@aria_asi/cli 0.2.33 → 0.2.35

package/opencode-plugins/harness-gate/index.js

@@ -4,6 +4,7 @@
  */
 import { existsSync, readFileSync, mkdirSync, writeFileSync } from 'node:fs';
 import { createHash } from 'node:crypto';
+import { spawnSync } from 'node:child_process';
 import { homedir } from 'node:os';
 import { join } from 'node:path';
 import { evaluateSkillGate, formatSkillGateBlock } from './lib/skill-autoload-gate.js';
@@ -16,6 +17,7 @@ const SDK_CANDIDATES = [
 ];
 const OWNER_TOKEN_PATH = join(HOME, '.aria', 'owner-token');
 const LICENSE_PATH = join(HOME, '.aria', 'license.json');
+const GOVERNANCE_GATE_PATH = join(HOME, '.aria', 'bin', 'aria-governance-gate');
 const RUNTIME_URL = (process.env.ARIA_RUNTIME_URL || 'http://127.0.0.1:4319').replace(/\/+$/, '');
 const RECEIPT_DIR = join(HOME, '.opencode', 'aria-mizan-receipts');
 
@@ -94,6 +96,25 @@ function countInlineCognitionLenses(text) {
   return seen.size;
 }
 
+function runUniversalGovernanceGate(payload) {
+  if (!existsSync(GOVERNANCE_GATE_PATH)) return null;
+  const child = spawnSync(GOVERNANCE_GATE_PATH, {
+    input: `${JSON.stringify(payload)}\n`,
+    encoding: 'utf8',
+    maxBuffer: 1024 * 1024,
+  });
+  const stdout = String(child.stdout || '').trim();
+  let result = null;
+  try { result = stdout ? JSON.parse(stdout) : null; } catch {}
+  if (child.status !== 0 || result?.ok === false || result?.decision === 'block') {
+    throw new Error(
+      `=== ARIA UNIVERSAL GOVERNANCE GATE BLOCK ===\n\n` +
+      `${stdout || child.stderr || 'aria-governance-gate blocked this action.'}`
+    );
+  }
+  return result;
+}
+
 function resolveToken() {
   if (process.env.ARIA_HARNESS_TOKEN) return process.env.ARIA_HARNESS_TOKEN;
   if (process.env.ARIA_API_KEY) return process.env.ARIA_API_KEY;
@@ -184,28 +205,48 @@ export default async function HarnessGatePlugin(ctx) {
 
   return {
     'tool.execute.before': async (input, output) => {
-      const toolName = input.tool;
+      const args = output?.args ?? input.args ?? {};
+      const rawToolName = String(input.tool || input.name || input.type || '');
+      const normalizedToolName = rawToolName.toLowerCase();
+      const toolName = normalizedToolName.includes('bash') ? 'Bash'
+        : normalizedToolName.includes('edit') ? 'Edit'
+          : normalizedToolName.includes('write') ? 'Write'
+            : rawToolName;
       if (!['Bash', 'Edit', 'Write', 'NotebookEdit'].includes(toolName)) return;
 
-      const cmd = toolName === 'Bash' ? String(input.args?.command ?? '') : '';
-      const filePath = toolName !== 'Bash' ? String(input.args?.file_path ?? input.args?.notebook_path ?? '') : '';
+      const cmd = toolName === 'Bash' ? String(args?.command ?? '') : '';
+      const filePath = toolName !== 'Bash' ? String(args?.file_path ?? args?.filePath ?? args?.notebook_path ?? args?.notebookPath ?? '') : '';
       const cmdPreview = toolName === 'Bash' ? cmd.slice(0, 80) : `${toolName} ${filePath || '(no path)'}`.slice(0, 80);
 
-      // Trivial reads pass
-      if (toolName === 'Bash' && TRIVIAL_BASH_RX.test(cmd) && cmd.length < 200) return;
-      if (toolName === 'Bash' && cmd.length < SHORT_BASH_LIMIT) return;
       const destructive = DESTRUCTIVE_PATTERNS.find(({ rx }) => rx.test(cmd));
       const deploy = DEPLOY_PATTERNS.find(({ rx }) => rx.test(cmd));
       const isFileMutation = ['Edit', 'Write', 'NotebookEdit'].includes(toolName) && filePath;
 
+      // Trivial reads pass only after high-risk patterns are classified.
+      if (!destructive && !deploy && toolName === 'Bash' && TRIVIAL_BASH_RX.test(cmd) && cmd.length < 200) return;
+      if (!destructive && !deploy && toolName === 'Bash' && cmd.length < SHORT_BASH_LIMIT) return;
+
       if (!destructive && !deploy && !isFileMutation) return;
 
       // Try SDK checkAction() first — substrate-backed validation
       const client = await getClient();
-      const sessionId = process.env.ARIA_SESSION_ID || 'opencode';
+      const sessionId = input.sessionID || process.env.ARIA_SESSION_ID || process.env.OPENCODE_SESSION_ID || 'opencode';
       const label = destructive?.name || deploy?.name || `${toolName}:${filePath?.split('/').pop() || ''}`;
       const action = toolName === 'Bash' ? 'bash' : 'edit';
       const target = toolName === 'Bash' ? cmd.slice(0, 200) : filePath.slice(0, 200);
+      const actionRef = makeEvidenceRef('opencode_tool_request', { toolName, action, target }, { sessionId, label });
+      runUniversalGovernanceGate({
+        sessionId,
+        sourceRuntime: 'opencode',
+        surface: 'opencode-harness-gate',
+        text: JSON.stringify({ toolName, action, target, args }).slice(0, 8000),
+        action: cmd,
+        toolName,
+        filePath,
+        isDeploy: Boolean(deploy),
+        isMutation: Boolean(isFileMutation),
+        evidence: actionRef,
+      });
       const skillGate = evaluateSkillGate({
         sessionId,
         surface: 'opencode-harness-gate',
@@ -224,7 +265,6 @@ export default async function HarnessGatePlugin(ctx) {
           `Required next step: call the skill loader for ${skillGate.missingSkills.join(', ')} before retrying this tool.`
         );
       }
-      const actionRef = makeEvidenceRef('opencode_tool_request', { toolName, action, target }, { sessionId, label });
       const rationale =
         destructive ? `High-risk action ${label} requested in OpenCode and must satisfy Mizan truth, protection, and quality before execution.`
           : deploy ? `Deployment action ${label} requested in OpenCode and must satisfy Mizan survivability before execution.`
@@ -299,7 +339,7 @@ export default async function HarnessGatePlugin(ctx) {
             roleProfile: process.env.OPENCODE_ARIA_ROLE_PROFILE || process.env.ARIA_ROLE_PROFILE || null,
             files: filePath ? [filePath] : [],
             requireVerify: Boolean(destructive || deploy),
-            verifyText: String(input.args?.verifyText || input.args?.verifyBlock || input.args?.verify || ''),
+            verifyText: String(args?.verifyText || args?.verifyBlock || args?.verify || ''),
           }).catch(() => client.checkAction(action, target));
           if (!check.allowed) {
             if (check.queued) {

package/opencode-plugins/harness-gate/lib/skill-autoload-gate.js

@@ -1 +1,14 @@
-export * from '../../../../../ops/claude-hooks/lib/skill-autoload-gate.mjs';
+import { existsSync, mkdirSync, readdirSync, readFileSync, writeFileSync } from 'node:fs';
+import { join } from 'node:path';
+import { tmpdir } from 'node:os';
+const RECEIPT_ROOT = process.env.ARIA_SKILL_RECEIPT_DIR || join(tmpdir(), 'aria-skill-receipts');
+const ALIASES = new Map([['deploy', 'aria-harness-deploy'], ['output', 'aria-harness-output-discipline'], ['repo', 'aria-repo-doctrine'], ['forge', 'aria-forge-guardrails']]);
+const RX = { deploy: /deploy-service\.sh|kubectl\s+(?:apply|set|rollout|delete|scale)|helm\s+upgrade|terraform\s+apply|docker\s+push/i, mutationTool: /^(?:edit|write|notebookedit|patch|apply_patch)$/i, mutation: /apply_patch|write file|edit file|modify|delete file|migration|handler|route|runtime|hook|plugin|\btest\b|smoke script/i, strip: /remove|delete|strip|drop|omit|disable|bypass|skip|stub|mock|fake|placeholder|temporary|quick scaffold|band-aid/i, readiness: /production-ready|ready for production|works in general|general readiness|client packages?|npm packages?|SDKs?|runtimes?|harnesses?|release-ready|ship-ready/i, narrow: /single flow|one flow|narrow e2e|covered flow|specific path|widget flow/i, completion: /done|complete|completed|ready|verified|fixed|shipped|implemented|production-ready/i, badProof: /but|except|caveat|remaining|not yet|still|separate|later|blocked|skipped|unresolved|follow-up|failed|failing|error|red|not run|could not verify|untested|no proof|missing proof|without proof/i, advisory: /non-blocking|warning only|warn only|advisory|fall through|falls through|fail open|soft fail|logged and continue|quality gate warning/i, success: /(?:verified|passed|success|successful|green|ok)\s*[:=\-].{0,120}(?:npm|node|playwright|jest|vitest|build|test|lint|typecheck|curl|kubectl|self-test|e2e|probe|smoke)|(?:npm|node|playwright|jest|vitest|build|test|lint|typecheck|curl|kubectl).{0,120}(?:passed|success|successful|green|exit\s*0)/i, resubmit: /re-?submission|resubmit/i, rewrite: /re-?write|rewrite|fix/i, retest: /re-?test|retest|rerun/i, aria: /ARIA console|Aria console|\/chat|aria-pipeline-mcp|aria_chat|escalat(?:e|ion).{0,80}ARIA/i };
+function normalizeSkillName(skill) { return ALIASES.get(String(skill || '').trim()) || String(skill || '').trim(); }
+function sessionDir(sessionId) { return join(RECEIPT_ROOT, encodeURIComponent(String(sessionId || 'unknown'))); }
+function readReceiptSkills(sessionId) { const dir = sessionDir(sessionId); if (!existsSync(dir)) return new Set(); const skills = new Set(); for (const name of readdirSync(dir)) { if (!name.endsWith('.json')) continue; try { const receipt = JSON.parse(readFileSync(join(dir, name), 'utf8')); if (receipt?.skill) skills.add(normalizeSkillName(receipt.skill)); } catch {} } return skills; }
+function readInlineSkills(text) { const skills = new Set(); const value = String(text || ''); for (const match of value.matchAll(/<skill_content\s+name=["']([^"']+)["']/gi)) skills.add(normalizeSkillName(match[1])); return skills; }
+export function recordSkillLoaded({ sessionId, skill, surface = 'unknown', metadata = {} } = {}) { const normalized = normalizeSkillName(skill); if (!normalized) throw new Error('recordSkillLoaded requires a skill name'); const dir = sessionDir(sessionId); mkdirSync(dir, { recursive: true }); const receipt = { skill: normalized, surface, metadata, recordedAt: new Date().toISOString() }; writeFileSync(join(dir, `${encodeURIComponent(normalized)}.json`), `${JSON.stringify(receipt, null, 2)}\n`); return receipt; }
+export function classifyRequiredSkills({ text = '', action = '', toolName = '', filePath = '', isDeploy = false, isMutation = false, isOutputCloseout = false } = {}) { const combined = [text, action, toolName, filePath].filter(Boolean).join('\n'); const required = new Set(); const reasons = []; const recoveryMissing = []; if (isDeploy || RX.deploy.test(combined)) { required.add('aria-harness-deploy'); required.add('aria-forge-guardrails'); reasons.push('deploy/shared-infrastructure action requires fail-closed deploy and forge guardrails'); } if (isMutation || RX.mutationTool.test(toolName)) { required.add('aria-repo-doctrine'); reasons.push('repository/runtime mutation requires repo doctrine'); } if (RX.strip.test(combined)) { required.add('aria-harness-no-stripping'); reasons.push('strip/remove/bypass language requires no-stripping gate'); } if (isOutputCloseout && RX.completion.test(combined)) { required.add('aria-harness-output-discipline'); reasons.push('owner-facing completion/readiness claim requires output discipline'); if (!RX.success.test(combined)) recoveryMissing.push('successful proof from a concrete command/probe'); } if (RX.readiness.test(combined)) { required.add('architecture-decision'); required.add('testing-strategy'); required.add('aria-forge-guardrails'); required.add('aria-harness-output-discipline'); reasons.push('broad production/package/SDK/runtime readiness claim requires architecture, testing, and forge guardrails'); } if (RX.readiness.test(combined) && RX.narrow.test(combined)) { required.add('testing-strategy'); required.add('aria-forge-guardrails'); reasons.push('narrow e2e proof cannot support broad readiness claim without readiness-matrix discipline'); } if (RX.completion.test(combined) && RX.badProof.test(combined)) { required.add('aria-harness-output-discipline'); required.add('aria-forge-guardrails'); reasons.push('completion claim with unresolved or failed proof requires recovery cycle'); if (!RX.resubmit.test(combined)) recoveryMissing.push('re-submission'); if (!RX.rewrite.test(combined)) recoveryMissing.push('re-write'); if (!RX.retest.test(combined)) recoveryMissing.push('re-test'); if (!RX.aria.test(combined)) recoveryMissing.push('ARIA console escalation'); } if (RX.advisory.test(combined)) { required.add('aria-forge-guardrails'); required.add('aria-harness-output-discipline'); reasons.push('advisory/fail-open gate language requires fail-closed hardening discipline'); } return { requiredSkills: [...required].sort(), reasons, recoveryMissing }; }
+export function evaluateSkillGate(options = {}) { const classified = classifyRequiredSkills(options); const text = [options.text, options.action].filter(Boolean).join('\n'); const loaded = new Set([...readReceiptSkills(options.sessionId), ...readInlineSkills(text)]); const missingSkills = classified.requiredSkills.filter((skill) => !loaded.has(skill)); const recoveryMissing = classified.recoveryMissing || []; return { ok: missingSkills.length === 0 && recoveryMissing.length === 0, surface: options.surface || 'unknown', sessionId: options.sessionId || 'unknown', requiredSkills: classified.requiredSkills, loadedSkills: [...loaded].sort(), missingSkills, recoveryMissing, reasons: classified.reasons, autoLoadAvailable: options.autoLoadAvailable === true }; }
+export function formatSkillGateBlock(result = {}) { const missing = Array.isArray(result.missingSkills) ? result.missingSkills : []; const recovery = Array.isArray(result.recoveryMissing) ? result.recoveryMissing : []; const reasons = Array.isArray(result.reasons) ? result.reasons : []; return ['=== ARIA SKILL AUTOLOAD GATE BLOCK ===', `surface: ${result.surface || 'unknown'}`, `missing_skills: ${missing.length ? missing.join(', ') : '(none)'}`, `missing_recovery_cycle: ${recovery.length ? recovery.join(', ') : '(none)'}`, `required_skills: ${(result.requiredSkills || []).join(', ') || '(none)'}`, reasons.length ? `reasons: ${reasons.join(' | ')}` : 'reasons: no classifier reason recorded', 'counter_action: re-submit, re-write, re-test, and escalate through ARIA console until successful proof exists. Do not downgrade this to an advisory warning.'].join('\n'); }

package/opencode-plugins/harness-stop/index.js

@@ -4,6 +4,7 @@
  */
 import { existsSync, readFileSync, mkdirSync, writeFileSync } from 'node:fs';
 import { createHash } from 'node:crypto';
+import { spawnSync } from 'node:child_process';
 import { homedir } from 'node:os';
 import { join } from 'node:path';
 import { analyzeDomainOutputQuality, extractCodeBlocks } from './lib/domain-output-quality.js';
@@ -17,6 +18,7 @@ const SDK_CANDIDATES = [
 ];
 const OWNER_TOKEN_PATH = join(HOME, '.aria', 'owner-token');
 const LICENSE_PATH = join(HOME, '.aria', 'license.json');
+const GOVERNANCE_GATE_PATH = join(HOME, '.aria', 'bin', 'aria-governance-gate');
 const RUNTIME_URL = (process.env.ARIA_RUNTIME_URL || 'http://127.0.0.1:4319').replace(/\/+$/, '');
 const RECEIPT_DIR = join(HOME, '.opencode', 'aria-mizan-receipts');
 
@@ -49,6 +51,25 @@ function isGateBlock(error) {
   return BLOCK_PREFIX_RX.test(String(error?.message || error || ''));
 }
 
+function runUniversalGovernanceGate(payload) {
+  if (!existsSync(GOVERNANCE_GATE_PATH)) return null;
+  const child = spawnSync(GOVERNANCE_GATE_PATH, {
+    input: `${JSON.stringify(payload)}\n`,
+    encoding: 'utf8',
+    maxBuffer: 1024 * 1024,
+  });
+  const stdout = String(child.stdout || '').trim();
+  let result = null;
+  try { result = stdout ? JSON.parse(stdout) : null; } catch {}
+  if (child.status !== 0 || result?.ok === false || result?.decision === 'block') {
+    throw new Error(
+      `=== ARIA UNIVERSAL GOVERNANCE GATE BLOCK ===\n\n` +
+      `${stdout || child.stderr || 'aria-governance-gate blocked this output.'}`
+    );
+  }
+  return result;
+}
+
 let _client = null;
 let _clientError = null;
 let _lastMizanReceipt = null;
@@ -233,192 +254,206 @@ function detectCognitionLenses(text) {
 export default async function HarnessStopPlugin(ctx) {
   process.stderr.write('[harness-stop] Active — SDK-backed text-emission gate\n');
 
-  return {
-    'session.idle': async (event) => {
-      process.stderr.write('  [strip gate registed — session i\n');
-    },
-
-    event: async ({ event }) => {
-      if (event.type !== 'message.updated') return;
-      const parts = event.properties?.parts || [];
-      const text = parts
-        .filter(p => p.type === 'text')
-        .map(p => p.text || '')
-        .join('\n');
+  async function validateText(text, eventContext = {}) {
+    if (!text || text.length < NON_TRIVIAL_MIN_CHARS) return;
+    if (TRIVIAL_ACK_RX.test(text.trim())) return;
 
-      if (!text || text.length < NON_TRIVIAL_MIN_CHARS) return;
-      if (TRIVIAL_ACK_RX.test(text.trim())) return;
-
-      const cog = detectCognitionLenses(text);
-      const sessionId = process.env.ARIA_SESSION_ID || 'opencode';
-      const skillGate = evaluateSkillGate({
-        sessionId,
-        surface: 'opencode-harness-stop',
-        text: JSON.stringify(event || {}) + '\n' + text,
-        isOutputCloseout: true,
-        autoLoadAvailable: false,
+    const cog = detectCognitionLenses(text);
+    const sessionId = eventContext.sessionID || process.env.ARIA_SESSION_ID || process.env.OPENCODE_SESSION_ID || 'opencode';
+    runUniversalGovernanceGate({
+      sessionId,
+      sourceRuntime: 'opencode',
+      surface: 'opencode-harness-stop',
+      text,
+      isOutputCloseout: true,
+      evidence: makeEvidenceRef('opencode_assistant_output_candidate', text.slice(0, 8000), { sessionId }),
+    });
+    const skillGate = evaluateSkillGate({
+      sessionId,
+      surface: 'opencode-harness-stop',
+      text: JSON.stringify(eventContext || {}) + '\n' + text,
+      isOutputCloseout: true,
+      autoLoadAvailable: false,
+    });
+    if (!skillGate.ok) {
+      throw new Error(
+        formatBlockReason(
+          '=== ARIA SKILL AUTOLOAD GATE BLOCK ===',
+          `${formatSkillGateBlock(skillGate)}\nRequired next step: load ${skillGate.missingSkills.join(', ')} before re-emitting this output.`,
+        )
+      );
+    }
+    const outputRef = makeEvidenceRef('opencode_assistant_output', text.slice(0, 8000), { sessionId });
+    try {
+      const mizan = await runtimeMizanPost(text.slice(0, 8000), sessionId, {
+        message: text.slice(0, 1000),
+        plannedApproach: 'OpenCode stop gate output review',
+        outputRef,
+      }, {
+        output_ref: outputRef,
+        cognition_lens_count: cog.count,
       });
-      if (!skillGate.ok) {
+      _lastMizanReceipt = mizan.receipt || _lastMizanReceipt;
+      if (_lastMizanReceipt) {
+        const existing = loadReceiptState(sessionId) || {};
+        persistReceiptState(sessionId, {
+          ...existing,
+          updatedAt: new Date().toISOString(),
+          sessionId,
+          postReceipt: _lastMizanReceipt,
+          postResult: mizan.result || null,
+          postContract: mizan.contract || null,
+          postSummary: mizan.summary || null,
+          outputRef,
+        });
+      }
+      if (mizan.receipt?.blocked || mizan.result?.fitrahVetoed || mizan.result?.reAuthorSignal) {
+        const details = (mizan.result?.notes || ['post-phase blocked']).slice(0, 4).join(' | ');
         throw new Error(
-          formatBlockReason(
-            '=== ARIA SKILL AUTOLOAD GATE BLOCK ===',
-            `${formatSkillGateBlock(skillGate)}\nRequired next step: load ${skillGate.missingSkills.join(', ')} before re-emitting this output.`,
-          )
+          formatBlockReason('=== ARIA MIZAN POST BLOCK ===', details)
         );
       }
-      const outputRef = makeEvidenceRef('opencode_assistant_output', text.slice(0, 8000), { sessionId });
+    } catch (e) {
+      if (isGateBlock(e)) throw e;
+      process.stderr.write(`[harness-stop] mizan/post unavailable: ${e.message}\n`);
+    }
+
+    const client = await getClient();
+    if (client) {
       try {
-        const mizan = await runtimeMizanPost(text.slice(0, 8000), sessionId, {
-          message: text.slice(0, 1000),
-          plannedApproach: 'OpenCode stop gate output review',
-          outputRef,
-        }, {
-          output_ref: outputRef,
-          cognition_lens_count: cog.count,
-        });
-        _lastMizanReceipt = mizan.receipt || _lastMizanReceipt;
-        if (_lastMizanReceipt) {
-          const existing = loadReceiptState(sessionId) || {};
-          persistReceiptState(sessionId, {
-            ...existing,
-            updatedAt: new Date().toISOString(),
-            sessionId,
-            postReceipt: _lastMizanReceipt,
-            postResult: mizan.result || null,
-            postContract: mizan.contract || null,
-            postSummary: mizan.summary || null,
-            outputRef,
-          });
-        }
-        if (mizan.receipt?.blocked || mizan.result?.fitrahVetoed || mizan.result?.reAuthorSignal) {
-          const details = (mizan.result?.notes || ['post-phase blocked']).slice(0, 4).join(' | ');
+        const result = await runtimeValidateOutput(
+          text.slice(0, 8000),
+          sessionId,
+        ).catch(() => client.validateOutput(
+          text.slice(0, 8000),
+          sessionId,
+        ));
+        if (result.severity === 'block') {
           throw new Error(
-            formatBlockReason('=== ARIA MIZAN POST BLOCK ===', details)
+            formatBlockReason(
+              '=== ARIA OUTPUT GATE BLOCK ===',
+              `${result.violations.length} violations: ${result.violations.join('; ').slice(0, 500)}`,
+            )
+          );
+        } else if (result.severity === 'warn') {
+          throw new Error(
+            formatBlockReason(
+              '=== ARIA OUTPUT GATE BLOCK ===',
+              `SDK returned warn for ${result.violations.length} violation(s): ${(result.violations || []).join('; ').slice(0, 500)}. Warnings are fail-closed on owner-facing output.`,
+            )
           );
         }
+        if (result.gateTriggers?.length) {
+          process.stderr.write(`[harness-stop] SDK triggers: ${result.gateTriggers.join(', ')}\n`);
+        }
+        return;
       } catch (e) {
         if (isGateBlock(e)) throw e;
-        process.stderr.write(`[harness-stop] mizan/post unavailable: ${e.message}\n`);
+        process.stderr.write(`[harness-stop] SDK validateOutput failed: ${e.message} — falling through to local gate\n`);
       }
+    }
 
-      // Try SDK validateOutput() — Mizan classifier-backed validation
-      const client = await getClient();
-      if (client) {
-        try {
-          const result = await runtimeValidateOutput(
-            text.slice(0, 8000),
-            sessionId,
-          ).catch(() => client.validateOutput(
-            text.slice(0, 8000),
-            sessionId,
-          ));
-          if (result.severity === 'block') {
-            throw new Error(
-              formatBlockReason(
-                '=== ARIA OUTPUT GATE BLOCK ===',
-                `${result.violations.length} violations: ${result.violations.join('; ').slice(0, 500)}`,
-              )
-            );
-          } else if (result.severity === 'warn') {
-            process.stderr.write(
-              `[harness-stop] SDK WARN — ${result.violations.length} violations (non-blocking)\n`
-            );
-          }
-          // Log gate triggers
-          if (result.gateTriggers?.length) {
-            process.stderr.write(`[harness-stop] SDK triggers: ${result.gateTriggers.join(', ')}\n`);
-          }
-          return;
-        } catch (e) {
-          if (isGateBlock(e)) throw e;
-          process.stderr.write(`[harness-stop] SDK validateOutput failed: ${e.message} — falling through to local gate\n`);
+    const triggerMapPaths = [
+      `${HOME}/.aria/runtime/discipline/doctrine_trigger_map.json`,
+      `${HOME}/.aria/runtime/doctrine_trigger_map.json`,
+      `${HOME}/.opencode/doctrine_trigger_map.json`,
+      `${HOME}/.codex/doctrine_trigger_map.json`,
+      `${HOME}/.claude/hooks/doctrine_trigger_map.json`,
+      `${HOME}/.claude/projects/-home-hamzaibrahim1/memory/doctrine_trigger_map.json`,
+    ];
+    let driftHits = [];
+    try {
+      const triggerMapPath = triggerMapPaths.find((candidate) => existsSync(candidate));
+      if (triggerMapPath) {
+        const triggerMap = JSON.parse(readFileSync(triggerMapPath, 'utf8'));
+        const lower = text.toLowerCase();
+        for (const t of triggerMap.triggers || []) {
+          try {
+            const rx = new RegExp(t.trigger, 'i');
+            if (rx.test(lower)) {
+              const memCited = t.memory && lower.includes(t.memory.replace(/\.md$/, '').toLowerCase());
+              if (!memCited) driftHits.push(t.trigger);
+            }
+          } catch {}
         }
       }
+    } catch {}
 
-      // Local fallback gate
-      // Scan drift triggers
-      const triggerMapPaths = [
-        `${HOME}/.aria/runtime/discipline/doctrine_trigger_map.json`,
-        `${HOME}/.aria/runtime/doctrine_trigger_map.json`,
-        `${HOME}/.opencode/doctrine_trigger_map.json`,
-        `${HOME}/.codex/doctrine_trigger_map.json`,
-        `${HOME}/.claude/hooks/doctrine_trigger_map.json`,
-        `${HOME}/.claude/projects/-home-hamzaibrahim1/memory/doctrine_trigger_map.json`,
-      ];
-      let driftHits = [];
-      try {
-        const triggerMapPath = triggerMapPaths.find((candidate) => existsSync(candidate));
-        if (triggerMapPath) {
-          const triggerMap = JSON.parse(readFileSync(triggerMapPath, 'utf8'));
-          const lower = text.toLowerCase();
-          for (const t of triggerMap.triggers || []) {
-            try {
-              const rx = new RegExp(t.trigger, 'i');
-              if (rx.test(lower)) {
-                const memCited = t.memory && lower.includes(t.memory.replace(/\.md$/, '').toLowerCase());
-                if (!memCited) driftHits.push(t.trigger);
-              }
-            } catch {}
-          }
-        }
-      } catch {}
+    if (cog.count < REQUIRED_LENSES || driftHits.length >= 2) {
+      throw new Error(
+        formatBlockReason(
+          '=== ARIA LOCAL OUTPUT BLOCK ===',
+          `cognition=${cog.count}/${REQUIRED_LENSES}; drift=${driftHits.length}`,
+        )
+      );
+    }
 
-      if (cog.count < REQUIRED_LENSES || driftHits.length >= 2) {
-        throw new Error(
-          formatBlockReason(
-            '=== ARIA LOCAL OUTPUT BLOCK ===',
-            `cognition=${cog.count}/${REQUIRED_LENSES}; drift=${driftHits.length}`,
-          )
-        );
-      }
+    if (DECISION_SIGNAL_RX.test(text) && !APPLIED_COGNITION_RX.test(text)) {
+      throw new Error(
+        formatBlockReason(
+          '=== ARIA LOCAL OUTPUT BLOCK ===',
+          'decision-bearing output lacks required applied_cognition binding fields',
+        )
+      );
+    }
 
-      if (DECISION_SIGNAL_RX.test(text) && !APPLIED_COGNITION_RX.test(text)) {
-        throw new Error(
-          formatBlockReason(
-            '=== ARIA LOCAL OUTPUT BLOCK ===',
-            'decision-bearing output lacks required applied_cognition binding fields',
-          )
-        );
-      }
+    const domainQuality = analyzeDomainOutputQuality(text, { codeBlocks: extractCodeBlocks(text) });
+    if (domainQuality.blockers.length > 0) {
+      throw new Error(
+        formatBlockReason(
+          '=== ARIA LOCAL OUTPUT BLOCK ===',
+          `domain output QA (${domainQuality.domains.join(', ') || 'general'}): ${domainQuality.blockers.join('; ')}`,
+        )
+      );
+    }
 
-      const domainQuality = analyzeDomainOutputQuality(text, { codeBlocks: extractCodeBlocks(text) });
-      if (domainQuality.blockers.length > 0) {
-        throw new Error(
-          formatBlockReason(
-            '=== ARIA LOCAL OUTPUT BLOCK ===',
-            `domain output QA (${domainQuality.domains.join(', ') || 'general'}): ${domainQuality.blockers.join('; ')}`,
-          )
-        );
-      }
+    try {
+      const existing = loadReceiptState(sessionId);
+      await runtimeDecisionLog({
+        decision_type: 'turn_action',
+        category: 'agentic_execution',
+        context: `opencode stop-gate turn (chars=${text.length})`,
+        decision: 'turn completed',
+        reasoning: cog.count > 0
+          ? `Cognition lenses applied: ${cog.names.join(', ')}.`
+          : 'No explicit cognition block in turn.',
+        outcome: 'pending',
+        outcome_details: {
+          expected: null,
+          immediate_actual: null,
+          anchors: [],
+        },
+        expected_outcome: null,
+        metadata: {
+          pre_receipt_id: existing?.receipt?.receiptId || null,
+          post_receipt_id: _lastMizanReceipt?.receiptId || null,
+          output_ref: outputRef,
+        },
+        source: 'opencode-stop-gate-runtime',
+        model_used: process.env.OPENCODE_MODEL || 'opencode',
+      });
+    } catch (e) {
+      process.stderr.write(`[harness-stop] decision/log unavailable: ${e.message}\n`);
+    }
+  }
 
-      try {
-        const existing = loadReceiptState(sessionId);
-        await runtimeDecisionLog({
-          decision_type: 'turn_action',
-          category: 'agentic_execution',
-          context: `opencode stop-gate turn (chars=${text.length})`,
-          decision: 'turn completed',
-          reasoning: cog.count > 0
-            ? `Cognition lenses applied: ${cog.names.join(', ')}.`
-            : 'No explicit cognition block in turn.',
-          outcome: 'pending',
-          outcome_details: {
-            expected: null,
-            immediate_actual: null,
-            anchors: [],
-          },
-          expected_outcome: null,
-          metadata: {
-            pre_receipt_id: existing?.receipt?.receiptId || null,
-            post_receipt_id: _lastMizanReceipt?.receiptId || null,
-            output_ref: outputRef,
-          },
-          source: 'opencode-stop-gate-runtime',
-          model_used: process.env.OPENCODE_MODEL || 'opencode',
-        });
-      } catch (e) {
-        process.stderr.write(`[harness-stop] decision/log unavailable: ${e.message}\n`);
-      }
+  return {
+    'session.idle': async (event) => {
+      process.stderr.write('[harness-stop] session idle heartbeat — text-emission gate registered\n');
+    },
+
+    event: async ({ event }) => {
+      if (event.type !== 'message.updated') return;
+      const parts = event.properties?.parts || [];
+      const text = parts
+        .filter(p => p.type === 'text')
+        .map(p => p.text || '')
+        .join('\n');
+      await validateText(text, { event });
+    },
+
+    'experimental.text.complete': async (input, output) => {
+      await validateText(String(output?.text || ''), input || {});
     },
   };
 }

package/opencode-plugins/harness-stop/lib/skill-autoload-gate.js

@@ -1 +1,14 @@
-export * from '../../../../../ops/claude-hooks/lib/skill-autoload-gate.mjs';
+import { existsSync, mkdirSync, readdirSync, readFileSync, writeFileSync } from 'node:fs';
+import { join } from 'node:path';
+import { tmpdir } from 'node:os';
+const RECEIPT_ROOT = process.env.ARIA_SKILL_RECEIPT_DIR || join(tmpdir(), 'aria-skill-receipts');
+const ALIASES = new Map([['deploy', 'aria-harness-deploy'], ['output', 'aria-harness-output-discipline'], ['repo', 'aria-repo-doctrine'], ['forge', 'aria-forge-guardrails']]);
+const RX = { deploy: /deploy-service\.sh|kubectl\s+(?:apply|set|rollout|delete|scale)|helm\s+upgrade|terraform\s+apply|docker\s+push/i, mutationTool: /^(?:edit|write|notebookedit|patch|apply_patch)$/i, mutation: /apply_patch|write file|edit file|modify|delete file|migration|handler|route|runtime|hook|plugin|\btest\b|smoke script/i, strip: /remove|delete|strip|drop|omit|disable|bypass|skip|stub|mock|fake|placeholder|temporary|quick scaffold|band-aid/i, readiness: /production-ready|ready for production|works in general|general readiness|client packages?|npm packages?|SDKs?|runtimes?|harnesses?|release-ready|ship-ready/i, narrow: /single flow|one flow|narrow e2e|covered flow|specific path|widget flow/i, completion: /done|complete|completed|ready|verified|fixed|shipped|implemented|production-ready/i, badProof: /but|except|caveat|remaining|not yet|still|separate|later|blocked|skipped|unresolved|follow-up|failed|failing|error|red|not run|could not verify|untested|no proof|missing proof|without proof/i, advisory: /non-blocking|warning only|warn only|advisory|fall through|falls through|fail open|soft fail|logged and continue|quality gate warning/i, success: /(?:verified|passed|success|successful|green|ok)\s*[:=\-].{0,120}(?:npm|node|playwright|jest|vitest|build|test|lint|typecheck|curl|kubectl|self-test|e2e|probe|smoke)|(?:npm|node|playwright|jest|vitest|build|test|lint|typecheck|curl|kubectl).{0,120}(?:passed|success|successful|green|exit\s*0)/i, resubmit: /re-?submission|resubmit/i, rewrite: /re-?write|rewrite|fix/i, retest: /re-?test|retest|rerun/i, aria: /ARIA console|Aria console|\/chat|aria-pipeline-mcp|aria_chat|escalat(?:e|ion).{0,80}ARIA/i };
+function normalizeSkillName(skill) { return ALIASES.get(String(skill || '').trim()) || String(skill || '').trim(); }
+function sessionDir(sessionId) { return join(RECEIPT_ROOT, encodeURIComponent(String(sessionId || 'unknown'))); }
+function readReceiptSkills(sessionId) { const dir = sessionDir(sessionId); if (!existsSync(dir)) return new Set(); const skills = new Set(); for (const name of readdirSync(dir)) { if (!name.endsWith('.json')) continue; try { const receipt = JSON.parse(readFileSync(join(dir, name), 'utf8')); if (receipt?.skill) skills.add(normalizeSkillName(receipt.skill)); } catch {} } return skills; }
+function readInlineSkills(text) { const skills = new Set(); const value = String(text || ''); for (const match of value.matchAll(/<skill_content\s+name=["']([^"']+)["']/gi)) skills.add(normalizeSkillName(match[1])); return skills; }
+export function recordSkillLoaded({ sessionId, skill, surface = 'unknown', metadata = {} } = {}) { const normalized = normalizeSkillName(skill); if (!normalized) throw new Error('recordSkillLoaded requires a skill name'); const dir = sessionDir(sessionId); mkdirSync(dir, { recursive: true }); const receipt = { skill: normalized, surface, metadata, recordedAt: new Date().toISOString() }; writeFileSync(join(dir, `${encodeURIComponent(normalized)}.json`), `${JSON.stringify(receipt, null, 2)}\n`); return receipt; }
+export function classifyRequiredSkills({ text = '', action = '', toolName = '', filePath = '', isDeploy = false, isMutation = false, isOutputCloseout = false } = {}) { const combined = [text, action, toolName, filePath].filter(Boolean).join('\n'); const required = new Set(); const reasons = []; const recoveryMissing = []; if (isDeploy || RX.deploy.test(combined)) { required.add('aria-harness-deploy'); required.add('aria-forge-guardrails'); reasons.push('deploy/shared-infrastructure action requires fail-closed deploy and forge guardrails'); } if (isMutation || RX.mutationTool.test(toolName)) { required.add('aria-repo-doctrine'); reasons.push('repository/runtime mutation requires repo doctrine'); } if (RX.strip.test(combined)) { required.add('aria-harness-no-stripping'); reasons.push('strip/remove/bypass language requires no-stripping gate'); } if (isOutputCloseout && RX.completion.test(combined)) { required.add('aria-harness-output-discipline'); reasons.push('owner-facing completion/readiness claim requires output discipline'); if (!RX.success.test(combined)) recoveryMissing.push('successful proof from a concrete command/probe'); } if (RX.readiness.test(combined)) { required.add('architecture-decision'); required.add('testing-strategy'); required.add('aria-forge-guardrails'); required.add('aria-harness-output-discipline'); reasons.push('broad production/package/SDK/runtime readiness claim requires architecture, testing, and forge guardrails'); } if (RX.readiness.test(combined) && RX.narrow.test(combined)) { required.add('testing-strategy'); required.add('aria-forge-guardrails'); reasons.push('narrow e2e proof cannot support broad readiness claim without readiness-matrix discipline'); } if (RX.completion.test(combined) && RX.badProof.test(combined)) { required.add('aria-harness-output-discipline'); required.add('aria-forge-guardrails'); reasons.push('completion claim with unresolved or failed proof requires recovery cycle'); if (!RX.resubmit.test(combined)) recoveryMissing.push('re-submission'); if (!RX.rewrite.test(combined)) recoveryMissing.push('re-write'); if (!RX.retest.test(combined)) recoveryMissing.push('re-test'); if (!RX.aria.test(combined)) recoveryMissing.push('ARIA console escalation'); } if (RX.advisory.test(combined)) { required.add('aria-forge-guardrails'); required.add('aria-harness-output-discipline'); reasons.push('advisory/fail-open gate language requires fail-closed hardening discipline'); } return { requiredSkills: [...required].sort(), reasons, recoveryMissing }; }
+export function evaluateSkillGate(options = {}) { const classified = classifyRequiredSkills(options); const text = [options.text, options.action].filter(Boolean).join('\n'); const loaded = new Set([...readReceiptSkills(options.sessionId), ...readInlineSkills(text)]); const missingSkills = classified.requiredSkills.filter((skill) => !loaded.has(skill)); const recoveryMissing = classified.recoveryMissing || []; return { ok: missingSkills.length === 0 && recoveryMissing.length === 0, surface: options.surface || 'unknown', sessionId: options.sessionId || 'unknown', requiredSkills: classified.requiredSkills, loadedSkills: [...loaded].sort(), missingSkills, recoveryMissing, reasons: classified.reasons, autoLoadAvailable: options.autoLoadAvailable === true }; }
+export function formatSkillGateBlock(result = {}) { const missing = Array.isArray(result.missingSkills) ? result.missingSkills : []; const recovery = Array.isArray(result.recoveryMissing) ? result.recoveryMissing : []; const reasons = Array.isArray(result.reasons) ? result.reasons : []; return ['=== ARIA SKILL AUTOLOAD GATE BLOCK ===', `surface: ${result.surface || 'unknown'}`, `missing_skills: ${missing.length ? missing.join(', ') : '(none)'}`, `missing_recovery_cycle: ${recovery.length ? recovery.join(', ') : '(none)'}`, `required_skills: ${(result.requiredSkills || []).join(', ') || '(none)'}`, reasons.length ? `reasons: ${reasons.join(' | ')}` : 'reasons: no classifier reason recorded', 'counter_action: re-submit, re-write, re-test, and escalate through ARIA console until successful proof exists. Do not downgrade this to an advisory warning.'].join('\n'); }

package/package.json

@@ -1,9 +1,9 @@
 {
   "name": "@aria_asi/cli",
-  "version": "0.2.33",
-  "description": "Aria Smart CLI \u2014 the world's first harness-powered terminal companion",
+  "version": "0.2.35",
+  "description": "Aria Smart CLI — the world's first harness-powered terminal companion",
   "bin": {
-    "aria": "./bin/aria.js"
+    "aria": "bin/aria.js"
   },
   "main": "./dist/aria-connector/src/index.js",
   "types": "./dist/aria-connector/src/index.d.ts",
@@ -18,7 +18,8 @@
   },
   "scripts": {
     "build": "tsc && node scripts/bundle-sdk.mjs",
-    "check:hooks": "node scripts/validate-hook-contracts.mjs",
+    "check:hooks": "node scripts/validate-hook-contracts.mjs && node scripts/self-test-harness-gates.mjs",
+    "self-test:gates": "node scripts/self-test-harness-gates.mjs",
     "check:skills": "node scripts/validate-skill-prompts.mjs",
     "prepare": "npm run build",
     "dev": "tsc --watch",
@@ -50,5 +51,11 @@
     "node": ">=20.0.0"
   },
   "license": "UNLICENSED",
-  "private": false
+  "private": false,
+  "keywords": [],
+  "author": "",
+  "bugs": {
+    "url": "https://github.com/REI-Nationwide/cowork-sandbox/issues"
+  },
+  "homepage": "https://github.com/REI-Nationwide/cowork-sandbox#readme"
 }

package/runtime-src/codex-bridge.mjs

@@ -6,7 +6,7 @@ import { homedir } from 'node:os';
 import { delimiter, dirname, resolve } from 'node:path';
 import { spawn, spawnSync } from 'node:child_process';
 import { createRequire } from 'node:module';
-import { evaluateSkillGate, formatSkillGateBlock } from '../../../ops/claude-hooks/lib/skill-autoload-gate.mjs';
+import { evaluateSkillGate, formatSkillGateBlock } from './hooks/lib/skill-autoload-gate.mjs';
 
 const require = createRequire(import.meta.url);
 const { WebSocketServer, WebSocket } = require('ws');