@agenticmail/enterprise 0.5.166 → 0.5.168

package/src/engine/agent-autonomy.ts

@@ -0,0 +1,727 @@
+/**
+ * Agent Autonomy System
+ *
+ * Provides enterprise-grade autonomous behaviors:
+ * 1. Auto Clock-In/Out based on work schedule
+ * 2. Daily/Weekly Manager Catchup Emails
+ * 3. Goal Setting & Auto-Reminders
+ * 4. Friday Knowledge Contribution
+ * 5. Smart Answer Escalation (memory → Drive → Sites → manager)
+ * 6. Guardrail Rule Enforcement at runtime
+ */
+
+import type { EngineDatabase } from './db-adapter.js';
+
+// ─── Types ──────────────────────────────────────────────
+
+export interface AutonomyConfig {
+  agentId: string;
+  orgId: string;
+  agentName: string;
+  role: string;
+  managerEmail?: string;
+  timezone: string;
+  schedule?: { start: string; end: string; days: number[] };
+  emailProvider?: any;
+  runtime?: any;
+  engineDb: EngineDatabase;
+  memoryManager?: any;
+  lifecycle?: any;
+}
+
+export interface ClockState {
+  clockedIn: boolean;
+  clockInTime?: string;
+  clockOutTime?: string;
+  lastCheckTime?: string;
+}
+
+interface CatchupData {
+  emailsHandled: number;
+  sessionsRun: number;
+  memoriesStored: number;
+  tasksCompleted: string[];
+  issuesEncountered: string[];
+  knowledgeGained: string[];
+}
+
+// ─── Agent Autonomy Manager ─────────────────────────────
+
+export class AgentAutonomyManager {
+  private config: AutonomyConfig;
+  private clockState: ClockState = { clockedIn: false };
+  private schedulerInterval?: NodeJS.Timeout;
+  private catchupInterval?: NodeJS.Timeout;
+  private knowledgeInterval?: NodeJS.Timeout;
+  private goalCheckInterval?: NodeJS.Timeout;
+
+  constructor(config: AutonomyConfig) {
+    this.config = config;
+  }
+
+  async start(): Promise<void> {
+    console.log('[autonomy] Starting agent autonomy system...');
+
+    // Check clock state on boot
+    await this.checkClockState();
+
+    // Schedule checker runs every minute
+    this.schedulerInterval = setInterval(() => this.checkClockState(), 60_000);
+
+    // Catchup email checker runs every 30 minutes (checks if it's time for daily/weekly)
+    this.catchupInterval = setInterval(() => this.checkCatchupSchedule(), 30 * 60_000);
+    // Check immediately on start (after 30s delay for systems to settle)
+    setTimeout(() => this.checkCatchupSchedule(), 30_000);
+
+    // Knowledge contribution checker runs every hour
+    this.knowledgeInterval = setInterval(() => this.checkKnowledgeContribution(), 60 * 60_000);
+
+    // Goal progress checker runs every 2 hours
+    this.goalCheckInterval = setInterval(() => this.checkGoalProgress(), 2 * 60 * 60_000);
+
+    console.log('[autonomy] System started — clock, catchup, knowledge, goals active');
+  }
+
+  stop(): void {
+    if (this.schedulerInterval) clearInterval(this.schedulerInterval);
+    if (this.catchupInterval) clearInterval(this.catchupInterval);
+    if (this.knowledgeInterval) clearInterval(this.knowledgeInterval);
+    if (this.goalCheckInterval) clearInterval(this.goalCheckInterval);
+    console.log('[autonomy] System stopped');
+  }
+
+  // ─── 1. Auto Clock-In/Out ──────────────────────────
+
+  private async checkClockState(): Promise<void> {
+    const schedule = this.config.schedule;
+    if (!schedule) return;
+
+    const now = new Date();
+    const tz = this.config.timezone || 'UTC';
+    const localTime = new Date(now.toLocaleString('en-US', { timeZone: tz }));
+    const currentHour = localTime.getHours();
+    const currentMinute = localTime.getMinutes();
+    const currentDay = localTime.getDay(); // 0=Sun
+    const currentTimeStr = `${String(currentHour).padStart(2, '0')}:${String(currentMinute).padStart(2, '0')}`;
+
+    // Check if today is a scheduled workday
+    const isWorkday = schedule.days.includes(currentDay);
+    const isWithinHours = currentTimeStr >= schedule.start && currentTimeStr < schedule.end;
+
+    if (isWorkday && isWithinHours && !this.clockState.clockedIn) {
+      await this.clockIn();
+    } else if ((!isWorkday || !isWithinHours) && this.clockState.clockedIn) {
+      await this.clockOut();
+    }
+
+    this.clockState.lastCheckTime = now.toISOString();
+  }
+
+  private async clockIn(): Promise<void> {
+    const now = new Date().toISOString();
+    this.clockState.clockedIn = true;
+    this.clockState.clockInTime = now;
+
+    try {
+      await this.config.engineDb.execute(
+        `INSERT INTO clock_records (id, org_id, agent_id, type, triggered_by, created_at) VALUES ($1, $2, $3, 'clock_in', 'auto_scheduler', $4)`,
+        [crypto.randomUUID(), this.config.orgId, this.config.agentId, now]
+      );
+      console.log(`[autonomy] ⏰ Clocked IN at ${now}`);
+
+      // Store in memory
+      if (this.config.memoryManager) {
+        await this.config.memoryManager.storeMemory(this.config.agentId, {
+          content: `Clocked in at ${now}. Starting work shift.`,
+          category: 'context',
+          importance: 'low',
+          confidence: 1.0,
+        }).catch(() => {});
+      }
+    } catch (err: any) {
+      console.error(`[autonomy] Clock-in error: ${err.message}`);
+    }
+  }
+
+  private async clockOut(): Promise<void> {
+    const now = new Date().toISOString();
+    this.clockState.clockedIn = false;
+    this.clockState.clockOutTime = now;
+
+    try {
+      await this.config.engineDb.execute(
+        `INSERT INTO clock_records (id, org_id, agent_id, type, triggered_by, reason, created_at) VALUES ($1, $2, $3, 'clock_out', 'auto_scheduler', 'End of scheduled hours', $4)`,
+        [crypto.randomUUID(), this.config.orgId, this.config.agentId, now]
+      );
+      console.log(`[autonomy] ⏰ Clocked OUT at ${now}`);
+
+      // Store in memory
+      if (this.config.memoryManager) {
+        await this.config.memoryManager.storeMemory(this.config.agentId, {
+          content: `Clocked out at ${now}. Work shift ended.`,
+          category: 'context',
+          importance: 'low',
+          confidence: 1.0,
+        }).catch(() => {});
+      }
+    } catch (err: any) {
+      console.error(`[autonomy] Clock-out error: ${err.message}`);
+    }
+  }
+
+  isWorkingHours(): boolean {
+    return this.clockState.clockedIn;
+  }
+
+  getClockState(): ClockState {
+    return { ...this.clockState };
+  }
+
+  // ─── 2. Manager Catchup Emails ─────────────────────
+
+  private async checkCatchupSchedule(): Promise<void> {
+    if (!this.config.managerEmail || !this.config.runtime) return;
+
+    const now = new Date();
+    const tz = this.config.timezone || 'UTC';
+    const localTime = new Date(now.toLocaleString('en-US', { timeZone: tz }));
+    const hour = localTime.getHours();
+    const minute = localTime.getMinutes();
+    const dayOfWeek = localTime.getDay(); // 0=Sun, 1=Mon
+    const dateStr = localTime.toISOString().split('T')[0];
+
+    // Daily catchup: 9:00 AM on workdays (within first 30 min window)
+    const isDailyCatchupTime = hour === 9 && minute < 30;
+    // Weekly catchup: Monday 9:00 AM (within first 30 min window)
+    const isWeeklyCatchupTime = dayOfWeek === 1 && hour === 9 && minute < 30;
+
+    if (!isDailyCatchupTime) return;
+
+    // Check if we already sent today's catchup
+    const catchupKey = isWeeklyCatchupTime ? `weekly_catchup_${dateStr}` : `daily_catchup_${dateStr}`;
+    const alreadySent = await this.checkMemoryFlag(catchupKey);
+    if (alreadySent) return;
+
+    console.log(`[autonomy] ${isWeeklyCatchupTime ? 'Weekly' : 'Daily'} catchup time — generating report...`);
+
+    try {
+      const catchupData = await this.gatherCatchupData(isWeeklyCatchupTime ? 7 : 1);
+      await this.sendCatchupEmail(catchupData, isWeeklyCatchupTime);
+      await this.setMemoryFlag(catchupKey);
+    } catch (err: any) {
+      console.error(`[autonomy] Catchup email error: ${err.message}`);
+    }
+  }
+
+  private async gatherCatchupData(daysBack: number): Promise<CatchupData> {
+    const since = new Date(Date.now() - daysBack * 24 * 60 * 60 * 1000).toISOString();
+    const db = this.config.engineDb;
+    const agentId = this.config.agentId;
+
+    // Count processed emails
+    let emailsHandled = 0;
+    try {
+      const rows = await db.query<any>(
+        `SELECT COUNT(*) as cnt FROM agent_memory WHERE agent_id = $1 AND category = 'processed_email' AND created_at >= $2`,
+        [agentId, since]
+      );
+      emailsHandled = rows?.[0]?.cnt || 0;
+    } catch {}
+
+    // Count sessions
+    let sessionsRun = 0;
+    try {
+      const rows = await db.query<any>(
+        `SELECT COUNT(*) as cnt FROM agent_sessions WHERE agent_id = $1 AND created_at >= $2`,
+        [agentId, since]
+      );
+      sessionsRun = rows?.[0]?.cnt || 0;
+    } catch {}
+
+    // Count memories stored
+    let memoriesStored = 0;
+    try {
+      const rows = await db.query<any>(
+        `SELECT COUNT(*) as cnt FROM agent_memory WHERE agent_id = $1 AND created_at >= $2`,
+        [agentId, since]
+      );
+      memoriesStored = rows?.[0]?.cnt || 0;
+    } catch {}
+
+    // Get key tasks completed (from Google Tasks memories)
+    let tasksCompleted: string[] = [];
+    try {
+      const taskRows = await db.query<any>(
+        `SELECT content FROM agent_memory WHERE agent_id = $1 AND category = 'skill' AND content LIKE '%task%complete%' AND created_at >= $2 ORDER BY created_at DESC LIMIT 10`,
+        [agentId, since]
+      );
+      tasksCompleted = (taskRows || []).map((r: any) => r.content?.slice(0, 200));
+    } catch {}
+
+    // Get issues encountered (corrections/errors)
+    let issuesEncountered: string[] = [];
+    try {
+      const issueRows = await db.query<any>(
+        `SELECT content FROM agent_memory WHERE agent_id = $1 AND category = 'correction' AND created_at >= $2 ORDER BY created_at DESC LIMIT 5`,
+        [agentId, since]
+      );
+      issuesEncountered = (issueRows || []).map((r: any) => r.content?.slice(0, 200));
+    } catch {}
+
+    // Get knowledge gained
+    let knowledgeGained: string[] = [];
+    try {
+      const knowRows = await db.query<any>(
+        `SELECT content FROM agent_memory WHERE agent_id = $1 AND (category = 'skill' OR category = 'org_knowledge') AND created_at >= $2 ORDER BY created_at DESC LIMIT 10`,
+        [agentId, since]
+      );
+      knowledgeGained = (knowRows || []).map((r: any) => r.content?.slice(0, 200));
+    } catch {}
+
+    return { emailsHandled, sessionsRun, memoriesStored, tasksCompleted, issuesEncountered, knowledgeGained };
+  }
+
+  private async sendCatchupEmail(data: CatchupData, isWeekly: boolean): Promise<void> {
+    const runtime = this.config.runtime;
+    const managerEmail = this.config.managerEmail;
+    const agentName = this.config.agentName;
+    const role = this.config.role;
+    const period = isWeekly ? 'last week' : 'yesterday';
+    const nextPeriod = isWeekly ? 'this week' : 'today';
+
+    const prompt = `You need to send your ${isWeekly ? 'weekly' : 'daily'} catchup email to your manager at ${managerEmail}.
+
+Here's what you accomplished ${period}:
+- Emails handled: ${data.emailsHandled}
+- Sessions/conversations: ${data.sessionsRun}
+- Memories stored: ${data.memoriesStored}
+- Tasks completed: ${data.tasksCompleted.length > 0 ? data.tasksCompleted.join('; ') : 'None tracked'}
+- Issues encountered: ${data.issuesEncountered.length > 0 ? data.issuesEncountered.join('; ') : 'None'}
+- Knowledge gained: ${data.knowledgeGained.length > 0 ? data.knowledgeGained.join('; ') : 'None tracked'}
+
+Write and send a concise, professional ${isWeekly ? 'weekly' : 'daily'} summary email. Include:
+1. What you accomplished ${period} (be specific, not generic)
+2. Any issues or blockers you encountered
+3. What you plan to focus on ${nextPeriod}
+${isWeekly ? '4. Goals for the week (create Google Tasks for each goal)' : ''}
+${isWeekly ? '5. Any suggestions for improvement or areas where you need guidance' : ''}
+
+Keep it under ${isWeekly ? '400' : '250'} words. Be genuine and specific — your manager reads these to stay informed.
+Use gmail_send to send the email. Subject: "${isWeekly ? 'Weekly' : 'Daily'} Update — ${agentName}"
+
+${isWeekly ? 'After sending the email, create Google Tasks for your goals this week using google_tasks_create.' : ''}`;
+
+    const systemPrompt = `You are ${agentName}, a ${role}. You are sending your ${isWeekly ? 'weekly' : 'daily'} catchup email to your manager.
+Be professional but genuine. Use real data from the summary — don't make up accomplishments.
+Available tools: gmail_send (to, subject, body), google_tasks_create (listId, title, notes, dueDate).`;
+
+    try {
+      const session = await runtime.spawnSession({
+        agentId: this.config.agentId,
+        message: prompt,
+        systemPrompt,
+      });
+      console.log(`[autonomy] ✅ ${isWeekly ? 'Weekly' : 'Daily'} catchup email session ${session.id} created`);
+    } catch (err: any) {
+      console.error(`[autonomy] Failed to send catchup email: ${err.message}`);
+    }
+  }
+
+  // ─── 3. Goal Setting & Auto-Reminders ──────────────
+
+  private async checkGoalProgress(): Promise<void> {
+    if (!this.config.runtime || !this.clockState.clockedIn) return;
+
+    const now = new Date();
+    const tz = this.config.timezone || 'UTC';
+    const localTime = new Date(now.toLocaleString('en-US', { timeZone: tz }));
+    const hour = localTime.getHours();
+
+    // Check goals at 2 PM and 5 PM (end-of-day review)
+    if (hour !== 14 && hour !== 17) return;
+
+    const dateStr = localTime.toISOString().split('T')[0];
+    const checkKey = `goal_check_${dateStr}_${hour}`;
+    const alreadyChecked = await this.checkMemoryFlag(checkKey);
+    if (alreadyChecked) return;
+
+    console.log(`[autonomy] Goal progress check at ${hour}:00`);
+
+    try {
+      const prompt = hour === 17
+        ? `It's end of day. Review your goals and tasks:
+1. Call google_tasks_list to see your current tasks
+2. Review what you completed today
+3. Mark completed tasks as done with google_tasks_complete
+4. For incomplete tasks, update notes with progress
+5. Store a brief end-of-day reflection in memory about what went well and what to improve tomorrow
+6. If any task is blocked, email your manager at ${this.config.managerEmail || 'your manager'} about it`
+        : `Mid-day goal check:
+1. Call google_tasks_list to see your current tasks
+2. Review progress on today's priorities
+3. If you're behind on any task, adjust your approach
+4. Store any insights in memory for future reference`;
+
+      const session = await this.config.runtime.spawnSession({
+        agentId: this.config.agentId,
+        message: prompt,
+        systemPrompt: `You are ${this.config.agentName}, a ${this.config.role}. You are doing a ${hour === 17 ? 'end-of-day' : 'mid-day'} goal review. Be thorough but efficient.`,
+      });
+      console.log(`[autonomy] ✅ Goal check session ${session.id} created`);
+      await this.setMemoryFlag(checkKey);
+    } catch (err: any) {
+      console.error(`[autonomy] Goal check error: ${err.message}`);
+    }
+  }
+
+  // ─── 4. Knowledge Contribution (Friday) ────────────
+
+  private async checkKnowledgeContribution(): Promise<void> {
+    if (!this.config.runtime || !this.clockState.clockedIn) return;
+
+    const now = new Date();
+    const tz = this.config.timezone || 'UTC';
+    const localTime = new Date(now.toLocaleString('en-US', { timeZone: tz }));
+    const dayOfWeek = localTime.getDay(); // 5=Friday
+    const hour = localTime.getHours();
+    const dateStr = localTime.toISOString().split('T')[0];
+
+    // Friday at 3 PM
+    if (dayOfWeek !== 5 || hour !== 15) return;
+
+    const contribKey = `knowledge_contribution_${dateStr}`;
+    const alreadyDone = await this.checkMemoryFlag(contribKey);
+    if (alreadyDone) return;
+
+    console.log('[autonomy] Friday knowledge contribution time!');
+
+    try {
+      // Determine role-based category
+      const roleCategory = this.mapRoleToKnowledgeCategory(this.config.role);
+
+      const prompt = `It's Friday — time for your weekly knowledge contribution.
+
+Your role is ${this.config.role}, so focus on ${roleCategory} knowledge.
+
+Steps:
+1. Search your memory for key learnings this week: memory(action: "search", query: "learned this week")
+2. Search for tool patterns you discovered: memory(action: "search", query: "tool")
+3. Search for corrections and gotchas: memory(action: "search", query: "correction")
+4. Compile the most valuable learnings into knowledge entries
+5. For each entry, store it with a clear title and category:
+   - memory(action: "set", key: "knowledge-contrib-[topic]", value: "Clear description of the learning, including steps and examples", category: "org_knowledge", importance: "high")
+
+Categories to contribute to (pick the most relevant):
+${roleCategory === 'support' ? '- customer-issues: Common customer problems and solutions\n- escalation-procedures: When and how to escalate\n- tool-patterns: Efficient ways to use tools\n- communication-templates: Effective response patterns' : ''}
+${roleCategory === 'sales' ? '- objection-handling: How to address common objections\n- product-knowledge: Product features and benefits\n- prospect-research: Effective research methods' : ''}
+${roleCategory === 'engineering' ? '- debugging-patterns: Common issues and fixes\n- architecture-decisions: Design choices and rationale\n- tool-expertise: Development tool tips' : ''}
+${roleCategory === 'general' ? '- best-practices: General workflow improvements\n- tool-patterns: Tool usage tips\n- process-improvements: Better ways to do things' : ''}
+
+After storing knowledge entries, email your manager a brief summary of what you contributed.
+Aim for 3-5 high-quality entries. Quality over quantity.`;
+
+      const session = await this.config.runtime.spawnSession({
+        agentId: this.config.agentId,
+        message: prompt,
+        systemPrompt: `You are ${this.config.agentName}, a ${this.config.role}. You are contributing weekly knowledge to your organization's knowledge base. Focus on ${roleCategory}-related insights. Be specific and actionable — vague entries are useless.`,
+      });
+      console.log(`[autonomy] ✅ Knowledge contribution session ${session.id} created`);
+      await this.setMemoryFlag(contribKey);
+    } catch (err: any) {
+      console.error(`[autonomy] Knowledge contribution error: ${err.message}`);
+    }
+  }
+
+  private mapRoleToKnowledgeCategory(role: string): string {
+    const roleLower = (role || '').toLowerCase();
+    if (roleLower.includes('support') || roleLower.includes('customer') || roleLower.includes('service')) return 'support';
+    if (roleLower.includes('sales') || roleLower.includes('business dev')) return 'sales';
+    if (roleLower.includes('engineer') || roleLower.includes('developer') || roleLower.includes('technical')) return 'engineering';
+    if (roleLower.includes('marketing') || roleLower.includes('content')) return 'marketing';
+    if (roleLower.includes('hr') || roleLower.includes('human resource') || roleLower.includes('people')) return 'hr';
+    if (roleLower.includes('finance') || roleLower.includes('accounting')) return 'finance';
+    if (roleLower.includes('legal') || roleLower.includes('compliance')) return 'legal';
+    if (roleLower.includes('research') || roleLower.includes('analyst')) return 'research';
+    if (roleLower.includes('operations') || roleLower.includes('ops')) return 'operations';
+    return 'general';
+  }
+
+  // ─── 5. Smart Answer Escalation ────────────────────
+
+  /**
+   * Generates a system prompt addendum that teaches the agent the escalation workflow.
+   * This is injected into every email-handling session.
+   */
+  static getEscalationPrompt(managerEmail: string | undefined, orgDriveFolderId?: string): string {
+    return `
+== SMART ANSWER WORKFLOW (MANDATORY) ==
+When you receive a question or request you're not 100% confident about, follow this escalation chain:
+
+STEP 1: Search your own memory
+- memory(action: "search", query: "relevant keywords")
+- Check for similar past questions, corrections, and learned patterns
+
+STEP 2: Search organization Drive (shared knowledge)
+${orgDriveFolderId ? `- google_drive_list with query "fullText contains 'search terms'" and parents in '${orgDriveFolderId}'` : '- google_drive_list with query "fullText contains \'search terms\'" to search shared docs'}
+- Read relevant documents with google_drive_get to find the answer
+- Check Google Sheets for data tables, Google Docs for procedures
+
+STEP 3: If still unsure — ESCALATE to manager
+${managerEmail ? `- Send an email to ${managerEmail} with:` : '- Send an email to your manager with:'}
+  Subject: "Need Guidance: [Brief topic]"
+  Body must include:
+  a) The original question/request (who asked, what they need)
+  b) What you found in your search (memory + Drive results)
+  c) Your proposed answer (what you THINK the answer should be)
+  d) What specifically you're unsure about
+  e) Ask for approval or correction before responding
+
+NEVER guess or fabricate an answer. It's better to escalate than to be wrong.
+
+After receiving manager feedback:
+- Store the correct answer in memory as a "correction" or "org_knowledge" entry
+- Apply the correction to your response
+- Thank the requester for their patience
+
+The goal: build confidence over time. Today you escalate often. In a month, you'll know most answers from memory.`;
+  }
+
+  // ─── Helper Methods ────────────────────────────────
+
+  private async checkMemoryFlag(key: string): Promise<boolean> {
+    if (!this.config.memoryManager) return false;
+    try {
+      const results = await this.config.memoryManager.recall(this.config.agentId, key, 1);
+      return results.some((m: any) => m.content?.includes(key));
+    } catch {
+      // Fallback to DB check
+      try {
+        const rows = await this.config.engineDb.query<any>(
+          `SELECT id FROM agent_memory WHERE agent_id = $1 AND content LIKE $2 LIMIT 1`,
+          [this.config.agentId, `%${key}%`]
+        );
+        return (rows && rows.length > 0);
+      } catch { return false; }
+    }
+  }
+
+  private async setMemoryFlag(key: string): Promise<void> {
+    if (!this.config.memoryManager) return;
+    try {
+      await this.config.memoryManager.storeMemory(this.config.agentId, {
+        content: `${key}: completed at ${new Date().toISOString()}`,
+        category: 'context',
+        importance: 'low',
+        confidence: 1.0,
+      });
+    } catch {}
+  }
+}
+
+// ─── Guardrail Runtime Enforcement ──────────────────────
+
+/**
+ * Evaluates guardrail rules against a runtime event.
+ * Called from runtime hooks (beforeToolCall, afterToolCall, etc.)
+ */
+export class GuardrailEnforcer {
+  private engineDb: EngineDatabase;
+  private rules: Map<string, any> = new Map();
+  private lastLoad = 0;
+  private readonly RELOAD_INTERVAL = 5 * 60_000; // reload rules every 5 min
+
+  constructor(engineDb: EngineDatabase) {
+    this.engineDb = engineDb;
+  }
+
+  private async ensureRulesLoaded(): Promise<void> {
+    if (Date.now() - this.lastLoad < this.RELOAD_INTERVAL && this.rules.size > 0) return;
+    try {
+      const rows = await this.engineDb.query<any>('SELECT * FROM guardrail_rules WHERE enabled = TRUE');
+      this.rules.clear();
+      for (const r of (rows || [])) {
+        this.rules.set(r.id, {
+          id: r.id, orgId: r.org_id, name: r.name, category: r.category,
+          ruleType: r.rule_type,
+          conditions: typeof r.conditions === 'string' ? JSON.parse(r.conditions) : (r.conditions || {}),
+          action: r.action, severity: r.severity || 'medium',
+          cooldownMinutes: r.cooldown_minutes || 0,
+          lastTriggeredAt: r.last_triggered_at, triggerCount: r.trigger_count || 0,
+        });
+      }
+      this.lastLoad = Date.now();
+    } catch (err: any) {
+      console.warn(`[guardrail-enforcer] Failed to load rules: ${err.message}`);
+    }
+  }
+
+  /**
+   * Check if an agent action should be blocked or flagged.
+   * Returns { allowed: true } or { allowed: false, reason, action }
+   */
+  async evaluate(event: {
+    agentId: string;
+    orgId: string;
+    type: 'tool_call' | 'email_send' | 'session_start' | 'memory_write';
+    toolName?: string;
+    content?: string;
+    metadata?: Record<string, any>;
+  }): Promise<{ allowed: boolean; reason?: string; action?: string; ruleId?: string }> {
+    await this.ensureRulesLoaded();
+
+    for (const rule of this.rules.values()) {
+      // Check agent scope
+      if (rule.conditions.agentIds?.length > 0 && !rule.conditions.agentIds.includes(event.agentId)) continue;
+      // Check org scope
+      if (rule.orgId !== event.orgId) continue;
+      // Check cooldown
+      if (rule.lastTriggeredAt && rule.cooldownMinutes > 0) {
+        const cooldownUntil = new Date(rule.lastTriggeredAt).getTime() + rule.cooldownMinutes * 60_000;
+        if (Date.now() < cooldownUntil) continue;
+      }
+
+      const triggered = await this.evaluateRule(rule, event);
+      if (triggered) {
+        await this.recordTrigger(rule, event, triggered);
+        if (rule.action === 'kill' || rule.action === 'pause') {
+          return { allowed: false, reason: triggered, action: rule.action, ruleId: rule.id };
+        }
+        // alert/notify/log — allow but log
+        console.warn(`[guardrail-enforcer] Rule "${rule.name}" triggered: ${triggered} (action: ${rule.action})`);
+      }
+    }
+
+    return { allowed: true };
+  }
+
+  private async evaluateRule(rule: any, event: any): Promise<string | null> {
+    switch (rule.ruleType) {
+      case 'keyword_detection': {
+        if (!event.content) return null;
+        const keywords = rule.conditions.keywords || [];
+        const contentLower = event.content.toLowerCase();
+        for (const kw of keywords) {
+          if (contentLower.includes(kw.toLowerCase())) {
+            return `Keyword detected: "${kw}" in ${event.type}`;
+          }
+        }
+        return null;
+      }
+
+      case 'prompt_injection': {
+        if (!event.content) return null;
+        const patterns = rule.conditions.patterns || [
+          'ignore previous', 'ignore all previous', 'disregard your instructions',
+          'you are now', 'new instructions:', 'system prompt:',
+          'forget everything', 'override your',
+        ];
+        const contentLower = event.content.toLowerCase();
+        for (const pattern of patterns) {
+          if (contentLower.includes(pattern.toLowerCase())) {
+            return `Potential prompt injection detected: "${pattern}"`;
+          }
+        }
+        return null;
+      }
+
+      case 'data_leak_attempt': {
+        if (!event.content) return null;
+        const patterns = rule.conditions.patterns || [
+          '\\b\\d{3}-\\d{2}-\\d{4}\\b',     // SSN
+          '\\b\\d{4}[- ]?\\d{4}[- ]?\\d{4}[- ]?\\d{4}\\b', // Credit card
+          '\\bpassword\\s*[:=]\\s*\\S+',      // Password in text
+        ];
+        for (const pattern of patterns) {
+          try {
+            if (new RegExp(pattern, 'i').test(event.content)) {
+              return `Potential data leak: pattern "${pattern}" matched`;
+            }
+          } catch {} // invalid regex, skip
+        }
+        return null;
+      }
+
+      case 'off_hours': {
+        if (event.type !== 'session_start' && event.type !== 'tool_call') return null;
+        // Check against agent's schedule
+        try {
+          const schedRows = await this.engineDb.query<any>(
+            `SELECT * FROM work_schedules WHERE agent_id = $1 ORDER BY created_at DESC LIMIT 1`,
+            [event.agentId]
+          );
+          if (schedRows && schedRows.length > 0) {
+            const sched = schedRows[0];
+            const config = typeof sched.config === 'string' ? JSON.parse(sched.config) : (sched.config || {});
+            const hours = config.standardHours;
+            if (hours?.start && hours?.end) {
+              const tz = config.timezone || 'UTC';
+              const localTime = new Date(new Date().toLocaleString('en-US', { timeZone: tz }));
+              const currentHour = `${String(localTime.getHours()).padStart(2, '0')}:${String(localTime.getMinutes()).padStart(2, '0')}`;
+              if (currentHour < hours.start || currentHour >= hours.end) {
+                return `Activity outside work hours (${hours.start}-${hours.end} ${tz})`;
+              }
+            }
+          }
+        } catch {}
+        return null;
+      }
+
+      case 'memory_flood': {
+        if (event.type !== 'memory_write') return null;
+        const maxPerHour = rule.conditions.maxPerHour || 50;
+        try {
+          const since = new Date(Date.now() - 60 * 60_000).toISOString();
+          const rows = await this.engineDb.query<any>(
+            `SELECT COUNT(*) as cnt FROM agent_memory WHERE agent_id = $1 AND created_at >= $2`,
+            [event.agentId, since]
+          );
+          const count = rows?.[0]?.cnt || 0;
+          if (count > maxPerHour) {
+            return `Memory flood: ${count} writes in last hour (max: ${maxPerHour})`;
+          }
+        } catch {}
+        return null;
+      }
+
+      case 'tone_violation': {
+        if (!event.content || event.type !== 'email_send') return null;
+        const keywords = rule.conditions.keywords || ['urgent', 'asap', 'immediately'];
+        const contentLower = event.content.toLowerCase();
+        let violations = 0;
+        for (const kw of keywords) {
+          if (contentLower.includes(kw.toLowerCase())) violations++;
+        }
+        if (violations >= (rule.conditions.threshold || 2)) {
+          return `Tone issue: ${violations} flagged words in outgoing email`;
+        }
+        return null;
+      }
+
+      default:
+        return null;
+    }
+  }
+
+  private async recordTrigger(rule: any, event: any, detail: string): Promise<void> {
+    try {
+      // Update trigger count and last triggered
+      await this.engineDb.execute(
+        `UPDATE guardrail_rules SET trigger_count = trigger_count + 1, last_triggered_at = $1 WHERE id = $2`,
+        [new Date().toISOString(), rule.id]
+      );
+      // Update cached rule
+      rule.triggerCount = (rule.triggerCount || 0) + 1;
+      rule.lastTriggeredAt = new Date().toISOString();
+
+      // Record intervention
+      await this.engineDb.execute(
+        `INSERT INTO interventions (id, org_id, agent_id, type, reason, triggered_by, metadata, created_at) VALUES ($1, $2, $3, 'anomaly_detected', $4, 'guardrail_enforcer', $5, $6)`,
+        [crypto.randomUUID(), rule.orgId, event.agentId, `Rule "${rule.name}": ${detail}`,
+         JSON.stringify({ ruleId: rule.id, ruleType: rule.ruleType, eventType: event.type, severity: rule.severity }),
+         new Date().toISOString()]
+      );
+    } catch (err: any) {
+      console.warn(`[guardrail-enforcer] Failed to record trigger: ${err.message}`);
+    }
+  }
+}