Skip to content

Acquiredshot/wolf-pak-line-bot

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

99 Commits
.github/workflows
.github/workflows
 
 
public
public
 
 
.dockerignore
.dockerignore
 
 
.env.example
.env.example
 
 
.gitignore
.gitignore
 
 
.pre-commit-config.yaml
.pre-commit-config.yaml
 
 
ACCOUNTING_SETUP.md
ACCOUNTING_SETUP.md
 
 
ADMIN_IAM_SETUP.md
ADMIN_IAM_SETUP.md
 
 
API_KEY_SETUP.md
API_KEY_SETUP.md
 
 
AZURE_DATABASE_SETUP.md
AZURE_DATABASE_SETUP.md
 
 
AZURE_DB_QUICK_REF.md
AZURE_DB_QUICK_REF.md
 
 
Attached HTML and CSS Context
Attached HTML and CSS Context
 
 
BUSINESS_CARD_OCR_GUIDE.md
BUSINESS_CARD_OCR_GUIDE.md
 
 
CHANGELOG.md
CHANGELOG.md
 
 
DEPLOY_NOW.md
DEPLOY_NOW.md
 
 
Dockerfile
Dockerfile
 
 
FEATURE_FLAGS.md
FEATURE_FLAGS.md
 
 
GCP_BUDGET_SETUP.md
GCP_BUDGET_SETUP.md
 
 
GOOGLE_MAPS_COMPLIANCE.md
GOOGLE_MAPS_COMPLIANCE.md
 
 
HEROKU_DEPLOY.md
HEROKU_DEPLOY.md
 
 
INVOICE_REQUIREMENTS.md
INVOICE_REQUIREMENTS.md
 
 
INVOICE_SETUP.md
INVOICE_SETUP.md
 
 
INVOICE_SUMMARY.md
INVOICE_SUMMARY.md
 
 
LICENSE
LICENSE
 
 
LOCATION_SETUP.md
LOCATION_SETUP.md
 
 
OCR_LEGACY_SETUP.md
OCR_LEGACY_SETUP.md
 
 
PAYMENT_SETUP.md
PAYMENT_SETUP.md
 
 
PRICING.html
PRICING.html
 
 
Procfile
Procfile
 
 
QUICKBOOKS_SETUP.md
QUICKBOOKS_SETUP.md
 
 
QUICKSTART.md
QUICKSTART.md
 
 
README.md
README.md
 
 
REMINDERS_GUIDE.md
REMINDERS_GUIDE.md
 
 
REMINDERS_QUICK_REF.md
REMINDERS_QUICK_REF.md
 
 
ROADMAP.md
ROADMAP.md
 
 
SECURITY.md
SECURITY.md
 
 
SECURITY_FIXES.md
SECURITY_FIXES.md
 
 
SECURITY_QA_TESTING.md
SECURITY_QA_TESTING.md
 
 
SEO_SETUP.md
SEO_SETUP.md
 
 
TERMS_OF_SERVICE.md
TERMS_OF_SERVICE.md
 
 
TESTING_SECURITY_POWERSHELL.md
TESTING_SECURITY_POWERSHELL.md
 
 
Wolf-Pak-Pricing.pdf
Wolf-Pak-Pricing.pdf
 
 
accounting-integrations.js
accounting-integrations.js
 
 
admin-auth.js
admin-auth.js
 
 
api-accounting.js
api-accounting.js
 
 
api-invoice.js
api-invoice.js
 
 
api-legacy.js
api-legacy.js
 
 
api-ocr.js
api-ocr.js
 
 
api-payments.js
api-payments.js
 
 
api-routes.js
api-routes.js
 
 
api-seo.js
api-seo.js
 
 
business-card-ocr.js
business-card-ocr.js
 
 
business-logic.js
business-logic.js
 
 
currency-converter.js
currency-converter.js
 
 
database-pg.js
database-pg.js
 
 
database.js
database.js
 
 
deploy-heroku.sh
deploy-heroku.sh
 
 
e2ee-crypto.js
e2ee-crypto.js
 
 
expense-approval.js
expense-approval.js
 
 
freee-api.js
freee-api.js
 
 
generate-pdf.js
generate-pdf.js
 
 
generate-pricing-pdf.js
generate-pricing-pdf.js
 
 
iam-rbac.js
iam-rbac.js
 
 
index.js
index.js
 
 
invoice-automation.js
invoice-automation.js
 
 
invoice-calculator.js
invoice-calculator.js
 
 
legacy-connector.js
legacy-connector.js
 
 
location-service.js
location-service.js
 
 
ocr-integrations.js
ocr-integrations.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
payment-integrations.js
payment-integrations.js
 
 
quickbooks-api.js
quickbooks-api.js
 
 
rag-faq.js
rag-faq.js
 
 
reminder-service.js
reminder-service.js
 
 
rich-menu-inspect.js
rich-menu-inspect.js
 
 
rich-menu-preview.js
rich-menu-preview.js
 
 
rich-menu-preview.png
rich-menu-preview.png
 
 
rich-menu-setup.js
rich-menu-setup.js
 
 
sample-japanese-invoice.html
sample-japanese-invoice.html
 
 
security-middleware.js
security-middleware.js
 
 
seo-integrations.js
seo-integrations.js
 
 
setup-freee.sh
setup-freee.sh
 
 
test-azure-db.js
test-azure-db.js
 
 
test-calculator.js
test-calculator.js
 
 
test-currency-converter.js
test-currency-converter.js
 
 
test-database.js
test-database.js
 
 
test-expense-workflow.js
test-expense-workflow.js
 
 
test-phase2-3-features.js
test-phase2-3-features.js
 
 
test-quickbooks.js
test-quickbooks.js
 
 
test-relay-chat.js
test-relay-chat.js
 
 
test-reminders.js
test-reminders.js
 
 
test-setup.js
test-setup.js
 
 
voice-transcription.js
voice-transcription.js
 
 

Repository files navigation

Wolf-Pak LINE Bot

AI-powered business automation for Japanese SMEs via LINE messaging.

What Was Updated (March 2026)

Security Hardening

  • Bcrypt-based API key authentication (API_KEY_HASH support with API_KEY fallback for local dev)
  • Request rate limiting on API routes
  • Input validation with express-validator
  • SQL injection protection through parameter validation and parameterized query patterns
  • Input sanitization helpers for user-provided text fields
  • Improved HTTP security headers using helmet
  • Safer error responses (reduced internal error leakage)
  • Prompt injection guard rails on AI system prompt

Performance Improvements

  • Added database indexes for common query patterns (users, conversations, reservations, reminders, analytics)
  • Improved PostgreSQL pool configuration (min/max connections, timeouts)
  • Added query helper patterns for safer and more consistent DB access

Core Features

  • Invoice automation (OCR + accounting integration)
  • Expense approvals and workflows
  • Voice translation and transcription (Japanese/English)
  • Business card OCR and QR workflows
  • Location services and directions
  • Scheduled reminders and analytics
  • QuickBooks integration
  • Stripe and PayPay integration

Quick Start

Prerequisites

  • Node.js 18+
  • npm

Install

npm install

Configure Environment

Create .env from .env.example (or use your existing env setup), then set at minimum:

  • LINE_CHANNEL_ACCESS_TOKEN
  • LINE_CHANNEL_SECRET
  • OPENAI_API_KEY
  • API_KEY_HASH (recommended) or API_KEY (dev fallback)

Generate a bcrypt API key hash:

node -e "const bcrypt = require('bcrypt'); bcrypt.hash('your-api-key', 10).then(console.log)"

Run Locally

node index.js

Health endpoint:

GET /api/health

PowerShell API Test Example (Windows)

$headers = @{ "x-api-key" = "test-api-key" }
Invoke-WebRequest -Uri "http://localhost:3000/api/health" -Headers $headers -Method GET

Security Test Docs

Project Documentation

Deployment Notes

  • Heroku and local development are both supported.
  • For production, use API_KEY_HASH and rotate keys regularly.
  • Keep secrets out of git (.env must remain uncommitted).

License

Copyright (c) 2025 Wolf-Pak Innovations LLC.

This project is licensed under the MIT License. See LICENSE for details.

Contact

About

AI-powered LINE bot for Japanese SMEs: automated invoice processing with Freee/MoneyForward integration, PDF parsing, T-number verification, and legacy system modernization. Reduces invoice data entry from 5 minutes to 5 seconds.

Topics

nodejs openai line-bot pdf-parsing business-automation invoice-automation accounting-automation freee-api japanese-invoicing qualified-invoice

Resources

Readme

License

MIT license

Security policy

Security policy
Activity

Stars

3 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages