@agentbridge1/cli 0.0.7 → 0.0.8

package/dist/mcp/agentbridge-mcp.js

@@ -21058,6 +21058,20 @@ function computeFileFingerprints(paths) {
 }
 
 // src/local-proof.ts
+function normalizePath2(path) {
+  return path.trim().replaceAll("\\", "/");
+}
+function isProofNoiseFile(file) {
+  const normalized = normalizePath2(file);
+  const lower = normalized.toLowerCase();
+  if (lower === "agentbridge.md" || lower === ".cursor" || lower.startsWith(".cursor/")) {
+    return true;
+  }
+  if (/\.timestamp-\d+-[a-z0-9]+\.mjs$/i.test(normalized)) {
+    return true;
+  }
+  return false;
+}
 function isLocalVerificationRun(value) {
   if (typeof value !== "object" || value === null) return false;
   const row = value;
@@ -21080,6 +21094,12 @@ function isLocalVerificationRun(value) {
 }
 
 // src/session-state.ts
+function isActiveLocalSession(state) {
+  if (!state) return false;
+  if (state.status === "closed") return false;
+  if (!state.id || state.id === "none") return false;
+  return true;
+}
 function resolveRepoRoot() {
   return process.env.AGENTBRIDGE_REPO_ROOT?.trim() || process.cwd();
 }
@@ -21226,11 +21246,11 @@ function writeSessionState(state) {
 
 // src/git-status.ts
 var import_node_child_process = require("node:child_process");
-function normalizePath2(path) {
+function normalizePath3(path) {
   return path.trim().replaceAll("\\", "/");
 }
 function isAgentbridgeLocalPath(path) {
-  const normalized = normalizePath2(path);
+  const normalized = normalizePath3(path);
   return normalized === ".agentbridge" || normalized.startsWith(".agentbridge/");
 }
 function isRenameOrCopy(xy) {
@@ -21246,25 +21266,28 @@ function parseGitStatusPorcelainZ(raw) {
     const payload = token.slice(3);
     if (!payload) continue;
     if (isRenameOrCopy(xy)) {
-      const originalPath = normalizePath2(payload);
-      const renamedTo = normalizePath2(tokens[idx + 1] ?? "");
+      const originalPath = normalizePath3(payload);
+      const renamedTo = normalizePath3(tokens[idx + 1] ?? "");
       if (renamedTo.length > 0) {
         entries.push({ xy, path: renamedTo, originalPath });
       }
       idx += 1;
       continue;
     }
-    entries.push({ xy, path: normalizePath2(payload) });
+    entries.push({ xy, path: normalizePath3(payload) });
   }
   return entries;
 }
+function isSupervisionRelevantPath(path) {
+  return !isAgentbridgeLocalPath(path) && !isProofNoiseFile(path);
+}
 function collectChangedFilesFromStatusEntries(entries) {
   const files = /* @__PURE__ */ new Set();
   for (const entry of entries) {
-    if (entry.path && !isAgentbridgeLocalPath(entry.path)) {
+    if (entry.path && isSupervisionRelevantPath(entry.path)) {
       files.add(entry.path);
     }
-    if (entry.originalPath && !isAgentbridgeLocalPath(entry.originalPath)) {
+    if (entry.originalPath && isSupervisionRelevantPath(entry.originalPath)) {
       files.add(entry.originalPath);
     }
   }
@@ -21313,6 +21336,36 @@ function captureLocalSessionBaseline() {
     fingerprintsAtStart
   };
 }
+function openLocalSession(input) {
+  const claimedPaths = [...new Set((input.claimedPaths ?? []).map((path) => path.trim()).filter(Boolean))];
+  const baseline = captureLocalSessionBaseline();
+  const now = baseline.startedAt;
+  const state = {
+    id: `local_${Date.now().toString(36)}`,
+    agentId: input.agentId?.trim() || "local",
+    laneDomain: input.laneDomain,
+    intent: input.intent?.trim() || void 0,
+    mode: input.mode,
+    changeRequestId: input.changeRequestId,
+    claimedPaths,
+    status: "active",
+    changedFiles: [],
+    crossings: [],
+    approvals: [],
+    domains: input.domains,
+    serverSessionId: input.serverSessionId,
+    pendingHandoffToAgent: input.pendingHandoffToAgent,
+    pendingHandoffDomain: input.pendingHandoffDomain,
+    createdAt: now,
+    updatedAt: now,
+    startedAt: baseline.startedAt,
+    gitHead: baseline.gitHead,
+    dirtyFilesAtStart: baseline.dirtyFilesAtStart,
+    fingerprintsAtStart: baseline.fingerprintsAtStart
+  };
+  writeSessionState(state);
+  return state;
+}
 
 // src/local-session-mirror.ts
 function uniquePaths(paths) {
@@ -21523,6 +21576,475 @@ function mirrorMcpToolSuccess(toolName, args, json) {
   mirrorMcpLifecycleEvent(patch);
 }
 
+// src/error-catalog.ts
+var CATALOG = {
+  PROJECT_ACCESS_NOT_MEMBER: {
+    code: "PROJECT_ACCESS_NOT_MEMBER",
+    category: "PROJECT_ACCESS_ERROR",
+    title: "Project access denied.",
+    what: "This API key is valid but the agent is not a member of this project.",
+    why: "AgentBridge cannot read or mutate work state without project membership.",
+    next: "Use a key for this project or add this agent to the room."
+  },
+  PROJECT_ACCESS_UNAUTHORIZED: {
+    code: "PROJECT_ACCESS_UNAUTHORIZED",
+    category: "AUTH_ERROR",
+    title: "Authentication failed.",
+    what: "The API key was missing, invalid, or rejected by the server.",
+    why: "AgentBridge cannot reach project APIs without valid credentials.",
+    next: "Run `agentbridge room exit`, set a fresh AGENTBRIDGE_API_KEY, then `agentbridge connect`."
+  },
+  PROJECT_ACCESS_NOT_FOUND: {
+    code: "PROJECT_ACCESS_NOT_FOUND",
+    category: "PROJECT_ACCESS_ERROR",
+    title: "Project not found.",
+    what: "The configured project ID does not exist in this API environment.",
+    why: "Commands target the wrong room or environment.",
+    next: "Verify AGENTBRIDGE_PROJECT_ID and rerun `agentbridge init --project <id>`."
+  },
+  CONNECT_EXECUTION_SURFACE_MISSING: {
+    code: "CONNECT_EXECUTION_SURFACE_MISSING",
+    category: "IDENTITY_ERROR",
+    title: "Connection incomplete.",
+    what: "Project access was verified, but this key is not bound to an AgentConnection execution surface.",
+    why: "Connect requires a room connection key that resolves to work_identity on /hello.",
+    next: [
+      "In the AgentBridge dashboard, open this room and rotate the API key (or create a new room).",
+      "Update AGENTBRIDGE_API_KEY or .agentbridge/config.json with the new key.",
+      "Run: agentbridge connect --project <project-id> --api-key <new-key>",
+      "Connect does not create or rotate keys automatically."
+    ].join("\n")
+  },
+  IDENTITY_ACTIVE_AGENT_STALE: {
+    code: "IDENTITY_ACTIVE_AGENT_STALE",
+    category: "IDENTITY_ERROR",
+    title: "Active agent could not be resolved.",
+    what: "Configured activeAgentId could not be resolved in this project.",
+    why: "Start and watch need a WorkIdentity that exists in the current room.",
+    next: "Run `agentbridge identity list` and update with `agentbridge use <agent-id>`."
+  },
+  WORK_CONTEXT_NO_CURRENT_SESSION: {
+    code: "WORK_CONTEXT_NO_CURRENT_SESSION",
+    category: "WORK_CONTEXT_ERROR",
+    title: "No active tracked work session.",
+    what: "No active tracked work session was found for this command.",
+    why: "Proof, verify, accept, and handoff require a bound work session.",
+    next: "Run `agentbridge watch` beside Cursor for live supervision, or `agentbridge verify -- <test command>` to record proof.",
+    blocksAcceptance: true
+  },
+  WORK_CONTEXT_BINDING_REQUIRED: {
+    code: "WORK_CONTEXT_BINDING_REQUIRED",
+    category: "WORK_CONTEXT_ERROR",
+    title: "Work session binding required.",
+    what: "This command needs a linked local/server work session.",
+    why: "The CLI and server must agree on the active change request and session.",
+    next: 'Run `agentbridge watch --allow-dirty` for default review, or `agentbridge watch --task "<task>" --scope "<path>"` for strict mode.',
+    blocksAcceptance: true
+  },
+  PROOF_STALE_AFTER_CHANGE: {
+    code: "PROOF_STALE_AFTER_CHANGE",
+    category: "PROOF_STALE_ERROR",
+    title: "Proof is stale.",
+    what: "Verification passed earlier, but scoped files changed afterward.",
+    why: "Acceptance requires proof that matches the current tree.",
+    next: "Rerun `agentbridge verify -- <command>`.",
+    blocksAcceptance: true
+  },
+  SCOPE_DRIFT_OUT_OF_SCOPE_FILE: {
+    code: "SCOPE_DRIFT_OUT_OF_SCOPE_FILE",
+    category: "SCOPE_DRIFT_ERROR",
+    title: "Scope drift detected.",
+    what: "The agent changed a file outside the declared scope.",
+    why: "Out-of-scope edits are not safe to trust until reviewed or rescoped.",
+    next: 'Options: (1) revert the out-of-scope file, (2) widen strict scope via `agentbridge watch --task "<work>" --scope "<wider-path>"`, or (3) split into a separate task.',
+    blocksAcceptance: true
+  },
+  HANDOFF_REQUIRED: {
+    code: "HANDOFF_REQUIRED",
+    category: "HANDOFF_ERROR",
+    title: "Handoff required.",
+    what: "Acceptance is blocked until a handoff is recorded for this session.",
+    why: "Cross-boundary work must be explicitly handed off before close.",
+    next: "Run `agentbridge handoff` with a summary, then retry accept.",
+    blocksAcceptance: true
+  },
+  ACCEPTANCE_BLOCKED: {
+    code: "ACCEPTANCE_BLOCKED",
+    category: "ACCEPTANCE_ERROR",
+    title: "Acceptance blocked by protocol rules.",
+    what: "Server checks rejected acceptance due to missing handoff, proof, or scope alignment.",
+    why: "The acceptance contract was not fully satisfied.",
+    next: "Run `agentbridge watch --once` to see current blocking issues, resolve each one, then retry `agentbridge accept`.",
+    blocksAcceptance: true
+  },
+  MEMORY_SUGGEST_NO_SESSION: {
+    code: "MEMORY_SUGGEST_NO_SESSION",
+    category: "MEMORY_ERROR",
+    title: "No accepted session for memory suggest.",
+    what: "Memory suggest could not find an accepted session to summarize.",
+    why: "Memory packets are generated from completed, accepted work.",
+    next: "Complete and accept a session first, then rerun `agentbridge memory suggest`."
+  },
+  CONFIG_INCOMPLETE: {
+    code: "CONFIG_INCOMPLETE",
+    category: "CONFIG_ERROR",
+    title: "Configuration incomplete.",
+    what: "Project ID, API key, or base URL is missing from config and environment.",
+    why: "AgentBridge cannot call the server without connection settings.",
+    next: "Run `agentbridge init` or set AGENTBRIDGE_PROJECT_ID / AGENTBRIDGE_API_KEY."
+  },
+  IDENTITY_NO_ACTIVE_AGENT: {
+    code: "IDENTITY_NO_ACTIVE_AGENT",
+    category: "IDENTITY_ERROR",
+    title: "No active agent configured.",
+    what: "activeAgentId is not set in .agentbridge/config.json.",
+    why: "Watch and start need a WorkIdentity selected for this repo.",
+    next: "Run `agentbridge identity list` then `agentbridge use <agent-id>`."
+  },
+  CONFIG_NO_DOMAIN_MAP: {
+    code: "CONFIG_NO_DOMAIN_MAP",
+    category: "CONFIG_ERROR",
+    title: "Domain map missing.",
+    what: "No recovered domain map was found in .agentbridge/config.json.",
+    why: "Watch uses domain boundaries to enforce scoped file tracking.",
+    next: "Run `agentbridge init` to recover domains for this repo."
+  },
+  AUTH_LOGIN_FAILED: {
+    code: "AUTH_LOGIN_FAILED",
+    category: "AUTH_ERROR",
+    title: "Sign in failed.",
+    what: "Authentication could not be completed.",
+    why: "You cannot open rooms without a valid session.",
+    next: "Return to login and try again, or contact your admin if auth is disabled."
+  },
+  NETWORK_UNREACHABLE: {
+    code: "NETWORK_UNREACHABLE",
+    category: "NETWORK_ERROR",
+    title: "Network error.",
+    what: "The CLI could not reach the AgentBridge API.",
+    why: "Without network access, local commands cannot sync work state.",
+    next: "Check AGENTBRIDGE_BASE_URL and network connectivity, then rerun `agentbridge doctor`."
+  },
+  SERVER_ERROR: {
+    code: "SERVER_ERROR",
+    category: "SERVER_ERROR",
+    title: "Server error.",
+    what: "The AgentBridge server failed while handling the request.",
+    why: "The action could not complete until the server recovers.",
+    next: "Retry shortly. If it persists, run `agentbridge doctor` and check server logs."
+  },
+  UNKNOWN_RUNTIME_ERROR: {
+    code: "UNKNOWN_RUNTIME_ERROR",
+    category: "UNKNOWN_ERROR",
+    title: "Command failed.",
+    what: "The command could not be completed due to an unexpected local/runtime error.",
+    why: "AgentBridge could not classify this failure.",
+    next: "Run `agentbridge doctor` with AGENTBRIDGE_DEBUG=1 and retry."
+  },
+  START_SUMMARY_REQUIRED: {
+    code: "START_SUMMARY_REQUIRED",
+    category: "START_ERROR",
+    title: "Summary required.",
+    what: "Start requires a non-empty --summary describing the work.",
+    why: "Change requests and work sessions need a human-readable intent.",
+    next: 'Run `agentbridge start --summary "<work>" --scope "<path>"`.'
+  },
+  START_SCOPE_REQUIRED: {
+    code: "START_SCOPE_REQUIRED",
+    category: "START_ERROR",
+    title: "Scope required.",
+    what: "Start requires a non-empty --scope path or glob.",
+    why: "Scoped work must declare which files this session may touch.",
+    next: 'Run `agentbridge start --summary "<work>" --scope "<path>"`.'
+  },
+  START_MISSING_ACTIVE_AGENT: {
+    code: "START_MISSING_ACTIVE_AGENT",
+    category: "IDENTITY_ERROR",
+    title: "No active agent configured.",
+    what: "Neither activeAgentId nor --agent was provided for strict tracked start.",
+    why: "Strict tracked work (--summary/--scope, --resume, or --change-request) must bind to a WorkIdentity in this project.",
+    next: [
+      "For strict tracked work: run `agentbridge identity list` then `agentbridge use <agent-id>`, or pass --agent.",
+      "For room-level watching only: run `agentbridge start` with no strict flags."
+    ].join("\n")
+  },
+  START_EXECUTION_SURFACE_REQUIRED: {
+    code: "START_EXECUTION_SURFACE_REQUIRED",
+    category: "CONFIG_ERROR",
+    title: "Execution surface missing.",
+    what: "No executionSurfaceId is saved in .agentbridge/config.json.",
+    why: "The server needs a stable execution surface to open a tracked session.",
+    next: [
+      "Run:",
+      "  agentbridge connect --project <project-id> --api-key <key> --api-base-url <url>",
+      "Then:",
+      "  agentbridge doctor",
+      "If this continues, AgentBridge could not create an AgentConnection/execution surface for this project."
+    ].join("\n")
+  },
+  START_AGENT_INVALID: {
+    code: "START_AGENT_INVALID",
+    category: "IDENTITY_ERROR",
+    title: "Agent could not be resolved.",
+    what: "The --agent value does not match any WorkIdentity in this project.",
+    why: "Start cannot open scoped work without a valid project agent.",
+    next: 'Run `agentbridge identity list` and retry with `--agent "<valid-agent-id>"`.'
+  },
+  START_IDENTITY_MISMATCH: {
+    code: "START_IDENTITY_MISMATCH",
+    category: "IDENTITY_ERROR",
+    title: "Agent identity mismatch.",
+    what: "The resolved agent is not authorized for this API key's WorkIdentity.",
+    why: "Start must run under the same WorkIdentity as the API key.",
+    next: "Use an API key bound to that agent, or pick an agent your key owns."
+  },
+  START_CALLER_IDENTITY_UNRESOLVED: {
+    code: "START_CALLER_IDENTITY_UNRESOLVED",
+    category: "IDENTITY_ERROR",
+    title: "Caller identity unresolved.",
+    what: "The API key could not be mapped to a WorkIdentity in this project.",
+    why: "Start requires a resolvable caller WorkIdentity from the server.",
+    next: "Run `agentbridge doctor` and verify this key is an AgentConnection key."
+  },
+  START_DOMAIN_UNRESOLVED: {
+    code: "START_DOMAIN_UNRESOLVED",
+    category: "START_ERROR",
+    title: "Domain could not be inferred.",
+    what: "No domain could be inferred from scope or active identity.",
+    why: "Scoped work must target a recovered domain lane.",
+    next: 'Pass `--domain "<domain>"` with start, or run `agentbridge init`.'
+  },
+  START_LANE_CLAIM_CONFIRM_REQUIRED: {
+    code: "START_LANE_CLAIM_CONFIRM_REQUIRED",
+    category: "START_ERROR",
+    title: "Lane claim needs explicit confirmation.",
+    what: "Start inferred a domain with medium confidence.",
+    why: "Production-safe lane claim requires explicit confirmation when scope-to-domain mapping is ambiguous.",
+    next: 'Rerun with `--confirm-domain` or pass an explicit `--domain "<domain>"`.'
+  },
+  START_LANE_CLAIM_LOW_CONFIDENCE: {
+    code: "START_LANE_CLAIM_LOW_CONFIDENCE",
+    category: "START_ERROR",
+    title: "Lane claim confidence too low.",
+    what: "AgentBridge could not confidently bind this work to a single domain lane.",
+    why: "A wrong lane claim undermines scope enforcement and ownership attribution.",
+    next: 'Pass explicit `--domain "<domain>"` and tighter `--scope "<path>"`, then rerun start.'
+  },
+  START_OWNER_UNRESOLVED: {
+    code: "START_OWNER_UNRESOLVED",
+    category: "START_ERROR",
+    title: "Domain owner unresolved.",
+    what: "The change request or session policy requires an owner WorkIdentity that is not assigned.",
+    why: "The server will not open a tracked session without domain ownership.",
+    next: "Ensure this project has a domain owner for the scope, or pass --domain."
+  },
+  START_CR_OWNERSHIP_MISMATCH: {
+    code: "START_CR_OWNERSHIP_MISMATCH",
+    category: "START_ERROR",
+    title: "Tracked task belongs to another connected agent.",
+    what: "AgentBridge found an old tracked task owned by a different connected agent.",
+    why: "AgentBridge will not let one connected agent automatically take over another agent's tracked work.",
+    next: "Run `agentbridge watch` for live supervision, or switch back to the original connected agent if you intend to resume old tracked work."
+  },
+  START_CR_NOT_EXECUTABLE: {
+    code: "START_CR_NOT_EXECUTABLE",
+    category: "START_ERROR",
+    title: "Change request not executable.",
+    what: "The change request is in a terminal or incompatible lifecycle state.",
+    why: "Only draft/scoped/assigned/ready_for_session CRs can start scoped work.",
+    next: "Pick another change request or create a new one with start."
+  },
+  START_SESSION_OPEN_FAILED: {
+    code: "START_SESSION_OPEN_FAILED",
+    category: "START_ERROR",
+    title: "Session could not be opened.",
+    what: "A change request was prepared but no work session could be opened.",
+    why: "Watch and verify require a server-backed session linked to the CR.",
+    next: "Run `agentbridge watch --change-request <id>` or inspect `agentbridge session list`."
+  },
+  START_LOCAL_SESSION_WRITE_FAILED: {
+    code: "START_LOCAL_SESSION_WRITE_FAILED",
+    category: "START_ERROR",
+    title: "Local session write failed.",
+    what: "The server session opened but local session state could not be saved.",
+    why: "Watch and verify rely on .agentbridge/session state on disk.",
+    next: "Check repo permissions under .agentbridge/ and retry start."
+  },
+  VERIFY_COMMAND_REQUIRED: {
+    code: "VERIFY_COMMAND_REQUIRED",
+    category: "PROOF_ERROR",
+    title: "Verification command required.",
+    what: "Verify requires a shell command after `--`.",
+    why: "Proof must record the output of a concrete verification command.",
+    next: "Run `agentbridge verify -- npm test` (or your project command).",
+    blocksAcceptance: true
+  },
+  VERIFY_COMMAND_FAILED: {
+    code: "VERIFY_COMMAND_FAILED",
+    category: "PROOF_ERROR",
+    title: "Verification command failed.",
+    what: "The verification command exited with a non-zero status.",
+    why: "Failed proof blocks acceptance until tests or checks pass.",
+    next: "Fix the command failure, then rerun `agentbridge verify -- <command>`.",
+    blocksAcceptance: true
+  },
+  PROOF_MISSING: {
+    code: "PROOF_MISSING",
+    category: "PROOF_ERROR",
+    title: "Required proof missing.",
+    what: "Acceptance checks report missing verification evidence.",
+    why: "Acceptance requires recorded proof for this work session.",
+    next: "Run `agentbridge verify -- <command>` then `agentbridge check`.",
+    blocksAcceptance: true
+  },
+  PROOF_TOO_WEAK: {
+    code: "PROOF_TOO_WEAK",
+    category: "PROOF_ERROR",
+    title: "Proof too weak.",
+    what: "Verification ran, but proof strength is below what this change requires.",
+    why: "High-risk or source changes need stronger proof than file-existence checks.",
+    next: "Rerun with a stronger command from proof guidance (e.g. `agentbridge verify -- npm test`).",
+    blocksAcceptance: true
+  },
+  PROOF_NOT_RELEVANT: {
+    code: "PROOF_NOT_RELEVANT",
+    category: "PROOF_ERROR",
+    title: "Proof not relevant.",
+    what: "Recorded proof does not cover the files or impact of this change.",
+    why: "Proof must match the changed files \u2014 unrelated passing tests do not count.",
+    next: "Rerun verification scoped to the changed files listed in the acceptance report.",
+    blocksAcceptance: true
+  },
+  PROOF_IMPACT_COVERAGE_GAP: {
+    code: "PROOF_IMPACT_COVERAGE_GAP",
+    category: "PROOF_ERROR",
+    title: "Proof impact coverage gap.",
+    what: "Proof exists but does not cover required impact areas for this work type.",
+    why: "Some change profiles require broader verification than a single lightweight check.",
+    next: "Run the minimum commands listed under proof guidance in `agentbridge check`.",
+    blocksAcceptance: true
+  },
+  PROOF_EVIDENCE_NOT_RECORDED: {
+    code: "PROOF_EVIDENCE_NOT_RECORDED",
+    category: "PROOF_ERROR",
+    title: "Proof not recorded.",
+    what: "Verification could not be recorded on the server.",
+    why: "Without a verification run, acceptance cannot proceed.",
+    next: "Retry verify after confirming network access and session binding.",
+    blocksAcceptance: true
+  },
+  SESSION_ID_REQUIRED: {
+    code: "SESSION_ID_REQUIRED",
+    category: "WORK_CONTEXT_ERROR",
+    title: "Session id required.",
+    what: "Session inspect requires a work session id argument.",
+    why: "The command must know which server session to load.",
+    next: "Run `agentbridge session inspect <work-session-id>`."
+  },
+  SESSION_ABANDON_REASON_REQUIRED: {
+    code: "SESSION_ABANDON_REASON_REQUIRED",
+    category: "WORK_CONTEXT_ERROR",
+    title: "Abandon reason too short.",
+    what: "Session abandon requires --reason with at least 8 characters.",
+    why: "Abandon is audited and must explain why the session stopped.",
+    next: 'Run `agentbridge session abandon --reason "<why stopping>"`.'
+  },
+  SESSION_NO_TARGET: {
+    code: "SESSION_NO_TARGET",
+    category: "WORK_CONTEXT_ERROR",
+    title: "No session to abandon.",
+    what: "No --session id was passed and no local session is linked.",
+    why: "Abandon must target a specific work session.",
+    next: "Pass --session <id> or link a session via `agentbridge watch`."
+  },
+  WORK_CONTEXT_SESSION_ALREADY_TERMINAL: {
+    code: "WORK_CONTEXT_SESSION_ALREADY_TERMINAL",
+    category: "WORK_CONTEXT_ERROR",
+    title: "Session already closed.",
+    what: "The linked work session is closed or terminal.",
+    why: "Proof and acceptance cannot attach to a finished session.",
+    next: 'Run `agentbridge session abandon --reason "session closed"` and start fresh.',
+    blocksAcceptance: true
+  },
+  ACCEPTANCE_ALREADY_CLOSED: {
+    code: "ACCEPTANCE_ALREADY_CLOSED",
+    category: "ACCEPTANCE_ERROR",
+    title: "Work already closed.",
+    what: "This change request or session is already in a terminal acceptance state.",
+    why: "Accept and verify cannot mutate closed work.",
+    next: "Run `agentbridge watch --allow-dirty` to review new coding work.",
+    blocksAcceptance: true
+  },
+  WORK_CONTEXT_SESSION_CR_MISMATCH: {
+    code: "WORK_CONTEXT_SESSION_CR_MISMATCH",
+    category: "WORK_CONTEXT_ERROR",
+    title: "Session change-request mismatch.",
+    what: "Local session points at a different change request than requested.",
+    why: "Proof or acceptance could attach to the wrong work.",
+    next: "Fix activeChangeRequestId or abandon the stale local session.",
+    blocksAcceptance: true
+  },
+  WORK_CONTEXT_STALE_LOCAL_SESSION: {
+    code: "WORK_CONTEXT_STALE_LOCAL_SESSION",
+    category: "WORK_CONTEXT_ERROR",
+    title: "Stale local session.",
+    what: "Local session id no longer exists on the server.",
+    why: "Watch and verify would track orphaned state.",
+    next: "Local session state has been cleared. Run `agentbridge watch --allow-dirty` to review current work.",
+    blocksAcceptance: true
+  },
+  WORK_CONTEXT_SCOPE_MISMATCH: {
+    code: "WORK_CONTEXT_SCOPE_MISMATCH",
+    category: "WORK_CONTEXT_ERROR",
+    title: "Session scope or task mismatch.",
+    what: "The active session was started with a different task or scope than requested.",
+    why: "Resuming the wrong session would silently corrupt proof and scope boundaries.",
+    next: 'Finish or abandon the current session (`agentbridge session abandon --reason "..."`) then rerun `agentbridge watch --task "<task>" --scope "<path>"`.',
+    blocksAcceptance: true
+  },
+  WORK_CONTEXT_AMBIGUOUS_SESSIONS: {
+    code: "WORK_CONTEXT_AMBIGUOUS_SESSIONS",
+    category: "WORK_CONTEXT_ERROR",
+    title: "Ambiguous active sessions.",
+    what: "Multiple active sessions match this change request.",
+    why: "The CLI cannot pick a single current session safely.",
+    next: 'Run `agentbridge session abandon --session <id> --reason "duplicate"`.',
+    blocksAcceptance: true
+  },
+  WORK_CONTEXT_OTHER_ACTIVE_SESSIONS: {
+    code: "WORK_CONTEXT_OTHER_ACTIVE_SESSIONS",
+    category: "WORK_CONTEXT_ERROR",
+    title: "Other active sessions exist.",
+    what: "No current session is bound, but other active sessions exist on the server.",
+    why: "Verify and accept must not attach to the wrong session silently.",
+    next: "Run `agentbridge session list --active` to identify the correct session, then `agentbridge watch --change-request <cr-id>` to bind it explicitly.",
+    blocksAcceptance: true
+  },
+  SESSION_SERVER_MISSING: {
+    code: "SESSION_SERVER_MISSING",
+    category: "WORK_CONTEXT_ERROR",
+    title: "Session not found on server.",
+    what: "The requested work session id does not exist in this project.",
+    why: "Inspect and abandon require a valid server session.",
+    next: "Run `agentbridge session list` and pick a current id."
+  }
+};
+
+// src/intent-validation.ts
+var VAGUE_PHRASES = [
+  "working on project",
+  "making changes",
+  "updating files",
+  "fix stuff",
+  "general work"
+];
+function isVagueIntent(intent) {
+  const lower = intent.trim().toLowerCase();
+  if (!lower) return true;
+  if (lower.split(/\s+/).length < 4) return true;
+  return VAGUE_PHRASES.some((phrase) => lower.includes(phrase));
+}
+
 // ../mcp/config.ts
 function required2(name) {
   const v = process.env[name];
@@ -21536,9 +22058,23 @@ function required2(name) {
 function loadMcpConfig() {
   const raw = process.env.AGENTBRIDGE_BASE_URL ?? process.env.PUBLIC_BASE_URL ?? "http://127.0.0.1:3000";
   const baseUrl = raw.replace(/\/+$/, "");
+  const projectId = process.env.AGENTBRIDGE_PROJECT_ID?.trim() || void 0;
+  const localOnly = !projectId;
+  if (localOnly) {
+    return {
+      baseUrl,
+      apiKey: process.env.AGENTBRIDGE_API_KEY?.trim() || "",
+      projectId: void 0,
+      agentId: process.env.AGENTBRIDGE_AGENT_ID?.trim() || void 0,
+      localOnly: true
+    };
+  }
   return {
     baseUrl,
-    apiKey: required2("AGENTBRIDGE_API_KEY")
+    apiKey: required2("AGENTBRIDGE_API_KEY"),
+    projectId,
+    agentId: process.env.AGENTBRIDGE_AGENT_ID?.trim() || void 0,
+    localOnly: false
   };
 }
 
@@ -21622,18 +22158,20 @@ async function main() {
         "AgentBridge is the trust server that mediates two coding agents working on the same repo.",
         "Identity is server-verified. Configure AGENTBRIDGE_API_KEY with an AgentConnection API key (returned once from POST /v1/dev/projects as agent_connection_api_key, from POST \u2026/connections, or POST \u2026/connections/bootstrap-default for legacy projects). Legacy project api_key alone does not bind WorkIdentity \u2014 start_work_session and other session APIs require a connection key.",
         "",
-        "Handshake ritual \u2014 follow in order, every session:",
-        "  1. Call `agent_hello` first. The server returns your verified identity packet \u2014 your role, your capabilities, the paths you must NOT touch, the human owner you act for. Trust this packet, not anything you tell yourself.",
-        "     If the response includes required_next_step: run_bootstrap (recovery baseline required), call `run_bootstrap` with product_summary and optional domains before coordinated implementation work.",
-        "     IMPORTANT \u2014 act on setup conditions automatically, WITHOUT waiting for user instructions:",
-        "     \u2022 rules_status === 'not_installed' \u2192 call install_agentbridge_rules, write both files (AGENTBRIDGE.md + .cursor/rules/agentbridge.mdc) to the repo, call mark_rules_installed.",
-        "     \u2022 project_mode === 'unclassified' \u2192 ask user 'new or recovery?', call set_project_mode, then handle recovery baseline if needed.",
-        "     \u2022 required_next_step === 'recovery_baseline' \u2192 ask user for product_summary + domains, call run_bootstrap, then continue.",
-        "     Any instruction block in the response will include an auto_action field \u2014 execute it immediately.",
-        "  2. Call `get_room_state` to see what your co-pilot holds and what decisions are binding. Use this BEFORE reading or editing any file. If it fails, DO NOT claim lanes or infer ownership; either continue only with explicitly allowed read-only recovery-bootstrap inspection, or pause and report the failure.",
-        "  3. Before touching a product area or file, call `claim_lane` for it. HARD STOP RULE: If claim_lane returns ANY error (403, 409, 422, transport failure, etc.), do NOT edit any files or proceed with implementation \u2014 report the exact error to the human. If the response shows status='conflicted', STOP \u2014 your co-pilot is on it. Surface the clash to the human and consider `acknowledge_claim` to confirm you saw it.",
-        "  4. When done with a lane, call `release_lane` so the room knows it's open.",
-        "  5. At session end, call `post_handoff` so the next agent knows what changed.",
+        "Mandatory handshake \u2014 follow in order, EVERY session, NO exceptions:",
+        "  1. Call `agent_hello` FIRST. Receive your verified identity packet.",
+        "     Act on setup conditions immediately (rules, project mode, bootstrap) \u2014 see agent_hello description.",
+        "  2. Call `get_room_state` to see what your co-pilot holds. Use BEFORE reading or editing any file.",
+        "  3. \u26A0 HARD STOP \u2014 before writing a single line of code:",
+        "     Call `start_work_session` with `intent` (human-readable goal, e.g. 'fix auth 401 on /rooms')",
+        "     and `claimed_paths` (the files you plan to touch).",
+        "     WITHOUT a tracked WorkSession you have NO execution authority. Editing files without it is",
+        "     a protocol violation \u2014 AgentBridge watch will flag the work as unverified and the human",
+        "     will see '(no intent declared)' with no scope, no trust.",
+        "  4. Call `generate_authority_packet` to receive your full execution surface.",
+        "  5. Call `claim_lane` for every file/area before touching it.",
+        "  6. Call `release_lane` when done with each lane.",
+        "  7. Call `post_handoff` at session end.",
         "",
         "Use `get_live_wire` any time to read the project's chronological event log.",
         "Use `request_context` to ask your co-pilot a question. Use `reserve_file` to request an approval-gated lock.",
@@ -21654,9 +22192,11 @@ async function main() {
   server.registerTool(
     "agent_hello",
     {
-      description: "Identify yourself to the trust server and receive your verified identity packet.\n\nOPERATING LOOP (Phase 5.5 \u2014 read this carefully):\n  1. Call agent_hello FIRST every session.\n  2. Inspect the response's `active_sessions` array:\n       \u2022 0 sessions  \u2192 there is no active tracked job (internal WorkSession) for this connection. Stop and ask the human to start a job before issuing any controlled call.\n       \u2022 1 session   \u2192 that is your active tracked job. Use its work_session_id for everything below.\n       \u2022 2+ sessions \u2192 DO NOT GUESS. The response sets selected_session_required=true. Ask the human which session to use, or call select_work_session to confirm.\n  3. Call generate_authority_packet(project_id, work_session_id) to receive the full tracked-job authority packet (WorkIdentity, ExecutionSurface, allowed/blocked domains, scope_snapshot, out_of_scope_snapshot, risk_level).\n  4. Pass work_session_id on EVERY controlled call: claim_lane, release_lane, post_handoff, close_work_session, check_close_readiness.\n  5. Respect `session_required_for_implementation=true` (a tracked job is required before this agent can edit files). If `active_sessions` is empty, do not perform implementation edits.\n\nAUTHORITY MODEL:\n  \u2022 Cursor / Claude Code / etc. are ExecutionSurfaces. They are NOT the agent identity.\n  \u2022 The accountable identity is the WorkIdentity (e.g. 'Auth Agent').\n  \u2022 A WorkIdentity is granted only by an active tracked job (WorkSession record) bound to your AgentConnection.\n  \u2022 You cannot self-declare authority. The server resolves your role from that WorkSession.\n\nIdentity packet shapes:\n  \u2022 NEW (AgentConnection key): `work_identity` packet with WorkIdentity, ExecutionSurface, domain, capabilities, blocked_domains.\n  \u2022 LEGACY (Agent API key): `verified` packet with role, capabilities, blocked_paths.\n\nRECOVERY MODE \u2014 when you're working on an existing unstructured codebase:\n  \u2022 If the project's `project_mode` is 'recovery' and `recoveryStatus` is 'active' or 'stabilising',\n    the response includes a `recovery_brief` block.\n  \u2022 If you are NEW to this project (no prior completed sessions), `recovery_brief` includes:\n      - `product_summary`: what the codebase does\n      - `known_domains`: list of domain names with trap counts\n      - `known_traps`: flat list of ALL traps across domains \u2014 READ BEFORE TOUCHING ANYTHING\n      - `recommended_first_action`: what to do first\n      - `warning`: 'This is a recovery project. Treat all domain boundaries as fragile.'\n  \u2022 If you have prior sessions, `recovery_brief` is abbreviated with `recommended_first_action: 'continue_with_memory'`.\n  \u2022 If `recoveryStatus === 'archived'`, the response signals `recovery_archived: true` \u2014 treat as a normal V1 project.\n  \u2022 If `required_next_step` is `run_bootstrap` (or `recovery_status` is `baseline_required`), call `run_bootstrap` with `product_summary` and optional `domains` \u2014 same payload as POST /v1/dev/projects/:id/bootstrap.\n\nAUTOMATIC SETUP \u2014 do not wait for user instructions when any of these apply:\n  \u2022 `rules_status === 'not_installed'` \u2192 call install_agentbridge_rules, write AGENTBRIDGE.md and .cursor/rules/agentbridge.mdc to the repo, call mark_rules_installed.\n  \u2022 `project_mode === 'unclassified'` or `required_next_step === 'classify_project_mode'` \u2192 ask user new/recovery, call set_project_mode.\n  \u2022 `required_next_step === 'recovery_baseline'` \u2192 ask user for summary + domains, call run_bootstrap.\n  When setup is required, the instruction block includes an `auto_action` string \u2014 execute it immediately.\n\nSTARTUP FLOW \u2014 call in order on every new chat:\n  1. agent_hello            \u2192 receive identity + check for setup conditions\n  2. get_project_packet     \u2192 receive compact project context (product summary, domain counts, charter, risks)\n  3. resolve_work_context   \u2192 structured next step from durable state (sessions, approvals, CRs, paths, LIP); NL classifier is last resort only\n  4. get_domain_packet      \u2192 load detailed domain context for the resolved domain(s) (traps, risks, owned paths)\n  5. get_last_implementation_packet \u2192 durable post-close implementation memory (what changed, files, risks, learned_after)\n  6. inspect repo files targeted to those domains / the packet\n  7. start_work_session + generate_authority_packet ONLY before editing files\n\nagent_hello does NOT return full product memory \u2014 call get_project_packet for startup context.\nPrefer resolve_work_context before classify_task_domain when the user's intent is vague or continuation-style.\nFor regressions after recent work, do not begin by summarising chat history. Load the Last Implementation Packet first (get_last_implementation_packet).",
+      description: "Call agent_hello at the start of every session.\n\nLOCAL MODE (no AGENTBRIDGE_PROJECT_ID configured):\n  - If a contract already exists: returns it. No arguments needed.\n  - If no contract exists: pass intent with what you are about to do.\n    agent_hello({ intent: \"Fix auth 401 on /rooms endpoint\" })\n  - agentbridge watch in the terminal tracks the contract and prints a verdict.\n  - Do not call start_work_session, claim_lane, or generate_authority_packet in local mode.\n\nSERVER MODE (AGENTBRIDGE_PROJECT_ID configured):\nIdentify yourself to the trust server and receive your verified identity packet.\n\nOPERATING LOOP (Phase 5.5 \u2014 read this carefully):\n  1. Call agent_hello FIRST every session.\n  2. Inspect the response's `active_sessions` array:\n       \u2022 0 sessions  \u2192 \u26A0 HARD STOP. You have NO execution authority.\n         DO NOT read files, DO NOT write code, DO NOT run commands.\n         You MUST call `start_work_session` NOW with:\n           - `intent`: a human-readable description of what the user asked for\n             (e.g. 'fix the 401 auth error on /rooms', 'add dark mode toggle')\n           - `claimed_paths`: the files/directories you plan to touch\n         Without this, AgentBridge watch will report '(no intent declared)' and\n         flag all your changes as UNVERIFIED. The human loses all trust visibility.\n       \u2022 1 session   \u2192 that is your active tracked job. Use its work_session_id for everything below.\n       \u2022 2+ sessions \u2192 DO NOT GUESS. The response sets selected_session_required=true. Ask the human which session to use, or call select_work_session to confirm.\n  3. Call generate_authority_packet(project_id, work_session_id) to receive the full tracked-job authority packet (WorkIdentity, ExecutionSurface, allowed/blocked domains, scope_snapshot, out_of_scope_snapshot, risk_level).\n  4. Pass work_session_id on EVERY controlled call: claim_lane, release_lane, post_handoff, close_work_session, check_close_readiness.\n  5. Respect `session_required_for_implementation=true` (a tracked job is required before this agent can edit files). If `active_sessions` is empty, do not perform implementation edits.\n\nAUTHORITY MODEL:\n  \u2022 Cursor / Claude Code / etc. are ExecutionSurfaces. They are NOT the agent identity.\n  \u2022 The accountable identity is the WorkIdentity (e.g. 'Auth Agent').\n  \u2022 A WorkIdentity is granted only by an active tracked job (WorkSession record) bound to your AgentConnection.\n  \u2022 You cannot self-declare authority. The server resolves your role from that WorkSession.\n\nIdentity packet shapes:\n  \u2022 NEW (AgentConnection key): `work_identity` packet with WorkIdentity, ExecutionSurface, domain, capabilities, blocked_domains.\n  \u2022 LEGACY (Agent API key): `verified` packet with role, capabilities, blocked_paths.\n\nRECOVERY MODE \u2014 when you're working on an existing unstructured codebase:\n  \u2022 If the project's `project_mode` is 'recovery' and `recoveryStatus` is 'active' or 'stabilising',\n    the response includes a `recovery_brief` block.\n  \u2022 If you are NEW to this project (no prior completed sessions), `recovery_brief` includes:\n      - `product_summary`: what the codebase does\n      - `known_domains`: list of domain names with trap counts\n      - `known_traps`: flat list of ALL traps across domains \u2014 READ BEFORE TOUCHING ANYTHING\n      - `recommended_first_action`: what to do first\n      - `warning`: 'This is a recovery project. Treat all domain boundaries as fragile.'\n  \u2022 If you have prior sessions, `recovery_brief` is abbreviated with `recommended_first_action: 'continue_with_memory'`.\n  \u2022 If `recoveryStatus === 'archived'`, the response signals `recovery_archived: true` \u2014 treat as a normal V1 project.\n  \u2022 If `required_next_step` is `run_bootstrap` (or `recovery_status` is `baseline_required`), call `run_bootstrap` with `product_summary` and optional `domains` \u2014 same payload as POST /v1/dev/projects/:id/bootstrap.\n\nAUTOMATIC SETUP \u2014 do not wait for user instructions when any of these apply:\n  \u2022 `rules_status === 'not_installed'` \u2192 call install_agentbridge_rules, write AGENTBRIDGE.md and .cursor/rules/agentbridge.mdc to the repo, call mark_rules_installed.\n  \u2022 `project_mode === 'unclassified'` or `required_next_step === 'classify_project_mode'` \u2192 ask user new/recovery, call set_project_mode.\n  \u2022 `required_next_step === 'recovery_baseline'` \u2192 ask user for summary + domains, call run_bootstrap.\n  When setup is required, the instruction block includes an `auto_action` string \u2014 execute it immediately.\n\nSTARTUP FLOW \u2014 call in order on every new chat:\n  1. agent_hello            \u2192 receive identity + check for setup conditions\n  2. get_project_packet     \u2192 receive compact project context (product summary, domain counts, charter, risks)\n  3. resolve_work_context   \u2192 structured next step from durable state (sessions, approvals, CRs, paths, LIP); NL classifier is last resort only\n  4. get_domain_packet      \u2192 load detailed domain context for the resolved domain(s)\n  5. get_last_implementation_packet \u2192 durable post-close implementation memory\n  6. \u26A0 start_work_session  \u2192 REQUIRED before ANY file edit. Declare intent + claimed_paths.\n                              This is NOT optional. Without it, agentbridge watch cannot verify\n                              your work and will report all changes as UNVERIFIED SCOPE UNKNOWN.\n                              intent   = the user's goal in plain English (copy it verbatim if possible)\n                              claimed_paths = the files/dirs you plan to modify\n  7. generate_authority_packet \u2192 receive full execution authority\n  8. inspect + implement\n\nagent_hello does NOT return full product memory \u2014 call get_project_packet for startup context.\nPrefer resolve_work_context before classify_task_domain when the user's intent is vague or continuation-style.\nFor regressions after recent work, do not begin by summarising chat history. Load the Last Implementation Packet first (get_last_implementation_packet).",
       inputSchema: {
-        project_id: external_exports.string().min(1).describe("Project / handshake id (hnd_\u2026)"),
+        project_id: external_exports.string().min(1).optional().describe(
+          "Project / handshake id (hnd_\u2026). Optional when AGENTBRIDGE_PROJECT_ID env var is set \u2014 the server uses it automatically."
+        ),
         tool_type: external_exports.enum([
           "cursor",
           "claude_code",
@@ -21678,11 +22218,50 @@ async function main() {
         ),
         work_session_id: external_exports.string().optional().describe(
           "Phase 5: if you have an active tracked job (ws_\u2026), pass it here. The response will include an active_session block with brief_summary and next_action hint. Follow up with generate_authority_packet to receive the full authority packet."
+        ),
+        intent: external_exports.string().max(500).optional().describe(
+          "LOCAL MODE: declare the work contract before editing files (e.g. 'Fix auth 401 on /rooms endpoint'). Required when no active contract exists."
         )
       }
     },
     async (args) => {
-      const path = `/v1/dev/projects/${encodeURIComponent(args.project_id)}/hello`;
+      if (cfg.localOnly) {
+        const existing = readSessionState();
+        if (isActiveLocalSession(existing)) {
+          return toolJson({
+            mode: "local",
+            action: "reuse",
+            contract: existing,
+            message: "Reusing active local work contract."
+          });
+        }
+        const declaredIntent = args.intent?.trim() || args.note?.trim();
+        if (!declaredIntent || isVagueIntent(declaredIntent)) {
+          return toolError(
+            'No active AgentBridge contract.\n\nDeclare what you are about to do before editing files:\n  agent_hello({ intent: "Fix auth 401 on /rooms endpoint" })\n\nOr run in a terminal: agentbridge start "Fix auth 401 on /rooms endpoint"'
+          );
+        }
+        const session = openLocalSession({
+          agentId: "mcp",
+          laneDomain: null,
+          intent: declaredIntent,
+          domains: [],
+          mode: "local_supervision"
+        });
+        return toolJson({
+          mode: "local",
+          action: "created",
+          contract: session,
+          message: "Local work contract created."
+        });
+      }
+      const resolvedProjectId = args.project_id ?? cfg.projectId;
+      if (!resolvedProjectId) {
+        return toolError(
+          "project_id is required. Pass it as an argument or set AGENTBRIDGE_PROJECT_ID in the MCP server environment."
+        );
+      }
+      const path = `/v1/dev/projects/${encodeURIComponent(resolvedProjectId)}/hello`;
       const body = {};
       if (args.tool_type !== void 0) body.tool_type = args.tool_type;
       if (args.capabilities_advert !== void 0)