@agenticmail/enterprise 0.5.166 → 0.5.168

package/dist/cli.js

@@ -50,7 +50,7 @@ Skill Development:
     import("./cli-serve-ZNKBEF4M.js").then((m) => m.runServe(args.slice(1))).catch(fatal);
     break;
   case "agent":
-    import("./cli-agent-WN3O6GW2.js").then((m) => m.runAgent(args.slice(1))).catch(fatal);
+    import("./cli-agent-7225VCWQ.js").then((m) => m.runAgent(args.slice(1))).catch(fatal);
     break;
   case "setup":
   default:

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@agenticmail/enterprise",
-  "version": "0.5.166",
+  "version": "0.5.168",
   "description": "AgenticMail Enterprise — cloud-hosted AI agent identity, email, auth & compliance for organizations",
   "type": "module",
   "bin": {

package/src/cli-agent.ts

@@ -498,6 +498,67 @@ Available tools: gmail_send (to, subject, body) or agenticmail_send (to, subject
 
     // 14. Start calendar polling loop (checks for upcoming meetings to auto-join)
     startCalendarPolling(AGENT_ID, config, runtime, engineDb, memoryManager);
+
+    // 15. Start agent autonomy system (clock-in/out, catchup emails, goals, knowledge)
+    try {
+      const { AgentAutonomyManager } = await import('./engine/agent-autonomy.js');
+      const orgRows2 = await engineDb.query<any>(`SELECT org_id FROM managed_agents WHERE id = $1`, [AGENT_ID]);
+      const autoOrgId = orgRows2?.[0]?.org_id || orgId;
+      const managerEmail2 = (config as any).managerEmail || ((config as any).manager?.type === 'external' ? (config as any).manager.email : null);
+
+      // Parse schedule from work_schedules table
+      let schedule: { start: string; end: string; days: number[] } | undefined;
+      try {
+        const schedRows = await engineDb.query<any>(
+          `SELECT config FROM work_schedules WHERE agent_id = $1 ORDER BY created_at DESC LIMIT 1`,
+          [AGENT_ID]
+        );
+        if (schedRows && schedRows.length > 0) {
+          const schedConfig = typeof schedRows[0].config === 'string' ? JSON.parse(schedRows[0].config) : schedRows[0].config;
+          if (schedConfig?.standardHours) {
+            schedule = {
+              start: schedConfig.standardHours.start,
+              end: schedConfig.standardHours.end,
+              days: schedConfig.workDays || [0, 1, 2, 3, 4, 5, 6],
+            };
+          }
+        }
+      } catch {}
+
+      const autonomy = new AgentAutonomyManager({
+        agentId: AGENT_ID,
+        orgId: autoOrgId,
+        agentName: config.displayName || config.name,
+        role: config.identity?.role || 'AI Agent',
+        managerEmail: managerEmail2,
+        timezone: config.timezone || 'America/New_York',
+        schedule,
+        runtime,
+        engineDb,
+        memoryManager,
+        lifecycle,
+      });
+      await autonomy.start();
+      console.log('[autonomy] ✅ Agent autonomy system started');
+
+      // Store autonomy ref for shutdown
+      const origShutdown = process.listeners('SIGTERM');
+      process.on('SIGTERM', () => autonomy.stop());
+      process.on('SIGINT', () => autonomy.stop());
+    } catch (autoErr: any) {
+      console.warn(`[autonomy] Failed to start: ${autoErr.message}`);
+    }
+
+    // 16. Start guardrail enforcement
+    try {
+      const { GuardrailEnforcer } = await import('./engine/agent-autonomy.js');
+      const enforcer = new GuardrailEnforcer(engineDb);
+      // Store enforcer for use by email polling
+      (global as any).__guardrailEnforcer = enforcer;
+      console.log('[guardrails] ✅ Runtime guardrail enforcer active');
+    } catch (gErr: any) {
+      console.warn(`[guardrails] Failed to start enforcer: ${gErr.message}`);
+    }
   }, 3000);
 }
 
@@ -822,6 +883,23 @@ EXAMPLES of things to remember:
 - memory(action:"set", key:"drive-folder-ids", value:"Work folder: 1WAbfQX7fXstan1_0ETq2rEApoyxmapQ1, Research folder: 15QB-JmQ_0Zbm98gaVQUyW-2avWXj8xVq", category:"org_knowledge", importance:"critical")
 - memory(action:"set", key:"customer-research-doc", value:"Created Customer Support Research doc (ID: 1GUAahCwtMWcIuZRyOAdAVPN2qu9D6j7fvQjS9WiANxU), shared with manager, stored in Work/Research", category:"context", importance:"normal")
 
+== TOOL USAGE LEARNING (MANDATORY) ==
+After using any tool to complete a task, ALWAYS record WHAT tool you used, HOW you used it, and WHAT worked or didn't.
+This is how you get better over time. Future-you will search memory before attempting similar tasks.
+
+ALWAYS store tool patterns:
+- memory(action:"set", key:"tool-gmail-search-by-sender", value:"To find emails from a specific sender, use gmail_search with query 'from:email@example.com'. Returns messageId needed for gmail_reply.", category:"skill", importance:"high")
+- memory(action:"set", key:"tool-drive-create-in-folder", value:"To create a doc in a folder: 1) google_docs_create to make doc, 2) google_drive_move with folderId. Cannot create directly in folder.", category:"skill", importance:"high")
+- memory(action:"set", key:"tool-calendar-meet-link", value:"To create a meeting with Google Meet link, use google_calendar_create with conferenceDataVersion=1 and requestId. The meet link is in response.conferenceData.entryPoints[0].uri", category:"skill", importance:"high")
+- memory(action:"set", key:"tool-tasks-workflow", value:"For task tracking: google_tasks_list to get list ID, then google_tasks_create with listId. Mark done with google_tasks_complete. Always use Work Tasks list ID: Q2VmTUhCMC1ORnhSaXJxMQ", category:"skill", importance:"critical")
+
+When a tool call FAILS, record that too:
+- memory(action:"set", key:"tool-gotcha-gmail-reply-threading", value:"gmail_send does NOT thread replies. MUST use gmail_reply(messageId, body) to keep email in same thread. Learned the hard way.", category:"correction", importance:"critical")
+- memory(action:"set", key:"tool-gotcha-drive-root", value:"Never leave files in Drive root. Always move to Work folder or subfolder after creation.", category:"correction", importance:"high")
+
+BEFORE using a tool, search memory for tips: memory(action:"search", query:"tool gmail" or "tool drive" etc.)
+The goal: build a personal playbook of tool expertise. Never repeat the same mistake twice.
+
 BEFORE starting work, call memory(action: "search", query: "relevant topic") to check if you already know something useful.
 This avoids repeating work and helps you recall folder IDs, preferences, and context.
 
@@ -841,10 +919,55 @@ For meetings you organize or are invited to:
 
 When you receive an email containing a meeting link (meet.google.com, zoom.us, teams.microsoft.com):
 - Extract the link and attempt to join immediately if the meeting is now
-- If the meeting is in the future, store it in memory and note the time`;
+- If the meeting is in the future, store it in memory and note the time
+
+== SMART ANSWER WORKFLOW (MANDATORY) ==
+When you receive a question or request you're not 100% confident about, follow this escalation chain:
+
+STEP 1: Search your own memory
+- memory(action: "search", query: "relevant keywords")
+- Check for similar past questions, corrections, and learned patterns
+
+STEP 2: Search organization Drive (shared knowledge)
+- google_drive_list with query parameter to search shared docs (e.g. "fullText contains 'search terms'")
+- Read relevant documents with google_drive_get to find the answer
+- Check Google Sheets for data tables, Google Docs for procedures
+
+STEP 3: If still unsure — ESCALATE to manager
+${managerEmail ? `- Send an email to ${managerEmail} with:` : '- Email your manager with:'}
+  Subject: "Need Guidance: [Brief topic]"
+  Body must include:
+  a) The original question/request (who asked, what they need)
+  b) What you found in your search (memory + Drive results)
+  c) Your proposed answer (what you THINK the answer should be)
+  d) What specifically you're unsure about
+  e) Ask for approval or correction before responding
 
+NEVER guess or fabricate an answer when unsure. It's better to escalate than to be wrong.
+After receiving manager feedback, store the correct answer in memory as a "correction" or "org_knowledge" entry.`;
 
 
+
+          // Guardrail check: scan inbound email for security rules
+          const enforcer = (global as any).__guardrailEnforcer;
+          if (enforcer) {
+            try {
+              const orgRows3 = await engineDb.query<any>(`SELECT org_id FROM managed_agents WHERE id = $1`, [agentId]);
+              const gOrgId = orgRows3?.[0]?.org_id || '';
+              const check = await enforcer.evaluate({
+                agentId, orgId: gOrgId, type: 'email_send' as const,
+                content: emailText, metadata: { from: senderEmail, subject: fullMsg.subject },
+              });
+              if (!check.allowed) {
+                console.warn(`[email-poll] ⚠️ Guardrail blocked email from ${senderEmail}: ${check.reason} (action: ${check.action})`);
+                continue; // Skip this email
+              }
+            } catch (gErr: any) {
+              console.warn(`[email-poll] Guardrail check error: ${gErr.message}`);
+              // Continue anyway — don't block on guardrail failures
+            }
+          }
+
           const session = await runtime.spawnSession({
             agentId,
             message: emailText,