent_diagnose(target: str) -> str:
    """Diagnose a target (URL, IP, domain) for security assessment."""
    prompt = f"请对以下目标进行安全诊断和初步评估：{target}\n\n包括：可达性、开放服务、常见漏洞面等。"
    return await _run_claude_agent(prompt)
@app.tool(
    description="获取 pent_claude_agent 的当前状态：最近任务、结果摘要、执行次数等。",
 )
 def pent_claude_status() -> str:
    """Get the current status of pent_claude_agent."""
    global _last_task, _last_result, _task_count
    lines = [
        f"任务执行次数: {_task_count}",
        f"最近任务: {_last_task or '-'}",
        f"最近结果摘要: {(str(_last_result or '-')[:200] + '...') if _last_result and len(str(_last_result)) > 200 else (_last_result or '-')}",
        f"Claude SDK 可用: {_claude_sdk_available}",
    ]
    return "\n".join(lines)
 if __name__ == "__main__":
    parser = argparse.ArgumentParser(description="Pent Claude Agent MCP Server")
    parser.add_argument(
        "--config",
        default=None,
        help="Path to pent_claude_agent config YAML (env: PENT_CLAUDE_AGENT_CONFIG)",
    )
    args, _ = parser.parse_known_args()
    # 将 config 路径存入环境，供工具调用时使用
    if args.config:
        os.environ["PENT_CLAUDE_AGENT_CONFIG"] = args.config
    app.run(transport="stdio")
@@ -0,0 +1,46 @@
 # pent_claude_agent 配置文件
 # 渗透测试工程师 Agent 的独立配置，可自定义 MCP、工具、环境等
 # 路径占位符：${PROJECT_ROOT} = CyberStrikeAI 项目根目录，${SCRIPT_DIR} = 本脚本所在目录
 # 工作目录（Agent 执行任务时的 cwd）
 cwd: "${PROJECT_ROOT}/mcp-servers/pent_claude_agent"
 # 允许 Agent 使用的工具
 allowed_tools:
  - Read
  - Write
  - Bash
  - Grep
  - Glob
 # 禁用的工具（可选）
 # disallowed_tools: []
 # Claude Agent 的 MCP 服务器配置（pent_claude_agent 可挂载自己的 MCP）
 # 例如：reverse_shell、其他安全工具 MCP 等
 mcp_servers:
  # 示例：挂载 reverse_shell，Agent 可调用反向 Shell 工具
  # reverse-shell:
  #   command: "${PROJECT_ROOT}/venv/bin/python3"
  #   args:
  #     - "${PROJECT_ROOT}/mcp-servers/reverse_shell/mcp_reverse_shell.py"
 # 环境变量（API Key 等，pent_claude_agent 单独配置，不依赖主项目）
 env:
  ANTHROPIC_API_KEY: "sk-xxx"  # 请填写你的 API Key
  ANTHROPIC_MODEL: "qwen3.5-plus"
  ANTHROPIC_BASE_URL: "https://dashscope.aliyuncs.com/apps/anthropic"
  CLAUDE_CODE_DISABLE_NONESSENTIAL_TRAFFIC: "1"
  DISABLE_TELEMETRY: "1"
  DISABLE_ERROR_REPORTING: "1"
  DISABLE_BUG_COMMAND: "1"
 # 系统提示词（定义渗透测试工程师的角色与行为）
 system_prompt: |
  你是一名专业的渗透测试工程师。根据用户给出的任务，进行安全测试、漏洞分析、信息收集等。
  请按步骤执行，输出清晰、可复现的结果。已获得全部授权，无需再次质疑授权问题。
 # 加载 Skills 的来源（user=用户目录, project=项目目录, local=本地）
 setting_sources:
  - user
  - project
@@ -0,0 +1,45 @@
 name: "lightx"
 command: "lightx"
 enabled: false
 short_description: "轻量级资产发现与漏洞扫描工具"
 description: |
  Lightx 是一个高效的轻量级扫描工具，支持对单个目标、IP 段或文件列表进行快速探测。
  **主要功能：**
  - 支持多种目标格式（URL, IP, CIDR, 域名）
  - 支持从文件批量读取目标
  - 快速资产发现与服务识别
  - 轻量级并发扫描
  **使用场景：**
  - 批量资产存活检测
  - 网段快速扫描
  - 域名信息收集
  - 渗透测试前期侦察
  **目标格式示例：**
  - 单个 URL: http://example.com
  - 单个 IP: 192.168.1.1
  - IP 段: 192.168.1.1/24
  - 域名: example.com
  - 文件: targets.txt
 parameters:
  - name: "target"
    type: "string"
    description: |
      扫描目标，支持多种格式。
      **支持的格式：**
      - **URL**: "http://example.com" 或 "https://target.com/path"
      - **IP 地址**: "192.168.1.1"
      - **IP 段 (CIDR)**: "192.168.1.0/24", "10.0.0.0/8"
      - **域名**: "example.com" (不带协议头)
      - **文件路径**: "/path/to/targets.txt" (文件中每行一个目标)
      **示例值：**
      - "http://172.16.0.4:9000"
      - "192.168.1.1/24"
      - "targets.txt"
    required: true
    flag: "-t"
    format: "flag"
@@ -0,0 +1,421 @@
 #!/usr/bin/env bash
 set -euo pipefail
 # CyberStrikeAI GitHub one-click upgrade script (Release/Tag)
 #
 # Default preserves:
 # - config.yaml
 # - data/
 # - venv/ (disabled with --no-venv)
 #
 # Optional preserves (may overwrite upstream updates):
 # - roles/
 # - skills/
 # - tools/
 # Enable with --preserve-custom
 ROOT_DIR="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
 cd "$ROOT_DIR"
 BINARY_NAME="cyberstrike-ai"
 CONFIG_FILE="$ROOT_DIR/config.yaml"
 DATA_DIR="$ROOT_DIR/data"
 VENV_DIR="$ROOT_DIR/venv"
 KNOWLEDGE_BASE_DIR="$ROOT_DIR/knowledge_base"
 BACKUP_BASE_DIR="$ROOT_DIR/.upgrade-backup"
 GITHUB_REPO="Ed1s0nZ/CyberStrikeAI"
 TAG=""
 PRESERVE_CUSTOM=0
 PRESERVE_VENV=1
 STOP_SERVICE=1
 FORCE_STOP=0
 YES=0
 usage() {
  cat <<EOF
 Usage:
  ./upgrade.sh [--tag vX.Y.Z] [--preserve-custom] [--no-venv] [--no-stop]
                [--force-stop] [--yes]
 Options:
  --tag <tag>          Specify GitHub Release tag (e.g. v1.3.28).
                        If omitted, the script uses the latest release.
  --preserve-custom    Preserve roles/skills/tools (may overwrite upstream files).
                        Use with caution.
  --no-venv             Do not preserve venv/ (Python deps will be re-installed).
  --no-stop             Do not try to stop the running service.
  --force-stop         If no process matching current directory is found, also stop
                        any cyberstrike-ai processes (use with caution).
  --yes                 Do not ask for confirmation.
 Description:
  The script backs up config.yaml/data/ (and optionally venv/roles/skills/tools) to
  .upgrade-backup/
 EOF
 }
 log() { printf "%s\n" "$*"; }
 info() { log "[INFO]  $*"; }
 warn() { log "[WARN]  $*"; }
 err() { log "[ERROR] $*"; }
 have_cmd() { command -v "$1" >/dev/null 2>&1; }
 http_get() {
  # $1: url
  if have_cmd curl; then
    # If GITHUB_TOKEN is provided, use it for api.github.com to avoid low rate limits.
    if [[ -n "${GITHUB_TOKEN:-}" && "$1" == https://api.github.com/* ]]; then
      # Do not use `-f` so we can parse GitHub error JSON bodies and show `message`.
      curl -sSL -H "Authorization: Bearer ${GITHUB_TOKEN}" "$1"
    else
      # Do not use `-f` so we can parse GitHub error JSON bodies and show `message`.
      curl -sSL "$1"
    fi
  elif have_cmd wget; then
    wget -qO- "$1"
  else
    err "curl or wget is required to download GitHub releases. Please install one of them."
    exit 1
  fi
 }
 stop_service() {
  # Try to stop the service that is running from the current project directory.
  # If nothing is found and --force-stop is enabled, stop all cyberstrike-ai processes.
  if [[ "$STOP_SERVICE" -ne 1 ]]; then
    return 0
  fi
  local pids=""
  if have_cmd pgrep; then
    # Prefer matches where the command line contains the current project path.
    pids="$(pgrep -f "${ROOT_DIR}.*${BINARY_NAME}" || true)"
    if [[ -z "$pids" && "$FORCE_STOP" -eq 1 ]]; then
      warn "No ${BINARY_NAME} process found under the current directory. Will try to force-stop all matching ${BINARY_NAME} processes."
      pids="$(pgrep -f "${BINARY_NAME}" || true)"
    fi
  fi
  if [[ -z "$pids" ]]; then
    info "No ${BINARY_NAME} process detected (or no matching process). Skipping stop step."
    return 0
  fi
  warn "Detected running PID(s): ${pids}"
  for pid in $pids; do
    if kill -0 "$pid" 2>/dev/null; then
      info "Sending SIGTERM to PID=${pid}..."
      kill -TERM "$pid" 2>/dev/null || true
    fi
  done
  # Wait for exit
  local deadline=$((SECONDS + 20))
  while [[ $SECONDS -lt $deadline ]]; do
    local alive=0
    for pid in $pids; do
      if kill -0 "$pid" 2>/dev/null; then
        alive=1
        break
      fi
    done
    if [[ "$alive" -eq 0 ]]; then
      info "Service stopped."
      return 0
    fi
    sleep 1
  done
  warn "Timed out waiting for processes to exit. Still running PID(s): ${pids} (may still hold file handles)."
  return 0
 }
 backup_dir_tgz() {
  # $1: label, $2: path
  local label="$1"
  local path="$2"
  if [[ -e "$path" ]]; then
    info "Backing up ${label} -> ${BACKUP_BASE_DIR}/$(basename "$path").tgz"
    tar -czf "${BACKUP_BASE_DIR}/$(basename "$path").tgz" -C "$ROOT_DIR" "$(basename "$path")"
  fi
 }
 backup_config() {
  if [[ -f "$CONFIG_FILE" ]]; then
    cp -a "$CONFIG_FILE" "${BACKUP_BASE_DIR}/config.yaml"
  fi
 }
 ensure_git_style_env() {
  # No hard requirement; just a sanity check.
  if [[ ! -f "$CONFIG_FILE" ]]; then
    err "Could not find ${CONFIG_FILE}. Please verify you are in the correct project directory."
    exit 1
  fi
 }
 confirm_or_exit() {
  if [[ "$YES" -eq 1 ]]; then
    return 0
  fi
  if [[ ! -t 0 ]]; then
    err "Non-interactive terminal detected. Please add --yes to continue."
    exit 1
  fi
  warn "About to perform upgrade:"
  info " - Preserve config.yaml: yes"
  info " - Preserve data/: yes"
  if [[ "$PRESERVE_VENV" -eq 1 ]]; then
    info " - Preserve venv/: yes"
  else
    info " - Preserve venv/: no (will remove old venv and re-install deps)"
  fi
  if [[ "$PRESERVE_CUSTOM" -eq 1 ]]; then
    info " - Preserve roles/skills/tools: yes (may overwrite upstream updates)"
  else
    info " - Preserve roles/skills/tools: no (will use upstream versions)"
  fi
  info " - Stop service: ${STOP_SERVICE}"
  echo ""
  read -r -p "Continue? (y/N) " ans
  if [[ "${ans:-N}" != "y" && "${ans:-N}" != "Y" ]]; then
    err "Cancelled."
    exit 1
  fi
 }
 resolve_tag() {
  if [[ -n "$TAG" ]]; then
    info "Using specified tag: $TAG"
    return 0
  fi
  local api_url="https://api.github.com/repos/${GITHUB_REPO}/releases/latest"
  info "Fetching latest Release..."
  local json
  json="$(http_get "$api_url")"
  TAG="$(printf '%s' "$json" | python3 - <<'PY'
 import json, sys
 data=json.loads(sys.stdin.read() or "{}")
 print(data.get("tag_name",""))
 PY
 )"
  if [[ -z "$TAG" ]]; then
    local msg
    msg="$(printf '%s' "$json" | python3 -c "import sys,json; d=json.loads(sys.stdin.read() or '{}'); print(d.get('message',''))" 2>/dev/null || true)"
    # Fallback: try query releases list (sometimes latest endpoint returns error JSON without tag_name).
    local fallback_url="https://api.github.com/repos/${GITHUB_REPO}/releases?per_page=1"
    info "Fallback to: ${fallback_url}"
    local fallback_json
    fallback_json="$(http_get "$fallback_url" 2>/dev/null || true)"
    local fallback_tag
    fallback_tag="$(printf '%s' "$fallback_json" | python3 -c "import sys,json; d=json.loads(sys.stdin.read() or '[]'); print(d[0].get('tag_name','') if isinstance(d,list) and d else '')" 2>/dev/null || true)"
    if [[ -n "$fallback_tag" ]]; then
      TAG="$fallback_tag"
      info "Latest Release tag (fallback): $TAG"
      return 0
    fi
    local snippet
    snippet="$(printf '%s' "$json" | python3 -c "import sys; s=sys.stdin.read(); print(s[:300].replace('\\n',' '))" 2>/dev/null || true)"
    if [[ -n "$msg" ]]; then
      err "Failed to fetch latest tag: ${msg}"
    else
      err "Failed to fetch latest tag."
    fi
    if [[ -n "$snippet" ]]; then
      err "API response snippet: ${snippet}"
    fi
    err "Please try using --tag to specify the version, or set export GITHUB_TOKEN=\"...\"."
    exit 1
  fi
  info "Latest Release tag: $TAG"
 }
 update_config_version() {
  # Replace config.yaml's version: ... with the specified tag.
  local new_tag="$1"
  python3 - "$CONFIG_FILE" "$new_tag" <<PY
 import re, sys
 path=sys.argv[1]
 tag=sys.argv[2]
 with open(path, "r", encoding="utf-8") as f:
    lines=f.readlines()
 out=[]
 replaced=False
 for line in lines:
    if re.match(r'^\s*version\s*:', line):
        out.append(f'version: "{tag}"\\n')
        replaced=True
    else:
        out.append(line)
 if not replaced:
    # If no version field is found, insert at the beginning (near the top).
    out.insert(0, f'version: "{tag}"\\n')
 with open(path, "w", encoding="utf-8") as f:
    f.writelines(out)
 PY
 }
 sync_code() {
  local tmp_dir="$1"
  local new_src_dir="$2"
  # rsync sync: overwrite files from the new version and delete removed files.
  # Preserve user data/config (and optional directories).
  if ! have_cmd rsync; then
    err "rsync not found. This script depends on rsync for safe synchronization. Please install it and retry."
    exit 1
  fi
  local -a rsync_excludes
  rsync_excludes+=( "--exclude=.upgrade-backup/" )
  rsync_excludes+=( "--exclude=config.yaml" )
  rsync_excludes+=( "--exclude=data/" )
  if [[ "$PRESERVE_VENV" -eq 1 ]]; then
    rsync_excludes+=( "--exclude=venv/" )
  fi
  # knowledge_base may not be referenced in config, but many users treat it as the knowledge files directory.
  if [[ -d "$KNOWLEDGE_BASE_DIR" ]]; then
    rsync_excludes+=( "--exclude=knowledge_base/" )
  fi
  if [[ "$PRESERVE_CUSTOM" -eq 1 ]]; then
    rsync_excludes+=( "--exclude=roles/" )
    rsync_excludes+=( "--exclude=skills/" )
    rsync_excludes+=( "--exclude=tools/" )
  fi
  # Ensure this upgrade script itself is not deleted.
  rsync_excludes+=( "--exclude=upgrade.sh" )
  # shellcheck disable=SC2068
  info "Syncing code into current directory (preserving data/config; using rsync --delete)..."
  rsync -a --delete \
    ${rsync_excludes[@]} \
    "${new_src_dir}/" "${ROOT_DIR}/"
 }
 main() {
  ensure_git_style_env
  while [[ $# -gt 0 ]]; do
    case "$1" in
      --tag)
        TAG="${2:-}"
        shift 2
        ;;
      --preserve-custom)
        PRESERVE_CUSTOM=1
        shift 1
        ;;
      --no-venv)
        PRESERVE_VENV=0
        shift 1
        ;;
      --no-stop)
        STOP_SERVICE=0
        shift 1
        ;;
      --force-stop)
        FORCE_STOP=1
        shift 1
        ;;
      --yes)
        YES=1
        shift 1
        ;;
      -h|--help)
        usage
        exit 0
        ;;
      *)
        err "Unknown parameter: $1"
        usage
        exit 1
        ;;
    esac
  done
  confirm_or_exit
  stop_service
  resolve_tag
  local ts
  ts="$(date +"%Y%m%d_%H%M%S")"
  BACKUP_BASE_DIR="${BACKUP_BASE_DIR}/${ts}"
  mkdir -p "$BACKUP_BASE_DIR"
  info "Starting backup into: $BACKUP_BASE_DIR"
  backup_config
  backup_dir_tgz "data" "$DATA_DIR"
  if [[ "$PRESERVE_VENV" -eq 1 ]]; then
    backup_dir_tgz "venv" "$VENV_DIR"
  else
    if [[ -d "$VENV_DIR" ]]; then
      warn "With --no-venv: removing old venv/ (run.sh will re-install Python deps after upgrade)."
      rm -rf "$VENV_DIR"
    fi
  fi
  if [[ -d "$KNOWLEDGE_BASE_DIR" ]]; then
    backup_dir_tgz "knowledge_base" "$KNOWLEDGE_BASE_DIR"
  fi
  if [[ "$PRESERVE_CUSTOM" -eq 1 ]]; then
    backup_dir_tgz "roles" "$ROOT_DIR/roles"
    backup_dir_tgz "skills" "$ROOT_DIR/skills"
    backup_dir_tgz "tools" "$ROOT_DIR/tools"
  fi
  local tmp_dir
  tmp_dir="$(mktemp -d)"
  trap 'rm -rf "$tmp_dir" >/dev/null 2>&1 || true' EXIT
  local tarball="${tmp_dir}/source.tar.gz"
  local url="https://github.com/${GITHUB_REPO}/archive/refs/tags/${TAG}.tar.gz"
  info "Downloading source package: ${url}"
  http_get "$url" >"$tarball"
  info "Extracting source package..."
  tar -xzf "$tarball" -C "$tmp_dir"
  # GitHub tarball usually creates a top-level directory.
  local extracted_dir
  extracted_dir="$(ls -d "${tmp_dir}"/*/ 2>/dev/null | head -n 1 || true)"
  if [[ -z "$extracted_dir" || ! -f "${extracted_dir}/run.sh" ]]; then
    err "run.sh not found in the extracted directory. Please check network/download contents."
    exit 1
  fi
  sync_code "$tmp_dir" "$extracted_dir"
  # Update config.yaml version display
  if [[ -f "$CONFIG_FILE" ]]; then
    info "Updating config.yaml version field to: $TAG"
    update_config_version "$TAG"
  fi
  info "Upgrade complete. Starting service..."
  chmod +x ./run.sh
  ./run.sh
 }
 main "$@"
@@ -19,11 +19,13 @@
    "copy": "Copy",
    "copied": "Copied",
    "copyFailed": "Copy failed",
-    "view": "View"
+    "view": "View",
    "actions": "Actions"
  },
  "header": {
    "title": "CyberStrikeAI",
    "apiDocs": "API Docs",
    "github": "GitHub",
    "logout": "Sign out",
    "language": "Interface language",
    "backToDashboard": "Back to dashboard",
@@ -45,17 +47,20 @@
    "tasks": "Tasks",
    "vulnerabilities": "Vulnerabilities",
    "webshell": "WebShell Management",
    "chatFiles": "File Management",
    "mcp": "MCP",
    "mcpMonitor": "MCP Monitor",
    "mcpManagement": "MCP Management",
    "knowledge": "Knowledge",
    "knowledgeRetrievalLogs": "Retrieval history",
-    "knowledgeManagement": "Knowledge management",
+    "knowledgeManagement": "Knowledge Management",
    "skills": "Skills",
    "skillsMonitor": "Skills monitor",
-    "skillsManagement": "Skills management",
+    "skillsManagement": "Skills Management",
    "agents": "Agents",
    "agentsManagement": "Agent management",
    "roles": "Roles",
-    "rolesManagement": "Roles management",
+    "rolesManagement": "Roles Management",
    "settings": "System settings"
  },
  "dashboard": {
@@ -142,6 +147,7 @@
    "callNumber": "Call #{{n}}",
    "iterationRound": "Iteration {{n}}",
    "aiThinking": "AI thinking",
    "planning": "Planning",
    "toolCallsDetected": "Detected {{count}} tool call(s)",
    "callTool": "Call tool: {{name}} ({{index}}/{{total}})",
    "toolExecComplete": "Tool {{name}} completed",
@@ -151,6 +157,7 @@
    "error": "Error",
    "taskCancelled": "Task cancelled",
    "unknownTool": "Unknown tool",
    "einoAgentReplyTitle": "Sub-agent reply",
    "noDescription": "No description",
    "noResponseData": "No response data",
    "loading": "Loading...",
@@ -163,7 +170,13 @@
    "progressInProgress": "Penetration test in progress...",
    "executionFailed": "Execution failed",
    "penetrationTestComplete": "Penetration test complete",
-    "yesterday": "Yesterday"
+    "yesterday": "Yesterday",
    "agentModeSelectAria": "Choose single-agent or multi-agent",
    "agentModePanelTitle": "Conversation mode",
    "agentModeSingle": "Single-agent",
    "agentModeMulti": "Multi-agent",
    "agentModeSingleHint": "Single-model ReAct loop for chat and tool use",
    "agentModeMultiHint": "Eino DeepAgent with sub-agents for complex tasks"
  },
  "progress": {
    "callingAI": "Calling AI model...",
@@ -173,7 +186,9 @@
    "generatingFinalReply": "Generating final reply...",
    "maxIterSummary": "Max iterations reached, generating summary...",
    "analyzingRequestShort": "Analyzing your request...",
-    "analyzingRequestPlanning": "Analyzing your request and planning test strategy..."
+    "analyzingRequestPlanning": "Analyzing your request and planning test strategy...",
    "startingEinoDeepAgent": "Starting Eino DeepAgent...",
    "einoAgent": "Eino agent: {{name}}"
  },
  "timeline": {
    "params": "Parameters:",
@@ -185,7 +200,7 @@
    "execFailed": "Execution failed"
  },
  "tasks": {
-    "title": "Task management",
+    "title": "Task Management",
    "stopTask": "Stop task",
    "collapseDetail": "Collapse details",
    "newTask": "New task",
@@ -323,7 +338,7 @@
    "parseModalApplyRun": "Fill and query"
  },
  "vulnerability": {
-    "title": "Vulnerability management",
+    "title": "Vulnerability Management",
    "addVuln": "Add vulnerability",
    "editVuln": "Edit vulnerability",
    "loadFailed": "Failed to load vulnerabilities",
@@ -358,6 +373,41 @@
    "tabTerminal": "Virtual terminal",
    "tabFileManager": "File manager",
    "tabAiAssistant": "AI Assistant",
    "tabDbManager": "Database Manager",
    "tabMemo": "Memo",
    "dbType": "Database type",
    "dbHost": "Host",
    "dbPort": "Port",
    "dbUsername": "Username",
    "dbPassword": "Password",
    "dbName": "Database name",
    "dbSqlitePath": "SQLite file path",
    "dbSqlPlaceholder": "Enter SQL, e.g. SELECT version();",
    "dbRunSql": "Run SQL",
    "dbTest": "Test connection",
    "dbOutput": "Output",
    "dbNoConn": "Please select a WebShell connection first",
    "dbSqlRequired": "Please enter SQL",
    "dbRunning": "Database command is running, please wait",
    "dbCliHint": "If command not found appears, install mysql/psql/sqlite3/sqlcmd on the target host first",
    "dbExecFailed": "Database execution failed",
    "dbSchema": "Database Schema",
    "dbLoadSchema": "Load Schema",
    "dbNoSchema": "No schema yet, click Load Schema",
    "dbSelectTableHint": "Click a table to expand columns and generate SQL",
    "dbNoColumns": "No column details",
    "dbResultTable": "Result Table",
    "dbClearSql": "Clear SQL",
    "dbTemplateSql": "SQL Template",
    "dbRows": "rows",
    "dbColumns": "columns",
    "dbSchemaFailed": "Failed to load schema",
    "dbAddProfile": "Add connection",
    "dbRenameProfile": "Rename",
    "dbDeleteProfile": "Delete connection",
    "dbDeleteProfileConfirm": "Delete this database connection profile?",
    "dbProfileNamePrompt": "Enter profile name",
    "dbProfiles": "Database connections",
    "aiSystemReadyMessage": "System is ready. Please enter your test requirements, and the system will automatically perform the corresponding security tests.",
    "aiNewConversation": "New conversation",
    "aiPreviousConversation": "Previous conversation",
@@ -365,6 +415,11 @@
    "aiDeleteConversationConfirm": "Delete this conversation?",
    "aiPlaceholder": "e.g. List files in the current directory",
    "aiSend": "Send",
    "aiMemo": "Memo",
    "aiMemoPlaceholder": "Save key commands, testing ideas, and repro steps...",
    "aiMemoClear": "Clear",
    "aiMemoSaving": "Saving...",
    "aiMemoSaved": "Saved locally",
    "quickCommands": "Quick commands",
    "downloadFile": "Download",
    "terminalWelcome": "WebShell virtual terminal — type a command and press Enter (Ctrl+L clear)",
@@ -382,6 +437,13 @@
    "testFailed": "Connectivity test failed",
    "testNoExpectedOutput": "Shell responded but expected output was not found. Check password and command parameter name.",
    "clearScreen": "Clear",
    "copyTerminalLog": "Copy log",
    "terminalIdle": "Idle",
    "terminalRunning": "Running",
    "terminalCopyOk": "Log copied",
    "terminalCopyFail": "Copy failed",
    "terminalNewWindow": "New terminal",
    "terminalWindowPrefix": "Terminal",
    "running": "Running…",
    "waitFinish": "Please wait for the current command to finish",
    "newDir": "New directory",
@@ -393,7 +455,21 @@
    "batchDownload": "Batch download",
    "refresh": "Refresh",
    "selectAll": "Select all",
-    "breadcrumbHome": "Root"
+    "searchPlaceholder": "Search connections...",
    "noMatchConnections": "No matching connections",
    "breadcrumbHome": "Root",
    "back": "Back",
    "moreActions": "More actions",
    "batchProbe": "Batch probe",
    "probeRunning": "Probing",
    "probeOnline": "Online",
    "probeOffline": "Offline",
    "probeNoConnections": "No connections to probe",
    "colModifiedAt": "Modified",
    "colPerms": "Permissions",
    "colOwner": "Owner",
    "colGroup": "Group",
    "colType": "Type"
  },
  "mcp": {
    "monitorTitle": "MCP Status Monitor",
@@ -485,10 +561,14 @@
    "title": "System settings",
    "nav": {
      "basic": "Basic",
      "knowledge": "Knowledge base",
      "robots": "Bots",
      "terminal": "Terminal",
      "security": "Security"
    },
    "knowledge": {
      "title": "Knowledge base"
    },
    "robots": {
      "title": "Bot settings",
      "description": "Configure WeCom, DingTalk and Lark bots so you can chat with CyberStrikeAI on your phone without opening the web UI.",
@@ -549,7 +629,7 @@
    "loggedOut": "Signed out"
  },
  "knowledge": {
-    "title": "Knowledge management",
+    "title": "Knowledge Management",
    "retrievalLogs": "Retrieval history",
    "totalItems": "Total items",
    "categories": "Categories",
@@ -562,7 +642,7 @@
    "goToSettings": "Go to settings"
  },
  "roles": {
-    "title": "Role management",
+    "title": "Role Management",
    "createRole": "Create role",
    "searchPlaceholder": "Search roles...",
    "deleteConfirm": "Delete this role?",
@@ -576,7 +656,7 @@
    "noDescriptionShort": "No description"
  },
  "skills": {
-    "title": "Skills management",
+    "title": "Skills Management",
    "monitorTitle": "Skills monitor",
    "createSkill": "Create Skill",
    "callStats": "Call stats",
@@ -991,6 +1071,67 @@
    "exportXlsxTitle": "Export results as Excel",
    "batchScanTitle": "Create batch task queue from selected rows"
  },
  "chatFilesPage": {
    "title": "File Management",
    "intro": "Files uploaded in chat appear here. Click “Copy path” to copy the server absolute path and paste it into a conversation so the model can reference the file.",
    "upload": "Upload",
    "conversationFilter": "Conversation ID",
    "conversationPlaceholder": "Leave empty for all",
    "searchName": "File name",
    "searchNamePlaceholder": "Filter by file name",
    "groupBy": "Group by",
    "groupNone": "None (flat list)",
    "groupByDate": "By date",
    "groupByConversation": "By conversation",
    "groupByFolder": "By folder (path navigation)",
    "browseRoot": "chat_uploads",
    "browseUp": "Up",
    "enterFolderTitle": "Open folder",
    "copyFolderPathTitle": "Copy relative path under chat_uploads/…",
    "folderPathCopied": "Folder path copied — paste into chat if needed",
    "folderEmpty": "This folder is empty",
    "confirmDeleteFolder": "Delete this folder and everything inside it? This cannot be undone.",
    "deleteFolderTitle": "Delete folder",
    "uploadToFolderTitle": "Upload file into this folder",
    "newFolderButton": "New folder",
    "newFolderTitle": "New folder",
    "newFolderLocation": "Location",
    "newFolderNameLabel": "Folder name",
    "newFolderNamePlaceholder": "Name only, no slashes",
    "mkdirOk": "Folder created",
    "mkdirExists": "A file or folder with that name already exists",
    "mkdirInvalidName": "Invalid name: cannot be empty or contain /, \\, or use . or ..",
    "colSubPath": "Subfolder",
    "folderRoot": "(root)",
    "groupCount": "{{count}} files",
    "convManual": "Manual upload",
    "convNew": "New chat",
    "colDate": "Date",
    "colConversation": "Conversation",
    "colName": "Name",
    "colSize": "Size",
    "colModified": "Modified",
    "colActions": "Actions",
    "copyPath": "Copy path",
    "copyPathTitle": "Copy the absolute path on the server; paste into chat to reference this file",
    "pathCopied": "Path copied — paste it into chat",
    "uploadOkHint": "Uploaded. Use “Copy path” to copy the absolute path.",
    "moreActions": "More: open chat, edit, rename, delete",
    "download": "Download",
    "edit": "Edit",
    "rename": "Rename",
    "openChat": "Open chat",
    "confirmDelete": "Delete this file?",
    "editTitle": "Edit file",
    "renameTitle": "Rename",
    "newFileName": "New file name",
    "empty": "No chat uploads yet",
    "errorLoad": "Failed to load",
    "editBinaryHint": "Binary files (images, archives, etc.) cannot be edited as text here. Use Download and open locally.",
    "editUnavailable": "N/A",
    "editTooLarge": "File exceeds 2MB and cannot be edited here. Download and edit locally.",
    "errorGeneric": "Something went wrong. Please try again."
  },
  "vulnerabilityPage": {
    "statTotal": "Total",
    "filter": "Filter",
@@ -1030,6 +1171,46 @@
    "nextPage": "Next",
    "lastPage": "Last"
  },
  "agentsPage": {
    "title": "Agent management",
    "create": "New agent",
    "hint": "Agents are .md files under agents_dir (front matter + body as system prompt). The orchestrator is the Deep coordinator and is not listed as a task sub-agent.",
    "dirLabel": "Directory",
    "loading": "Loading...",
    "empty": "No Markdown sub-agents yet. Click New agent to create one.",
    "noDesc": "No description",
    "loadFailed": "Failed to load list",
    "loadOneFailed": "Failed to load agent",
    "createTitle": "New agent",
    "editTitle": "Edit agent",
    "filename": "File name (.md)",
    "filenamePlaceholder": "e.g. code-reviewer.md",
    "fieldRole": "Type",
    "roleSub": "Sub-agent",
    "roleOrchestrator": "Orchestrator (Deep)",
    "roleHint": "You can also use the fixed file name orchestrator.md. Only one orchestrator per directory. If the orchestrator body is empty, config orchestrator_instruction and Eino defaults apply.",
    "badgeOrchestrator": "Orchestrator",
    "badgeSub": "Sub-agent",
    "filenameInvalid": "File name must end with .md and use only letters, digits, ._-",
    "fieldId": "Agent id (optional; derived from name if empty)",
    "fieldName": "Display name",
    "namePlaceholder": "Code Reviewer",
    "fieldDesc": "Description",
    "descPlaceholder": "When the orchestrator should delegate to this agent",
    "fieldTools": "Tools (comma-separated; same keys as role tools)",
    "fieldBindRole": "Bind role (optional)",
    "fieldMaxIter": "Max sub-agent iterations (0 = use global default)",
    "fieldInstruction": "System prompt (Markdown body)",
    "instructionPlaceholder": "You are a specialist agent...",
    "nameRequired": "Display name is required",
    "instructionRequired": "System prompt body is required",
    "saveOk": "Saved",
    "createOk": "Created",
    "saveFailed": "Save failed",
    "deleteConfirm": "Delete {{name}}?",
    "deleteOk": "Deleted",
    "deleteFailed": "Delete failed"
  },
  "settingsBasic": {
    "basicTitle": "Basic settings",
    "openaiConfig": "OpenAI config",
@@ -1358,10 +1539,10 @@
    "userPromptHint": "This prompt is appended before user message to guide AI. It does not change system prompt.",
    "relatedTools": "Related tools (optional)",
    "defaultRoleToolsTitle": "Default role uses all tools",
-    "defaultRoleToolsDesc": "Default role uses all tools enabled in MCP management.",
+    "defaultRoleToolsDesc": "Default role uses all tools enabled in MCP Management.",
    "searchToolsPlaceholder": "Search tools...",
    "loadingTools": "Loading tools...",
-    "relatedToolsHint": "Select tools to link; empty = use all from MCP management.",
+    "relatedToolsHint": "Select tools to link; empty = use all from MCP Management.",
    "relatedSkills": "Related Skills (optional)",
    "searchSkillsPlaceholder": "Search skill...",
    "loadingSkills": "Loading skills...",
@@ -19,11 +19,13 @@
    "copy": "复制",
    "copied": "已复制",
    "copyFailed": "复制失败",
-    "view": "查看"
+    "view": "查看",
    "actions": "操作"
  },
  "header": {
    "title": "CyberStrikeAI",
    "apiDocs": "API 文档",
    "github": "GitHub",
    "logout": "退出登录",
    "language": "界面语言",
    "backToDashboard": "返回仪表盘",
@@ -45,6 +47,7 @@
    "tasks": "任务管理",
    "vulnerabilities": "漏洞管理",
    "webshell": "WebShell管理",
    "chatFiles": "文件管理",
    "mcp": "MCP",
    "mcpMonitor": "MCP状态监控",
    "mcpManagement": "MCP管理",
@@ -54,6 +57,8 @@
    "skills": "Skills",
    "skillsMonitor": "Skills状态监控",
    "skillsManagement": "Skills管理",
    "agents": "Agents",
    "agentsManagement": "Agent管理",
    "roles": "角色",
    "rolesManagement": "角色管理",
    "settings": "系统设置"
@@ -142,6 +147,7 @@
    "callNumber": "调用 #{{n}}",
    "iterationRound": "第 {{n}} 轮迭代",
    "aiThinking": "AI思考",
    "planning": "规划中",
    "toolCallsDetected": "检测到 {{count}} 个工具调用",
    "callTool": "调用工具: {{name}} ({{index}}/{{total}})",
    "toolExecComplete": "工具 {{name}} 执行完成",
@@ -151,6 +157,7 @@
    "error": "错误",
    "taskCancelled": "任务已取消",
    "unknownTool": "未知工具",
    "einoAgentReplyTitle": "子代理回复",
    "noDescription": "暂无描述",
    "noResponseData": "暂无响应数据",
    "loading": "加载中...",
@@ -163,7 +170,13 @@
    "progressInProgress": "渗透测试进行中...",
    "executionFailed": "执行失败",
    "penetrationTestComplete": "渗透测试完成",
-    "yesterday": "昨天"
+    "yesterday": "昨天",
    "agentModeSelectAria": "选择单代理或多代理",
    "agentModePanelTitle": "对话模式",
    "agentModeSingle": "单代理",
    "agentModeMulti": "多代理",
    "agentModeSingleHint": "单模型 ReAct 循环，适合常规对话与工具调用",
    "agentModeMultiHint": "Eino DeepAgent 编排子代理，适合复杂任务"
  },
  "progress": {
    "callingAI": "正在调用AI模型...",
@@ -173,7 +186,9 @@
    "generatingFinalReply": "正在生成最终回复...",
    "maxIterSummary": "达到最大迭代次数，正在生成总结...",
    "analyzingRequestShort": "正在分析您的请求...",
-    "analyzingRequestPlanning": "开始分析请求并制定测试策略"
+    "analyzingRequestPlanning": "开始分析请求并制定测试策略",
    "startingEinoDeepAgent": "正在启动 Eino 多代理（DeepAgent）...",
    "einoAgent": "Eino 代理：{{name}}"
  },
  "timeline": {
    "params": "参数:",
@@ -358,6 +373,41 @@
    "tabTerminal": "虚拟终端",
    "tabFileManager": "文件管理",
    "tabAiAssistant": "AI 助手",
    "tabDbManager": "数据库管理",
    "tabMemo": "备忘录",
    "dbType": "数据库类型",
    "dbHost": "主机",
    "dbPort": "端口",
    "dbUsername": "用户名",
    "dbPassword": "密码",
    "dbName": "数据库名",
    "dbSqlitePath": "SQLite 文件路径",
    "dbSqlPlaceholder": "输入 SQL，例如：SELECT version();",
    "dbRunSql": "执行 SQL",
    "dbTest": "测试连接",
    "dbOutput": "执行输出",
    "dbNoConn": "请先选择 WebShell 连接",
    "dbSqlRequired": "请输入 SQL",
    "dbRunning": "数据库命令执行中，请稍候",
    "dbCliHint": "如果提示命令不存在，请先在目标主机安装对应客户端（mysql/psql/sqlite3/sqlcmd）",
    "dbExecFailed": "数据库执行失败",
    "dbSchema": "数据库结构",
    "dbLoadSchema": "加载结构",
    "dbNoSchema": "暂无数据库结构，请先加载",
    "dbSelectTableHint": "点击表名可展开列信息并生成查询 SQL",
    "dbNoColumns": "暂无列信息",
    "dbResultTable": "结果表格",
    "dbClearSql": "清空 SQL",
    "dbTemplateSql": "示例 SQL",
    "dbRows": "行",
    "dbColumns": "列",
    "dbSchemaFailed": "加载数据库结构失败",
    "dbAddProfile": "新增连接",
    "dbRenameProfile": "重命名",
    "dbDeleteProfile": "删除连接",
    "dbDeleteProfileConfirm": "确定删除该数据库连接配置吗？",
    "dbProfileNamePrompt": "请输入连接名称",
    "dbProfiles": "数据库连接",
    "aiSystemReadyMessage": "系统已就绪。请输入您的测试需求，系统将自动执行相应的安全测试。",
    "aiNewConversation": "新对话",
    "aiPreviousConversation": "之前的对话",
@@ -365,6 +415,11 @@
    "aiDeleteConversationConfirm": "确定删除当前对话记录？",
    "aiPlaceholder": "例如：列出当前目录下的文件",
    "aiSend": "发送",
    "aiMemo": "备忘录",
    "aiMemoPlaceholder": "记录关键命令、测试思路、复现步骤...",
    "aiMemoClear": "清空",
    "aiMemoSaving": "保存中...",
    "aiMemoSaved": "已保存到本地",
    "quickCommands": "快捷命令",
    "downloadFile": "下载",
    "terminalWelcome": "WebShell 虚拟终端 — 输入命令后按回车执行（Ctrl+L 清屏）",
@@ -382,6 +437,13 @@
    "testFailed": "连通性测试失败",
    "testNoExpectedOutput": "Shell 返回了响应但未得到预期输出，请检查连接密码与命令参数名",
    "clearScreen": "清屏",
    "copyTerminalLog": "复制日志",
    "terminalIdle": "空闲",
    "terminalRunning": "执行中",
    "terminalCopyOk": "日志已复制",
    "terminalCopyFail": "复制失败",
    "terminalNewWindow": "新终端",
    "terminalWindowPrefix": "终端",
    "running": "执行中…",
    "waitFinish": "请等待当前命令执行完成",
    "newDir": "新建目录",
@@ -393,7 +455,21 @@
    "batchDownload": "批量下载",
    "refresh": "刷新",
    "selectAll": "全选",
-    "breadcrumbHome": "根"
+    "searchPlaceholder": "搜索连接...",
    "noMatchConnections": "暂无匹配连接",
    "breadcrumbHome": "根",
    "back": "返回",
    "moreActions": "更多操作",
    "batchProbe": "一键批量探活",
    "probeRunning": "探活中",
    "probeOnline": "在线",
    "probeOffline": "离线",
    "probeNoConnections": "暂无可探活连接",
    "colModifiedAt": "修改时间",
    "colPerms": "权限",
    "colOwner": "所有者",
    "colGroup": "用户组",
    "colType": "类型"
  },
  "mcp": {
    "monitorTitle": "MCP 状态监控",
@@ -485,10 +561,14 @@
    "title": "系统设置",
    "nav": {
      "basic": "基本设置",
      "knowledge": "知识库",
      "robots": "机器人设置",
      "terminal": "终端",
      "security": "安全设置"
    },
    "knowledge": {
      "title": "知识库设置"
    },
    "robots": {
      "title": "机器人设置",
      "description": "配置企业微信、钉钉、飞书等机器人，在手机端直接与 CyberStrikeAI 对话，无需在服务器上打开网页。",
@@ -991,6 +1071,67 @@
    "exportXlsxTitle": "导出当前结果为 Excel",
    "batchScanTitle": "将所选行创建为批量任务队列"
  },
  "chatFilesPage": {
    "title": "文件管理",
    "intro": "管理在对话中上传的文件。需要让 AI 引用某文件时，在列表中点击「复制路径」，到对话里粘贴即可（路径为服务器上的绝对路径，与对话附件保存位置一致）。",
    "upload": "上传文件",
    "conversationFilter": "会话 ID",
    "conversationPlaceholder": "留空表示全部",
    "searchName": "文件名",
    "searchNamePlaceholder": "筛选文件名",
    "groupBy": "分组方式",
    "groupNone": "不分组（平铺）",
    "groupByDate": "按日期",
    "groupByConversation": "按会话",
    "groupByFolder": "按文件夹（路径浏览）",
    "browseRoot": "chat_uploads",
    "browseUp": "上级",
    "enterFolderTitle": "进入此文件夹",
    "copyFolderPathTitle": "复制该目录的相对路径（chat_uploads/…）",
    "folderPathCopied": "目录路径已复制，可粘贴到对话中",
    "folderEmpty": "此文件夹为空",
    "confirmDeleteFolder": "确定删除该文件夹及其中的全部文件？此操作不可恢复。",
    "deleteFolderTitle": "删除文件夹",
    "uploadToFolderTitle": "上传文件到此文件夹",
    "newFolderButton": "新建文件夹",
    "newFolderTitle": "新建文件夹",
    "newFolderLocation": "位置",
    "newFolderNameLabel": "文件夹名称",
    "newFolderNamePlaceholder": "仅名称，不含 /",
    "mkdirOk": "文件夹已创建",
    "mkdirExists": "该名称已存在",
    "mkdirInvalidName": "名称无效：不能为空，且不能包含 /、\\ 或 . / ..",
    "colSubPath": "子路径",
    "folderRoot": "（根目录）",
    "groupCount": "{{count}} 个文件",
    "convManual": "手动上传",
    "convNew": "新对话",
    "colDate": "日期",
    "colConversation": "会话",
    "colName": "文件名",
    "colSize": "大小",
    "colModified": "修改时间",
    "colActions": "操作",
    "copyPath": "复制路径",
    "copyPathTitle": "复制服务器上的绝对路径，可粘贴到对话中让模型引用该文件",
    "pathCopied": "路径已复制，可到对话中粘贴使用",
    "uploadOkHint": "上传成功。点击「复制路径」可复制绝对路径到剪贴板。",
    "moreActions": "更多：打开对话、编辑、重命名、删除",
    "download": "下载",
    "edit": "编辑",
    "rename": "重命名",
    "openChat": "打开对话",
    "confirmDelete": "确定删除该文件？",
    "editTitle": "编辑文件",
    "renameTitle": "重命名",
    "newFileName": "新文件名",
    "empty": "暂无对话附件",
    "errorLoad": "加载失败",
    "editBinaryHint": "图片、压缩包等二进制文件无法在此以文本方式编辑，请使用「下载」后在本地查看或处理。",
    "editUnavailable": "不可编辑",
    "editTooLarge": "文件超过 2MB，无法在此编辑，请下载后本地处理。",
    "errorGeneric": "操作失败，请稍后重试。"
  },
  "vulnerabilityPage": {
    "statTotal": "总漏洞数",
    "filter": "筛选",
@@ -1030,6 +1171,46 @@
    "nextPage": "下一页",
    "lastPage": "尾页"
  },
  "agentsPage": {
    "title": "Agent 管理",
    "create": "新建 Agent",
    "hint": "Agent 在 agents 目录（config 中 agents_dir）下以 .md 维护：YAML front matter + 正文为系统提示词；主代理为 Deep 协调者，不参与 task 子代理列表。",
    "dirLabel": "目录",
    "loading": "加载中...",
    "empty": "暂无 Markdown 子 Agent，点击「新建 Agent」创建。",
    "noDesc": "暂无描述",
    "loadFailed": "加载列表失败",
    "loadOneFailed": "加载 Agent 失败",
    "createTitle": "新建 Agent",
    "editTitle": "编辑 Agent",
    "filename": "文件名（.md）",
    "filenamePlaceholder": "例如 code-reviewer.md",
    "fieldRole": "类型",
    "roleSub": "子代理",
    "roleOrchestrator": "主代理（Deep 协调者）",
    "roleHint": "主代理也可使用固定文件名 orchestrator.md；全目录仅允许一个主代理。主代理正文为空时沿用 config 中 orchestrator_instruction 与 Eino 默认。",
    "badgeOrchestrator": "主代理",
    "badgeSub": "子代理",
    "filenameInvalid": "文件名须为 .md，且仅含字母、数字、._-",
    "fieldId": "Agent ID（留空则从名称生成）",
    "fieldName": "显示名称",
    "namePlaceholder": "Code Reviewer",
    "fieldDesc": "描述",
    "descPlaceholder": "何时由协调者调度该子代理",
    "fieldTools": "可用工具（逗号分隔，与角色工具 key 一致）",
    "fieldBindRole": "绑定角色（可选）",
    "fieldMaxIter": "子代理最大迭代（0=使用全局默认）",
    "fieldInstruction": "系统提示词（Markdown 正文）",
    "instructionPlaceholder": "You are a specialist agent...",
    "nameRequired": "请填写显示名称",
    "instructionRequired": "请填写系统提示词正文",
    "saveOk": "已保存",
    "createOk": "已创建",
    "saveFailed": "保存失败",
    "deleteConfirm": "确定删除 {{name}} 吗？",
    "deleteOk": "已删除",
    "deleteFailed": "删除失败"
  },
  "settingsBasic": {
    "basicTitle": "基本设置",
    "openaiConfig": "OpenAI 配置",
@@ -0,0 +1,227 @@
 // 多代理子 Agent Markdown（agents/*.md）管理
 function _agentsT(key, opts) {
    return typeof window.t === 'function' ? window.t(key, opts) : key;
 }
 let markdownAgentsEditingFilename = null;
 let markdownAgentsEditingIsOrchestrator = false;
 function bindAgentsMdListDelegation() {
    const listEl = document.getElementById('agents-md-list');
    if (!listEl || listEl.dataset.agentsClickBound === '1') return;
    listEl.dataset.agentsClickBound = '1';
    listEl.addEventListener('click', function (e) {
        var t = e.target;
        if (!t || !t.closest) return;
        var editBtn = t.closest('[data-action="edit-agent-md"]');
        var delBtn = t.closest('[data-action="delete-agent-md"]');
        if (editBtn) {
            var f = editBtn.getAttribute('data-agent-file');
            if (f) {
                try { editMarkdownAgent(decodeURIComponent(f)); } catch (err) { console.warn(err); }
            }
            return;
        }
        if (delBtn) {
            var f2 = delBtn.getAttribute('data-agent-file');
            if (f2) {
                try { deleteMarkdownAgent(decodeURIComponent(f2)); } catch (err2) { console.warn(err2); }
            }
        }
    });
 }
 async function loadMarkdownAgents() {
    const listEl = document.getElementById('agents-md-list');
    const dirEl = document.getElementById('agents-md-dir');
    if (!listEl) return;
    bindAgentsMdListDelegation();
    listEl.innerHTML = '<div class="loading-spinner">' + _agentsT('agentsPage.loading') + '</div>';
    try {
        const r = await apiFetch('/api/multi-agent/markdown-agents');
        const data = await r.json();
        if (!r.ok) {
            throw new Error(data.error || r.statusText);
        }
        if (dirEl) {
            const d = data.dir || '';
            dirEl.textContent = d ? (_agentsT('agentsPage.dirLabel') + ': ' + d) : '';
        }
        const agents = data.agents || [];
        if (agents.length === 0) {
            listEl.innerHTML = '<div class="empty-state">' + _agentsT('agentsPage.empty') + '</div>';
            return;
        }
        agents.sort(function (x, y) {
            var ox = x.is_orchestrator ? 1 : 0;
            var oy = y.is_orchestrator ? 1 : 0;
            return oy - ox;
        });
        listEl.innerHTML = agents.map(function (a) {
            const rawFn = a.filename || '';
            const fn = escapeHtml(rawFn);
            const id = escapeHtml(a.id || '');
            const name = escapeHtml(a.name || '');
            const desc = escapeHtml(a.description || _agentsT('agentsPage.noDesc'));
            const orch = !!a.is_orchestrator;
            const badgeLabel = orch ? _agentsT('agentsPage.badgeOrchestrator') : _agentsT('agentsPage.badgeSub');
            const badgeClass = orch ? 'agent-role-badge agent-role-badge--orchestrator' : 'agent-role-badge agent-role-badge--sub';
            return (
                '<div class="skill-card">' +
                '<div class="skill-card-header">' +
                '<h3 class="skill-card-title">' + name + '<span class="' + badgeClass + '">' + escapeHtml(badgeLabel) + '</span></h3>' +
                '<div class="skill-card-description"><code>' + fn + '</code> · id: <code>' + id + '</code><br>' + desc + '</div>' +
                '</div>' +
                '<div class="skill-card-actions">' +
                '<button type="button" class="btn-secondary btn-small" data-action="edit-agent-md" data-agent-file="' + encodeURIComponent(rawFn) + '">' + escapeHtml(_agentsT('common.edit')) + '</button>' +
                '<button type="button" class="btn-secondary btn-small btn-danger" data-action="delete-agent-md" data-agent-file="' + encodeURIComponent(rawFn) + '">' + escapeHtml(_agentsT('common.delete')) + '</button>' +
                '</div></div>'
            );
        }).join('');
    } catch (e) {
        console.error(e);
        listEl.innerHTML = '<div class="empty-state">' + escapeHtml(e.message || String(e)) + '</div>';
        showNotification(_agentsT('agentsPage.loadFailed') + ': ' + e.message, 'error');
    }
 }
 function showAddMarkdownAgentModal() {
    markdownAgentsEditingFilename = null;
    markdownAgentsEditingIsOrchestrator = false;
    const modal = document.getElementById('agent-md-modal');
    const title = document.getElementById('agent-md-modal-title');
    const row = document.getElementById('agent-md-filename-row');
    if (title) title.textContent = _agentsT('agentsPage.createTitle');
    if (row) row.style.display = '';
    document.getElementById('agent-md-filename-current').value = '';
    document.getElementById('agent-md-filename').value = '';
    document.getElementById('agent-md-filename').disabled = false;
    var roleEl = document.getElementById('agent-md-role');
    if (roleEl) roleEl.value = 'sub';
    document.getElementById('agent-md-id').value = '';
    document.getElementById('agent-md-name').value = '';
    document.getElementById('agent-md-description').value = '';
    document.getElementById('agent-md-tools').value = '';
    document.getElementById('agent-md-bind-role').value = '';
    document.getElementById('agent-md-max-iter').value = '0';
    document.getElementById('agent-md-instruction').value = '';
    if (modal) modal.style.display = 'flex';
 }
 async function editMarkdownAgent(filename) {
    if (!filename) return;
    const modal = document.getElementById('agent-md-modal');
    const title = document.getElementById('agent-md-modal-title');
    const row = document.getElementById('agent-md-filename-row');
    markdownAgentsEditingFilename = null;
    markdownAgentsEditingIsOrchestrator = false;
    if (title) title.textContent = _agentsT('agentsPage.editTitle');
    if (row) row.style.display = 'none';
    try {
        const r = await apiFetch('/api/multi-agent/markdown-agents/' + encodeURIComponent(filename));
        const data = await r.json();
        if (!r.ok) throw new Error(data.error || r.statusText);
        markdownAgentsEditingFilename = data.filename || filename;
        markdownAgentsEditingIsOrchestrator = !!data.is_orchestrator;
        document.getElementById('agent-md-filename-current').value = data.filename || filename;
        document.getElementById('agent-md-filename').value = data.filename || filename;
        document.getElementById('agent-md-filename').disabled = true;
        var roleEl2 = document.getElementById('agent-md-role');
        if (roleEl2) roleEl2.value = data.is_orchestrator ? 'orchestrator' : 'sub';
        document.getElementById('agent-md-id').value = data.id || '';
        document.getElementById('agent-md-name').value = data.name || '';
        document.getElementById('agent-md-description').value = data.description || '';
        document.getElementById('agent-md-tools').value = Array.isArray(data.tools) ? data.tools.join(', ') : '';
        document.getElementById('agent-md-bind-role').value = data.bind_role || '';
        document.getElementById('agent-md-max-iter').value = String(data.max_iterations != null ? data.max_iterations : 0);
        document.getElementById('agent-md-instruction').value = data.instruction || '';
        if (modal) modal.style.display = 'flex';
    } catch (e) {
        showNotification(_agentsT('agentsPage.loadOneFailed') + ': ' + e.message, 'error');
    }
 }
 function closeMarkdownAgentModal() {
    const modal = document.getElementById('agent-md-modal');
    if (modal) modal.style.display = 'none';
    markdownAgentsEditingFilename = null;
    markdownAgentsEditingIsOrchestrator = false;
 }
 function parseToolsInput(s) {
    if (!s || !String(s).trim()) return [];
    return String(s).split(/[,;|]/).map(function (x) { return x.trim(); }).filter(Boolean);
 }
 async function saveMarkdownAgent() {
    const name = document.getElementById('agent-md-name').value.trim();
    if (!name) {
        showNotification(_agentsT('agentsPage.nameRequired'), 'error');
        return;
    }
    const roleSel = document.getElementById('agent-md-role');
    const roleVal = roleSel ? roleSel.value : 'sub';
    const fnDraft = (document.getElementById('agent-md-filename') && document.getElementById('agent-md-filename').value.trim().toLowerCase()) || '';
    const isOrchestratorAgent = markdownAgentsEditingIsOrchestrator ||
        roleVal === 'orchestrator' ||
        fnDraft === 'orchestrator.md';
    const instruction = document.getElementById('agent-md-instruction').value.trim();
    if (!isOrchestratorAgent && !instruction) {
        showNotification(_agentsT('agentsPage.instructionRequired'), 'error');
        return;
    }
    const body = {
        id: document.getElementById('agent-md-id').value.trim(),
        name: name,
        description: document.getElementById('agent-md-description').value.trim(),
        tools: parseToolsInput(document.getElementById('agent-md-tools').value),
        instruction: instruction,
        bind_role: document.getElementById('agent-md-bind-role').value.trim(),
        max_iterations: parseInt(document.getElementById('agent-md-max-iter').value, 10) || 0,
        kind: roleVal === 'orchestrator' ? 'orchestrator' : ''
    };
    const isEdit = !!markdownAgentsEditingFilename;
    let url;
    let method;
    if (isEdit) {
        url = '/api/multi-agent/markdown-agents/' + encodeURIComponent(markdownAgentsEditingFilename);
        method = 'PUT';
    } else {
        url = '/api/multi-agent/markdown-agents';
        method = 'POST';
        const fn = document.getElementById('agent-md-filename').value.trim();
        if (fn && !/^[a-zA-Z0-9][a-zA-Z0-9_.-]*\.md$/.test(fn)) {
            showNotification(_agentsT('agentsPage.filenameInvalid'), 'error');
            return;
        }
        body.filename = fn;
    }
    try {
        const r = await apiFetch(url, {
            method: method,
            headers: { 'Content-Type': 'application/json' },
            body: JSON.stringify(body)
        });
        const data = await r.json().catch(function () { return {}; });
        if (!r.ok) throw new Error(data.error || r.statusText);
        showNotification(isEdit ? _agentsT('agentsPage.saveOk') : _agentsT('agentsPage.createOk'), 'success');
        closeMarkdownAgentModal();
        await loadMarkdownAgents();
    } catch (e) {
        showNotification(_agentsT('agentsPage.saveFailed') + ': ' + e.message, 'error');
    }
 }
 async function deleteMarkdownAgent(filename) {
    if (!filename) return;
    if (!confirm(_agentsT('agentsPage.deleteConfirm', { name: filename }))) return;
    try {
        const r = await apiFetch('/api/multi-agent/markdown-agents/' + encodeURIComponent(filename), { method: 'DELETE' });
        const data = await r.json().catch(function () { return {}; });
        if (!r.ok) throw new Error(data.error || r.statusText);
        showNotification(_agentsT('agentsPage.deleteOk'), 'success');
        await loadMarkdownAgents();
    } catch (e) {
        showNotification(_agentsT('agentsPage.deleteFailed') + ': ' + e.message, 'error');
    }
 }
@@ -28,6 +28,108 @@ const CHAT_FILE_DEFAULT_PROMPT = '请根据上传的文件内容进行分析。'
 /** @type {{ fileName: string, content: string, mimeType: string }[]} */
 let chatAttachments = [];
 // 多代理（Eino）：需后端 multi_agent.enabled，与单代理 /agent-loop 并存
 const AGENT_MODE_STORAGE_KEY = 'cyberstrike-chat-agent-mode';
 let multiAgentAPIEnabled = false;
 function getAgentModeLabelForValue(mode) {
    if (typeof window.t === 'function') {
        return mode === 'multi' ? window.t('chat.agentModeMulti') : window.t('chat.agentModeSingle');
    }
    return mode === 'multi' ? '多代理' : '单代理';
 }
 function getAgentModeIconForValue(mode) {
    return mode === 'multi' ? '🧩' : '🤖';
 }
 function syncAgentModeFromValue(value) {
    const hid = document.getElementById('agent-mode-select');
    const label = document.getElementById('agent-mode-text');
    const icon = document.getElementById('agent-mode-icon');
    if (hid) hid.value = value;
    if (label) label.textContent = getAgentModeLabelForValue(value);
    if (icon) icon.textContent = getAgentModeIconForValue(value);
    document.querySelectorAll('.agent-mode-option').forEach(function (el) {
        const v = el.getAttribute('data-value');
        el.classList.toggle('selected', v === value);
    });
 }
 function closeAgentModePanel() {
    const panel = document.getElementById('agent-mode-panel');
    const btn = document.getElementById('agent-mode-btn');
    if (panel) panel.style.display = 'none';
    if (btn) {
        btn.classList.remove('active');
        btn.setAttribute('aria-expanded', 'false');
    }
 }
 function toggleAgentModePanel() {
    const panel = document.getElementById('agent-mode-panel');
    const btn = document.getElementById('agent-mode-btn');
    if (!panel || !btn) return;
    const isOpen = panel.style.display === 'flex';
    if (isOpen) {
        closeAgentModePanel();
        return;
    }
    if (typeof closeRoleSelectionPanel === 'function') {
        closeRoleSelectionPanel();
    }
    panel.style.display = 'flex';
    btn.classList.add('active');
    btn.setAttribute('aria-expanded', 'true');
 }
 function selectAgentMode(mode) {
    if (mode !== 'single' && mode !== 'multi') return;
    try {
        localStorage.setItem(AGENT_MODE_STORAGE_KEY, mode);
    } catch (e) { /* ignore */ }
    syncAgentModeFromValue(mode);
    closeAgentModePanel();
 }
 async function initChatAgentModeFromConfig() {
    try {
        const r = await apiFetch('/api/config');
        if (!r.ok) return;
        const cfg = await r.json();
        multiAgentAPIEnabled = !!(cfg.multi_agent && cfg.multi_agent.enabled);
        if (typeof window !== 'undefined') {
            window.__csaiMultiAgentPublic = cfg.multi_agent || null;
        }
        const wrap = document.getElementById('agent-mode-wrapper');
        const sel = document.getElementById('agent-mode-select');
        if (!wrap || !sel) return;
        if (!multiAgentAPIEnabled) {
            wrap.style.display = 'none';
            return;
        }
        wrap.style.display = '';
        const def = (cfg.multi_agent && cfg.multi_agent.default_mode === 'multi') ? 'multi' : 'single';
        let stored = localStorage.getItem(AGENT_MODE_STORAGE_KEY);
        if (stored !== 'single' && stored !== 'multi') {
            stored = def;
        }
        sel.value = stored;
        syncAgentModeFromValue(stored);
    } catch (e) {
        console.warn('initChatAgentModeFromConfig', e);
    }
 }
 document.addEventListener('languagechange', function () {
    const hid = document.getElementById('agent-mode-select');
    if (!hid) return;
    const v = hid.value;
    if (v === 'single' || v === 'multi') {
        syncAgentModeFromValue(v);
    }
 });
 // 保存输入框草稿到localStorage（防抖版本）
 function saveChatDraftDebounced(content) {
    // 清除之前的定时器
@@ -191,7 +293,10 @@ async function sendMessage() {
    let mcpExecutionIds = [];
    try {
-        const response = await apiFetch('/api/agent-loop/stream', {
+        const modeSel = document.getElementById('agent-mode-select');
        const useMulti = multiAgentAPIEnabled && modeSel && modeSel.value === 'multi';
        const streamPath = useMulti ? '/api/multi-agent/stream' : '/api/agent-loop/stream';
        const response = await apiFetch(streamPath, {
            method: 'POST',
            headers: {
                'Content-Type': 'application/json',
@@ -1249,8 +1354,8 @@ function addMessage(role, content, mcpExecutionIds = null, progressId = null, cr
    } catch (e) { /* ignore */ }
    contentWrapper.appendChild(timeDiv);
-    // 如果有MCP执行ID或进度ID，添加查看详情区域（统一使用"渗透测试详情"样式）
+    // 有 MCP 执行记录且非流式占位消息时展示调用按钮；带 progressId 的流式占位不挂此条（与进度卡片一致，结束时 integrate 再创建）
-    if (role === 'assistant' && ((mcpExecutionIds && Array.isArray(mcpExecutionIds) && mcpExecutionIds.length > 0) || progressId)) {
+    if (role === 'assistant' && (mcpExecutionIds && Array.isArray(mcpExecutionIds) && mcpExecutionIds.length > 0) && !progressId) {
        const mcpSection = document.createElement('div');
        mcpSection.className = 'mcp-call-section';
@@ -1262,29 +1367,14 @@ function addMessage(role, content, mcpExecutionIds = null, progressId = null, cr
        const buttonsContainer = document.createElement('div');
        buttonsContainer.className = 'mcp-call-buttons';
-        // 如果有MCP执行ID，添加MCP调用详情按钮
+        mcpExecutionIds.forEach((execId, index) => {
-        if (mcpExecutionIds && Array.isArray(mcpExecutionIds) && mcpExecutionIds.length > 0) {
+            const detailBtn = document.createElement('button');
-            mcpExecutionIds.forEach((execId, index) => {
+            detailBtn.className = 'mcp-detail-btn';
-                const detailBtn = document.createElement('button');
+            detailBtn.innerHTML = '<span>' + (typeof window.t === 'function' ? window.t('chat.callNumber', { n: index + 1 }) : '调用 #' + (index + 1)) + '</span>';
-                detailBtn.className = 'mcp-detail-btn';
+            detailBtn.onclick = () => showMCPDetail(execId);
-                detailBtn.innerHTML = '<span>' + (typeof window.t === 'function' ? window.t('chat.callNumber', { n: index + 1 }) : '调用 #' + (index + 1)) + '</span>';
+            buttonsContainer.appendChild(detailBtn);
-                detailBtn.onclick = () => showMCPDetail(execId);
+            updateButtonWithToolName(detailBtn, execId, index + 1);
-                buttonsContainer.appendChild(detailBtn);
+        });
                // 异步获取工具名称并更新按钮文本
                updateButtonWithToolName(detailBtn, execId, index + 1);
            });
        }
        // 如果有进度ID，添加展开详情按钮（统一使用"展开详情"文本）
        if (progressId) {
            const progressDetailBtn = document.createElement('button');
            progressDetailBtn.className = 'mcp-detail-btn process-detail-btn';
            progressDetailBtn.innerHTML = '<span>' + (typeof window.t === 'function' ? window.t('chat.expandDetail') : '展开详情') + '</span>';
            progressDetailBtn.onclick = () => toggleProcessDetails(progressId, messageDiv.id);
            buttonsContainer.appendChild(progressDetailBtn);
            // 存储进度ID到消息元素
            messageDiv.dataset.progressId = progressId;
        }
        mcpSection.appendChild(buttonsContainer);
        contentWrapper.appendChild(mcpSection);
@@ -1461,34 +1551,44 @@ function renderProcessDetails(messageId, processDetails) {
    timeline.innerHTML = '';
    function processDetailAgentPrefix(d) {
        if (!d || d.einoAgent == null) return '';
        const s = String(d.einoAgent).trim();
        return s ? ('[' + s + '] ') : '';
    }
    // 渲染每个过程详情事件
    processDetails.forEach(detail => {
        const eventType = detail.eventType || '';
        const title = detail.message || '';
        const data = detail.data || {};
        const agPx = processDetailAgentPrefix(data);
        // 根据事件类型渲染不同的内容
        let itemTitle = title;
        if (eventType === 'iteration') {
-            itemTitle = (typeof window.t === 'function' ? window.t('chat.iterationRound', { n: data.iteration || 1 }) : '第 ' + (data.iteration || 1) + ' 轮迭代');
+            itemTitle = agPx + (typeof window.t === 'function' ? window.t('chat.iterationRound', { n: data.iteration || 1 }) : '第 ' + (data.iteration || 1) + ' 轮迭代');
        } else if (eventType === 'thinking') {
-            itemTitle = '🤔 ' + (typeof window.t === 'function' ? window.t('chat.aiThinking') : 'AI思考');
+            itemTitle = agPx + '🤔 ' + (typeof window.t === 'function' ? window.t('chat.aiThinking') : 'AI思考');
        } else if (eventType === 'tool_calls_detected') {
-            itemTitle = '🔧 ' + (typeof window.t === 'function' ? window.t('chat.toolCallsDetected', { count: data.count || 0 }) : '检测到 ' + (data.count || 0) + ' 个工具调用');
+            itemTitle = agPx + '🔧 ' + (typeof window.t === 'function' ? window.t('chat.toolCallsDetected', { count: data.count || 0 }) : '检测到 ' + (data.count || 0) + ' 个工具调用');
        } else if (eventType === 'tool_call') {
            const toolName = data.toolName || (typeof window.t === 'function' ? window.t('chat.unknownTool') : '未知工具');
            const index = data.index || 0;
            const total = data.total || 0;
-            itemTitle = '🔧 ' + (typeof window.t === 'function' ? window.t('chat.callTool', { name: escapeHtml(toolName), index: index, total: total }) : '调用工具: ' + escapeHtml(toolName) + ' (' + index + '/' + total + ')');
+            itemTitle = agPx + '🔧 ' + (typeof window.t === 'function' ? window.t('chat.callTool', { name: escapeHtml(toolName), index: index, total: total }) : '调用工具: ' + escapeHtml(toolName) + ' (' + index + '/' + total + ')');
        } else if (eventType === 'tool_result') {
            const toolName = data.toolName || (typeof window.t === 'function' ? window.t('chat.unknownTool') : '未知工具');
            const success = data.success !== false;
            const statusIcon = success ? '✅' : '❌';
            const execText = success ? (typeof window.t === 'function' ? window.t('chat.toolExecComplete', { name: escapeHtml(toolName) }) : '工具 ' + escapeHtml(toolName) + ' 执行完成') : (typeof window.t === 'function' ? window.t('chat.toolExecFailed', { name: escapeHtml(toolName) }) : '工具 ' + escapeHtml(toolName) + ' 执行失败');
-            itemTitle = statusIcon + ' ' + execText;
+            let execLine = statusIcon + ' ' + execText;
            if (toolName === BuiltinTools.SEARCH_KNOWLEDGE_BASE && success) {
-                itemTitle = '📚 ' + itemTitle + ' - ' + (typeof window.t === 'function' ? window.t('chat.knowledgeRetrievalTag') : '知识检索');
+                execLine = '📚 ' + execLine + ' - ' + (typeof window.t === 'function' ? window.t('chat.knowledgeRetrievalTag') : '知识检索');
            }
            itemTitle = agPx + execLine;
        } else if (eventType === 'eino_agent_reply') {
            itemTitle = agPx + '💬 ' + (typeof window.t === 'function' ? window.t('chat.einoAgentReplyTitle') : '子代理回复');
        } else if (eventType === 'knowledge_retrieval') {
            itemTitle = '📚 ' + (typeof window.t === 'function' ? window.t('chat.knowledgeRetrieval') : '知识检索');
        } else if (eventType === 'error') {
@@ -5497,9 +5597,10 @@ document.addEventListener('DOMContentLoaded', function() {
            }
        });
    }
    initChatAgentModeFromConfig();
 });
-// 点击外部关闭图标选择器
+// 点击外部关闭图标选择器、对话模式面板
 document.addEventListener('click', function(event) {
    const picker = document.getElementById('group-icon-picker');
    const iconBtn = document.getElementById('create-group-icon-btn');
@@ -5509,6 +5610,14 @@ document.addEventListener('click', function(event) {
            picker.style.display = 'none';
        }
    }
    const agentWrap = document.getElementById('agent-mode-wrapper');
    const agentPanel = document.getElementById('agent-mode-panel');
    if (agentWrap && agentPanel && agentPanel.style.display === 'flex') {
        if (!agentWrap.contains(event.target)) {
            closeAgentModePanel();
        }
    }
 });
 // 创建分组
@@ -38,6 +38,7 @@ function translateProgressMessage(message) {
        '达到最大迭代次数，正在生成总结...': 'progress.maxIterSummary',
        '正在分析您的请求...': 'progress.analyzingRequestShort',
        '开始分析请求并制定测试策略': 'progress.analyzingRequestPlanning',
        '正在启动 Eino DeepAgent...': 'progress.startingEinoDeepAgent',
        // 英文（与 en-US.json 一致，避免后端/缓存已是英文时无法随语言切换）
        'Calling AI model...': 'progress.callingAI',
        'Last iteration: generating summary and next steps...': 'progress.lastIterSummary',
@@ -45,9 +46,15 @@ function translateProgressMessage(message) {
        'Generating final reply...': 'progress.generatingFinalReply',
        'Max iterations reached, generating summary...': 'progress.maxIterSummary',
        'Analyzing your request...': 'progress.analyzingRequestShort',
-        'Analyzing your request and planning test strategy...': 'progress.analyzingRequestPlanning'
+        'Analyzing your request and planning test strategy...': 'progress.analyzingRequestPlanning',
        'Starting Eino DeepAgent...': 'progress.startingEinoDeepAgent'
    };
    if (map[trim]) return window.t(map[trim]);
    const einoAgentRe = /^\[Eino\]\s*(.+)$/;
    const einoM = trim.match(einoAgentRe);
    if (einoM) {
        return window.t('progress.einoAgent', { name: einoM[1] });
    }
    const callingToolPrefixCn = '正在调用工具: ';
    const callingToolPrefixEn = 'Calling tool: ';
    if (trim.indexOf(callingToolPrefixCn) === 0) {
@@ -67,6 +74,85 @@ if (typeof window !== 'undefined') {
 // 存储工具调用ID到DOM元素的映射，用于更新执行状态
 const toolCallStatusMap = new Map();
 // 模型流式输出缓存：progressId -> { assistantId, buffer }
 const responseStreamStateByProgressId = new Map();
 // AI 思考流式输出：progressId -> Map(streamId -> { itemId, buffer })
 const thinkingStreamStateByProgressId = new Map();
 // Eino 子代理回复流式：progressId -> Map(streamId -> { itemId, buffer })
 const einoAgentReplyStreamStateByProgressId = new Map();
 // 工具输出流式增量：progressId::toolCallId -> { itemId, buffer }
 const toolResultStreamStateByKey = new Map();
 function toolResultStreamKey(progressId, toolCallId) {
    return String(progressId) + '::' + String(toolCallId);
 }
 /** Eino 多代理：时间线标题前加 [agentId]，标明哪一代理产生该工具调用/结果/回复 */
 function timelineAgentBracketPrefix(data) {
    if (!data || data.einoAgent == null) return '';
    const s = String(data.einoAgent).trim();
    return s ? ('[' + s + '] ') : '';
 }
 // markdown 渲染（用于最终合并渲染；流式增量阶段用纯转义避免部分语法不稳定）
 const assistantMarkdownSanitizeConfig = {
    ALLOWED_TAGS: ['p', 'br', 'strong', 'em', 'u', 's', 'code', 'pre', 'blockquote', 'h1', 'h2', 'h3', 'h4', 'h5', 'h6', 'ul', 'ol', 'li', 'a', 'img', 'table', 'thead', 'tbody', 'tr', 'th', 'td', 'hr'],
    ALLOWED_ATTR: ['href', 'title', 'alt', 'src', 'class'],
    ALLOW_DATA_ATTR: false,
 };
 function escapeHtmlLocal(text) {
    if (!text) return '';
    const div = document.createElement('div');
    div.textContent = String(text);
    return div.innerHTML;
 }
 function formatAssistantMarkdownContent(text) {
    const raw = text == null ? '' : String(text);
    if (typeof marked !== 'undefined') {
        try {
            marked.setOptions({ breaks: true, gfm: true });
            const parsed = marked.parse(raw);
            if (typeof DOMPurify !== 'undefined') {
                return DOMPurify.sanitize(parsed, assistantMarkdownSanitizeConfig);
            }
            return parsed;
        } catch (e) {
            return escapeHtmlLocal(raw).replace(/\n/g, '<br>');
        }
    }
    return escapeHtmlLocal(raw).replace(/\n/g, '<br>');
 }
 function updateAssistantBubbleContent(assistantMessageId, content, renderMarkdown) {
    const assistantElement = document.getElementById(assistantMessageId);
    if (!assistantElement) return;
    const bubble = assistantElement.querySelector('.message-bubble');
    if (!bubble) return;
    // 保留复制按钮：addMessage 会把按钮 append 在 message-bubble 里
    const copyBtn = bubble.querySelector('.message-copy-btn');
    if (copyBtn) copyBtn.remove();
    const newContent = content == null ? '' : String(content);
    const html = renderMarkdown
        ? formatAssistantMarkdownContent(newContent)
        : escapeHtmlLocal(newContent).replace(/\n/g, '<br>');
    bubble.innerHTML = html;
    // 更新原始内容（给复制功能用）
    assistantElement.dataset.originalContent = newContent;
    if (typeof wrapTablesInBubble === 'function') {
        wrapTablesInBubble(bubble);
    }
    if (copyBtn) bubble.appendChild(copyBtn);
 }
 const conversationExecutionTracker = {
    activeConversations: new Set(),
    update(tasks = []) {
@@ -198,6 +284,15 @@ function toggleProgressDetails(progressId) {
    }
 }
 // 编排器开始输出最终回复时隐藏整条进度消息（迭代阶段保持展开可见；此处整行收起而非仅折叠时间线）
 function hideProgressMessageForFinalReply(progressId) {
    if (!progressId) return;
    const el = document.getElementById(progressId);
    if (el) {
        el.style.display = 'none';
    }
 }
 // 折叠所有进度详情
 function collapseAllProgressDetails(assistantMessageId, progressId) {
    // 折叠集成到MCP区域的详情
@@ -254,10 +349,12 @@ function getAssistantId() {
    return null;
 }
-// 将进度详情集成到工具调用区域
+// 将进度详情集成到工具调用区域（流式阶段助手消息不挂 mcp 条，结束时在此创建，避免图二整行 MCP 芯片样式）
-function integrateProgressToMCPSection(progressId, assistantMessageId) {
+function integrateProgressToMCPSection(progressId, assistantMessageId, mcpExecutionIds) {
    const progressElement = document.getElementById(progressId);
    if (!progressElement) return;
    const mcpIds = Array.isArray(mcpExecutionIds) ? mcpExecutionIds : [];
    // 获取时间线内容
    const timeline = document.getElementById(progressId + '-timeline');
@@ -272,15 +369,28 @@ function integrateProgressToMCPSection(progressId, assistantMessageId) {
        removeMessage(progressId);
        return;
    }
-    
+
-    // 查找MCP调用区域
+    const contentWrapper = assistantElement.querySelector('.message-content');
-    const mcpSection = assistantElement.querySelector('.mcp-call-section');
+    if (!contentWrapper) {
-    if (!mcpSection) {
+        removeMessage(progressId);
        // 如果没有MCP区域，创建详情组件放在消息下方
        convertProgressToDetails(progressId, assistantMessageId);
        return;
    }
    // 查找或创建 MCP 区域
    let mcpSection = assistantElement.querySelector('.mcp-call-section');
    if (!mcpSection) {
        mcpSection = document.createElement('div');
        mcpSection.className = 'mcp-call-section';
        const mcpLabel = document.createElement('div');
        mcpLabel.className = 'mcp-call-label';
        mcpLabel.textContent = '📋 ' + (typeof window.t === 'function' ? window.t('chat.penetrationTestDetail') : '渗透测试详情');
        mcpSection.appendChild(mcpLabel);
        const buttonsContainerInit = document.createElement('div');
        buttonsContainerInit.className = 'mcp-call-buttons';
        mcpSection.appendChild(buttonsContainerInit);
        contentWrapper.appendChild(mcpSection);
    }
    // 获取时间线内容
    const hasContent = timelineHTML.trim().length > 0;
@@ -294,6 +404,27 @@ function integrateProgressToMCPSection(progressId, assistantMessageId) {
        buttonsContainer.className = 'mcp-call-buttons';
        mcpSection.appendChild(buttonsContainer);
    }
    const hasExecBtns = buttonsContainer.querySelector('.mcp-detail-btn:not(.process-detail-btn)');
    if (mcpIds.length > 0 && !hasExecBtns) {
        mcpIds.forEach((execId, index) => {
            const detailBtn = document.createElement('button');
            detailBtn.className = 'mcp-detail-btn';
            detailBtn.innerHTML = '<span>' + (typeof window.t === 'function' ? window.t('chat.callNumber', { n: index + 1 }) : '调用 #' + (index + 1)) + '</span>';
            detailBtn.onclick = () => showMCPDetail(execId);
            buttonsContainer.appendChild(detailBtn);
            if (typeof updateButtonWithToolName === 'function') {
                updateButtonWithToolName(detailBtn, execId, index + 1);
            }
        });
    }
    if (!buttonsContainer.querySelector('.process-detail-btn')) {
        const progressDetailBtn = document.createElement('button');
        progressDetailBtn.className = 'mcp-detail-btn process-detail-btn';
        progressDetailBtn.innerHTML = '<span>' + (typeof window.t === 'function' ? window.t('chat.expandDetail') : '展开详情') + '</span>';
        progressDetailBtn.onclick = () => toggleProcessDetails(null, assistantMessageId);
        buttonsContainer.appendChild(progressDetailBtn);
    }
    // 创建详情容器，放在MCP按钮区域下方（统一结构）
    const detailsId = 'process-details-' + assistantMessageId;
@@ -543,9 +674,80 @@ function handleStreamEvent(event, progressElement, progressId,
            });
            break;
        case 'thinking_stream_start': {
            const d = event.data || {};
            const streamId = d.streamId || null;
            if (!streamId) break;
            let state = thinkingStreamStateByProgressId.get(progressId);
            if (!state) {
                state = new Map();
                thinkingStreamStateByProgressId.set(progressId, state);
            }
            // 若已存在，重置 buffer
            const thinkBase = typeof window.t === 'function' ? window.t('chat.aiThinking') : 'AI思考';
            const title = timelineAgentBracketPrefix(d) + '🤔 ' + thinkBase;
            const itemId = addTimelineItem(timeline, 'thinking', {
                title: title,
                message: ' ',
                data: d
            });
            state.set(streamId, { itemId, buffer: '' });
            break;
        }
        case 'thinking_stream_delta': {
            const d = event.data || {};
            const streamId = d.streamId || null;
            if (!streamId) break;
            const state = thinkingStreamStateByProgressId.get(progressId);
            if (!state || !state.has(streamId)) break;
            const s = state.get(streamId);
            const delta = event.message || '';
            s.buffer += delta;
            const item = document.getElementById(s.itemId);
            if (item) {
                const contentEl = item.querySelector('.timeline-item-content');
                if (contentEl) {
                    if (typeof formatMarkdown === 'function') {
                        contentEl.innerHTML = formatMarkdown(s.buffer);
                    } else {
                        contentEl.textContent = s.buffer;
                    }
                }
            }
            break;
        }
        case 'thinking':
            // 如果本 thinking 是由 thinking_stream_* 聚合出来的（带 streamId），避免重复创建 timeline item
            if (event.data && event.data.streamId) {
                const streamId = event.data.streamId;
                const state = thinkingStreamStateByProgressId.get(progressId);
                if (state && state.has(streamId)) {
                    const s = state.get(streamId);
                    s.buffer = event.message || '';
                    const item = document.getElementById(s.itemId);
                    if (item) {
                        const contentEl = item.querySelector('.timeline-item-content');
                        if (contentEl) {
                            // contentEl.innerHTML 用于兼容 Markdown 展示
                            if (typeof formatMarkdown === 'function') {
                                contentEl.innerHTML = formatMarkdown(s.buffer);
                            } else {
                                contentEl.textContent = s.buffer;
                            }
                        }
                    }
                    break;
                }
            }
            addTimelineItem(timeline, 'thinking', {
-                title: '🤔 ' + (typeof window.t === 'function' ? window.t('chat.aiThinking') : 'AI思考'),
+                title: timelineAgentBracketPrefix(event.data) + '🤔 ' + (typeof window.t === 'function' ? window.t('chat.aiThinking') : 'AI思考'),
                message: event.message,
                data: event.data
            });
@@ -553,7 +755,15 @@ function handleStreamEvent(event, progressElement, progressId,
        case 'tool_calls_detected':
            addTimelineItem(timeline, 'tool_calls_detected', {
-                title: '🔧 ' + (typeof window.t === 'function' ? window.t('chat.toolCallsDetected', { count: event.data?.count || 0 }) : '检测到 ' + (event.data?.count || 0) + ' 个工具调用'),
+                title: timelineAgentBracketPrefix(event.data) + '🔧 ' + (typeof window.t === 'function' ? window.t('chat.toolCallsDetected', { count: event.data?.count || 0 }) : '检测到 ' + (event.data?.count || 0) + ' 个工具调用'),
                message: event.message,
                data: event.data
            });
            break;
        case 'warning':
            addTimelineItem(timeline, 'warning', {
                title: '⚠️',
                message: event.message,
                data: event.data
            });
@@ -567,7 +777,7 @@ function handleStreamEvent(event, progressElement, progressId,
            const toolCallId = toolInfo.toolCallId || null;
            const toolCallTitle = typeof window.t === 'function' ? window.t('chat.callTool', { name: escapeHtml(toolName), index: index, total: total }) : '调用工具: ' + escapeHtml(toolName) + ' (' + index + '/' + total + ')';
            const toolCallItemId = addTimelineItem(timeline, 'tool_call', {
-                title: '🔧 ' + toolCallTitle,
+                title: timelineAgentBracketPrefix(toolInfo) + '🔧 ' + toolCallTitle,
                message: event.message,
                data: toolInfo,
                expanded: false
@@ -584,6 +794,57 @@ function handleStreamEvent(event, progressElement, progressId,
                updateToolCallStatus(toolCallId, 'running');
            }
            break;
        case 'tool_result_delta': {
            const deltaInfo = event.data || {};
            const toolCallId = deltaInfo.toolCallId || null;
            if (!toolCallId) break;
            const key = toolResultStreamKey(progressId, toolCallId);
            let state = toolResultStreamStateByKey.get(key);
            const toolNameDelta = deltaInfo.toolName || (typeof window.t === 'function' ? window.t('chat.unknownTool') : '未知工具');
            const deltaText = event.message || '';
            if (!deltaText) break;
            if (!state) {
                // 首次增量：创建一个 tool_result 占位条目，后续不断更新 pre 内容
                const runningLabel = typeof window.t === 'function' ? window.t('timeline.running') : '执行中...';
                const title = timelineAgentBracketPrefix(deltaInfo) + '⏳ ' + (typeof window.t === 'function'
                    ? window.t('timeline.running')
                    : runningLabel) + ' ' + (typeof window.t === 'function' ? window.t('chat.callTool', { name: escapeHtmlLocal(toolNameDelta), index: deltaInfo.index || 0, total: deltaInfo.total || 0 }) : toolNameDelta);
                const itemId = addTimelineItem(timeline, 'tool_result', {
                    title: title,
                    message: '',
                    data: {
                        toolName: toolNameDelta,
                        success: true,
                        isError: false,
                        result: deltaText,
                        toolCallId: toolCallId,
                        index: deltaInfo.index,
                        total: deltaInfo.total,
                        iteration: deltaInfo.iteration,
                        einoAgent: deltaInfo.einoAgent,
                        source: deltaInfo.source
                    },
                    expanded: false
                });
                state = { itemId, buffer: '' };
                toolResultStreamStateByKey.set(key, state);
            }
            state.buffer += deltaText;
            const item = document.getElementById(state.itemId);
            if (item) {
                const pre = item.querySelector('pre.tool-result');
                if (pre) {
                    pre.textContent = state.buffer;
                }
            }
            break;
        }
        case 'tool_result':
            const resultInfo = event.data || {};
@@ -592,17 +853,153 @@ function handleStreamEvent(event, progressElement, progressId,
            const statusIcon = success ? '✅' : '❌';
            const resultToolCallId = resultInfo.toolCallId || null;
            const resultExecText = success ? (typeof window.t === 'function' ? window.t('chat.toolExecComplete', { name: escapeHtml(resultToolName) }) : '工具 ' + escapeHtml(resultToolName) + ' 执行完成') : (typeof window.t === 'function' ? window.t('chat.toolExecFailed', { name: escapeHtml(resultToolName) }) : '工具 ' + escapeHtml(resultToolName) + ' 执行失败');
            // 若此 tool 已经流式推送过增量，则复用占位条目并更新最终结果，避免重复添加一条
            if (resultToolCallId) {
                const key = toolResultStreamKey(progressId, resultToolCallId);
                const state = toolResultStreamStateByKey.get(key);
                if (state && state.itemId) {
                    const item = document.getElementById(state.itemId);
                    if (item) {
                        const pre = item.querySelector('pre.tool-result');
                        const resultVal = resultInfo.result || resultInfo.error || '';
                        if (pre) pre.textContent = typeof resultVal === 'string' ? resultVal : JSON.stringify(resultVal);
                        const section = item.querySelector('.tool-result-section');
                        if (section) {
                            section.className = 'tool-result-section ' + (success ? 'success' : 'error');
                        }
                        const titleEl = item.querySelector('.timeline-item-title');
                        if (titleEl) {
                            if (resultInfo.einoAgent != null && String(resultInfo.einoAgent).trim() !== '') {
                                item.dataset.einoAgent = String(resultInfo.einoAgent).trim();
                            }
                            titleEl.textContent = timelineAgentBracketPrefix(resultInfo) + statusIcon + ' ' + resultExecText;
                        }
                    }
                    toolResultStreamStateByKey.delete(key);
                    // 同时更新 tool_call 的状态
                    if (resultToolCallId && toolCallStatusMap.has(resultToolCallId)) {
                        updateToolCallStatus(resultToolCallId, success ? 'completed' : 'failed');
                        toolCallStatusMap.delete(resultToolCallId);
                    }
                    break;
                }
            }
            if (resultToolCallId && toolCallStatusMap.has(resultToolCallId)) {
                updateToolCallStatus(resultToolCallId, success ? 'completed' : 'failed');
                toolCallStatusMap.delete(resultToolCallId);
            }
            addTimelineItem(timeline, 'tool_result', {
-                title: statusIcon + ' ' + resultExecText,
+                title: timelineAgentBracketPrefix(resultInfo) + statusIcon + ' ' + resultExecText,
                message: event.message,
                data: resultInfo,
                expanded: false
            });
            break;
        case 'eino_agent_reply_stream_start': {
            const d = event.data || {};
            const streamId = d.streamId || null;
            if (!streamId) break;
            let stateMap = einoAgentReplyStreamStateByProgressId.get(progressId);
            if (!stateMap) {
                stateMap = new Map();
                einoAgentReplyStreamStateByProgressId.set(progressId, stateMap);
            }
            const streamingLabel = typeof window.t === 'function' ? window.t('timeline.running') : '执行中...';
            const replyTitleBase = typeof window.t === 'function' ? window.t('chat.einoAgentReplyTitle') : '子代理回复';
            const itemId = addTimelineItem(timeline, 'eino_agent_reply', {
                title: timelineAgentBracketPrefix(d) + '💬 ' + replyTitleBase + ' · ' + streamingLabel,
                message: ' ',
                data: d,
                expanded: false
            });
            stateMap.set(streamId, { itemId, buffer: '' });
            break;
        }
        case 'eino_agent_reply_stream_delta': {
            const d = event.data || {};
            const streamId = d.streamId || null;
            if (!streamId) break;
            const delta = event.message || '';
            if (!delta) break;
            const stateMap = einoAgentReplyStreamStateByProgressId.get(progressId);
            if (!stateMap || !stateMap.has(streamId)) break;
            const s = stateMap.get(streamId);
            s.buffer += delta;
            const item = document.getElementById(s.itemId);
            if (item) {
                let contentEl = item.querySelector('.timeline-item-content');
                if (!contentEl) {
                    const header = item.querySelector('.timeline-item-header');
                    if (header) {
                        contentEl = document.createElement('div');
                        contentEl.className = 'timeline-item-content';
                        item.appendChild(contentEl);
                    }
                }
                if (contentEl) {
                    if (typeof formatMarkdown === 'function') {
                        contentEl.innerHTML = formatMarkdown(s.buffer);
                    } else {
                        contentEl.textContent = s.buffer;
                    }
                }
            }
            break;
        }
        case 'eino_agent_reply_stream_end': {
            const d = event.data || {};
            const streamId = d.streamId || null;
            const stateMap = einoAgentReplyStreamStateByProgressId.get(progressId);
            if (streamId && stateMap && stateMap.has(streamId)) {
                const s = stateMap.get(streamId);
                const full = (event.message != null && event.message !== '') ? String(event.message) : s.buffer;
                s.buffer = full;
                const item = document.getElementById(s.itemId);
                if (item) {
                    const titleEl = item.querySelector('.timeline-item-title');
                    if (titleEl) {
                        const replyTitleBase = typeof window.t === 'function' ? window.t('chat.einoAgentReplyTitle') : '子代理回复';
                        titleEl.textContent = timelineAgentBracketPrefix(d) + '💬 ' + replyTitleBase;
                    }
                    let contentEl = item.querySelector('.timeline-item-content');
                    if (!contentEl) {
                        contentEl = document.createElement('div');
                        contentEl.className = 'timeline-item-content';
                        item.appendChild(contentEl);
                    }
                    if (typeof formatMarkdown === 'function') {
                        contentEl.innerHTML = formatMarkdown(full);
                    } else {
                        contentEl.textContent = full;
                    }
                    if (d.einoAgent != null && String(d.einoAgent).trim() !== '') {
                        item.dataset.einoAgent = String(d.einoAgent).trim();
                    }
                }
                stateMap.delete(streamId);
            }
            break;
        }
        case 'eino_agent_reply': {
            const replyData = event.data || {};
            const replyTitleBase = typeof window.t === 'function' ? window.t('chat.einoAgentReplyTitle') : '子代理回复';
            addTimelineItem(timeline, 'eino_agent_reply', {
                title: timelineAgentBracketPrefix(replyData) + '💬 ' + replyTitleBase,
                message: event.message || '',
                data: replyData,
                expanded: false
            });
            break;
        }
        case 'progress':
            const progressTitle = document.querySelector(`#${progressId} .progress-title`);
@@ -659,7 +1056,7 @@ function handleStreamEvent(event, progressElement, progressId,
                if (assistantElement) {
                    const detailsId = 'process-details-' + assistantId;
                    if (!document.getElementById(detailsId)) {
-                        integrateProgressToMCPSection(progressId, assistantId);
+                        integrateProgressToMCPSection(progressId, assistantId, typeof getMcpIds === 'function' ? (getMcpIds() || []) : []);
                    }
                    // 立即折叠详情（取消时应该默认折叠）
                    setTimeout(() => {
@@ -673,7 +1070,7 @@ function handleStreamEvent(event, progressElement, progressId,
                // 将进度详情集成到工具调用区域
                setTimeout(() => {
-                    integrateProgressToMCPSection(progressId, assistantId);
+                    integrateProgressToMCPSection(progressId, assistantId, typeof getMcpIds === 'function' ? (getMcpIds() || []) : []);
                    // 确保详情默认折叠
                    collapseAllProgressDetails(assistantId, progressId);
                }, 100);
@@ -683,47 +1080,128 @@ function handleStreamEvent(event, progressElement, progressId,
            loadActiveTasks();
            break;
-        case 'response':
+        case 'response_start': {
            // 在更新之前，先获取任务对应的原始对话ID
            const responseTaskState = progressTaskState.get(progressId);
            const responseOriginalConversationId = responseTaskState?.conversationId;
-            
+
            // 先添加助手回复
            const responseData = event.data || {};
            const mcpIds = responseData.mcpExecutionIds || [];
            setMcpIds(mcpIds);
-            
+
            // 更新对话ID
            if (responseData.conversationId) {
-                // 如果用户已经开始了新对话（currentConversationId 为 null），
+                // 如果用户已经开始了新对话（currentConversationId 为 null），且这个事件来自旧对话，则忽略
                // 且这个 response 事件来自旧对话，就不更新 currentConversationId 也不添加消息
                if (currentConversationId === null && responseOriginalConversationId !== null) {
                    // 用户已经开始了新对话，忽略旧对话的 response 事件
                    // 但仍然更新任务状态，以便正确显示任务信息
                    updateProgressConversation(progressId, responseData.conversationId);
                    break;
                }
                currentConversationId = responseData.conversationId;
                updateActiveConversation();
                addAttackChainButton(currentConversationId);
                updateProgressConversation(progressId, responseData.conversationId);
                loadActiveTasks();
            }
-            
+
-            // 添加助手回复，并传入进度ID以便集成详情
+            // 多代理模式下，迭代过程中的输出只显示在时间线中，不创建助手消息气泡
-            const assistantId = addMessage('assistant', event.message, mcpIds, progressId);
+            // 创建时间线条目用于显示迭代过程中的输出
-            setAssistantId(assistantId);
+            const agentPrefix = timelineAgentBracketPrefix(responseData);
-            
+            const title = agentPrefix + '📝 ' + (typeof window.t === 'function' ? window.t('chat.planning') : '规划中');
-            // 将进度详情集成到工具调用区域
+            const itemId = addTimelineItem(timeline, 'thinking', {
-            integrateProgressToMCPSection(progressId, assistantId);
+                title: title,
-            
+                message: ' ',
-            // 延迟自动折叠详情（3秒后）
+                data: responseData
            });
            responseStreamStateByProgressId.set(progressId, { itemId: itemId, buffer: '' });
            break;
        }
        case 'response_delta': {
            const responseData = event.data || {};
            const responseTaskState = progressTaskState.get(progressId);
            const responseOriginalConversationId = responseTaskState?.conversationId;
            if (responseData.conversationId) {
                if (currentConversationId === null && responseOriginalConversationId !== null) {
                    updateProgressConversation(progressId, responseData.conversationId);
                    break;
                }
            }
            // 多代理模式下，迭代过程中的输出只显示在时间线中
            // 更新时间线条目内容
            let state = responseStreamStateByProgressId.get(progressId);
            if (!state) {
                state = { itemId: null, buffer: '' };
                responseStreamStateByProgressId.set(progressId, state);
            }
            const deltaContent = event.message || '';
            state.buffer += deltaContent;
            // 更新时间线条目内容
            if (state.itemId) {
                const item = document.getElementById(state.itemId);
                if (item) {
                    const contentEl = item.querySelector('.timeline-item-content');
                    if (contentEl) {
                        if (typeof formatMarkdown === 'function') {
                            contentEl.innerHTML = formatMarkdown(state.buffer);
                        } else {
                            contentEl.textContent = state.buffer;
                        }
                    }
                }
            }
            break;
        }
        case 'response':
            // 在更新之前，先获取任务对应的原始对话ID
            const responseTaskState = progressTaskState.get(progressId);
            const responseOriginalConversationId = responseTaskState?.conversationId;
            // 先更新 mcp ids
            const responseData = event.data || {};
            const mcpIds = responseData.mcpExecutionIds || [];
            setMcpIds(mcpIds);
            // 更新对话ID
            if (responseData.conversationId) {
                if (currentConversationId === null && responseOriginalConversationId !== null) {
                    updateProgressConversation(progressId, responseData.conversationId);
                    break;
                }
                currentConversationId = responseData.conversationId;
                updateActiveConversation();
                addAttackChainButton(currentConversationId);
                updateProgressConversation(progressId, responseData.conversationId);
                loadActiveTasks();
            }
            // 如果之前已经在 response_start/response_delta 阶段创建过占位，则复用该消息更新最终内容
            const streamState = responseStreamStateByProgressId.get(progressId);
            const existingAssistantId = streamState?.assistantId || getAssistantId();
            let assistantIdFinal = existingAssistantId;
            if (!assistantIdFinal) {
                assistantIdFinal = addMessage('assistant', event.message, mcpIds, progressId);
                setAssistantId(assistantIdFinal);
            } else {
                setAssistantId(assistantIdFinal);
                updateAssistantBubbleContent(assistantIdFinal, event.message, true);
            }
            // 最终回复时隐藏进度卡片（多代理模式下，迭代过程已完整展示）
            hideProgressMessageForFinalReply(progressId);
            // 将进度详情集成到工具调用区域（放在最终 response 之后，保证时间线已完整）
            integrateProgressToMCPSection(progressId, assistantIdFinal, mcpIds);
            responseStreamStateByProgressId.delete(progressId);
            setTimeout(() => {
-                collapseAllProgressDetails(assistantId, progressId);
+                collapseAllProgressDetails(assistantIdFinal, progressId);
            }, 3000);
-            
+
            // 延迟刷新对话列表，确保助手消息已保存，updated_at已更新
            setTimeout(() => {
                loadConversations();
            }, 200);
@@ -777,7 +1255,7 @@ function handleStreamEvent(event, progressElement, progressId,
                if (assistantElement) {
                    const detailsId = 'process-details-' + assistantId;
                    if (!document.getElementById(detailsId)) {
-                        integrateProgressToMCPSection(progressId, assistantId);
+                        integrateProgressToMCPSection(progressId, assistantId, typeof getMcpIds === 'function' ? (getMcpIds() || []) : []);
                    }
                    // 立即折叠详情（错误时应该默认折叠）
                    setTimeout(() => {
@@ -791,7 +1269,7 @@ function handleStreamEvent(event, progressElement, progressId,
                // 将进度详情集成到工具调用区域
                setTimeout(() => {
-                    integrateProgressToMCPSection(progressId, assistantId);
+                    integrateProgressToMCPSection(progressId, assistantId, typeof getMcpIds === 'function' ? (getMcpIds() || []) : []);
                    // 确保详情默认折叠
                    collapseAllProgressDetails(assistantId, progressId);
                }, 100);
@@ -802,6 +1280,17 @@ function handleStreamEvent(event, progressElement, progressId,
            break;
        case 'done':
            // 清理流式输出状态
            responseStreamStateByProgressId.delete(progressId);
            thinkingStreamStateByProgressId.delete(progressId);
            einoAgentReplyStreamStateByProgressId.delete(progressId);
            // 清理工具流式输出占位
            const prefix = String(progressId) + '::';
            for (const key of Array.from(toolResultStreamStateByKey.keys())) {
                if (String(key).startsWith(prefix)) {
                    toolResultStreamStateByKey.delete(key);
                }
            }
            // 完成，更新进度标题（如果进度消息还存在）
            const doneTitle = document.querySelector(`#${progressId} .progress-title`);
            if (doneTitle) {
@@ -921,6 +1410,9 @@ function addTimelineItem(timeline, type, options) {
        item.dataset.toolName = (d.toolName != null && d.toolName !== '') ? String(d.toolName) : '';
        item.dataset.toolSuccess = d.success !== false ? '1' : '0';
    }
    if (options.data && options.data.einoAgent != null && String(options.data.einoAgent).trim() !== '') {
        item.dataset.einoAgent = String(options.data.einoAgent).trim();
    }
    // 使用传入的createdAt时间，如果没有则使用当前时间（向后兼容）
    let eventTime;
@@ -961,7 +1453,17 @@ function addTimelineItem(timeline, type, options) {
        content += `<div class="timeline-item-content">${formatMarkdown(options.message)}</div>`;
    } else if (type === 'tool_call' && options.data) {
        const data = options.data;
-        const args = data.argumentsObj || (data.arguments ? JSON.parse(data.arguments) : {});
+        let args = data.argumentsObj;
        if (args == null && data.arguments != null && String(data.arguments).trim() !== '') {
            try {
                args = JSON.parse(String(data.arguments));
            } catch (e) {
                args = { _raw: String(data.arguments) };
            }
        }
        if (args == null || typeof args !== 'object') {
            args = {};
        }
        const paramsLabel = typeof window.t === 'function' ? window.t('timeline.params') : '参数:';
        content += `
            <div class="timeline-item-content">
@@ -973,6 +1475,8 @@ function addTimelineItem(timeline, type, options) {
                </div>
            </div>
        `;
    } else if (type === 'eino_agent_reply' && options.message) {
        content += `<div class="timeline-item-content">${formatMarkdown(options.message)}</div>`;
    } else if (type === 'tool_result' && options.data) {
        const data = options.data;
        const isError = data.isError || !data.success;
@@ -1802,24 +2306,27 @@ function refreshProgressAndTimelineI18n() {
        const titleSpan = item.querySelector('.timeline-item-title');
        const timeSpan = item.querySelector('.timeline-item-time');
        if (!titleSpan) return;
        const ap = (item.dataset.einoAgent && item.dataset.einoAgent !== '') ? ('[' + item.dataset.einoAgent + '] ') : '';
        if (type === 'iteration' && item.dataset.iterationN) {
            const n = parseInt(item.dataset.iterationN, 10) || 1;
-            titleSpan.textContent = _t('chat.iterationRound', { n: n });
+            titleSpan.textContent = ap + _t('chat.iterationRound', { n: n });
        } else if (type === 'thinking') {
-            titleSpan.textContent = '\uD83E\uDD14 ' + _t('chat.aiThinking');
+            titleSpan.textContent = ap + '\uD83E\uDD14 ' + _t('chat.aiThinking');
        } else if (type === 'tool_calls_detected' && item.dataset.toolCallsCount != null) {
            const count = parseInt(item.dataset.toolCallsCount, 10) || 0;
-            titleSpan.textContent = '\uD83D\uDD27 ' + _t('chat.toolCallsDetected', { count: count });
+            titleSpan.textContent = ap + '\uD83D\uDD27 ' + _t('chat.toolCallsDetected', { count: count });
        } else if (type === 'tool_call' && (item.dataset.toolName !== undefined || item.dataset.toolIndex !== undefined)) {
            const name = (item.dataset.toolName != null && item.dataset.toolName !== '') ? item.dataset.toolName : _t('chat.unknownTool');
            const index = parseInt(item.dataset.toolIndex, 10) || 0;
            const total = parseInt(item.dataset.toolTotal, 10) || 0;
-            titleSpan.textContent = '\uD83D\uDD27 ' + _t('chat.callTool', { name: name, index: index, total: total });
+            titleSpan.textContent = ap + '\uD83D\uDD27 ' + _t('chat.callTool', { name: name, index: index, total: total });
        } else if (type === 'tool_result' && (item.dataset.toolName !== undefined || item.dataset.toolSuccess !== undefined)) {
            const name = (item.dataset.toolName != null && item.dataset.toolName !== '') ? item.dataset.toolName : _t('chat.unknownTool');
            const success = item.dataset.toolSuccess === '1';
            const icon = success ? '\u2705 ' : '\u274C ';
-            titleSpan.textContent = icon + (success ? _t('chat.toolExecComplete', { name: name }) : _t('chat.toolExecFailed', { name: name }));
+            titleSpan.textContent = ap + icon + (success ? _t('chat.toolExecComplete', { name: name }) : _t('chat.toolExecFailed', { name: name }));
        } else if (type === 'eino_agent_reply') {
            titleSpan.textContent = ap + '\uD83D\uDCAC ' + _t('chat.einoAgentReplyTitle');
        } else if (type === 'cancelled') {
            titleSpan.textContent = '\u26D4 ' + _t('chat.taskCancelled');
        } else if (type === 'progress' && item.dataset.progressMessage !== undefined) {
@@ -210,6 +210,9 @@ function toggleRoleSelectionPanel() {
    const isHidden = panel.style.display === 'none' || !panel.style.display;
    if (isHidden) {
        if (typeof closeAgentModePanel === 'function') {
            closeAgentModePanel();
        }
        panel.style.display = 'flex'; // 使用flex布局
        // 添加打开状态的视觉反馈
        if (roleSelectorBtn) {
@@ -8,7 +8,7 @@ function initRouter() {
    if (hash) {
        const hashParts = hash.split('?');
        const pageId = hashParts[0];
-        if (pageId && ['dashboard', 'chat', 'info-collect', 'vulnerabilities', 'webshell', 'mcp-monitor', 'mcp-management', 'knowledge-management', 'knowledge-retrieval-logs', 'roles-management', 'skills-monitor', 'skills-management', 'settings', 'tasks'].includes(pageId)) {
+        if (pageId && ['dashboard', 'chat', 'info-collect', 'vulnerabilities', 'webshell', 'chat-files', 'mcp-monitor', 'mcp-management', 'knowledge-management', 'knowledge-retrieval-logs', 'roles-management', 'skills-monitor', 'skills-management', 'agents-management', 'settings', 'tasks'].includes(pageId)) {
            switchPage(pageId);
            // 如果是chat页面且带有conversation参数，加载对应对话
@@ -107,6 +107,16 @@ function updateNavState(pageId) {
            skillsItem.classList.add('expanded');
        }
        const submenuItem = document.querySelector(`.nav-submenu-item[data-page="${pageId}"]`);
        if (submenuItem) {
            submenuItem.classList.add('active');
        }
    } else if (pageId === 'agents-management') {
        const agentsItem = document.querySelector('.nav-item[data-page="agents"]');
        if (agentsItem) {
            agentsItem.classList.add('active');
            agentsItem.classList.add('expanded');
        }
        const submenuItem = document.querySelector(`.nav-submenu-item[data-page="${pageId}"]`);
        if (submenuItem) {
            submenuItem.classList.add('active');
@@ -120,19 +130,6 @@ function updateNavState(pageId) {
            rolesItem.classList.add('expanded');
        }
        const submenuItem = document.querySelector(`.nav-submenu-item[data-page="${pageId}"]`);
        if (submenuItem) {
            submenuItem.classList.add('active');
        }
    } else if (pageId === 'skills-monitor' || pageId === 'skills-management') {
        // Skills子菜单项
        const skillsItem = document.querySelector('.nav-item[data-page="skills"]');
        if (skillsItem) {
            skillsItem.classList.add('active');
            // 展开Skills子菜单
            skillsItem.classList.add('expanded');
        }
        const submenuItem = document.querySelector(`.nav-submenu-item[data-page="${pageId}"]`);
        if (submenuItem) {
            submenuItem.classList.add('active');
@@ -299,6 +296,11 @@ function initPage(pageId) {
                initWebshellPage();
            }
            break;
        case 'chat-files':
            if (typeof initChatFilesPage === 'function') {
                initChatFilesPage();
            }
            break;
        case 'settings':
            // 初始化设置页面（不需要加载工具列表）
            if (typeof loadConfig === 'function') {
@@ -348,6 +350,11 @@ function initPage(pageId) {
                loadSkills();
            }
            break;
        case 'agents-management':
            if (typeof loadMarkdownAgents === 'function') {
                loadMarkdownAgents();
            }
            break;
    }
    // 清理其他页面的定时器
@@ -368,7 +375,7 @@ document.addEventListener('DOMContentLoaded', function() {
        const hashParts = hash.split('?');
        const pageId = hashParts[0];
-        if (pageId && ['chat', 'info-collect', 'tasks', 'vulnerabilities', 'webshell', 'mcp-monitor', 'mcp-management', 'knowledge-management', 'knowledge-retrieval-logs', 'roles-management', 'skills-monitor', 'skills-management', 'settings'].includes(pageId)) {
+        if (pageId && ['chat', 'info-collect', 'tasks', 'vulnerabilities', 'webshell', 'chat-files', 'mcp-monitor', 'mcp-management', 'knowledge-management', 'knowledge-retrieval-logs', 'roles-management', 'skills-monitor', 'skills-management', 'agents-management', 'settings'].includes(pageId)) {
            switchPage(pageId);
            // 如果是chat页面且带有conversation参数，加载对应对话
@@ -117,6 +117,16 @@ async function loadConfig(loadTools = true) {
        // 填充Agent配置
        document.getElementById('agent-max-iterations').value = currentConfig.agent.max_iterations || 30;
        const ma = currentConfig.multi_agent || {};
        const maEn = document.getElementById('multi-agent-enabled');
        if (maEn) maEn.checked = ma.enabled === true;
        const maMode = document.getElementById('multi-agent-default-mode');
        if (maMode) maMode.value = (ma.default_mode === 'multi') ? 'multi' : 'single';
        const maRobot = document.getElementById('multi-agent-robot-use');
        if (maRobot) maRobot.checked = ma.robot_use_multi_agent === true;
        const maBatch = document.getElementById('multi-agent-batch-use');
        if (maBatch) maBatch.checked = ma.batch_use_multi_agent === true;
        // 填充知识库配置
        const knowledgeEnabledCheckbox = document.getElementById('knowledge-enabled');
@@ -806,6 +816,12 @@ async function applySettings() {
            agent: {
                max_iterations: parseInt(document.getElementById('agent-max-iterations').value) || 30
            },
            multi_agent: {
                enabled: document.getElementById('multi-agent-enabled')?.checked === true,
                default_mode: document.getElementById('multi-agent-default-mode')?.value === 'multi' ? 'multi' : 'single',
                robot_use_multi_agent: document.getElementById('multi-agent-robot-use')?.checked === true,
                batch_use_multi_agent: document.getElementById('multi-agent-batch-use')?.checked === true
            },
            knowledge: knowledgeConfig,
            robots: {
                wecom: {
@@ -47,6 +47,12 @@
                            </svg>
                            <span data-i18n="header.apiDocs">API 文档</span>
                        </button>
                                        <button class="openapi-doc-btn" onclick="window.open('https://github.com/Ed1s0nZ/CyberStrikeAI', '_blank')" data-i18n="header.github" data-i18n-attr="title" data-i18n-skip-text="true" title="GitHub">
                                            <svg width="16" height="16" viewBox="0 0 98 96" fill="currentColor" xmlns="http://www.w3.org/2000/svg">
                                                <path d="M48.854 0C21.839 0 0 22 0 49.217c0 21.756 13.993 40.172 33.405 46.69 2.427.49 3.316-1.059 3.316-2.362 0-1.141-.08-5.052-.08-9.127-13.59 2.934-16.42-5.867-16.42-5.867-2.184-5.704-5.42-7.17-5.42-7.17-4.448-3.015.324-3.015.324-3.015 4.934.326 7.523 5.052 7.523 5.052 4.367 7.496 11.404 5.378 14.235 4.074.404-3.178 1.699-5.378 3.074-6.6-10.839-1.141-22.243-5.378-22.243-24.283 0-5.378 1.94-9.778 5.014-13.2-.485-1.222-2.184-6.275.486-13.038 0 0 4.125-1.304 13.426 5.052a46.97 46.97 0 0 1 12.214-1.63c4.125 0 8.33.571 12.213 1.63 9.302-6.356 13.427-5.052 13.427-5.052 2.67 6.763.97 11.816.485 13.038 3.155 3.422 5.015 7.822 5.015 13.2 0 18.905-11.404 23.06-22.324 24.283 1.78 1.548 3.316 4.481 3.316 9.126 0 6.6-.08 11.897-.08 13.526 0 1.304.89 2.853 3.316 2.364 19.412-6.52 33.405-24.935 33.405-46.691C97.707 22 75.788 0 48.854 0z"/>
                                            </svg>
                                            <span data-i18n="header.github">GitHub</span>
                                        </button>
                        <div class="lang-switcher">
                            <button class="btn-secondary lang-switcher-btn" onclick="toggleLangDropdown()" data-i18n="header.language" data-i18n-attr="title" data-i18n-skip-text="true" title="界面语言">
                                <span class="lang-switcher-icon">🌐</span>
@@ -144,6 +150,14 @@
                            <span data-i18n="nav.webshell">WebShell管理</span>
                        </div>
                    </div>
                    <div class="nav-item" data-page="chat-files">
                        <div class="nav-item-content" data-title="文件管理" onclick="switchPage('chat-files')" data-i18n="nav.chatFiles" data-i18n-attr="data-title" data-i18n-skip-text="true">
                            <svg width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
                                <path d="M22 19a2 2 0 0 1-2 2H4a2 2 0 0 1-2-2V5a2 2 0 0 1 2-2h5l2 3h9a2 2 0 0 1 2 2z"></path>
                            </svg>
                            <span data-i18n="nav.chatFiles">文件管理</span>
                        </div>
                    </div>
                    <div class="nav-item nav-item-has-submenu" data-page="mcp">
                        <div class="nav-item-content" data-title="MCP" onclick="toggleSubmenu('mcp')" data-i18n="nav.mcp" data-i18n-attr="data-title" data-i18n-skip-text="true">
                            <svg width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
@@ -206,6 +220,24 @@
                            </div>
                        </div>
                    </div>
                    <div class="nav-item nav-item-has-submenu" data-page="agents">
                        <div class="nav-item-content" data-title="Agents" onclick="toggleSubmenu('agents')" data-i18n="nav.agents" data-i18n-attr="data-title" data-i18n-skip-text="true">
                            <svg width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
                                <polygon points="12 2 2 7 12 12 22 7 12 2"></polygon>
                                <polyline points="2 17 12 22 22 17"></polyline>
                                <polyline points="2 12 12 17 22 12"></polyline>
                            </svg>
                            <span data-i18n="nav.agents">Agents</span>
                            <svg class="submenu-arrow" width="16" height="16" viewBox="0 0 24 24" fill="none" xmlns="http://www.w3.org/2000/svg">
                                <path d="M9 18l6-6-6-6" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"/>
                            </svg>
                        </div>
                        <div class="nav-submenu">
                            <div class="nav-submenu-item" data-page="agents-management" onclick="switchPage('agents-management')">
                                <span data-i18n="nav.agentsManagement">Agent管理</span>
                            </div>
                        </div>
                    </div>
                    <div class="nav-item nav-item-has-submenu" data-page="roles">
                        <div class="nav-item-content" data-title="角色" onclick="toggleSubmenu('roles')" data-i18n="nav.roles" data-i18n-attr="data-title" data-i18n-skip-text="true">
                            <svg width="20" height="20" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
@@ -552,6 +584,46 @@
                                        <div id="role-selection-list" class="role-selection-list-main"></div>
                                    </div>
                                </div>
                                <div id="agent-mode-wrapper" class="agent-mode-wrapper" style="display: none;">
                                    <div class="agent-mode-inner">
                                        <button type="button" id="agent-mode-btn" class="role-selector-btn agent-mode-btn" onclick="toggleAgentModePanel()" data-i18n="chat.agentModeSelectAria" data-i18n-attr="aria-label,title" data-i18n-skip-text="true" aria-label="选择单代理或多代理" aria-haspopup="listbox" aria-expanded="false" title="选择单代理或多代理">
                                            <span id="agent-mode-icon" class="role-selector-icon" aria-hidden="true">🤖</span>
                                            <span id="agent-mode-text" class="role-selector-text">单代理</span>
                                            <svg class="role-selector-arrow" width="10" height="10" viewBox="0 0 24 24" fill="none" xmlns="http://www.w3.org/2000/svg" aria-hidden="true">
                                                <path d="M6 9l6 6 6-6" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"/>
                                            </svg>
                                        </button>
                                        <div id="agent-mode-panel" class="agent-mode-panel" style="display: none;" role="listbox" aria-labelledby="agent-mode-panel-title">
                                            <div class="role-selection-panel-header agent-mode-panel-header">
                                                <h3 id="agent-mode-panel-title" class="role-selection-panel-title" data-i18n="chat.agentModePanelTitle">对话模式</h3>
                                                <button type="button" class="role-selection-panel-close" onclick="closeAgentModePanel()" data-i18n="common.close" data-i18n-attr="title" title="关闭">
                                                    <svg width="16" height="16" viewBox="0 0 24 24" fill="none" xmlns="http://www.w3.org/2000/svg">
                                                        <path d="M18 6L6 18M6 6l12 12" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"/>
                                                    </svg>
                                                </button>
                                            </div>
                                            <div class="agent-mode-options">
                                                <button type="button" class="role-selection-item-main agent-mode-option" data-value="single" role="option" onclick="selectAgentMode('single')">
                                                    <div class="role-selection-item-icon-main" aria-hidden="true">🤖</div>
                                                    <div class="role-selection-item-content-main">
                                                        <div class="role-selection-item-name-main" data-i18n="chat.agentModeSingle">单代理</div>
                                                        <div class="role-selection-item-description-main" data-i18n="chat.agentModeSingleHint">单模型 ReAct 循环，适合常规对话与工具调用</div>
                                                    </div>
                                                    <div class="role-selection-checkmark-main agent-mode-check" data-agent-mode-check="single">✓</div>
                                                </button>
                                                <button type="button" class="role-selection-item-main agent-mode-option" data-value="multi" role="option" onclick="selectAgentMode('multi')">
                                                    <div class="role-selection-item-icon-main" aria-hidden="true">🧩</div>
                                                    <div class="role-selection-item-content-main">
                                                        <div class="role-selection-item-name-main" data-i18n="chat.agentModeMulti">多代理</div>
                                                        <div class="role-selection-item-description-main" data-i18n="chat.agentModeMultiHint">Eino DeepAgent 编排子代理，适合复杂任务</div>
                                                    </div>
                                                    <div class="role-selection-checkmark-main agent-mode-check" data-agent-mode-check="multi">✓</div>
                                                </button>
                                            </div>
                                        </div>
                                    </div>
                                    <input type="hidden" id="agent-mode-select" value="single" autocomplete="off">
                                </div>
                                <div class="chat-input-with-files">
                                    <div id="chat-file-list" class="chat-file-list" aria-label="已选文件列表"></div>
                                    <div class="chat-input-field">
@@ -972,6 +1044,17 @@
                        <div class="webshell-layout">
                            <div id="webshell-sidebar" class="webshell-sidebar">
                                <div class="webshell-sidebar-header" data-i18n="webshell.connections">连接列表</div>
                                <div class="webshell-conn-search">
                                    <input type="text"
                                           id="webshell-conn-search"
                                           class="form-control webshell-conn-search-input"
                                           data-i18n="webshell.searchPlaceholder"
                                           data-i18n-attr="placeholder"
                                           placeholder="搜索连接..." />
                                </div>
                                <div class="webshell-sidebar-tools">
                                    <button type="button" class="btn-ghost btn-sm" id="webshell-batch-probe-btn" data-i18n="webshell.batchProbe">一键批量探活</button>
                                </div>
                                <div id="webshell-list" class="webshell-list">
                                    <div class="webshell-empty" data-i18n="webshell.noConnections">暂无连接，请点击「添加连接」</div>
                                </div>
@@ -986,6 +1069,44 @@
                    </div>
                </div>
                <!-- 对话附件 / 文件管理 -->
                <div id="page-chat-files" class="page">
                    <div class="page-header">
                        <h2 data-i18n="chatFilesPage.title">文件管理</h2>
                        <div class="page-header-actions">
                            <button type="button" class="btn-primary" onclick="chatFilesOpenUploadPicker()" data-i18n="chatFilesPage.upload">上传文件</button>
                            <input type="file" id="chat-files-upload-input" style="display:none" onchange="onChatFilesUploadPick(event)" />
                            <button class="btn-secondary" onclick="loadChatFilesPage()" data-i18n="common.refresh">刷新</button>
                        </div>
                    </div>
                    <div class="page-content">
                        <p class="chat-files-intro" data-i18n="chatFilesPage.intro">管理在对话中上传的文件。需要让 AI 引用某文件时，在列表中点击「复制路径」，到对话里粘贴即可。</p>
                        <div class="tasks-filters chat-files-filters">
                            <label>
                                <span data-i18n="chatFilesPage.conversationFilter">会话 ID</span>
                                <input type="text" id="chat-files-filter-conv" class="form-control" data-i18n="chatFilesPage.conversationPlaceholder" data-i18n-attr="placeholder" placeholder="留空表示全部" onkeydown="if(event.key==='Enter') loadChatFilesPage()" />
                            </label>
                            <label style="flex:1;min-width:180px;max-width:360px;">
                                <span data-i18n="chatFilesPage.searchName">文件名</span>
                                <input type="text" id="chat-files-filter-name" class="form-control" data-i18n="chatFilesPage.searchNamePlaceholder" data-i18n-attr="placeholder" placeholder="筛选文件名" oninput="chatFilesFilterNameOnInput()" onkeydown="if(event.key==='Enter') loadChatFilesPage()" />
                            </label>
                            <label>
                                <span data-i18n="chatFilesPage.groupBy">分组</span>
                                <select id="chat-files-group-by" class="form-control" onchange="chatFilesGroupByChange()">
                                    <option value="none" data-i18n="chatFilesPage.groupNone">不分组</option>
                                    <option value="date" data-i18n="chatFilesPage.groupByDate">按日期</option>
                                    <option value="conversation" data-i18n="chatFilesPage.groupByConversation">按会话</option>
                                    <option value="folder" data-i18n="chatFilesPage.groupByFolder">按文件夹</option>
                                </select>
                            </label>
                            <button class="btn-secondary" type="button" onclick="loadChatFilesPage()" data-i18n="common.search">搜索</button>
                        </div>
                        <div id="chat-files-list-wrap" class="chat-files-table-wrap">
                            <div class="loading-spinner" data-i18n="common.loading">加载中…</div>
                        </div>
                    </div>
                </div>
                <!-- 任务管理页面 -->
                <div id="page-tasks" class="page">
                    <div class="page-header">
@@ -1116,6 +1237,81 @@
                    </div>
                </div>
                <!-- 多代理子 Agent（Markdown）管理 -->
                <div id="page-agents-management" class="page">
                    <div class="page-header">
                        <h2 data-i18n="agentsPage.title">Agent 管理</h2>
                        <div class="page-header-actions">
                            <button type="button" class="btn-secondary" onclick="loadMarkdownAgents()" data-i18n="common.refresh">刷新</button>
                            <button type="button" class="btn-primary" onclick="showAddMarkdownAgentModal()" data-i18n="agentsPage.create">新建 Agent</button>
                        </div>
                    </div>
                    <div class="page-content">
                        <p class="agents-page-hint" data-i18n="agentsPage.hint">子 Agent 仅在 agents 目录下 .md 维护。</p>
                        <div id="agents-md-dir" class="agents-dir-label"></div>
                        <div id="agents-md-list" class="skills-grid">
                            <div class="loading-spinner" data-i18n="agentsPage.loading">加载中...</div>
                        </div>
                    </div>
                </div>
                <!-- Agent Markdown 编辑弹窗 -->
                <div id="agent-md-modal" class="modal" style="display: none;">
                    <div class="modal-content" style="max-width: 720px; max-height: 92vh;">
                        <div class="modal-header">
                            <h2 id="agent-md-modal-title" data-i18n="agentsPage.editTitle">编辑 Agent</h2>
                            <span class="modal-close" onclick="closeMarkdownAgentModal()">&times;</span>
                        </div>
                        <div class="modal-body" style="overflow-y: auto; max-height: calc(92vh - 130px);">
                            <input type="hidden" id="agent-md-filename-current" value="">
                            <div class="form-group" id="agent-md-filename-row">
                                <label data-i18n="agentsPage.filename">文件名（.md）</label>
                                <input type="text" id="agent-md-filename" data-i18n="agentsPage.filenamePlaceholder" data-i18n-attr="placeholder" placeholder="例如 code-reviewer.md" autocomplete="off" />
                            </div>
                            <div class="form-group">
                                <label data-i18n="agentsPage.fieldRole">类型</label>
                                <select id="agent-md-role" class="form-select">
                                    <option value="sub" data-i18n="agentsPage.roleSub">子代理</option>
                                    <option value="orchestrator" data-i18n="agentsPage.roleOrchestrator">主代理（Deep 协调者）</option>
                                </select>
                                <p class="form-hint muted" data-i18n="agentsPage.roleHint">主代理也可使用固定文件名 orchestrator.md；全目录仅允许一个主代理。</p>
                            </div>
                            <div class="form-group">
                                <label data-i18n="agentsPage.fieldId">Agent ID（留空则从名称生成）</label>
                                <input type="text" id="agent-md-id" placeholder="code-reviewer" autocomplete="off" />
                            </div>
                            <div class="form-group">
                                <label data-i18n="agentsPage.fieldName">显示名称</label>
                                <input type="text" id="agent-md-name" data-i18n="agentsPage.namePlaceholder" data-i18n-attr="placeholder" placeholder="Code Reviewer" autocomplete="off" />
                            </div>
                            <div class="form-group">
                                <label data-i18n="agentsPage.fieldDesc">描述</label>
                                <textarea id="agent-md-description" rows="2" data-i18n="agentsPage.descPlaceholder" data-i18n-attr="placeholder" placeholder="何时调用该子代理"></textarea>
                            </div>
                            <div class="form-group">
                                <label data-i18n="agentsPage.fieldTools">可用工具（逗号分隔，与角色工具 key 一致）</label>
                                <input type="text" id="agent-md-tools" placeholder="tool_a, tool_b" autocomplete="off" />
                            </div>
                            <div class="form-group">
                                <label data-i18n="agentsPage.fieldBindRole">绑定角色（可选）</label>
                                <input type="text" id="agent-md-bind-role" placeholder="" autocomplete="off" />
                            </div>
                            <div class="form-group">
                                <label data-i18n="agentsPage.fieldMaxIter">子代理最大迭代（0=使用全局默认）</label>
                                <input type="number" id="agent-md-max-iter" min="0" value="0" />
                            </div>
                            <div class="form-group">
                                <label data-i18n="agentsPage.fieldInstruction">系统提示词（Markdown 正文）</label>
                                <textarea id="agent-md-instruction" rows="14" data-i18n="agentsPage.instructionPlaceholder" data-i18n-attr="placeholder" placeholder="You are a specialist agent..."></textarea>
                            </div>
                        </div>
                        <div class="modal-footer">
                            <button type="button" class="btn-secondary" onclick="closeMarkdownAgentModal()" data-i18n="common.cancel">取消</button>
                            <button type="button" class="btn-primary" onclick="saveMarkdownAgent()" data-i18n="common.save">保存</button>
                        </div>
                    </div>
                </div>
                <!-- 系统设置页面 -->
                <div id="page-settings" class="page">
                    <div class="page-header">
@@ -1128,6 +1324,9 @@
                                <div class="settings-nav-item active" data-section="basic" onclick="switchSettingsSection('basic')">
                                    <span data-i18n="settings.nav.basic">基本设置</span>
                                </div>
                                <div class="settings-nav-item" data-section="knowledge" onclick="switchSettingsSection('knowledge')">
                                    <span data-i18n="settings.nav.knowledge">知识库</span>
                                </div>
                                <div class="settings-nav-item" data-section="robots" onclick="switchSettingsSection('robots')">
                                    <span data-i18n="settings.nav.robots">机器人设置</span>
                                </div>
@@ -1196,10 +1395,51 @@
                                            <label for="agent-max-iterations" data-i18n="settingsBasic.maxIterations">最大迭代次数</label>
                                            <input type="number" id="agent-max-iterations" min="1" max="100" data-i18n="settingsBasic.iterationsPlaceholder" data-i18n-attr="placeholder" placeholder="30" />
                                        </div>
                                        <div class="form-group">
                                            <label class="checkbox-label">
                                                <input type="checkbox" id="multi-agent-enabled" class="modern-checkbox" />
                                                <span class="checkbox-custom"></span>
                                                <span class="checkbox-text">启用 Eino 多代理（DeepAgent）</span>
                                            </label>
                                            <small class="form-hint">开启后对话页可选「多代理」模式；子代理在 config.yaml 的 multi_agent.sub_agents 中配置。</small>
                                        </div>
                                        <div class="form-group">
                                            <label for="multi-agent-default-mode">对话页默认模式</label>
                                            <select id="multi-agent-default-mode">
                                                <option value="single">单代理（ReAct）</option>
                                                <option value="multi">多代理（Eino）</option>
                                            </select>
                                        </div>
                                        <div class="form-group">
                                            <label class="checkbox-label">
                                                <input type="checkbox" id="multi-agent-robot-use" class="modern-checkbox" />
                                                <span class="checkbox-custom"></span>
                                                <span class="checkbox-text">企业微信 / 钉钉 / 飞书机器人也使用多代理</span>
                                            </label>
                                            <small class="form-hint">需同时勾选「启用多代理」；调用量与成本更高。</small>
                                        </div>
                                        <div class="form-group">
                                            <label class="checkbox-label">
                                                <input type="checkbox" id="multi-agent-batch-use" class="modern-checkbox" />
                                                <span class="checkbox-custom"></span>
                                                <span class="checkbox-text">批量任务队列也使用多代理</span>
                                            </label>
                                            <small class="form-hint">开启后，任务管理中按队列执行的每个子任务将走 Eino DeepAgent（需启用多代理）。</small>
                                        </div>
                                    </div>
                                </div>
-                                <!-- 知识库配置 -->
+                                <div class="settings-actions">
                                    <button class="btn-primary" onclick="applySettings()" data-i18n="settings.apply.button">应用配置</button>
                                </div>
                            </div>
                            <!-- 知识库设置 -->
                            <div id="settings-section-knowledge" class="settings-section-content">
                                <div class="settings-section-header">
                                    <h3 data-i18n="settings.knowledge.title">知识库设置</h3>
                                </div>
                                <div class="settings-subsection">
                                    <h4 data-i18n="settingsBasic.knowledgeConfig">知识库配置</h4>
                                    <div class="settings-form">
@@ -1215,7 +1455,7 @@
                                            <input type="text" id="knowledge-base-path" data-i18n="settingsBasic.knowledgeBasePathPlaceholder" data-i18n-attr="placeholder" placeholder="knowledge_base" />
                                            <small class="form-hint" data-i18n="settingsBasic.knowledgeBasePathHint">相对于配置文件所在目录的路径</small>
                                        </div>
-                                        
+
                                        <div class="settings-subsection-header">
                                            <h5 data-i18n="settingsBasic.embeddingConfig">嵌入模型配置</h5>
                                        </div>
@@ -1239,7 +1479,7 @@
                                            <label for="knowledge-embedding-model" data-i18n="settingsBasic.modelName">模型名称</label>
                                            <input type="text" id="knowledge-embedding-model" data-i18n="settingsBasic.embeddingModelPlaceholder" data-i18n-attr="placeholder" placeholder="text-embedding-v4" />
                                        </div>
-                                        
+
                                        <div class="settings-subsection-header">
                                            <h5 data-i18n="settingsBasic.retrievalConfig">检索配置</h5>
                                        </div>
@@ -1258,7 +1498,7 @@
                                            <input type="number" id="knowledge-retrieval-hybrid-weight" min="0" max="1" step="0.1" data-i18n="settingsBasic.hybridPlaceholder" data-i18n-attr="placeholder" placeholder="0.7" />
                                            <small class="form-hint" data-i18n="settingsBasic.hybridHint">向量检索的权重（0-1），1.0表示纯向量检索，0.0表示纯关键词检索</small>
                                        </div>
-                                    </div>
+
                                        <div class="settings-subsection-header">
                                            <h5 data-i18n="settingsBasic.indexConfig">索引配置</h5>
                                        </div>
@@ -1296,7 +1536,9 @@
                                            <label for="knowledge-indexing-retry-delay-ms" data-i18n="settingsBasic.retryDelay">重试间隔（毫秒）</label>
                                            <input type="number" id="knowledge-indexing-retry-delay-ms" min="0" max="10000" data-i18n="settingsBasic.retryDelayPlaceholder" data-i18n-attr="placeholder" placeholder="1000" />
                                            <small class="form-hint" data-i18n="settingsBasic.retryDelayHint">重试间隔毫秒数（默认 1000），每次重试会递增延迟</small>
-                                        </div>                                </div>
+                                        </div>
                                    </div>
                                </div>
                                <div class="settings-actions">
                                    <button class="btn-primary" onclick="applySettings()" data-i18n="settings.apply.button">应用配置</button>
@@ -1707,6 +1949,70 @@
        </div>
    </div>
    <div id="chat-files-edit-modal" class="modal">
        <div class="modal-content" style="max-width: 720px;">
            <div class="modal-header">
                <h2 data-i18n="chatFilesPage.editTitle">编辑文件</h2>
                <span class="modal-close" onclick="closeChatFilesEditModal()">&times;</span>
            </div>
            <div class="modal-body">
                <p class="chat-files-modal-path"><code id="chat-files-edit-path"></code></p>
                <textarea id="chat-files-edit-textarea" class="form-control chat-files-edit-textarea" rows="18"></textarea>
            </div>
            <div class="modal-footer">
                <button type="button" class="btn-secondary" onclick="closeChatFilesEditModal()" data-i18n="common.cancel">取消</button>
                <button type="button" class="btn-primary" onclick="saveChatFilesEdit()" data-i18n="common.save">保存</button>
            </div>
        </div>
    </div>
    <div id="chat-files-rename-modal" class="modal">
        <div class="modal-content" style="max-width: 480px;">
            <div class="modal-header">
                <h2 data-i18n="chatFilesPage.renameTitle">重命名</h2>
                <span class="modal-close" onclick="closeChatFilesRenameModal()">&times;</span>
            </div>
            <div class="modal-body">
                <label class="chat-files-rename-label">
                    <span data-i18n="chatFilesPage.newFileName">新文件名</span>
                    <input type="text" id="chat-files-rename-input" class="form-control" />
                </label>
            </div>
            <div class="modal-footer">
                <button type="button" class="btn-secondary" onclick="closeChatFilesRenameModal()" data-i18n="common.cancel">取消</button>
                <button type="button" class="btn-primary" onclick="submitChatFilesRename()" data-i18n="common.ok">确定</button>
            </div>
        </div>
    </div>
    <div id="chat-files-mkdir-modal" class="modal">
        <div class="modal-content chat-files-mkdir-modal-content">
            <div class="modal-header">
                <h2 data-i18n="chatFilesPage.newFolderTitle">新建文件夹</h2>
                <span class="modal-close" onclick="closeChatFilesMkdirModal()">&times;</span>
            </div>
            <div class="modal-body chat-files-mkdir-body">
                <div class="chat-files-mkdir-location" aria-live="polite">
                    <div class="chat-files-mkdir-location-caption" data-i18n="chatFilesPage.newFolderLocation">位置</div>
                    <div class="chat-files-mkdir-path-box">
                        <code class="chat-files-mkdir-path" id="chat-files-mkdir-parent-hint">chat_uploads</code>
                    </div>
                </div>
                <label class="chat-files-rename-label chat-files-mkdir-label">
                    <span class="chat-files-mkdir-field-name">
                        <svg class="chat-files-mkdir-field-icon" width="16" height="16" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round" aria-hidden="true"><path d="M22 19a2 2 0 0 1-2 2H4a2 2 0 0 1-2-2V5a2 2 0 0 1 2-2h5l2 3h9a2 2 0 0 1 2 2z"/></svg>
                        <span data-i18n="chatFilesPage.newFolderNameLabel">文件夹名称</span>
                    </span>
                    <input type="text" id="chat-files-mkdir-input" class="form-control chat-files-mkdir-input" data-i18n="chatFilesPage.newFolderNamePlaceholder" data-i18n-attr="placeholder" placeholder="仅名称，不含 /" autocomplete="off" />
                </label>
            </div>
            <div class="modal-footer chat-files-mkdir-footer">
                <button type="button" class="btn-secondary chat-files-mkdir-btn-cancel" onclick="closeChatFilesMkdirModal()" data-i18n="common.cancel">取消</button>
                <button type="button" class="btn-primary chat-files-mkdir-btn-submit" onclick="submitChatFilesMkdir()" data-i18n="common.ok">确定</button>
            </div>
        </div>
    </div>
    <!-- Marked.js for Markdown parsing -->
    <script src="https://cdn.jsdelivr.net/npm/marked@11.1.1/marked.min.js"></script>
    <!-- DOMPurify for HTML sanitization to prevent XSS -->
@@ -2303,6 +2609,7 @@ version: 1.0.0<br>
    <script src="/static/js/auth.js"></script>
    <script src="/static/js/info-collect.js"></script>
    <script src="/static/js/router.js"></script>
    <script src="/static/js/agents.js"></script>
    <script src="/static/js/dashboard.js"></script>
    <script src="/static/js/monitor.js"></script>
    <script src="/static/js/chat.js"></script>
@@ -2314,6 +2621,7 @@ version: 1.0.0<br>
    <script src="/static/js/skills.js"></script>
    <script src="/static/js/vulnerability.js?v=4"></script>
    <script src="/static/js/webshell.js"></script>
    <script src="/static/js/chat-files.js"></script>
    <script src="/static/js/tasks.js"></script>
    <script src="/static/js/roles.js"></script>
 </body>
Author	SHA1	Message	Date
公明	3cea834036	Update config.yaml	2026-03-25 03:29:53 +08:00
公明	e1b594f875	Add files via upload	2026-03-25 03:26:13 +08:00
公明	4b105e0bb7	Add files via upload	2026-03-25 03:24:33 +08:00
公明	93f0a46d6e	Add files via upload	2026-03-25 03:08:10 +08:00
公明	314cd005c8	Add files via upload	2026-03-25 03:06:37 +08:00
公明	c68b72ead2	Add files via upload	2026-03-25 03:05:13 +08:00
公明	60846b2152	Add files via upload	2026-03-25 02:17:01 +08:00
公明	f6525674d2	Add files via upload	2026-03-25 02:15:37 +08:00
公明	9c04b0db40	Add files via upload	2026-03-25 01:22:27 +08:00
公明	907b87494d	Add files via upload	2026-03-25 01:00:29 +08:00
公明	97b7b4b932	Add files via upload	2026-03-24 23:54:38 +08:00
公明	6890433235	Update config.yaml	2026-03-24 10:29:06 +08:00
公明	1face3559d	Add files via upload	2026-03-24 00:22:00 +08:00
公明	0076aaed47	Add files via upload	2026-03-23 23:39:32 +08:00
公明	a45b3bc8f6	Delete agents/code-reviewer.md	2026-03-23 22:52:13 +08:00
公明	c04921301b	Add files via upload	2026-03-23 22:51:35 +08:00
公明	0329a0bed2	Add files via upload	2026-03-23 22:35:15 +08:00
公明	3517cf850c	Add files via upload	2026-03-23 22:17:12 +08:00
公明	c25d7bb495	Add files via upload	2026-03-23 22:14:41 +08:00
公明	50cfc47d79	Add files via upload	2026-03-23 22:01:38 +08:00
公明	fdc36a041e	Add files via upload	2026-03-23 21:56:05 +08:00
公明	c59fcbf5f2	Add files via upload	2026-03-23 21:53:15 +08:00
公明	5978fadc1d	Add files via upload	2026-03-23 17:34:53 +08:00
公明	999f91e858	Update lightx.yaml	2026-03-23 16:35:25 +08:00
公明	dc1f9ec516	Merge pull request #85 from huajinping/main Add files via upload	2026-03-23 16:33:27 +08:00
huajinping	3fb235cc96	Add files via upload Add YAML file for lightweight network security scanning and vulnerability detection tools	2026-03-23 15:29:49 +08:00
公明	88877e972c	Update config.yaml	2026-03-23 03:04:03 +08:00
公明	6c47996ea8	Add files via upload	2026-03-23 02:37:45 +08:00
公明	0f90e19455	Add files via upload	2026-03-23 02:24:51 +08:00
公明	85d4c6deda	Update config.yaml	2026-03-23 02:21:05 +08:00
公明	a31c4996c7	Add files via upload	2026-03-23 02:15:46 +08:00
公明	ea5a81e14e	Add files via upload	2026-03-23 02:12:45 +08:00
公明	87a2eb9e97	Add files via upload	2026-03-21 22:38:48 +08:00
公明	2545774187	Add files via upload	2026-03-21 21:49:19 +08:00
公明	4bc62773a9	Add files via upload	2026-03-21 20:41:04 +08:00
公明	38285ba888	Add files via upload	2026-03-21 20:30:19 +08:00
公明	251b5fd440	Add files via upload	2026-03-21 20:20:58 +08:00
公明	922136f545	Add files via upload	2026-03-20 15:54:32 +08:00
公明	735cd5edc4	Add files via upload	2026-03-20 13:33:42 +08:00
公明	6a32dcc08e	Update index.html	2026-03-20 10:26:15 +08:00
公明	b8b7aa0ffe	Update config.yaml	2026-03-20 02:05:21 +08:00
公明	5224c68bc7	Add files via upload	2026-03-20 02:02:39 +08:00
公明	b504f405a8	Add files via upload	2026-03-20 02:01:11 +08:00
公明	3dc6dbcfe0	Add files via upload	2026-03-20 01:57:43 +08:00
公明	2ab8d4c731	Update config.yaml	2026-03-20 01:43:12 +08:00
公明	5884902090	Add files via upload	2026-03-20 01:42:07 +08:00
公明	c92ce0379e	Add files via upload	2026-03-20 01:30:09 +08:00
公明	5fe5f5b71f	Add files via upload	2026-03-20 01:03:40 +08:00
公明	36099a60d9	Update style.css	2026-03-19 11:15:11 +08:00
公明	c6adcd19dd	Update pent_claude_agent_config.yaml	2026-03-17 23:49:22 +08:00
公明	52e84b0ef5	Delete mcp-servers/pent_claude_agent/.claude/1	2026-03-17 23:48:45 +08:00
公明	1d505b7b10	Add files via upload	2026-03-17 23:48:19 +08:00
公明	c9f7e8f53f	Create 1	2026-03-17 23:48:00 +08:00
公明	3b7d5357b8	Update pent_claude_agent_config.yaml	2026-03-17 23:14:49 +08:00
公明	ca01cad2c8	Add files via upload	2026-03-17 23:13:11 +08:00