npm - @agent-team-foundation/first-tree-hub - Versions diffs - 0.12.2 → 0.12.4 - Mend

@agent-team-foundation/first-tree-hub 0.12.2 → 0.12.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (17) hide show

package/dist/cli/index.mjs +4 -4
package/dist/{client-WubcgX-W-B2bOvgJ1.mjs → client-0RrgrMjR-CylTJGEb.mjs} +2 -2
package/dist/{client-DHCSQ8kg-DjlSmE9q.mjs → client-D1TDiik_-NV_lkhfI.mjs} +13 -11
package/dist/{dist-DHHd2dar.mjs → dist-CMhywpXB.mjs} +2 -141
package/dist/drizzle/0035_drop_hub_tasks.sql +7 -0
package/dist/drizzle/meta/_journal.json +7 -0
package/dist/{feishu-fLnwqCOs.mjs → feishu-tkZS0vvL.mjs} +1 -1
package/dist/index.mjs +4 -4
package/dist/{invitation-C299fxkP-B89eqDos.mjs → invitation-C299fxkP-CZRV665C.mjs} +1 -1
package/dist/{saas-connect-_2M4kfPR.mjs → saas-connect-S71rG182.mjs} +285 -744
package/dist/web/assets/index-BG9RRx2e.js +401 -0
package/dist/web/assets/index-CbOOQaWp.css +1 -0
package/dist/web/assets/{index-D5RJDuFw.js → index-RNegidl2.js} +1 -1
package/dist/web/index.html +2 -2
package/package.json +1 -1
package/dist/web/assets/index-C1DBMrHD.js +0 -391
package/dist/web/assets/index-CwC0zzF5.css +0 -1

package/dist/{saas-connect-_2M4kfPR.mjs → saas-connect-S71rG182.mjs} RENAMED Viewed

@@ -2,10 +2,10 @@ import { a as __toCommonJS, o as __toESM, t as __commonJSMin } from "./chunk-BSw
 import { A as FIRST_TREE_HUB_ATTR, C as stampOrgScope, D as untrustedAttrs, E as startWsConnectionSpan, M as require_pino, O as withSpan, S as stampChatResource, _ as rootLogger$1, a as buildRateLimitError, c as currentTraceId, g as reportErrorToRoot, i as bodyCaptureOnSendHook, j as redactUrl, k as withWsMessageSpan, l as decodeJwtForTrace, m as observabilityPlugin, n as applyLoggerConfig, o as classifyJoseError, r as attachRequestContext, s as createLogger$1, t as adapterAttrs, u as endWsConnectionSpan, x as stampAgentResource, y as setWsConnectionAttrs } from "./observability-BAScT_5S-BcW9HgkG.mjs";
 import { C as resetConfigMeta, E as setConfigValue, S as resetConfig, T as serverConfigSchema, b as migrateLegacyHome, c as resolveServerUrl, d as DEFAULT_CONFIG_DIR, f as DEFAULT_DATA_DIR$1, g as collectMissingPrompts, h as clientConfigSchema, i as ensureFreshAccessToken, l as saveAgentConfig, m as agentConfigSchema, o as loadCredentials, p as DEFAULT_HOME_DIR$1, u as saveCredentials, v as initConfig, w as resolveConfigReadonly, y as loadAgents } from "./bootstrap-C_K2CKXC.mjs";
 import { a as print, i as blank, n as CLI_USER_AGENT, r as COMMAND_VERSION, s as status, t as cliFetch } from "./cli-fetch--tiwKm5S.mjs";
-import { $ as loginSchema, A as createAgentSchema, At as updateTaskStatusSchema, B as githubCallbackQuerySchema, C as agentTypeSchema$1, Ct as updateAdapterConfigSchema, D as contextTreeSnapshotSchema, Dt as updateClientCapabilitiesSchema, E as connectTokenExchangeSchema, Et as updateChatSchema, F as createTaskSchema, G as inboxDeliverFrameSchema$1, H as githubStartQuerySchema, I as defaultRuntimeConfigPayload, J as isRedactedEnvValue, K as inboxPollQuerySchema, L as delegateFeishuUserSchema, M as createMeChatSchema, N as createMemberSchema, O as createAdapterConfigSchema, Ot as updateMemberSchema, P as createOrgFromMeSchema, Q as listMeChatsQuerySchema, R as dryRunAgentRuntimeConfigSchema, S as agentRuntimeConfigPayloadSchema$1, St as taskListQuerySchema, T as clientRegisterSchema, Tt as updateAgentSchema, U as imageInlineContentSchema, V as githubDevCallbackQuerySchema, W as inboxAckFrameSchema, X as joinByInvitationSchema, Y as isReservedAgentName$1, Z as linkTaskChatSchema, _ as addParticipantSchema, _t as sessionEventSchema$1, a as AGENT_STATUSES, b as agentBindRequestSchema, bt as stripCode, ct as refreshTokenSchema, d as TASK_CREATOR_TYPES, et as messageSourceSchema$1, f as TASK_HEALTH_SIGNALS, ft as selfServiceFeishuBotSchema, g as addMeChatParticipantsSchema, gt as sessionEventMessageSchema, h as WS_AUTH_FRAME_TIMEOUT_MS, ht as sessionCompletionMessageSchema, i as AGENT_SOURCES, it as patchOnboardingSchema, j as createChatSchema, jt as wsAuthFrameSchema, k as createAdapterMappingSchema, kt as updateOrganizationSchema, l as MENTION_REGEX, lt as runtimeStateMessageSchema, m as TASK_TERMINAL_STATUSES, mt as sendToAgentSchema, n as AGENT_NAME_REGEX$1, nt as onboardingEventSchema, o as AGENT_TYPES, p as TASK_STATUSES, pt as sendMessageSchema, q as isOrgSettingNamespace, r as AGENT_SELECTOR_HEADER$1, rt as paginationQuerySchema, s as AGENT_VISIBILITY, st as rebindAgentSchema, t as AGENT_BIND_REJECT_REASONS, tt as notificationQuerySchema, u as ORG_SETTINGS_NAMESPACES$1, ut as safeRedirectPath, v as adminCreateTaskSchema, vt as sessionReconcileRequestSchema, wt as updateAgentRuntimeConfigSchema, x as agentPinnedMessageSchema$1, xt as submitQuestionAnswerSchema, y as adminUpdateTaskSchema, yt as sessionStateMessageSchema } from "./dist-DHHd2dar.mjs";
+import { $ as runtimeStateMessageSchema, B as isReservedAgentName$1, C as createChatSchema, D as defaultRuntimeConfigPayload, E as createOrgFromMeSchema, F as inboxAckFrameSchema, G as notificationQuerySchema, H as listMeChatsQuerySchema, I as inboxDeliverFrameSchema$1, J as patchOnboardingSchema, K as onboardingEventSchema, L as inboxPollQuerySchema, M as githubDevCallbackQuerySchema, N as githubStartQuerySchema, O as delegateFeishuUserSchema, P as imageInlineContentSchema, Q as refreshTokenSchema, R as isOrgSettingNamespace, S as createAgentSchema, T as createMemberSchema, U as loginSchema, V as joinByInvitationSchema, W as messageSourceSchema$1, Z as rebindAgentSchema, _ as clientRegisterSchema, _t as updateMemberSchema, a as AGENT_VISIBILITY, at as sessionCompletionMessageSchema, b as createAdapterConfigSchema, c as ORG_SETTINGS_NAMESPACES$1, ct as sessionReconcileRequestSchema, d as addParticipantSchema, dt as submitQuestionAnswerSchema, et as safeRedirectPath, f as agentBindRequestSchema, ft as updateAdapterConfigSchema, gt as updateClientCapabilitiesSchema, h as agentTypeSchema$1, ht as updateChatSchema, i as AGENT_STATUSES, it as sendToAgentSchema, j as githubCallbackQuerySchema, k as dryRunAgentRuntimeConfigSchema, l as WS_AUTH_FRAME_TIMEOUT_MS, lt as sessionStateMessageSchema, m as agentRuntimeConfigPayloadSchema$1, mt as updateAgentSchema, n as AGENT_NAME_REGEX$1, nt as selfServiceFeishuBotSchema, ot as sessionEventMessageSchema, p as agentPinnedMessageSchema$1, pt as updateAgentRuntimeConfigSchema, q as paginationQuerySchema, r as AGENT_SELECTOR_HEADER$1, rt as sendMessageSchema, s as MENTION_REGEX, st as sessionEventSchema$1, t as AGENT_BIND_REJECT_REASONS, u as addMeChatParticipantsSchema, ut as stripCode, v as connectTokenExchangeSchema, vt as updateOrganizationSchema, w as createMeChatSchema, x as createAdapterMappingSchema, y as contextTreeSnapshotSchema, yt as wsAuthFrameSchema, z as isRedactedEnvValue } from "./dist-CMhywpXB.mjs";
 import { a as ConflictError, c as UnauthorizedError, i as ClientUserMismatchError$1, l as organizations, n as BadRequestError, o as ForbiddenError, r as ClientOrgMismatchError$1, s as NotFoundError, t as AppError, u as users } from "./errors-CF5evtJt-B0NTIVPt.mjs";
 import { n as init_esm, r as trace, t as esm_exports } from "./esm-iadMkGbV.mjs";
-import { $ as pendingQuestions, A as heartbeatClient, B as listAgentsWithRuntime, C as findOrCreateDirectChat, D as getClient, E as getChatDetail, F as joinChat, G as listClientsForOrgAdmin, H as listChats, I as leaveAsParticipant, J as markStaleAgents, K as listMessages, L as leaveChat, M as inboxEntries, N as invalidateChatAudience, O as getOnlineCount, P as joinAsParticipant, Q as notifyRecipients, R as listActiveAgentsPinnedToClient, S as ensureParticipant$1, T as getCachedAudience, U as listChatsForMember, V as listChatParticipantsWithNames, W as listClients, X as members, Y as markSupersededByChat, Z as messages, _ as createNotifier, _t as updateClientCapabilities, a as agents, at as removeParticipant, b as editMessage, c as bindAgent, ct as retireClient, d as chats, dt as serverInstances, et as recomputeChatWatchers, f as claimClient, ft as setOffline, g as createChat, gt as unbindAgent, h as clients, ht as touchAgent, i as agentVisibilityCondition, it as registerClient, j as heartbeatInstance, k as getPresence, l as chatParticipants, lt as sendMessage, m as cleanupStalePresence, mt as submitAnswer, n as agentChatSessions, nt as recomputeWatchersForMember, o as assertClientOwner, ot as resetActivity, p as cleanupStaleClients, pt as setRuntimeState, r as agentPresence, rt as registerChatMessageDispatcher, s as assertParticipant, st as resolveChatMembership, t as addParticipant, tt as recomputeWatchersForAgent, u as chatSubscriptions, ut as sendToAgent$1, v as deriveAuthState, vt as upsertSessionState, w as getActivityOverview, x as ensureCanJoin, y as disconnectClient, z as listAgentsManagedByUser } from "./client-DHCSQ8kg-DjlSmE9q.mjs";
+import { $ as pendingQuestions, A as heartbeatClient, B as listAgentsWithRuntime, C as findOrCreateDirectChat, D as getClient, E as getChatDetail, F as joinChat, G as listClientsForOrgAdmin, H as listChats, I as leaveAsParticipant, J as markStaleAgents, K as listMessages, L as leaveChat, M as inboxEntries, N as invalidateChatAudience, O as getOnlineCount, P as joinAsParticipant, Q as notifyRecipients, R as listActiveAgentsPinnedToClient, S as ensureParticipant$1, T as getCachedAudience, U as listChatsForMember, V as listChatParticipantsWithNames, W as listClients, X as members, Y as markSupersededByChat, Z as messages, _ as createNotifier, _t as updateClientCapabilities, a as agents, at as removeParticipant, b as editMessage, c as bindAgent, ct as retireClient, d as chats, dt as serverInstances, et as recomputeChatWatchers, f as claimClient, ft as setOffline, g as createChat, gt as unbindAgent, h as clients, ht as touchAgent, i as agentVisibilityCondition, it as registerClient, j as heartbeatInstance, k as getPresence, l as chatParticipants, lt as sendMessage, m as cleanupStalePresence, mt as submitAnswer, n as agentChatSessions, nt as recomputeWatchersForMember, o as assertClientOwner, ot as resetActivity, p as cleanupStaleClients, pt as setRuntimeState, r as agentPresence, rt as registerChatMessageDispatcher, s as assertParticipant, st as resolveChatMembership, t as addParticipant, tt as recomputeWatchersForAgent, u as chatSubscriptions, ut as sendToAgent$1, v as deriveAuthState, vt as upsertSessionState, w as getActivityOverview, x as ensureCanJoin, y as disconnectClient, z as listAgentsManagedByUser } from "./client-D1TDiik_-NV_lkhfI.mjs";
 import { a as invitationRedemptions, c as recordRedemption, i as getActiveInvitation, l as rotateInvitation, n as ensureActiveInvitation, o as invitations, r as findActiveByToken, t as buildInviteUrl, u as uuidv7 } from "./invitation-Bg0TRiyx-BsZH4GCS.mjs";
 import { createRequire } from "node:module";
 import { ZodError, z } from "zod";
@@ -1015,7 +1015,6 @@ const messageFormatSchema = z.enum([
 	"card",
 	"reference",
 	"file",
-	"task",
 	"question",
 	"question_answer"
 ]);
@@ -1199,9 +1198,7 @@ const meChatRowSchema = z.object({
 	lastMessageAt: z.string().nullable(),
 	lastMessagePreview: z.string().nullable(),
 	unreadMentionCount: z.number().int(),
-	canReply: z.boolean(),
-	taskId: z.string().nullable(),
-	taskStatus: z.string().nullable()
+	canReply: z.boolean()
 });
 z.object({
 	rows: z.array(meChatRowSchema),
@@ -1677,94 +1674,6 @@ z.object({
 	totalMessages: z.number(),
 	byOrganization: z.array(orgStatsSchema)
 });
-const taskStatusSchema = z.enum([
-	"pending",
-	"assigned",
-	"working",
-	"completed",
-	"failed",
-	"cancelled"
-]);
-const taskCreatorTypeSchema = z.enum(["agent", "admin"]);
-const taskMessageEventSchema = z.enum([
-	"assigned",
-	"status_changed",
-	"cancelled"
-]);
-z.object({
-	taskId: z.string(),
-	event: taskMessageEventSchema,
-	title: z.string(),
-	body: z.string().default(""),
-	status: taskStatusSchema,
-	fromStatus: taskStatusSchema.optional(),
-	originRef: z.string().nullable().optional()
-});
-z.object({
-	title: z.string().min(1).max(500),
-	body: z.string().optional(),
-	assigneeAgentId: z.string().optional(),
-	originRef: z.string().max(500).optional(),
-	metadata: z.record(z.string(), z.unknown()).optional()
-}).extend({ organizationId: z.string().optional() });
-z.object({
-	status: z.enum([
-		"working",
-		"completed",
-		"failed"
-	]),
-	result: z.string().optional()
-});
-z.object({
-	assigneeAgentId: z.string().nullable().optional(),
-	status: taskStatusSchema.optional(),
-	result: z.string().optional()
-});
-z.object({ chatId: z.string().min(1) });
-const taskSchema = z.object({
-	id: z.string(),
-	organizationId: z.string(),
-	title: z.string(),
-	body: z.string(),
-	status: taskStatusSchema,
-	assigneeAgentId: z.string().nullable(),
-	createdByType: taskCreatorTypeSchema,
-	createdById: z.string(),
-	originRef: z.string().nullable(),
-	result: z.string().nullable(),
-	metadata: z.record(z.string(), z.unknown()),
-	createdAt: z.string(),
-	updatedAt: z.string(),
-	cancelledAt: z.string().nullable(),
-	cancelledByType: taskCreatorTypeSchema.nullable(),
-	cancelledById: z.string().nullable()
-});
-const taskChatLinkSchema = z.object({
-	taskId: z.string(),
-	chatId: z.string(),
-	linkedByAgentId: z.string().nullable(),
-	linkedAt: z.string()
-});
-taskSchema.extend({ chats: z.array(taskChatLinkSchema) });
-z.object({
-	status: taskStatusSchema.optional(),
-	assigneeAgentId: z.string().optional(),
-	originRef: z.string().optional(),
-	limit: z.coerce.number().int().min(1).max(100).default(20),
-	cursor: z.string().optional()
-});
-const taskHealthSignalSchema = z.enum([
-	"normal",
-	"idle_island",
-	"awaiting_reply",
-	"no_chat",
-	"not_applicable"
-]);
-z.object({
-	taskId: z.string(),
-	signal: taskHealthSignalSchema,
-	reason: z.string()
-});
 const userStatusSchema = z.enum(["active", "suspended"]);
 z.object({
 	id: z.string(),
@@ -2876,7 +2785,126 @@ function getHandlerFactory(type) {
 	}
 	return factory;
 }
-join(DEFAULT_DATA_DIR, "context-tree");
+const CONTEXT_TREE_DIR = join(DEFAULT_DATA_DIR, "context-tree");
+/**
+* Sync the shared Context Tree git clone.
+*
+* Clones on first run, pulls on subsequent runs.
+* Returns the binding on success, null on failure (graceful degradation).
+*/
+async function syncContextTree(serverUrl, getAccessToken, log, userAgent) {
+	try {
+		execFileSync("git", ["--version"], { stdio: "ignore" });
+	} catch {
+		log("Context Tree sync skipped: git is not installed");
+		return null;
+	}
+	let repo;
+	let branch;
+	try {
+		const config = await new FirstTreeHubSDK({
+			serverUrl,
+			getAccessToken,
+			userAgent
+		}).getContextTreeConfig();
+		if (!config.repo) {
+			log("Context Tree sync skipped: not configured on server");
+			return null;
+		}
+		repo = config.repo;
+		branch = config.branch ?? "main";
+	} catch (err) {
+		log(`Context Tree sync skipped: failed to fetch config from server (${err instanceof Error ? err.message : String(err)})`);
+		return null;
+	}
+	try {
+		if (existsSync(join(CONTEXT_TREE_DIR, ".git"))) {
+			if (execFileSync("git", [
+				"rev-parse",
+				"--abbrev-ref",
+				"HEAD"
+			], {
+				cwd: CONTEXT_TREE_DIR,
+				encoding: "utf-8",
+				timeout: 5e3
+			}).trim() !== branch) {
+				execFileSync("git", ["checkout", branch], {
+					cwd: CONTEXT_TREE_DIR,
+					stdio: "pipe",
+					timeout: 1e4
+				});
+				log(`Context Tree switched to branch ${branch}`);
+			}
+			execFileSync("git", ["pull", "--ff-only"], {
+				cwd: CONTEXT_TREE_DIR,
+				stdio: "pipe",
+				timeout: 3e4
+			});
+			log(`Context Tree updated (pull)`);
+		} else {
+			mkdirSync(CONTEXT_TREE_DIR, { recursive: true });
+			execFileSync("git", [
+				"clone",
+				"--branch",
+				branch,
+				"--single-branch",
+				repo,
+				CONTEXT_TREE_DIR
+			], {
+				stdio: "pipe",
+				timeout: 6e4
+			});
+			log(`Context Tree cloned from ${repo} (branch: ${branch})`);
+		}
+		return {
+			path: CONTEXT_TREE_DIR,
+			repoUrl: repo,
+			branch
+		};
+	} catch (err) {
+		const msg = err instanceof Error ? err.message : String(err);
+		log(`Context Tree sync failed: ${msg}`);
+		log("Check that git credentials (SSH key or credential helper) are configured for this repo");
+		if ((msg.includes("cannot fast-forward") || msg.includes("not possible to fast-forward") || msg.includes("CONFLICT")) && existsSync(join(CONTEXT_TREE_DIR, ".git"))) {
+			log("Diverged history detected, attempting fresh clone...");
+			try {
+				rmSync(CONTEXT_TREE_DIR, {
+					recursive: true,
+					force: true
+				});
+				mkdirSync(CONTEXT_TREE_DIR, { recursive: true });
+				execFileSync("git", [
+					"clone",
+					"--branch",
+					branch,
+					"--single-branch",
+					repo,
+					CONTEXT_TREE_DIR
+				], {
+					stdio: "pipe",
+					timeout: 6e4
+				});
+				log("Context Tree re-cloned successfully");
+				return {
+					path: CONTEXT_TREE_DIR,
+					repoUrl: repo,
+					branch
+				};
+			} catch {
+				log("Context Tree re-clone also failed, continuing without context");
+			}
+		}
+		if (existsSync(join(CONTEXT_TREE_DIR, ".git"))) {
+			log("Using existing Context Tree clone despite sync failure");
+			return {
+				path: CONTEXT_TREE_DIR,
+				repoUrl: repo,
+				branch
+			};
+		}
+		return null;
+	}
+}
 /**
 * Marker file written into every workspace so the Codex CLI's project-root
 * detection (configured via `project_root_markers: ["first-tree-workspace"]`)
@@ -2948,8 +2976,6 @@ function installFirstTreeIntegration(options) {
 	const integrateArgs = [
 		"tree",
 		"integrate",
-		"--source-path",
-		workspacePath,
 		"--tree-path",
 		contextTreePath,
 		"--mode",
@@ -2984,8 +3010,13 @@ function installFirstTreeIntegration(options) {
 		} catch (err) {
 			const msg = err instanceof Error ? err.message : String(err);
 			const binaryMissing = /ENOENT|not found|command not found/i.test(msg);
+			const unsupportedByThisCli = /unknown (?:option|command|argument)|unrecognized option/i.test(msg);
+			const shouldRetry = binaryMissing || unsupportedByThisCli;
 			const isLastAttempt = index === attempts.length - 1;
-			if (binaryMissing && !isLastAttempt) continue;
+			if (shouldRetry && !isLastAttempt) {
+				log(`First-tree integration via ${attempt.label} unusable; falling back: ${msg.slice(0, 200)}`);
+				continue;
+			}
 			log(`First-tree integration skipped (${attempt.label}): ${msg.slice(0, 200)}`);
 			return false;
 		}
@@ -4608,6 +4639,8 @@ const createClaudeCodeHandler = (config) => {
 		}
 	}
 	const contextTreePath = config.contextTreePath ?? null;
+	const contextTreeRepoUrl = config.contextTreeRepoUrl ?? null;
+	const agentName = config.agentName ?? null;
 	/**
 	* Materialise the runtime config's `gitRepos` into worktrees under `cwd`.
 	* Idempotent across resumes: reuses an existing Hub-managed worktree if
@@ -4675,7 +4708,8 @@ const createClaudeCodeHandler = (config) => {
 		if (contextTreePath) installFirstTreeIntegration({
 			workspacePath: workspace,
 			contextTreePath,
-			workspaceId: sessionCtx.chatId,
+			workspaceId: agentName ?? sessionCtx.chatId,
+			treeRepoUrl: contextTreeRepoUrl ?? void 0,
 			log: (msg) => sessionCtx.log(msg)
 		});
 	}
@@ -4864,6 +4898,8 @@ const createCodexHandler = (config) => {
 	const agentConfigCache = config.agentConfigCache ?? null;
 	const gitMirrorManager = config.gitMirrorManager ?? null;
 	const contextTreePath = config.contextTreePath ?? null;
+	const contextTreeRepoUrl = config.contextTreeRepoUrl ?? null;
+	const agentName = config.agentName ?? null;
 	let cwd = null;
 	let codex = null;
 	let thread = null;
@@ -5135,6 +5171,17 @@ const createCodexHandler = (config) => {
 		if (inputs.length === 0) return;
 		await runTurn(inputs.join("\n\n"), sessionCtx);
 	}
+	/** Install the first-tree skill + binding block; no-op when context tree is unconfigured. */
+	function ensureFirstTreeBinding(workspace, sessionCtx) {
+		if (!contextTreePath) return;
+		installFirstTreeIntegration({
+			workspacePath: workspace,
+			contextTreePath,
+			workspaceId: agentName ?? sessionCtx.chatId,
+			treeRepoUrl: contextTreeRepoUrl ?? void 0,
+			log: (msg) => sessionCtx.log(msg)
+		});
+	}
 	return {
 		async start(message, sessionCtx) {
 			ctx = sessionCtx;
@@ -5160,6 +5207,7 @@ const createCodexHandler = (config) => {
 					content: buildAgentBriefing(payload)
 				}
 			});
+			ensureFirstTreeBinding(cwd, sessionCtx);
 			await prepareGitWorktrees(payload, cwd, sessionCtx.chatId);
 			codex = new Codex({
 				env: buildEnv(sessionCtx),
@@ -5184,17 +5232,20 @@ const createCodexHandler = (config) => {
 				env: [],
 				gitRepos: []
 			};
-			bootstrapWorkspace({
-				workspacePath: cwd,
-				identity: sessionCtx.agent,
-				contextTreePath,
-				serverUrl: sessionCtx.sdk.serverUrl,
-				chatId: sessionCtx.chatId,
-				briefing: {
-					format: "agents-md",
-					content: buildAgentBriefing(payload)
-				}
-			});
+			if (!existsSync(join(cwd, ".agent", "identity.json"))) {
+				bootstrapWorkspace({
+					workspacePath: cwd,
+					identity: sessionCtx.agent,
+					contextTreePath,
+					serverUrl: sessionCtx.sdk.serverUrl,
+					chatId: sessionCtx.chatId,
+					briefing: {
+						format: "agents-md",
+						content: buildAgentBriefing(payload)
+					}
+				});
+				ensureFirstTreeBinding(cwd, sessionCtx);
+			}
 			await prepareGitWorktrees(payload, cwd, sessionCtx.chatId);
 			codex = new Codex({
 				env: buildEnv(sessionCtx),
@@ -6227,7 +6278,7 @@ var AgentSlot = class {
 			lastActivityMs: 0
 		};
 	}
-	async start(contextTreePath) {
+	async start(contextTreeBinding) {
 		const sdk = (await this.clientConnection.bindAgent(this.config.agentId, this.config.runtimeType ?? this.config.type, this.config.runtimeVersion)).sdk;
 		this.sdk = sdk;
 		const agent = await sdk.register();
@@ -6305,7 +6356,9 @@ var AgentSlot = class {
 			handlerFactory: this.config.handlerFactory,
 			handlerConfig: {
 				workspaceRoot: join(DEFAULT_DATA_DIR, "workspaces", this.config.name),
-				contextTreePath: contextTreePath ?? void 0,
+				agentName: this.config.name,
+				contextTreePath: contextTreeBinding?.path,
+				contextTreeRepoUrl: contextTreeBinding?.repoUrl,
 				gitMirrorManager
 			},
 			agentIdentity: {
@@ -7188,6 +7241,14 @@ var ClientRuntime = class {
 	watcher = null;
 	debounceTimer = null;
 	/**
+	* Per-org Context Tree binding resolved at `start()`. Threaded through every
+	* `slot.start()` so handlers can copy `AGENT.md` / root `NODE.md` into the
+	* agent workspace's `.agent/context/` and install the first-tree skill.
+	* `null` when the user has no primary org, the org has no tree configured,
+	* or git sync failed — handlers degrade gracefully (empty context dir).
+	*/
+	contextTreeBinding = null;
+	/**
 	* Directory we write auto-registered agent configs into (same path that
 	* `first-tree-hub agent add` uses). Set by `watchAgentsDir` so the
 	* `agent:pinned` handler knows where to materialise new configs.
@@ -7247,6 +7308,7 @@ var ClientRuntime = class {
 		this.agentIds.add(config.agentId);
 	}
 	async start() {
+		this.contextTreeBinding = await syncContextTree(this.serverUrl, (opts) => ensureFreshAccessToken(opts), (msg) => print.status("[context-tree]", msg), CLI_USER_AGENT);
 		if (this.options.currentVersion && this.options.update) this.updateManager = UpdateManager.attach(this.connection, {
 			currentVersion: this.options.currentVersion,
 			...this.options.update,
@@ -7265,7 +7327,7 @@ var ClientRuntime = class {
 		}
 		await Promise.allSettled(this.agents.map(async (agent) => {
 			try {
-				const identity = await agent.slot.start();
+				const identity = await agent.slot.start(this.contextTreeBinding);
 				print.check(true, `${agent.name}: connected`, `agent: ${identity.displayName ?? identity.agentId}`);
 			} catch (error) {
 				const msg = error instanceof Error ? error.message : String(error);
@@ -7392,7 +7454,7 @@ var ClientRuntime = class {
 	startAgent(name) {
 		const entry = this.agents.find((a) => a.name === name);
 		if (!entry) return;
-		entry.slot.start().then((identity) => {
+		entry.slot.start(this.contextTreeBinding).then((identity) => {
 			print.check(true, `${name}: connected`, `agent: ${identity.displayName ?? identity.agentId}`);
 		}).catch((err) => {
 			const msg = err instanceof Error ? err.message : String(err);
@@ -9029,7 +9091,7 @@ async function onboardCreate(args) {
 	}
 	const runtimeAgent = args.type === "human" ? args.assistant : args.id;
 	if (args.feishuBotAppId && args.feishuBotAppSecret) {
-		const { bindFeishuBot } = await import("./feishu-fLnwqCOs.mjs").then((n) => n.r);
+		const { bindFeishuBot } = await import("./feishu-tkZS0vvL.mjs").then((n) => n.r);
 		const targetAgentUuid = args.type === "human" ? assistantUuid : primary.uuid;
 		if (!targetAgentUuid) print.line(`Warning: Cannot bind Feishu bot — no runtime agent available for "${args.id}".\n`);
 		else {
@@ -10242,7 +10304,7 @@ function createFeedbackHandler(config) {
 	return { handle };
 }
 //#endregion
-//#region ../server/dist/app-CkYiQS_D.mjs
+//#region ../server/dist/app-D4vCx0C0.mjs
 var import_fastify_opentelemetry = /* @__PURE__ */ __toESM(require_fastify_opentelemetry(), 1);
 init_esm();
 var __defProp = Object.defineProperty;
@@ -10267,50 +10329,6 @@ const adapterAgentMappings = pgTable("adapter_agent_mappings", {
 	createdAt: timestamp("created_at", { withTimezone: true }).notNull().defaultNow()
 }, (table) => [unique("uq_adapter_agent_mapping").on(table.platform, table.externalUserId)]);
 /**
-* Tasks — lightweight work units. Process descriptors, not tickets.
-* Immutable status state machine: pending → assigned → working → (completed | failed | cancelled).
-* Sub-tasks (parent_task_id) are deferred to a later phase.
-*
-* Referential integrity (org / assignee / chat) is enforced at the service layer,
-* not via DB foreign keys — see `services/task.ts`.
-*/
-const tasks = pgTable("tasks", {
-	id: text("id").primaryKey(),
-	organizationId: text("organization_id").notNull(),
-	title: text("title").notNull(),
-	body: text("body").notNull().default(""),
-	status: text("status").$type().notNull(),
-	assigneeAgentId: text("assignee_agent_id"),
-	createdByType: text("created_by_type").$type().notNull(),
-	createdById: text("created_by_id").notNull(),
-	originRef: text("origin_ref"),
-	result: text("result"),
-	metadata: jsonb("metadata").$type().notNull().default({}),
-	createdAt: timestamp("created_at", { withTimezone: true }).notNull().defaultNow(),
-	updatedAt: timestamp("updated_at", { withTimezone: true }).notNull().defaultNow(),
-	cancelledAt: timestamp("cancelled_at", { withTimezone: true }),
-	cancelledByType: text("cancelled_by_type").$type(),
-	cancelledById: text("cancelled_by_id")
-}, (table) => [
-	index("idx_tasks_org_status").on(table.organizationId, table.status),
-	index("idx_tasks_assignee_status").on(table.assigneeAgentId, table.status),
-	index("idx_tasks_origin_ref").on(table.originRef),
-	index("idx_tasks_org_created_at").on(table.organizationId, table.createdAt)
-]);
-/**
-* Task ↔ Chat association (M:N). A task may be executed across multiple chats;
-* a chat may host work for multiple tasks over its lifetime.
-*
-* No FK constraints — when a task or chat is deleted, the service layer is
-* responsible for deleting linked rows here first.
-*/
-const taskChats = pgTable("task_chats", {
-	taskId: text("task_id").notNull(),
-	chatId: text("chat_id").notNull(),
-	linkedByAgentId: text("linked_by_agent_id"),
-	linkedAt: timestamp("linked_at", { withTimezone: true }).notNull().defaultNow()
-}, (table) => [primaryKey({ columns: [table.taskId, table.chatId] }), index("idx_task_chats_chat").on(table.chatId)]);
-/**
 * Pull the JWT-verified `UserScope` off the request. The `userAuthHook`
 * middleware populates `request.user` synchronously before any handler
 * runs; this helper just narrows the optional and throws a clean 401 if
@@ -10445,31 +10463,6 @@ async function assertAgentManageableByUser(db, userId, agentUuid) {
 	return scope;
 }
 /**
-* Gate access to a task. Allowed for any active member of the task's org —
-* mirrors the original inline gate in `api/tasks.ts` that this helper
-* replaces. Returns both the task's org row and the caller's resolved
-* `OrgScope`, so handlers can read `scope.memberId` for audit fields.
-*/
-async function requireTaskAccess(request, db) {
-	const { userId } = requireUser(request);
-	const { taskId } = request.params;
-	const [task] = await db.select({ organizationId: tasks.organizationId }).from(tasks).where(eq(tasks.id, taskId)).limit(1);
-	if (!task) throw new NotFoundError(`Task "${taskId}" not found`);
-	const caller = await resolveCallerInOrg(db, userId, task.organizationId);
-	const scope = {
-		userId,
-		organizationId: task.organizationId,
-		memberId: caller.memberId,
-		role: caller.role,
-		humanAgentId: caller.humanAgentId
-	};
-	stampOrgScope(request, scope);
-	return {
-		task,
-		scope
-	};
-}
-/**
 * Assert every agent in `agentIds` is visible to `scope` and lives in
 * `scope.organizationId`. Used by chat-create to keep visibility rules out of
 * the service layer's signature.
@@ -10905,10 +10898,9 @@ async function ensureDefaultOrganization(db) {
 	return org ?? existing;
 }
 /**
-* Names beginning with `__` are reserved for Hub-internal pseudo agents
-* (e.g. the task notifier). User-facing creation must not be able to
-* squat on them, otherwise internal traffic could be routed through a
-* real account.
+* Names beginning with `__` are reserved for Hub-internal pseudo agents.
+* User-facing creation must not be able to squat on them, otherwise
+* internal traffic could be routed through a real account.
 */
 const RESERVED_AGENT_NAME_PREFIX = "__";
 /**
@@ -11007,6 +10999,28 @@ async function resolveAgentClient(db, data) {
 	return client.id;
 }
 /**
+* Validate a `delegateMention` write at the service layer. Two checks:
+*   1. Target uuid must resolve to an existing agent — dangling references
+*      would silently break webhook delegation at runtime.
+*   2. Target must belong to the same organization as the source agent —
+*      cross-org delegate links are rejected here at the source so the
+*      database never accumulates dirty rows. The webhook router has a
+*      defense-in-depth check that filters them at fan-out time, but this
+*      keeps the data clean and gives the admin UI an immediate 422 instead
+*      of a silent runtime drop.
+*
+* `null` clears the field — handled by the caller; we are only invoked when
+* the caller wrote a non-null uuid.
+*/
+async function validateDelegateMentionTarget(db, targetUuid, sourceOrgId) {
+	const [target] = await db.select({
+		uuid: agents.uuid,
+		organizationId: agents.organizationId
+	}).from(agents).where(eq(agents.uuid, targetUuid)).limit(1);
+	if (!target) throw new BadRequestError(`delegateMention target "${targetUuid}" not found`);
+	if (target.organizationId !== sourceOrgId) throw new BadRequestError("delegateMention target must belong to the same organization as the agent");
+}
+/**
 * Pick the first admin member in the org for internal system agents. Throws
 * if the org has no admin — the caller should surface the error so an admin
 * is created before the system tries to register more agents.
@@ -11046,6 +11060,7 @@ async function createAgent(db, data, options = {}) {
 		type: data.type
 	});
 	await ensureClientSupportsRuntimeProvider(db, clientId, runtimeProvider, { force: options.force });
+	if (data.delegateMention) await validateDelegateMentionTarget(db, data.delegateMention, orgId);
 	const [org] = await db.select({ maxAgents: organizations.maxAgents }).from(organizations).where(eq(organizations.id, orgId)).limit(1);
 	if (org && org.maxAgents > 0) {
 		if (((await db.select({ value: count() }).from(agents).where(and(eq(agents.organizationId, orgId), ne(agents.status, AGENT_STATUSES.DELETED))))[0]?.value ?? 0) >= org.maxAgents) throw new ForbiddenError(`Organization "${orgId}" has reached its agent limit (${org.maxAgents}). Upgrade your plan or delete unused agents.`);
@@ -11192,7 +11207,10 @@ async function updateAgent(db, uuid, data) {
 	const updates = { updatedAt: /* @__PURE__ */ new Date() };
 	if (data.type !== void 0) updates.type = data.type;
 	if (data.displayName !== void 0) updates.displayName = data.displayName;
-	if (data.delegateMention !== void 0) updates.delegateMention = data.delegateMention;
+	if (data.delegateMention !== void 0) {
+		if (data.delegateMention !== null) await validateDelegateMentionTarget(db, data.delegateMention, agent.organizationId);
+		updates.delegateMention = data.delegateMention;
+	}
 	if (data.visibility !== void 0) updates.visibility = data.visibility;
 	if (data.metadata !== void 0) updates.metadata = data.metadata;
 	if (data.managerId !== void 0) {
@@ -12092,462 +12110,6 @@ async function agentSendToAgentRoutes(app) {
 		});
 	});
 }
-/** Legal status transitions. Service enforces; API maps violations to 400. */
-const STATUS_TRANSITIONS = {
-	pending: ["assigned", "cancelled"],
-	assigned: ["working", "cancelled"],
-	working: [
-		"completed",
-		"failed",
-		"cancelled"
-	],
-	completed: [],
-	failed: [],
-	cancelled: []
-};
-function isLegalTransition(from, to) {
-	return STATUS_TRANSITIONS[from]?.includes(to) ?? false;
-}
-function isTerminal(status) {
-	return TASK_TERMINAL_STATUSES.includes(status);
-}
-/**
-* Reserved name for the hub-owned task notifier pseudo agent. The `__` prefix
-* is rejected by `createAgent`, so real users cannot squat on this identity.
-*/
-const SYSTEM_TASKS_AGENT_NAME = "__hub_system_tasks";
-/**
-* Ensure a task-notifier pseudo agent exists in the given organization and
-* return its UUID. Used as the sender for task notification messages so they
-* flow through the normal chat/inbox pipeline. Idempotent under concurrent
-* creation via the unique `(organization_id, name)` constraint.
-*/
-async function ensureSystemTasksAgent(db, organizationId) {
-	const [existing] = await db.select({ uuid: agents.uuid }).from(agents).where(and(eq(agents.organizationId, organizationId), eq(agents.name, SYSTEM_TASKS_AGENT_NAME), ne(agents.status, AGENT_STATUSES.DELETED))).limit(1);
-	if (existing) return existing.uuid;
-	const uuid = uuidv7();
-	const inboxId = `inbox_${uuid}`;
-	const [adminMember] = await db.select({ id: members.id }).from(members).where(and(eq(members.organizationId, organizationId), eq(members.role, "admin"))).orderBy(asc(members.createdAt)).limit(1);
-	if (!adminMember) throw new ConflictError(`Cannot create system tasks agent in organization "${organizationId}" — no admin member exists.`);
-	try {
-		const [created] = await db.insert(agents).values({
-			uuid,
-			name: SYSTEM_TASKS_AGENT_NAME,
-			organizationId,
-			type: AGENT_TYPES.AUTONOMOUS_AGENT,
-			displayName: "System · Tasks",
-			inboxId,
-			status: AGENT_STATUSES.ACTIVE,
-			source: AGENT_SOURCES.ADMIN_API,
-			metadata: {
-				system: true,
-				role: "task-notifier"
-			},
-			managerId: adminMember.id
-		}).returning({ uuid: agents.uuid });
-		if (created) return created.uuid;
-	} catch (err) {
-		if ((err?.code ?? err?.cause?.code ?? "") !== "23505") throw err;
-	}
-	const [row] = await db.select({ uuid: agents.uuid }).from(agents).where(and(eq(agents.organizationId, organizationId), eq(agents.name, SYSTEM_TASKS_AGENT_NAME))).limit(1);
-	if (!row) throw new Error("ensureSystemTasksAgent: agent missing after conflict");
-	return row.uuid;
-}
-function resolveCreator(actor) {
-	if (actor.type === "agent") return {
-		type: TASK_CREATOR_TYPES.AGENT,
-		id: actor.agentId
-	};
-	return {
-		type: TASK_CREATOR_TYPES.ADMIN,
-		id: actor.adminId
-	};
-}
-/**
-* Assert the task allows the given agent actor to mutate its chat associations.
-* Only the creator or assignee (for agents) or any admin may do so.
-*/
-function assertCanMutateTaskChats(task, actor) {
-	if (actor.type === "admin") return;
-	const isAssignee = task.assigneeAgentId === actor.agentId;
-	const isCreator = task.createdByType === TASK_CREATOR_TYPES.AGENT && task.createdById === actor.agentId;
-	if (!isAssignee && !isCreator) throw new ForbiddenError("Only the task creator or assignee may modify its chat associations");
-}
-async function loadAssigneeOrThrow(db, assigneeAgentId, expectedOrgId) {
-	const [assignee] = await db.select({
-		uuid: agents.uuid,
-		organizationId: agents.organizationId,
-		status: agents.status
-	}).from(agents).where(eq(agents.uuid, assigneeAgentId)).limit(1);
-	if (!assignee || assignee.status === AGENT_STATUSES.DELETED) throw new BadRequestError(`Assignee agent "${assigneeAgentId}" not found`);
-	if (assignee.organizationId !== expectedOrgId) throw new BadRequestError("Assignee agent belongs to a different organization");
-	if (assignee.status === AGENT_STATUSES.SUSPENDED) throw new BadRequestError(`Assignee agent "${assigneeAgentId}" is suspended`);
-	return assignee;
-}
-/**
-* Create a task.
-*
-* Initial status is determined by assignee:
-*   - no assignee → "pending"
-*   - assignee is an agent and equals the creator → "working" (work-first; no notification)
-*   - assignee set and differs from creator → "assigned" (task-first; notification dispatched)
-*
-* Task-first notifications go through the regular message+inbox pipeline via a per-org
-* task-notifier pseudo agent. The caller is responsible for triggering notifier fan-out
-* using the returned notification recipients.
-*/
-async function createTask(db, actor, input) {
-	const [org] = await db.select({ id: organizations.id }).from(organizations).where(eq(organizations.id, input.organizationId)).limit(1);
-	if (!org) throw new NotFoundError(`Organization "${input.organizationId}" not found`);
-	if (input.assigneeAgentId) await loadAssigneeOrThrow(db, input.assigneeAgentId, input.organizationId);
-	if (actor.type === "agent" && actor.organizationId !== input.organizationId) throw new ForbiddenError("Cannot create tasks in a different organization");
-	const creator = resolveCreator(actor);
-	const selfAssigned = input.assigneeAgentId !== void 0 && actor.type === "agent" && input.assigneeAgentId === actor.agentId;
-	let initialStatus;
-	if (!input.assigneeAgentId) initialStatus = TASK_STATUSES.PENDING;
-	else if (selfAssigned) initialStatus = TASK_STATUSES.WORKING;
-	else initialStatus = TASK_STATUSES.ASSIGNED;
-	const taskId = uuidv7();
-	const [task] = await db.insert(tasks).values({
-		id: taskId,
-		organizationId: input.organizationId,
-		title: input.title,
-		body: input.body ?? "",
-		status: initialStatus,
-		assigneeAgentId: input.assigneeAgentId ?? null,
-		createdByType: creator.type,
-		createdById: creator.id,
-		originRef: input.originRef ?? null,
-		metadata: input.metadata ?? {}
-	}).returning();
-	if (!task) throw new Error("Unexpected: INSERT RETURNING produced no row");
-	let notification;
-	if (initialStatus === TASK_STATUSES.ASSIGNED && task.assigneeAgentId) notification = await dispatchTaskSystemMessage(db, task, "assigned");
-	return {
-		task,
-		notification
-	};
-}
-/** Compose and send a system message describing a task state change to the assignee's chat. */
-async function dispatchTaskSystemMessage(db, task, event, fromStatus) {
-	if (!task.assigneeAgentId) return void 0;
-	const systemAgentId = await ensureSystemTasksAgent(db, task.organizationId);
-	if (systemAgentId === task.assigneeAgentId) return void 0;
-	const chat = await findOrCreateDirectChat(db, systemAgentId, task.assigneeAgentId);
-	const content = {
-		taskId: task.id,
-		event,
-		title: task.title,
-		body: task.body,
-		status: task.status,
-		...fromStatus ? { fromStatus } : {},
-		originRef: task.originRef
-	};
-	return sendMessage(db, chat.id, systemAgentId, {
-		format: "task",
-		content,
-		metadata: {
-			taskId: task.id,
-			event,
-			mentions: [task.assigneeAgentId]
-		}
-	});
-}
-/**
-* Fetch a task, optionally asserting it belongs to `expectedOrgId`. Cross-org
-* access is reported as NotFound so we don't leak existence across tenants.
-*/
-async function getTask(db, taskId, expectedOrgId) {
-	const [task] = await db.select().from(tasks).where(eq(tasks.id, taskId)).limit(1);
-	if (!task) throw new NotFoundError(`Task "${taskId}" not found`);
-	if (expectedOrgId !== void 0 && task.organizationId !== expectedOrgId) throw new NotFoundError(`Task "${taskId}" not found`);
-	return task;
-}
-async function getTaskDetail(db, taskId, expectedOrgId) {
-	const task = await getTask(db, taskId, expectedOrgId);
-	const links = await db.select().from(taskChats).where(eq(taskChats.taskId, taskId));
-	return {
-		...task,
-		chats: links.map((c) => ({
-			taskId: c.taskId,
-			chatId: c.chatId,
-			linkedByAgentId: c.linkedByAgentId,
-			linkedAt: c.linkedAt.toISOString()
-		}))
-	};
-}
-async function listTasks(db, organizationId, query) {
-	const conditions = [eq(tasks.organizationId, organizationId)];
-	if (query.status) conditions.push(eq(tasks.status, query.status));
-	if (query.assigneeAgentId) conditions.push(eq(tasks.assigneeAgentId, query.assigneeAgentId));
-	if (query.originRef) conditions.push(eq(tasks.originRef, query.originRef));
-	if (query.cursor) conditions.push(lt(tasks.createdAt, new Date(query.cursor)));
-	const rows = await db.select().from(tasks).where(and(...conditions)).orderBy(desc(tasks.createdAt)).limit(query.limit + 1);
-	const hasMore = rows.length > query.limit;
-	const items = hasMore ? rows.slice(0, query.limit) : rows;
-	const last = items[items.length - 1];
-	return {
-		items,
-		nextCursor: hasMore && last ? last.createdAt.toISOString() : null
-	};
-}
-/** Agent self-report: working / completed / failed. */
-async function updateTaskStatus(db, taskId, actor, data) {
-	const existing = await getTask(db, taskId);
-	if (actor.type !== "agent") throw new ForbiddenError("updateTaskStatus is for agent self-report; use adminUpdateTask for admin actions");
-	if (existing.assigneeAgentId !== actor.agentId) throw new ForbiddenError("Only the assignee may update this task");
-	const from = existing.status;
-	const to = data.status;
-	if (!isLegalTransition(from, to)) throw new BadRequestError(`Illegal status transition: ${from} → ${to}`);
-	if (to === TASK_STATUSES.COMPLETED && data.result === void 0) throw new BadRequestError("Completion requires a result (may be an empty string)");
-	const updates = {
-		status: to,
-		updatedAt: /* @__PURE__ */ new Date()
-	};
-	if (data.result !== void 0) updates.result = data.result;
-	const [updated] = await db.update(tasks).set(updates).where(eq(tasks.id, taskId)).returning();
-	if (!updated) throw new Error("Unexpected: UPDATE RETURNING produced no row");
-	return { task: updated };
-}
-/** Admin-facing update: may re-assign while pending, or force a status transition (still gated by state machine). */
-async function adminUpdateTask(db, taskId, actor, data) {
-	if (actor.type !== "admin") throw new ForbiddenError("adminUpdateTask requires admin actor");
-	const existing = await getTask(db, taskId);
-	if (data.status === TASK_STATUSES.CANCELLED) {
-		if (isTerminal(existing.status)) throw new ConflictError(`Task is already in terminal state "${existing.status}"`);
-		return cancelTask(db, taskId, actor);
-	}
-	const updates = { updatedAt: /* @__PURE__ */ new Date() };
-	let notify = false;
-	if (data.assigneeAgentId !== void 0) {
-		if (existing.status !== TASK_STATUSES.PENDING && data.assigneeAgentId !== existing.assigneeAgentId) throw new BadRequestError("Cannot reassign a task that is not pending");
-		if (data.assigneeAgentId !== null) {
-			await loadAssigneeOrThrow(db, data.assigneeAgentId, existing.organizationId);
-			updates.assigneeAgentId = data.assigneeAgentId;
-			updates.status = TASK_STATUSES.ASSIGNED;
-			notify = true;
-		} else {
-			updates.assigneeAgentId = null;
-			updates.status = TASK_STATUSES.PENDING;
-		}
-	}
-	if (data.status !== void 0 && data.status !== existing.status) {
-		const from = updates.status ?? existing.status;
-		if (!isLegalTransition(from, data.status)) throw new BadRequestError(`Illegal status transition: ${from} → ${data.status}`);
-		updates.status = data.status;
-	}
-	if (data.result !== void 0) updates.result = data.result;
-	const resolvedStatus = updates.status ?? existing.status;
-	const resolvedAssignee = updates.assigneeAgentId === void 0 ? existing.assigneeAgentId : updates.assigneeAgentId;
-	if (resolvedStatus === TASK_STATUSES.ASSIGNED && !resolvedAssignee) throw new BadRequestError("Cannot set status to \"assigned\" without an assignee");
-	const [updated] = await db.update(tasks).set(updates).where(eq(tasks.id, taskId)).returning();
-	if (!updated) throw new Error("Unexpected: UPDATE RETURNING produced no row");
-	let notification;
-	if (notify && updated.assigneeAgentId) notification = await dispatchTaskSystemMessage(db, updated, "assigned");
-	return {
-		task: updated,
-		notification
-	};
-}
-async function cancelTask(db, taskId, actor) {
-	const existing = await getTask(db, taskId);
-	if (isTerminal(existing.status)) throw new ConflictError(`Task is already in terminal state "${existing.status}"`);
-	if (actor.type === "agent") {
-		const isAssignee = existing.assigneeAgentId === actor.agentId;
-		const isCreator = existing.createdByType === TASK_CREATOR_TYPES.AGENT && existing.createdById === actor.agentId;
-		if (!isAssignee && !isCreator) throw new ForbiddenError("Only the assignee or creator may cancel this task");
-	}
-	const now = /* @__PURE__ */ new Date();
-	const { type: cancelType, id: cancelId } = resolveCreator(actor);
-	const [updated] = await db.update(tasks).set({
-		status: TASK_STATUSES.CANCELLED,
-		cancelledAt: now,
-		cancelledByType: cancelType,
-		cancelledById: cancelId,
-		updatedAt: now
-	}).where(eq(tasks.id, taskId)).returning();
-	if (!updated) throw new Error("Unexpected: UPDATE RETURNING produced no row");
-	let notification;
-	if (updated.assigneeAgentId && !(actor.type === "agent" && actor.agentId === updated.assigneeAgentId)) notification = await dispatchTaskSystemMessage(db, updated, "cancelled", existing.status);
-	return {
-		task: updated,
-		notification
-	};
-}
-async function linkChatToTask(db, taskId, chatId, actor) {
-	const task = await getTask(db, taskId);
-	if (actor.type === "agent" && task.organizationId !== actor.organizationId) throw new NotFoundError(`Task "${taskId}" not found`);
-	assertCanMutateTaskChats(task, actor);
-	const [chat] = await db.select({ organizationId: chats.organizationId }).from(chats).where(eq(chats.id, chatId)).limit(1);
-	if (!chat) throw new NotFoundError(`Chat "${chatId}" not found`);
-	if (chat.organizationId !== task.organizationId) throw new BadRequestError("Chat belongs to a different organization");
-	if (actor.type === "agent") await assertParticipant(db, chatId, actor.agentId);
-	const linkedBy = actor.type === "agent" ? actor.agentId : null;
-	await db.insert(taskChats).values({
-		taskId,
-		chatId,
-		linkedByAgentId: linkedBy
-	}).onConflictDoNothing();
-}
-async function unlinkChatFromTask(db, taskId, chatId, actor) {
-	const task = await getTask(db, taskId);
-	if (actor.type === "agent" && task.organizationId !== actor.organizationId) throw new NotFoundError(`Task "${taskId}" not found`);
-	assertCanMutateTaskChats(task, actor);
-	if ((await db.delete(taskChats).where(and(eq(taskChats.taskId, taskId), eq(taskChats.chatId, chatId))).returning({ chatId: taskChats.chatId })).length === 0) throw new NotFoundError(`Chat "${chatId}" is not linked to task "${taskId}"`);
-}
-/**
-* Derive a health signal for a task. Only meaningful for `working` tasks.
-* See hub-task-design Section 9 for the rules this implements.
-*
-* Algorithm (per linked chat for the assignee):
-*   1. No session row OR state != 'active' → idle_island candidate
-*   2. Session active, last message from assignee → awaiting_reply candidate
-*   3. Session active, last message from other → normal candidate
-* Across all linked chats, normal wins over awaiting_reply, which wins over idle_island.
-*/
-async function getTaskHealth(db, taskId, expectedOrgId) {
-	const task = await getTask(db, taskId, expectedOrgId);
-	if (task.status !== TASK_STATUSES.WORKING) return {
-		taskId,
-		signal: TASK_HEALTH_SIGNALS.NOT_APPLICABLE,
-		reason: `Task status is "${task.status}" — health is only computed for working tasks`
-	};
-	if (!task.assigneeAgentId) return {
-		taskId,
-		signal: TASK_HEALTH_SIGNALS.NO_CHAT,
-		reason: "Task has no assignee"
-	};
-	const linked = await db.select({
-		chatId: taskChats.chatId,
-		sessionState: agentChatSessions.state
-	}).from(taskChats).leftJoin(agentChatSessions, and(eq(agentChatSessions.chatId, taskChats.chatId), eq(agentChatSessions.agentId, task.assigneeAgentId))).where(eq(taskChats.taskId, taskId));
-	if (linked.length === 0) return {
-		taskId,
-		signal: TASK_HEALTH_SIGNALS.NO_CHAT,
-		reason: "Task has no linked chats"
-	};
-	const chatSignals = [];
-	for (const row of linked) {
-		if (row.sessionState !== "active") {
-			chatSignals.push(TASK_HEALTH_SIGNALS.IDLE_ISLAND);
-			continue;
-		}
-		const [last] = await db.select({ senderId: messages.senderId }).from(messages).where(eq(messages.chatId, row.chatId)).orderBy(desc(messages.createdAt)).limit(1);
-		if (!last) {
-			chatSignals.push(TASK_HEALTH_SIGNALS.IDLE_ISLAND);
-			continue;
-		}
-		if (last.senderId === task.assigneeAgentId) chatSignals.push(TASK_HEALTH_SIGNALS.AWAITING_REPLY);
-		else chatSignals.push(TASK_HEALTH_SIGNALS.NORMAL);
-	}
-	if (chatSignals.includes(TASK_HEALTH_SIGNALS.NORMAL)) return {
-		taskId,
-		signal: TASK_HEALTH_SIGNALS.NORMAL,
-		reason: "At least one linked chat is actively progressing"
-	};
-	if (chatSignals.includes(TASK_HEALTH_SIGNALS.AWAITING_REPLY)) return {
-		taskId,
-		signal: TASK_HEALTH_SIGNALS.AWAITING_REPLY,
-		reason: "Assignee sent the last message and is waiting for a reply"
-	};
-	return {
-		taskId,
-		signal: TASK_HEALTH_SIGNALS.IDLE_ISLAND,
-		reason: "No active session found for the assignee in any linked chat"
-	};
-}
-/** Serialize a task row for API output. */
-function serializeTask(task) {
-	return {
-		...task,
-		createdAt: task.createdAt.toISOString(),
-		updatedAt: task.updatedAt.toISOString(),
-		cancelledAt: task.cancelledAt ? task.cancelledAt.toISOString() : null
-	};
-}
-function dispatch$2(notifier, result) {
-	if (!result) return;
-	notifyRecipients(notifier, result.recipients, result.message.id);
-}
-async function agentTaskRoutes(app) {
-	/** Create a task. Agent creator; assignee defaults to self (work-first) if omitted. */
-	app.post("/", async (request, reply) => {
-		const identity = requireAgent(request);
-		const body = createTaskSchema.parse(request.body);
-		const { task, notification } = await createTask(app.db, {
-			type: "agent",
-			agentId: identity.uuid,
-			organizationId: identity.organizationId
-		}, {
-			...body,
-			organizationId: identity.organizationId
-		});
-		dispatch$2(app.notifier, notification);
-		return reply.status(201).send(serializeTask(task));
-	});
-	app.get("/", async (request) => {
-		const identity = requireAgent(request);
-		const query = taskListQuerySchema.parse(request.query);
-		const result = await listTasks(app.db, identity.organizationId, query);
-		return {
-			items: result.items.map((t) => serializeTask(t)),
-			nextCursor: result.nextCursor
-		};
-	});
-	app.get("/:taskId", async (request) => {
-		const identity = requireAgent(request);
-		const detail = await getTaskDetail(app.db, request.params.taskId, identity.organizationId);
-		return {
-			...serializeTask(detail),
-			chats: detail.chats
-		};
-	});
-	/** Agent self-report: working / completed / failed. */
-	app.patch("/:taskId", async (request) => {
-		const identity = requireAgent(request);
-		const body = updateTaskStatusSchema.parse(request.body);
-		const { task } = await updateTaskStatus(app.db, request.params.taskId, {
-			type: "agent",
-			agentId: identity.uuid,
-			organizationId: identity.organizationId
-		}, body);
-		return serializeTask(task);
-	});
-	app.post("/:taskId/cancel", async (request) => {
-		const identity = requireAgent(request);
-		const { task, notification } = await cancelTask(app.db, request.params.taskId, {
-			type: "agent",
-			agentId: identity.uuid,
-			organizationId: identity.organizationId
-		});
-		dispatch$2(app.notifier, notification);
-		return serializeTask(task);
-	});
-	app.post("/:taskId/chats", async (request, reply) => {
-		const identity = requireAgent(request);
-		const body = linkTaskChatSchema.parse(request.body);
-		await linkChatToTask(app.db, request.params.taskId, body.chatId, {
-			type: "agent",
-			agentId: identity.uuid,
-			organizationId: identity.organizationId
-		});
-		return reply.status(204).send();
-	});
-	app.delete("/:taskId/chats/:chatId", async (request, reply) => {
-		const identity = requireAgent(request);
-		await unlinkChatFromTask(app.db, request.params.taskId, request.params.chatId, {
-			type: "agent",
-			agentId: identity.uuid,
-			organizationId: identity.organizationId
-		});
-		return reply.status(204).send();
-	});
-	/** Task health signal — only meaningful while task.status === "working". */
-	app.get("/:taskId/health", async (request) => {
-		const identity = requireAgent(request);
-		return getTaskHealth(app.db, request.params.taskId, identity.organizationId);
-	});
-}
 /** WS close code: agent already connected from another client. */
 const WS_CLOSE_ALREADY_CONNECTED = 4009;
 /** Track active WS connections per agentId. At most one entry per agent. */
@@ -13779,7 +13341,7 @@ async function agentRoutes(app) {
 	});
 	app.post("/:uuid/test", async (request, reply) => {
 		const { uuid } = request.params;
-		await requireAgentAccess(request, app.db, "manage");
+		const { agent: targetAgent } = await requireAgentAccess(request, app.db, "manage");
 		const presence = await getPresence(app.db, uuid);
 		const wsConnected = hasActiveConnection(uuid);
 		const clientId = getAgentClientId(uuid) ?? presence?.clientId ?? null;
@@ -13816,15 +13378,15 @@ async function agentRoutes(app) {
 			message: "Agent connection is stale — heartbeat lost. The client process may have crashed.",
 			connection
 		});
-		const [owner] = await app.db.select({ uuid: agents.uuid }).from(agents).where(and(eq(agents.delegateMention, uuid), eq(agents.status, "active"))).limit(1);
+		const [owner] = await app.db.select({ uuid: agents.uuid }).from(agents).where(and(eq(agents.delegateMention, uuid), eq(agents.status, "active"), eq(agents.organizationId, targetAgent.organizationId))).limit(1);
 		let senderId = owner?.uuid ?? null;
 		if (!senderId) {
-			const [other] = await app.db.select({ uuid: agents.uuid }).from(agents).where(and(ne(agents.uuid, uuid), eq(agents.status, "active"))).limit(1);
+			const [other] = await app.db.select({ uuid: agents.uuid }).from(agents).where(and(ne(agents.uuid, uuid), eq(agents.status, "active"), eq(agents.organizationId, targetAgent.organizationId))).limit(1);
 			senderId = other?.uuid ?? null;
 		}
 		if (!senderId) return reply.status(200).send({
 			status: "error",
-			message: "No suitable sender found. Need at least one other active agent.",
+			message: "No suitable sender found. Need at least one other active agent in the same organization.",
 			connection
 		});
 		const chat = await findOrCreateDirectChat(app.db, senderId, uuid);
@@ -15017,7 +14579,7 @@ function decodeCursor(cursor) {
 *   - Cursor narrows the result to rows STRICTLY before `(cursor.ts, cursor.id)`.
 *   - Followed by a small participant-list lookup for the page only.
 */
-async function listMeChats(db, humanAgentId, query) {
+async function listMeChats(db, humanAgentId, organizationId, query) {
 	const limit = query.limit;
 	const cursor = query.cursor ? decodeCursor(query.cursor) : null;
 	if (query.cursor && !cursor) throw new BadRequestError("Invalid cursor");
@@ -15058,6 +14620,11 @@ async function listMeChats(db, humanAgentId, query) {
       FROM chats c
       JOIN deduped d ON d.chat_id = c.id
      WHERE c.parent_chat_id IS NULL
+       /* Scope to the caller's org. Without this, cross-org dirty chats
+          whose chat_participants still reference the caller's human agent
+          (historical pollution — see fix/cross-org-direct-chat-pollution)
+          would leak into the list and 404 on click via requireChatAccess. */
+       AND c.organization_id = ${organizationId}
        /* Filter: unread / watching */
        AND (${!filterUnreadOnly}::bool OR d.unread_mention_count > 0)
        AND (${!filterWatchingOnly}::bool OR d.membership_kind = 'watching')
@@ -15118,9 +14685,7 @@ async function listMeChats(db, humanAgentId, query) {
 				lastMessageAt: toDate(r.last_message_at)?.toISOString() ?? null,
 				lastMessagePreview: r.last_message_preview,
 				unreadMentionCount: r.unread_mention_count,
-				canReply: r.membership_kind === "participant",
-				taskId: null,
-				taskStatus: null
+				canReply: r.membership_kind === "participant"
 			};
 		}),
 		nextCursor
@@ -16077,17 +15642,17 @@ function isGithubHttpsRepo(repoUrl) {
 }
 function contextStatus(warning) {
 	if (warning?.stale) return {
-		label: "Team context is stale",
+		label: "Context Tree may be stale",
 		detail: warning.detail,
 		severity: "warning"
 	};
 	if (warning) return {
-		label: "Team context needs attention",
+		label: "Context Tree needs attention",
 		detail: warning.detail,
 		severity: "warning"
 	};
 	return {
-		label: "Team context is current",
+		label: "Context Tree is up to date",
 		detail: "Agents have a synced team context snapshot available.",
 		severity: "ok"
 	};
@@ -16838,7 +16403,7 @@ async function healthzRoutes(app) {
 * `api/orgs/invitations.ts` (Class B, admin-gated).
 */
 async function publicInvitationRoutes(app) {
-	const { previewInvitation } = await import("./invitation-C299fxkP-B89eqDos.mjs");
+	const { previewInvitation } = await import("./invitation-C299fxkP-CZRV665C.mjs");
 	app.get("/:token/preview", async (request, reply) => {
 		if (!request.params.token) throw new UnauthorizedError("Token required");
 		const preview = await previewInvitation(app.db, request.params.token);
@@ -17018,7 +16583,7 @@ async function meRoutes(app) {
 	*/
 	app.get("/me/pinned-agents", async (request) => {
 		const { userId } = requireUser(request);
-		const { listMyPinnedAgents } = await import("./client-WubcgX-W-B2bOvgJ1.mjs");
+		const { listMyPinnedAgents } = await import("./client-0RrgrMjR-CylTJGEb.mjs");
 		return listMyPinnedAgents(app.db, { userId });
 	});
 	/**
@@ -17451,7 +17016,7 @@ async function orgChatRoutes(app) {
 		}
 		if (view === "grouped") return listChatsForMember(app.db, scope.memberId, scope.humanAgentId);
 		const query = listMeChatsQuerySchema.parse(request.query);
-		return listMeChats(app.db, scope.humanAgentId, query);
+		return listMeChats(app.db, scope.humanAgentId, scope.organizationId, query);
 	});
 	/**
 	* POST /orgs/:orgId/chats — create a new chat. The :orgId path param
@@ -17831,39 +17396,6 @@ function enrichOutput(namespace, out, orgId, publicUrl) {
 	}
 	return out;
 }
-function dispatch$1(notifier, result) {
-	if (!result) return;
-	notifyRecipients(notifier, result.recipients, result.message.id);
-}
-/** Class B — `/api/v1/orgs/:orgId/tasks`. Per-task ops live in api/tasks.ts. */
-async function orgTaskRoutes(app) {
-	app.get("/", async (request) => {
-		const scope = await requireOrgMembership(request, app.db);
-		const query = taskListQuerySchema.parse(request.query);
-		const result = await listTasks(app.db, scope.organizationId, query);
-		return {
-			items: result.items.map((t) => serializeTask(t)),
-			nextCursor: result.nextCursor
-		};
-	});
-	app.post("/", async (request, reply) => {
-		const scope = await requireOrgMembership(request, app.db);
-		const body = adminCreateTaskSchema.parse(request.body);
-		const { task, notification } = await createTask(app.db, {
-			type: "admin",
-			adminId: scope.memberId
-		}, {
-			title: body.title,
-			body: body.body,
-			...body.assigneeAgentId !== void 0 ? { assigneeAgentId: body.assigneeAgentId } : {},
-			...body.originRef !== void 0 ? { originRef: body.originRef } : {},
-			...body.metadata !== void 0 ? { metadata: body.metadata } : {},
-			organizationId: scope.organizationId
-		});
-		dispatch$1(app.notifier, notification);
-		return reply.status(201).send(serializeTask(task));
-	});
-}
 async function loadVisibleAgentIds(db, organizationId, memberId) {
 	const rows = await db.select({ id: agents.uuid }).from(agents).where(and(eq(agents.organizationId, organizationId), ne(agents.status, AGENT_STATUSES.DELETED), or(eq(agents.visibility, AGENT_VISIBILITY.ORGANIZATION), eq(agents.managerId, memberId))));
 	return new Set(rows.map((r) => r.id));
@@ -18084,44 +17616,6 @@ async function sessionRoutes(app) {
 		});
 	});
 }
-function dispatch(notifier, result) {
-	if (!result) return;
-	notifyRecipients(notifier, result.recipients, result.message.id);
-}
-/** Class C — `/api/v1/tasks/:taskId`. The task's `organizationId` locates the org. */
-async function taskRoutes(app) {
-	app.get("/:taskId", async (request) => {
-		await requireTaskAccess(request, app.db);
-		const detail = await getTaskDetail(app.db, request.params.taskId);
-		return {
-			...serializeTask(detail),
-			chats: detail.chats
-		};
-	});
-	app.patch("/:taskId", async (request) => {
-		const { scope } = await requireTaskAccess(request, app.db);
-		const body = adminUpdateTaskSchema.parse(request.body);
-		const { task, notification } = await adminUpdateTask(app.db, request.params.taskId, {
-			type: "admin",
-			adminId: scope.memberId
-		}, body);
-		dispatch(app.notifier, notification);
-		return serializeTask(task);
-	});
-	app.post("/:taskId/cancel", async (request) => {
-		const { scope } = await requireTaskAccess(request, app.db);
-		const { task, notification } = await cancelTask(app.db, request.params.taskId, {
-			type: "admin",
-			adminId: scope.memberId
-		});
-		dispatch(app.notifier, notification);
-		return serializeTask(task);
-	});
-	app.get("/:taskId/health", async (request) => {
-		await requireTaskAccess(request, app.db);
-		return getTaskHealth(app.db, request.params.taskId);
-	});
-}
 const log$1 = createLogger$1("GithubWebhook");
 const GITHUB_ADAPTER_ID = "github-adapter";
 function verifySignature(secret, rawBody, signatureHeader) {
@@ -18187,6 +17681,31 @@ function extractMentions$1(text) {
 	}
 	return [...names];
 }
+/** Extract mentions from structural payload fields (not free-form text).
+* GitHub's `pull_request.review_requested` puts the targeted reviewer in
+* `requested_reviewer.login`, not in any text body — `extractMentions` would
+* miss it. Team requests use `requested_team` instead, which we deliberately
+* skip to stay consistent with `extractMentions` ignoring `@org/team`. */
+function extractStructuralMentions(eventType, payload) {
+	if (!isRecord(payload)) return [];
+	if (eventType !== "pull_request") return [];
+	if (payload.action !== "review_requested") return [];
+	const reviewer = isRecord(payload.requested_reviewer) ? payload.requested_reviewer : null;
+	const login = typeof reviewer?.login === "string" ? reviewer.login : null;
+	return login ? [login.toLowerCase()] : [];
+}
+const DELEGATE_VERDICT_MESSAGES = {
+	ok: "delegate_mention target eligible",
+	not_found: "delegate_mention target not found, skipping",
+	cross_org: "delegate_mention target belongs to another org, skipping",
+	inactive: "delegate_mention target not active, skipping"
+};
+function evaluateDelegateTarget(target, sourceOrgId) {
+	if (!target) return "not_found";
+	if (target.organizationId !== sourceOrgId) return "cross_org";
+	if (target.status !== "active") return "inactive";
+	return "ok";
+}
 /**
 * Route @mentions to delegate agents.
 * For each mentioned user who has delegate_mention configured,
@@ -18205,13 +17724,19 @@ async function routeMentionDelegations(app, organizationId, mentionedNames, ctx)
 		if (agent.status !== "active" || !agent.delegateMention) continue;
 		const [target] = await app.db.select({
 			id: agents.uuid,
-			status: agents.status
+			status: agents.status,
+			organizationId: agents.organizationId
 		}).from(agents).where(eq(agents.uuid, agent.delegateMention)).limit(1);
-		if (!target || target.status !== "active") {
+		const verdict = evaluateDelegateTarget(target, organizationId);
+		if (verdict !== "ok") {
 			log$1.warn({
 				targetAgent: agent.delegateMention,
-				sourceAgent: agent.name
-			}, "delegate_mention target not active, skipping");
+				sourceAgent: agent.name,
+				sourceOrg: organizationId,
+				targetOrg: target?.organizationId,
+				targetStatus: target?.status,
+				verdict
+			}, DELEGATE_VERDICT_MESSAGES[verdict]);
 			continue;
 		}
 		try {
@@ -18222,6 +17747,7 @@ async function routeMentionDelegations(app, organizationId, mentionedNames, ctx)
 					type: "github_mention",
 					mentionedUser: agent.name,
 					event: ctx.event,
+					action: ctx.action,
 					repository: ctx.repository,
 					sender: ctx.sender,
 					title: ctx.title,
@@ -18231,7 +17757,8 @@ async function routeMentionDelegations(app, organizationId, mentionedNames, ctx)
 				metadata: {
 					source: "github",
 					event: "mention_delegation",
-					mentionedUser: agent.name
+					mentionedUser: agent.name,
+					action: ctx.action
 				}
 			});
 			notifyRecipients(app.notifier, recipients, msg.id);
@@ -18388,12 +17915,14 @@ function extractEventContext(eventType, payload) {
 	const sender = isRecord(payload.sender) ? payload.sender : null;
 	const repository = typeof repo?.full_name === "string" ? repo.full_name : "";
 	const senderLogin = typeof sender?.login === "string" ? sender.login : "";
+	const action = typeof payload.action === "string" ? payload.action : void 0;
 	switch (eventType) {
 		case "issues": {
 			const issue = isRecord(payload.issue) ? payload.issue : null;
 			if (!issue) return null;
 			return {
 				event: "issues",
+				action,
 				repository,
 				sender: senderLogin,
 				title: `Issue #${issue.number}: ${issue.title}`,
@@ -18407,6 +17936,7 @@ function extractEventContext(eventType, payload) {
 			if (!issue || !comment) return null;
 			return {
 				event: "issue_comment",
+				action,
 				repository,
 				sender: senderLogin,
 				title: `Issue #${issue.number}: ${issue.title}`,
@@ -18419,6 +17949,7 @@ function extractEventContext(eventType, payload) {
 			if (!pr) return null;
 			return {
 				event: "pull_request",
+				action,
 				repository,
 				sender: senderLogin,
 				title: `PR #${pr.number}: ${pr.title}`,
@@ -18432,6 +17963,7 @@ function extractEventContext(eventType, payload) {
 			if (!pr || !review) return null;
 			return {
 				event: "pull_request_review",
+				action,
 				repository,
 				sender: senderLogin,
 				title: `PR #${pr.number}: ${pr.title}`,
@@ -18445,6 +17977,7 @@ function extractEventContext(eventType, payload) {
 			if (!pr || !comment) return null;
 			return {
 				event: "pull_request_review_comment",
+				action,
 				repository,
 				sender: senderLogin,
 				title: `PR #${pr.number}: ${pr.title}`,
@@ -18457,6 +17990,7 @@ function extractEventContext(eventType, payload) {
 			if (!disc) return null;
 			return {
 				event: "discussion",
+				action,
 				repository,
 				sender: senderLogin,
 				title: typeof disc.title === "string" ? disc.title : "",
@@ -18470,6 +18004,7 @@ function extractEventContext(eventType, payload) {
 			if (!disc || !comment) return null;
 			return {
 				event: "discussion_comment",
+				action,
 				repository,
 				sender: senderLogin,
 				title: typeof disc.title === "string" ? disc.title : "",
@@ -18482,6 +18017,7 @@ function extractEventContext(eventType, payload) {
 			if (!comment) return null;
 			return {
 				event: "commit_comment",
+				action,
 				repository,
 				sender: senderLogin,
 				title: "Commit comment",
@@ -18497,16 +18033,26 @@ function extractEventContext(eventType, payload) {
 * Only called after action gating confirms this is a "new content" event.
 */
 async function handleMentionDelegation(app, organizationId, eventType, payload) {
-	const mentions = extractMentions$1(extractEventText(eventType, payload));
+	const textMentions = extractMentions$1(extractEventText(eventType, payload));
+	const structuralMentions = extractStructuralMentions(eventType, payload);
+	const mentions = [...new Set([...textMentions, ...structuralMentions])];
 	const mentionCtx = extractEventContext(eventType, payload);
 	if (mentions.length > 0 && mentionCtx) return routeMentionDelegations(app, organizationId, mentions, mentionCtx);
 	return 0;
 }
-/** Actions that represent new/changed content (worth scanning for @mentions). */
+/** Actions that represent new/changed content (worth scanning for @mentions).
+* Note: `pull_request.review_requested` doesn't carry an @mention in any
+* text body — the reviewer is in `requested_reviewer.login`. We pick it up
+* via `extractStructuralMentions`. The complementary `review_request_removed`
+* is intentionally omitted to avoid notifying the reviewer twice. */
 const MENTION_ACTIONS = {
 	issues: ["opened", "edited"],
 	issue_comment: ["created"],
-	pull_request: ["opened", "edited"],
+	pull_request: [
+		"opened",
+		"edited",
+		"review_requested"
+	],
 	pull_request_review: ["submitted"],
 	pull_request_review_comment: ["created"],
 	discussion: ["created", "edited"],
@@ -18656,8 +18202,6 @@ var schema_exports = /* @__PURE__ */ __exportAll({
 	pendingQuestions: () => pendingQuestions,
 	serverInstances: () => serverInstances,
 	sessionEvents: () => sessionEvents,
-	taskChats: () => taskChats,
-	tasks: () => tasks,
 	users: () => users
 });
 function connectDatabase(url) {
@@ -20150,7 +19694,6 @@ async function buildApp(config) {
 			await scope.register(orgAdapterStatusRoutes, { prefix: "/adapters/status" });
 			await scope.register(orgOverviewRoutes, { prefix: "/overview" });
 			await scope.register(orgActivityRoutes, { prefix: "/activity" });
-			await scope.register(orgTaskRoutes, { prefix: "/tasks" });
 			await scope.register(orgSessionRoutes, { prefix: "/sessions" });
 			await scope.register(orgNotificationRoutes, { prefix: "/notifications" });
 			await scope.register(orgClientRoutes, { prefix: "/clients" });
@@ -20166,7 +19709,6 @@ async function buildApp(config) {
 			await scope.register(agentActivityRoutes, { prefix: "/agents" });
 			await scope.register(sessionRoutes, { prefix: "/agents" });
 			await scope.register(chatRoutes, { prefix: "/chats" });
-			await scope.register(taskRoutes, { prefix: "/tasks" });
 			await scope.register(adapterRoutes, { prefix: "/adapters" });
 			await scope.register(adapterMappingRoutes, { prefix: "/adapter-mappings" });
 			await scope.register(clientRoutes, { prefix: "/clients" });
@@ -20178,7 +19720,6 @@ async function buildApp(config) {
 			await scope.register(agentSendToAgentRoutes, { prefix: "/agents" });
 			await scope.register(agentInboxRoutes, { prefix: "/inbox" });
 			await scope.register(agentConfigRoutes$1);
-			await scope.register(agentTaskRoutes, { prefix: "/tasks" });
 			await scope.register(agentFeishuBotRoutes);
 			await scope.register(agentFeishuUserRoutes, { prefix: "/delegated" });
 		}), { prefix: "/agent" });