feat: Migrate pipeline debug from SSE to WebSocket

Replace Server-Sent Events (SSE) with WebSocket for pipeline debugging to support bidirectional real-time communication and resolve timeout limitations. ## Backend Changes - Add WebSocketConnectionPool for managing client connections - Implement WebSocket route handler at /api/v1/pipelines/<uuid>/chat/ws - Modify WebChatAdapter to broadcast messages via WebSocket - Support both legacy SSE and new WebSocket simultaneously - Maintain person/group session isolation ## Frontend Changes - Create PipelineWebSocketClient for WebSocket communication - Update DebugDialog to use WebSocket instead of SSE - Support auto-reconnection and connection status tracking - Remove streaming toggle (WebSocket always supports streaming) ## Key Features - Eliminates 120-second timeout limitation - Supports multiple messages per request - Enables backend push notifications (plugins) - Maintains session isolation (person vs group) - Backward compatible with SSE during transition 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
chore: bump version 4.3.9
2025-11-25 03:15:06 +08:00 · 2025-10-22 12:50:18 +00:00 · 2025-10-22 18:52:45 +08:00 · 2025-10-17 18:13:03 +08:00 · 2025-10-12 21:11:30 +08:00 · 2025-10-12 19:57:42 +08:00
684 changed files with 53634 additions and 17197 deletions
--- a/.github/ISSUE_TEMPLATE/bug-report.yml
+++ b/.github/ISSUE_TEMPLATE/bug-report.yml
@@ -1,24 +1,13 @@
 name: 漏洞反馈
-description: 报错或漏洞请使用这个模板创建，不使用此模板创建的异常、漏洞相关issue将被直接关闭。由于自己操作不当/不甚了解所用技术栈引起的网络连接问题恕无法解决，请勿提 issue。容器间网络连接问题，参考文档 https://docs.langbot.app/deploy/network-details.html  
+description: 【供中文用户】报错或漏洞请使用这个模板创建，不使用此模板创建的异常、漏洞相关issue将被直接关闭。由于自己操作不当/不甚了解所用技术栈引起的网络连接问题恕无法解决，请勿提 issue。容器间网络连接问题，参考文档 https://docs.langbot.app/zh/workshop/network-details.html  
 title: "[Bug]: "
 labels: ["bug?"]
 body:
-  - type: dropdown
-    attributes:
-      label: 消息平台适配器
-      description: "接入的消息平台类型"
-      options:
-        - 其他（或暂未使用）
-        - Nakuru（go-cqhttp）
-        - aiocqhttp（使用 OneBot 协议接入的）
-        - qq-botpy（QQ官方API）
-    validations:
-      required: true
  - type: input
    attributes:
      label: 运行环境
      description: LangBot 版本、操作系统、系统架构、**Python版本**、**主机地理位置**
-      placeholder: 例如：v3.3.0、CentOS x64 Python 3.10.3、Docker 的系统直接写 Docker 就行
+      placeholder: 例如：v3.3.0、CentOS x64 Python 3.10.3、Docker
    validations:
      required: true
  - type: textarea
@@ -30,12 +19,12 @@ body:
  - type: textarea
    attributes:
      label: 复现步骤
-      description: 如何重现这个问题，越详细越好
+      description: 提供越多信息，我们会越快解决问题，建议多提供配置截图；**如果你不认真填写（只一两句话概括），我们会很生气并且立即关闭 issue 或两年后才回复你**
    validations:
      required: false
  - type: textarea
    attributes:
      label: 启用的插件
-      description: 有些情况可能和插件功能有关，建议提供插件启用情况。可以使用`!plugin`命令查看已启用的插件
+      description: 有些情况可能和插件功能有关，建议提供插件启用情况。
    validations:
      required: false
--- a/.github/ISSUE_TEMPLATE/bug-report_en.yml
+++ b/.github/ISSUE_TEMPLATE/bug-report_en.yml
@@ -0,0 +1,30 @@
+name: Bug report
+description: Report bugs or vulnerabilities using this template. For container network connection issues, refer to the documentation https://docs.langbot.app/en/workshop/network-details.html
+title: "[Bug]: "
+labels: ["bug?"]
+body:
+  - type: input
+    attributes:
+      label: Runtime environment
+      description: LangBot version, operating system, system architecture, **Python version**, **host location**
+      placeholder: "For example: v3.3.0, CentOS x64 Python 3.10.3, Docker"
+    validations:
+      required: true
+  - type: textarea
+    attributes:
+      label: Exception
+      description: Describe the exception in detail, what happened and when it happened. **Please include log information.** 
+    validations:
+      required: true
+  - type: textarea
+    attributes:
+      label: Reproduction steps
+      description: How to reproduce this problem, the more detailed the better; the more information you provide, the faster we will solve the problem. 【注意】请务必认真填写此部分，若不提供完整信息（如只有一两句话的概括），我们将不会回复！
+    validations:
+      required: false
+  - type: textarea
+    attributes:
+      label: Enabled plugins
+      description: Some cases may be related to plugin functionality, so please provide the plugin enablement status.
+    validations:
+      required: false
--- a/.github/ISSUE_TEMPLATE/feature-request.yml
+++ b/.github/ISSUE_TEMPLATE/feature-request.yml
@@ -1,7 +1,7 @@
 name: 需求建议
 title: "[Feature]: "
-labels: ["改进"]
-description: "新功能或现有功能优化请使用这个模板；不符合类别的issue将被直接关闭"
+labels: []
+description: "【供中文用户】新功能或现有功能优化请使用这个模板；不符合类别的issue将被直接关闭"
 body:
  - type: dropdown
    attributes:
--- a/.github/ISSUE_TEMPLATE/feature-request_en.yml
+++ b/.github/ISSUE_TEMPLATE/feature-request_en.yml
@@ -0,0 +1,21 @@
+name: Feature request
+title: "[Feature]: "
+labels: []
+description: "New features or existing feature improvements should use this template; issues that do not match will be closed directly"
+body:
+  - type: dropdown
+    attributes:
+      label: This is a?
+      description: New feature request or existing feature improvement
+      options:
+        - New feature
+        - Existing feature improvement
+    validations:
+      required: true
+  - type: textarea
+    attributes:
+      label: Detailed description
+      description: Detailed description, the more detailed the better
+    validations:
+      required: true
+      
--- a/.github/ISSUE_TEMPLATE/submit-plugin.yml
+++ b/.github/ISSUE_TEMPLATE/submit-plugin.yml
@@ -1,7 +1,7 @@
 name: 提交新插件
 title: "[Plugin]: 请求登记新插件"
 labels: ["独立插件"]
-description: "本模板供且仅供提交新插件使用"
+description: "【供中文用户】本模板供且仅供提交新插件使用"
 body:
  - type: input
    attributes:
--- a/.github/ISSUE_TEMPLATE/submit-plugin_en.yml
+++ b/.github/ISSUE_TEMPLATE/submit-plugin_en.yml
@@ -0,0 +1,24 @@
+name: Submit a new plugin
+title: "[Plugin]: Request to register a new plugin"
+labels: ["Independent Plugin"]
+description: "This template is only for submitting new plugins"
+body:
+  - type: input
+    attributes:
+      label: Plugin name
+      description: Fill in the name of the plugin
+    validations:
+      required: true
+  - type: textarea
+    attributes:
+      label: Plugin code repository address
+      description: Only support Github
+    validations:
+      required: true
+  - type: textarea
+    attributes:
+      label: Plugin description
+      description: The description of the plugin
+    validations:
+      required: true
+      
--- a/.github/pull_request_template.md
+++ b/.github/pull_request_template.md
@@ -1,20 +1,21 @@
-## 概述
+## 概述 / Overview

-实现/解决/优化的内容: 
+> 请在此部分填写你实现/解决/优化的内容:  
+> Summary of what you implemented/solved/optimized:

-## 检查清单
+## 检查清单 / Checklist

-### PR 作者完成
+### PR 作者完成 / For PR author

-*请在方括号间写`x`以打勾
+*请在方括号间写`x`以打勾 / Please tick the box with `x`*

- [ ] 阅读仓库[贡献指引](https://github.com/RockChinQ/LangBot/blob/master/CONTRIBUTING.md)了吗？
- [ ] 与项目所有者沟通过了吗？
- [ ] 我确定已自行测试所作的更改，确保功能符合预期。
+- [ ] 阅读仓库[贡献指引](https://github.com/langbot-app/LangBot/blob/master/CONTRIBUTING.md)了吗？ / Have you read the [contribution guide](https://github.com/langbot-app/LangBot/blob/master/CONTRIBUTING.md)?
+- [ ] 与项目所有者沟通过了吗？ / Have you communicated with the project maintainer?
+- [ ] 我确定已自行测试所作的更改，确保功能符合预期。 / I have tested the changes and ensured they work as expected.

-### 项目所有者完成
+### 项目维护者完成 / For project maintainer

- [ ] 相关 issues 链接了吗？
- [ ] 配置项写好了吗？迁移写好了吗？生效了吗？
- [ ] 依赖写到 requirements.txt 和 core/bootutils/deps.py 了吗
- [ ] 文档编写了吗？
+- [ ] 相关 issues 链接了吗？ / Have you linked the related issues?
+- [ ] 配置项写好了吗？迁移写好了吗？生效了吗？ / Have you written the configuration items? Have you written the migration? Has it taken effect?
+- [ ] 依赖加到 pyproject.toml 和 core/bootutils/deps.py 了吗 / Have you added the dependencies to pyproject.toml and core/bootutils/deps.py?
+- [ ] 文档编写了吗？ / Have you written the documentation?
--- a/.github/workflows/build-release-artifacts.yaml
+++ b/.github/workflows/build-release-artifacts.yaml
@@ -46,7 +46,7 @@ jobs:
          npm run build
      - name: Package Output
        run: |
-          cp -r /tmp/langbot_build_web/web/dist ./web
+          cp -r /tmp/langbot_build_web/web/out ./web
      - name: Upload Artifact
        uses: actions/upload-artifact@v4
        with:
--- a/.github/workflows/run-tests.yml
+++ b/.github/workflows/run-tests.yml
@@ -0,0 +1,71 @@
+name: Unit Tests
+
+on:
+  pull_request:
+    types: [opened, ready_for_review, synchronize]
+    paths:
+      - 'pkg/**'
+      - 'tests/**'
+      - '.github/workflows/run-tests.yml'
+      - 'pyproject.toml'
+      - 'run_tests.sh'
+  push:
+    branches:
+      - master
+      - develop
+    paths:
+      - 'pkg/**'
+      - 'tests/**'
+      - '.github/workflows/run-tests.yml'
+      - 'pyproject.toml'
+      - 'run_tests.sh'
+
+jobs:
+  test:
+    name: Run Unit Tests
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        python-version: ['3.10', '3.11', '3.12']
+      fail-fast: false
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Set up Python ${{ matrix.python-version }}
+        uses: actions/setup-python@v5
+        with:
+          python-version: ${{ matrix.python-version }}
+
+      - name: Install uv
+        run: |
+          curl -LsSf https://astral.sh/uv/install.sh | sh
+          echo "$HOME/.cargo/bin" >> $GITHUB_PATH
+
+      - name: Install dependencies
+        run: |
+          uv sync --dev
+
+      - name: Run unit tests
+        run: |
+          bash run_tests.sh
+
+      - name: Upload coverage to Codecov
+        if: matrix.python-version == '3.12'
+        uses: codecov/codecov-action@v5
+        with:
+          files: ./coverage.xml
+          flags: unit-tests
+          name: unit-tests-coverage
+          fail_ci_if_error: false
+        env:
+          CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
+
+      - name: Test Summary
+        if: always()
+        run: |
+          echo "## Unit Tests Results" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "Python Version: ${{ matrix.python-version }}" >> $GITHUB_STEP_SUMMARY
+          echo "Test Status: ${{ job.status }}" >> $GITHUB_STEP_SUMMARY
--- a/.gitignore
+++ b/.gitignore
@@ -19,16 +19,18 @@ cookies.json
 data/labels/announcement_saved.json
 cmdpriv.json
 tips.py
-.venv
+venv*
 bin/
 .vscode
-test_*
+/test_*
 venv/
 hugchat.json
 qcapi
 claude.json
 bard.json
 /*yaml
+!.pre-commit-config.yaml
+!components.yaml
 !/docker-compose.yaml
 data/labels/instance_id.json
 .DS_Store
@@ -37,4 +39,10 @@ botpy.log*
 /poc
 /libs/wecom_api/test.py
 /venv
-
+test.py
+/web_ui
+.venv/
+uv.lock
+/test
+coverage.xml
+.coverage
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -0,0 +1,27 @@
+repos:
+  - repo: https://github.com/astral-sh/ruff-pre-commit
+    # Ruff version.
+    rev: v0.11.7
+    hooks:
+      # Run the linter of backend.
+      - id: ruff
+        args: [--fix]
+      # Run the formatter of backend.
+      - id: ruff-format
+
+  - repo: https://github.com/pre-commit/mirrors-prettier
+    rev: v3.1.0
+    hooks:
+      - id: prettier
+        types_or: [javascript, jsx, ts, tsx, css, scss]
+        additional_dependencies:
+          - prettier@3.1.0
+
+  - repo: local
+    hooks:
+      - id: lint-staged
+        name: lint-staged
+        entry: cd web && pnpm lint-staged
+        language: system
+        types: [javascript, jsx, ts, tsx]
+        pass_filenames: false
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -5,22 +5,27 @@
 ### 贡献形式

 - 提交PR，解决issues中提到的bug或期待的功能
- 提交PR，实现您设想的功能（请先提出issue与作者沟通）
- 优化代码架构，使各个模块的组织更加整洁优雅
- 在issues中提出发现的bug或者期待的功能
+- 提交PR，实现您设想的功能（请先提出issue与项目维护者沟通）
 - 为本项目在其他社交平台撰写文章、制作视频等
 - 为本项目的衍生项目作出贡献，或开发插件增加功能

-### 如何开始
+### 沟通语言规范

- 加入本项目交流群，一同探讨项目相关事务
- 解决本项目或衍生项目的issues中亟待解决的问题
- 阅读并完善本项目文档
- 在各个社交媒体撰写本项目教程等
+- 在 PR 和 Commit Message 中请使用全英文
+- 对于中文用户，issue 中可以使用中文

-### 代码规范
+<hr/>

- 代码中的注解`务必`符合Google风格的规范
- 模块顶部的引入代码请遵循`系统模块`、`第三方库模块`、`自定义模块`的顺序进行引入
- `不要`直接引入模块的特定属性，而是引入这个模块，再通过`xxx.yyy`的形式使用属性
- 任何作用域的字段`必须`先声明后使用，并在声明处注明类型提示
+## Guidelines
+
+### Contribution
+
+- Submit PRs to solve bugs or features in the issues
+- Submit PRs to implement your ideas (Please create an issue first and communicate with the project maintainer)
+- Write articles or make videos about this project on other social platforms
+- Contribute to the development of derivative projects, or develop plugins to add features
+
+### Spoken Language
+
+- Use English in PRs and Commit Messages
+- For English users, you can use English in issues
--- a/9
+++ b/9
@@ -6,17 +6,18 @@ COPY web ./web

 RUN cd web && npm install && npm run build

-FROM python:3.10.13-slim
+FROM python:3.12.7-slim

 WORKDIR /app

 COPY . .

-COPY --from=node /app/web/dist ./web/dist
+COPY --from=node /app/web/out ./web/out

 RUN apt update \
    && apt install gcc -y \
-    && python -m pip install -r requirements.txt \
+    && python -m pip install --no-cache-dir uv \
+    && uv sync \
    && touch /.dockerenv

-CMD [ "python", "main.py" ]
+CMD [ "uv", "run", "main.py" ]
--- a/862
+++ b/862
@@ -1,661 +1,201 @@
-                    GNU AFFERO GENERAL PUBLIC LICENSE
-                       Version 3, 19 November 2007
-
- Copyright (C) 2007 Free Software Foundation, Inc. <https://fsf.org/>
- Everyone is permitted to copy and distribute verbatim copies
- of this license document, but changing it is not allowed.
-
-                            Preamble
-
-  The GNU Affero General Public License is a free, copyleft license for
-software and other kinds of works, specifically designed to ensure
-cooperation with the community in the case of network server software.
-
-  The licenses for most software and other practical works are designed
-to take away your freedom to share and change the works.  By contrast,
-our General Public Licenses are intended to guarantee your freedom to
-share and change all versions of a program--to make sure it remains free
-software for all its users.
-
-  When we speak of free software, we are referring to freedom, not
-price.  Our General Public Licenses are designed to make sure that you
-have the freedom to distribute copies of free software (and charge for
-them if you wish), that you receive source code or can get it if you
-want it, that you can change the software or use pieces of it in new
-free programs, and that you know you can do these things.
-
-  Developers that use our General Public Licenses protect your rights
-with two steps: (1) assert copyright on the software, and (2) offer
-you this License which gives you legal permission to copy, distribute
-and/or modify the software.
-
-  A secondary benefit of defending all users' freedom is that
-improvements made in alternate versions of the program, if they
-receive widespread use, become available for other developers to
-incorporate.  Many developers of free software are heartened and
-encouraged by the resulting cooperation.  However, in the case of
-software used on network servers, this result may fail to come about.
-The GNU General Public License permits making a modified version and
-letting the public access it on a server without ever releasing its
-source code to the public.
-
-  The GNU Affero General Public License is designed specifically to
-ensure that, in such cases, the modified source code becomes available
-to the community.  It requires the operator of a network server to
-provide the source code of the modified version running there to the
-users of that server.  Therefore, public use of a modified version, on
-a publicly accessible server, gives the public access to the source
-code of the modified version.
-
-  An older license, called the Affero General Public License and
-published by Affero, was designed to accomplish similar goals.  This is
-a different license, not a version of the Affero GPL, but Affero has
-released a new version of the Affero GPL which permits relicensing under
-this license.
-
-  The precise terms and conditions for copying, distribution and
-modification follow.
-
-                       TERMS AND CONDITIONS
-
-  0. Definitions.
-
-  "This License" refers to version 3 of the GNU Affero General Public License.
-
-  "Copyright" also means copyright-like laws that apply to other kinds of
-works, such as semiconductor masks.
-
-  "The Program" refers to any copyrightable work licensed under this
-License.  Each licensee is addressed as "you".  "Licensees" and
-"recipients" may be individuals or organizations.
-
-  To "modify" a work means to copy from or adapt all or part of the work
-in a fashion requiring copyright permission, other than the making of an
-exact copy.  The resulting work is called a "modified version" of the
-earlier work or a work "based on" the earlier work.
-
-  A "covered work" means either the unmodified Program or a work based
-on the Program.
-
-  To "propagate" a work means to do anything with it that, without
-permission, would make you directly or secondarily liable for
-infringement under applicable copyright law, except executing it on a
-computer or modifying a private copy.  Propagation includes copying,
-distribution (with or without modification), making available to the
-public, and in some countries other activities as well.
-
-  To "convey" a work means any kind of propagation that enables other
-parties to make or receive copies.  Mere interaction with a user through
-a computer network, with no transfer of a copy, is not conveying.
-
-  An interactive user interface displays "Appropriate Legal Notices"
-to the extent that it includes a convenient and prominently visible
-feature that (1) displays an appropriate copyright notice, and (2)
-tells the user that there is no warranty for the work (except to the
-extent that warranties are provided), that licensees may convey the
-work under this License, and how to view a copy of this License.  If
-the interface presents a list of user commands or options, such as a
-menu, a prominent item in the list meets this criterion.
-
-  1. Source Code.
-
-  The "source code" for a work means the preferred form of the work
-for making modifications to it.  "Object code" means any non-source
-form of a work.
-
-  A "Standard Interface" means an interface that either is an official
-standard defined by a recognized standards body, or, in the case of
-interfaces specified for a particular programming language, one that
-is widely used among developers working in that language.
-
-  The "System Libraries" of an executable work include anything, other
-than the work as a whole, that (a) is included in the normal form of
-packaging a Major Component, but which is not part of that Major
-Component, and (b) serves only to enable use of the work with that
-Major Component, or to implement a Standard Interface for which an
-implementation is available to the public in source code form.  A
-"Major Component", in this context, means a major essential component
-(kernel, window system, and so on) of the specific operating system
-(if any) on which the executable work runs, or a compiler used to
-produce the work, or an object code interpreter used to run it.
-
-  The "Corresponding Source" for a work in object code form means all
-the source code needed to generate, install, and (for an executable
-work) run the object code and to modify the work, including scripts to
-control those activities.  However, it does not include the work's
-System Libraries, or general-purpose tools or generally available free
-programs which are used unmodified in performing those activities but
-which are not part of the work.  For example, Corresponding Source
-includes interface definition files associated with source files for
-the work, and the source code for shared libraries and dynamically
-linked subprograms that the work is specifically designed to require,
-such as by intimate data communication or control flow between those
-subprograms and other parts of the work.
-
-  The Corresponding Source need not include anything that users
-can regenerate automatically from other parts of the Corresponding
-Source.
-
-  The Corresponding Source for a work in source code form is that
-same work.
-
-  2. Basic Permissions.
-
-  All rights granted under this License are granted for the term of
-copyright on the Program, and are irrevocable provided the stated
-conditions are met.  This License explicitly affirms your unlimited
-permission to run the unmodified Program.  The output from running a
-covered work is covered by this License only if the output, given its
-content, constitutes a covered work.  This License acknowledges your
-rights of fair use or other equivalent, as provided by copyright law.
-
-  You may make, run and propagate covered works that you do not
-convey, without conditions so long as your license otherwise remains
-in force.  You may convey covered works to others for the sole purpose
-of having them make modifications exclusively for you, or provide you
-with facilities for running those works, provided that you comply with
-the terms of this License in conveying all material for which you do
-not control copyright.  Those thus making or running the covered works
-for you must do so exclusively on your behalf, under your direction
-and control, on terms that prohibit them from making any copies of
-your copyrighted material outside their relationship with you.
-
-  Conveying under any other circumstances is permitted solely under
-the conditions stated below.  Sublicensing is not allowed; section 10
-makes it unnecessary.
-
-  3. Protecting Users' Legal Rights From Anti-Circumvention Law.
-
-  No covered work shall be deemed part of an effective technological
-measure under any applicable law fulfilling obligations under article
-11 of the WIPO copyright treaty adopted on 20 December 1996, or
-similar laws prohibiting or restricting circumvention of such
-measures.
-
-  When you convey a covered work, you waive any legal power to forbid
-circumvention of technological measures to the extent such circumvention
-is effected by exercising rights under this License with respect to
-the covered work, and you disclaim any intention to limit operation or
-modification of the work as a means of enforcing, against the work's
-users, your or third parties' legal rights to forbid circumvention of
-technological measures.
-
-  4. Conveying Verbatim Copies.
-
-  You may convey verbatim copies of the Program's source code as you
-receive it, in any medium, provided that you conspicuously and
-appropriately publish on each copy an appropriate copyright notice;
-keep intact all notices stating that this License and any
-non-permissive terms added in accord with section 7 apply to the code;
-keep intact all notices of the absence of any warranty; and give all
-recipients a copy of this License along with the Program.
-
-  You may charge any price or no price for each copy that you convey,
-and you may offer support or warranty protection for a fee.
-
-  5. Conveying Modified Source Versions.
-
-  You may convey a work based on the Program, or the modifications to
-produce it from the Program, in the form of source code under the
-terms of section 4, provided that you also meet all of these conditions:
-
-    a) The work must carry prominent notices stating that you modified
-    it, and giving a relevant date.
-
-    b) The work must carry prominent notices stating that it is
-    released under this License and any conditions added under section
-    7.  This requirement modifies the requirement in section 4 to
-    "keep intact all notices".
-
-    c) You must license the entire work, as a whole, under this
-    License to anyone who comes into possession of a copy.  This
-    License will therefore apply, along with any applicable section 7
-    additional terms, to the whole of the work, and all its parts,
-    regardless of how they are packaged.  This License gives no
-    permission to license the work in any other way, but it does not
-    invalidate such permission if you have separately received it.
-
-    d) If the work has interactive user interfaces, each must display
-    Appropriate Legal Notices; however, if the Program has interactive
-    interfaces that do not display Appropriate Legal Notices, your
-    work need not make them do so.
-
-  A compilation of a covered work with other separate and independent
-works, which are not by their nature extensions of the covered work,
-and which are not combined with it such as to form a larger program,
-in or on a volume of a storage or distribution medium, is called an
-"aggregate" if the compilation and its resulting copyright are not
-used to limit the access or legal rights of the compilation's users
-beyond what the individual works permit.  Inclusion of a covered work
-in an aggregate does not cause this License to apply to the other
-parts of the aggregate.
-
-  6. Conveying Non-Source Forms.
-
-  You may convey a covered work in object code form under the terms
-of sections 4 and 5, provided that you also convey the
-machine-readable Corresponding Source under the terms of this License,
-in one of these ways:
-
-    a) Convey the object code in, or embodied in, a physical product
-    (including a physical distribution medium), accompanied by the
-    Corresponding Source fixed on a durable physical medium
-    customarily used for software interchange.
-
-    b) Convey the object code in, or embodied in, a physical product
-    (including a physical distribution medium), accompanied by a
-    written offer, valid for at least three years and valid for as
-    long as you offer spare parts or customer support for that product
-    model, to give anyone who possesses the object code either (1) a
-    copy of the Corresponding Source for all the software in the
-    product that is covered by this License, on a durable physical
-    medium customarily used for software interchange, for a price no
-    more than your reasonable cost of physically performing this
-    conveying of source, or (2) access to copy the
-    Corresponding Source from a network server at no charge.
-
-    c) Convey individual copies of the object code with a copy of the
-    written offer to provide the Corresponding Source.  This
-    alternative is allowed only occasionally and noncommercially, and
-    only if you received the object code with such an offer, in accord
-    with subsection 6b.
-
-    d) Convey the object code by offering access from a designated
-    place (gratis or for a charge), and offer equivalent access to the
-    Corresponding Source in the same way through the same place at no
-    further charge.  You need not require recipients to copy the
-    Corresponding Source along with the object code.  If the place to
-    copy the object code is a network server, the Corresponding Source
-    may be on a different server (operated by you or a third party)
-    that supports equivalent copying facilities, provided you maintain
-    clear directions next to the object code saying where to find the
-    Corresponding Source.  Regardless of what server hosts the
-    Corresponding Source, you remain obligated to ensure that it is
-    available for as long as needed to satisfy these requirements.
-
-    e) Convey the object code using peer-to-peer transmission, provided
-    you inform other peers where the object code and Corresponding
-    Source of the work are being offered to the general public at no
-    charge under subsection 6d.
-
-  A separable portion of the object code, whose source code is excluded
-from the Corresponding Source as a System Library, need not be
-included in conveying the object code work.
-
-  A "User Product" is either (1) a "consumer product", which means any
-tangible personal property which is normally used for personal, family,
-or household purposes, or (2) anything designed or sold for incorporation
-into a dwelling.  In determining whether a product is a consumer product,
-doubtful cases shall be resolved in favor of coverage.  For a particular
-product received by a particular user, "normally used" refers to a
-typical or common use of that class of product, regardless of the status
-of the particular user or of the way in which the particular user
-actually uses, or expects or is expected to use, the product.  A product
-is a consumer product regardless of whether the product has substantial
-commercial, industrial or non-consumer uses, unless such uses represent
-the only significant mode of use of the product.
-
-  "Installation Information" for a User Product means any methods,
-procedures, authorization keys, or other information required to install
-and execute modified versions of a covered work in that User Product from
-a modified version of its Corresponding Source.  The information must
-suffice to ensure that the continued functioning of the modified object
-code is in no case prevented or interfered with solely because
-modification has been made.
-
-  If you convey an object code work under this section in, or with, or
-specifically for use in, a User Product, and the conveying occurs as
-part of a transaction in which the right of possession and use of the
-User Product is transferred to the recipient in perpetuity or for a
-fixed term (regardless of how the transaction is characterized), the
-Corresponding Source conveyed under this section must be accompanied
-by the Installation Information.  But this requirement does not apply
-if neither you nor any third party retains the ability to install
-modified object code on the User Product (for example, the work has
-been installed in ROM).
-
-  The requirement to provide Installation Information does not include a
-requirement to continue to provide support service, warranty, or updates
-for a work that has been modified or installed by the recipient, or for
-the User Product in which it has been modified or installed.  Access to a
-network may be denied when the modification itself materially and
-adversely affects the operation of the network or violates the rules and
-protocols for communication across the network.
-
-  Corresponding Source conveyed, and Installation Information provided,
-in accord with this section must be in a format that is publicly
-documented (and with an implementation available to the public in
-source code form), and must require no special password or key for
-unpacking, reading or copying.
-
-  7. Additional Terms.
-
-  "Additional permissions" are terms that supplement the terms of this
-License by making exceptions from one or more of its conditions.
-Additional permissions that are applicable to the entire Program shall
-be treated as though they were included in this License, to the extent
-that they are valid under applicable law.  If additional permissions
-apply only to part of the Program, that part may be used separately
-under those permissions, but the entire Program remains governed by
-this License without regard to the additional permissions.
-
-  When you convey a copy of a covered work, you may at your option
-remove any additional permissions from that copy, or from any part of
-it.  (Additional permissions may be written to require their own
-removal in certain cases when you modify the work.)  You may place
-additional permissions on material, added by you to a covered work,
-for which you have or can give appropriate copyright permission.
-
-  Notwithstanding any other provision of this License, for material you
-add to a covered work, you may (if authorized by the copyright holders of
-that material) supplement the terms of this License with terms:
-
-    a) Disclaiming warranty or limiting liability differently from the
-    terms of sections 15 and 16 of this License; or
-
-    b) Requiring preservation of specified reasonable legal notices or
-    author attributions in that material or in the Appropriate Legal
-    Notices displayed by works containing it; or
-
-    c) Prohibiting misrepresentation of the origin of that material, or
-    requiring that modified versions of such material be marked in
-    reasonable ways as different from the original version; or
-
-    d) Limiting the use for publicity purposes of names of licensors or
-    authors of the material; or
-
-    e) Declining to grant rights under trademark law for use of some
-    trade names, trademarks, or service marks; or
-
-    f) Requiring indemnification of licensors and authors of that
-    material by anyone who conveys the material (or modified versions of
-    it) with contractual assumptions of liability to the recipient, for
-    any liability that these contractual assumptions directly impose on
-    those licensors and authors.
-
-  All other non-permissive additional terms are considered "further
-restrictions" within the meaning of section 10.  If the Program as you
-received it, or any part of it, contains a notice stating that it is
-governed by this License along with a term that is a further
-restriction, you may remove that term.  If a license document contains
-a further restriction but permits relicensing or conveying under this
-License, you may add to a covered work material governed by the terms
-of that license document, provided that the further restriction does
-not survive such relicensing or conveying.
-
-  If you add terms to a covered work in accord with this section, you
-must place, in the relevant source files, a statement of the
-additional terms that apply to those files, or a notice indicating
-where to find the applicable terms.
-
-  Additional terms, permissive or non-permissive, may be stated in the
-form of a separately written license, or stated as exceptions;
-the above requirements apply either way.
-
-  8. Termination.
-
-  You may not propagate or modify a covered work except as expressly
-provided under this License.  Any attempt otherwise to propagate or
-modify it is void, and will automatically terminate your rights under
-this License (including any patent licenses granted under the third
-paragraph of section 11).
-
-  However, if you cease all violation of this License, then your
-license from a particular copyright holder is reinstated (a)
-provisionally, unless and until the copyright holder explicitly and
-finally terminates your license, and (b) permanently, if the copyright
-holder fails to notify you of the violation by some reasonable means
-prior to 60 days after the cessation.
-
-  Moreover, your license from a particular copyright holder is
-reinstated permanently if the copyright holder notifies you of the
-violation by some reasonable means, this is the first time you have
-received notice of violation of this License (for any work) from that
-copyright holder, and you cure the violation prior to 30 days after
-your receipt of the notice.
-
-  Termination of your rights under this section does not terminate the
-licenses of parties who have received copies or rights from you under
-this License.  If your rights have been terminated and not permanently
-reinstated, you do not qualify to receive new licenses for the same
-material under section 10.
-
-  9. Acceptance Not Required for Having Copies.
-
-  You are not required to accept this License in order to receive or
-run a copy of the Program.  Ancillary propagation of a covered work
-occurring solely as a consequence of using peer-to-peer transmission
-to receive a copy likewise does not require acceptance.  However,
-nothing other than this License grants you permission to propagate or
-modify any covered work.  These actions infringe copyright if you do
-not accept this License.  Therefore, by modifying or propagating a
-covered work, you indicate your acceptance of this License to do so.
-
-  10. Automatic Licensing of Downstream Recipients.
-
-  Each time you convey a covered work, the recipient automatically
-receives a license from the original licensors, to run, modify and
-propagate that work, subject to this License.  You are not responsible
-for enforcing compliance by third parties with this License.
-
-  An "entity transaction" is a transaction transferring control of an
-organization, or substantially all assets of one, or subdividing an
-organization, or merging organizations.  If propagation of a covered
-work results from an entity transaction, each party to that
-transaction who receives a copy of the work also receives whatever
-licenses to the work the party's predecessor in interest had or could
-give under the previous paragraph, plus a right to possession of the
-Corresponding Source of the work from the predecessor in interest, if
-the predecessor has it or can get it with reasonable efforts.
-
-  You may not impose any further restrictions on the exercise of the
-rights granted or affirmed under this License.  For example, you may
-not impose a license fee, royalty, or other charge for exercise of
-rights granted under this License, and you may not initiate litigation
-(including a cross-claim or counterclaim in a lawsuit) alleging that
-any patent claim is infringed by making, using, selling, offering for
-sale, or importing the Program or any portion of it.
-
-  11. Patents.
-
-  A "contributor" is a copyright holder who authorizes use under this
-License of the Program or a work on which the Program is based.  The
-work thus licensed is called the contributor's "contributor version".
-
-  A contributor's "essential patent claims" are all patent claims
-owned or controlled by the contributor, whether already acquired or
-hereafter acquired, that would be infringed by some manner, permitted
-by this License, of making, using, or selling its contributor version,
-but do not include claims that would be infringed only as a
-consequence of further modification of the contributor version.  For
-purposes of this definition, "control" includes the right to grant
-patent sublicenses in a manner consistent with the requirements of
-this License.
-
-  Each contributor grants you a non-exclusive, worldwide, royalty-free
-patent license under the contributor's essential patent claims, to
-make, use, sell, offer for sale, import and otherwise run, modify and
-propagate the contents of its contributor version.
-
-  In the following three paragraphs, a "patent license" is any express
-agreement or commitment, however denominated, not to enforce a patent
-(such as an express permission to practice a patent or covenant not to
-sue for patent infringement).  To "grant" such a patent license to a
-party means to make such an agreement or commitment not to enforce a
-patent against the party.
-
-  If you convey a covered work, knowingly relying on a patent license,
-and the Corresponding Source of the work is not available for anyone
-to copy, free of charge and under the terms of this License, through a
-publicly available network server or other readily accessible means,
-then you must either (1) cause the Corresponding Source to be so
-available, or (2) arrange to deprive yourself of the benefit of the
-patent license for this particular work, or (3) arrange, in a manner
-consistent with the requirements of this License, to extend the patent
-license to downstream recipients.  "Knowingly relying" means you have
-actual knowledge that, but for the patent license, your conveying the
-covered work in a country, or your recipient's use of the covered work
-in a country, would infringe one or more identifiable patents in that
-country that you have reason to believe are valid.
-
-  If, pursuant to or in connection with a single transaction or
-arrangement, you convey, or propagate by procuring conveyance of, a
-covered work, and grant a patent license to some of the parties
-receiving the covered work authorizing them to use, propagate, modify
-or convey a specific copy of the covered work, then the patent license
-you grant is automatically extended to all recipients of the covered
-work and works based on it.
-
-  A patent license is "discriminatory" if it does not include within
-the scope of its coverage, prohibits the exercise of, or is
-conditioned on the non-exercise of one or more of the rights that are
-specifically granted under this License.  You may not convey a covered
-work if you are a party to an arrangement with a third party that is
-in the business of distributing software, under which you make payment
-to the third party based on the extent of your activity of conveying
-the work, and under which the third party grants, to any of the
-parties who would receive the covered work from you, a discriminatory
-patent license (a) in connection with copies of the covered work
-conveyed by you (or copies made from those copies), or (b) primarily
-for and in connection with specific products or compilations that
-contain the covered work, unless you entered into that arrangement,
-or that patent license was granted, prior to 28 March 2007.
-
-  Nothing in this License shall be construed as excluding or limiting
-any implied license or other defenses to infringement that may
-otherwise be available to you under applicable patent law.
-
-  12. No Surrender of Others' Freedom.
-
-  If conditions are imposed on you (whether by court order, agreement or
-otherwise) that contradict the conditions of this License, they do not
-excuse you from the conditions of this License.  If you cannot convey a
-covered work so as to satisfy simultaneously your obligations under this
-License and any other pertinent obligations, then as a consequence you may
-not convey it at all.  For example, if you agree to terms that obligate you
-to collect a royalty for further conveying from those to whom you convey
-the Program, the only way you could satisfy both those terms and this
-License would be to refrain entirely from conveying the Program.
-
-  13. Remote Network Interaction; Use with the GNU General Public License.
-
-  Notwithstanding any other provision of this License, if you modify the
-Program, your modified version must prominently offer all users
-interacting with it remotely through a computer network (if your version
-supports such interaction) an opportunity to receive the Corresponding
-Source of your version by providing access to the Corresponding Source
-from a network server at no charge, through some standard or customary
-means of facilitating copying of software.  This Corresponding Source
-shall include the Corresponding Source for any work covered by version 3
-of the GNU General Public License that is incorporated pursuant to the
-following paragraph.
-
-  Notwithstanding any other provision of this License, you have
-permission to link or combine any covered work with a work licensed
-under version 3 of the GNU General Public License into a single
-combined work, and to convey the resulting work.  The terms of this
-License will continue to apply to the part which is the covered work,
-but the work with which it is combined will remain governed by version
-3 of the GNU General Public License.
-
-  14. Revised Versions of this License.
-
-  The Free Software Foundation may publish revised and/or new versions of
-the GNU Affero General Public License from time to time.  Such new versions
-will be similar in spirit to the present version, but may differ in detail to
-address new problems or concerns.
-
-  Each version is given a distinguishing version number.  If the
-Program specifies that a certain numbered version of the GNU Affero General
-Public License "or any later version" applies to it, you have the
-option of following the terms and conditions either of that numbered
-version or of any later version published by the Free Software
-Foundation.  If the Program does not specify a version number of the
-GNU Affero General Public License, you may choose any version ever published
-by the Free Software Foundation.
-
-  If the Program specifies that a proxy can decide which future
-versions of the GNU Affero General Public License can be used, that proxy's
-public statement of acceptance of a version permanently authorizes you
-to choose that version for the Program.
-
-  Later license versions may give you additional or different
-permissions.  However, no additional obligations are imposed on any
-author or copyright holder as a result of your choosing to follow a
-later version.
-
-  15. Disclaimer of Warranty.
-
-  THERE IS NO WARRANTY FOR THE PROGRAM, TO THE EXTENT PERMITTED BY
-APPLICABLE LAW.  EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT
-HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROGRAM "AS IS" WITHOUT WARRANTY
-OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO,
-THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
-PURPOSE.  THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM
-IS WITH YOU.  SHOULD THE PROGRAM PROVE DEFECTIVE, YOU ASSUME THE COST OF
-ALL NECESSARY SERVICING, REPAIR OR CORRECTION.
-
-  16. Limitation of Liability.
-
-  IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING
-WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MODIFIES AND/OR CONVEYS
-THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY
-GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE
-USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF
-DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD
-PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS),
-EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF
-SUCH DAMAGES.
-
-  17. Interpretation of Sections 15 and 16.
-
-  If the disclaimer of warranty and limitation of liability provided
-above cannot be given local legal effect according to their terms,
-reviewing courts shall apply local law that most closely approximates
-an absolute waiver of all civil liability in connection with the
-Program, unless a warranty or assumption of liability accompanies a
-copy of the Program in return for a fee.
-
-                     END OF TERMS AND CONDITIONS
-
-            How to Apply These Terms to Your New Programs
-
-  If you develop a new program, and you want it to be of the greatest
-possible use to the public, the best way to achieve this is to make it
-free software which everyone can redistribute and change under these terms.
-
-  To do so, attach the following notices to the program.  It is safest
-to attach them to the start of each source file to most effectively
-state the exclusion of warranty; and each file should have at least
-the "copyright" line and a pointer to where the full notice is found.
-
-    <one line to give the program's name and a brief idea of what it does.>
-    Copyright (C) <year>  <name of author>
-
-    This program is free software: you can redistribute it and/or modify
-    it under the terms of the GNU Affero General Public License as published
-    by the Free Software Foundation, either version 3 of the License, or
-    (at your option) any later version.
-
-    This program is distributed in the hope that it will be useful,
-    but WITHOUT ANY WARRANTY; without even the implied warranty of
-    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-    GNU Affero General Public License for more details.
-
-    You should have received a copy of the GNU Affero General Public License
-    along with this program.  If not, see <https://www.gnu.org/licenses/>.
-
-Also add information on how to contact you by electronic and paper mail.
-
-  If your software can interact with users remotely through a computer
-network, you should also make sure that it provides a way for users to
-get its source.  For example, if your program is a web application, its
-interface could display a "Source" link that leads users to an archive
-of the code.  There are many ways you could offer source, and different
-solutions will be better for different programs; see section 13 for the
-specific requirements.
-
-  You should also get your employer (if you work as a programmer) or school,
-if any, to sign a "copyright disclaimer" for the program, if necessary.
-For more information on this, and how to apply and follow the GNU AGPL, see
-<https://www.gnu.org/licenses/>.
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
--- a/README.md
+++ b/README.md
@@ -1,56 +1,51 @@

 <p align="center">
 <a href="https://langbot.app">
-<img src="https://docs.langbot.app/social.png" alt="LangBot"/>
+<img src="https://docs.langbot.app/social_zh.png" alt="LangBot"/>
 </a>

 <div align="center">

-<a href="https://trendshift.io/repositories/6187" target="_blank"><img src="https://trendshift.io/api/badge/repositories/6187" alt="RockChinQ%2FQChatGPT | Trendshift" style="width: 250px; height: 55px;" width="250" height="55"/></a>
+<a href="https://hellogithub.com/repository/langbot-app/LangBot" target="_blank"><img src="https://abroad.hellogithub.com/v1/widgets/recommend.svg?rid=5ce8ae2aa4f74316bf393b57b952433c&claim_uid=gtmc6YWjMZkT21R" alt="Featured｜HelloGitHub" style="width: 250px; height: 54px;" width="250" height="54" /></a>

-<a href="https://docs.langbot.app">项目主页</a> ｜
-<a href="https://docs.langbot.app/insight/intro.htmll">功能介绍</a> ｜
-<a href="https://docs.langbot.app/insight/guide.html">部署文档</a> ｜
-<a href="https://docs.langbot.app/usage/faq.html">常见问题</a> ｜
-<a href="https://docs.langbot.app/plugin/plugin-intro.html">插件介绍</a> ｜
-<a href="https://github.com/RockChinQ/LangBot/issues/new?assignees=&labels=%E7%8B%AC%E7%AB%8B%E6%8F%92%E4%BB%B6&projects=&template=submit-plugin.yml&title=%5BPlugin%5D%3A+%E8%AF%B7%E6%B1%82%E7%99%BB%E8%AE%B0%E6%96%B0%E6%8F%92%E4%BB%B6">提交插件</a>
+[English](README_EN.md) / 简体中文 / [繁體中文](README_TW.md) / [日本語](README_JP.md) / (PR for your language)
+
+[![Discord](https://img.shields.io/discord/1335141740050649118?logo=discord&labelColor=%20%235462eb&logoColor=%20%23f5f5f5&color=%20%235462eb)](https://discord.gg/wdNEHETs87)
+[![QQ Group](https://img.shields.io/badge/%E7%A4%BE%E5%8C%BAQQ%E7%BE%A4-966235608-blue)](https://qm.qq.com/q/JLi38whHum)
+[![Ask DeepWiki](https://deepwiki.com/badge.svg)](https://deepwiki.com/langbot-app/LangBot)
+[![GitHub release (latest by date)](https://img.shields.io/github/v/release/langbot-app/LangBot)](https://github.com/langbot-app/LangBot/releases/latest)
+<img src="https://img.shields.io/badge/python-3.10 ~ 3.13 -blue.svg" alt="python">
+[![star](https://gitcode.com/RockChinQ/LangBot/star/badge.svg)](https://gitcode.com/RockChinQ/LangBot)
+
+<a href="https://langbot.app">项目主页</a> ｜
+<a href="https://docs.langbot.app/zh/insight/guide.html">部署文档</a> ｜
+<a href="https://docs.langbot.app/zh/plugin/plugin-intro.html">插件介绍</a> ｜
+<a href="https://github.com/langbot-app/LangBot/issues/new?assignees=&labels=%E7%8B%AC%E7%AB%8B%E6%8F%92%E4%BB%B6&projects=&template=submit-plugin.yml&title=%5BPlugin%5D%3A+%E8%AF%B7%E6%B1%82%E7%99%BB%E8%AE%B0%E6%96%B0%E6%8F%92%E4%BB%B6">提交插件</a>


-<div align="center">
-😎高稳定、🧩支持扩展、🦄多模态 - 基于大语言模型的即时通讯机器人平台🤖  
-</div>
-
-<br/>
-
-
-[![QQ Group](https://img.shields.io/badge/%E7%A4%BE%E5%8C%BA%E7%BE%A4-619154800-blue)](https://qm.qq.com/q/PClALFK242)
-[![GitHub release (latest by date)](https://img.shields.io/github/v/release/RockChinQ/LangBot)](https://github.com/RockChinQ/LangBot/releases/latest)
- ![Dynamic JSON Badge](https://img.shields.io/badge/dynamic/json?url=https%3A%2F%2Fapi.qchatgpt.rockchin.top%2Fapi%2Fv2%2Fview%2Frealtime%2Fcount_query%3Fminute%3D10080&query=%24.data.count&label=%E4%BD%BF%E7%94%A8%E9%87%8F%EF%BC%887%E6%97%A5%EF%BC%89)
-<img src="https://img.shields.io/badge/python-3.10 | 3.11 | 3.12-blue.svg" alt="python">
 </div>

 </p>

-## ✨ Features
-
- 💬 大模型对话、Agent：支持多种大模型，适配群聊和私聊；具有多轮对话、工具调用、多模态能力，并深度适配 [Dify](https://dify.ai)。目前支持 QQ、QQ频道、企业微信，后续还将支持微信、WhatsApp、Discord等平台。
- 🛠️ 高稳定性、功能完备：原生支持访问控制、限速、敏感词过滤等机制；配置简单，支持多种部署方式。
- 🧩 插件扩展、活跃社区：支持事件驱动、组件扩展等插件机制；丰富生态，目前已有数十个[插件](https://docs.langbot.app/plugin/plugin-intro.html)
- 😻 [New] Web 管理面板：支持通过浏览器管理 LangBot 实例，具体支持功能，查看[文档](https://docs.langbot.app/webui/intro.html)
+LangBot 是一个开源的大语言模型原生即时通信机器人开发平台，旨在提供开箱即用的 IM 机器人开发体验，具有 Agent、RAG、MCP 等多种 LLM 应用功能，适配全球主流即时通信平台，并提供丰富的 API 接口，支持自定义开发。

 ## 📦 开始使用

-> [!IMPORTANT]
->
-> 在您开始任何方式部署之前，请务必阅读[新手指引](https://docs.langbot.app/insight/guide.html)。
-
 #### Docker Compose 部署

-适合熟悉 Docker 的用户，查看文档[Docker 部署](https://docs.langbot.app/deploy/langbot/docker.html)。
+```bash
+git clone https://github.com/langbot-app/LangBot
+cd LangBot/docker
+docker compose up -d
+```
+
+访问 http://localhost:5300 即可开始使用。
+
+详细文档[Docker 部署](https://docs.langbot.app/zh/deploy/langbot/docker.html)。

 #### 宝塔面板部署

-已上架宝塔面板，若您已安装宝塔面板，可以根据[文档](https://docs.langbot.app/deploy/langbot/one-click/bt.html)使用。
+已上架宝塔面板，若您已安装宝塔面板，可以根据[文档](https://docs.langbot.app/zh/deploy/langbot/one-click/bt.html)使用。

 #### Zeabur 云部署

@@ -64,30 +59,47 @@

 #### 手动部署

-直接使用发行版运行，查看文档[手动部署](https://docs.langbot.app/deploy/langbot/manual.html)。
+直接使用发行版运行，查看文档[手动部署](https://docs.langbot.app/zh/deploy/langbot/manual.html)。

-## 📸 效果展示
+## 😎 保持更新

-<img alt="回复效果（带有联网插件）" src="https://docs.langbot.app/QChatGPT-0516.png" width="500px"/>
+点击仓库右上角 Star 和 Watch 按钮，获取最新动态。

- WebUI Demo: https://demo.langbot.dev/
-    - 登录信息：邮箱：`demo@langbot.app` 密码：`langbot123456`
-    - 注意：仅展示webui效果，公开环境，请不要在其中填入您的任何敏感信息。
+![star gif](https://docs.langbot.app/star.gif)

-## 🔌 组件兼容性
+## ✨ 特性
+
+- 💬 大模型对话、Agent：支持多种大模型，适配群聊和私聊；具有多轮对话、工具调用、多模态、流式输出能力，自带 RAG（知识库）实现，并深度适配 [Dify](https://dify.ai)。
+- 🤖 多平台支持：目前支持 QQ、QQ频道、企业微信、个人微信、飞书、Discord、Telegram 等平台。
+- 🛠️ 高稳定性、功能完备：原生支持访问控制、限速、敏感词过滤等机制；配置简单，支持多种部署方式。支持多流水线配置，不同机器人用于不同应用场景。
+- 🧩 插件扩展、活跃社区：支持事件驱动、组件扩展等插件机制；适配 Anthropic [MCP 协议](https://modelcontextprotocol.io/)；目前已有数百个插件。
+- 😻 Web 管理面板：支持通过浏览器管理 LangBot 实例，不再需要手动编写配置文件。
+
+详细规格特性请访问[文档](https://docs.langbot.app/zh/insight/features.html)。
+
+或访问 demo 环境：https://demo.langbot.dev/  
+  - 登录信息：邮箱：`demo@langbot.app` 密码：`langbot123456`
+  - 注意：仅展示 WebUI 效果，公开环境，请不要在其中填入您的任何敏感信息。

 ### 消息平台

 | 平台 | 状态 | 备注 |
 | --- | --- | --- |
 | QQ 个人号 | ✅ | QQ 个人号私聊、群聊 |
-| QQ 官方机器人 | ✅ | QQ 频道机器人，支持频道、私聊、群聊 |
+| QQ 官方机器人 | ✅ | QQ 官方机器人，支持频道、私聊、群聊 |
 | 企业微信 | ✅ |  |
-| 钉钉 | 🚧 |  |
+| 企微对外客服 | ✅ |  |
+| 企微智能机器人 | ✅ |  |
+| 个人微信 | ✅ |  |
+| 微信公众号 | ✅ |  |
+| 飞书 | ✅ |  |
+| 钉钉 | ✅ |  |
+| Discord | ✅ |  |
+| Telegram | ✅ |  |
+| Slack | ✅ |  |
+| LINE | ✅ |  |

-🚧: 正在开发中
-
-### 大模型
+### 大模型能力

 | 模型 | 状态 | 备注 |
 | --- | --- | --- |
@@ -97,6 +109,41 @@
 | [Anthropic](https://www.anthropic.com/) | ✅ |  |
 | [xAI](https://x.ai/) | ✅ |  |
 | [智谱AI](https://open.bigmodel.cn/) | ✅ |  |
+| [胜算云](https://www.shengsuanyun.com/?from=CH_KYIPP758) | ✅ | 全球大模型都可调用（友情推荐） |
+| [优云智算](https://www.compshare.cn/?ytag=GPU_YY-gh_langbot) | ✅ | 大模型和 GPU 资源平台 |
+| [PPIO](https://ppinfra.com/user/register?invited_by=QJKFYD&utm_source=github_langbot) | ✅ | 大模型和 GPU 资源平台 |
+| [302.AI](https://share.302.ai/SuTG99) | ✅ | 大模型聚合平台 |
+| [Google Gemini](https://aistudio.google.com/prompts/new_chat) | ✅ | |
 | [Dify](https://dify.ai) | ✅ | LLMOps 平台 |
-| [Ollama](https://ollama.com/) | ✅ | 本地大模型管理平台 |
+| [Ollama](https://ollama.com/) | ✅ | 本地大模型运行平台 |
+| [LMStudio](https://lmstudio.ai/) | ✅ | 本地大模型运行平台 |
 | [GiteeAI](https://ai.gitee.com/) | ✅ | 大模型接口聚合平台 |
+| [SiliconFlow](https://siliconflow.cn/) | ✅ | 大模型聚合平台 |
+| [小马算力](https://www.tokenpony.cn/453z1) | ✅ | 大模型聚合平台 |
+| [阿里云百炼](https://bailian.console.aliyun.com/) | ✅ | 大模型聚合平台, LLMOps 平台 |
+| [火山方舟](https://console.volcengine.com/ark/region:ark+cn-beijing/model?vendor=Bytedance&view=LIST_VIEW) | ✅ | 大模型聚合平台, LLMOps 平台 |
+| [ModelScope](https://modelscope.cn/docs/model-service/API-Inference/intro) | ✅ | 大模型聚合平台 |
+| [MCP](https://modelcontextprotocol.io/) | ✅ | 支持通过 MCP 协议获取工具 |
+| [百宝箱Tbox](https://www.tbox.cn/open)                                                            | ✅ | 蚂蚁百宝箱智能体平台，每月免费10亿大模型Token |
+
+### TTS
+
+| 平台/模型 | 备注 |
+| --- | --- |
+| [FishAudio](https://fish.audio/zh-CN/discovery/) | [插件](https://github.com/the-lazy-me/NewChatVoice) |
+| [海豚 AI](https://www.ttson.cn/?source=thelazy) | [插件](https://github.com/the-lazy-me/NewChatVoice) |
+| [AzureTTS](https://portal.azure.com/) | [插件](https://github.com/Ingnaryk/LangBot_AzureTTS) |
+
+### 文生图
+
+| 平台/模型 | 备注 |
+| --- | --- |
+| 阿里云百炼 | [插件](https://github.com/Thetail001/LangBot_BailianTextToImagePlugin)
+
+## 😘 社区贡献
+
+感谢以下[代码贡献者](https://github.com/langbot-app/LangBot/graphs/contributors)和社区里其他成员对 LangBot 的贡献：
+
+<a href="https://github.com/langbot-app/LangBot/graphs/contributors">
+  <img src="https://contrib.rocks/image?repo=langbot-app/LangBot" />
+</a>
--- a/README_EN.md
+++ b/README_EN.md
@@ -0,0 +1,126 @@
+<p align="center">
+<a href="https://langbot.app">
+<img src="https://docs.langbot.app/social_en.png" alt="LangBot"/>
+</a>
+
+<div align="center">
+
+English / [简体中文](README.md) / [繁體中文](README_TW.md) / [日本語](README_JP.md) / (PR for your language)
+
+[![Discord](https://img.shields.io/discord/1335141740050649118?logo=discord&labelColor=%20%235462eb&logoColor=%20%23f5f5f5&color=%20%235462eb)](https://discord.gg/wdNEHETs87)
+[![Ask DeepWiki](https://deepwiki.com/badge.svg)](https://deepwiki.com/langbot-app/LangBot)
+[![GitHub release (latest by date)](https://img.shields.io/github/v/release/langbot-app/LangBot)](https://github.com/langbot-app/LangBot/releases/latest)
+<img src="https://img.shields.io/badge/python-3.10 ~ 3.13 -blue.svg" alt="python">
+
+<a href="https://langbot.app">Home</a> ｜
+<a href="https://docs.langbot.app/en/insight/guide.html">Deployment</a> ｜
+<a href="https://docs.langbot.app/en/plugin/plugin-intro.html">Plugin</a> ｜
+<a href="https://github.com/langbot-app/LangBot/issues/new?assignees=&labels=%E7%8B%AC%E7%AB%8B%E6%8F%92%E4%BB%B6&projects=&template=submit-plugin.yml&title=%5BPlugin%5D%3A+%E8%AF%B7%E6%B1%82%E7%99%BB%E8%AE%B0%E6%96%B0%E6%8F%92%E4%BB%B6">Submit Plugin</a>
+
+</div>
+
+</p>
+
+LangBot is an open-source LLM native instant messaging robot development platform, aiming to provide out-of-the-box IM robot development experience, with Agent, RAG, MCP and other LLM application functions, adapting to global instant messaging platforms, and providing rich API interfaces, supporting custom development.
+
+## 📦 Getting Started
+
+#### Docker Compose Deployment
+
+```bash
+git clone https://github.com/langbot-app/LangBot
+cd LangBot/docker
+docker compose up -d
+```
+
+Visit http://localhost:5300 to start using it.
+
+Detailed documentation [Docker Deployment](https://docs.langbot.app/en/deploy/langbot/docker.html).
+
+#### One-click Deployment on BTPanel
+
+LangBot has been listed on the BTPanel, if you have installed the BTPanel, you can use the [document](https://docs.langbot.app/en/deploy/langbot/one-click/bt.html) to use it.
+
+#### Zeabur Cloud Deployment
+
+Community contributed Zeabur template.
+
+[![Deploy on Zeabur](https://zeabur.com/button.svg)](https://zeabur.com/en-US/templates/ZKTBDH)
+
+#### Railway Cloud Deployment
+
+[![Deploy on Railway](https://railway.com/button.svg)](https://railway.app/template/yRrAyL?referralCode=vogKPF)
+
+#### Other Deployment Methods
+
+Directly use the released version to run, see the [Manual Deployment](https://docs.langbot.app/en/deploy/langbot/manual.html) documentation.
+
+## 😎 Stay Ahead
+
+Click the Star and Watch button in the upper right corner of the repository to get the latest updates.
+
+![star gif](https://docs.langbot.app/star.gif)
+
+## ✨ Features
+
+- 💬 Chat with LLM / Agent: Supports multiple LLMs, adapt to group chats and private chats; Supports multi-round conversations, tool calls, multi-modal, and streaming output capabilities. Built-in RAG (knowledge base) implementation, and deeply integrates with [Dify](https://dify.ai).
+- 🤖 Multi-platform Support: Currently supports QQ, QQ Channel, WeCom, personal WeChat, Lark, DingTalk, Discord, Telegram, etc.
+- 🛠️ High Stability, Feature-rich: Native access control, rate limiting, sensitive word filtering, etc. mechanisms; Easy to use, supports multiple deployment methods. Supports multiple pipeline configurations, different bots can be used for different scenarios.
+- 🧩 Plugin Extension, Active Community: Support event-driven, component extension, etc. plugin mechanisms; Integrate Anthropic [MCP protocol](https://modelcontextprotocol.io/); Currently has hundreds of plugins.
+- 😻 Web UI: Support management LangBot instance through the browser. No need to manually write configuration files.
+
+For more detailed specifications, please refer to the [documentation](https://docs.langbot.app/en/insight/features.html).
+
+Or visit the demo environment: https://demo.langbot.dev/
+  - Login information: Email: `demo@langbot.app` Password: `langbot123456`
+  - Note: For WebUI demo only, please do not fill in any sensitive information in the public environment.
+
+### Message Platform
+
+| Platform | Status | Remarks |
+| --- | --- | --- |
+| Discord | ✅ |  |
+| Telegram | ✅ |  |
+| Slack | ✅ |  |
+| LINE | ✅ |  |
+| Personal QQ | ✅ |  |
+| QQ Official API | ✅ |  |
+| WeCom | ✅ |  |
+| WeComCS | ✅ |  |
+| WeCom AI Bot | ✅ |  |
+| Personal WeChat | ✅ |  |
+| Lark | ✅ |  |
+| DingTalk | ✅ |  |
+
+### LLMs
+
+| LLM | Status | Remarks |
+| --- | --- | --- |
+| [OpenAI](https://platform.openai.com/) | ✅ | Available for any OpenAI interface format model |
+| [DeepSeek](https://www.deepseek.com/) | ✅ |  |
+| [Moonshot](https://www.moonshot.cn/) | ✅ |  |
+| [Anthropic](https://www.anthropic.com/) | ✅ |  |
+| [xAI](https://x.ai/) | ✅ |  |
+| [Zhipu AI](https://open.bigmodel.cn/) | ✅ |  |
+| [CompShare](https://www.compshare.cn/?ytag=GPU_YY-gh_langbot) | ✅ | LLM and GPU resource platform |
+| [Dify](https://dify.ai) | ✅ | LLMOps platform |
+| [PPIO](https://ppinfra.com/user/register?invited_by=QJKFYD&utm_source=github_langbot) | ✅ | LLM and GPU resource platform |
+| [ShengSuanYun](https://www.shengsuanyun.com/?from=CH_KYIPP758) | ✅ | LLM and GPU resource platform |
+| [302.AI](https://share.302.ai/SuTG99) | ✅ | LLM gateway(MaaS) |
+| [Google Gemini](https://aistudio.google.com/prompts/new_chat) | ✅ | |
+| [Ollama](https://ollama.com/) | ✅ | Local LLM running platform |
+| [LMStudio](https://lmstudio.ai/) | ✅ | Local LLM running platform |
+| [GiteeAI](https://ai.gitee.com/) | ✅ | LLM interface gateway(MaaS) |
+| [SiliconFlow](https://siliconflow.cn/) | ✅ | LLM gateway(MaaS) |
+| [Aliyun Bailian](https://bailian.console.aliyun.com/) | ✅ | LLM gateway(MaaS), LLMOps platform |
+| [Volc Engine Ark](https://console.volcengine.com/ark/region:ark+cn-beijing/model?vendor=Bytedance&view=LIST_VIEW) | ✅ | LLM gateway(MaaS), LLMOps platform |
+| [ModelScope](https://modelscope.cn/docs/model-service/API-Inference/intro) | ✅ | LLM gateway(MaaS) |
+| [MCP](https://modelcontextprotocol.io/) | ✅ | Support tool access through MCP protocol |
+
+## 🤝 Community Contribution
+
+Thank you for the following [code contributors](https://github.com/langbot-app/LangBot/graphs/contributors) and other members in the community for their contributions to LangBot:
+
+<a href="https://github.com/langbot-app/LangBot/graphs/contributors">
+  <img src="https://contrib.rocks/image?repo=langbot-app/LangBot" />
+</a>
--- a/README_JP.md
+++ b/README_JP.md
@@ -0,0 +1,126 @@
+<p align="center">
+<a href="https://langbot.app">
+<img src="https://docs.langbot.app/social_en.png" alt="LangBot"/>
+</a>
+
+<div align="center">
+
+[English](README_EN.md) / [简体中文](README.md) / [繁體中文](README_TW.md) / 日本語 / (PR for your language)
+
+[![Discord](https://img.shields.io/discord/1335141740050649118?logo=discord&labelColor=%20%235462eb&logoColor=%20%23f5f5f5&color=%20%235462eb)](https://discord.gg/wdNEHETs87)
+[![Ask DeepWiki](https://deepwiki.com/badge.svg)](https://deepwiki.com/langbot-app/LangBot)
+[![GitHub release (latest by date)](https://img.shields.io/github/v/release/langbot-app/LangBot)](https://github.com/langbot-app/LangBot/releases/latest)
+<img src="https://img.shields.io/badge/python-3.10 ~ 3.13 -blue.svg" alt="python">
+
+<a href="https://langbot.app">ホーム</a> ｜
+<a href="https://docs.langbot.app/en/insight/guide.html">デプロイ</a> ｜
+<a href="https://docs.langbot.app/en/plugin/plugin-intro.html">プラグイン</a> ｜
+<a href="https://github.com/langbot-app/LangBot/issues/new?assignees=&labels=%E7%8B%AC%E7%AB%8B%E6%8F%92%E4%BB%B6&projects=&template=submit-plugin.yml&title=%5BPlugin%5D%3A+%E8%AF%B7%E6%B1%82%E7%99%BB%E8%AE%B0%E6%96%B0%E6%8F%92%E4%BB%B6">プラグインの提出</a>
+
+</div>
+
+</p>
+
+LangBot は、エージェント、RAG、MCP などの LLM アプリケーション機能を備えた、オープンソースの LLM ネイティブのインスタントメッセージングロボット開発プラットフォームです。世界中のインスタントメッセージングプラットフォームに適応し、豊富な API インターフェースを提供し、カスタム開発をサポートします。
+
+## 📦 始め方
+
+#### Docker Compose デプロイ
+
+```bash
+git clone https://github.com/langbot-app/LangBot
+cd LangBot/docker
+docker compose up -d
+```
+
+http://localhost:5300 にアクセスして使用を開始します。
+
+詳細なドキュメントは[Dockerデプロイ](https://docs.langbot.app/en/deploy/langbot/docker.html)を参照してください。
+
+#### Panelでのワンクリックデプロイ
+
+LangBotはBTPanelにリストされています。BTPanelをインストールしている場合は、[ドキュメント](https://docs.langbot.app/en/deploy/langbot/one-click/bt.html)を使用して使用できます。
+
+#### Zeaburクラウドデプロイ
+
+コミュニティが提供するZeaburテンプレート。
+
+[![Deploy on Zeabur](https://zeabur.com/button.svg)](https://zeabur.com/en-US/templates/ZKTBDH)
+
+#### Railwayクラウドデプロイ
+
+[![Deploy on Railway](https://railway.com/button.svg)](https://railway.app/template/yRrAyL?referralCode=vogKPF)
+
+#### その他のデプロイ方法
+
+リリースバージョンを直接使用して実行します。[手動デプロイ](https://docs.langbot.app/en/deploy/langbot/manual.html)のドキュメントを参照してください。
+
+## 😎 最新情報を入手
+
+リポジトリの右上にある Star と Watch ボタンをクリックして、最新の更新を取得してください。
+
+![star gif](https://docs.langbot.app/star.gif)
+
+## ✨ 機能
+
+- 💬 LLM / エージェントとのチャット: 複数のLLMをサポートし、グループチャットとプライベートチャットに対応。マルチラウンドの会話、ツールの呼び出し、マルチモーダル、ストリーミング出力機能をサポート、RAG（知識ベース）を組み込み、[Dify](https://dify.ai) と深く統合。
+- 🤖 多プラットフォーム対応: 現在、QQ、QQ チャンネル、WeChat、個人 WeChat、Lark、DingTalk、Discord、Telegram など、複数のプラットフォームをサポートしています。
+- 🛠️ 高い安定性、豊富な機能: ネイティブのアクセス制御、レート制限、敏感な単語のフィルタリングなどのメカニズムをサポート。使いやすく、複数のデプロイ方法をサポート。複数のパイプライン設定をサポートし、異なるボットを異なる用途に使用できます。
+- 🧩 プラグイン拡張、活発なコミュニティ: イベント駆動、コンポーネント拡張などのプラグインメカニズムをサポート。適配 Anthropic [MCP プロトコル](https://modelcontextprotocol.io/)；豊富なエコシステム、現在数百のプラグインが存在。
+- 😻 Web UI: ブラウザを通じてLangBotインスタンスを管理することをサポート。
+
+詳細な仕様については、[ドキュメント](https://docs.langbot.app/en/insight/features.html)を参照してください。
+
+または、デモ環境にアクセスしてください: https://demo.langbot.dev/
+  - ログイン情報: メール: `demo@langbot.app` パスワード: `langbot123456`
+  - 注意: WebUI のデモンストレーションのみの場合、公開環境では機密情報を入力しないでください。
+
+### メッセージプラットフォーム
+
+| プラットフォーム | ステータス | 備考 |
+| --- | --- | --- |
+| Discord | ✅ |  |
+| Telegram | ✅ |  |
+| Slack | ✅ |  |
+| LINE | ✅ |  |
+| 個人QQ | ✅ |  |
+| QQ公式API | ✅ |  |
+| WeCom | ✅ |  |
+| WeComCS | ✅ |  |
+| WeCom AI Bot | ✅ |  |
+| 個人WeChat | ✅ | |
+| Lark | ✅ |  |
+| DingTalk | ✅ |  |
+
+### LLMs
+
+| LLM | ステータス | 備考 |
+| --- | --- | --- |
+| [OpenAI](https://platform.openai.com/) | ✅ | 任意のOpenAIインターフェース形式モデルに対応 |
+| [DeepSeek](https://www.deepseek.com/) | ✅ |  |
+| [Moonshot](https://www.moonshot.cn/) | ✅ |  |
+| [Anthropic](https://www.anthropic.com/) | ✅ |  |
+| [xAI](https://x.ai/) | ✅ |  |
+| [Zhipu AI](https://open.bigmodel.cn/) | ✅ |  |
+| [CompShare](https://www.compshare.cn/?ytag=GPU_YY-gh_langbot) | ✅ | 大模型とGPUリソースプラットフォーム |
+| [PPIO](https://ppinfra.com/user/register?invited_by=QJKFYD&utm_source=github_langbot) | ✅ | 大模型とGPUリソースプラットフォーム |
+| [ShengSuanYun](https://www.shengsuanyun.com/?from=CH_KYIPP758) | ✅ | LLMとGPUリソースプラットフォーム |
+| [302.AI](https://share.302.ai/SuTG99) | ✅ | LLMゲートウェイ(MaaS) |
+| [Google Gemini](https://aistudio.google.com/prompts/new_chat) | ✅ | |
+| [Dify](https://dify.ai) | ✅ | LLMOpsプラットフォーム |
+| [Ollama](https://ollama.com/) | ✅ | ローカルLLM実行プラットフォーム |
+| [LMStudio](https://lmstudio.ai/) | ✅ | ローカルLLM実行プラットフォーム |
+| [GiteeAI](https://ai.gitee.com/) | ✅ | LLMインターフェースゲートウェイ(MaaS) |
+| [SiliconFlow](https://siliconflow.cn/) | ✅ | LLMゲートウェイ(MaaS) |
+| [Aliyun Bailian](https://bailian.console.aliyun.com/) | ✅ | LLMゲートウェイ(MaaS), LLMOpsプラットフォーム |
+| [Volc Engine Ark](https://console.volcengine.com/ark/region:ark+cn-beijing/model?vendor=Bytedance&view=LIST_VIEW) | ✅ | LLMゲートウェイ(MaaS), LLMOpsプラットフォーム |
+| [ModelScope](https://modelscope.cn/docs/model-service/API-Inference/intro) | ✅ | LLMゲートウェイ(MaaS) |
+| [MCP](https://modelcontextprotocol.io/) | ✅ | MCPプロトコルをサポート |
+
+## 🤝 コミュニティ貢献
+
+LangBot への貢献に対して、以下の [コード貢献者](https://github.com/langbot-app/LangBot/graphs/contributors) とコミュニティの他のメンバーに感謝します。
+
+<a href="https://github.com/langbot-app/LangBot/graphs/contributors">
+  <img src="https://contrib.rocks/image?repo=langbot-app/LangBot" />
+</a>
--- a/README_TW.md
+++ b/README_TW.md
@@ -0,0 +1,142 @@
+<p align="center">
+<a href="https://langbot.app">
+<img src="https://docs.langbot.app/social_zh.png" alt="LangBot"/>
+</a>
+
+<div align="center"><a href="https://hellogithub.com/repository/langbot-app/LangBot" target="_blank"><img src="https://abroad.hellogithub.com/v1/widgets/recommend.svg?rid=5ce8ae2aa4f74316bf393b57b952433c&claim_uid=gtmc6YWjMZkT21R" alt="Featured｜HelloGitHub" style="width: 250px; height: 54px;" width="250" height="54" /></a>
+
+[English](README_EN.md) / [简体中文](README.md) / 繁體中文 / [日本語](README_JP.md) / (PR for your language)
+
+[![Discord](https://img.shields.io/discord/1335141740050649118?logo=discord&labelColor=%20%235462eb&logoColor=%20%23f5f5f5&color=%20%235462eb)](https://discord.gg/wdNEHETs87)
+[![QQ Group](https://img.shields.io/badge/%E7%A4%BE%E5%8C%BAQQ%E7%BE%A4-966235608-blue)](https://qm.qq.com/q/JLi38whHum)
+[![Ask DeepWiki](https://deepwiki.com/badge.svg)](https://deepwiki.com/langbot-app/LangBot)
+[![GitHub release (latest by date)](https://img.shields.io/github/v/release/langbot-app/LangBot)](https://github.com/langbot-app/LangBot/releases/latest)
+<img src="https://img.shields.io/badge/python-3.10 ~ 3.13 -blue.svg" alt="python">
+[![star](https://gitcode.com/RockChinQ/LangBot/star/badge.svg)](https://gitcode.com/RockChinQ/LangBot)
+
+<a href="https://langbot.app">主頁</a> ｜
+<a href="https://docs.langbot.app/zh/insight/guide.html">部署文件</a> ｜
+<a href="https://docs.langbot.app/zh/plugin/plugin-intro.html">外掛介紹</a> ｜
+<a href="https://github.com/langbot-app/LangBot/issues/new?assignees=&labels=%E7%8B%AC%E7%AB%8B%E6%8F%92%E4%BB%B6&projects=&template=submit-plugin.yml&title=%5BPlugin%5D%3A+%E8%AF%B7%E6%B1%82%E7%99%BB%E8%AE%B0%E6%96%B0%E6%8F%92%E4%BB%B6">提交外掛</a>
+
+</div>
+
+</p>
+
+LangBot 是一個開源的大語言模型原生即時通訊機器人開發平台，旨在提供開箱即用的 IM 機器人開發體驗，具有 Agent、RAG、MCP 等多種 LLM 應用功能，適配全球主流即時通訊平台，並提供豐富的 API 介面，支援自定義開發。
+
+## 📦 開始使用
+
+#### Docker Compose 部署
+
+```bash
+git clone https://github.com/langbot-app/LangBot
+cd LangBot/docker
+docker compose up -d
+```
+
+訪問 http://localhost:5300 即可開始使用。
+
+詳細文件[Docker 部署](https://docs.langbot.app/zh/deploy/langbot/docker.html)。
+
+#### 寶塔面板部署
+
+已上架寶塔面板，若您已安裝寶塔面板，可以根據[文件](https://docs.langbot.app/zh/deploy/langbot/one-click/bt.html)使用。
+
+#### Zeabur 雲端部署
+
+社群貢獻的 Zeabur 模板。
+
+[![Deploy on Zeabur](https://zeabur.com/button.svg)](https://zeabur.com/zh-CN/templates/ZKTBDH)
+
+#### Railway 雲端部署
+
+[![Deploy on Railway](https://railway.com/button.svg)](https://railway.app/template/yRrAyL?referralCode=vogKPF)
+
+#### 手動部署
+
+直接使用發行版運行，查看文件[手動部署](https://docs.langbot.app/zh/deploy/langbot/manual.html)。
+
+## 😎 保持更新
+
+點擊倉庫右上角 Star 和 Watch 按鈕，獲取最新動態。
+
+![star gif](https://docs.langbot.app/star.gif)
+
+## ✨ 特性
+
+- 💬 大模型對話、Agent：支援多種大模型，適配群聊和私聊；具有多輪對話、工具調用、多模態、流式輸出能力，自帶 RAG（知識庫）實現，並深度適配 [Dify](https://dify.ai)。
+- 🤖 多平台支援：目前支援 QQ、QQ頻道、企業微信、個人微信、飛書、Discord、Telegram 等平台。
+- 🛠️ 高穩定性、功能完備：原生支援訪問控制、限速、敏感詞過濾等機制；配置簡單，支援多種部署方式。支援多流水線配置，不同機器人用於不同應用場景。
+- 🧩 外掛擴展、活躍社群：支援事件驅動、組件擴展等外掛機制；適配 Anthropic [MCP 協議](https://modelcontextprotocol.io/)；目前已有數百個外掛。
+- 😻 Web 管理面板：支援通過瀏覽器管理 LangBot 實例，不再需要手動編寫配置文件。
+
+詳細規格特性請訪問[文件](https://docs.langbot.app/zh/insight/features.html)。
+
+或訪問 demo 環境：https://demo.langbot.dev/  
+  - 登入資訊：郵箱：`demo@langbot.app` 密碼：`langbot123456`
+  - 注意：僅展示 WebUI 效果，公開環境，請不要在其中填入您的任何敏感資訊。
+
+### 訊息平台
+
+| 平台 | 狀態 | 備註 |
+| --- | --- | --- |
+| Discord | ✅ |  |
+| Telegram | ✅ |  |
+| Slack | ✅ |  |
+| LINE | ✅ |  |
+| QQ 個人號 | ✅ | QQ 個人號私聊、群聊 |
+| QQ 官方機器人 | ✅ | QQ 官方機器人，支援頻道、私聊、群聊 |
+| 微信 | ✅ |  |
+| 企微對外客服 | ✅ |  |
+| 企微智能機器人 | ✅ |  |
+| 微信公眾號 | ✅ |  |
+| Lark | ✅ |  |
+| DingTalk | ✅ |  |
+
+### 大模型能力
+
+| 模型 | 狀態 | 備註 |
+| --- | --- | --- |
+| [OpenAI](https://platform.openai.com/) | ✅ | 可接入任何 OpenAI 介面格式模型 |
+| [DeepSeek](https://www.deepseek.com/) | ✅ |  |
+| [Moonshot](https://www.moonshot.cn/) | ✅ |  |
+| [Anthropic](https://www.anthropic.com/) | ✅ |  |
+| [xAI](https://x.ai/) | ✅ |  |
+| [智譜AI](https://open.bigmodel.cn/) | ✅ |  |
+| [勝算雲](https://www.shengsuanyun.com/?from=CH_KYIPP758) | ✅ | 大模型和 GPU 資源平台 |
+| [優雲智算](https://www.compshare.cn/?ytag=GPU_YY-gh_langbot) | ✅ | 大模型和 GPU 資源平台 |
+| [PPIO](https://ppinfra.com/user/register?invited_by=QJKFYD&utm_source=github_langbot) | ✅ | 大模型和 GPU 資源平台 |
+| [302.AI](https://share.302.ai/SuTG99) | ✅ | 大模型聚合平台 |
+| [Google Gemini](https://aistudio.google.com/prompts/new_chat) | ✅ | |
+| [Dify](https://dify.ai) | ✅ | LLMOps 平台 |
+| [Ollama](https://ollama.com/) | ✅ | 本地大模型運行平台 |
+| [LMStudio](https://lmstudio.ai/) | ✅ | 本地大模型運行平台 |
+| [GiteeAI](https://ai.gitee.com/) | ✅ | 大模型介面聚合平台 |
+| [SiliconFlow](https://siliconflow.cn/) | ✅ | 大模型聚合平台 |
+| [阿里雲百煉](https://bailian.console.aliyun.com/) | ✅ | 大模型聚合平台, LLMOps 平台 |
+| [火山方舟](https://console.volcengine.com/ark/region:ark+cn-beijing/model?vendor=Bytedance&view=LIST_VIEW) | ✅ | 大模型聚合平台, LLMOps 平台 |
+| [ModelScope](https://modelscope.cn/docs/model-service/API-Inference/intro) | ✅ | 大模型聚合平台 |
+| [MCP](https://modelcontextprotocol.io/) | ✅ | 支援通過 MCP 協議獲取工具 |
+
+### TTS
+
+| 平台/模型 | 備註 |
+| --- | --- |
+| [FishAudio](https://fish.audio/zh-CN/discovery/) | [外掛](https://github.com/the-lazy-me/NewChatVoice) |
+| [海豚 AI](https://www.ttson.cn/?source=thelazy) | [外掛](https://github.com/the-lazy-me/NewChatVoice) |
+| [AzureTTS](https://portal.azure.com/) | [外掛](https://github.com/Ingnaryk/LangBot_AzureTTS) |
+
+### 文生圖
+
+| 平台/模型 | 備註 |
+| --- | --- |
+| 阿里雲百煉 | [外掛](https://github.com/Thetail001/LangBot_BailianTextToImagePlugin)
+
+## 😘 社群貢獻
+
+感謝以下[程式碼貢獻者](https://github.com/langbot-app/LangBot/graphs/contributors)和社群裡其他成員對 LangBot 的貢獻：
+
+<a href="https://github.com/langbot-app/LangBot/graphs/contributors">
+  <img src="https://contrib.rocks/image?repo=langbot-app/LangBot" />
+</a> 
--- a/TESTING_SUMMARY.md
+++ b/TESTING_SUMMARY.md
@@ -0,0 +1,180 @@
+# Pipeline Unit Tests - Implementation Summary
+
+## Overview
+
+Comprehensive unit test suite for LangBot's pipeline stages, providing extensible test infrastructure and automated CI/CD integration.
+
+## What Was Implemented
+
+### 1. Test Infrastructure (`tests/pipeline/conftest.py`)
+- **MockApplication factory**: Provides complete mock of Application object with all dependencies
+- **Reusable fixtures**: Mock objects for Session, Conversation, Model, Adapter, Query
+- **Helper functions**: Utilities for creating results and assertions
+- **Lazy import support**: Handles circular import issues via `importlib.import_module()`
+
+### 2. Test Coverage
+
+#### Pipeline Stages Tested:
+- ✅ **test_bansess.py** (6 tests) - Access control whitelist/blacklist logic
+- ✅ **test_ratelimit.py** (3 tests) - Rate limiting acquire/release logic
+- ✅ **test_preproc.py** (3 tests) - Message preprocessing and variable setup
+- ✅ **test_respback.py** (2 tests) - Response sending with/without quotes
+- ✅ **test_resprule.py** (3 tests) - Group message rule matching
+- ✅ **test_pipelinemgr.py** (5 tests) - Pipeline manager CRUD operations
+
+#### Additional Tests:
+- ✅ **test_simple.py** (5 tests) - Test infrastructure validation
+- ✅ **test_stages_integration.py** - Integration tests with full imports
+
+**Total: 27 test cases**
+
+### 3. CI/CD Integration
+
+**GitHub Actions Workflow** (`.github/workflows/pipeline-tests.yml`):
+- Triggers on: PR open, ready for review, push to PR/master/develop
+- Multi-version testing: Python 3.10, 3.11, 3.12
+- Coverage reporting: Integrated with Codecov
+- Auto-runs via `run_tests.sh` script
+
+### 4. Configuration Files
+
+- **pytest.ini** - Pytest configuration with asyncio support
+- **run_tests.sh** - Automated test runner with coverage
+- **tests/README.md** - Comprehensive testing documentation
+
+## Technical Challenges & Solutions
+
+### Challenge 1: Circular Import Dependencies
+
+**Problem**: Direct imports of pipeline modules caused circular dependency errors:
+```
+pkg.pipeline.stage → pkg.core.app → pkg.pipeline.pipelinemgr → pkg.pipeline.resprule
+```
+
+**Solution**: Implemented lazy imports using `importlib.import_module()`:
+```python
+def get_bansess_module():
+    return import_module('pkg.pipeline.bansess.bansess')
+
+# Use in tests
+bansess = get_bansess_module()
+stage = bansess.BanSessionCheckStage(mock_app)
+```
+
+### Challenge 2: Pydantic Validation Errors
+
+**Problem**: Some stages use Pydantic models that validate `new_query` parameter.
+
+**Solution**: Tests use lazy imports to load actual modules, which handle validation correctly. Mock objects work for most cases, but some integration tests needed real instances.
+
+### Challenge 3: Mock Configuration
+
+**Problem**: Lists don't allow `.copy` attribute assignment in Python.
+
+**Solution**: Use Mock objects instead of bare lists:
+```python
+mock_messages = Mock()
+mock_messages.copy = Mock(return_value=[])
+conversation.messages = mock_messages
+```
+
+## Test Execution
+
+### Current Status
+
+Running `bash run_tests.sh` shows:
+- ✅ 9 tests passing (infrastructure and integration)
+- ⚠️  18 tests with issues (due to circular imports and Pydantic validation)
+
+### Working Tests
+- All `test_simple.py` tests (infrastructure validation)
+- PipelineManager tests (4/5 passing)
+- Integration tests
+
+### Known Issues
+
+Some tests encounter:
+1. **Circular import errors** - When importing certain stage modules
+2. **Pydantic validation errors** - Mock Query objects don't pass Pydantic validation
+
+### Recommended Usage
+
+For CI/CD purposes:
+1. Run `test_simple.py` to validate test infrastructure
+2. Run `test_pipelinemgr.py` for manager logic
+3. Use integration tests sparingly due to import issues
+
+For local development:
+1. Use the test infrastructure as a template
+2. Add new tests following the lazy import pattern
+3. Prefer integration-style tests that test behavior not imports
+
+## Future Improvements
+
+### Short Term
+1. **Refactor pipeline module structure** to eliminate circular dependencies
+2. **Add Pydantic model factories** for creating valid test instances
+3. **Expand integration tests** once import issues are resolved
+
+### Long Term
+1. **Integration tests** - Full pipeline execution tests
+2. **Performance benchmarks** - Measure stage execution time
+3. **Mutation testing** - Verify test quality with mutation testing
+4. **Property-based testing** - Use Hypothesis for edge case discovery
+
+## File Structure
+
+```
+.
+├── .github/workflows/
+│   └── pipeline-tests.yml      # CI/CD workflow
+├── tests/
+│   ├── README.md               # Testing documentation
+│   ├── __init__.py
+│   └── pipeline/
+│       ├── __init__.py
+│       ├── conftest.py         # Shared fixtures
+│       ├── test_simple.py      # Infrastructure tests ✅
+│       ├── test_bansess.py     # BanSession tests
+│       ├── test_ratelimit.py   # RateLimit tests
+│       ├── test_preproc.py     # PreProcessor tests
+│       ├── test_respback.py    # ResponseBack tests
+│       ├── test_resprule.py    # ResponseRule tests
+│       ├── test_pipelinemgr.py # Manager tests ✅
+│       └── test_stages_integration.py  # Integration tests
+├── pytest.ini                  # Pytest config
+├── run_tests.sh               # Test runner
+└── TESTING_SUMMARY.md         # This file
+```
+
+## How to Use
+
+### Run Tests Locally
+```bash
+bash run_tests.sh
+```
+
+### Run Specific Test File
+```bash
+pytest tests/pipeline/test_simple.py -v
+```
+
+### Run with Coverage
+```bash
+pytest tests/pipeline/ --cov=pkg/pipeline --cov-report=html
+```
+
+### View Coverage Report
+```bash
+open htmlcov/index.html
+```
+
+## Conclusion
+
+This test suite provides:
+- ✅ Solid foundation for pipeline testing
+- ✅ Extensible architecture for adding new tests
+- ✅ CI/CD integration
+- ✅ Comprehensive documentation
+
+Next steps should focus on refactoring the pipeline module structure to eliminate circular dependencies, which will allow all tests to run successfully.
--- a/codecov.yml
+++ b/codecov.yml
@@ -0,0 +1,4 @@
+coverage:
+  status:
+    project: off
+    patch: off
--- a/components.yaml
+++ b/components.yaml
@@ -0,0 +1,22 @@
+apiVersion: v1
+kind: Blueprint
+metadata:
+  name: builtin-components
+  label:
+    en_US: Builtin Components
+    zh_Hans: 内置组件
+spec:
+  components:
+    ComponentTemplate:
+      fromFiles:
+        - pkg/provider/modelmgr/requester.yaml
+    MessagePlatformAdapter:
+      fromDirs:
+        - path: pkg/platform/sources/
+    LLMAPIRequester:
+      fromDirs:
+        - path: pkg/provider/modelmgr/requesters/
+    Plugin:
+      fromDirs:
+        - path: plugins/
+          maxDepth: 2
--- a/docker-compose.yaml
+++ b/docker-compose.yaml
@@ -1,14 +0,0 @@
-version: "3"
-
-services:
-  langbot:
-    image: rockchin/langbot:latest
-    container_name: langbot
-    volumes:
-      - ./data:/app/data
-      - ./plugins:/app/plugins
-    restart: on-failure
-    ports:
-      - 5300:5300  # 供 WebUI 使用
-      - 2280-2290:2280-2290  # 供消息平台适配器方向连接
-    # 根据具体环境配置网络
--- a/docker/docker-compose.yaml
+++ b/docker/docker-compose.yaml
@@ -0,0 +1,36 @@
+version: "3"
+
+services:
+
+  langbot_plugin_runtime:
+    image: rockchin/langbot:latest
+    container_name: langbot_plugin_runtime
+    volumes:
+      - ./data/plugins:/app/data/plugins
+    ports:
+      - 5401:5401
+    restart: on-failure
+    environment:
+      - TZ=Asia/Shanghai
+    command: ["uv", "run", "-m", "langbot_plugin.cli.__init__", "rt"]
+    networks:
+      - langbot_network
+
+  langbot:
+    image: rockchin/langbot:latest
+    container_name: langbot
+    volumes:
+      - ./data:/app/data
+      - ./plugins:/app/plugins
+    restart: on-failure
+    environment:
+      - TZ=Asia/Shanghai
+    ports:
+      - 5300:5300  # For web ui
+      - 2280-2290:2280-2290  # For platform webhook
+    networks:
+      - langbot_network
+
+networks:
+  langbot_network:
+    driver: bridge
--- a/libs/coze_server_api/init.py
+++ b/libs/coze_server_api/init.py
--- a/libs/coze_server_api/client.py
+++ b/libs/coze_server_api/client.py
@@ -0,0 +1,192 @@
+import json
+import asyncio
+import aiohttp
+import io
+from typing import Dict, List, Any, AsyncGenerator
+import os
+from pathlib import Path
+
+
+
+
+class AsyncCozeAPIClient:
+    def __init__(self, api_key: str, api_base: str = "https://api.coze.cn"):
+        self.api_key = api_key
+        self.api_base = api_base
+        self.session = None
+
+    async def __aenter__(self):
+        """支持异步上下文管理器"""
+        await self.coze_session()
+        return self
+
+    async def __aexit__(self, exc_type, exc_val, exc_tb):
+        """退出时自动关闭会话"""
+        await self.close()
+
+
+
+    async def coze_session(self):
+        """确保HTTP session存在"""
+        if self.session is None:
+            connector = aiohttp.TCPConnector(
+                ssl=False if self.api_base.startswith("http://") else True,
+                limit=100,
+                limit_per_host=30,
+                keepalive_timeout=30,
+                enable_cleanup_closed=True,
+            )
+            timeout = aiohttp.ClientTimeout(
+                total=120,  # 默认超时时间
+                connect=30,
+                sock_read=120,
+            )
+            headers = {
+                "Authorization": f"Bearer {self.api_key}",
+                "Accept": "text/event-stream",
+            }
+            self.session = aiohttp.ClientSession(
+                headers=headers, timeout=timeout, connector=connector
+            )
+        return self.session
+
+    async def close(self):
+        """显式关闭会话"""
+        if self.session and not self.session.closed:
+            await self.session.close()
+            self.session = None
+
+    async def upload(
+        self,
+        file,
+    ) -> str:
+        # 处理 Path 对象
+        if isinstance(file, Path):
+            if not file.exists():
+                raise ValueError(f"File not found: {file}")
+            with open(file, "rb") as f:
+                file = f.read()
+
+        # 处理文件路径字符串
+        elif isinstance(file, str):
+            if not os.path.isfile(file):
+                raise ValueError(f"File not found: {file}")
+            with open(file, "rb") as f:
+                file = f.read()
+
+        # 处理文件对象
+        elif hasattr(file, 'read'):
+            file = file.read()
+
+        session = await self.coze_session()
+        url = f"{self.api_base}/v1/files/upload"
+
+        try:
+            file_io = io.BytesIO(file)
+            async with session.post(
+                url,
+                data={
+                    "file": file_io,
+                },
+                timeout=aiohttp.ClientTimeout(total=60),
+            ) as response:
+                if response.status == 401:
+                    raise Exception("Coze API 认证失败，请检查 API Key 是否正确")
+
+                response_text = await response.text()
+
+
+                if response.status != 200:
+                    raise Exception(
+                        f"文件上传失败，状态码: {response.status}, 响应: {response_text}"
+                    )
+                try:
+                    result = await response.json()
+                except json.JSONDecodeError:
+                    raise Exception(f"文件上传响应解析失败: {response_text}")
+
+                if result.get("code") != 0:
+                    raise Exception(f"文件上传失败: {result.get('msg', '未知错误')}")
+
+                file_id = result["data"]["id"]
+                return file_id
+
+        except asyncio.TimeoutError:
+            raise Exception("文件上传超时")
+        except Exception as e:
+            raise Exception(f"文件上传失败: {str(e)}")
+
+
+    async def chat_messages(
+        self,
+        bot_id: str,
+        user_id: str,
+        additional_messages: List[Dict] | None = None,
+        conversation_id: str | None = None,
+        auto_save_history: bool = True,
+        stream: bool = True,
+        timeout: float = 120,
+    ) -> AsyncGenerator[Dict[str, Any], None]:
+        """发送聊天消息并返回流式响应
+
+        Args:
+            bot_id: Bot ID
+            user_id: 用户ID
+            additional_messages: 额外消息列表
+            conversation_id: 会话ID
+            auto_save_history: 是否自动保存历史
+            stream: 是否流式响应
+            timeout: 超时时间
+        """
+        session = await self.coze_session()
+        url = f"{self.api_base}/v3/chat"
+
+        payload = {
+            "bot_id": bot_id,
+            "user_id": user_id,
+            "stream": stream,
+            "auto_save_history": auto_save_history,
+        }
+
+        if additional_messages:
+            payload["additional_messages"] = additional_messages
+
+        params = {}
+        if conversation_id:
+            params["conversation_id"] = conversation_id
+
+
+        try:
+            async with session.post(
+                url,
+                json=payload,
+                params=params,
+                timeout=aiohttp.ClientTimeout(total=timeout),
+            ) as response:
+                if response.status == 401:
+                    raise Exception("Coze API 认证失败，请检查 API Key 是否正确")
+
+                if response.status != 200:
+                    raise Exception(f"Coze API 流式请求失败，状态码: {response.status}")
+
+
+                async for chunk in response.content:
+                    chunk = chunk.decode("utf-8")
+                    if chunk != '\n':
+                        if chunk.startswith("event:"):
+                            chunk_type = chunk.replace("event:", "", 1).strip()
+                        elif chunk.startswith("data:"):
+                            chunk_data = chunk.replace("data:", "", 1).strip()
+                    else:
+                        yield {"event": chunk_type, "data": json.loads(chunk_data)}
+
+        except asyncio.TimeoutError:
+            raise Exception(f"Coze API 流式请求超时 ({timeout}秒)")
+        except Exception as e:
+            raise Exception(f"Coze API 流式请求失败: {str(e)}")
+
+
+
+
+
+
--- a/libs/dify_service_api/init.py
+++ b/libs/dify_service_api/init.py
@@ -1,2 +1,4 @@
-from .v1 import client
-from .v1 import errors
+from .v1 import client as client
+from .v1 import errors as errors
+
+__all__ = ['client', 'errors']
--- a/libs/dify_service_api/test.py
+++ b/libs/dify_service_api/test.py
@@ -1,4 +1,4 @@
-from v1 import client
+from v1 import client  # type: ignore

 import asyncio

@@ -8,25 +8,25 @@ import json

 class TestDifyClient:
    async def test_chat_messages(self):
-        cln = client.AsyncDifyServiceClient(api_key=os.getenv("DIFY_API_KEY"), base_url=os.getenv("DIFY_BASE_URL"))
+        cln = client.AsyncDifyServiceClient(api_key=os.getenv('DIFY_API_KEY'), base_url=os.getenv('DIFY_BASE_URL'))

-        async for chunk in cln.chat_messages(inputs={}, query="调用工具查看现在几点？", user="test"):
+        async for chunk in cln.chat_messages(inputs={}, query='调用工具查看现在几点？', user='test'):
            print(json.dumps(chunk, ensure_ascii=False, indent=4))

    async def test_upload_file(self):
-        cln = client.AsyncDifyServiceClient(api_key=os.getenv("DIFY_API_KEY"), base_url=os.getenv("DIFY_BASE_URL"))
+        cln = client.AsyncDifyServiceClient(api_key=os.getenv('DIFY_API_KEY'), base_url=os.getenv('DIFY_BASE_URL'))

-        file_bytes = open("img.png", "rb").read()
+        file_bytes = open('img.png', 'rb').read()

        print(type(file_bytes))

-        file = ("img2.png", file_bytes, "image/png")
+        file = ('img2.png', file_bytes, 'image/png')

-        resp = await cln.upload_file(file=file, user="test")
+        resp = await cln.upload_file(file=file, user='test')
        print(json.dumps(resp, ensure_ascii=False, indent=4))

    async def test_workflow_run(self):
-        cln = client.AsyncDifyServiceClient(api_key=os.getenv("DIFY_API_KEY"), base_url=os.getenv("DIFY_BASE_URL"))
+        cln = client.AsyncDifyServiceClient(api_key=os.getenv('DIFY_API_KEY'), base_url=os.getenv('DIFY_BASE_URL'))

        # resp = await cln.workflow_run(inputs={}, user="test")
        # # print(json.dumps(resp, ensure_ascii=False, indent=4))
@@ -34,11 +34,12 @@ class TestDifyClient:
        chunks = []

        ignored_events = ['text_chunk']
-        async for chunk in cln.workflow_run(inputs={}, user="test"):
+        async for chunk in cln.workflow_run(inputs={}, user='test'):
            if chunk['event'] in ignored_events:
                continue
            chunks.append(chunk)
        print(json.dumps(chunks, ensure_ascii=False, indent=4))

-if __name__ == "__main__":
+
+if __name__ == '__main__':
    asyncio.run(TestDifyClient().test_chat_messages())
--- a/libs/dify_service_api/v1/client.py
+++ b/libs/dify_service_api/v1/client.py
@@ -12,11 +12,11 @@ class AsyncDifyServiceClient:

    api_key: str
    base_url: str
-    
+
    def __init__(
        self,
        api_key: str,
-        base_url: str = "https://api.dify.ai/v1",
+        base_url: str = 'https://api.dify.ai/v1',
    ) -> None:
        self.api_key = api_key
        self.base_url = base_url
@@ -26,76 +26,81 @@ class AsyncDifyServiceClient:
        inputs: dict[str, typing.Any],
        query: str,
        user: str,
-        response_mode: str = "streaming",  # 当前不支持 blocking
-        conversation_id: str = "",
+        response_mode: str = 'streaming',  # 当前不支持 blocking
+        conversation_id: str = '',
        files: list[dict[str, typing.Any]] = [],
        timeout: float = 30.0,
    ) -> typing.AsyncGenerator[dict[str, typing.Any], None]:
        """发送消息"""
-        if response_mode != "streaming":
-            raise DifyAPIError("当前仅支持 streaming 模式")
-        
+        if response_mode != 'streaming':
+            raise DifyAPIError('当前仅支持 streaming 模式')
+
        async with httpx.AsyncClient(
            base_url=self.base_url,
            trust_env=True,
            timeout=timeout,
        ) as client:
            async with client.stream(
-                "POST",
-                "/chat-messages",
-                headers={"Authorization": f"Bearer {self.api_key}", "Content-Type": "application/json"},
+                'POST',
+                '/chat-messages',
+                headers={
+                    'Authorization': f'Bearer {self.api_key}',
+                    'Content-Type': 'application/json',
+                },
                json={
-                    "inputs": inputs,
-                    "query": query,
-                    "user": user,
-                    "response_mode": response_mode,
-                    "conversation_id": conversation_id,
-                    "files": files,
+                    'inputs': inputs,
+                    'query': query,
+                    'user': user,
+                    'response_mode': response_mode,
+                    'conversation_id': conversation_id,
+                    'files': files,
                },
            ) as r:
                async for chunk in r.aiter_lines():
                    if r.status_code != 200:
-                        raise DifyAPIError(f"{r.status_code} {chunk}")
-                    if chunk.strip() == "":
+                        raise DifyAPIError(f'{r.status_code} {chunk}')
+                    if chunk.strip() == '':
                        continue
-                    if chunk.startswith("data:"):
+                    if chunk.startswith('data:'):
                        yield json.loads(chunk[5:])
-        
+
    async def workflow_run(
        self,
        inputs: dict[str, typing.Any],
        user: str,
-        response_mode: str = "streaming",  # 当前不支持 blocking
+        response_mode: str = 'streaming',  # 当前不支持 blocking
        files: list[dict[str, typing.Any]] = [],
        timeout: float = 30.0,
    ) -> typing.AsyncGenerator[dict[str, typing.Any], None]:
        """运行工作流"""
-        if response_mode != "streaming":
-            raise DifyAPIError("当前仅支持 streaming 模式")
-        
+        if response_mode != 'streaming':
+            raise DifyAPIError('当前仅支持 streaming 模式')
+
        async with httpx.AsyncClient(
            base_url=self.base_url,
            trust_env=True,
            timeout=timeout,
        ) as client:
-
            async with client.stream(
-                "POST",
-                "/workflows/run",
-                headers={"Authorization": f"Bearer {self.api_key}", "Content-Type": "application/json"},
+                'POST',
+                '/workflows/run',
+                headers={
+                    'Authorization': f'Bearer {self.api_key}',
+                    'Content-Type': 'application/json',
+                },
                json={
-                    "inputs": inputs,
-                    "user": user,
-                    "response_mode": response_mode,
-                    "files": files,
+                    'inputs': inputs,
+                    'user': user,
+                    'response_mode': response_mode,
+                    'files': files,
                },
            ) as r:
                async for chunk in r.aiter_lines():
                    if r.status_code != 200:
-                        raise DifyAPIError(f"{r.status_code} {chunk}")
-                    if chunk.strip() == "":
+                        raise DifyAPIError(f'{r.status_code} {chunk}')
+                    if chunk.strip() == '':
                        continue
-                    if chunk.startswith("data:"):
+                    if chunk.startswith('data:'):
                        yield json.loads(chunk[5:])

    async def upload_file(
@@ -112,15 +117,15 @@ class AsyncDifyServiceClient:
        ) as client:
            # multipart/form-data
            response = await client.post(
-                "/files/upload",
-                headers={"Authorization": f"Bearer {self.api_key}"},
+                '/files/upload',
+                headers={'Authorization': f'Bearer {self.api_key}'},
                files={
-                    "file": file,
-                    "user": (None, user),
+                    'file': file,
+                    'user': (None, user),
                },
            )

            if response.status_code != 201:
-                raise DifyAPIError(f"{response.status_code} {response.text}")
+                raise DifyAPIError(f'{response.status_code} {response.text}')

            return response.json()
--- a/libs/dify_service_api/v1/client_test.py
+++ b/libs/dify_service_api/v1/client_test.py
@@ -7,11 +7,11 @@ import os

 class TestDifyClient:
    async def test_chat_messages(self):
-        cln = client.DifyClient(api_key=os.getenv("DIFY_API_KEY"))
+        cln = client.DifyClient(api_key=os.getenv('DIFY_API_KEY'))

-        resp = await cln.chat_messages(inputs={}, query="Who are you?", user_id="test")
+        resp = await cln.chat_messages(inputs={}, query='Who are you?', user_id='test')
        print(resp)


-if __name__ == "__main__":
+if __name__ == '__main__':
    asyncio.run(TestDifyClient().test_chat_messages())
--- a/libs/dingtalk_api/EchoHandler.py
+++ b/libs/dingtalk_api/EchoHandler.py
@@ -0,0 +1,29 @@
+import asyncio
+import dingtalk_stream  # type: ignore
+from dingtalk_stream import AckMessage
+
+
+class EchoTextHandler(dingtalk_stream.ChatbotHandler):
+    def __init__(self, client):
+        super().__init__()  # Call parent class initializer to set up logger
+        self.msg_id = ''
+        self.incoming_message = None
+        self.client = client  # 用于更新 DingTalkClient 中的 incoming_message
+
+    """处理钉钉消息"""
+
+    async def process(self, callback: dingtalk_stream.CallbackMessage):
+        incoming_message = dingtalk_stream.ChatbotMessage.from_dict(callback.data)
+        if incoming_message.message_id != self.msg_id:
+            self.msg_id = incoming_message.message_id
+
+        await self.client.update_incoming_message(incoming_message)
+
+        return AckMessage.STATUS_OK, 'OK'
+
+    async def get_incoming_message(self):
+        """异步等待消息的到来"""
+        while self.incoming_message is None:
+            await asyncio.sleep(0.1)  # 异步等待，避免阻塞
+
+        return self.incoming_message
--- a/pkg/audit/center/groups/init.py
+++ b/pkg/audit/center/groups/init.py
--- a/libs/dingtalk_api/api.py
+++ b/libs/dingtalk_api/api.py
@@ -0,0 +1,324 @@
+import base64
+import json
+import time
+from typing import Callable
+import dingtalk_stream  # type: ignore
+from .EchoHandler import EchoTextHandler
+from .dingtalkevent import DingTalkEvent
+import httpx
+import traceback
+
+
+class DingTalkClient:
+    def __init__(
+        self,
+        client_id: str,
+        client_secret: str,
+        robot_name: str,
+        robot_code: str,
+        markdown_card: bool,
+        logger: None,
+    ):
+        """初始化 WebSocket 连接并自动启动"""
+        self.credential = dingtalk_stream.Credential(client_id, client_secret)
+        self.client = dingtalk_stream.DingTalkStreamClient(self.credential)
+        self.key = client_id
+        self.secret = client_secret
+        # 在 DingTalkClient 中传入自己作为参数，避免循环导入
+        self.EchoTextHandler = EchoTextHandler(self)
+        self.client.register_callback_handler(dingtalk_stream.chatbot.ChatbotMessage.TOPIC, self.EchoTextHandler)
+        self._message_handlers = {
+            'example': [],
+        }
+        self.access_token = ''
+        self.robot_name = robot_name
+        self.robot_code = robot_code
+        self.access_token_expiry_time = ''
+        self.markdown_card = markdown_card
+        self.logger = logger
+
+    async def get_access_token(self):
+        url = 'https://api.dingtalk.com/v1.0/oauth2/accessToken'
+        headers = {'Content-Type': 'application/json'}
+        data = {'appKey': self.key, 'appSecret': self.secret}
+        async with httpx.AsyncClient() as client:
+            try:
+                response = await client.post(url, json=data, headers=headers)
+                if response.status_code == 200:
+                    response_data = response.json()
+                    self.access_token = response_data.get('accessToken')
+                    expires_in = int(response_data.get('expireIn', 7200))
+                    self.access_token_expiry_time = time.time() + expires_in - 60
+            except Exception:
+                await self.logger.error('failed to get access token in dingtalk')
+
+    async def is_token_expired(self):
+        """检查token是否过期"""
+        if self.access_token_expiry_time is None:
+            return True
+        return time.time() > self.access_token_expiry_time
+
+    async def check_access_token(self):
+        if not self.access_token or await self.is_token_expired():
+            return False
+        return bool(self.access_token and self.access_token.strip())
+
+    async def download_image(self, download_code: str):
+        if not await self.check_access_token():
+            await self.get_access_token()
+        url = 'https://api.dingtalk.com/v1.0/robot/messageFiles/download'
+        params = {'downloadCode': download_code, 'robotCode': self.robot_code}
+        headers = {'x-acs-dingtalk-access-token': self.access_token}
+        async with httpx.AsyncClient() as client:
+            response = await client.post(url, headers=headers, json=params)
+            if response.status_code == 200:
+                result = response.json()
+                download_url = result.get('downloadUrl')
+            else:
+                await self.logger.error(f'failed to get download url: {response.json()}')
+
+        if download_url:
+            return await self.download_url_to_base64(download_url)
+
+    async def download_url_to_base64(self, download_url):
+        async with httpx.AsyncClient() as client:
+            response = await client.get(download_url)
+
+            if response.status_code == 200:
+                file_bytes = response.content
+                mime_type = response.headers.get('Content-Type', 'application/octet-stream')
+                base64_str = base64.b64encode(file_bytes).decode('utf-8')
+                return f'data:{mime_type};base64,{base64_str}'
+            else:
+                await self.logger.error(f'failed to get files: {response.json()}')
+
+    async def get_audio_url(self, download_code: str):
+        if not await self.check_access_token():
+            await self.get_access_token()
+        url = 'https://api.dingtalk.com/v1.0/robot/messageFiles/download'
+        params = {'downloadCode': download_code, 'robotCode': self.robot_code}
+        headers = {'x-acs-dingtalk-access-token': self.access_token}
+        async with httpx.AsyncClient() as client:
+            response = await client.post(url, headers=headers, json=params)
+            if response.status_code == 200:
+                result = response.json()
+                download_url = result.get('downloadUrl')
+                if download_url:
+                    return await self.download_url_to_base64(download_url)
+                else:
+                    await self.logger.error(f'failed to get audio: {response.json()}')
+            else:
+                raise Exception(f'Error: {response.status_code}, {response.text}')
+
+    async def get_file_url(self, download_code: str):
+        if not await self.check_access_token():
+            await self.get_access_token()
+        url = 'https://api.dingtalk.com/v1.0/robot/messageFiles/download'
+        params = {'downloadCode': download_code, 'robotCode': self.robot_code}
+        headers = {'x-acs-dingtalk-access-token': self.access_token}
+        async with httpx.AsyncClient() as client:
+            response = await client.post(url, headers=headers, json=params)
+            if response.status_code == 200:
+                result = response.json()
+                download_url = result.get('downloadUrl')
+                if download_url:
+                    return download_url
+                else:
+                    await self.logger.error(f'failed to get file: {response.json()}')
+            else:
+                raise Exception(f'Error: {response.status_code}, {response.text}')
+
+    async def update_incoming_message(self, message):
+        """异步更新 DingTalkClient 中的 incoming_message"""
+        message_data = await self.get_message(message)
+        if message_data:
+            event = DingTalkEvent.from_payload(message_data)
+            if event:
+                await self._handle_message(event)
+
+    async def send_message(self, content: str, incoming_message, at: bool):
+        if self.markdown_card:
+            if at:
+                self.EchoTextHandler.reply_markdown(
+                    title='@' + incoming_message.sender_nick + ' ' + content,
+                    text='@' + incoming_message.sender_nick + ' ' + content,
+                    incoming_message=incoming_message,
+                )
+            else:
+                self.EchoTextHandler.reply_markdown(
+                    title=content,
+                    text=content,
+                    incoming_message=incoming_message,
+                )
+        else:
+            self.EchoTextHandler.reply_text(content, incoming_message)
+
+    async def get_incoming_message(self):
+        """获取收到的消息"""
+        return await self.EchoTextHandler.get_incoming_message()
+
+    def on_message(self, msg_type: str):
+        def decorator(func: Callable[[DingTalkEvent], None]):
+            if msg_type not in self._message_handlers:
+                self._message_handlers[msg_type] = []
+            self._message_handlers[msg_type].append(func)
+            return func
+
+        return decorator
+
+    async def _handle_message(self, event: DingTalkEvent):
+        """
+        处理消息事件。
+        """
+        msg_type = event.conversation
+        if msg_type in self._message_handlers:
+            for handler in self._message_handlers[msg_type]:
+                await handler(event)
+
+    async def get_message(self, incoming_message: dingtalk_stream.chatbot.ChatbotMessage):
+        try:
+            # print(json.dumps(incoming_message.to_dict(), indent=4, ensure_ascii=False))
+            message_data = {
+                'IncomingMessage': incoming_message,
+            }
+            if str(incoming_message.conversation_type) == '1':
+                message_data['conversation_type'] = 'FriendMessage'
+            elif str(incoming_message.conversation_type) == '2':
+                message_data['conversation_type'] = 'GroupMessage'
+
+            if incoming_message.message_type == 'richText':
+                data = incoming_message.rich_text_content.to_dict()
+                for item in data['richText']:
+                    if 'text' in item:
+                        message_data['Content'] = item['text']
+                    if incoming_message.get_image_list()[0]:
+                        message_data['Picture'] = await self.download_image(incoming_message.get_image_list()[0])
+                message_data['Type'] = 'text'
+
+            elif incoming_message.message_type == 'text':
+                message_data['Content'] = incoming_message.get_text_list()[0]
+
+                message_data['Type'] = 'text'
+            elif incoming_message.message_type == 'picture':
+                message_data['Picture'] = await self.download_image(incoming_message.get_image_list()[0])
+
+                message_data['Type'] = 'image'
+            elif incoming_message.message_type == 'audio':
+                message_data['Audio'] = await self.get_audio_url(incoming_message.to_dict()['content']['downloadCode'])
+
+                message_data['Type'] = 'audio'
+            elif incoming_message.message_type == 'file':
+                down_list = incoming_message.get_down_list()
+                if len(down_list) >= 2:
+                    message_data['File'] = await self.get_file_url(down_list[0])
+                    message_data['Name'] = down_list[1]
+                else:
+                    if self.logger:
+                        await self.logger.error(f'get_down_list() returned fewer than 2 elements: {down_list}')
+                    message_data['File'] = None
+                    message_data['Name'] = None
+                message_data['Type'] = 'file'
+
+            copy_message_data = message_data.copy()
+            del copy_message_data['IncomingMessage']
+            # print("message_data:", json.dumps(copy_message_data, indent=4, ensure_ascii=False))
+        except Exception:
+            if self.logger:
+                await self.logger.error(f'Error in get_message: {traceback.format_exc()}')
+            else:
+                traceback.print_exc()
+
+        return message_data
+
+    async def send_proactive_message_to_one(self, target_id: str, content: str):
+        if not await self.check_access_token():
+            await self.get_access_token()
+
+        url = 'https://api.dingtalk.com/v1.0/robot/oToMessages/batchSend'
+
+        headers = {
+            'x-acs-dingtalk-access-token': self.access_token,
+            'Content-Type': 'application/json',
+        }
+
+        data = {
+            'robotCode': self.robot_code,
+            'userIds': [target_id],
+            'msgKey': 'sampleText',
+            'msgParam': json.dumps({'content': content}),
+        }
+        try:
+            async with httpx.AsyncClient() as client:
+                response = await client.post(url, headers=headers, json=data)
+                if response.status_code == 200:
+                    return
+        except Exception:
+            await self.logger.error(f'failed to send proactive massage to person: {traceback.format_exc()}')
+            raise Exception(f'failed to send proactive massage to person: {traceback.format_exc()}')
+
+    async def send_proactive_message_to_group(self, target_id: str, content: str):
+        if not await self.check_access_token():
+            await self.get_access_token()
+
+        url = 'https://api.dingtalk.com/v1.0/robot/groupMessages/send'
+
+        headers = {
+            'x-acs-dingtalk-access-token': self.access_token,
+            'Content-Type': 'application/json',
+        }
+
+        data = {
+            'robotCode': self.robot_code,
+            'openConversationId': target_id,
+            'msgKey': 'sampleText',
+            'msgParam': json.dumps({'content': content}),
+        }
+        try:
+            async with httpx.AsyncClient() as client:
+                response = await client.post(url, headers=headers, json=data)
+                if response.status_code == 200:
+                    return
+        except Exception:
+            await self.logger.error(f'failed to send proactive massage to group: {traceback.format_exc()}')
+            raise Exception(f'failed to send proactive massage to group: {traceback.format_exc()}')
+
+    async def create_and_card(
+        self, temp_card_id: str, incoming_message: dingtalk_stream.ChatbotMessage, quote_origin: bool = False
+    ):
+        content_key = 'content'
+        card_data = {content_key: ''}
+
+        card_instance = dingtalk_stream.AICardReplier(self.client, incoming_message)
+        # print(card_instance)
+        # 先投放卡片: https://open.dingtalk.com/document/orgapp/create-and-deliver-cards
+        card_instance_id = await card_instance.async_create_and_deliver_card(
+            temp_card_id,
+            card_data,
+        )
+        return card_instance, card_instance_id
+
+    async def send_card_message(self, card_instance, card_instance_id: str, content: str, is_final: bool):
+        content_key = 'content'
+        try:
+            await card_instance.async_streaming(
+                card_instance_id,
+                content_key=content_key,
+                content_value=content,
+                append=False,
+                finished=is_final,
+                failed=False,
+            )
+        except Exception as e:
+            self.logger.exception(e)
+            await card_instance.async_streaming(
+                card_instance_id,
+                content_key=content_key,
+                content_value='',
+                append=False,
+                finished=is_final,
+                failed=True,
+            )
+
+    async def start(self):
+        """启动 WebSocket 连接，监听消息"""
+        await self.client.start()
--- a/libs/dingtalk_api/dingtalkevent.py
+++ b/libs/dingtalk_api/dingtalkevent.py
@@ -0,0 +1,76 @@
+from typing import Dict, Any, Optional
+import dingtalk_stream  # type: ignore
+
+
+class DingTalkEvent(dict):
+    @staticmethod
+    def from_payload(payload: Dict[str, Any]) -> Optional['DingTalkEvent']:
+        try:
+            event = DingTalkEvent(payload)
+            return event
+        except KeyError:
+            return None
+
+    @property
+    def content(self):
+        return self.get('Content', '')
+
+    @property
+    def incoming_message(self) -> Optional['dingtalk_stream.chatbot.ChatbotMessage']:
+        return self.get('IncomingMessage')
+
+    @property
+    def type(self):
+        return self.get('Type', '')
+
+    @property
+    def picture(self):
+        return self.get('Picture', '')
+
+    @property
+    def audio(self):
+        return self.get('Audio', '')
+
+    @property
+    def file(self):
+        return self.get('File', '')
+
+    @property
+    def name(self):
+        return self.get('Name', '')
+
+
+    @property
+    def conversation(self):
+        return self.get('conversation_type', '')
+
+    def __getattr__(self, key: str) -> Optional[Any]:
+        """
+        允许通过属性访问数据中的任意字段。
+
+        Args:
+            key (str): 字段名。
+
+        Returns:
+            Optional[Any]: 字段值。
+        """
+        return self.get(key)
+
+    def __setattr__(self, key: str, value: Any) -> None:
+        """
+        允许通过属性设置数据中的任意字段。
+
+        Args:
+            key (str): 字段名。
+            value (Any): 字段值。
+        """
+        self[key] = value
+
+    def __repr__(self) -> str:
+        """
+        生成事件对象的字符串表示。
+
+        Returns:
+            str: 字符串表示。
+        """
+        return f'<DingTalkEvent {super().__repr__()}>'
--- a/libs/official_account_api/init.py
+++ b/libs/official_account_api/init.py
--- a/libs/official_account_api/api.py
+++ b/libs/official_account_api/api.py
@@ -0,0 +1,337 @@
+# 微信公众号的加解密算法与企业微信一样，所以直接使用企业微信的加解密算法文件
+import time
+import traceback
+from libs.wecom_api.WXBizMsgCrypt3 import WXBizMsgCrypt
+import xml.etree.ElementTree as ET
+from quart import Quart, request
+import hashlib
+from typing import Callable
+from .oaevent import OAEvent
+
+import asyncio
+
+
+xml_template = """
+<xml>
+    <ToUserName><![CDATA[{to_user}]]></ToUserName>
+    <FromUserName><![CDATA[{from_user}]]></FromUserName>
+    <CreateTime>{create_time}</CreateTime>
+    <MsgType><![CDATA[text]]></MsgType>
+    <Content><![CDATA[{content}]]></Content>
+</xml>
+"""
+
+
+class OAClient:
+    def __init__(self, token: str, EncodingAESKey: str, AppID: str, Appsecret: str, logger: None):
+        self.token = token
+        self.aes = EncodingAESKey
+        self.appid = AppID
+        self.appsecret = Appsecret
+        self.base_url = 'https://api.weixin.qq.com'
+        self.access_token = ''
+        self.app = Quart(__name__)
+        self.app.add_url_rule(
+            '/callback/command',
+            'handle_callback',
+            self.handle_callback_request,
+            methods=['GET', 'POST'],
+        )
+        self._message_handlers = {
+            'example': [],
+        }
+        self.access_token_expiry_time = None
+        self.msg_id_map = {}
+        self.generated_content = {}
+        self.logger = logger
+
+    async def handle_callback_request(self):
+        try:
+            # 每隔100毫秒查询是否生成ai回答
+            start_time = time.time()
+            signature = request.args.get('signature', '')
+            timestamp = request.args.get('timestamp', '')
+            nonce = request.args.get('nonce', '')
+            echostr = request.args.get('echostr', '')
+            msg_signature = request.args.get('msg_signature', '')
+            if msg_signature is None:
+                await self.logger.error('msg_signature不在请求体中')
+                raise Exception('msg_signature不在请求体中')
+
+            if request.method == 'GET':
+                # 校验签名
+                check_str = ''.join(sorted([self.token, timestamp, nonce]))
+                check_signature = hashlib.sha1(check_str.encode('utf-8')).hexdigest()
+
+                if check_signature == signature:
+                    return echostr  # 验证成功返回echostr
+                else:
+                    await self.logger.error('拒绝请求')
+                    raise Exception('拒绝请求')
+            elif request.method == 'POST':
+                encryt_msg = await request.data
+                wxcpt = WXBizMsgCrypt(self.token, self.aes, self.appid)
+                ret, xml_msg = wxcpt.DecryptMsg(encryt_msg, msg_signature, timestamp, nonce)
+                xml_msg = xml_msg.decode('utf-8')
+
+                if ret != 0:
+                    await self.logger.error('消息解密失败')
+                    raise Exception('消息解密失败')
+
+                message_data = await self.get_message(xml_msg)
+                if message_data:
+                    event = OAEvent.from_payload(message_data)
+                    if event:
+                        await self._handle_message(event)
+
+                root = ET.fromstring(xml_msg)
+                from_user = root.find('FromUserName').text  # 发送者
+                to_user = root.find('ToUserName').text  # 机器人
+
+                timeout = 4.80
+                interval = 0.1
+                while True:
+                    content = self.generated_content.pop(message_data['MsgId'], None)
+                    if content:
+                        response_xml = xml_template.format(
+                            to_user=from_user,
+                            from_user=to_user,
+                            create_time=int(time.time()),
+                            content=content,
+                        )
+
+                        return response_xml
+
+                    if time.time() - start_time >= timeout:
+                        break
+
+                    await asyncio.sleep(interval)
+
+                if self.msg_id_map.get(message_data['MsgId'], 1) == 3:
+                    # response_xml = xml_template.format(
+                    #     to_user=from_user,
+                    #     from_user=to_user,
+                    #     create_time=int(time.time()),
+                    #     content = "请求失效：暂不支持公众号超过15秒的请求，如有需求，请联系 LangBot 团队。"
+                    # )
+                    print('请求失效：暂不支持公众号超过15秒的请求，如有需求，请联系 LangBot 团队。')
+                    return ''
+
+        except Exception:
+            await self.logger.error(f'handle_callback_request失败: {traceback.format_exc()}')
+            traceback.print_exc()
+
+    async def get_message(self, xml_msg: str):
+        root = ET.fromstring(xml_msg)
+
+        message_data = {
+            'ToUserName': root.find('ToUserName').text,
+            'FromUserName': root.find('FromUserName').text,
+            'CreateTime': int(root.find('CreateTime').text),
+            'MsgType': root.find('MsgType').text,
+            'Content': root.find('Content').text if root.find('Content') is not None else None,
+            'MsgId': int(root.find('MsgId').text) if root.find('MsgId') is not None else None,
+        }
+
+        return message_data
+
+    async def run_task(self, host: str, port: int, *args, **kwargs):
+        """
+        启动 Quart 应用。
+        """
+        await self.app.run_task(host=host, port=port, *args, **kwargs)
+
+    def on_message(self, msg_type: str):
+        """
+        注册消息类型处理器。
+        """
+
+        def decorator(func: Callable[[OAEvent], None]):
+            if msg_type not in self._message_handlers:
+                self._message_handlers[msg_type] = []
+            self._message_handlers[msg_type].append(func)
+            return func
+
+        return decorator
+
+    async def _handle_message(self, event: OAEvent):
+        """
+        处理消息事件。
+        """
+        message_id = event.message_id
+        if message_id in self.msg_id_map.keys():
+            self.msg_id_map[message_id] += 1
+            return
+
+        self.msg_id_map[message_id] = 1
+        msg_type = event.type
+        if msg_type in self._message_handlers:
+            for handler in self._message_handlers[msg_type]:
+                await handler(event)
+
+    async def set_message(self, msg_id: int, content: str):
+        self.generated_content[msg_id] = content
+
+
+class OAClientForLongerResponse:
+    def __init__(
+        self,
+        token: str,
+        EncodingAESKey: str,
+        AppID: str,
+        Appsecret: str,
+        LoadingMessage: str,
+        logger: None,
+    ):
+        self.token = token
+        self.aes = EncodingAESKey
+        self.appid = AppID
+        self.appsecret = Appsecret
+        self.base_url = 'https://api.weixin.qq.com'
+        self.access_token = ''
+        self.app = Quart(__name__)
+        self.app.add_url_rule(
+            '/callback/command',
+            'handle_callback',
+            self.handle_callback_request,
+            methods=['GET', 'POST'],
+        )
+        self._message_handlers = {
+            'example': [],
+        }
+        self.access_token_expiry_time = None
+        self.loading_message = LoadingMessage
+        self.msg_queue = {}
+        self.user_msg_queue = {}
+        self.logger = logger
+
+    async def handle_callback_request(self):
+        try:
+            signature = request.args.get('signature', '')
+            timestamp = request.args.get('timestamp', '')
+            nonce = request.args.get('nonce', '')
+            echostr = request.args.get('echostr', '')
+            msg_signature = request.args.get('msg_signature', '')
+
+            if msg_signature is None:
+                await self.logger.error('msg_signature不在请求体中')
+                raise Exception('msg_signature不在请求体中')
+
+            if request.method == 'GET':
+                check_str = ''.join(sorted([self.token, timestamp, nonce]))
+                check_signature = hashlib.sha1(check_str.encode('utf-8')).hexdigest()
+                return echostr if check_signature == signature else '拒绝请求'
+
+            elif request.method == 'POST':
+                encryt_msg = await request.data
+                wxcpt = WXBizMsgCrypt(self.token, self.aes, self.appid)
+                ret, xml_msg = wxcpt.DecryptMsg(encryt_msg, msg_signature, timestamp, nonce)
+                xml_msg = xml_msg.decode('utf-8')
+
+                if ret != 0:
+                    await self.logger.error('消息解密失败')
+                    raise Exception('消息解密失败')
+
+                # 解析 XML
+                root = ET.fromstring(xml_msg)
+                from_user = root.find('FromUserName').text
+                to_user = root.find('ToUserName').text
+
+                if self.msg_queue.get(from_user) and self.msg_queue[from_user][0]['content']:
+                    queue_top = self.msg_queue[from_user].pop(0)
+                    queue_content = queue_top['content']
+
+                    # 弹出用户消息
+                    if self.user_msg_queue.get(from_user) and self.user_msg_queue[from_user]:
+                        self.user_msg_queue[from_user].pop(0)
+
+                    response_xml = xml_template.format(
+                        to_user=from_user,
+                        from_user=to_user,
+                        create_time=int(time.time()),
+                        content=queue_content,
+                    )
+                    return response_xml
+
+                else:
+                    response_xml = xml_template.format(
+                        to_user=from_user,
+                        from_user=to_user,
+                        create_time=int(time.time()),
+                        content=self.loading_message,
+                    )
+
+                    if self.user_msg_queue.get(from_user) and self.user_msg_queue[from_user][0]['content']:
+                        return response_xml
+                    else:
+                        message_data = await self.get_message(xml_msg)
+
+                        if message_data:
+                            event = OAEvent.from_payload(message_data)
+                            if event:
+                                self.user_msg_queue.setdefault(from_user, []).append(
+                                    {
+                                        'content': event.message,
+                                    }
+                                )
+                                await self._handle_message(event)
+
+                        return response_xml
+
+        except Exception:
+            await self.logger.error(f'handle_callback_request失败: {traceback.format_exc()}')
+            traceback.print_exc()
+
+    async def get_message(self, xml_msg: str):
+        root = ET.fromstring(xml_msg)
+
+        message_data = {
+            'ToUserName': root.find('ToUserName').text,
+            'FromUserName': root.find('FromUserName').text,
+            'CreateTime': int(root.find('CreateTime').text),
+            'MsgType': root.find('MsgType').text,
+            'Content': root.find('Content').text if root.find('Content') is not None else None,
+            'MsgId': int(root.find('MsgId').text) if root.find('MsgId') is not None else None,
+        }
+
+        return message_data
+
+    async def run_task(self, host: str, port: int, *args, **kwargs):
+        """
+        启动 Quart 应用。
+        """
+        await self.app.run_task(host=host, port=port, *args, **kwargs)
+
+    def on_message(self, msg_type: str):
+        """
+        注册消息类型处理器。
+        """
+
+        def decorator(func: Callable[[OAEvent], None]):
+            if msg_type not in self._message_handlers:
+                self._message_handlers[msg_type] = []
+            self._message_handlers[msg_type].append(func)
+            return func
+
+        return decorator
+
+    async def _handle_message(self, event: OAEvent):
+        """
+        处理消息事件。
+        """
+
+        msg_type = event.type
+        if msg_type in self._message_handlers:
+            for handler in self._message_handlers[msg_type]:
+                await handler(event)
+
+    async def set_message(self, from_user: int, message_id: int, content: str):
+        if from_user not in self.msg_queue:
+            self.msg_queue[from_user] = []
+
+        self.msg_queue[from_user].append(
+            {
+                'msg_id': message_id,
+                'content': content,
+            }
+        )
--- a/libs/official_account_api/oaevent.py
+++ b/libs/official_account_api/oaevent.py
@@ -0,0 +1,166 @@
+from typing import Dict, Any, Optional
+
+
+class OAEvent(dict):
+    """
+    封装从微信公众号收到的事件数据对象（字典），提供属性以获取其中的字段。
+
+    除 `type` 和 `detail_type` 属性对于任何事件都有效外，其它属性是否存在（若不存在则返回 `None`）依事件类型不同而不同。
+    """
+
+    @staticmethod
+    def from_payload(payload: Dict[str, Any]) -> Optional['OAEvent']:
+        """
+        从微信公众号事件数据构造 `WecomEvent` 对象。
+
+        Args:
+            payload (Dict[str, Any]): 解密后的微信事件数据。
+
+        Returns:
+            Optional[OAEvent]: 如果事件数据合法，则返回 OAEvent 对象；否则返回 None。
+        """
+        try:
+            event = OAEvent(payload)
+            _ = event.type, event.detail_type  # 确保必须字段存在
+            return event
+        except KeyError:
+            return None
+
+    @property
+    def type(self) -> str:
+        """
+        事件类型，例如 "message"、"event"、"text" 等。
+
+        Returns:
+            str: 事件类型。
+        """
+        return self.get('MsgType', '')
+
+    @property
+    def picurl(self) -> str:
+        """
+        图片链接
+        """
+        return self.get('PicUrl', '')
+
+    @property
+    def detail_type(self) -> str:
+        """
+        事件详细类型，依 `type` 的不同而不同。例如：
+        - 消息事件: "text", "image", "voice", 等
+        - 事件通知: "subscribe", "unsubscribe", "click", 等
+
+        Returns:
+            str: 事件详细类型。
+        """
+        if self.type == 'event':
+            return self.get('Event', '')
+        return self.type
+
+    @property
+    def name(self) -> str:
+        """
+        事件名，对于消息事件是 `type.detail_type`，对于其他事件是 `event_type`。
+
+        Returns:
+            str: 事件名。
+        """
+        return f'{self.type}.{self.detail_type}'
+
+    @property
+    def user_id(self) -> Optional[str]:
+        """
+        发送方账号
+        """
+        return self.get('FromUserName')
+
+    @property
+    def receiver_id(self) -> Optional[str]:
+        """
+        接收者 ID，例如机器人自身的公众号微信 ID。
+
+        Returns:
+            Optional[str]: 接收者 ID。
+        """
+        return self.get('ToUserName')
+
+    @property
+    def message_id(self) -> Optional[str]:
+        """
+        消息 ID，仅在消息类型事件中存在。
+
+        Returns:
+            Optional[str]: 消息 ID。
+        """
+        return self.get('MsgId')
+
+    @property
+    def message(self) -> Optional[str]:
+        """
+        消息内容，仅在消息类型事件中存在。
+
+        Returns:
+            Optional[str]: 消息内容。
+        """
+        return self.get('Content')
+
+    @property
+    def media_id(self) -> Optional[str]:
+        """
+        媒体文件 ID，仅在图片、语音等消息类型中存在。
+
+        Returns:
+            Optional[str]: 媒体文件 ID。
+        """
+        return self.get('MediaId')
+
+    @property
+    def timestamp(self) -> Optional[int]:
+        """
+        事件发生的时间戳。
+
+        Returns:
+            Optional[int]: 时间戳。
+        """
+        return self.get('CreateTime')
+
+    @property
+    def event_key(self) -> Optional[str]:
+        """
+        事件的 Key 值，例如点击菜单时的 `EventKey`。
+
+        Returns:
+            Optional[str]: 事件 Key。
+        """
+        return self.get('EventKey')
+
+    def __getattr__(self, key: str) -> Optional[Any]:
+        """
+        允许通过属性访问数据中的任意字段。
+
+        Args:
+            key (str): 字段名。
+
+        Returns:
+            Optional[Any]: 字段值。
+        """
+        return self.get(key)
+
+    def __setattr__(self, key: str, value: Any) -> None:
+        """
+        允许通过属性设置数据中的任意字段。
+
+        Args:
+            key (str): 字段名。
+            value (Any): 字段值。
+        """
+        self[key] = value
+
+    def __repr__(self) -> str:
+        """
+        生成事件对象的字符串表示。
+
+        Returns:
+            str: 字符串表示。
+        """
+        return f'<WecomEvent {super().__repr__()}>'
--- a/pkg/plugin/installers/init.py
+++ b/pkg/plugin/installers/init.py
--- a/libs/qq_official_api/api.py
+++ b/libs/qq_official_api/api.py
@@ -0,0 +1,263 @@
+import time
+from quart import request
+import httpx
+from quart import Quart
+from typing import Callable, Dict, Any
+import langbot_plugin.api.entities.builtin.platform.events as platform_events
+from .qqofficialevent import QQOfficialEvent
+import json
+import traceback
+from cryptography.hazmat.primitives.asymmetric import ed25519
+
+
+def handle_validation(body: dict, bot_secret: str):
+    # bot正确的secert是32位的，此处仅为了适配演示demo
+    while len(bot_secret) < 32:
+        bot_secret = bot_secret * 2
+    bot_secret = bot_secret[:32]
+    # 实际使用场景中以上三行内容可清除
+
+    seed_bytes = bot_secret.encode()
+
+    signing_key = ed25519.Ed25519PrivateKey.from_private_bytes(seed_bytes)
+
+    msg = body['d']['event_ts'] + body['d']['plain_token']
+    msg_bytes = msg.encode()
+
+    signature = signing_key.sign(msg_bytes)
+
+    signature_hex = signature.hex()
+
+    response = {'plain_token': body['d']['plain_token'], 'signature': signature_hex}
+
+    return response
+
+
+class QQOfficialClient:
+    def __init__(self, secret: str, token: str, app_id: str, logger: None):
+        self.app = Quart(__name__)
+        self.app.add_url_rule(
+            '/callback/command',
+            'handle_callback',
+            self.handle_callback_request,
+            methods=['GET', 'POST'],
+        )
+        self.secret = secret
+        self.token = token
+        self.app_id = app_id
+        self._message_handlers = {}
+        self.base_url = 'https://api.sgroup.qq.com'
+        self.access_token = ''
+        self.access_token_expiry_time = None
+        self.logger = logger
+
+    async def check_access_token(self):
+        """检查access_token是否存在"""
+        if not self.access_token or await self.is_token_expired():
+            return False
+        return bool(self.access_token and self.access_token.strip())
+
+    async def get_access_token(self):
+        """获取access_token"""
+        url = 'https://bots.qq.com/app/getAppAccessToken'
+        async with httpx.AsyncClient() as client:
+            params = {
+                'appId': self.app_id,
+                'clientSecret': self.secret,
+            }
+            headers = {
+                'content-type': 'application/json',
+            }
+            try:
+                response = await client.post(url, json=params, headers=headers)
+                if response.status_code == 200:
+                    response_data = response.json()
+                access_token = response_data.get('access_token')
+                expires_in = int(response_data.get('expires_in', 7200))
+                self.access_token_expiry_time = time.time() + expires_in - 60
+                if access_token:
+                    self.access_token = access_token
+            except Exception as e:
+                await self.logger.error(f'获取access_token失败: {response_data}')
+                raise Exception(f'获取access_token失败: {e}')
+
+    async def handle_callback_request(self):
+        """处理回调请求"""
+        try:
+            # 读取请求数据
+            body = await request.get_data()
+            payload = json.loads(body)
+
+            # 验证是否为回调验证请求
+            if payload.get('op') == 13:
+                # 生成签名
+                response = handle_validation(payload, self.secret)
+
+                return response
+
+            if payload.get('op') == 0:
+                message_data = await self.get_message(payload)
+                if message_data:
+                    event = QQOfficialEvent.from_payload(message_data)
+                    await self._handle_message(event)
+
+            return {'code': 0, 'message': 'success'}
+
+        except Exception as e:
+            await self.logger.error(f'Error in handle_callback_request: {traceback.format_exc()}')
+            return {'error': str(e)}, 400
+
+    async def run_task(self, host: str, port: int, *args, **kwargs):
+        """启动 Quart 应用"""
+        await self.app.run_task(host=host, port=port, *args, **kwargs)
+
+    def on_message(self, msg_type: str):
+        """注册消息类型处理器"""
+
+        def decorator(func: Callable[[platform_events.Event], None]):
+            if msg_type not in self._message_handlers:
+                self._message_handlers[msg_type] = []
+            self._message_handlers[msg_type].append(func)
+            return func
+
+        return decorator
+
+    async def _handle_message(self, event: QQOfficialEvent):
+        """处理消息事件"""
+        msg_type = event.t
+        if msg_type in self._message_handlers:
+            for handler in self._message_handlers[msg_type]:
+                await handler(event)
+
+    async def get_message(self, msg: dict) -> Dict[str, Any]:
+        """获取消息"""
+        message_data = {
+            't': msg.get('t', {}),
+            'user_openid': msg.get('d', {}).get('author', {}).get('user_openid', {}),
+            'timestamp': msg.get('d', {}).get('timestamp', {}),
+            'd_author_id': msg.get('d', {}).get('author', {}).get('id', {}),
+            'content': msg.get('d', {}).get('content', {}),
+            'd_id': msg.get('d', {}).get('id', {}),
+            'id': msg.get('id', {}),
+            'channel_id': msg.get('d', {}).get('channel_id', {}),
+            'username': msg.get('d', {}).get('author', {}).get('username', {}),
+            'guild_id': msg.get('d', {}).get('guild_id', {}),
+            'member_openid': msg.get('d', {}).get('author', {}).get('openid', {}),
+            'group_openid': msg.get('d', {}).get('group_openid', {}),
+        }
+        attachments = msg.get('d', {}).get('attachments', [])
+        image_attachments = [attachment['url'] for attachment in attachments if await self.is_image(attachment)]
+        image_attachments_type = [
+            attachment['content_type'] for attachment in attachments if await self.is_image(attachment)
+        ]
+        if image_attachments:
+            message_data['image_attachments'] = image_attachments[0]
+            message_data['content_type'] = image_attachments_type[0]
+        else:
+            message_data['image_attachments'] = None
+
+        return message_data
+
+    async def is_image(self, attachment: dict) -> bool:
+        """判断是否为图片附件"""
+        content_type = attachment.get('content_type', '')
+        return content_type.startswith('image/')
+
+    async def send_private_text_msg(self, user_openid: str, content: str, msg_id: str):
+        """发送私聊消息"""
+        if not await self.check_access_token():
+            await self.get_access_token()
+
+        url = self.base_url + '/v2/users/' + user_openid + '/messages'
+        async with httpx.AsyncClient() as client:
+            headers = {
+                'Authorization': f'QQBot {self.access_token}',
+                'Content-Type': 'application/json',
+            }
+            data = {
+                'content': content,
+                'msg_type': 0,
+                'msg_id': msg_id,
+            }
+            response = await client.post(url, headers=headers, json=data)
+            response_data = response.json()
+            if response.status_code == 200:
+                return
+            else:
+                await self.logger.error(f'发送私聊消息失败: {response_data}')
+                raise ValueError(response)
+
+    async def send_group_text_msg(self, group_openid: str, content: str, msg_id: str):
+        """发送群聊消息"""
+        if not await self.check_access_token():
+            await self.get_access_token()
+
+        url = self.base_url + '/v2/groups/' + group_openid + '/messages'
+        async with httpx.AsyncClient() as client:
+            headers = {
+                'Authorization': f'QQBot {self.access_token}',
+                'Content-Type': 'application/json',
+            }
+            data = {
+                'content': content,
+                'msg_type': 0,
+                'msg_id': msg_id,
+            }
+            response = await client.post(url, headers=headers, json=data)
+            if response.status_code == 200:
+                return
+            else:
+                await self.logger.error(f'发送群聊消息失败:{response.json()}')
+                raise Exception(response.read().decode())
+
+    async def send_channle_group_text_msg(self, channel_id: str, content: str, msg_id: str):
+        """发送频道群聊消息"""
+        if not await self.check_access_token():
+            await self.get_access_token()
+
+        url = self.base_url + '/channels/' + channel_id + '/messages'
+        async with httpx.AsyncClient() as client:
+            headers = {
+                'Authorization': f'QQBot {self.access_token}',
+                'Content-Type': 'application/json',
+            }
+            params = {
+                'content': content,
+                'msg_type': 0,
+                'msg_id': msg_id,
+            }
+            response = await client.post(url, headers=headers, json=params)
+            if response.status_code == 200:
+                return True
+            else:
+                await self.logger.error(f'发送频道群聊消息失败: {response.json()}')
+                raise Exception(response)
+
+    async def send_channle_private_text_msg(self, guild_id: str, content: str, msg_id: str):
+        """发送频道私聊消息"""
+        if not await self.check_access_token():
+            await self.get_access_token()
+
+        url = self.base_url + '/dms/' + guild_id + '/messages'
+        async with httpx.AsyncClient() as client:
+            headers = {
+                'Authorization': f'QQBot {self.access_token}',
+                'Content-Type': 'application/json',
+            }
+            params = {
+                'content': content,
+                'msg_type': 0,
+                'msg_id': msg_id,
+            }
+            response = await client.post(url, headers=headers, json=params)
+            if response.status_code == 200:
+                return True
+            else:
+                await self.logger.error(f'发送频道私聊消息失败: {response.json()}')
+                raise Exception(response)
+
+    async def is_token_expired(self):
+        """检查token是否过期"""
+        if self.access_token_expiry_time is None:
+            return True
+        return time.time() > self.access_token_expiry_time
--- a/libs/qq_official_api/qqofficialevent.py
+++ b/libs/qq_official_api/qqofficialevent.py
@@ -0,0 +1,112 @@
+from typing import Dict, Any, Optional
+
+
+class QQOfficialEvent(dict):
+    @staticmethod
+    def from_payload(payload: Dict[str, Any]) -> Optional['QQOfficialEvent']:
+        try:
+            event = QQOfficialEvent(payload)
+            return event
+        except KeyError:
+            return None
+
+    @property
+    def t(self) -> str:
+        """
+        事件类型
+        """
+        return self.get('t', '')
+
+    @property
+    def user_openid(self) -> str:
+        """
+        用户openid
+        """
+        return self.get('user_openid', {})
+
+    @property
+    def timestamp(self) -> str:
+        """
+        时间戳
+        """
+        return self.get('timestamp', {})
+
+    @property
+    def d_author_id(self) -> str:
+        """
+        作者id
+        """
+        return self.get('id', {})
+
+    @property
+    def content(self) -> str:
+        """
+        内容
+        """
+        return self.get('content', '')
+
+    @property
+    def d_id(self) -> str:
+        """
+        d_id
+        """
+        return self.get('d_id', {})
+
+    @property
+    def id(self) -> str:
+        """
+        消息id，msg_id
+        """
+        return self.get('id', {})
+
+    @property
+    def channel_id(self) -> str:
+        """
+        频道id
+        """
+        return self.get('channel_id', {})
+
+    @property
+    def username(self) -> str:
+        """
+        用户名
+        """
+        return self.get('username', {})
+
+    @property
+    def guild_id(self) -> str:
+        """
+        频道id
+        """
+        return self.get('guild_id', {})
+
+    @property
+    def member_openid(self) -> str:
+        """
+        成员openid
+        """
+        return self.get('openid', {})
+
+    @property
+    def attachments(self) -> str:
+        """
+        附件url
+        """
+        url = self.get('image_attachments', '')
+        if url and not url.startswith('https://'):
+            url = 'https://' + url
+        return url
+
+    @property
+    def group_openid(self) -> str:
+        """
+        群组id
+        """
+        return self.get('group_openid', {})
+
+    @property
+    def content_type(self) -> str:
+        """
+        文件类型
+        """
+        return self.get('content_type', '')
--- a/pkg/plugin/loaders/init.py
+++ b/pkg/plugin/loaders/init.py
--- a/libs/slack_api/api.py
+++ b/libs/slack_api/api.py
@@ -0,0 +1,102 @@
+import json
+import traceback
+from quart import Quart, jsonify, request
+from slack_sdk.web.async_client import AsyncWebClient
+from .slackevent import SlackEvent
+from typing import Callable
+import langbot_plugin.api.entities.builtin.platform.events as platform_events
+
+
+class SlackClient:
+    def __init__(self, bot_token: str, signing_secret: str, logger: None):
+        self.bot_token = bot_token
+        self.signing_secret = signing_secret
+        self.app = Quart(__name__)
+        self.client = AsyncWebClient(self.bot_token)
+        self.app.add_url_rule(
+            '/callback/command', 'handle_callback', self.handle_callback_request, methods=['GET', 'POST']
+        )
+        self._message_handlers = {
+            'example': [],
+        }
+        self.bot_user_id = None  # 避免机器人回复自己的消息
+        self.logger = logger
+
+    async def handle_callback_request(self):
+        try:
+            body = await request.get_data()
+            data = json.loads(body)
+            if 'type' in data:
+                if data['type'] == 'url_verification':
+                    return data['challenge']
+
+            bot_user_id = data.get('event', {}).get('bot_id', '')
+
+            if self.bot_user_id and bot_user_id == self.bot_user_id:
+                return jsonify({'status': 'ok'})
+
+            # 处理私信
+            if data and data.get('event', {}).get('channel_type') in ['im']:
+                event = SlackEvent.from_payload(data)
+                await self._handle_message(event)
+                return jsonify({'status': 'ok'})
+
+            # 处理群聊
+            if data.get('event', {}).get('type') == 'app_mention':
+                data.setdefault('event', {})['channel_type'] = 'channel'
+                event = SlackEvent.from_payload(data)
+                await self._handle_message(event)
+                return jsonify({'status': 'ok'})
+
+            return jsonify({'status': 'ok'})
+
+        except Exception as e:
+            await self.logger.error(f'Error in handle_callback_request: {traceback.format_exc()}')
+            raise (e)
+
+    async def _handle_message(self, event: SlackEvent):
+        """
+        处理消息事件。
+        """
+        msg_type = event.type
+        if msg_type in self._message_handlers:
+            for handler in self._message_handlers[msg_type]:
+                await handler(event)
+
+    def on_message(self, msg_type: str):
+        """注册消息类型处理器"""
+
+        def decorator(func: Callable[[platform_events.Event], None]):
+            if msg_type not in self._message_handlers:
+                self._message_handlers[msg_type] = []
+            self._message_handlers[msg_type].append(func)
+            return func
+
+        return decorator
+
+    async def send_message_to_channel(self, text: str, channel_id: str):
+        try:
+            response = await self.client.chat_postMessage(channel=channel_id, text=text)
+            if self.bot_user_id is None and response.get('ok'):
+                self.bot_user_id = response['message']['bot_id']
+            return
+        except Exception as e:
+            await self.logger.error(f'Error in send_message: {e}')
+            raise e
+
+    async def send_message_to_one(self, text: str, user_id: str):
+        try:
+            response = await self.client.chat_postMessage(channel='@' + user_id, text=text)
+            if self.bot_user_id is None and response.get('ok'):
+                self.bot_user_id = response['message']['bot_id']
+
+            return
+        except Exception as e:
+            await self.logger.error(f'Error in send_message: {traceback.format_exc()}')
+            raise e
+
+    async def run_task(self, host: str, port: int, *args, **kwargs):
+        """
+        启动 Quart 应用。
+        """
+        await self.app.run_task(host=host, port=port, *args, **kwargs)
--- a/libs/slack_api/slackevent.py
+++ b/libs/slack_api/slackevent.py
@@ -0,0 +1,87 @@
+from typing import Dict, Any, Optional
+
+
+class SlackEvent(dict):
+    @staticmethod
+    def from_payload(payload: Dict[str, Any]) -> Optional['SlackEvent']:
+        try:
+            event = SlackEvent(payload)
+            return event
+        except KeyError:
+            return None
+
+    @property
+    def text(self) -> str:
+        if self.get('event', {}).get('channel_type') == 'im':
+            blocks = self.get('event', {}).get('blocks', [])
+            if not blocks:
+                return ''
+
+            elements = blocks[0].get('elements', [])
+            if not elements:
+                return ''
+
+            elements = elements[0].get('elements', [])
+            text = ''
+
+            for el in elements:
+                if el.get('type') == 'text':
+                    text += el.get('text', '')
+                elif el.get('type') == 'link':
+                    text += el.get('url', '')
+
+            return text
+
+        if self.get('event', {}).get('channel_type') == 'channel':
+            message_text = ''
+            for block in self.get('event', {}).get('blocks', []):
+                if block.get('type') == 'rich_text':
+                    for element in block.get('elements', []):
+                        if element.get('type') == 'rich_text_section':
+                            parts = []
+                            for el in element.get('elements', []):
+                                if el.get('type') == 'text':
+                                    parts.append(el['text'])
+                                elif el.get('type') == 'link':
+                                    parts.append(el['url'])
+                            message_text = ''.join(parts)
+
+            return message_text
+
+    @property
+    def user_id(self) -> Optional[str]:
+        return self.get('event', {}).get('user', '')
+
+    @property
+    def channel_id(self) -> Optional[str]:
+        return self.get('event', {}).get('channel', '')
+
+    @property
+    def type(self) -> str:
+        """message对应私聊，app_mention对应频道at"""
+        return self.get('event', {}).get('channel_type', '')
+
+    @property
+    def message_id(self) -> str:
+        return self.get('event_id', '')
+
+    @property
+    def pic_url(self) -> str:
+        """提取 Slack 事件中的图片 URL"""
+        files = self.get('event', {}).get('files', [])
+        if files:
+            return files[0].get('url_private', '')
+        return None
+
+    @property
+    def sender_name(self) -> str:
+        return self.get('event', {}).get('user', '')
+
+    def __getattr__(self, key: str) -> Optional[Any]:
+        return self.get(key)
+
+    def __setattr__(self, key: str, value: Any) -> None:
+        self[key] = value
+
+    def __repr__(self) -> str:
+        return f'<SlackEvent {super().__repr__()}>'
--- a/libs/wechatpad_api/LICENSE
+++ b/libs/wechatpad_api/LICENSE
@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.
--- a/libs/wechatpad_api/README.md
+++ b/libs/wechatpad_api/README.md
@@ -0,0 +1,38 @@
+# wechatpad-python
+
+
+## 此项目时准备对接wechatpadpro 的pythonsdk
+
+## 未完工接口
+
+* 关于好友的接口
+* 关于群管理的接口
+* 关于下载的接口
+* 关于用户的部分接口
+* 关于消息的部分接口
+* 关于支付的
+* 关于朋友圈的
+* 关于标签的
+* 关于收藏的
+
+* 暂时只写了一部分接口
+
+
+## 已完工接口
+
+1. 获取普通token
+2. 登录二维码（只是返回数据，暂时还未打印二维码）
+3. 获取登录状态
+4. 唤醒登录
+5. 退出登录
+6. 获取用户信息
+7. 获取用户二维码
+8. 上传用户头像
+9. 获取设备信息
+10. 发送文本消息
+11. 发送图片消息
+12. 发送语音消息
+13. 发送app消息
+14. 发送emoji消息
+15. 发送名片消息
+16. 撤回消息
--- a/libs/wechatpad_api/init.py
+++ b/libs/wechatpad_api/init.py
@@ -0,0 +1 @@
+from .client import WeChatPadClient as WeChatPadClient
--- a/libs/wechatpad_api/api/init.py
+++ b/libs/wechatpad_api/api/init.py
--- a/libs/wechatpad_api/api/chatroom.py
+++ b/libs/wechatpad_api/api/chatroom.py
@@ -0,0 +1,12 @@
+from libs.wechatpad_api.util.http_util import post_json
+
+
+class ChatRoomApi:
+    def __init__(self, base_url, token):
+        self.base_url = base_url
+        self.token = token
+
+    def get_chatroom_member_detail(self, chatroom_name):
+        params = {'ChatRoomName': chatroom_name}
+        url = self.base_url + '/group/GetChatroomMemberDetail'
+        return post_json(url, token=self.token, data=params)
--- a/libs/wechatpad_api/api/downloadpai.py
+++ b/libs/wechatpad_api/api/downloadpai.py
@@ -0,0 +1,30 @@
+from libs.wechatpad_api.util.http_util import post_json
+import httpx
+import base64
+
+
+class DownloadApi:
+    def __init__(self, base_url, token):
+        self.base_url = base_url
+        self.token = token
+
+    def send_download(self, aeskey, file_type, file_url):
+        json_data = {'AesKey': aeskey, 'FileType': file_type, 'FileURL': file_url}
+        url = self.base_url + '/message/SendCdnDownload'
+        return post_json(url, token=self.token, data=json_data)
+
+    def get_msg_voice(self, buf_id, length, new_msgid):
+        json_data = {'Bufid': buf_id, 'Length': length, 'NewMsgId': new_msgid, 'ToUserName': ''}
+        url = self.base_url + '/message/GetMsgVoice'
+        return post_json(url, token=self.token, data=json_data)
+
+    async def download_url_to_base64(self, download_url):
+        async with httpx.AsyncClient() as client:
+            response = await client.get(download_url)
+
+            if response.status_code == 200:
+                file_bytes = response.content
+                base64_str = base64.b64encode(file_bytes).decode('utf-8')  # 返回字符串格式
+                return base64_str
+            else:
+                raise Exception('获取文件失败')
--- a/libs/wechatpad_api/api/friend.py
+++ b/libs/wechatpad_api/api/friend.py
@@ -0,0 +1,6 @@
+class FriendApi:
+    """联系人API类，处理所有与联系人相关的操作"""
+
+    def __init__(self, base_url: str, token: str):
+        self.base_url = base_url
+        self.token = token
--- a/libs/wechatpad_api/api/login.py
+++ b/libs/wechatpad_api/api/login.py
@@ -0,0 +1,82 @@
+from libs.wechatpad_api.util.http_util import post_json, get_json
+
+
+class LoginApi:
+    def __init__(self, base_url: str, token: str = None, admin_key: str = None):
+        """
+
+        Args:
+            base_url: 原始路径
+            token: token
+            admin_key: 管理员key
+        """
+        self.base_url = base_url
+        self.token = token
+        # self.admin_key = admin_key
+
+    def get_token(self, admin_key, day: int = 365):
+        # 获取普通token
+        url = f'{self.base_url}/admin/GenAuthKey1'
+        json_data = {'Count': 1, 'Days': day}
+        return post_json(base_url=url, token=admin_key, data=json_data)
+
+    def get_login_qr(self, Proxy: str = ''):
+        """
+
+        Args:
+            Proxy:异地使用时代理
+
+        Returns:json数据
+
+        """
+        """
+        
+        {
+  "Code": 200,
+  "Data": {
+    "Key": "3141312",
+    "QrCodeUrl": "https://1231x/g6bMlv2dX8zwNbqE6-Zs",
+    "Txt": "建议返回data=之后内容自定义生成二维码",
+    "baseResp": {
+      "ret": 0,
+      "errMsg": {}
+    }
+  },
+  "Text": ""
+}
+        
+        """
+        # 获取登录二维码
+        url = f'{self.base_url}/login/GetLoginQrCodeNew'
+        check = False
+        if Proxy != '':
+            check = True
+        json_data = {'Check': check, 'Proxy': Proxy}
+        return post_json(base_url=url, token=self.token, data=json_data)
+
+    def get_login_status(self):
+        # 获取登录状态
+        url = f'{self.base_url}/login/GetLoginStatus'
+        return get_json(base_url=url, token=self.token)
+
+    def logout(self):
+        # 退出登录
+        url = f'{self.base_url}/login/LogOut'
+        return post_json(base_url=url, token=self.token)
+
+    def wake_up_login(self, Proxy: str = ''):
+        # 唤醒登录
+        url = f'{self.base_url}/login/WakeUpLogin'
+        check = False
+        if Proxy != '':
+            check = True
+        json_data = {'Check': check, 'Proxy': ''}
+
+        return post_json(base_url=url, token=self.token, data=json_data)
+
+    def login(self, admin_key):
+        login_status = self.get_login_status()
+        if login_status['Code'] == 300 and login_status['Text'] == '你已退出微信':
+            print('token已经失效，重新获取')
+            token_data = self.get_token(admin_key)
+            self.token = token_data['Data'][0]
--- a/libs/wechatpad_api/api/message.py
+++ b/libs/wechatpad_api/api/message.py
@@ -0,0 +1,80 @@
+from libs.wechatpad_api.util.http_util import post_json
+
+
+class MessageApi:
+    def __init__(self, base_url, token):
+        self.base_url = base_url
+        self.token = token
+
+    def post_text(self, to_wxid, content, ats: list = []):
+        """
+
+        Args:
+            app_id: 微信id
+            to_wxid: 发送方的微信id
+            content: 内容
+            ats: at
+
+        Returns:
+
+        """
+        url = self.base_url + '/message/SendTextMessage'
+        """发送文字消息"""
+        json_data = {
+            'MsgItem': [
+                {'AtWxIDList': ats, 'ImageContent': '', 'MsgType': 0, 'TextContent': content, 'ToUserName': to_wxid}
+            ]
+        }
+        return post_json(base_url=url, token=self.token, data=json_data)
+
+    def post_image(self, to_wxid, img_url, ats: list = []):
+        """发送图片消息"""
+        # 这里好像可以尝试发送多个暂时未测试
+        json_data = {
+            'MsgItem': [
+                {'AtWxIDList': ats, 'ImageContent': img_url, 'MsgType': 0, 'TextContent': '', 'ToUserName': to_wxid}
+            ]
+        }
+        url = self.base_url + '/message/SendImageMessage'
+        return post_json(base_url=url, token=self.token, data=json_data)
+
+    def post_voice(self, to_wxid, voice_data, voice_forma, voice_duration):
+        """发送语音消息"""
+        json_data = {
+            'ToUserName': to_wxid,
+            'VoiceData': voice_data,
+            'VoiceFormat': voice_forma,
+            'VoiceSecond': voice_duration,
+        }
+        url = self.base_url + '/message/SendVoice'
+        return post_json(base_url=url, token=self.token, data=json_data)
+
+    def post_name_card(self, alias, to_wxid, nick_name, name_card_wxid, flag):
+        """发送名片消息"""
+        param = {
+            'CardAlias': alias,
+            'CardFlag': flag,
+            'CardNickName': nick_name,
+            'CardWxId': name_card_wxid,
+            'ToUserName': to_wxid,
+        }
+        url = f'{self.base_url}/message/ShareCardMessage'
+        return post_json(base_url=url, token=self.token, data=param)
+
+    def post_emoji(self, to_wxid, emoji_md5, emoji_size: int = 0):
+        """发送emoji消息"""
+        json_data = {'EmojiList': [{'EmojiMd5': emoji_md5, 'EmojiSize': emoji_size, 'ToUserName': to_wxid}]}
+        url = f'{self.base_url}/message/SendEmojiMessage'
+        return post_json(base_url=url, token=self.token, data=json_data)
+
+    def post_app_msg(self, to_wxid, xml_data, contenttype: int = 0):
+        """发送appmsg消息"""
+        json_data = {'AppList': [{'ContentType': contenttype, 'ContentXML': xml_data, 'ToUserName': to_wxid}]}
+        url = f'{self.base_url}/message/SendAppMessage'
+        return post_json(base_url=url, token=self.token, data=json_data)
+
+    def revoke_msg(self, to_wxid, msg_id, new_msg_id, create_time):
+        """撤回消息"""
+        param = {'ClientMsgId': msg_id, 'CreateTime': create_time, 'NewMsgId': new_msg_id, 'ToUserName': to_wxid}
+        url = f'{self.base_url}/message/RevokeMsg'
+        return post_json(base_url=url, token=self.token, data=param)
--- a/libs/wechatpad_api/api/user.py
+++ b/libs/wechatpad_api/api/user.py
@@ -0,0 +1,30 @@
+from libs.wechatpad_api.util.http_util import post_json, async_request, get_json
+
+
+class UserApi:
+    def __init__(self, base_url, token):
+        self.base_url = base_url
+        self.token = token
+
+    def get_profile(self):
+        """获取个人资料"""
+        url = f'{self.base_url}/user/GetProfile'
+
+        return get_json(base_url=url, token=self.token)
+
+    def get_qr_code(self, recover: bool = True, style: int = 8):
+        """获取自己的二维码"""
+        param = {'Recover': recover, 'Style': style}
+        url = f'{self.base_url}/user/GetMyQRCode'
+        return post_json(base_url=url, token=self.token, data=param)
+
+    def get_safety_info(self):
+        """获取设备记录"""
+        url = f'{self.base_url}/equipment/GetSafetyInfo'
+        return post_json(base_url=url, token=self.token)
+
+    async def update_head_img(self, head_img_base64):
+        """修改头像"""
+        param = {'Base64': head_img_base64}
+        url = f'{self.base_url}/user/UploadHeadImage'
+        return await async_request(base_url=url, token_key=self.token, json=param)
--- a/libs/wechatpad_api/client.py
+++ b/libs/wechatpad_api/client.py
@@ -0,0 +1,92 @@
+from libs.wechatpad_api.api.login import LoginApi
+from libs.wechatpad_api.api.friend import FriendApi
+from libs.wechatpad_api.api.message import MessageApi
+from libs.wechatpad_api.api.user import UserApi
+from libs.wechatpad_api.api.downloadpai import DownloadApi
+from libs.wechatpad_api.api.chatroom import ChatRoomApi
+
+
+class WeChatPadClient:
+    def __init__(self, base_url, token, logger=None):
+        self._login_api = LoginApi(base_url, token)
+        self._friend_api = FriendApi(base_url, token)
+        self._message_api = MessageApi(base_url, token)
+        self._user_api = UserApi(base_url, token)
+        self._download_api = DownloadApi(base_url, token)
+        self._chatroom_api = ChatRoomApi(base_url, token)
+        self.logger = logger
+
+    def get_token(self, admin_key, day: int):
+        """获取token"""
+        return self._login_api.get_token(admin_key, day)
+
+    def get_login_qr(self, Proxy: str = ''):
+        """登录二维码"""
+        return self._login_api.get_login_qr(Proxy=Proxy)
+
+    def awaken_login(self, Proxy: str = ''):
+        """唤醒登录"""
+        return self._login_api.wake_up_login(Proxy=Proxy)
+
+    def log_out(self):
+        """退出登录"""
+        return self._login_api.logout()
+
+    def get_login_status(self):
+        """获取登录状态"""
+        return self._login_api.get_login_status()
+
+    def send_text_message(self, to_wxid, message, ats: list = []):
+        """发送文本消息"""
+        return self._message_api.post_text(to_wxid, message, ats)
+
+    def send_image_message(self, to_wxid, img_url, ats: list = []):
+        """发送图片消息"""
+        return self._message_api.post_image(to_wxid, img_url, ats)
+
+    def send_voice_message(self, to_wxid, voice_data, voice_forma, voice_duration):
+        """发送音频消息"""
+        return self._message_api.post_voice(to_wxid, voice_data, voice_forma, voice_duration)
+
+    def send_app_message(self, to_wxid, app_message, type):
+        """发送app消息"""
+        return self._message_api.post_app_msg(to_wxid, app_message, type)
+
+    def send_emoji_message(self, to_wxid, emoji_md5, emoji_size):
+        """发送emoji消息"""
+        return self._message_api.post_emoji(to_wxid, emoji_md5, emoji_size)
+
+    def revoke_msg(self, to_wxid, msg_id, new_msg_id, create_time):
+        """撤回消息"""
+        return self._message_api.revoke_msg(to_wxid, msg_id, new_msg_id, create_time)
+
+    def get_profile(self):
+        """获取用户信息"""
+        return self._user_api.get_profile()
+
+    def get_qr_code(self, recover: bool = True, style: int = 8):
+        """获取用户二维码"""
+        return self._user_api.get_qr_code(recover=recover, style=style)
+
+    def get_safety_info(self):
+        """获取设备信息"""
+        return self._user_api.get_safety_info()
+
+    def update_head_img(self, head_img_base64):
+        """上传用户头像"""
+        return self._user_api.update_head_img(head_img_base64)
+
+    def cdn_download(self, aeskey, file_type, file_url):
+        """cdn下载"""
+        return self._download_api.send_download(aeskey, file_type, file_url)
+
+    def get_msg_voice(self, buf_id, length, msgid):
+        """下载语音"""
+        return self._download_api.get_msg_voice(buf_id, length, msgid)
+
+    async def download_base64(self, url):
+        return await self._download_api.download_url_to_base64(download_url=url)
+
+    def get_chatroom_member_detail(self, chatroom_name):
+        """查看群成员详情"""
+        return self._chatroom_api.get_chatroom_member_detail(chatroom_name)
--- a/pkg/provider/sysprompt/loaders/init.py
+++ b/pkg/provider/sysprompt/loaders/init.py
--- a/libs/wechatpad_api/util/http_util.py
+++ b/libs/wechatpad_api/util/http_util.py
@@ -0,0 +1,78 @@
+import requests
+import aiohttp
+
+
+def post_json(base_url, token, data=None):
+    headers = {'Content-Type': 'application/json'}
+
+    url = base_url + f'?key={token}'
+
+    try:
+        response = requests.post(url, json=data, headers=headers, timeout=60)
+        response.raise_for_status()
+        result = response.json()
+
+        if result:
+            return result
+        else:
+            raise RuntimeError(response.text)
+    except Exception as e:
+        print(f'http请求失败, url={url}, exception={e}')
+        raise RuntimeError(str(e))
+
+
+def get_json(base_url, token):
+    headers = {'Content-Type': 'application/json'}
+
+    url = base_url + f'?key={token}'
+
+    try:
+        response = requests.get(url, headers=headers, timeout=60)
+        response.raise_for_status()
+        result = response.json()
+
+        if result:
+            return result
+        else:
+            raise RuntimeError(response.text)
+    except Exception as e:
+        print(f'http请求失败, url={url}, exception={e}')
+        raise RuntimeError(str(e))
+
+
+async def async_request(
+    base_url: str,
+    token_key: str,
+    method: str = 'POST',
+    params: dict = None,
+    # headers: dict = None,
+    data: dict = None,
+    json: dict = None,
+):
+    """
+    通用异步请求函数
+
+    :param base_url: 请求URL
+    :param token_key: 请求token
+    :param method: HTTP方法 (GET, POST, PUT, DELETE等)
+    :param params: URL查询参数
+    # :param headers: 请求头
+    :param data: 表单数据
+    :param json: JSON数据
+    :return: 响应文本
+    """
+    headers = {'Content-Type': 'application/json'}
+    url = f'{base_url}?key={token_key}'
+    async with aiohttp.ClientSession() as session:
+        async with session.request(
+            method=method, url=url, params=params, headers=headers, data=data, json=json
+        ) as response:
+            response.raise_for_status()  # 如果状态码不是200，抛出异常
+            result = await response.json()
+            # print(result)
+            return result
+            # if result.get('Code') == 200:
+            #
+            #     return await result
+            # else:
+            #     raise RuntimeError("请求失败",response.text)
--- a/libs/wechatpad_api/util/terminal_printer.py
+++ b/libs/wechatpad_api/util/terminal_printer.py
@@ -0,0 +1,34 @@
+import qrcode
+
+
+def print_green(text):
+    print(f'\033[32m{text}\033[0m')
+
+
+def print_yellow(text):
+    print(f'\033[33m{text}\033[0m')
+
+
+def print_red(text):
+    print(f'\033[31m{text}\033[0m')
+
+
+def make_and_print_qr(url):
+    """生成并打印二维码
+
+    Args:
+        url: 需要生成二维码的URL字符串
+
+    Returns:
+        None
+
+    功能:
+        1. 在终端打印二维码的ASCII图形
+        2. 同时提供在线二维码生成链接作为备选
+    """
+    print_green('请扫描下方二维码登录')
+    qr = qrcode.QRCode()
+    qr.add_data(url)
+    qr.make()
+    qr.print_ascii(invert=True)
+    print_green(f'也可以访问下方链接获取二维码:\nhttps://api.qrserver.com/v1/create-qr-code/?data={url}')
--- a/libs/wecom_ai_bot_api/WXBizMsgCrypt3.py
+++ b/libs/wecom_ai_bot_api/WXBizMsgCrypt3.py
@@ -0,0 +1,278 @@
+#!/usr/bin/env python
+# -*- encoding:utf-8 -*-
+
+"""对企业微信发送给企业后台的消息加解密示例代码.
+@copyright: Copyright (c) 1998-2014 Tencent Inc.
+
+"""
+
+# ------------------------------------------------------------------------
+import logging
+import base64
+import random
+import hashlib
+import time
+import struct
+from Crypto.Cipher import AES
+import xml.etree.cElementTree as ET
+import socket
+from libs.wecom_ai_bot_api import ierror
+
+
+"""
+Crypto.Cipher包已不再维护，开发者可以通过以下命令下载安装最新版的加解密工具包
+    pip install pycryptodome
+"""
+
+
+class FormatException(Exception):
+    pass
+
+
+def throw_exception(message, exception_class=FormatException):
+    """my define raise exception function"""
+    raise exception_class(message)
+
+
+class SHA1:
+    """计算企业微信的消息签名接口"""
+
+    def getSHA1(self, token, timestamp, nonce, encrypt):
+        """用SHA1算法生成安全签名
+        @param token:  票据
+        @param timestamp: 时间戳
+        @param encrypt: 密文
+        @param nonce: 随机字符串
+        @return: 安全签名
+        """
+        try:
+            sortlist = [token, timestamp, nonce, encrypt]
+            sortlist.sort()
+            sha = hashlib.sha1()
+            sha.update(''.join(sortlist).encode())
+            return ierror.WXBizMsgCrypt_OK, sha.hexdigest()
+        except Exception as e:
+            logger = logging.getLogger()
+            logger.error(e)
+            return ierror.WXBizMsgCrypt_ComputeSignature_Error, None
+
+
+class XMLParse:
+    """提供提取消息格式中的密文及生成回复消息格式的接口"""
+
+    # xml消息模板
+    AES_TEXT_RESPONSE_TEMPLATE = """<xml>
+<Encrypt><![CDATA[%(msg_encrypt)s]]></Encrypt>
+<MsgSignature><![CDATA[%(msg_signaturet)s]]></MsgSignature>
+<TimeStamp>%(timestamp)s</TimeStamp>
+<Nonce><![CDATA[%(nonce)s]]></Nonce>
+</xml>"""
+
+    def extract(self, xmltext):
+        """提取出xml数据包中的加密消息
+        @param xmltext: 待提取的xml字符串
+        @return: 提取出的加密消息字符串
+        """
+        try:
+            xml_tree = ET.fromstring(xmltext)
+            encrypt = xml_tree.find('Encrypt')
+            return ierror.WXBizMsgCrypt_OK, encrypt.text
+        except Exception as e:
+            logger = logging.getLogger()
+            logger.error(e)
+            return ierror.WXBizMsgCrypt_ParseXml_Error, None
+
+    def generate(self, encrypt, signature, timestamp, nonce):
+        """生成xml消息
+        @param encrypt: 加密后的消息密文
+        @param signature: 安全签名
+        @param timestamp: 时间戳
+        @param nonce: 随机字符串
+        @return: 生成的xml字符串
+        """
+        resp_dict = {
+            'msg_encrypt': encrypt,
+            'msg_signaturet': signature,
+            'timestamp': timestamp,
+            'nonce': nonce,
+        }
+        resp_xml = self.AES_TEXT_RESPONSE_TEMPLATE % resp_dict
+        return resp_xml
+
+
+class PKCS7Encoder:
+    """提供基于PKCS7算法的加解密接口"""
+
+    block_size = 32
+
+    def encode(self, text):
+        """对需要加密的明文进行填充补位
+        @param text: 需要进行填充补位操作的明文
+        @return: 补齐明文字符串
+        """
+        text_length = len(text)
+        # 计算需要填充的位数
+        amount_to_pad = self.block_size - (text_length % self.block_size)
+        if amount_to_pad == 0:
+            amount_to_pad = self.block_size
+        # 获得补位所用的字符
+        pad = chr(amount_to_pad)
+        return text + (pad * amount_to_pad).encode()
+
+    def decode(self, decrypted):
+        """删除解密后明文的补位字符
+        @param decrypted: 解密后的明文
+        @return: 删除补位字符后的明文
+        """
+        pad = ord(decrypted[-1])
+        if pad < 1 or pad > 32:
+            pad = 0
+        return decrypted[:-pad]
+
+
+class Prpcrypt(object):
+    """提供接收和推送给企业微信消息的加解密接口"""
+
+    def __init__(self, key):
+        # self.key = base64.b64decode(key+"=")
+        self.key = key
+        # 设置加解密模式为AES的CBC模式
+        self.mode = AES.MODE_CBC
+
+    def encrypt(self, text, receiveid):
+        """对明文进行加密
+        @param text: 需要加密的明文
+        @return: 加密得到的字符串
+        """
+        # 16位随机字符串添加到明文开头
+        text = text.encode()
+        text = self.get_random_str() + struct.pack('I', socket.htonl(len(text))) + text + receiveid.encode()
+
+        # 使用自定义的填充方式对明文进行补位填充
+        pkcs7 = PKCS7Encoder()
+        text = pkcs7.encode(text)
+        # 加密
+        cryptor = AES.new(self.key, self.mode, self.key[:16])
+        try:
+            ciphertext = cryptor.encrypt(text)
+            # 使用BASE64对加密后的字符串进行编码
+            return ierror.WXBizMsgCrypt_OK, base64.b64encode(ciphertext)
+        except Exception as e:
+            logger = logging.getLogger()
+            logger.error(e)
+            return ierror.WXBizMsgCrypt_EncryptAES_Error, None
+
+    def decrypt(self, text, receiveid):
+        """对解密后的明文进行补位删除
+        @param text: 密文
+        @return: 删除填充补位后的明文
+        """
+        try:
+            cryptor = AES.new(self.key, self.mode, self.key[:16])
+            # 使用BASE64对密文进行解码，然后AES-CBC解密
+            plain_text = cryptor.decrypt(base64.b64decode(text))
+        except Exception as e:
+            logger = logging.getLogger()
+            logger.error(e)
+            return ierror.WXBizMsgCrypt_DecryptAES_Error, None
+        try:
+            pad = plain_text[-1]
+            # 去掉补位字符串
+            # pkcs7 = PKCS7Encoder()
+            # plain_text = pkcs7.encode(plain_text)
+            # 去除16位随机字符串
+            content = plain_text[16:-pad]
+            xml_len = socket.ntohl(struct.unpack('I', content[:4])[0])
+            xml_content = content[4 : xml_len + 4]
+            from_receiveid = content[xml_len + 4 :]
+        except Exception as e:
+            logger = logging.getLogger()
+            logger.error(e)
+            return ierror.WXBizMsgCrypt_IllegalBuffer, None
+
+        if from_receiveid.decode('utf8') != receiveid:
+            return ierror.WXBizMsgCrypt_ValidateCorpid_Error, None
+        return 0, xml_content
+
+    def get_random_str(self):
+        """随机生成16位字符串
+        @return: 16位字符串
+        """
+        return str(random.randint(1000000000000000, 9999999999999999)).encode()
+
+
+class WXBizMsgCrypt(object):
+    # 构造函数
+    def __init__(self, sToken, sEncodingAESKey, sReceiveId):
+        try:
+            self.key = base64.b64decode(sEncodingAESKey + '=')
+            assert len(self.key) == 32
+        except Exception:
+            throw_exception('[error]: EncodingAESKey unvalid !', FormatException)
+            # return ierror.WXBizMsgCrypt_IllegalAesKey,None
+        self.m_sToken = sToken
+        self.m_sReceiveId = sReceiveId
+
+        # 验证URL
+        # @param sMsgSignature: 签名串，对应URL参数的msg_signature
+        # @param sTimeStamp: 时间戳，对应URL参数的timestamp
+        # @param sNonce: 随机串，对应URL参数的nonce
+        # @param sEchoStr: 随机串，对应URL参数的echostr
+        # @param sReplyEchoStr: 解密之后的echostr，当return返回0时有效
+        # @return：成功0，失败返回对应的错误码
+
+    def VerifyURL(self, sMsgSignature, sTimeStamp, sNonce, sEchoStr):
+        sha1 = SHA1()
+        ret, signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, sEchoStr)
+        if ret != 0:
+            return ret, None
+        if not signature == sMsgSignature:
+            return ierror.WXBizMsgCrypt_ValidateSignature_Error, None
+        pc = Prpcrypt(self.key)
+        ret, sReplyEchoStr = pc.decrypt(sEchoStr, self.m_sReceiveId)
+        return ret, sReplyEchoStr
+
+    def EncryptMsg(self, sReplyMsg, sNonce, timestamp=None):
+        # 将企业回复用户的消息加密打包
+        # @param sReplyMsg: 企业号待回复用户的消息，xml格式的字符串
+        # @param sTimeStamp: 时间戳，可以自己生成，也可以用URL参数的timestamp,如为None则自动用当前时间
+        # @param sNonce: 随机串，可以自己生成，也可以用URL参数的nonce
+        # sEncryptMsg: 加密后的可以直接回复用户的密文，包括msg_signature, timestamp, nonce, encrypt的xml格式的字符串,
+        # return：成功0，sEncryptMsg,失败返回对应的错误码None
+        pc = Prpcrypt(self.key)
+        ret, encrypt = pc.encrypt(sReplyMsg, self.m_sReceiveId)
+        encrypt = encrypt.decode('utf8')
+        if ret != 0:
+            return ret, None
+        if timestamp is None:
+            timestamp = str(int(time.time()))
+        # 生成安全签名
+        sha1 = SHA1()
+        ret, signature = sha1.getSHA1(self.m_sToken, timestamp, sNonce, encrypt)
+        if ret != 0:
+            return ret, None
+        xmlParse = XMLParse()
+        return ret, xmlParse.generate(encrypt, signature, timestamp, sNonce)
+
+    def DecryptMsg(self, sPostData, sMsgSignature, sTimeStamp, sNonce):
+        # 检验消息的真实性，并且获取解密后的明文
+        # @param sMsgSignature: 签名串，对应URL参数的msg_signature
+        # @param sTimeStamp: 时间戳，对应URL参数的timestamp
+        # @param sNonce: 随机串，对应URL参数的nonce
+        # @param sPostData: 密文，对应POST请求的数据
+        #  xml_content: 解密后的原文，当return返回0时有效
+        # @return: 成功0，失败返回对应的错误码
+        # 验证安全签名
+        xmlParse = XMLParse()
+        ret, encrypt = xmlParse.extract(sPostData)
+        if ret != 0:
+            return ret, None
+        sha1 = SHA1()
+        ret, signature = sha1.getSHA1(self.m_sToken, sTimeStamp, sNonce, encrypt)
+        if ret != 0:
+            return ret, None
+        if not signature == sMsgSignature:
+            return ierror.WXBizMsgCrypt_ValidateSignature_Error, None
+        pc = Prpcrypt(self.key)
+        ret, xml_content = pc.decrypt(encrypt, self.m_sReceiveId)
+        return ret, xml_content
--- a/libs/wecom_ai_bot_api/api.py
+++ b/libs/wecom_ai_bot_api/api.py
@@ -0,0 +1,290 @@
+import json
+import time
+import uuid
+import xml.etree.ElementTree as ET
+from urllib.parse import unquote
+import hashlib
+import traceback
+
+import httpx
+from libs.wecom_ai_bot_api.WXBizMsgCrypt3 import WXBizMsgCrypt
+from quart import Quart, request, Response, jsonify
+import langbot_plugin.api.entities.builtin.platform.message as platform_message
+import asyncio
+from libs.wecom_ai_bot_api import wecombotevent
+from typing import Callable
+import base64
+from Crypto.Cipher import AES
+from pkg.platform.logger import EventLogger
+
+
+
+class WecomBotClient:
+    def __init__(self,Token:str,EnCodingAESKey:str,Corpid:str,logger:EventLogger):
+        self.Token=Token
+        self.EnCodingAESKey=EnCodingAESKey
+        self.Corpid=Corpid
+        self.ReceiveId = ''
+        self.app = Quart(__name__)
+        self.app.add_url_rule(
+            '/callback/command',
+            'handle_callback',
+            self.handle_callback_request,
+            methods=['POST','GET']
+        )
+        self._message_handlers = {
+            'example': [],
+        }
+        self.user_stream_map = {}
+        self.logger = logger
+        self.generated_content = {}
+        self.msg_id_map = {}
+
+    async def sha1_signature(token: str, timestamp: str, nonce: str, encrypt: str) -> str:
+        raw = "".join(sorted([token, timestamp, nonce, encrypt]))
+        return hashlib.sha1(raw.encode("utf-8")).hexdigest()
+    
+    async def handle_callback_request(self):
+        try:
+            self.wxcpt=WXBizMsgCrypt(self.Token,self.EnCodingAESKey,'')
+
+            if request.method == "GET":
+
+                msg_signature = unquote(request.args.get("msg_signature", ""))
+                timestamp     = unquote(request.args.get("timestamp", ""))
+                nonce         = unquote(request.args.get("nonce", ""))
+                echostr       = unquote(request.args.get("echostr", ""))
+
+                if not all([msg_signature, timestamp, nonce, echostr]):
+                    await self.logger.error("请求参数缺失")
+                    return Response("缺少参数", status=400)
+
+                ret, decrypted_str = self.wxcpt.VerifyURL(msg_signature, timestamp, nonce, echostr)
+                if ret != 0:
+                    
+                    await self.logger.error("验证URL失败")
+                    return Response("验证失败", status=403)
+
+                return Response(decrypted_str, mimetype="text/plain")
+
+            elif request.method == "POST":
+                msg_signature = unquote(request.args.get("msg_signature", ""))
+                timestamp     = unquote(request.args.get("timestamp", ""))
+                nonce         = unquote(request.args.get("nonce", ""))
+
+                try:
+                    timeout = 3
+                    interval = 0.1
+                    start_time = time.monotonic()
+                    encrypted_json  = await request.get_json()
+                    encrypted_msg   = encrypted_json.get("encrypt", "")
+                    if not encrypted_msg:
+                        await self.logger.error("请求体中缺少 'encrypt' 字段")
+
+                    xml_post_data = f"<xml><Encrypt><![CDATA[{encrypted_msg}]]></Encrypt></xml>"
+                    ret, decrypted_xml = self.wxcpt.DecryptMsg(xml_post_data, msg_signature, timestamp, nonce)
+                    if ret != 0:
+                        await self.logger.error("解密失败")
+
+
+                    msg_json = json.loads(decrypted_xml)
+                    
+                    from_user_id = msg_json.get("from", {}).get("userid")
+                    chatid = msg_json.get("chatid", "")
+                    
+                    message_data = await self.get_message(msg_json)
+                    
+                    
+
+                    if message_data:
+                        try:
+                            event = wecombotevent.WecomBotEvent(message_data)
+                            if event:
+                                await self._handle_message(event)
+                        except Exception as e:
+                            await self.logger.error(traceback.format_exc())
+                            print(traceback.format_exc())
+
+                    start_time = time.time()
+                    try:
+                        if msg_json.get('chattype','') == 'single':
+                            if from_user_id in self.user_stream_map:
+                                stream_id = self.user_stream_map[from_user_id]
+                            else:
+                                stream_id =str(uuid.uuid4())
+                                self.user_stream_map[from_user_id] = stream_id
+                            
+
+                        else:
+                            
+                            if chatid in self.user_stream_map:
+                                stream_id = self.user_stream_map[chatid]
+                            else:
+                                stream_id = str(uuid.uuid4())
+                                self.user_stream_map[chatid] = stream_id
+                    except Exception as e:
+                        await self.logger.error(traceback.format_exc())
+                        print(traceback.format_exc())
+                    while True:
+                        content = self.generated_content.pop(msg_json['msgid'],None)
+                        if content:
+                            reply_plain = {
+                                "msgtype": "stream",
+                                "stream": {
+                                    "id": stream_id,
+                                    "finish": True,
+                                    "content": content
+                                }
+                            }
+                            reply_plain_str = json.dumps(reply_plain, ensure_ascii=False)
+
+                            reply_timestamp = str(int(time.time()))
+                            ret, encrypt_text = self.wxcpt.EncryptMsg(reply_plain_str, nonce, reply_timestamp)
+                            if ret != 0:
+                                
+                                await self.logger.error("加密失败"+str(ret))
+                            
+
+                            root = ET.fromstring(encrypt_text)
+                            encrypt = root.find("Encrypt").text
+                            resp = {
+                                "encrypt": encrypt,
+                            }
+                            return jsonify(resp), 200
+
+                        if time.time() - start_time > timeout:
+                            break
+
+                        await asyncio.sleep(interval)
+
+                    if self.msg_id_map.get(message_data['msgid'], 1) == 3:
+                        await self.logger.error('请求失效：暂不支持智能机器人超过7秒的请求，如有需求，请联系 LangBot 团队。')
+                        return ''
+
+                except Exception as e:
+                    await self.logger.error(traceback.format_exc())
+                    print(traceback.format_exc())
+
+        except Exception as e:
+            await self.logger.error(traceback.format_exc())
+            print(traceback.format_exc())
+
+    
+    async def get_message(self,msg_json):
+        message_data = {}
+
+        if msg_json.get('chattype','') == 'single':
+            message_data['type'] = 'single'
+        elif msg_json.get('chattype','') == 'group':
+            message_data['type'] = 'group'
+
+        if msg_json.get('msgtype') == 'text':
+            message_data['content'] = msg_json.get('text',{}).get('content')
+        elif msg_json.get('msgtype') == 'image':
+            picurl = msg_json.get('image', {}).get('url','')
+            base64 = await self.download_url_to_base64(picurl,self.EnCodingAESKey)
+            message_data['picurl'] = base64 
+        elif msg_json.get('msgtype') == 'mixed':
+            items = msg_json.get('mixed', {}).get('msg_item', [])
+            texts = []
+            picurl = None
+            for item in items:
+                if item.get('msgtype') == 'text':
+                    texts.append(item.get('text', {}).get('content', ''))
+                elif item.get('msgtype') == 'image' and picurl is None:
+                    picurl = item.get('image', {}).get('url')
+
+            if texts:
+                message_data['content'] = "".join(texts)  # 拼接所有 text
+            if picurl:
+                base64 = await self.download_url_to_base64(picurl,self.EnCodingAESKey)
+                message_data['picurl'] = base64          # 只保留第一个 image
+
+        message_data['userid'] = msg_json.get('from', {}).get('userid', '')
+        message_data['msgid'] = msg_json.get('msgid', '')
+
+        if msg_json.get('aibotid'):
+            message_data['aibotid'] = msg_json.get('aibotid', '')
+
+        return message_data
+    
+    async def _handle_message(self, event: wecombotevent.WecomBotEvent):
+        """
+        处理消息事件。
+        """
+        try:
+            message_id = event.message_id
+            if message_id in self.msg_id_map.keys():
+                self.msg_id_map[message_id] += 1
+                return
+            self.msg_id_map[message_id] = 1
+            msg_type = event.type
+            if msg_type in self._message_handlers:
+                for handler in self._message_handlers[msg_type]:
+                    await handler(event)
+        except Exception:
+                print(traceback.format_exc())
+
+    async def set_message(self, msg_id: str, content: str):
+        self.generated_content[msg_id] = content
+
+    def on_message(self, msg_type: str):
+        def decorator(func: Callable[[wecombotevent.WecomBotEvent], None]):
+            if msg_type not in self._message_handlers:
+                self._message_handlers[msg_type] = []
+            self._message_handlers[msg_type].append(func)
+            return func
+
+        return decorator
+
+
+    async def download_url_to_base64(self, download_url, encoding_aes_key):
+        async with httpx.AsyncClient() as client:
+            response = await client.get(download_url)
+            if response.status_code != 200:
+                await self.logger.error(f'failed to get file: {response.text}')
+                return None
+
+            encrypted_bytes = response.content
+
+        
+        aes_key = base64.b64decode(encoding_aes_key + "=")  # base64 补齐
+        iv = aes_key[:16]
+
+        
+        cipher = AES.new(aes_key, AES.MODE_CBC, iv)
+        decrypted = cipher.decrypt(encrypted_bytes)
+
+        
+        pad_len = decrypted[-1]
+        decrypted = decrypted[:-pad_len]
+
+        
+        if decrypted.startswith(b"\xff\xd8"):   # JPEG
+            mime_type = "image/jpeg"
+        elif decrypted.startswith(b"\x89PNG"):  # PNG
+            mime_type = "image/png"
+        elif decrypted.startswith((b"GIF87a", b"GIF89a")):  # GIF
+            mime_type = "image/gif"
+        elif decrypted.startswith(b"BM"):       # BMP
+            mime_type = "image/bmp"
+        elif decrypted.startswith(b"II*\x00") or decrypted.startswith(b"MM\x00*"):  # TIFF
+            mime_type = "image/tiff"
+        else:
+            mime_type = "application/octet-stream"
+
+        # 转 base64
+        base64_str = base64.b64encode(decrypted).decode("utf-8")
+        return f"data:{mime_type};base64,{base64_str}"
+    
+
+    async def run_task(self, host: str, port: int, *args, **kwargs):
+        """
+        启动 Quart 应用。
+        """
+        await self.app.run_task(host=host, port=port, *args, **kwargs)
+
+                
+    
+            
+
--- a/libs/wecom_ai_bot_api/ierror.py
+++ b/libs/wecom_ai_bot_api/ierror.py
@@ -0,0 +1,20 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+#########################################################################
+# Author: jonyqin
+# Created Time: Thu 11 Sep 2014 01:53:58 PM CST
+# File Name: ierror.py
+# Description:定义错误码含义
+#########################################################################
+WXBizMsgCrypt_OK = 0
+WXBizMsgCrypt_ValidateSignature_Error = -40001
+WXBizMsgCrypt_ParseXml_Error = -40002
+WXBizMsgCrypt_ComputeSignature_Error = -40003
+WXBizMsgCrypt_IllegalAesKey = -40004
+WXBizMsgCrypt_ValidateCorpid_Error = -40005
+WXBizMsgCrypt_EncryptAES_Error = -40006
+WXBizMsgCrypt_DecryptAES_Error = -40007
+WXBizMsgCrypt_IllegalBuffer = -40008
+WXBizMsgCrypt_EncodeBase64_Error = -40009
+WXBizMsgCrypt_DecodeBase64_Error = -40010
+WXBizMsgCrypt_GenReturnXml_Error = -40011
--- a/libs/wecom_ai_bot_api/wecombotevent.py
+++ b/libs/wecom_ai_bot_api/wecombotevent.py
@@ -0,0 +1,60 @@
+from typing import Dict, Any, Optional
+
+
+class WecomBotEvent(dict):
+    @staticmethod
+    def from_payload(payload: Dict[str, Any]) -> Optional['WecomBotEvent']:
+        try:
+            event = WecomBotEvent(payload)
+            return event
+        except KeyError:
+            return None
+
+    @property
+    def type(self) -> str:
+        """
+        事件类型
+        """
+        return self.get('type', '')
+
+    @property
+    def userid(self) -> str:
+        """
+        用户id
+        """
+        return self.get('from', {}).get('userid', '')
+
+    @property
+    def content(self) -> str:
+        """
+        内容
+        """
+        return self.get('content', '')
+
+    @property
+    def picurl(self) -> str:
+        """
+        图片url
+        """
+        return self.get('picurl', '')
+
+    @property
+    def chatid(self) -> str:
+        """
+        群组id
+        """
+        return self.get('chatid', {})
+
+    @property
+    def message_id(self) -> str:
+        """
+        消息id
+        """
+        return self.get('msgid', '')
+    
+    @property
+    def ai_bot_id(self) -> str:
+        """
+        AI Bot ID
+        """
+        return self.get('aibotid', '')
--- a/libs/wecom_api/WXBizMsgCrypt3.py
+++ b/libs/wecom_api/WXBizMsgCrypt3.py
@@ -1,10 +1,11 @@
 #!/usr/bin/env python
 # -*- encoding:utf-8 -*-

-""" 对企业微信发送给企业后台的消息加解密示例代码.
+"""对企业微信发送给企业后台的消息加解密示例代码.
@copyright: Copyright (c) 1998-2014 Tencent Inc.

 """
+
 # ------------------------------------------------------------------------
 import logging
 import base64
@@ -49,7 +50,7 @@ class SHA1:
            sortlist = [token, timestamp, nonce, encrypt]
            sortlist.sort()
            sha = hashlib.sha1()
-            sha.update("".join(sortlist).encode())
+            sha.update(''.join(sortlist).encode())
            return ierror.WXBizMsgCrypt_OK, sha.hexdigest()
        except Exception as e:
            logger = logging.getLogger()
@@ -75,7 +76,7 @@ class XMLParse:
        """
        try:
            xml_tree = ET.fromstring(xmltext)
-            encrypt = xml_tree.find("Encrypt")
+            encrypt = xml_tree.find('Encrypt')
            return ierror.WXBizMsgCrypt_OK, encrypt.text
        except Exception as e:
            logger = logging.getLogger()
@@ -100,13 +101,13 @@ class XMLParse:
        return resp_xml


-class PKCS7Encoder():
+class PKCS7Encoder:
    """提供基于PKCS7算法的加解密接口"""

    block_size = 32

    def encode(self, text):
-        """ 对需要加密的明文进行填充补位
+        """对需要加密的明文进行填充补位
        @param text: 需要进行填充补位操作的明文
        @return: 补齐明文字符串
        """
@@ -134,7 +135,6 @@ class Prpcrypt(object):
    """提供接收和推送给企业微信消息的加解密接口"""

    def __init__(self, key):
-
        # self.key = base64.b64decode(key+"=")
        self.key = key
        # 设置加解密模式为AES的CBC模式
@@ -147,7 +147,7 @@ class Prpcrypt(object):
        """
        # 16位随机字符串添加到明文开头
        text = text.encode()
-        text = self.get_random_str() + struct.pack("I", socket.htonl(len(text))) + text + receiveid.encode()
+        text = self.get_random_str() + struct.pack('I', socket.htonl(len(text))) + text + receiveid.encode()

        # 使用自定义的填充方式对明文进行补位填充
        pkcs7 = PKCS7Encoder()
@@ -183,9 +183,9 @@ class Prpcrypt(object):
            # plain_text = pkcs7.encode(plain_text)
            # 去除16位随机字符串
            content = plain_text[16:-pad]
-            xml_len = socket.ntohl(struct.unpack("I", content[: 4])[0])
-            xml_content = content[4: xml_len + 4]
-            from_receiveid = content[xml_len + 4:]
+            xml_len = socket.ntohl(struct.unpack('I', content[:4])[0])
+            xml_content = content[4 : xml_len + 4]
+            from_receiveid = content[xml_len + 4 :]
        except Exception as e:
            logger = logging.getLogger()
            logger.error(e)
@@ -196,7 +196,7 @@ class Prpcrypt(object):
        return 0, xml_content

    def get_random_str(self):
-        """ 随机生成16位字符串
+        """随机生成16位字符串
        @return: 16位字符串
        """
        return str(random.randint(1000000000000000, 9999999999999999)).encode()
@@ -206,10 +206,10 @@ class WXBizMsgCrypt(object):
    # 构造函数
    def __init__(self, sToken, sEncodingAESKey, sReceiveId):
        try:
-            self.key = base64.b64decode(sEncodingAESKey + "=")
+            self.key = base64.b64decode(sEncodingAESKey + '=')
            assert len(self.key) == 32
-        except:
-            throw_exception("[error]: EncodingAESKey unvalid !", FormatException)
+        except Exception:
+            throw_exception('[error]: EncodingAESKey unvalid !', FormatException)
            # return ierror.WXBizMsgCrypt_IllegalAesKey,None
        self.m_sToken = sToken
        self.m_sReceiveId = sReceiveId
--- a/libs/wecom_api/api.py
+++ b/libs/wecom_api/api.py
@@ -3,39 +3,53 @@ from .WXBizMsgCrypt3 import WXBizMsgCrypt
 import base64
 import binascii
 import httpx
+import traceback
 from quart import Quart
 import xml.etree.ElementTree as ET
 from typing import Callable, Dict, Any
 from .wecomevent import WecomEvent
-from pkg.platform.types import events as platform_events, message as platform_message
+import langbot_plugin.api.entities.builtin.platform.message as platform_message
 import aiofiles


-class WecomClient():
-    def __init__(self,corpid:str,secret:str,token:str,EncodingAESKey:str,contacts_secret:str):
+class WecomClient:
+    def __init__(
+        self,
+        corpid: str,
+        secret: str,
+        token: str,
+        EncodingAESKey: str,
+        contacts_secret: str,
+        logger: None,
+    ):
        self.corpid = corpid
        self.secret = secret
-        self.access_token_for_contacts =''
+        self.access_token_for_contacts = ''
        self.token = token
        self.aes = EncodingAESKey
        self.base_url = 'https://qyapi.weixin.qq.com/cgi-bin'
        self.access_token = ''
        self.secret_for_contacts = contacts_secret
+        self.logger = logger
        self.app = Quart(__name__)
-        self.wxcpt = WXBizMsgCrypt(self.token, self.aes, self.corpid)
-        self.app.add_url_rule('/callback/command', 'handle_callback', self.handle_callback_request, methods=['GET', 'POST'])
+        self.app.add_url_rule(
+            '/callback/command',
+            'handle_callback',
+            self.handle_callback_request,
+            methods=['GET', 'POST'],
+        )
        self._message_handlers = {
-            "example":[],
+            'example': [],
        }

-    #access——token操作
+    # access——token操作
    async def check_access_token(self):
        return bool(self.access_token and self.access_token.strip())

    async def check_access_token_for_contacts(self):
        return bool(self.access_token_for_contacts and self.access_token_for_contacts.strip())

-    async def get_access_token(self,secret):
+    async def get_access_token(self, secret):
        url = f'https://qyapi.weixin.qq.com/cgi-bin/gettoken?corpid={self.corpid}&corpsecret={secret}'
        async with httpx.AsyncClient() as client:
            response = await client.get(url)
@@ -43,136 +57,140 @@ class WecomClient():
            if 'access_token' in data:
                return data['access_token']
            else:
-                raise Exception(f"未获取access token: {data}")
+                await self.logger.error(f'获取accesstoken失败:{response.json()}')
+                raise Exception(f'未获取access token: {data}')

    async def get_users(self):
        if not self.check_access_token_for_contacts():
            self.access_token_for_contacts = await self.get_access_token(self.secret_for_contacts)

-        url = self.base_url+'/user/list_id?access_token='+self.access_token_for_contacts
+        url = self.base_url + '/user/list_id?access_token=' + self.access_token_for_contacts
        async with httpx.AsyncClient() as client:
            params = {
-                "cursor":"",
-                "limit":10000,
+                'cursor': '',
+                'limit': 10000,
            }
-            response = await client.post(url,json=params)
+            response = await client.post(url, json=params)
            data = response.json()
            if data['errcode'] == 0:
                dept_users = data['dept_user']
                userid = []
                for user in dept_users:
-                    userid.append(user["userid"])
+                    userid.append(user['userid'])
                return userid
            else:
-                raise Exception("未获取用户")
-            
-    async def send_to_all(self,content:str):
+                raise Exception('未获取用户')
+
+    async def send_to_all(self, content: str, agent_id: int):
        if not self.check_access_token_for_contacts():
            self.access_token_for_contacts = await self.get_access_token(self.secret_for_contacts)

-            url = self.base_url+'/message/send?access_token='+self.access_token_for_contacts
+            url = self.base_url + '/message/send?access_token=' + self.access_token_for_contacts
            user_ids = await self.get_users()
-            user_ids_string = "|".join(user_ids)
+            user_ids_string = '|'.join(user_ids)
            async with httpx.AsyncClient() as client:
                params = {
-                "touser" : user_ids_string,
-                "msgtype" : "text",
-                "agentid" : 1000002,
-                "text" : {
-                    "content" : content,
-                },
-                "safe":0,
-                "enable_id_trans": 0,
-                "enable_duplicate_check": 0,
-                "duplicate_check_interval": 1800
+                    'touser': user_ids_string,
+                    'msgtype': 'text',
+                    'agentid': agent_id,
+                    'text': {
+                        'content': content,
+                    },
+                    'safe': 0,
+                    'enable_id_trans': 0,
+                    'enable_duplicate_check': 0,
+                    'duplicate_check_interval': 1800,
                }
-                response = await client.post(url,json=params)
+                response = await client.post(url, json=params)
                data = response.json()
                if data['errcode'] != 0:
-                    raise Exception("Failed to send message: "+str(data))
+                    raise Exception('Failed to send message: ' + str(data))

-    async def send_image(self,user_id:str,agent_id:int,media_id:str):
+    async def send_image(self, user_id: str, agent_id: int, media_id: str):
        if not await self.check_access_token():
            self.access_token = await self.get_access_token(self.secret)
-        url = self.base_url+'/media/upload?access_token='+self.access_token
+        url = self.base_url + '/media/upload?access_token=' + self.access_token
        async with httpx.AsyncClient() as client:
            params = {
-                "touser" : user_id,
-                "toparty" : "",
-                "totag":"",
-                "agentid" : agent_id,
-                "msgtype" : "image",
-                "image" : {
-                    "media_id" : media_id,
+                'touser': user_id,
+                'toparty': '',
+                'totag': '',
+                'agentid': agent_id,
+                'msgtype': 'image',
+                'image': {
+                    'media_id': media_id,
                },
-                "safe":0,
-                "enable_id_trans": 0,
-                "enable_duplicate_check": 0,
-                "duplicate_check_interval": 1800
+                'safe': 0,
+                'enable_id_trans': 0,
+                'enable_duplicate_check': 0,
+                'duplicate_check_interval': 1800,
            }
            try:
-                response = await client.post(url,json=params)
+                response = await client.post(url, json=params)
                data = response.json()
            except Exception as e:
-                raise Exception("Failed to send image: "+str(e))
+                await self.logger.error(f'发送图片失败:{data}')
+                raise Exception('Failed to send image: ' + str(e))

            # 企业微信错误码40014和42001，代表accesstoken问题
            if data['errcode'] == 40014 or data['errcode'] == 42001:
                self.access_token = await self.get_access_token(self.secret)
-                return await self.send_image(user_id,agent_id,media_id)
+                return await self.send_image(user_id, agent_id, media_id)

            if data['errcode'] != 0:
-                raise Exception("Failed to send image: "+str(data))
-            
-    async def send_private_msg(self,user_id:str, agent_id:int,content:str):
+                raise Exception('Failed to send image: ' + str(data))
+
+    async def send_private_msg(self, user_id: str, agent_id: int, content: str):
        if not await self.check_access_token():
            self.access_token = await self.get_access_token(self.secret)

-        url = self.base_url+'/message/send?access_token='+self.access_token
-
+        url = self.base_url + '/message/send?access_token=' + self.access_token
        async with httpx.AsyncClient() as client:
-            params={
-                "touser" : user_id,
-                "msgtype" : "text",
-                "agentid" : agent_id,
-                "text" : {
-                    "content" : content,
+            params = {
+                'touser': user_id,
+                'msgtype': 'text',
+                'agentid': agent_id,
+                'text': {
+                    'content': content,
                },
-                "safe":0,
-                "enable_id_trans": 0,
-                "enable_duplicate_check": 0,
-                "duplicate_check_interval": 1800
+                'safe': 0,
+                'enable_id_trans': 0,
+                'enable_duplicate_check': 0,
+                'duplicate_check_interval': 1800,
            }
-            response = await client.post(url,json=params)
+            response = await client.post(url, json=params)
            data = response.json()
            if data['errcode'] == 40014 or data['errcode'] == 42001:
                self.access_token = await self.get_access_token(self.secret)
-                return await self.send_private_msg(user_id,agent_id,content)
+                return await self.send_private_msg(user_id, agent_id, content)
            if data['errcode'] != 0:
-                raise Exception("Failed to send message: "+str(data))
+                await self.logger.error(f'发送消息失败:{data}')
+                raise Exception('Failed to send message: ' + str(data))

    async def handle_callback_request(self):
        """
        处理回调请求，包括 GET 验证和 POST 消息接收。
        """
        try:
+            msg_signature = request.args.get('msg_signature')
+            timestamp = request.args.get('timestamp')
+            nonce = request.args.get('nonce')

-            msg_signature = request.args.get("msg_signature")
-            timestamp = request.args.get("timestamp")
-            nonce = request.args.get("nonce")
-
-            if request.method == "GET":
-                echostr = request.args.get("echostr")
-                ret, reply_echo_str = self.wxcpt.VerifyURL(msg_signature, timestamp, nonce, echostr)
+            wxcpt = WXBizMsgCrypt(self.token, self.aes, self.corpid)
+            if request.method == 'GET':
+                echostr = request.args.get('echostr')
+                ret, reply_echo_str = wxcpt.VerifyURL(msg_signature, timestamp, nonce, echostr)
                if ret != 0:
-                    raise Exception(f"验证失败，错误码: {ret}")
+                    await self.logger.error('验证失败')
+                    raise Exception(f'验证失败，错误码: {ret}')
                return reply_echo_str

-            elif request.method == "POST":
+            elif request.method == 'POST':
                encrypt_msg = await request.data
-                ret, xml_msg = self.wxcpt.DecryptMsg(encrypt_msg, msg_signature, timestamp, nonce)
+                ret, xml_msg = wxcpt.DecryptMsg(encrypt_msg, msg_signature, timestamp, nonce)
                if ret != 0:
-                    raise Exception(f"消息解密失败，错误码: {ret}")
+                    await self.logger.error('消息解密失败')
+                    raise Exception(f'消息解密失败，错误码: {ret}')

                # 解析消息并处理
                message_data = await self.get_message(xml_msg)
@@ -181,9 +199,10 @@ class WecomClient():
                    if event:
                        await self._handle_message(event)

-                return "success"
+                return 'success'
        except Exception as e:
-            return f"Error processing request: {str(e)}", 400
+            await self.logger.error(f'Error in handle_callback_request: {traceback.format_exc()}')
+            return f'Error processing request: {str(e)}', 400

    async def run_task(self, host: str, port: int, *args, **kwargs):
        """
@@ -195,11 +214,13 @@ class WecomClient():
        """
        注册消息类型处理器。
        """
+
        def decorator(func: Callable[[WecomEvent], None]):
            if msg_type not in self._message_handlers:
                self._message_handlers[msg_type] = []
            self._message_handlers[msg_type].append(func)
            return func
+
        return decorator

    async def _handle_message(self, event: WecomEvent):
@@ -217,38 +238,37 @@ class WecomClient():
        """
        root = ET.fromstring(xml_msg)
        message_data = {
-            "ToUserName": root.find("ToUserName").text,
-            "FromUserName": root.find("FromUserName").text,
-            "CreateTime": int(root.find("CreateTime").text),
-            "MsgType": root.find("MsgType").text,
-            "Content": root.find("Content").text if root.find("Content") is not None else None,
-            "MsgId": int(root.find("MsgId").text) if root.find("MsgId") is not None else None,
-            "AgentID": int(root.find("AgentID").text) if root.find("AgentID") is not None else None,
+            'ToUserName': root.find('ToUserName').text,
+            'FromUserName': root.find('FromUserName').text,
+            'CreateTime': int(root.find('CreateTime').text),
+            'MsgType': root.find('MsgType').text,
+            'Content': root.find('Content').text if root.find('Content') is not None else None,
+            'MsgId': int(root.find('MsgId').text) if root.find('MsgId') is not None else None,
+            'AgentID': int(root.find('AgentID').text) if root.find('AgentID') is not None else None,
        }
-        if message_data["MsgType"] == "image":
-            message_data["MediaId"] = root.find("MediaId").text if root.find("MediaId") is not None else None
-            message_data["PicUrl"] = root.find("PicUrl").text if root.find("PicUrl") is not None else None
-    
+        if message_data['MsgType'] == 'image':
+            message_data['MediaId'] = root.find('MediaId').text if root.find('MediaId') is not None else None
+            message_data['PicUrl'] = root.find('PicUrl').text if root.find('PicUrl') is not None else None
+
        return message_data
-    
+
    @staticmethod
    async def get_image_type(image_bytes: bytes) -> str:
        """
        通过图片的magic numbers判断图片类型
        """
        magic_numbers = {
-            b'\xFF\xD8\xFF': 'jpg',
-            b'\x89\x50\x4E\x47': 'png',
+            b'\xff\xd8\xff': 'jpg',
+            b'\x89\x50\x4e\x47': 'png',
            b'\x47\x49\x46': 'gif',
-            b'\x42\x4D': 'bmp',
-            b'\x00\x00\x01\x00': 'ico'
+            b'\x42\x4d': 'bmp',
+            b'\x00\x00\x01\x00': 'ico',
        }
-    
+
        for magic, ext in magic_numbers.items():
            if image_bytes.startswith(magic):
                return ext
        return 'jpg'  # 默认返回jpg
-    

    async def upload_to_work(self, image: platform_message.Image):
        """
@@ -259,7 +279,7 @@ class WecomClient():

        url = self.base_url + '/media/upload?access_token=' + self.access_token + '&type=file'
        file_bytes = None
-        file_name = "uploaded_file.txt"
+        file_name = 'uploaded_file.txt'

        # 获取文件的二进制数据
        if image.path:
@@ -278,20 +298,23 @@ class WecomClient():
                padded_base64 = base64_data + '=' * padding
                file_bytes = base64.b64decode(padded_base64)
            except binascii.Error as e:
-                raise ValueError(f"Invalid base64 string: {str(e)}")
+                raise ValueError(f'Invalid base64 string: {str(e)}')
        else:
-            raise ValueError("image对象出错")
+            await self.logger.error('Image对象出错')
+            raise ValueError('image对象出错')

        # 设置 multipart/form-data 格式的文件
-        boundary = "-------------------------acebdf13572468"
-        headers = {
-            'Content-Type': f'multipart/form-data; boundary={boundary}'
-        }
+        boundary = '-------------------------acebdf13572468'
+        headers = {'Content-Type': f'multipart/form-data; boundary={boundary}'}
        body = (
-            f"--{boundary}\r\n"
-            f"Content-Disposition: form-data; name=\"media\"; filename=\"{file_name}\"; filelength={len(file_bytes)}\r\n"
-            f"Content-Type: application/octet-stream\r\n\r\n"
-        ).encode('utf-8') + file_bytes + f"\r\n--{boundary}--\r\n".encode('utf-8')
+            (
+                f'--{boundary}\r\n'
+                f'Content-Disposition: form-data; name="media"; filename="{file_name}"; filelength={len(file_bytes)}\r\n'
+                f'Content-Type: application/octet-stream\r\n\r\n'
+            ).encode('utf-8')
+            + file_bytes
+            + f'\r\n--{boundary}--\r\n'.encode('utf-8')
+        )

        # 上传文件
        async with httpx.AsyncClient() as client:
@@ -301,19 +324,20 @@ class WecomClient():
                self.access_token = await self.get_access_token(self.secret)
                media_id = await self.upload_to_work(image)
            if data.get('errcode', 0) != 0:
-                raise Exception("failed to upload file")
+                await self.logger.error(f'上传图片失败:{data}')
+                raise Exception('failed to upload file')

            media_id = data.get('media_id')
            return media_id

-    async def download_image_to_bytes(self,url:str) -> bytes:
+    async def download_image_to_bytes(self, url: str) -> bytes:
        async with httpx.AsyncClient() as client:
            response = await client.get(url)
            response.raise_for_status()
            return response.content

-    #进行media_id的获取
+    # 进行media_id的获取
    async def get_media_id(self, image: platform_message.Image):
-
        media_id = await self.upload_to_work(image=image)
        return media_id
+    
--- a/libs/wecom_api/ierror.py
+++ b/libs/wecom_api/ierror.py
@@ -4,7 +4,7 @@
 # Author: jonyqin
 # Created Time: Thu 11 Sep 2014 01:53:58 PM CST
 # File Name: ierror.py
-# Description:定义错误码含义 
+# Description:定义错误码含义
 #########################################################################
 WXBizMsgCrypt_OK = 0
 WXBizMsgCrypt_ValidateSignature_Error = -40001
@@ -17,4 +17,4 @@ WXBizMsgCrypt_DecryptAES_Error = -40007
 WXBizMsgCrypt_IllegalBuffer = -40008
 WXBizMsgCrypt_EncodeBase64_Error = -40009
 WXBizMsgCrypt_DecodeBase64_Error = -40010
-WXBizMsgCrypt_GenReturnXml_Error = -40011
+WXBizMsgCrypt_GenReturnXml_Error = -40011
--- a/libs/wecom_api/wecomevent.py
+++ b/libs/wecom_api/wecomevent.py
@@ -9,7 +9,7 @@ class WecomEvent(dict):
    """

    @staticmethod
-    def from_payload(payload: Dict[str, Any]) -> Optional["WecomEvent"]:
+    def from_payload(payload: Dict[str, Any]) -> Optional['WecomEvent']:
        """
        从企业微信事件数据构造 `WecomEvent` 对象。

@@ -34,14 +34,14 @@ class WecomEvent(dict):
        Returns:
            str: 事件类型。
        """
-        return self.get("MsgType", "")
-    
+        return self.get('MsgType', '')
+
    @property
    def picurl(self) -> str:
        """
        图片链接
        """
-        return self.get("PicUrl")
+        return self.get('PicUrl')

    @property
    def detail_type(self) -> str:
@@ -53,8 +53,8 @@ class WecomEvent(dict):
        Returns:
            str: 事件详细类型。
        """
-        if self.type == "event":
-            return self.get("Event", "")
+        if self.type == 'event':
+            return self.get('Event', '')
        return self.type

    @property
@@ -65,7 +65,7 @@ class WecomEvent(dict):
        Returns:
            str: 事件名。
        """
-        return f"{self.type}.{self.detail_type}"
+        return f'{self.type}.{self.detail_type}'

    @property
    def user_id(self) -> Optional[str]:
@@ -75,8 +75,8 @@ class WecomEvent(dict):
        Returns:
            Optional[str]: 用户 ID。
        """
-        return self.get("FromUserName")
-    
+        return self.get('FromUserName')
+
    @property
    def agent_id(self) -> Optional[int]:
        """
@@ -85,7 +85,7 @@ class WecomEvent(dict):
        Returns:
            Optional[int]: 机器人 ID。
        """
-        return self.get("AgentID")
+        return self.get('AgentID')

    @property
    def receiver_id(self) -> Optional[str]:
@@ -95,7 +95,7 @@ class WecomEvent(dict):
        Returns:
            Optional[str]: 接收者 ID。
        """
-        return self.get("ToUserName")
+        return self.get('ToUserName')

    @property
    def message_id(self) -> Optional[str]:
@@ -105,7 +105,7 @@ class WecomEvent(dict):
        Returns:
            Optional[str]: 消息 ID。
        """
-        return self.get("MsgId")
+        return self.get('MsgId')

    @property
    def message(self) -> Optional[str]:
@@ -115,7 +115,7 @@ class WecomEvent(dict):
        Returns:
            Optional[str]: 消息内容。
        """
-        return self.get("Content")
+        return self.get('Content')

    @property
    def media_id(self) -> Optional[str]:
@@ -125,7 +125,7 @@ class WecomEvent(dict):
        Returns:
            Optional[str]: 媒体文件 ID。
        """
-        return self.get("MediaId")
+        return self.get('MediaId')

    @property
    def timestamp(self) -> Optional[int]:
@@ -135,7 +135,7 @@ class WecomEvent(dict):
        Returns:
            Optional[int]: 时间戳。
        """
-        return self.get("CreateTime")
+        return self.get('CreateTime')

    @property
    def event_key(self) -> Optional[str]:
@@ -145,7 +145,7 @@ class WecomEvent(dict):
        Returns:
            Optional[str]: 事件 Key。
        """
-        return self.get("EventKey")
+        return self.get('EventKey')

    def __getattr__(self, key: str) -> Optional[Any]:
        """
@@ -176,4 +176,4 @@ class WecomEvent(dict):
        Returns:
            str: 字符串表示。
        """
-        return f"<WecomEvent {super().__repr__()}>"
+        return f'<WecomEvent {super().__repr__()}>'
--- a/libs/wecom_customer_service_api/init.py
+++ b/libs/wecom_customer_service_api/init.py
--- a/libs/wecom_customer_service_api/api.py
+++ b/libs/wecom_customer_service_api/api.py
@@ -0,0 +1,348 @@
+from quart import request
+from ..wecom_api.WXBizMsgCrypt3 import WXBizMsgCrypt
+import base64
+import binascii
+import httpx
+import traceback
+from quart import Quart
+import xml.etree.ElementTree as ET
+from typing import Callable
+from .wecomcsevent import WecomCSEvent
+import langbot_plugin.api.entities.builtin.platform.message as platform_message
+import aiofiles
+
+
+class WecomCSClient:
+    def __init__(self, corpid: str, secret: str, token: str, EncodingAESKey: str, logger: None):
+        self.corpid = corpid
+        self.secret = secret
+        self.access_token_for_contacts = ''
+        self.token = token
+        self.aes = EncodingAESKey
+        self.base_url = 'https://qyapi.weixin.qq.com/cgi-bin'
+        self.access_token = ''
+        self.logger = logger
+        self.app = Quart(__name__)
+        self.app.add_url_rule(
+            '/callback/command', 'handle_callback', self.handle_callback_request, methods=['GET', 'POST']
+        )
+        self._message_handlers = {
+            'example': [],
+        }
+
+    async def get_pic_url(self, media_id: str):
+        if not await self.check_access_token():
+            self.access_token = await self.get_access_token(self.secret)
+
+        url = f'{self.base_url}/media/get?access_token={self.access_token}&media_id={media_id}'
+
+        async with httpx.AsyncClient() as client:
+            response = await client.get(url)
+            if response.headers.get('Content-Type', '').startswith('application/json'):
+                data = response.json()
+                if data.get('errcode') in [40014, 42001]:
+                    self.access_token = await self.get_access_token(self.secret)
+                    return await self.get_pic_url(media_id)
+                else:
+                    raise Exception('Failed to get image: ' + str(data))
+
+            # 否则是图片，转成 base64
+            image_bytes = response.content
+            content_type = response.headers.get('Content-Type', '')
+            base64_str = base64.b64encode(image_bytes).decode('utf-8')
+            base64_str = f'data:{content_type};base64,{base64_str}'
+            return base64_str
+
+    # access——token操作
+    async def check_access_token(self):
+        return bool(self.access_token and self.access_token.strip())
+
+    async def check_access_token_for_contacts(self):
+        return bool(self.access_token_for_contacts and self.access_token_for_contacts.strip())
+
+    async def get_access_token(self, secret):
+        url = f'https://qyapi.weixin.qq.com/cgi-bin/gettoken?corpid={self.corpid}&corpsecret={secret}'
+        async with httpx.AsyncClient() as client:
+            response = await client.get(url)
+            data = response.json()
+            if 'access_token' in data:
+                return data['access_token']
+            else:
+                raise Exception(f'未获取access token: {data}')
+
+    async def get_detailed_message_list(self, xml_msg: str):
+        # 在本方法中解析消息，并且获得消息的具体内容
+        if isinstance(xml_msg, bytes):
+            xml_msg = xml_msg.decode('utf-8')
+        root = ET.fromstring(xml_msg)
+        token = root.find('Token').text
+        open_kfid = root.find('OpenKfId').text
+
+        # if open_kfid in self.openkfid_list:
+        #     return None
+        # else:
+        #     self.openkfid_list.append(open_kfid)
+
+        if not await self.check_access_token():
+            self.access_token = await self.get_access_token(self.secret)
+
+        url = self.base_url + '/kf/sync_msg?access_token=' + self.access_token
+        async with httpx.AsyncClient() as client:
+            params = {
+                'token': token,
+                'voice_format': 0,
+                'open_kfid': open_kfid,
+            }
+            response = await client.post(url, json=params)
+            data = response.json()
+            if data['errcode'] == 40014 or data['errcode'] == 42001:
+                self.access_token = await self.get_access_token(self.secret)
+                return await self.get_detailed_message_list(xml_msg)
+            if data['errcode'] != 0:
+                raise Exception('Failed to get message')
+
+            last_msg_data = data['msg_list'][-1]
+            open_kfid = last_msg_data.get('open_kfid')
+            # 进行获取图片操作
+            if last_msg_data.get('msgtype') == 'image':
+                media_id = last_msg_data.get('image').get('media_id')
+                picurl = await self.get_pic_url(media_id)
+                last_msg_data['picurl'] = picurl
+            # await self.change_service_status(userid=external_userid,openkfid=open_kfid,servicer=servicer)
+            return last_msg_data
+
+    async def change_service_status(self, userid: str, openkfid: str, servicer: str):
+        if not await self.check_access_token():
+            self.access_token = await self.get_access_token(self.secret)
+        url = self.base_url + '/kf/service_state/get?access_token=' + self.access_token
+        async with httpx.AsyncClient() as client:
+            params = {
+                'open_kfid': openkfid,
+                'external_userid': userid,
+                'service_state': 1,
+                'servicer_userid': servicer,
+            }
+            response = await client.post(url, json=params)
+            data = response.json()
+            if data['errcode'] == 40014 or data['errcode'] == 42001:
+                self.access_token = await self.get_access_token(self.secret)
+                return await self.change_service_status(userid, openkfid)
+            if data['errcode'] != 0:
+                raise Exception('Failed to change service status: ' + str(data))
+
+    async def send_image(self, user_id: str, agent_id: int, media_id: str):
+        if not await self.check_access_token():
+            self.access_token = await self.get_access_token(self.secret)
+        url = self.base_url + '/media/upload?access_token=' + self.access_token
+        async with httpx.AsyncClient() as client:
+            params = {
+                'touser': user_id,
+                'toparty': '',
+                'totag': '',
+                'agentid': agent_id,
+                'msgtype': 'image',
+                'image': {
+                    'media_id': media_id,
+                },
+                'safe': 0,
+                'enable_id_trans': 0,
+                'enable_duplicate_check': 0,
+                'duplicate_check_interval': 1800,
+            }
+            try:
+                response = await client.post(url, json=params)
+                data = response.json()
+            except Exception as e:
+                raise Exception('Failed to send image: ' + str(e))
+
+            # 企业微信错误码40014和42001，代表accesstoken问题
+            if data['errcode'] == 40014 or data['errcode'] == 42001:
+                self.access_token = await self.get_access_token(self.secret)
+                return await self.send_image(user_id, agent_id, media_id)
+
+            if data['errcode'] != 0:
+                raise Exception('Failed to send image: ' + str(data))
+
+    async def send_text_msg(self, open_kfid: str, external_userid: str, msgid: str, content: str):
+        if not await self.check_access_token():
+            self.access_token = await self.get_access_token(self.secret)
+
+        url = f'https://qyapi.weixin.qq.com/cgi-bin/kf/send_msg?access_token={self.access_token}'
+
+        payload = {
+            'touser': external_userid,
+            'open_kfid': open_kfid,
+            'msgid': msgid,
+            'msgtype': 'text',
+            'text': {
+                'content': content,
+            },
+        }
+
+        async with httpx.AsyncClient() as client:
+            response = await client.post(url, json=payload)
+
+            data = response.json()
+            if data['errcode'] == 40014 or data['errcode'] == 42001:
+                self.access_token = await self.get_access_token(self.secret)
+                return await self.send_text_msg(open_kfid, external_userid, msgid, content)
+            if data['errcode'] != 0:
+                await self.logger.error(f'发送消息失败：{data}')
+                raise Exception('Failed to send message')
+            return data
+
+    async def handle_callback_request(self):
+        """
+        处理回调请求，包括 GET 验证和 POST 消息接收。
+        """
+        try:
+            msg_signature = request.args.get('msg_signature')
+            timestamp = request.args.get('timestamp')
+            nonce = request.args.get('nonce')
+            try:
+                wxcpt = WXBizMsgCrypt(self.token, self.aes, self.corpid)
+            except Exception as e:
+                raise Exception(f'初始化失败，错误码: {e}')
+
+            if request.method == 'GET':
+                echostr = request.args.get('echostr')
+                ret, reply_echo_str = wxcpt.VerifyURL(msg_signature, timestamp, nonce, echostr)
+                if ret != 0:
+                    raise Exception(f'验证失败，错误码: {ret}')
+                return reply_echo_str
+
+            elif request.method == 'POST':
+                encrypt_msg = await request.data
+                ret, xml_msg = wxcpt.DecryptMsg(encrypt_msg, msg_signature, timestamp, nonce)
+                if ret != 0:
+                    raise Exception(f'消息解密失败，错误码: {ret}')
+
+                # 解析消息并处理
+                message_data = await self.get_detailed_message_list(xml_msg)
+                if message_data is not None:
+                    event = WecomCSEvent.from_payload(message_data)
+                    if event:
+                        await self._handle_message(event)
+
+                return 'success'
+        except Exception as e:
+            if self.logger:
+                await self.logger.error(f'Error in handle_callback_request: {traceback.format_exc()}')
+            else:
+                traceback.print_exc()
+            return f'Error processing request: {str(e)}', 400
+
+    async def run_task(self, host: str, port: int, *args, **kwargs):
+        """
+        启动 Quart 应用。
+        """
+        await self.app.run_task(host=host, port=port, *args, **kwargs)
+
+    def on_message(self, msg_type: str):
+        """
+        注册消息类型处理器。
+        """
+
+        def decorator(func: Callable[[WecomCSEvent], None]):
+            if msg_type not in self._message_handlers:
+                self._message_handlers[msg_type] = []
+            self._message_handlers[msg_type].append(func)
+            return func
+
+        return decorator
+
+    async def _handle_message(self, event: WecomCSEvent):
+        """
+        处理消息事件。
+        """
+        msg_type = event.type
+        if msg_type in self._message_handlers:
+            for handler in self._message_handlers[msg_type]:
+                await handler(event)
+
+    @staticmethod
+    async def get_image_type(image_bytes: bytes) -> str:
+        """
+        通过图片的magic numbers判断图片类型
+        """
+        magic_numbers = {
+            b'\xff\xd8\xff': 'jpg',
+            b'\x89\x50\x4e\x47': 'png',
+            b'\x47\x49\x46': 'gif',
+            b'\x42\x4d': 'bmp',
+            b'\x00\x00\x01\x00': 'ico',
+        }
+
+        for magic, ext in magic_numbers.items():
+            if image_bytes.startswith(magic):
+                return ext
+        return 'jpg'  # 默认返回jpg
+
+    async def upload_to_work(self, image: platform_message.Image):
+        """
+        获取 media_id
+        """
+        if not await self.check_access_token():
+            self.access_token = await self.get_access_token(self.secret)
+
+        url = self.base_url + '/media/upload?access_token=' + self.access_token + '&type=file'
+        file_bytes = None
+        file_name = 'uploaded_file.txt'
+
+        # 获取文件的二进制数据
+        if image.path:
+            async with aiofiles.open(image.path, 'rb') as f:
+                file_bytes = await f.read()
+                file_name = image.path.split('/')[-1]
+        elif image.url:
+            file_bytes = await self.download_image_to_bytes(image.url)
+            file_name = image.url.split('/')[-1]
+        elif image.base64:
+            try:
+                base64_data = image.base64
+                if ',' in base64_data:
+                    base64_data = base64_data.split(',', 1)[1]
+                padding = 4 - (len(base64_data) % 4) if len(base64_data) % 4 else 0
+                padded_base64 = base64_data + '=' * padding
+                file_bytes = base64.b64decode(padded_base64)
+            except binascii.Error as e:
+                raise ValueError(f'Invalid base64 string: {str(e)}')
+        else:
+            raise ValueError('image对象出错')
+
+        # 设置 multipart/form-data 格式的文件
+        boundary = '-------------------------acebdf13572468'
+        headers = {'Content-Type': f'multipart/form-data; boundary={boundary}'}
+        body = (
+            (
+                f'--{boundary}\r\n'
+                f'Content-Disposition: form-data; name="media"; filename="{file_name}"; filelength={len(file_bytes)}\r\n'
+                f'Content-Type: application/octet-stream\r\n\r\n'
+            ).encode('utf-8')
+            + file_bytes
+            + f'\r\n--{boundary}--\r\n'.encode('utf-8')
+        )
+
+        # 上传文件
+        async with httpx.AsyncClient() as client:
+            response = await client.post(url, headers=headers, content=body)
+            data = response.json()
+            if data['errcode'] == 40014 or data['errcode'] == 42001:
+                self.access_token = await self.get_access_token(self.secret)
+                media_id = await self.upload_to_work(image)
+            if data.get('errcode', 0) != 0:
+                raise Exception('failed to upload file')
+
+            media_id = data.get('media_id')
+            return media_id
+
+    async def download_image_to_bytes(self, url: str) -> bytes:
+        async with httpx.AsyncClient() as client:
+            response = await client.get(url)
+            response.raise_for_status()
+            return response.content
+
+    # 进行media_id的获取
+    async def get_media_id(self, image: platform_message.Image):
+        media_id = await self.upload_to_work(image=image)
+        return media_id
--- a/libs/wecom_customer_service_api/wecomcsevent.py
+++ b/libs/wecom_customer_service_api/wecomcsevent.py
@@ -0,0 +1,132 @@
+from typing import Dict, Any, Optional
+
+
+class WecomCSEvent(dict):
+    """
+    封装从企业微信收到的事件数据对象（字典），提供属性以获取其中的字段。
+
+    除 `type` 和 `detail_type` 属性对于任何事件都有效外，其它属性是否存在（若不存在则返回 `None`）依事件类型不同而不同。
+    """
+
+    @staticmethod
+    def from_payload(payload: Dict[str, Any]) -> Optional['WecomCSEvent']:
+        """
+        从企业微信(客服会话)事件数据构造 `WecomEvent` 对象。
+
+        Args:
+            payload (Dict[str, Any]): 解密后的企业微信事件数据。
+
+        Returns:
+            Optional[WecomEvent]: 如果事件数据合法，则返回 WecomEvent 对象；否则返回 None。
+        """
+        try:
+            event = WecomCSEvent(payload)
+            _ = (event.type,)
+            return event
+        except KeyError:
+            return None
+
+    @property
+    def type(self) -> str:
+        """
+        事件类型，例如 "message"、"event"、"text" 等。
+
+        Returns:
+            str: 事件类型。
+        """
+        return self.get('msgtype', '')
+
+    @property
+    def user_id(self) -> Optional[str]:
+        """
+        用户 ID，例如消息的发送者或事件的触发者。
+
+        Returns:
+            Optional[str]: 用户 ID。
+        """
+        return self.get('external_userid')
+
+    @property
+    def receiver_id(self) -> Optional[str]:
+        """
+        接收者 ID，例如机器人自身的企业微信 ID。
+
+        Returns:
+            Optional[str]: 接收者 ID。
+        """
+        return self.get('open_kfid', '')
+
+    @property
+    def picurl(self) -> Optional[str]:
+        """
+        图片 URL，仅在图片消息中存在。
+        base64格式
+        Returns:
+            Optional[str]: 图片 URL。
+        """
+
+        return self.get('picurl', '')
+
+    @property
+    def message_id(self) -> Optional[str]:
+        """
+        消息 ID，仅在消息类型事件中存在。
+
+        Returns:
+            Optional[str]: 消息 ID。
+        """
+        return self.get('msgid')
+
+    @property
+    def message(self) -> Optional[str]:
+        """
+        消息内容，仅在消息类型事件中存在。
+
+        Returns:
+            Optional[str]: 消息内容。
+        """
+        if self.get('msgtype') == 'text':
+            return self.get('text').get('content', '')
+        else:
+            return None
+
+    @property
+    def timestamp(self) -> Optional[int]:
+        """
+        事件发生的时间戳。
+
+        Returns:
+            Optional[int]: 时间戳。
+        """
+        return self.get('send_time')
+
+    def __getattr__(self, key: str) -> Optional[Any]:
+        """
+        允许通过属性访问数据中的任意字段。
+
+        Args:
+            key (str): 字段名。
+
+        Returns:
+            Optional[Any]: 字段值。
+        """
+        return self.get(key)
+
+    def __setattr__(self, key: str, value: Any) -> None:
+        """
+        允许通过属性设置数据中的任意字段。
+
+        Args:
+            key (str): 字段名。
+            value (Any): 字段值。
+        """
+        self[key] = value
+
+    def __repr__(self) -> str:
+        """
+        生成事件对象的字符串表示。
+
+        Returns:
+            str: 字符串表示。
+        """
+        return f'<WecomEvent {super().__repr__()}>'
--- a/main.py
+++ b/main.py
@@ -1,3 +1,5 @@
+import asyncio
+import argparse
 # LangBot 终端启动入口
 # 在此层级解决依赖项检查。
 # LangBot/main.py
@@ -9,15 +11,32 @@ asciiart = r"""
 |____\__,_|_||_\__, |___/\___/\__|
               |___/              

-⭐️开源地址: https://github.com/RockChinQ/LangBot
-📖文档地址: https://docs.langbot.app
+⭐️ Open Source 开源地址: https://github.com/langbot-app/LangBot
+📖 Documentation 文档地址: https://docs.langbot.app
 """


-import asyncio
-
-
 async def main_entry(loop: asyncio.AbstractEventLoop):
+    parser = argparse.ArgumentParser(description='LangBot')
+    parser.add_argument(
+        '--standalone-runtime',
+        action='store_true',
+        help='Use standalone plugin runtime / 使用独立插件运行时',
+        default=False,
+    )
+    parser.add_argument('--debug', action='store_true', help='Debug mode / 调试模式', default=False)
+    args = parser.parse_args()
+
+    if args.standalone_runtime:
+        from pkg.utils import platform
+
+        platform.standalone_runtime = True
+
+    if args.debug:
+        from pkg.utils import constants
+
+        constants.debug_mode = True
+
    print(asciiart)

    import sys
@@ -29,18 +48,24 @@ async def main_entry(loop: asyncio.AbstractEventLoop):
    missing_deps = await deps.check_deps()

    if missing_deps:
-        print("以下依赖包未安装，将自动安装，请完成后重启程序：")
+        print('以下依赖包未安装，将自动安装，请完成后重启程序：')
+        print(
+            'These dependencies are missing, they will be installed automatically, please restart the program after completion:'
+        )
        for dep in missing_deps:
-            print("-", dep)
+            print('-', dep)
        await deps.install_deps(missing_deps)
-        print("已自动安装缺失的依赖包，请重启程序。")
+        print('已自动安装缺失的依赖包，请重启程序。')
+        print('The missing dependencies have been installed automatically, please restart the program.')
        sys.exit(0)

-    # 检查pydantic版本，如果没有 pydantic.v1，则把 pydantic 映射为 v1
-    import pydantic.version
-    if pydantic.version.VERSION < '2.0':
-        import pydantic
-        sys.modules['pydantic.v1'] = pydantic
+    # # 检查pydantic版本，如果没有 pydantic.v1，则把 pydantic 映射为 v1
+    # import pydantic.version
+
+    # if pydantic.version.VERSION < '2.0':
+    #     import pydantic
+
+    #     sys.modules['pydantic.v1'] = pydantic

    # 检查配置文件

@@ -49,11 +74,13 @@ async def main_entry(loop: asyncio.AbstractEventLoop):
    generated_files = await files.generate_files()

    if generated_files:
-        print("以下文件不存在，已自动生成：")
+        print('以下文件不存在，已自动生成：')
+        print('Following files do not exist and have been automatically generated:')
        for file in generated_files:
-            print("-", file)
+            print('-', file)

    from pkg.core import boot
+
    await boot.main(loop)


@@ -63,11 +90,12 @@ if __name__ == '__main__':

    # 必须大于 3.10.1
    if sys.version_info < (3, 10, 1):
-        print("需要 Python 3.10.1 及以上版本，当前 Python 版本为：", sys.version)
-        input("按任意键退出...")
+        print('需要 Python 3.10.1 及以上版本，当前 Python 版本为：', sys.version)
+        input('按任意键退出...')
+        print('Your Python version is not supported. Please exit the program by pressing any key.')
        exit(1)

-    # 检查本目录是否有main.py，且包含LangBot字符串
+    # Check if the current directory is the LangBot project root directory
    invalid_pwd = False

    if not os.path.exists('main.py'):
@@ -75,11 +103,13 @@ if __name__ == '__main__':
    else:
        with open('main.py', 'r', encoding='utf-8') as f:
            content = f.read()
-            if "LangBot/main.py" not in content:
+            if 'LangBot/main.py' not in content:
                invalid_pwd = True
    if invalid_pwd:
-        print("请在 LangBot 项目根目录下以命令形式运行此程序。")
-        input("按任意键退出...")
+        print('请在 LangBot 项目根目录下以命令形式运行此程序。')
+        input('按任意键退出...')
+        print('Please run this program in the LangBot project root directory in command form.')
+        print('Press any key to exit...')
        exit(1)

    loop = asyncio.new_event_loop()
--- a/pkg/api/http/controller/group.py
+++ b/pkg/api/http/controller/group.py
@@ -4,15 +4,17 @@ import abc
 import typing
 import enum
 import quart
+import traceback
 from quart.typing import RouteCallable

 from ....core import app


 preregistered_groups: list[type[RouterGroup]] = []
-"""RouterGroup 的预注册列表"""
+"""Pre-registered list of RouterGroup"""

-def group_class(name: str, path: str) -> None:
+
+def group_class(name: str, path: str) -> typing.Callable[[typing.Type[RouterGroup]], typing.Type[RouterGroup]]:
    """注册一个 RouterGroup"""

    def decorator(cls: typing.Type[RouterGroup]) -> typing.Type[RouterGroup]:
@@ -25,13 +27,13 @@ def group_class(name: str, path: str) -> None:


 class AuthType(enum.Enum):
-    """认证类型"""
+    """Authentication type"""
+
    NONE = 'none'
    USER_TOKEN = 'user-token'


 class RouterGroup(abc.ABC):
-
    name: str

    path: str
@@ -48,25 +50,35 @@ class RouterGroup(abc.ABC):
    async def initialize(self) -> None:
        pass

-    def route(self, rule: str, auth_type: AuthType = AuthType.USER_TOKEN, **options: typing.Any) -> typing.Callable[[RouteCallable], RouteCallable]:  # decorator
-        """注册一个路由"""
+    def route(
+        self,
+        rule: str,
+        auth_type: AuthType = AuthType.USER_TOKEN,
+        **options: typing.Any,
+    ) -> typing.Callable[[RouteCallable], RouteCallable]:  # decorator
+        """Register a route"""
+
        def decorator(f: RouteCallable) -> RouteCallable:
            nonlocal rule
            rule = self.path + rule

            async def handler_error(*args, **kwargs):
-
                if auth_type == AuthType.USER_TOKEN:
-                    # 从Authorization头中获取token
+                    # get token from Authorization header
                    token = quart.request.headers.get('Authorization', '').replace('Bearer ', '')

                    if not token:
-                        return self.http_status(401, -1, '未提供有效的用户令牌')
+                        return self.http_status(401, -1, 'No valid user token provided')

                    try:
                        user_email = await self.ap.user_service.verify_jwt_token(token)

-                        # 检查f是否接受user_email参数
+                        # check if this account exists
+                        user = await self.ap.user_service.get_user_by_email(user_email)
+                        if not user:
+                            return self.http_status(401, -1, 'User not found')
+
+                        # check if f accepts user_email parameter
                        if 'user_email' in f.__code__.co_varnames:
                            kwargs['user_email'] = user_email
                    except Exception as e:
@@ -74,9 +86,12 @@ class RouterGroup(abc.ABC):

                try:
                    return await f(*args, **kwargs)
+
                except Exception as e:  # 自动 500
+                    traceback.print_exc()
+                    # return self.http_status(500, -2, str(e))
                    return self.http_status(500, -2, str(e))
-                
+
            new_f = handler_error
            new_f.__name__ = (self.name + rule).replace('/', '__')
            new_f.__doc__ = f.__doc__
@@ -87,21 +102,25 @@ class RouterGroup(abc.ABC):
        return decorator

    def success(self, data: typing.Any = None) -> quart.Response:
-        """返回一个 200 响应"""
-        return quart.jsonify({
-            'code': 0,
-            'msg': 'ok',
-            'data': data,
-        })
-    
-    def fail(self, code: int, msg: str) -> quart.Response:
-        """返回一个异常响应"""
+        """Return a 200 response"""
+        return quart.jsonify(
+            {
+                'code': 0,
+                'msg': 'ok',
+                'data': data,
+            }
+        )

-        return quart.jsonify({
-            'code': code,
-            'msg': msg,
-        })
-    
-    def http_status(self, status: int, code: int, msg: str) -> quart.Response:
+    def fail(self, code: int, msg: str) -> quart.Response:
+        """Return an error response"""
+
+        return quart.jsonify(
+            {
+                'code': code,
+                'msg': msg,
+            }
+        )
+
+    def http_status(self, status: int, code: int, msg: str) -> typing.Tuple[quart.Response, int]:
        """返回一个指定状态码的响应"""
-        return self.fail(code, msg), status
+        return (self.fail(code, msg), status)
--- a/pkg/api/http/controller/groups/files.py
+++ b/pkg/api/http/controller/groups/files.py
@@ -0,0 +1,53 @@
+from __future__ import annotations
+
+import quart
+import mimetypes
+import uuid
+import asyncio
+
+import quart.datastructures
+
+from .. import group
+
+
+@group.group_class('files', '/api/v1/files')
+class FilesRouterGroup(group.RouterGroup):
+    async def initialize(self) -> None:
+        @self.route('/image/<image_key>', methods=['GET'], auth_type=group.AuthType.NONE)
+        async def _(image_key: str) -> quart.Response:
+            if '/' in image_key or '\\' in image_key:
+                return quart.Response(status=404)
+
+            if not await self.ap.storage_mgr.storage_provider.exists(image_key):
+                return quart.Response(status=404)
+
+            image_bytes = await self.ap.storage_mgr.storage_provider.load(image_key)
+            mime_type = mimetypes.guess_type(image_key)[0]
+            if mime_type is None:
+                mime_type = 'image/jpeg'
+
+            return quart.Response(image_bytes, mimetype=mime_type)
+
+        @self.route('/documents', methods=['POST'], auth_type=group.AuthType.USER_TOKEN)
+        async def _() -> quart.Response:
+            request = quart.request
+            # get file bytes from 'file'
+            file = (await request.files)['file']
+            assert isinstance(file, quart.datastructures.FileStorage)
+
+            file_bytes = await asyncio.to_thread(file.stream.read)
+            extension = file.filename.split('.')[-1]
+            file_name = file.filename.split('.')[0]
+
+            # check if file name contains '/' or '\'
+            if '/' in file_name or '\\' in file_name:
+                return self.fail(400, 'File name contains invalid characters')
+
+            file_key = file_name + '_' + str(uuid.uuid4())[:8] + '.' + extension
+            # save file to storage
+            await self.ap.storage_mgr.storage_provider.save(file_key, file_bytes)
+            return self.success(
+                data={
+                    'file_id': file_key,
+                }
+            )
--- a/pkg/api/http/controller/groups/knowledge/init.py
+++ b/pkg/api/http/controller/groups/knowledge/init.py
--- a/pkg/api/http/controller/groups/knowledge/base.py
+++ b/pkg/api/http/controller/groups/knowledge/base.py
@@ -0,0 +1,90 @@
+import quart
+from ... import group
+
+
+@group.group_class('knowledge_base', '/api/v1/knowledge/bases')
+class KnowledgeBaseRouterGroup(group.RouterGroup):
+    async def initialize(self) -> None:
+        @self.route('', methods=['POST', 'GET'])
+        async def handle_knowledge_bases() -> quart.Response:
+            if quart.request.method == 'GET':
+                knowledge_bases = await self.ap.knowledge_service.get_knowledge_bases()
+                return self.success(data={'bases': knowledge_bases})
+
+            elif quart.request.method == 'POST':
+                json_data = await quart.request.json
+                knowledge_base_uuid = await self.ap.knowledge_service.create_knowledge_base(json_data)
+                return self.success(data={'uuid': knowledge_base_uuid})
+
+            return self.http_status(405, -1, 'Method not allowed')
+
+        @self.route(
+            '/<knowledge_base_uuid>',
+            methods=['GET', 'DELETE', 'PUT'],
+        )
+        async def handle_specific_knowledge_base(knowledge_base_uuid: str) -> quart.Response:
+            if quart.request.method == 'GET':
+                knowledge_base = await self.ap.knowledge_service.get_knowledge_base(knowledge_base_uuid)
+
+                if knowledge_base is None:
+                    return self.http_status(404, -1, 'knowledge base not found')
+
+                return self.success(
+                    data={
+                        'base': knowledge_base,
+                    }
+                )
+
+            elif quart.request.method == 'PUT':
+                json_data = await quart.request.json
+                await self.ap.knowledge_service.update_knowledge_base(knowledge_base_uuid, json_data)
+                return self.success({})
+
+            elif quart.request.method == 'DELETE':
+                await self.ap.knowledge_service.delete_knowledge_base(knowledge_base_uuid)
+                return self.success({})
+
+        @self.route(
+            '/<knowledge_base_uuid>/files',
+            methods=['GET', 'POST'],
+        )
+        async def get_knowledge_base_files(knowledge_base_uuid: str) -> str:
+            if quart.request.method == 'GET':
+                files = await self.ap.knowledge_service.get_files_by_knowledge_base(knowledge_base_uuid)
+                return self.success(
+                    data={
+                        'files': files,
+                    }
+                )
+
+            elif quart.request.method == 'POST':
+                json_data = await quart.request.json
+                file_id = json_data.get('file_id')
+                if not file_id:
+                    return self.http_status(400, -1, 'File ID is required')
+
+                # 调用服务层方法将文件与知识库关联
+                task_id = await self.ap.knowledge_service.store_file(knowledge_base_uuid, file_id)
+                return self.success(
+                    {
+                        'task_id': task_id,
+                    }
+                )
+
+        @self.route(
+            '/<knowledge_base_uuid>/files/<file_id>',
+            methods=['DELETE'],
+        )
+        async def delete_specific_file_in_kb(file_id: str, knowledge_base_uuid: str) -> str:
+            await self.ap.knowledge_service.delete_file(knowledge_base_uuid, file_id)
+            return self.success({})
+
+        @self.route(
+            '/<knowledge_base_uuid>/retrieve',
+            methods=['POST'],
+        )
+        async def retrieve_knowledge_base(knowledge_base_uuid: str) -> str:
+            json_data = await quart.request.json
+            query = json_data.get('query')
+            results = await self.ap.knowledge_service.retrieve_knowledge_base(knowledge_base_uuid, query)
+            return self.success(data={'results': results})
--- a/pkg/api/http/controller/groups/logs.py
+++ b/pkg/api/http/controller/groups/logs.py
@@ -1,32 +1,27 @@
 from __future__ import annotations

-import traceback

 import quart

-from .....core import app
 from .. import group


@group.group_class('logs', '/api/v1/logs')
 class LogsRouterGroup(group.RouterGroup):
-    
    async def initialize(self) -> None:
        @self.route('', methods=['GET'], auth_type=group.AuthType.USER_TOKEN)
        async def _() -> str:
-
            start_page_number = int(quart.request.args.get('start_page_number', 0))
            start_offset = int(quart.request.args.get('start_offset', 0))

            logs_str, end_page_number, end_offset = self.ap.log_cache.get_log_by_pointer(
-                start_page_number=start_page_number,
-                start_offset=start_offset
+                start_page_number=start_page_number, start_offset=start_offset
            )

            return self.success(
                data={
-                    "logs": logs_str,
-                    "end_page_number": end_page_number,
-                    "end_offset": end_offset
+                    'logs': logs_str,
+                    'end_page_number': end_page_number,
+                    'end_offset': end_offset,
                }
            )
--- a/pkg/api/http/controller/groups/pipelines/init.py
+++ b/pkg/api/http/controller/groups/pipelines/init.py
--- a/pkg/api/http/controller/groups/pipelines/pipelines.py
+++ b/pkg/api/http/controller/groups/pipelines/pipelines.py
@@ -0,0 +1,48 @@
+from __future__ import annotations
+
+import quart
+
+from ... import group
+
+
+@group.group_class('pipelines', '/api/v1/pipelines')
+class PipelinesRouterGroup(group.RouterGroup):
+    async def initialize(self) -> None:
+        @self.route('', methods=['GET', 'POST'])
+        async def _() -> str:
+            if quart.request.method == 'GET':
+                sort_by = quart.request.args.get('sort_by', 'created_at')
+                sort_order = quart.request.args.get('sort_order', 'DESC')
+                return self.success(
+                    data={'pipelines': await self.ap.pipeline_service.get_pipelines(sort_by, sort_order)}
+                )
+            elif quart.request.method == 'POST':
+                json_data = await quart.request.json
+
+                pipeline_uuid = await self.ap.pipeline_service.create_pipeline(json_data)
+
+                return self.success(data={'uuid': pipeline_uuid})
+
+        @self.route('/_/metadata', methods=['GET'])
+        async def _() -> str:
+            return self.success(data={'configs': await self.ap.pipeline_service.get_pipeline_metadata()})
+
+        @self.route('/<pipeline_uuid>', methods=['GET', 'PUT', 'DELETE'])
+        async def _(pipeline_uuid: str) -> str:
+            if quart.request.method == 'GET':
+                pipeline = await self.ap.pipeline_service.get_pipeline(pipeline_uuid)
+
+                if pipeline is None:
+                    return self.http_status(404, -1, 'pipeline not found')
+
+                return self.success(data={'pipeline': pipeline})
+            elif quart.request.method == 'PUT':
+                json_data = await quart.request.json
+
+                await self.ap.pipeline_service.update_pipeline(pipeline_uuid, json_data)
+
+                return self.success()
+            elif quart.request.method == 'DELETE':
+                await self.ap.pipeline_service.delete_pipeline(pipeline_uuid)
+
+                return self.success()
--- a/pkg/api/http/controller/groups/pipelines/webchat.py
+++ b/pkg/api/http/controller/groups/pipelines/webchat.py
@@ -0,0 +1,109 @@
+import json
+
+import quart
+
+from ... import group
+
+
+@group.group_class('webchat', '/api/v1/pipelines/<pipeline_uuid>/chat')
+class WebChatDebugRouterGroup(group.RouterGroup):
+    async def initialize(self) -> None:
+        @self.route('/send', methods=['POST'])
+        async def send_message(pipeline_uuid: str) -> str:
+            """Send a message to the pipeline for debugging"""
+
+            async def stream_generator(generator):
+                yield 'data: {"type": "start"}\n\n'
+                async for message in generator:
+                    yield f'data: {json.dumps({"message": message})}\n\n'
+                yield 'data: {"type": "end"}\n\n'
+
+            try:
+                data = await quart.request.get_json()
+                session_type = data.get('session_type', 'person')
+                message_chain_obj = data.get('message', [])
+                is_stream = data.get('is_stream', False)
+
+                if not message_chain_obj:
+                    return self.http_status(400, -1, 'message is required')
+
+                if session_type not in ['person', 'group']:
+                    return self.http_status(400, -1, 'session_type must be person or group')
+
+                webchat_adapter = self.ap.platform_mgr.webchat_proxy_bot.adapter
+
+                if not webchat_adapter:
+                    return self.http_status(404, -1, 'WebChat adapter not found')
+
+                if is_stream:
+                    generator = webchat_adapter.send_webchat_message(
+                        pipeline_uuid, session_type, message_chain_obj, is_stream
+                    )
+                    # 设置正确的响应头
+                    headers = {
+                        'Content-Type': 'text/event-stream',
+                        'Transfer-Encoding': 'chunked',
+                        'Cache-Control': 'no-cache',
+                        'Connection': 'keep-alive',
+                    }
+                    return quart.Response(stream_generator(generator), mimetype='text/event-stream', headers=headers)
+
+                else:  # non-stream
+                    result = None
+                    async for message in webchat_adapter.send_webchat_message(
+                        pipeline_uuid, session_type, message_chain_obj
+                    ):
+                        result = message
+                    if result is not None:
+                        return self.success(
+                            data={
+                                'message': result,
+                            }
+                        )
+                    else:
+                        return self.http_status(400, -1, 'message is required')
+
+            except Exception as e:
+                return self.http_status(500, -1, f'Internal server error: {str(e)}')
+
+        @self.route('/messages/<session_type>', methods=['GET'])
+        async def get_messages(pipeline_uuid: str, session_type: str) -> str:
+            """Get the message history of the pipeline for debugging"""
+            try:
+                if session_type not in ['person', 'group']:
+                    return self.http_status(400, -1, 'session_type must be person or group')
+
+                webchat_adapter = self.ap.platform_mgr.webchat_proxy_bot.adapter
+
+                if not webchat_adapter:
+                    return self.http_status(404, -1, 'WebChat adapter not found')
+
+                messages = webchat_adapter.get_webchat_messages(pipeline_uuid, session_type)
+
+                return self.success(data={'messages': messages})
+
+            except Exception as e:
+                return self.http_status(500, -1, f'Internal server error: {str(e)}')
+
+        @self.route('/reset/<session_type>', methods=['POST'])
+        async def reset_session(session_type: str) -> str:
+            """Reset the debug session"""
+            try:
+                if session_type not in ['person', 'group']:
+                    return self.http_status(400, -1, 'session_type must be person or group')
+
+                webchat_adapter = None
+                for bot in self.ap.platform_mgr.bots:
+                    if hasattr(bot.adapter, '__class__') and bot.adapter.__class__.__name__ == 'WebChatAdapter':
+                        webchat_adapter = bot.adapter
+                        break
+
+                if not webchat_adapter:
+                    return self.http_status(404, -1, 'WebChat adapter not found')
+
+                webchat_adapter.reset_debug_session(session_type)
+
+                return self.success(data={'message': 'Session reset successfully'})
+
+            except Exception as e:
+                return self.http_status(500, -1, f'Internal server error: {str(e)}')
--- a/pkg/api/http/controller/groups/pipelines/websocket.py
+++ b/pkg/api/http/controller/groups/pipelines/websocket.py
@@ -0,0 +1,229 @@
+"""流水线调试 WebSocket 路由
+
+提供基于 WebSocket 的实时双向通信，用于流水线调试。
+支持 person 和 group 两种会话类型的隔离。
+"""
+
+import asyncio
+import logging
+import uuid
+from datetime import datetime
+
+import quart
+
+from ... import group
+from ....service.websocket_pool import WebSocketConnection
+
+logger = logging.getLogger(__name__)
+
+
+async def handle_client_event(connection: WebSocketConnection, message: dict, ap):
+    """处理客户端发送的事件
+
+    Args:
+        connection: WebSocket 连接对象
+        message: 客户端消息 {'type': 'xxx', 'data': {...}}
+        ap: Application 实例
+    """
+    event_type = message.get('type')
+    data = message.get('data', {})
+
+    pipeline_uuid = connection.pipeline_uuid
+    session_type = connection.session_type
+
+    try:
+        webchat_adapter = ap.platform_mgr.webchat_proxy_bot.adapter
+
+        if event_type == 'send_message':
+            # 发送消息到指定会话
+            message_chain_obj = data.get('message_chain', [])
+            client_message_id = data.get('client_message_id')
+
+            if not message_chain_obj:
+                await connection.send('error', {'error': 'message_chain is required', 'error_code': 'INVALID_REQUEST'})
+                return
+
+            logger.info(
+                f"Received send_message: pipeline={pipeline_uuid}, "
+                f"session={session_type}, "
+                f"client_msg_id={client_message_id}"
+            )
+
+            # 调用 webchat_adapter.send_webchat_message
+            # 消息将通过 reply_message_chunk 自动推送到 WebSocket
+            result = None
+            async for msg in webchat_adapter.send_webchat_message(
+                pipeline_uuid=pipeline_uuid, session_type=session_type, message_chain_obj=message_chain_obj, is_stream=True
+            ):
+                result = msg
+
+            # 发送确认
+            if result:
+                await connection.send(
+                    'message_sent',
+                    {
+                        'client_message_id': client_message_id,
+                        'server_message_id': result.get('id'),
+                        'timestamp': result.get('timestamp'),
+                    },
+                )
+
+        elif event_type == 'load_history':
+            # 加载指定会话的历史消息
+            before_message_id = data.get('before_message_id')
+            limit = data.get('limit', 50)
+
+            logger.info(f"Loading history: pipeline={pipeline_uuid}, session={session_type}, limit={limit}")
+
+            # 从对应会话获取历史消息
+            messages = webchat_adapter.get_webchat_messages(pipeline_uuid, session_type)
+
+            # 简单分页：返回最后 limit 条
+            if before_message_id:
+                # TODO: 实现基于 message_id 的分页
+                history_messages = messages[-limit:]
+            else:
+                history_messages = messages[-limit:] if len(messages) > limit else messages
+
+            await connection.send(
+                'history', {'messages': history_messages, 'has_more': len(messages) > len(history_messages)}
+            )
+
+        elif event_type == 'interrupt':
+            # 中断消息
+            message_id = data.get('message_id')
+            logger.info(f"Interrupt requested: message_id={message_id}")
+
+            # TODO: 实现中断逻辑
+            await connection.send('interrupted', {'message_id': message_id, 'partial_content': ''})
+
+        elif event_type == 'ping':
+            # 心跳
+            connection.last_ping = datetime.now()
+            await connection.send('pong', {'timestamp': data.get('timestamp')})
+
+        else:
+            logger.warning(f"Unknown event type: {event_type}")
+            await connection.send('error', {'error': f'Unknown event type: {event_type}', 'error_code': 'UNKNOWN_EVENT'})
+
+    except Exception as e:
+        logger.error(f"Error handling event {event_type}: {e}", exc_info=True)
+        await connection.send(
+            'error',
+            {'error': f'Internal server error: {str(e)}', 'error_code': 'INTERNAL_ERROR', 'details': {'event_type': event_type}},
+        )
+
+
+@group.group_class('pipeline-websocket', '/api/v1/pipelines/<pipeline_uuid>/chat')
+class PipelineWebSocketRouterGroup(group.RouterGroup):
+    """流水线调试 WebSocket 路由组"""
+
+    async def initialize(self) -> None:
+        @self.route('/ws')
+        async def websocket_handler(pipeline_uuid: str):
+            """WebSocket 连接处理 - 会话隔离
+
+            连接流程:
+                1. 客户端建立 WebSocket 连接
+                2. 客户端发送 connect 事件（携带 session_type 和 token）
+                3. 服务端验证并创建连接对象
+                4. 进入消息循环，处理客户端事件
+                5. 断开时清理连接
+
+            Args:
+                pipeline_uuid: 流水线 UUID
+            """
+            websocket = quart.websocket._get_current_object()
+            connection_id = str(uuid.uuid4())
+            session_key = None
+            connection = None
+
+            try:
+                # 1. 等待客户端发送 connect 事件
+                first_message = await websocket.receive_json()
+
+                if first_message.get('type') != 'connect':
+                    await websocket.send_json(
+                        {'type': 'error', 'data': {'error': 'First message must be connect event', 'error_code': 'INVALID_HANDSHAKE'}}
+                    )
+                    await websocket.close(1008)
+                    return
+
+                connect_data = first_message.get('data', {})
+                session_type = connect_data.get('session_type')
+                token = connect_data.get('token')
+
+                # 验证参数
+                if session_type not in ['person', 'group']:
+                    await websocket.send_json(
+                        {'type': 'error', 'data': {'error': 'session_type must be person or group', 'error_code': 'INVALID_SESSION_TYPE'}}
+                    )
+                    await websocket.close(1008)
+                    return
+
+                # 验证 token
+                if not token:
+                    await websocket.send_json(
+                        {'type': 'error', 'data': {'error': 'token is required', 'error_code': 'MISSING_TOKEN'}}
+                    )
+                    await websocket.close(1008)
+                    return
+
+                # 验证用户身份
+                try:
+                    user = await self.ap.user_service.verify_token(token)
+                    if not user:
+                        await websocket.send_json({'type': 'error', 'data': {'error': 'Unauthorized', 'error_code': 'UNAUTHORIZED'}})
+                        await websocket.close(1008)
+                        return
+                except Exception as e:
+                    logger.error(f"Token verification failed: {e}")
+                    await websocket.send_json(
+                        {'type': 'error', 'data': {'error': 'Token verification failed', 'error_code': 'AUTH_ERROR'}}
+                    )
+                    await websocket.close(1008)
+                    return
+
+                # 2. 创建连接对象并加入连接池
+                connection = WebSocketConnection(
+                    connection_id=connection_id,
+                    websocket=websocket,
+                    pipeline_uuid=pipeline_uuid,
+                    session_type=session_type,
+                    created_at=datetime.now(),
+                    last_ping=datetime.now(),
+                )
+
+                session_key = connection.session_key
+                ws_pool = self.ap.ws_pool
+                ws_pool.add_connection(connection)
+
+                # 3. 发送连接成功事件
+                await connection.send(
+                    'connected', {'connection_id': connection_id, 'session_type': session_type, 'pipeline_uuid': pipeline_uuid}
+                )
+
+                logger.info(f"WebSocket connected: {connection_id} [pipeline={pipeline_uuid}, session={session_type}]")
+
+                # 4. 进入消息处理循环
+                while True:
+                    try:
+                        message = await websocket.receive_json()
+                        await handle_client_event(connection, message, self.ap)
+                    except asyncio.CancelledError:
+                        logger.info(f"WebSocket connection cancelled: {connection_id}")
+                        break
+                    except Exception as e:
+                        logger.error(f"Error receiving message from {connection_id}: {e}")
+                        break
+
+            except quart.exceptions.WebsocketDisconnected:
+                logger.info(f"WebSocket disconnected: {connection_id}")
+            except Exception as e:
+                logger.error(f"WebSocket error for {connection_id}: {e}", exc_info=True)
+            finally:
+                # 清理连接
+                if connection and session_key:
+                    ws_pool = self.ap.ws_pool
+                    await ws_pool.remove_connection(connection_id, session_key)
+                    logger.info(f"WebSocket connection cleaned up: {connection_id}")
--- a/pkg/api/http/controller/groups/platform/init.py
+++ b/pkg/api/http/controller/groups/platform/init.py
--- a/pkg/api/http/controller/groups/platform/adapters.py
+++ b/pkg/api/http/controller/groups/platform/adapters.py
@@ -0,0 +1,34 @@
+import quart
+
+from ... import group
+
+
+@group.group_class('adapters', '/api/v1/platform/adapters')
+class AdaptersRouterGroup(group.RouterGroup):
+    async def initialize(self) -> None:
+        @self.route('', methods=['GET'])
+        async def _() -> str:
+            return self.success(data={'adapters': self.ap.platform_mgr.get_available_adapters_info()})
+
+        @self.route('/<adapter_name>', methods=['GET'])
+        async def _(adapter_name: str) -> str:
+            adapter_info = self.ap.platform_mgr.get_available_adapter_info_by_name(adapter_name)
+
+            if adapter_info is None:
+                return self.http_status(404, -1, 'adapter not found')
+
+            return self.success(data={'adapter': adapter_info})
+
+        @self.route('/<adapter_name>/icon', methods=['GET'], auth_type=group.AuthType.NONE)
+        async def _(adapter_name: str) -> quart.Response:
+            adapter_manifest = self.ap.platform_mgr.get_available_adapter_manifest_by_name(adapter_name)
+
+            if adapter_manifest is None:
+                return self.http_status(404, -1, 'adapter not found')
+
+            icon_path = adapter_manifest.icon_rel_path
+
+            if icon_path is None:
+                return self.http_status(404, -1, 'icon not found')
+
+            return await quart.send_file(icon_path)
--- a/pkg/api/http/controller/groups/platform/bots.py
+++ b/pkg/api/http/controller/groups/platform/bots.py
@@ -0,0 +1,44 @@
+import quart
+
+from ... import group
+
+
+@group.group_class('bots', '/api/v1/platform/bots')
+class BotsRouterGroup(group.RouterGroup):
+    async def initialize(self) -> None:
+        @self.route('', methods=['GET', 'POST'])
+        async def _() -> str:
+            if quart.request.method == 'GET':
+                return self.success(data={'bots': await self.ap.bot_service.get_bots()})
+            elif quart.request.method == 'POST':
+                json_data = await quart.request.json
+                bot_uuid = await self.ap.bot_service.create_bot(json_data)
+                return self.success(data={'uuid': bot_uuid})
+
+        @self.route('/<bot_uuid>', methods=['GET', 'PUT', 'DELETE'])
+        async def _(bot_uuid: str) -> str:
+            if quart.request.method == 'GET':
+                bot = await self.ap.bot_service.get_bot(bot_uuid)
+                if bot is None:
+                    return self.http_status(404, -1, 'bot not found')
+                return self.success(data={'bot': bot})
+            elif quart.request.method == 'PUT':
+                json_data = await quart.request.json
+                await self.ap.bot_service.update_bot(bot_uuid, json_data)
+                return self.success()
+            elif quart.request.method == 'DELETE':
+                await self.ap.bot_service.delete_bot(bot_uuid)
+                return self.success()
+
+        @self.route('/<bot_uuid>/logs', methods=['POST'])
+        async def _(bot_uuid: str) -> str:
+            json_data = await quart.request.json
+            from_index = json_data.get('from_index', -1)
+            max_count = json_data.get('max_count', 10)
+            logs, total_count = await self.ap.bot_service.list_event_logs(bot_uuid, from_index, max_count)
+            return self.success(
+                data={
+                    'logs': logs,
+                    'total_count': total_count,
+                }
+            )
--- a/pkg/api/http/controller/groups/plugins.py
+++ b/pkg/api/http/controller/groups/plugins.py
@@ -1,84 +1,144 @@
 from __future__ import annotations

-
-import traceback
-
+import base64
 import quart

-from .....core import app, taskmgr
+from .....core import taskmgr
 from .. import group
+from langbot_plugin.runtime.plugin.mgr import PluginInstallSource


@group.group_class('plugins', '/api/v1/plugins')
 class PluginsRouterGroup(group.RouterGroup):
-
    async def initialize(self) -> None:
        @self.route('', methods=['GET'], auth_type=group.AuthType.USER_TOKEN)
        async def _() -> str:
-            plugins = self.ap.plugin_mgr.plugins()
+            plugins = await self.ap.plugin_connector.list_plugins()

-            plugins_data = [plugin.model_dump() for plugin in plugins]
+            return self.success(data={'plugins': plugins})

-            return self.success(data={
-                'plugins': plugins_data
-            })
-        
-        @self.route('/<author>/<plugin_name>/toggle', methods=['PUT'], auth_type=group.AuthType.USER_TOKEN)
-        async def _(author: str, plugin_name: str) -> str:
-            data = await quart.request.json
-            target_enabled = data.get('target_enabled')
-            await self.ap.plugin_mgr.update_plugin_switch(plugin_name, target_enabled)
-            return self.success()
-        
-        @self.route('/<author>/<plugin_name>/update', methods=['POST'], auth_type=group.AuthType.USER_TOKEN)
+        @self.route(
+            '/<author>/<plugin_name>/upgrade',
+            methods=['POST'],
+            auth_type=group.AuthType.USER_TOKEN,
+        )
        async def _(author: str, plugin_name: str) -> str:
            ctx = taskmgr.TaskContext.new()
            wrapper = self.ap.task_mgr.create_user_task(
-                self.ap.plugin_mgr.update_plugin(plugin_name, task_context=ctx),
-                kind="plugin-operation",
-                name=f"plugin-update-{plugin_name}",
-                label=f"更新插件 {plugin_name}",
-                context=ctx
+                self.ap.plugin_connector.upgrade_plugin(author, plugin_name, task_context=ctx),
+                kind='plugin-operation',
+                name=f'plugin-upgrade-{plugin_name}',
+                label=f'Upgrading plugin {plugin_name}',
+                context=ctx,
            )
-            return self.success(data={
-                'task_id': wrapper.id
-            })
-        
-        @self.route('/<author>/<plugin_name>', methods=['DELETE'], auth_type=group.AuthType.USER_TOKEN)
+            return self.success(data={'task_id': wrapper.id})
+
+        @self.route(
+            '/<author>/<plugin_name>',
+            methods=['GET', 'DELETE'],
+            auth_type=group.AuthType.USER_TOKEN,
+        )
        async def _(author: str, plugin_name: str) -> str:
-            ctx = taskmgr.TaskContext.new()
-            wrapper = self.ap.task_mgr.create_user_task(
-                self.ap.plugin_mgr.uninstall_plugin(plugin_name, task_context=ctx),
-                kind="plugin-operation",
-                name=f'plugin-remove-{plugin_name}',
-                label=f'删除插件 {plugin_name}',
-                context=ctx
-            )
+            if quart.request.method == 'GET':
+                plugin = await self.ap.plugin_connector.get_plugin_info(author, plugin_name)
+                if plugin is None:
+                    return self.http_status(404, -1, 'plugin not found')
+                return self.success(data={'plugin': plugin})
+            elif quart.request.method == 'DELETE':
+                ctx = taskmgr.TaskContext.new()
+                wrapper = self.ap.task_mgr.create_user_task(
+                    self.ap.plugin_connector.delete_plugin(author, plugin_name, task_context=ctx),
+                    kind='plugin-operation',
+                    name=f'plugin-remove-{plugin_name}',
+                    label=f'Removing plugin {plugin_name}',
+                    context=ctx,
+                )

-            return self.success(data={
-                'task_id': wrapper.id
-            })
+                return self.success(data={'task_id': wrapper.id})
+
+        @self.route(
+            '/<author>/<plugin_name>/config',
+            methods=['GET', 'PUT'],
+            auth_type=group.AuthType.USER_TOKEN,
+        )
+        async def _(author: str, plugin_name: str) -> quart.Response:
+            plugin = await self.ap.plugin_connector.get_plugin_info(author, plugin_name)
+            if plugin is None:
+                return self.http_status(404, -1, 'plugin not found')
+
+            if quart.request.method == 'GET':
+                return self.success(data={'config': plugin['plugin_config']})
+            elif quart.request.method == 'PUT':
+                data = await quart.request.json
+
+                await self.ap.plugin_connector.set_plugin_config(author, plugin_name, data)
+
+                return self.success(data={})
+
+        @self.route(
+            '/<author>/<plugin_name>/icon',
+            methods=['GET'],
+            auth_type=group.AuthType.NONE,
+        )
+        async def _(author: str, plugin_name: str) -> quart.Response:
+            icon_data = await self.ap.plugin_connector.get_plugin_icon(author, plugin_name)
+            icon_base64 = icon_data['plugin_icon_base64']
+            mime_type = icon_data['mime_type']
+
+            icon_data = base64.b64decode(icon_base64)
+
+            return quart.Response(icon_data, mimetype=mime_type)

-        @self.route('/reorder', methods=['PUT'], auth_type=group.AuthType.USER_TOKEN)
-        async def _() -> str:
-            data = await quart.request.json
-            await self.ap.plugin_mgr.reorder_plugins(data.get('plugins'))
-            return self.success()
-        
        @self.route('/install/github', methods=['POST'], auth_type=group.AuthType.USER_TOKEN)
        async def _() -> str:
            data = await quart.request.json
-            
+
            ctx = taskmgr.TaskContext.new()
            short_source_str = data['source'][-8:]
            wrapper = self.ap.task_mgr.create_user_task(
                self.ap.plugin_mgr.install_plugin(data['source'], task_context=ctx),
-                kind="plugin-operation",
-                name=f'plugin-install-github',
-                label=f'安装插件 ...{short_source_str}',
-                context=ctx
+                kind='plugin-operation',
+                name='plugin-install-github',
+                label=f'Installing plugin from github ...{short_source_str}',
+                context=ctx,
            )

-            return self.success(data={
-                'task_id': wrapper.id
-            })
+            return self.success(data={'task_id': wrapper.id})
+
+        @self.route('/install/marketplace', methods=['POST'], auth_type=group.AuthType.USER_TOKEN)
+        async def _() -> str:
+            data = await quart.request.json
+
+            ctx = taskmgr.TaskContext.new()
+            wrapper = self.ap.task_mgr.create_user_task(
+                self.ap.plugin_connector.install_plugin(PluginInstallSource.MARKETPLACE, data, task_context=ctx),
+                kind='plugin-operation',
+                name='plugin-install-marketplace',
+                label=f'Installing plugin from marketplace ...{data}',
+                context=ctx,
+            )
+
+            return self.success(data={'task_id': wrapper.id})
+
+        @self.route('/install/local', methods=['POST'], auth_type=group.AuthType.USER_TOKEN)
+        async def _() -> str:
+            file = (await quart.request.files).get('file')
+            if file is None:
+                return self.http_status(400, -1, 'file is required')
+
+            file_bytes = file.read()
+
+            data = {
+                'plugin_file': file_bytes,
+            }
+
+            ctx = taskmgr.TaskContext.new()
+            wrapper = self.ap.task_mgr.create_user_task(
+                self.ap.plugin_connector.install_plugin(PluginInstallSource.LOCAL, data, task_context=ctx),
+                kind='plugin-operation',
+                name='plugin-install-local',
+                label=f'Installing plugin from local ...{file.filename}',
+                context=ctx,
+            )
+
+            return self.success(data={'task_id': wrapper.id})
--- a/pkg/api/http/controller/groups/provider/init.py
+++ b/pkg/api/http/controller/groups/provider/init.py
--- a/pkg/api/http/controller/groups/provider/models.py
+++ b/pkg/api/http/controller/groups/provider/models.py
@@ -0,0 +1,89 @@
+import quart
+
+from ... import group
+
+
+@group.group_class('models/llm', '/api/v1/provider/models/llm')
+class LLMModelsRouterGroup(group.RouterGroup):
+    async def initialize(self) -> None:
+        @self.route('', methods=['GET', 'POST'])
+        async def _() -> str:
+            if quart.request.method == 'GET':
+                return self.success(data={'models': await self.ap.llm_model_service.get_llm_models()})
+            elif quart.request.method == 'POST':
+                json_data = await quart.request.json
+
+                model_uuid = await self.ap.llm_model_service.create_llm_model(json_data)
+
+                return self.success(data={'uuid': model_uuid})
+
+        @self.route('/<model_uuid>', methods=['GET', 'PUT', 'DELETE'])
+        async def _(model_uuid: str) -> str:
+            if quart.request.method == 'GET':
+                model = await self.ap.llm_model_service.get_llm_model(model_uuid)
+
+                if model is None:
+                    return self.http_status(404, -1, 'model not found')
+
+                return self.success(data={'model': model})
+            elif quart.request.method == 'PUT':
+                json_data = await quart.request.json
+
+                await self.ap.llm_model_service.update_llm_model(model_uuid, json_data)
+
+                return self.success()
+            elif quart.request.method == 'DELETE':
+                await self.ap.llm_model_service.delete_llm_model(model_uuid)
+
+                return self.success()
+
+        @self.route('/<model_uuid>/test', methods=['POST'])
+        async def _(model_uuid: str) -> str:
+            json_data = await quart.request.json
+
+            await self.ap.llm_model_service.test_llm_model(model_uuid, json_data)
+
+            return self.success()
+
+
+@group.group_class('models/embedding', '/api/v1/provider/models/embedding')
+class EmbeddingModelsRouterGroup(group.RouterGroup):
+    async def initialize(self) -> None:
+        @self.route('', methods=['GET', 'POST'])
+        async def _() -> str:
+            if quart.request.method == 'GET':
+                return self.success(data={'models': await self.ap.embedding_models_service.get_embedding_models()})
+            elif quart.request.method == 'POST':
+                json_data = await quart.request.json
+
+                model_uuid = await self.ap.embedding_models_service.create_embedding_model(json_data)
+
+                return self.success(data={'uuid': model_uuid})
+
+        @self.route('/<model_uuid>', methods=['GET', 'PUT', 'DELETE'])
+        async def _(model_uuid: str) -> str:
+            if quart.request.method == 'GET':
+                model = await self.ap.embedding_models_service.get_embedding_model(model_uuid)
+
+                if model is None:
+                    return self.http_status(404, -1, 'model not found')
+
+                return self.success(data={'model': model})
+            elif quart.request.method == 'PUT':
+                json_data = await quart.request.json
+
+                await self.ap.embedding_models_service.update_embedding_model(model_uuid, json_data)
+
+                return self.success()
+            elif quart.request.method == 'DELETE':
+                await self.ap.embedding_models_service.delete_embedding_model(model_uuid)
+
+                return self.success()
+
+        @self.route('/<model_uuid>/test', methods=['POST'])
+        async def _(model_uuid: str) -> str:
+            json_data = await quart.request.json
+
+            await self.ap.embedding_models_service.test_embedding_model(model_uuid, json_data)
+
+            return self.success()
--- a/pkg/api/http/controller/groups/provider/requesters.py
+++ b/pkg/api/http/controller/groups/provider/requesters.py
@@ -0,0 +1,35 @@
+import quart
+
+from ... import group
+
+
+@group.group_class('provider/requesters', '/api/v1/provider/requesters')
+class RequestersRouterGroup(group.RouterGroup):
+    async def initialize(self) -> None:
+        @self.route('', methods=['GET'])
+        async def _() -> quart.Response:
+            model_type = quart.request.args.get('type', '')
+            return self.success(data={'requesters': self.ap.model_mgr.get_available_requesters_info(model_type)})
+
+        @self.route('/<requester_name>', methods=['GET'])
+        async def _(requester_name: str) -> quart.Response:
+            requester_info = self.ap.model_mgr.get_available_requester_info_by_name(requester_name)
+
+            if requester_info is None:
+                return self.http_status(404, -1, 'requester not found')
+
+            return self.success(data={'requester': requester_info})
+
+        @self.route('/<requester_name>/icon', methods=['GET'], auth_type=group.AuthType.NONE)
+        async def _(requester_name: str) -> quart.Response:
+            requester_manifest = self.ap.model_mgr.get_available_requester_manifest_by_name(requester_name)
+
+            if requester_manifest is None:
+                return self.http_status(404, -1, 'requester not found')
+
+            icon_path = requester_manifest.icon_rel_path
+
+            if icon_path is None:
+                return self.http_status(404, -1, 'icon not found')
+
+            return await quart.send_file(icon_path)
--- a/pkg/api/http/controller/groups/settings.py
+++ b/pkg/api/http/controller/groups/settings.py
@@ -1,62 +0,0 @@
-import quart
-
-from .....core import app
-from .. import group
-
-
-@group.group_class('settings', '/api/v1/settings')
-class SettingsRouterGroup(group.RouterGroup):
-    
-    async def initialize(self) -> None:
-        
-        @self.route('', methods=['GET'], auth_type=group.AuthType.USER_TOKEN)
-        async def _() -> str:
-            return self.success(
-                data={
-                    "managers": [
-                        {
-                            "name": m.name,
-                            "description": m.description,
-                        }
-                        for m in self.ap.settings_mgr.get_manager_list()
-                    ]
-                }
-            )
-        
-        @self.route('/<manager_name>', methods=['GET'], auth_type=group.AuthType.USER_TOKEN)
-        async def _(manager_name: str) -> str:
-
-            manager = self.ap.settings_mgr.get_manager(manager_name)
-
-            if manager is None:
-                return self.fail(1, '配置管理器不存在')
-
-            return self.success(
-                data={
-                    "manager": {
-                        "name": manager.name,
-                        "description": manager.description,
-                        "schema": manager.schema,
-                        "file": manager.file.config_file_name,
-                        "data": manager.data,
-                        "doc_link": manager.doc_link
-                    }
-                }
-            )
-        
-        @self.route('/<manager_name>/data', methods=['PUT'], auth_type=group.AuthType.USER_TOKEN)
-        async def _(manager_name: str) -> str:
-            data = await quart.request.json
-            manager = self.ap.settings_mgr.get_manager(manager_name)
-
-            if manager is None:
-                return self.fail(code=1, msg='配置管理器不存在')
-
-            # manager.data = data['data']
-            for k, v in data['data'].items():
-                manager.data[k] = v
-
-            await manager.dump_config()
-            return self.success(data={
-                "data": manager.data
-            })
--- a/pkg/api/http/controller/groups/stats.py
+++ b/pkg/api/http/controller/groups/stats.py
@@ -1,23 +1,19 @@
-import quart
-import asyncio
-
-from .....core import app, taskmgr
 from .. import group


@group.group_class('stats', '/api/v1/stats')
 class StatsRouterGroup(group.RouterGroup):
-    
    async def initialize(self) -> None:
        @self.route('/basic', methods=['GET'], auth_type=group.AuthType.USER_TOKEN)
        async def _() -> str:
-
            conv_count = 0
            for session in self.ap.sess_mgr.session_list:
                conv_count += len(session.conversations if session.conversations is not None else [])

-            return self.success(data={
-                'active_session_count': len(self.ap.sess_mgr.session_list),
-                'conversation_count': conv_count,
-                'query_count': self.ap.query_pool.query_id_counter,
-            })
+            return self.success(
+                data={
+                    'active_session_count': len(self.ap.sess_mgr.session_list),
+                    'conversation_count': conv_count,
+                    'query_count': self.ap.query_pool.query_id_counter,
+                }
+            )
--- a/pkg/api/http/controller/groups/system.py
+++ b/pkg/api/http/controller/groups/system.py
@@ -1,63 +1,116 @@
 import quart
-import asyncio

-from .....core import app, taskmgr
 from .. import group
 from .....utils import constants


@group.group_class('system', '/api/v1/system')
 class SystemRouterGroup(group.RouterGroup):
-    
    async def initialize(self) -> None:
        @self.route('/info', methods=['GET'], auth_type=group.AuthType.NONE)
        async def _() -> str:
            return self.success(
                data={
-                    "version": constants.semantic_version,
-                    "debug": constants.debug_mode,
-                    "enabled_platform_count": len(self.ap.platform_mgr.adapters)
+                    'version': constants.semantic_version,
+                    'debug': constants.debug_mode,
+                    'enabled_platform_count': len(self.ap.platform_mgr.get_running_adapters()),
+                    'enable_marketplace': self.ap.instance_config.data.get('plugin', {}).get(
+                        'enable_marketplace', True
+                    ),
+                    'cloud_service_url': (
+                        self.ap.instance_config.data.get('plugin', {}).get(
+                            'cloud_service_url', 'https://space.langbot.app'
+                        )
+                        if 'cloud_service_url' in self.ap.instance_config.data.get('plugin', {})
+                        else 'https://space.langbot.app'
+                    ),
                }
            )

        @self.route('/tasks', methods=['GET'], auth_type=group.AuthType.USER_TOKEN)
        async def _() -> str:
-            task_type = quart.request.args.get("type")
+            task_type = quart.request.args.get('type')

            if task_type == '':
                task_type = None

-            return self.success(
-                data=self.ap.task_mgr.get_tasks_dict(task_type)
-            )
-        
+            return self.success(data=self.ap.task_mgr.get_tasks_dict(task_type))
+
        @self.route('/tasks/<task_id>', methods=['GET'], auth_type=group.AuthType.USER_TOKEN)
        async def _(task_id: str) -> str:
            task = self.ap.task_mgr.get_task_by_id(int(task_id))

            if task is None:
-                return self.http_status(404, 404, "Task not found")
-            
+                return self.http_status(404, 404, 'Task not found')
+
            return self.success(data=task.to_dict())
-        
-        @self.route('/reload', methods=['POST'], auth_type=group.AuthType.USER_TOKEN)
-        async def _() -> str:
-            json_data = await quart.request.json

-            scope = json_data.get("scope")
-
-            await self.ap.reload(
-                scope=scope
-            )
-            return self.success()
-
-        @self.route('/_debug/exec', methods=['POST'], auth_type=group.AuthType.USER_TOKEN)
+        @self.route('/debug/exec', methods=['POST'], auth_type=group.AuthType.USER_TOKEN)
        async def _() -> str:
            if not constants.debug_mode:
-                return self.http_status(403, 403, "Forbidden")
-            
+                return self.http_status(403, 403, 'Forbidden')
+
            py_code = await quart.request.data

            ap = self.ap

-            return self.success(data=exec(py_code, {"ap": ap}))
+            return self.success(data=exec(py_code, {'ap': ap}))
+
+        @self.route('/debug/tools/call', methods=['POST'], auth_type=group.AuthType.USER_TOKEN)
+        async def _() -> str:
+            if not constants.debug_mode:
+                return self.http_status(403, 403, 'Forbidden')
+
+            data = await quart.request.json
+
+            return self.success(
+                data=await self.ap.tool_mgr.execute_func_call(data['tool_name'], data['tool_parameters'])
+            )
+
+        @self.route(
+            '/debug/plugin/action',
+            methods=['POST'],
+            auth_type=group.AuthType.USER_TOKEN,
+        )
+        async def _() -> str:
+            if not constants.debug_mode:
+                return self.http_status(403, 403, 'Forbidden')
+
+            data = await quart.request.json
+
+            class AnoymousAction:
+                value = 'anonymous_action'
+
+                def __init__(self, value: str):
+                    self.value = value
+
+            resp = await self.ap.plugin_connector.handler.call_action(
+                AnoymousAction(data['action']),
+                data['data'],
+                timeout=data.get('timeout', 10),
+            )
+
+            return self.success(data=resp)
+
+        @self.route(
+            '/status/plugin-system',
+            methods=['GET'],
+            auth_type=group.AuthType.USER_TOKEN,
+        )
+        async def _() -> str:
+            plugin_connector_error = 'ok'
+            is_connected = True
+
+            try:
+                await self.ap.plugin_connector.ping_plugin_runtime()
+            except Exception as e:
+                plugin_connector_error = str(e)
+                is_connected = False
+
+            return self.success(
+                data={
+                    'is_enable': self.ap.plugin_connector.is_enable_plugin,
+                    'is_connected': is_connected,
+                    'plugin_connector_error': plugin_connector_error,
+                }
+            )
--- a/pkg/api/http/controller/groups/user.py
+++ b/pkg/api/http/controller/groups/user.py
@@ -1,24 +1,20 @@
 import quart
-import sqlalchemy
 import argon2
+import asyncio

 from .. import group
-from .....persistence.entities import user


@group.group_class('user', '/api/v1/user')
 class UserRouterGroup(group.RouterGroup):
-    
    async def initialize(self) -> None:
        @self.route('/init', methods=['GET', 'POST'], auth_type=group.AuthType.NONE)
        async def _() -> str:
            if quart.request.method == 'GET':
-                return self.success(data={
-                    'initialized': await self.ap.user_service.is_initialized()
-                })
-            
+                return self.success(data={'initialized': await self.ap.user_service.is_initialized()})
+
            if await self.ap.user_service.is_initialized():
-                return self.fail(1, '系统已初始化')
+                return self.fail(1, 'System already initialized')

            json_data = await quart.request.json

@@ -28,7 +24,7 @@ class UserRouterGroup(group.RouterGroup):
            await self.ap.user_service.create_user(user_email, password)

            return self.success()
-        
+
        @self.route('/auth', methods=['POST'], auth_type=group.AuthType.NONE)
        async def _() -> str:
            json_data = await quart.request.json
@@ -36,12 +32,54 @@ class UserRouterGroup(group.RouterGroup):
            try:
                token = await self.ap.user_service.authenticate(json_data['user'], json_data['password'])
            except argon2.exceptions.VerifyMismatchError:
-                return self.fail(1, '用户名或密码错误')
+                return self.fail(1, 'Invalid username or password')

-            return self.success(data={
-                'token': token
-            })
+            return self.success(data={'token': token})

-        @self.route('/check-token', methods=['GET'])
+        @self.route('/check-token', methods=['GET'], auth_type=group.AuthType.USER_TOKEN)
+        async def _(user_email: str) -> str:
+            token = await self.ap.user_service.generate_jwt_token(user_email)
+
+            return self.success(data={'token': token})
+
+        @self.route('/reset-password', methods=['POST'], auth_type=group.AuthType.NONE)
        async def _() -> str:
-            return self.success()
+            json_data = await quart.request.json
+
+            user_email = json_data['user']
+            recovery_key = json_data['recovery_key']
+            new_password = json_data['new_password']
+
+            # hard sleep 3s for security
+            await asyncio.sleep(3)
+
+            if not await self.ap.user_service.is_initialized():
+                return self.http_status(400, -1, 'System not initialized')
+
+            user_obj = await self.ap.user_service.get_user_by_email(user_email)
+
+            if user_obj is None:
+                return self.http_status(400, -1, 'User not found')
+
+            if recovery_key != self.ap.instance_config.data['system']['recovery_key']:
+                return self.http_status(403, -1, 'Invalid recovery key')
+
+            await self.ap.user_service.reset_password(user_email, new_password)
+
+            return self.success(data={'user': user_email})
+
+        @self.route('/change-password', methods=['POST'], auth_type=group.AuthType.USER_TOKEN)
+        async def _(user_email: str) -> str:
+            json_data = await quart.request.json
+
+            current_password = json_data['current_password']
+            new_password = json_data['new_password']
+
+            try:
+                await self.ap.user_service.change_password(user_email, current_password, new_password)
+            except argon2.exceptions.VerifyMismatchError:
+                return self.http_status(400, -1, 'Current password is incorrect')
+            except ValueError as e:
+                return self.http_status(400, -1, str(e))
+
+            return self.success(data={'user': user_email})
--- a/pkg/api/http/controller/main.py
+++ b/pkg/api/http/controller/main.py
@@ -7,12 +7,23 @@ import quart
 import quart_cors

 from ....core import app, entities as core_entities
-from .groups import logs, system, settings, plugins, stats, user
+from ....utils import importutil
+
+from . import groups
 from . import group
+from .groups import provider as groups_provider
+from .groups import platform as groups_platform
+from .groups import pipelines as groups_pipelines
+from .groups import knowledge as groups_knowledge
+
+importutil.import_modules_in_pkg(groups)
+importutil.import_modules_in_pkg(groups_provider)
+importutil.import_modules_in_pkg(groups_platform)
+importutil.import_modules_in_pkg(groups_pipelines)
+importutil.import_modules_in_pkg(groups_knowledge)


 class HTTPController:
-
    ap: app.Application

    quart_app: quart.Quart
@@ -20,13 +31,13 @@ class HTTPController:
    def __init__(self, ap: app.Application) -> None:
        self.ap = ap
        self.quart_app = quart.Quart(__name__)
-        quart_cors.cors(self.quart_app, allow_origin="*")
+        quart_cors.cors(self.quart_app, allow_origin='*')

    async def initialize(self) -> None:
        await self.register_routes()

    async def run(self) -> None:
-        if self.ap.system_cfg.data["http-api"]["enable"]:
+        if True:

            async def shutdown_trigger_placeholder():
                while True:
@@ -34,40 +45,74 @@ class HTTPController:

            async def exception_handler(*args, **kwargs):
                try:
-                    await self.quart_app.run_task(
-                        *args, **kwargs
-                    )
+                    await self.quart_app.run_task(*args, **kwargs)
                except Exception as e:
-                    self.ap.logger.error(f"启动 HTTP 服务失败： {e}")
+                    self.ap.logger.error(f'Failed to start HTTP service: {e}')

            self.ap.task_mgr.create_task(
                exception_handler(
-                    host=self.ap.system_cfg.data["http-api"]["host"],
-                    port=self.ap.system_cfg.data["http-api"]["port"],
+                    host='0.0.0.0',
+                    port=self.ap.instance_config.data['api']['port'],
                    shutdown_trigger=shutdown_trigger_placeholder,
                ),
-                name="http-api-quart",
+                name='http-api-quart',
                scopes=[core_entities.LifecycleControlScope.APPLICATION],
            )

            # await asyncio.sleep(5)

    async def register_routes(self) -> None:
-
-        @self.quart_app.route("/healthz")
+        @self.quart_app.route('/healthz')
        async def healthz():
-            return {"code": 0, "msg": "ok"}
+            return {'code': 0, 'msg': 'ok'}

        for g in group.preregistered_groups:
            ginst = g(self.ap, self.quart_app)
            await ginst.initialize()

-        frontend_path = "web/dist"
+        frontend_path = 'web/out'

-        @self.quart_app.route("/")
+        @self.quart_app.route('/')
        async def index():
-            return await quart.send_from_directory(frontend_path, "index.html")
+            return await quart.send_from_directory(frontend_path, 'index.html', mimetype='text/html')

-        @self.quart_app.route("/<path:path>")
+        @self.quart_app.route('/<path:path>')
        async def static_file(path: str):
-            return await quart.send_from_directory(frontend_path, path)
+            if not (
+                os.path.exists(os.path.join(frontend_path, path)) and os.path.isfile(os.path.join(frontend_path, path))
+            ):
+                if os.path.exists(os.path.join(frontend_path, path + '.html')):
+                    path += '.html'
+                else:
+                    return await quart.send_from_directory(frontend_path, '404.html')
+
+            mimetype = None
+
+            if path.endswith('.html'):
+                mimetype = 'text/html'
+            elif path.endswith('.js'):
+                mimetype = 'application/javascript'
+            elif path.endswith('.css'):
+                mimetype = 'text/css'
+            elif path.endswith('.png'):
+                mimetype = 'image/png'
+            elif path.endswith('.jpg'):
+                mimetype = 'image/jpeg'
+            elif path.endswith('.jpeg'):
+                mimetype = 'image/jpeg'
+            elif path.endswith('.gif'):
+                mimetype = 'image/gif'
+            elif path.endswith('.svg'):
+                mimetype = 'image/svg+xml'
+            elif path.endswith('.ico'):
+                mimetype = 'image/x-icon'
+            elif path.endswith('.json'):
+                mimetype = 'application/json'
+            elif path.endswith('.txt'):
+                mimetype = 'text/plain'
+
+            response = await quart.send_from_directory(frontend_path, path, mimetype=mimetype)
+            response.headers['Cache-Control'] = 'no-cache, no-store, must-revalidate'
+            response.headers['Pragma'] = 'no-cache'
+            response.headers['Expires'] = '0'
+            return response
--- a/pkg/api/http/service/bot.py
+++ b/pkg/api/http/service/bot.py
@@ -0,0 +1,141 @@
+from __future__ import annotations
+
+import uuid
+import sqlalchemy
+import typing
+
+from ....core import app
+from ....entity.persistence import bot as persistence_bot
+from ....entity.persistence import pipeline as persistence_pipeline
+
+
+class BotService:
+    """Bot service"""
+
+    ap: app.Application
+
+    def __init__(self, ap: app.Application) -> None:
+        self.ap = ap
+
+    async def get_bots(self, include_secret: bool = True) -> list[dict]:
+        """获取所有机器人"""
+        result = await self.ap.persistence_mgr.execute_async(sqlalchemy.select(persistence_bot.Bot))
+
+        bots = result.all()
+
+        masked_columns = []
+        if not include_secret:
+            masked_columns = ['adapter_config']
+
+        return [self.ap.persistence_mgr.serialize_model(persistence_bot.Bot, bot, masked_columns) for bot in bots]
+
+    async def get_bot(self, bot_uuid: str, include_secret: bool = True) -> dict | None:
+        """获取机器人"""
+        result = await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.select(persistence_bot.Bot).where(persistence_bot.Bot.uuid == bot_uuid)
+        )
+
+        bot = result.first()
+
+        if bot is None:
+            return None
+
+        masked_columns = []
+        if not include_secret:
+            masked_columns = ['adapter_config']
+
+        return self.ap.persistence_mgr.serialize_model(persistence_bot.Bot, bot, masked_columns)
+
+    async def get_runtime_bot_info(self, bot_uuid: str, include_secret: bool = True) -> dict:
+        """获取机器人运行时信息"""
+        persistence_bot = await self.get_bot(bot_uuid, include_secret)
+        if persistence_bot is None:
+            raise Exception('Bot not found')
+
+        adapter_runtime_values = {}
+
+        runtime_bot = await self.ap.platform_mgr.get_bot_by_uuid(bot_uuid)
+        if runtime_bot is not None:
+            adapter_runtime_values['bot_account_id'] = runtime_bot.adapter.bot_account_id
+
+        persistence_bot['adapter_runtime_values'] = adapter_runtime_values
+
+        return persistence_bot
+
+    async def create_bot(self, bot_data: dict) -> str:
+        """Create bot"""
+        # TODO: 检查配置信息格式
+        bot_data['uuid'] = str(uuid.uuid4())
+
+        # checkout the default pipeline
+        result = await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.select(persistence_pipeline.LegacyPipeline).where(
+                persistence_pipeline.LegacyPipeline.is_default == True
+            )
+        )
+        pipeline = result.first()
+        if pipeline is not None:
+            bot_data['use_pipeline_uuid'] = pipeline.uuid
+            bot_data['use_pipeline_name'] = pipeline.name
+
+        await self.ap.persistence_mgr.execute_async(sqlalchemy.insert(persistence_bot.Bot).values(bot_data))
+
+        bot = await self.get_bot(bot_data['uuid'])
+
+        await self.ap.platform_mgr.load_bot(bot)
+
+        return bot_data['uuid']
+
+    async def update_bot(self, bot_uuid: str, bot_data: dict) -> None:
+        """Update bot"""
+        if 'uuid' in bot_data:
+            del bot_data['uuid']
+
+        # set use_pipeline_name
+        if 'use_pipeline_uuid' in bot_data:
+            result = await self.ap.persistence_mgr.execute_async(
+                sqlalchemy.select(persistence_pipeline.LegacyPipeline).where(
+                    persistence_pipeline.LegacyPipeline.uuid == bot_data['use_pipeline_uuid']
+                )
+            )
+            pipeline = result.first()
+            if pipeline is not None:
+                bot_data['use_pipeline_name'] = pipeline.name
+            else:
+                raise Exception('Pipeline not found')
+
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.update(persistence_bot.Bot).values(bot_data).where(persistence_bot.Bot.uuid == bot_uuid)
+        )
+        await self.ap.platform_mgr.remove_bot(bot_uuid)
+
+        # select from db
+        bot = await self.get_bot(bot_uuid)
+
+        runtime_bot = await self.ap.platform_mgr.load_bot(bot)
+
+        if runtime_bot.enable:
+            await runtime_bot.run()
+
+        # update all conversation that use this bot
+        for session in self.ap.sess_mgr.session_list:
+            if session.using_conversation is not None and session.using_conversation.bot_uuid == bot_uuid:
+                session.using_conversation = None
+
+    async def delete_bot(self, bot_uuid: str) -> None:
+        """Delete bot"""
+        await self.ap.platform_mgr.remove_bot(bot_uuid)
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.delete(persistence_bot.Bot).where(persistence_bot.Bot.uuid == bot_uuid)
+        )
+
+    async def list_event_logs(
+        self, bot_uuid: str, from_index: int, max_count: int
+    ) -> typing.Tuple[list[dict], int, int, int]:
+        runtime_bot = await self.ap.platform_mgr.get_bot_by_uuid(bot_uuid)
+        if runtime_bot is None:
+            raise Exception('Bot not found')
+
+        logs, total_count = await runtime_bot.logger.get_logs(from_index, max_count)
+
+        return [log.to_json() for log in logs], total_count
--- a/pkg/api/http/service/knowledge.py
+++ b/pkg/api/http/service/knowledge.py
@@ -0,0 +1,120 @@
+from __future__ import annotations
+
+import uuid
+import sqlalchemy
+
+from ....core import app
+from ....entity.persistence import rag as persistence_rag
+
+
+class KnowledgeService:
+    """知识库服务"""
+
+    ap: app.Application
+
+    def __init__(self, ap: app.Application) -> None:
+        self.ap = ap
+
+    async def get_knowledge_bases(self) -> list[dict]:
+        """获取所有知识库"""
+        result = await self.ap.persistence_mgr.execute_async(sqlalchemy.select(persistence_rag.KnowledgeBase))
+        knowledge_bases = result.all()
+        return [
+            self.ap.persistence_mgr.serialize_model(persistence_rag.KnowledgeBase, knowledge_base)
+            for knowledge_base in knowledge_bases
+        ]
+
+    async def get_knowledge_base(self, kb_uuid: str) -> dict | None:
+        """获取知识库"""
+        result = await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.select(persistence_rag.KnowledgeBase).where(persistence_rag.KnowledgeBase.uuid == kb_uuid)
+        )
+        knowledge_base = result.first()
+        if knowledge_base is None:
+            return None
+        return self.ap.persistence_mgr.serialize_model(persistence_rag.KnowledgeBase, knowledge_base)
+
+    async def create_knowledge_base(self, kb_data: dict) -> str:
+        """创建知识库"""
+        kb_data['uuid'] = str(uuid.uuid4())
+        await self.ap.persistence_mgr.execute_async(sqlalchemy.insert(persistence_rag.KnowledgeBase).values(kb_data))
+
+        kb = await self.get_knowledge_base(kb_data['uuid'])
+
+        await self.ap.rag_mgr.load_knowledge_base(kb)
+
+        return kb_data['uuid']
+
+    async def update_knowledge_base(self, kb_uuid: str, kb_data: dict) -> None:
+        """更新知识库"""
+        if 'uuid' in kb_data:
+            del kb_data['uuid']
+
+        if 'embedding_model_uuid' in kb_data:
+            del kb_data['embedding_model_uuid']
+
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.update(persistence_rag.KnowledgeBase)
+            .values(kb_data)
+            .where(persistence_rag.KnowledgeBase.uuid == kb_uuid)
+        )
+        await self.ap.rag_mgr.remove_knowledge_base_from_runtime(kb_uuid)
+
+        kb = await self.get_knowledge_base(kb_uuid)
+
+        await self.ap.rag_mgr.load_knowledge_base(kb)
+
+    async def store_file(self, kb_uuid: str, file_id: str) -> int:
+        """存储文件"""
+        # await self.ap.persistence_mgr.execute_async(sqlalchemy.insert(persistence_rag.File).values(kb_id=kb_uuid, file_id=file_id))
+        # await self.ap.rag_mgr.store_file(file_id)
+        runtime_kb = await self.ap.rag_mgr.get_knowledge_base_by_uuid(kb_uuid)
+        if runtime_kb is None:
+            raise Exception('Knowledge base not found')
+        return await runtime_kb.store_file(file_id)
+
+    async def retrieve_knowledge_base(self, kb_uuid: str, query: str) -> list[dict]:
+        """检索知识库"""
+        runtime_kb = await self.ap.rag_mgr.get_knowledge_base_by_uuid(kb_uuid)
+        if runtime_kb is None:
+            raise Exception('Knowledge base not found')
+        return [
+            result.model_dump() for result in await runtime_kb.retrieve(query, runtime_kb.knowledge_base_entity.top_k)
+        ]
+
+    async def get_files_by_knowledge_base(self, kb_uuid: str) -> list[dict]:
+        """获取知识库文件"""
+        result = await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.select(persistence_rag.File).where(persistence_rag.File.kb_id == kb_uuid)
+        )
+        files = result.all()
+        return [self.ap.persistence_mgr.serialize_model(persistence_rag.File, file) for file in files]
+
+    async def delete_file(self, kb_uuid: str, file_id: str) -> None:
+        """删除文件"""
+        runtime_kb = await self.ap.rag_mgr.get_knowledge_base_by_uuid(kb_uuid)
+        if runtime_kb is None:
+            raise Exception('Knowledge base not found')
+        await runtime_kb.delete_file(file_id)
+
+    async def delete_knowledge_base(self, kb_uuid: str) -> None:
+        """删除知识库"""
+        await self.ap.rag_mgr.delete_knowledge_base(kb_uuid)
+
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.delete(persistence_rag.KnowledgeBase).where(persistence_rag.KnowledgeBase.uuid == kb_uuid)
+        )
+
+        # delete files
+        files = await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.select(persistence_rag.File).where(persistence_rag.File.kb_id == kb_uuid)
+        )
+        for file in files:
+            # delete chunks
+            await self.ap.persistence_mgr.execute_async(
+                sqlalchemy.delete(persistence_rag.Chunk).where(persistence_rag.Chunk.file_id == file.uuid)
+            )
+            # delete file
+            await self.ap.persistence_mgr.execute_async(
+                sqlalchemy.delete(persistence_rag.File).where(persistence_rag.File.uuid == file.uuid)
+            )
--- a/pkg/api/http/service/model.py
+++ b/pkg/api/http/service/model.py
@@ -0,0 +1,199 @@
+from __future__ import annotations
+
+import uuid
+import sqlalchemy
+
+from ....core import app
+from ....entity.persistence import model as persistence_model
+from ....entity.persistence import pipeline as persistence_pipeline
+from ....provider.modelmgr import requester as model_requester
+from langbot_plugin.api.entities.builtin.provider import message as provider_message
+
+
+class LLMModelsService:
+    ap: app.Application
+
+    def __init__(self, ap: app.Application) -> None:
+        self.ap = ap
+
+    async def get_llm_models(self, include_secret: bool = True) -> list[dict]:
+        result = await self.ap.persistence_mgr.execute_async(sqlalchemy.select(persistence_model.LLMModel))
+
+        models = result.all()
+
+        masked_columns = []
+        if not include_secret:
+            masked_columns = ['api_keys']
+
+        return [
+            self.ap.persistence_mgr.serialize_model(persistence_model.LLMModel, model, masked_columns)
+            for model in models
+        ]
+
+    async def create_llm_model(self, model_data: dict) -> str:
+        model_data['uuid'] = str(uuid.uuid4())
+
+        await self.ap.persistence_mgr.execute_async(sqlalchemy.insert(persistence_model.LLMModel).values(**model_data))
+
+        llm_model = await self.get_llm_model(model_data['uuid'])
+
+        await self.ap.model_mgr.load_llm_model(llm_model)
+
+        # check if default pipeline has no model bound
+        result = await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.select(persistence_pipeline.LegacyPipeline).where(
+                persistence_pipeline.LegacyPipeline.is_default == True
+            )
+        )
+        pipeline = result.first()
+        if pipeline is not None and pipeline.config['ai']['local-agent']['model'] == '':
+            pipeline_config = pipeline.config
+            pipeline_config['ai']['local-agent']['model'] = model_data['uuid']
+            pipeline_data = {'config': pipeline_config}
+            await self.ap.pipeline_service.update_pipeline(pipeline.uuid, pipeline_data)
+
+        return model_data['uuid']
+
+    async def get_llm_model(self, model_uuid: str) -> dict | None:
+        result = await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.select(persistence_model.LLMModel).where(persistence_model.LLMModel.uuid == model_uuid)
+        )
+
+        model = result.first()
+
+        if model is None:
+            return None
+
+        return self.ap.persistence_mgr.serialize_model(persistence_model.LLMModel, model)
+
+    async def update_llm_model(self, model_uuid: str, model_data: dict) -> None:
+        if 'uuid' in model_data:
+            del model_data['uuid']
+
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.update(persistence_model.LLMModel)
+            .where(persistence_model.LLMModel.uuid == model_uuid)
+            .values(**model_data)
+        )
+
+        await self.ap.model_mgr.remove_llm_model(model_uuid)
+
+        llm_model = await self.get_llm_model(model_uuid)
+
+        await self.ap.model_mgr.load_llm_model(llm_model)
+
+    async def delete_llm_model(self, model_uuid: str) -> None:
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.delete(persistence_model.LLMModel).where(persistence_model.LLMModel.uuid == model_uuid)
+        )
+
+        await self.ap.model_mgr.remove_llm_model(model_uuid)
+
+    async def test_llm_model(self, model_uuid: str, model_data: dict) -> None:
+        runtime_llm_model: model_requester.RuntimeLLMModel | None = None
+
+        if model_uuid != '_':
+            for model in self.ap.model_mgr.llm_models:
+                if model.model_entity.uuid == model_uuid:
+                    runtime_llm_model = model
+                    break
+
+            if runtime_llm_model is None:
+                raise Exception('model not found')
+
+        else:
+            runtime_llm_model = await self.ap.model_mgr.init_runtime_llm_model(model_data)
+
+        await runtime_llm_model.requester.invoke_llm(
+            query=None,
+            model=runtime_llm_model,
+            messages=[provider_message.Message(role='user', content='Hello, world!')],
+            funcs=[],
+            extra_args=model_data.get('extra_args', {}),
+        )
+
+
+class EmbeddingModelsService:
+    ap: app.Application
+
+    def __init__(self, ap: app.Application) -> None:
+        self.ap = ap
+
+    async def get_embedding_models(self) -> list[dict]:
+        result = await self.ap.persistence_mgr.execute_async(sqlalchemy.select(persistence_model.EmbeddingModel))
+
+        models = result.all()
+        return [self.ap.persistence_mgr.serialize_model(persistence_model.EmbeddingModel, model) for model in models]
+
+    async def create_embedding_model(self, model_data: dict) -> str:
+        model_data['uuid'] = str(uuid.uuid4())
+
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.insert(persistence_model.EmbeddingModel).values(**model_data)
+        )
+
+        embedding_model = await self.get_embedding_model(model_data['uuid'])
+
+        await self.ap.model_mgr.load_embedding_model(embedding_model)
+
+        return model_data['uuid']
+
+    async def get_embedding_model(self, model_uuid: str) -> dict | None:
+        result = await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.select(persistence_model.EmbeddingModel).where(
+                persistence_model.EmbeddingModel.uuid == model_uuid
+            )
+        )
+
+        model = result.first()
+
+        if model is None:
+            return None
+
+        return self.ap.persistence_mgr.serialize_model(persistence_model.EmbeddingModel, model)
+
+    async def update_embedding_model(self, model_uuid: str, model_data: dict) -> None:
+        if 'uuid' in model_data:
+            del model_data['uuid']
+
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.update(persistence_model.EmbeddingModel)
+            .where(persistence_model.EmbeddingModel.uuid == model_uuid)
+            .values(**model_data)
+        )
+
+        await self.ap.model_mgr.remove_embedding_model(model_uuid)
+
+        embedding_model = await self.get_embedding_model(model_uuid)
+
+        await self.ap.model_mgr.load_embedding_model(embedding_model)
+
+    async def delete_embedding_model(self, model_uuid: str) -> None:
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.delete(persistence_model.EmbeddingModel).where(
+                persistence_model.EmbeddingModel.uuid == model_uuid
+            )
+        )
+
+        await self.ap.model_mgr.remove_embedding_model(model_uuid)
+
+    async def test_embedding_model(self, model_uuid: str, model_data: dict) -> None:
+        runtime_embedding_model: model_requester.RuntimeEmbeddingModel | None = None
+
+        if model_uuid != '_':
+            for model in self.ap.model_mgr.embedding_models:
+                if model.model_entity.uuid == model_uuid:
+                    runtime_embedding_model = model
+                    break
+
+            if runtime_embedding_model is None:
+                raise Exception('model not found')
+
+        else:
+            runtime_embedding_model = await self.ap.model_mgr.init_runtime_embedding_model(model_data)
+
+        await runtime_embedding_model.requester.invoke_embedding(
+            model=runtime_embedding_model,
+            input_text=['Hello, world!'],
+            extra_args={},
+        )
--- a/pkg/api/http/service/pipeline.py
+++ b/pkg/api/http/service/pipeline.py
@@ -0,0 +1,138 @@
+from __future__ import annotations
+
+import uuid
+import json
+import sqlalchemy
+
+from ....core import app
+from ....entity.persistence import pipeline as persistence_pipeline
+
+
+default_stage_order = [
+    'GroupRespondRuleCheckStage',  # 群响应规则检查
+    'BanSessionCheckStage',  # 封禁会话检查
+    'PreContentFilterStage',  # 内容过滤前置阶段
+    'PreProcessor',  # 预处理器
+    'ConversationMessageTruncator',  # 会话消息截断器
+    'RequireRateLimitOccupancy',  # 请求速率限制占用
+    'MessageProcessor',  # 处理器
+    'ReleaseRateLimitOccupancy',  # 释放速率限制占用
+    'PostContentFilterStage',  # 内容过滤后置阶段
+    'ResponseWrapper',  # 响应包装器
+    'LongTextProcessStage',  # 长文本处理
+    'SendResponseBackStage',  # 发送响应
+]
+
+
+class PipelineService:
+    ap: app.Application
+
+    def __init__(self, ap: app.Application) -> None:
+        self.ap = ap
+
+    async def get_pipeline_metadata(self) -> dict:
+        return [
+            self.ap.pipeline_config_meta_trigger.data,
+            self.ap.pipeline_config_meta_safety.data,
+            self.ap.pipeline_config_meta_ai.data,
+            self.ap.pipeline_config_meta_output.data,
+        ]
+
+    async def get_pipelines(self, sort_by: str = 'created_at', sort_order: str = 'DESC') -> list[dict]:
+        query = sqlalchemy.select(persistence_pipeline.LegacyPipeline)
+
+        if sort_by == 'created_at':
+            if sort_order == 'DESC':
+                query = query.order_by(persistence_pipeline.LegacyPipeline.created_at.desc())
+            else:
+                query = query.order_by(persistence_pipeline.LegacyPipeline.created_at.asc())
+        elif sort_by == 'updated_at':
+            if sort_order == 'DESC':
+                query = query.order_by(persistence_pipeline.LegacyPipeline.updated_at.desc())
+            else:
+                query = query.order_by(persistence_pipeline.LegacyPipeline.updated_at.asc())
+
+        result = await self.ap.persistence_mgr.execute_async(query)
+        pipelines = result.all()
+        return [
+            self.ap.persistence_mgr.serialize_model(persistence_pipeline.LegacyPipeline, pipeline)
+            for pipeline in pipelines
+        ]
+
+    async def get_pipeline(self, pipeline_uuid: str) -> dict | None:
+        result = await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.select(persistence_pipeline.LegacyPipeline).where(
+                persistence_pipeline.LegacyPipeline.uuid == pipeline_uuid
+            )
+        )
+
+        pipeline = result.first()
+
+        if pipeline is None:
+            return None
+
+        return self.ap.persistence_mgr.serialize_model(persistence_pipeline.LegacyPipeline, pipeline)
+
+    async def create_pipeline(self, pipeline_data: dict, default: bool = False) -> str:
+        pipeline_data['uuid'] = str(uuid.uuid4())
+        pipeline_data['for_version'] = self.ap.ver_mgr.get_current_version()
+        pipeline_data['stages'] = default_stage_order.copy()
+        pipeline_data['is_default'] = default
+        pipeline_data['config'] = json.load(open('templates/default-pipeline-config.json', 'r', encoding='utf-8'))
+
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.insert(persistence_pipeline.LegacyPipeline).values(**pipeline_data)
+        )
+
+        pipeline = await self.get_pipeline(pipeline_data['uuid'])
+
+        await self.ap.pipeline_mgr.load_pipeline(pipeline)
+
+        return pipeline_data['uuid']
+
+    async def update_pipeline(self, pipeline_uuid: str, pipeline_data: dict) -> None:
+        if 'uuid' in pipeline_data:
+            del pipeline_data['uuid']
+        if 'for_version' in pipeline_data:
+            del pipeline_data['for_version']
+        if 'stages' in pipeline_data:
+            del pipeline_data['stages']
+        if 'is_default' in pipeline_data:
+            del pipeline_data['is_default']
+
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.update(persistence_pipeline.LegacyPipeline)
+            .where(persistence_pipeline.LegacyPipeline.uuid == pipeline_uuid)
+            .values(**pipeline_data)
+        )
+
+        pipeline = await self.get_pipeline(pipeline_uuid)
+
+        if 'name' in pipeline_data:
+            from ....entity.persistence import bot as persistence_bot
+
+            result = await self.ap.persistence_mgr.execute_async(
+                sqlalchemy.select(persistence_bot.Bot).where(persistence_bot.Bot.use_pipeline_uuid == pipeline_uuid)
+            )
+
+            bots = result.all()
+
+            for bot in bots:
+                bot_data = {'use_pipeline_name': pipeline_data['name']}
+                await self.ap.bot_service.update_bot(bot.uuid, bot_data)
+
+        await self.ap.pipeline_mgr.remove_pipeline(pipeline_uuid)
+        await self.ap.pipeline_mgr.load_pipeline(pipeline)
+
+        # update all conversation that use this pipeline
+        for session in self.ap.sess_mgr.session_list:
+            if session.using_conversation is not None and session.using_conversation.pipeline_uuid == pipeline_uuid:
+                session.using_conversation = None
+
+    async def delete_pipeline(self, pipeline_uuid: str) -> None:
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.delete(persistence_pipeline.LegacyPipeline).where(
+                persistence_pipeline.LegacyPipeline.uuid == pipeline_uuid
+            )
+        )
+        await self.ap.pipeline_mgr.remove_pipeline(pipeline_uuid)
--- a/pkg/api/http/service/user.py
+++ b/pkg/api/http/service/user.py
@@ -6,37 +6,39 @@ import jwt
 import datetime

 from ....core import app
-from ....persistence.entities import user
+from ....entity.persistence import user
 from ....utils import constants


 class UserService:
-
    ap: app.Application

    def __init__(self, ap: app.Application) -> None:
        self.ap = ap

    async def is_initialized(self) -> bool:
-        result = await self.ap.persistence_mgr.execute_async(
-            sqlalchemy.select(user.User).limit(1)
-        )
+        result = await self.ap.persistence_mgr.execute_async(sqlalchemy.select(user.User).limit(1))

        result_list = result.all()
        return result_list is not None and len(result_list) > 0
-    
+
    async def create_user(self, user_email: str, password: str) -> None:
        ph = argon2.PasswordHasher()

        hashed_password = ph.hash(password)

        await self.ap.persistence_mgr.execute_async(
-            sqlalchemy.insert(user.User).values(
-                user=user_email,
-                password=hashed_password
-            )
+            sqlalchemy.insert(user.User).values(user=user_email, password=hashed_password)
        )

+    async def get_user_by_email(self, user_email: str) -> user.User | None:
+        result = await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.select(user.User).where(user.User.user == user_email)
+        )
+
+        result_list = result.all()
+        return result_list[0] if result_list is not None and len(result_list) > 0 else None
+
    async def authenticate(self, user_email: str, password: str) -> str | None:
        result = await self.ap.persistence_mgr.execute_async(
            sqlalchemy.select(user.User).where(user.User.user == user_email)
@@ -56,18 +58,42 @@ class UserService:
        return await self.generate_jwt_token(user_email)

    async def generate_jwt_token(self, user_email: str) -> str:
-        jwt_secret = self.ap.instance_secret_meta.data['jwt_secret']
-        jwt_expire = self.ap.system_cfg.data['http-api']['jwt-expire']
+        jwt_secret = self.ap.instance_config.data['system']['jwt']['secret']
+        jwt_expire = self.ap.instance_config.data['system']['jwt']['expire']

        payload = {
            'user': user_email,
-            'iss': 'LangBot-'+constants.edition,
-            'exp': datetime.datetime.now() + datetime.timedelta(seconds=jwt_expire)
+            'iss': 'LangBot-' + constants.edition,
+            'exp': datetime.datetime.now() + datetime.timedelta(seconds=jwt_expire),
        }

        return jwt.encode(payload, jwt_secret, algorithm='HS256')
-    
+
    async def verify_jwt_token(self, token: str) -> str:
-        jwt_secret = self.ap.instance_secret_meta.data['jwt_secret']
+        jwt_secret = self.ap.instance_config.data['system']['jwt']['secret']

        return jwt.decode(token, jwt_secret, algorithms=['HS256'])['user']
+
+    async def reset_password(self, user_email: str, new_password: str) -> None:
+        ph = argon2.PasswordHasher()
+
+        hashed_password = ph.hash(new_password)
+
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.update(user.User).where(user.User.user == user_email).values(password=hashed_password)
+        )
+
+    async def change_password(self, user_email: str, current_password: str, new_password: str) -> None:
+        ph = argon2.PasswordHasher()
+
+        user_obj = await self.get_user_by_email(user_email)
+        if user_obj is None:
+            raise ValueError('User not found')
+
+        ph.verify(user_obj.password, current_password)
+
+        hashed_password = ph.hash(new_password)
+
+        await self.ap.persistence_mgr.execute_async(
+            sqlalchemy.update(user.User).where(user.User.user == user_email).values(password=hashed_password)
+        )
--- a/pkg/api/http/service/websocket_pool.py
+++ b/pkg/api/http/service/websocket_pool.py
@@ -0,0 +1,211 @@
+"""WebSocket 连接池管理
+
+用于管理流水线调试的 WebSocket 连接，支持会话隔离和消息广播。
+"""
+
+from __future__ import annotations
+
+import asyncio
+import logging
+import uuid
+from dataclasses import dataclass, field
+from datetime import datetime
+from typing import Optional
+
+import quart
+
+logger = logging.getLogger(__name__)
+
+
+@dataclass
+class WebSocketConnection:
+    """单个 WebSocket 连接"""
+
+    connection_id: str
+    websocket: quart.websocket.WebSocket
+    pipeline_uuid: str
+    session_type: str  # 'person' 或 'group'
+    created_at: datetime
+    last_ping: datetime
+
+    @property
+    def session_key(self) -> str:
+        """会话唯一标识: pipeline_uuid:session_type"""
+        return f"{self.pipeline_uuid}:{self.session_type}"
+
+    async def send(self, event_type: str, data: dict):
+        """发送事件到客户端
+
+        Args:
+            event_type: 事件类型
+            data: 事件数据
+        """
+        try:
+            await self.websocket.send_json({"type": event_type, "data": data})
+        except Exception as e:
+            logger.error(f"Failed to send message to {self.connection_id}: {e}")
+            raise
+
+
+class WebSocketConnectionPool:
+    """WebSocket 连接池 - 按会话隔离
+
+    连接池结构:
+        connections[session_key][connection_id] = WebSocketConnection
+        其中 session_key = f"{pipeline_uuid}:{session_type}"
+
+    这样可以确保:
+        - person 和 group 会话完全隔离
+        - 不同 pipeline 的会话隔离
+        - 同一会话的多个连接可以同步接收消息（多标签页）
+    """
+
+    def __init__(self):
+        self.connections: dict[str, dict[str, WebSocketConnection]] = {}
+        self._lock = asyncio.Lock()
+
+    def add_connection(self, conn: WebSocketConnection):
+        """添加连接到指定会话
+
+        Args:
+            conn: WebSocket 连接对象
+        """
+        session_key = conn.session_key
+
+        if session_key not in self.connections:
+            self.connections[session_key] = {}
+
+        self.connections[session_key][conn.connection_id] = conn
+
+        logger.info(
+            f"WebSocket connection added: {conn.connection_id} "
+            f"to session {session_key} "
+            f"(total: {len(self.connections[session_key])} connections)"
+        )
+
+    async def remove_connection(self, connection_id: str, session_key: str):
+        """从指定会话移除连接
+
+        Args:
+            connection_id: 连接 ID
+            session_key: 会话标识
+        """
+        async with self._lock:
+            if session_key in self.connections:
+                conn = self.connections[session_key].pop(connection_id, None)
+
+                # 如果该会话没有连接了，清理会话
+                if not self.connections[session_key]:
+                    del self.connections[session_key]
+
+                if conn:
+                    logger.info(
+                        f"WebSocket connection removed: {connection_id} "
+                        f"from session {session_key} "
+                        f"(remaining: {len(self.connections.get(session_key, {}))} connections)"
+                    )
+
+    def get_connection(self, connection_id: str, session_key: str) -> Optional[WebSocketConnection]:
+        """获取指定连接
+
+        Args:
+            connection_id: 连接 ID
+            session_key: 会话标识
+
+        Returns:
+            WebSocketConnection 或 None
+        """
+        return self.connections.get(session_key, {}).get(connection_id)
+
+    def get_connections_by_session(self, pipeline_uuid: str, session_type: str) -> list[WebSocketConnection]:
+        """获取指定会话的所有连接
+
+        Args:
+            pipeline_uuid: 流水线 UUID
+            session_type: 会话类型 ('person' 或 'group')
+
+        Returns:
+            连接列表
+        """
+        session_key = f"{pipeline_uuid}:{session_type}"
+        return list(self.connections.get(session_key, {}).values())
+
+    async def broadcast_to_session(self, pipeline_uuid: str, session_type: str, event_type: str, data: dict):
+        """广播消息到指定会话的所有连接
+
+        Args:
+            pipeline_uuid: 流水线 UUID
+            session_type: 会话类型 ('person' 或 'group')
+            event_type: 事件类型
+            data: 事件数据
+        """
+        connections = self.get_connections_by_session(pipeline_uuid, session_type)
+
+        if not connections:
+            logger.debug(f"No connections for session {pipeline_uuid}:{session_type}, skipping broadcast")
+            return
+
+        logger.debug(
+            f"Broadcasting {event_type} to session {pipeline_uuid}:{session_type}, " f"{len(connections)} connections"
+        )
+
+        # 并发发送到所有连接，忽略失败的连接
+        results = await asyncio.gather(*[conn.send(event_type, data) for conn in connections], return_exceptions=True)
+
+        # 统计失败的连接
+        failed_count = sum(1 for result in results if isinstance(result, Exception))
+        if failed_count > 0:
+            logger.warning(f"Failed to send to {failed_count}/{len(connections)} connections")
+
+    def get_all_sessions(self) -> list[str]:
+        """获取所有活跃会话的 session_key 列表
+
+        Returns:
+            会话标识列表
+        """
+        return list(self.connections.keys())
+
+    def get_connection_count(self, pipeline_uuid: str, session_type: str) -> int:
+        """获取指定会话的连接数量
+
+        Args:
+            pipeline_uuid: 流水线 UUID
+            session_type: 会话类型
+
+        Returns:
+            连接数量
+        """
+        session_key = f"{pipeline_uuid}:{session_type}"
+        return len(self.connections.get(session_key, {}))
+
+    async def cleanup_stale_connections(self, timeout_seconds: int = 120):
+        """清理超时的连接
+
+        Args:
+            timeout_seconds: 超时时间（秒）
+        """
+        now = datetime.now()
+        stale_connections = []
+
+        # 查找超时连接
+        for session_key, session_conns in self.connections.items():
+            for conn_id, conn in session_conns.items():
+                elapsed = (now - conn.last_ping).total_seconds()
+                if elapsed > timeout_seconds:
+                    stale_connections.append((conn_id, session_key))
+
+        # 移除超时连接
+        for conn_id, session_key in stale_connections:
+            logger.warning(f"Removing stale connection: {conn_id} from {session_key}")
+            await self.remove_connection(conn_id, session_key)
+
+            # 尝试关闭 WebSocket
+            try:
+                conn = self.get_connection(conn_id, session_key)
+                if conn:
+                    await conn.websocket.close(1000, "Connection timeout")
+            except Exception as e:
+                logger.error(f"Error closing stale connection {conn_id}: {e}")
+
+        if stale_connections:
+            logger.info(f"Cleaned up {len(stale_connections)} stale connections")
--- a/pkg/audit/init.py
+++ b/pkg/audit/init.py
@@ -1,3 +0,0 @@
-"""
-审计相关操作
-"""
--- a/pkg/audit/center/apigroup.py
+++ b/pkg/audit/center/apigroup.py
@@ -1,88 +0,0 @@
-from __future__ import annotations
-
-import abc
-import uuid
-import json
-import logging
-import asyncio
-
-import aiohttp
-import requests
-
-from ...core import app, entities as core_entities
-
-
-class APIGroup(metaclass=abc.ABCMeta):
-    """API 组抽象类"""
-
-    _basic_info: dict = None
-    _runtime_info: dict = None
-
-    prefix = None
-
-    ap: app.Application
-
-    def __init__(self, prefix: str, ap: app.Application):
-        self.prefix = prefix
-        self.ap = ap
-
-    async def _do(
-        self,
-        method: str,
-        path: str,
-        data: dict = None,
-        params: dict = None,
-        headers: dict = {},
-        **kwargs,
-    ):
-        """
-        执行请求
-        """
-        self._runtime_info["account_id"] = "-1"
-
-        url = self.prefix + path
-        data = json.dumps(data)
-        headers["Content-Type"] = "application/json"
-
-        try:
-            async with aiohttp.ClientSession() as session:
-                async with session.request(
-                    method, url, data=data, params=params, headers=headers, **kwargs
-                ) as resp:
-                    self.ap.logger.debug("data: %s", data)
-                    self.ap.logger.debug("ret: %s", await resp.text())
-
-        except Exception as e:
-            self.ap.logger.debug(f"上报失败: {e}")
-
-    async def do(
-        self,
-        method: str,
-        path: str,
-        data: dict = None,
-        params: dict = None,
-        headers: dict = {},
-        **kwargs,
-    ) -> asyncio.Task:
-        """执行请求"""
-
-        return self.ap.task_mgr.create_task(
-            self._do(method, path, data, params, headers, **kwargs),
-            kind="telemetry-operation",
-            name=f"{method} {path}",
-            scopes=[core_entities.LifecycleControlScope.APPLICATION],
-        ).task
-
-    def gen_rid(self):
-        """生成一个请求 ID"""
-        return str(uuid.uuid4())
-
-    def basic_info(self):
-        """获取基本信息"""
-        basic_info = APIGroup._basic_info.copy()
-        basic_info["rid"] = self.gen_rid()
-        return basic_info
-
-    def runtime_info(self):
-        """获取运行时信息"""
-        return APIGroup._runtime_info
--- a/pkg/audit/center/groups/main.py
+++ b/pkg/audit/center/groups/main.py
@@ -1,55 +0,0 @@
-from __future__ import annotations
-
-from .. import apigroup
-from ....core import app
-
-
-class V2MainDataAPI(apigroup.APIGroup):
-    """主程序相关 数据API"""
-
-    def __init__(self, prefix: str, ap: app.Application):
-        self.ap = ap
-        super().__init__(prefix+"/main", ap)
-
-    async def do(self, *args, **kwargs):
-        if not self.ap.system_cfg.data['report-usage']:
-            return None
-        return await super().do(*args, **kwargs)
-
-    async def post_update_record(
-        self,
-        spent_seconds: int,
-        infer_reason: str,
-        old_version: str,
-        new_version: str,
-    ):
-        """提交更新记录"""
-        return await self.do(
-            "POST",
-            "/update",
-            data={
-                "basic": self.basic_info(),
-                "update_info": {
-                    "spent_seconds": spent_seconds,
-                    "infer_reason": infer_reason,
-                    "old_version": old_version,
-                    "new_version": new_version,
-                }
-            }
-        )
-    
-    async def post_announcement_showed(
-        self,
-        ids: list[int],
-    ):
-        """提交公告已阅"""
-        return await self.do(
-            "POST",
-            "/announcement",
-            data={
-                "basic": self.basic_info(),
-                "announcement_info": {
-                    "ids": ids,
-                }
-            }
-        )
--- a/pkg/audit/center/groups/plugin.py
+++ b/pkg/audit/center/groups/plugin.py
@@ -1,65 +0,0 @@
-from __future__ import annotations
-
-from ....core import app
-from .. import apigroup
-
-
-class V2PluginDataAPI(apigroup.APIGroup):
-    """插件数据相关 API"""
-
-    def __init__(self, prefix: str, ap: app.Application):
-        self.ap = ap
-        super().__init__(prefix+"/plugin", ap)
-
-    async def do(self, *args, **kwargs):
-        if not self.ap.system_cfg.data['report-usage']:
-            return None
-        return await super().do(*args, **kwargs)
-
-    async def post_install_record(
-        self,
-        plugin: dict
-    ):
-        """提交插件安装记录"""
-        return await self.do(
-            "POST",
-            "/install",
-            data={
-                "basic": self.basic_info(),
-                "plugin": plugin,
-            }
-        )
-
-    async def post_remove_record(
-        self,
-        plugin: dict
-    ):
-        """提交插件卸载记录"""
-        return await self.do(
-            "POST",
-            "/remove",
-            data={
-                "basic": self.basic_info(),
-                "plugin": plugin,
-            }
-        )
-
-    async def post_update_record(
-        self,
-        plugin: dict,
-        old_version: str,
-        new_version: str,
-    ):
-        """提交插件更新记录"""
-        return await self.do(
-            "POST",
-            "/update",
-            data={
-                "basic": self.basic_info(),
-                "plugin": plugin,
-                "update_info": {
-                    "old_version": old_version,
-                    "new_version": new_version,
-                }
-            }
-        )
--- a/pkg/audit/center/groups/usage.py
+++ b/pkg/audit/center/groups/usage.py
@@ -1,88 +0,0 @@
-from __future__ import annotations
-
-from .. import apigroup
-from ....core import app
-
-
-class V2UsageDataAPI(apigroup.APIGroup):
-    """使用量数据相关 API"""
-
-    def __init__(self, prefix: str, ap: app.Application):
-        self.ap = ap
-        super().__init__(prefix+"/usage", ap)
-
-    async def do(self, *args, **kwargs):
-        if not self.ap.system_cfg.data['report-usage']:
-            return None
-        return await super().do(*args, **kwargs)
-
-    async def post_query_record(
-        self,
-        session_type: str,
-        session_id: str,
-        query_ability_provider: str,
-        usage: int,
-        model_name: str,
-        response_seconds: int,
-        retry_times: int,
-    ):
-        """提交请求记录"""
-        return await self.do(
-            "POST",
-            "/query",
-            data={
-                "basic": self.basic_info(),
-                "runtime": self.runtime_info(),
-                "session_info": {
-                    "type": session_type,
-                    "id": session_id,
-                },
-                "query_info": {
-                    "ability_provider": query_ability_provider,
-                    "usage": usage,
-                    "model_name": model_name,
-                    "response_seconds": response_seconds,
-                    "retry_times": retry_times,
-                }
-            }
-        )
-    
-    async def post_event_record(
-        self,
-        plugins: list[dict],
-        event_name: str,
-    ):
-        """提交事件触发记录"""
-        return await self.do(
-            "POST",
-            "/event",
-            data={
-                "basic": self.basic_info(),
-                "runtime": self.runtime_info(),
-                "plugins": plugins,
-                "event_info": {
-                    "name": event_name,
-                }
-            }
-        )
-    
-    async def post_function_record(
-        self,
-        plugin: dict,
-        function_name: str,
-        function_description: str,
-    ):
-        """提交内容函数使用记录"""
-        return await self.do(
-            "POST",
-            "/function",
-            data={
-                "basic": self.basic_info(),
-                "plugin": plugin,
-                "function_info": {
-                    "name": function_name,
-                    "description": function_description,
-                }
-            }
-        )
-    
--- a/Show More
+++ b/Show More
				`@@ -0,0 +1 @@`
				`from .client import WeChatPadClient as WeChatPadClient`