@exaudeus/workrail 3.19.0 → 3.20.0

package/dist/console/index.html

@@ -4,8 +4,8 @@
     <meta charset="UTF-8" />
     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
     <title>WorkRail Console</title>
-    <script type="module" crossorigin src="/console/assets/index-QhCFuxQV.js"></script>
-    <link rel="stylesheet" crossorigin href="/console/assets/index-ibLhWBmX.css">
+    <script type="module" crossorigin src="/console/assets/index-De5T1Dpm.js"></script>
+    <link rel="stylesheet" crossorigin href="/console/assets/index-B8NW82uK.css">
   </head>
   <body>
     <div id="root"></div>

package/dist/manifest.json

@@ -369,16 +369,16 @@
       "sha256": "5fe866e54f796975dec5d8ba9983aefd86074db212d3fccd64eed04bc9f0b3da",
       "bytes": 8011
     },
-    "console/assets/index-QhCFuxQV.js": {
-      "sha256": "0096a86267fdf969abc3e3976ca44b3d3447271c7394345c8d6c27c084e6412c",
-      "bytes": 719937
+    "console/assets/index-B8NW82uK.css": {
+      "sha256": "8588d6702df899c724f5abce3e45dd4a6f7ee06bf2b280cb3909f9cabcc0a32c",
+      "bytes": 58801
     },
-    "console/assets/index-ibLhWBmX.css": {
-      "sha256": "346e55635d4d3dc2836dae83edb8563872721bf4b0e7e1ecf47fb9603424c206",
-      "bytes": 58826
+    "console/assets/index-De5T1Dpm.js": {
+      "sha256": "bad5fc857501a1253c800b6863e95cc854f3c8a52fea80959306ba32e15fd907",
+      "bytes": 721395
     },
     "console/index.html": {
-      "sha256": "4232baa5128b860125a649d8e135da858f07290bbb9da04861945649b53ac85d",
+      "sha256": "3165437d9c2abc907ab1333dde87b0064e7c8fba62c3ffd2567e8bc02e75329b",
       "bytes": 417
     },
     "core/error-handler.d.ts": {
@@ -734,12 +734,12 @@
       "bytes": 2785
     },
     "mcp/handlers/shared/request-workflow-reader.d.ts": {
-      "sha256": "342f82d59945aa043e7edf5ae0566d7790cdeec223932c59e86c38fc6322155e",
-      "bytes": 1919
+      "sha256": "94eae7516f1ca0aef0c9995d0fd41fc206abb001970cebcac35b912624341d0a",
+      "bytes": 2103
     },
     "mcp/handlers/shared/request-workflow-reader.js": {
-      "sha256": "a32e240ffc984018b56c6e074c894e079d8511dd2fb7a4f36898e32e2b0e62e6",
-      "bytes": 10418
+      "sha256": "cfd2946ec9deb52c21611b21fc07859f35edaaf2c85d15743833380352dedf6f",
+      "bytes": 11702
     },
     "mcp/handlers/shared/with-timeout.d.ts": {
       "sha256": "31ca3db008cb5cd439e0d1132bc4b29be0900c403c452931e3a24a50e45beb54",
@@ -754,8 +754,16 @@
       "bytes": 1772
     },
     "mcp/handlers/shared/workflow-source-visibility.js": {
-      "sha256": "46a1df4b1effa2c16da9d4beaff8081765a04700a4defc23a8a45373f0f7091a",
-      "bytes": 4600
+      "sha256": "59f5b6f50a46a708c19649ab6dc0c90f21d9d4f151b52f454dc38a2dad344717",
+      "bytes": 4526
+    },
+    "mcp/handlers/shared/workspace-path-utils.d.ts": {
+      "sha256": "c660cf0605f3d23c2826d69c5ba47aea4866ab929a94cb5cdde882cedde047ab",
+      "bytes": 169
+    },
+    "mcp/handlers/shared/workspace-path-utils.js": {
+      "sha256": "c375c508fb830dc87b930eaeb99a1443b075c2d3f4f323875c3fb56107f82a05",
+      "bytes": 1261
     },
     "mcp/handlers/v2-advance-core.d.ts": {
       "sha256": "0a07ea15caf7b0a3123d3b0b44c2b85392d090dd140bf82370fd0e84d1aa5b0e",
@@ -1094,20 +1102,20 @@
       "bytes": 3534
     },
     "mcp/transports/shutdown-hooks.d.ts": {
-      "sha256": "956a334d06ba7b967992e1ebfef67e2bac1e40cf3c1c151684d5aa7a3166f64e",
-      "bytes": 334
+      "sha256": "0a0e638aa9b1ca714e9c9efe9bcb9b147ef802f05c71ba6be481d59d3c45c800",
+      "bytes": 502
     },
     "mcp/transports/shutdown-hooks.js": {
-      "sha256": "5f5e1411db09d05588731bbaa08fc42db48a9023e87043e95aa01cd8ad426191",
-      "bytes": 1937
+      "sha256": "1bbf5e8203adc7172cb8a3a4cf987ded4e747a993cc6c9346651ff5f192b1abb",
+      "bytes": 2582
     },
     "mcp/transports/stdio-entry.d.ts": {
       "sha256": "4ced3c9e00ef67555781dea74315290eea8a9dbffd38155bc00c3fb07b0c1794",
       "bytes": 59
     },
     "mcp/transports/stdio-entry.js": {
-      "sha256": "aa2f863ee779a0f31c729e54d929dfd5cf416424f63044f8d0eda956bdcc9b9e",
-      "bytes": 3702
+      "sha256": "d934d0a7bb5a5d4331ce424aa754c063dac0a2f914d6b9d5f75489740d325b0a",
+      "bytes": 4039
     },
     "mcp/transports/transport-mode.d.ts": {
       "sha256": "1c59128ab0174bd2a113fff17521e6339ca367f2b8980c2f2c164ec393c10518",
@@ -2270,12 +2278,12 @@
       "bytes": 7393
     },
     "v2/infra/local/session-lock/index.d.ts": {
-      "sha256": "3b381b372da6039df678dfddf377600547e1067cf921cc1b4cdf578e5df0a1bb",
-      "bytes": 853
+      "sha256": "e180a4202587af03e09dc82e2d8557ee2d3139ac6c5f1edee9a277a7032b9986",
+      "bytes": 883
     },
     "v2/infra/local/session-lock/index.js": {
-      "sha256": "3ad09372cb30d959016cc2a69e91de7c7f3a251c22048a917d9862fd0d8a77f9",
-      "bytes": 1700
+      "sha256": "a1cd3eaea35faa014922fe1502a9e029a58528421586c67ab44dc7df0183a0fe",
+      "bytes": 2793
     },
     "v2/infra/local/session-store/index.d.ts": {
       "sha256": "33b18ccce92374f8e444a61c63238634087d222f09e834b49dd2ea38d2be3796",

package/dist/mcp/handlers/shared/request-workflow-reader.d.ts

@@ -31,6 +31,8 @@ export interface WorkflowReaderForRequestResult {
     readonly stalePaths: readonly string[];
     readonly managedSourceRecords: readonly ManagedSourceRecordV2[];
     readonly staleManagedRecords: readonly ManagedSourceRecordV2[];
+    readonly excludedByScope: readonly string[];
     readonly managedStoreError?: string;
 }
+export declare function filterRememberedRootsForWorkspace(allRoots: readonly string[], workspace: string): Promise<readonly string[]>;
 export declare function createWorkflowReaderForRequest(options: RequestWorkflowReaderOptions): Promise<WorkflowReaderForRequestResult>;

package/dist/mcp/handlers/shared/request-workflow-reader.js

@@ -8,6 +8,7 @@ exports.hasRequestWorkspaceSignal = hasRequestWorkspaceSignal;
 exports.resolveRequestWorkspaceDirectory = resolveRequestWorkspaceDirectory;
 exports.toProjectWorkflowDirectory = toProjectWorkflowDirectory;
 exports.discoverRootedWorkflowDirectories = discoverRootedWorkflowDirectories;
+exports.filterRememberedRootsForWorkspace = filterRememberedRootsForWorkspace;
 exports.createWorkflowReaderForRequest = createWorkflowReaderForRequest;
 const promises_1 = __importDefault(require("fs/promises"));
 const path_1 = __importDefault(require("path"));
@@ -15,6 +16,7 @@ const url_1 = require("url");
 const enhanced_multi_source_workflow_storage_js_1 = require("../../../infrastructure/storage/enhanced-multi-source-workflow-storage.js");
 const schema_validating_workflow_storage_js_1 = require("../../../infrastructure/storage/schema-validating-workflow-storage.js");
 const with_timeout_js_1 = require("./with-timeout.js");
+const workspace_path_utils_js_1 = require("./workspace-path-utils.js");
 const SKIP_DIRS = new Set([
     '.git', 'node_modules',
     'build', 'dist', 'out', 'target',
@@ -99,10 +101,26 @@ async function _doWalk(cacheKey, roots, now) {
     walkCache.set(cacheKey, { result, expiresAt: now + WALK_CACHE_TTL_MS });
     return result;
 }
+async function filterRememberedRootsForWorkspace(allRoots, workspace) {
+    const ancestorRoots = allRoots.filter((r) => (0, workspace_path_utils_js_1.isWorkspaceAncestor)(r, workspace));
+    const nonAncestorRoots = allRoots.filter((r) => !(0, workspace_path_utils_js_1.isWorkspaceAncestor)(r, workspace));
+    let siblingRoots = [];
+    if (nonAncestorRoots.length > 0) {
+        const workspaceCommonDir = await (0, workspace_path_utils_js_1.getGitCommonDir)(workspace);
+        if (workspaceCommonDir !== null) {
+            const commonDirResults = await Promise.all(nonAncestorRoots.map((r) => (0, workspace_path_utils_js_1.getGitCommonDir)(r)));
+            siblingRoots = nonAncestorRoots.filter((_, i) => commonDirResults[i] === workspaceCommonDir);
+        }
+    }
+    return [...ancestorRoots, ...siblingRoots];
+}
 async function createWorkflowReaderForRequest(options) {
     const workspaceDirectory = resolveRequestWorkspaceDirectory(options);
     const projectWorkflowDirectory = toProjectWorkflowDirectory(workspaceDirectory);
-    const rememberedRoots = await listRememberedRoots(options.rememberedRootsStore);
+    const allRememberedRoots = await listRememberedRoots(options.rememberedRootsStore);
+    const resolvedWorkspace = path_1.default.resolve(workspaceDirectory);
+    const rememberedRoots = await filterRememberedRootsForWorkspace(allRememberedRoots, resolvedWorkspace);
+    const excludedByScope = allRememberedRoots.filter((root) => !rememberedRoots.includes(root));
     let discoveryResult;
     try {
         discoveryResult = await (0, with_timeout_js_1.withTimeout)(discoverRootedWorkflowDirectories(rememberedRoots), DISCOVERY_TIMEOUT_MS, 'workflow_root_discovery');
@@ -159,6 +177,7 @@ async function createWorkflowReaderForRequest(options) {
         stalePaths: allStalePaths,
         managedSourceRecords: activeManagedRecords,
         staleManagedRecords,
+        excludedByScope,
         ...(managedStoreError !== undefined ? { managedStoreError } : {}),
     };
 }

package/dist/mcp/handlers/shared/workflow-source-visibility.js

@@ -8,6 +8,7 @@ exports.detectWorkflowMigrationGuidance = detectWorkflowMigrationGuidance;
 exports.isCompositeWorkflowReader = isCompositeWorkflowReader;
 exports.deriveGroupLabel = deriveGroupLabel;
 const path_1 = __importDefault(require("path"));
+const workspace_path_utils_js_1 = require("./workspace-path-utils.js");
 function toWorkflowVisibility(workflow, rememberedRoots, options = {}) {
     const source = {
         kind: workflow.source.kind,
@@ -70,10 +71,7 @@ function deriveRootedSharingContext(workflow, rememberedRoots) {
     const sourcePath = path_1.default.resolve(workflow.source.directoryPath);
     for (const record of rememberedRoots) {
         const rootPath = path_1.default.resolve(record.path);
-        const relative = path_1.default.relative(rootPath, sourcePath);
-        const isUnderRoot = relative.length === 0 ||
-            (!relative.startsWith('..') && !path_1.default.isAbsolute(relative));
-        if (!isUnderRoot)
+        if (!(0, workspace_path_utils_js_1.isWorkspaceAncestor)(rootPath, sourcePath))
             continue;
         return {
             kind: 'remembered_root',

package/dist/mcp/handlers/shared/workspace-path-utils.d.ts

@@ -0,0 +1,2 @@
+export declare function isWorkspaceAncestor(root: string, workspace: string): boolean;
+export declare function getGitCommonDir(dirPath: string): Promise<string | null>;

package/dist/mcp/handlers/shared/workspace-path-utils.js

@@ -0,0 +1,29 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.isWorkspaceAncestor = isWorkspaceAncestor;
+exports.getGitCommonDir = getGitCommonDir;
+const promises_1 = __importDefault(require("fs/promises"));
+const path_1 = __importDefault(require("path"));
+const child_process_1 = require("child_process");
+const util_1 = require("util");
+const execFileAsync = (0, util_1.promisify)(child_process_1.execFile);
+function isWorkspaceAncestor(root, workspace) {
+    const rel = path_1.default.relative(path_1.default.resolve(root), path_1.default.resolve(workspace));
+    return rel.length === 0 || (!rel.startsWith('..') && !path_1.default.isAbsolute(rel));
+}
+async function getGitCommonDir(dirPath) {
+    try {
+        const { stdout } = await execFileAsync('git', ['-C', dirPath, 'rev-parse', '--git-common-dir'], { encoding: 'utf-8', timeout: 500 });
+        const raw = stdout.trim();
+        if (!raw)
+            return null;
+        const resolved = path_1.default.resolve(dirPath, raw);
+        return await promises_1.default.realpath(resolved);
+    }
+    catch {
+        return null;
+    }
+}

package/dist/mcp/transports/shutdown-hooks.d.ts

@@ -2,6 +2,10 @@ export interface ShutdownHookOptions {
     readonly onBeforeTerminate: () => Promise<void>;
 }
 export declare function wireShutdownHooks(opts: ShutdownHookOptions): void;
+export interface StdoutShutdownOptions {
+    readonly stdout?: NodeJS.WritableStream;
+}
+export declare function wireStdoutShutdown(opts?: StdoutShutdownOptions): void;
 export interface StdinShutdownOptions {
     readonly stdin?: NodeJS.ReadableStream;
 }

package/dist/mcp/transports/shutdown-hooks.js

@@ -1,6 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.wireShutdownHooks = wireShutdownHooks;
+exports.wireStdoutShutdown = wireStdoutShutdown;
 exports.wireStdinShutdown = wireStdinShutdown;
 const container_js_1 = require("../../di/container.js");
 const tokens_js_1 = require("../../di/tokens.js");
@@ -29,6 +30,20 @@ function wireShutdownHooks(opts) {
         })();
     });
 }
+function wireStdoutShutdown(opts) {
+    const shutdownEvents = container_js_1.container.resolve(tokens_js_1.DI.Runtime.ShutdownEvents);
+    const stdout = opts?.stdout ?? process.stdout;
+    stdout.on('error', (err) => {
+        const code = err.code;
+        if (code === 'EPIPE' || code === 'ERR_STREAM_DESTROYED') {
+            console.error('[MCP] stdout pipe broken (client disconnected), initiating shutdown');
+        }
+        else {
+            console.error('[MCP] stdout error:', err);
+        }
+        shutdownEvents.emit({ kind: 'shutdown_requested', signal: 'SIGHUP' });
+    });
+}
 function wireStdinShutdown(opts) {
     const shutdownEvents = container_js_1.container.resolve(tokens_js_1.DI.Runtime.ShutdownEvents);
     const stdin = opts?.stdin ?? process.stdin;

package/dist/mcp/transports/stdio-entry.js

@@ -46,6 +46,13 @@ async function fetchInitialRootsWithTimeout(server) {
     ]);
 }
 async function startStdioServer() {
+    process.on('uncaughtException', (err) => {
+        console.error('[MCP] Uncaught exception -- process will exit:', err);
+    });
+    process.on('unhandledRejection', (reason) => {
+        console.error('[MCP] Unhandled promise rejection:', reason);
+        process.exit(1);
+    });
     const { server, ctx, rootsManager } = await (0, server_js_1.composeServer)();
     const { StdioServerTransport } = await Promise.resolve().then(() => __importStar(require('@modelcontextprotocol/sdk/server/stdio.js')));
     const { RootsListChangedNotificationSchema, } = await Promise.resolve().then(() => __importStar(require('@modelcontextprotocol/sdk/types.js')));
@@ -59,6 +66,7 @@ async function startStdioServer() {
             console.error('[Roots] Failed to fetch updated roots after change notification');
         }
     });
+    (0, shutdown_hooks_js_1.wireStdoutShutdown)();
     const transport = new StdioServerTransport();
     await server.connect(transport);
     console.error('[Transport] WorkRail MCP Server running on stdio');

package/dist/v2/infra/local/session-lock/index.d.ts

@@ -9,6 +9,7 @@ export declare class LocalSessionLockV2 implements SessionLockPortV2 {
     private readonly fs;
     private readonly clock;
     constructor(dataDir: DataDirPortV2, fs: FileSystemPortV2, clock: TimeClockPortV2);
+    private clearIfStaleLock;
     acquire(sessionId: SessionId): ResultAsync<SessionLockHandleV2, SessionLockError>;
     release(handle: SessionLockHandleV2): ResultAsync<void, SessionLockError>;
 }

package/dist/v2/infra/local/session-lock/index.js

@@ -1,12 +1,42 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.LocalSessionLockV2 = void 0;
+const neverthrow_1 = require("neverthrow");
 class LocalSessionLockV2 {
     constructor(dataDir, fs, clock) {
         this.dataDir = dataDir;
         this.fs = fs;
         this.clock = clock;
     }
+    clearIfStaleLock(lockPath) {
+        return this.fs
+            .readFileUtf8(lockPath)
+            .map((content) => {
+            try {
+                const data = JSON.parse(content);
+                const pid = typeof data.pid === 'number' ? data.pid : null;
+                if (pid === null)
+                    return false;
+                try {
+                    process.kill(pid, 0);
+                    return false;
+                }
+                catch (e) {
+                    return e.code === 'ESRCH';
+                }
+            }
+            catch {
+                return false;
+            }
+        })
+            .andThen((isStale) => {
+            if (!isStale)
+                return (0, neverthrow_1.okAsync)(undefined);
+            console.error(`[SessionLock] Removing stale lock at ${lockPath} (process no longer alive)`);
+            return this.fs.unlink(lockPath);
+        })
+            .orElse(() => (0, neverthrow_1.okAsync)(undefined));
+    }
     acquire(sessionId) {
         const sessionDir = this.dataDir.sessionDir(sessionId);
         const lockPath = this.dataDir.sessionLockPath(sessionId);
@@ -23,6 +53,7 @@ class LocalSessionLockV2 {
         };
         return this.fs
             .mkdirp(sessionDir)
+            .andThen(() => this.clearIfStaleLock(lockPath))
             .andThen(() => this.fs.openExclusive(lockPath, new TextEncoder().encode(JSON.stringify({
             v: 1,
             sessionId,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@exaudeus/workrail",
-  "version": "3.19.0",
+  "version": "3.20.0",
   "description": "Step-by-step workflow enforcement for AI agents via MCP",
   "license": "MIT",
   "repository": {
@@ -47,6 +47,8 @@
     "validate:workflow-discovery": "node scripts/validate-workflow-discovery.js",
     "precommit": "npm run validate:registry",
     "preinstall": "node -e \"const v=parseInt(process.versions.node.split('.')[0],10); if(v<20){console.error('WorkRail requires Node.js >=20. Current: '+process.versions.node+'\\nPlease upgrade: https://nodejs.org/'); process.exit(1);}\"",
+    "dev:mcp": "pkill -f 'dist/mcp-server.js' 2>/dev/null; sleep 0.5; WORKRAIL_TRANSPORT=http WORKRAIL_ENABLE_SESSION_TOOLS=true node dist/mcp-server.js",
+    "dev:mcp:watch": "WORKRAIL_TRANSPORT=http WORKRAIL_ENABLE_SESSION_TOOLS=true nodemon --watch dist --ext js --delay 2 --exec 'node dist/mcp-server.js'",
     "web:dev": "npm run build && WORKRAIL_ENABLE_SESSION_TOOLS=true node dist/mcp-server.js",
     "web:ci": "WORKRAIL_ENABLE_SESSION_TOOLS=true node dist/mcp-server.js",
     "web:typecheck": "tsc -p tsconfig.web.json",
@@ -113,17 +115,20 @@
     "@semantic-release/exec": "^7.1.0",
     "@semantic-release/git": "^10.0.1",
     "@semantic-release/github": "^12.0.2",
+    "@testing-library/react": "^16.3.2",
+    "@testing-library/user-event": "^14.6.1",
     "@types/cors": "^2.8.19",
     "@types/express": "^5.0.3",
     "@types/node": "^20.19.9",
     "@types/semver": "^7.7.0",
     "@vitest/ui": "^3.2.4",
     "conventional-changelog-conventionalcommits": "^9.1.0",
-    "fast-check": "^3.15.0",
+    "fast-check": "^4.6.0",
     "happy-dom": "^20.0.11",
-    "jsdom": "^27.0.0",
+    "jsdom": "^29.0.2",
     "lit": "^3.3.1",
     "node-fetch": "^3.3.2",
+    "nodemon": "^3.0.0",
     "semantic-release": "^25.0.3",
     "ts-morph": "^27.0.2",
     "typescript": "^5.9.3",

package/workflows/workflow-for-workflows.json

@@ -170,12 +170,11 @@
           "State what result the authored workflow should reliably produce for its user.",
           "List the criteria that would make the workflow feel genuinely satisfying in practice.",
           "Name the biggest likely failure mode and the most dangerous false-confidence mode.",
-          "State what would make the workflow technically correct but still disappointing.",
-          "Build a success-criteria-to-mechanism map: for each item in userSatisfactionCriteria, name the specific step(s) that enforce it and the enforcement mechanism (gate, self-audit, second pass, example contrast, rubric). Any criterion with no named mechanism is a gap -- either add a mechanism to the planned architecture or flag it as a known weakness to address in Phase 3."
+          "State what would make the workflow technically correct but still disappointing."
         ],
         "outputRequired": {
-          "notesMarkdown": "Effectiveness target, satisfaction criteria, failure modes, false-confidence risks, and the success-criteria-to-mechanism map with any gaps identified.",
-          "context": "Capture effectivenessTarget, userSatisfactionCriteria, primaryFailureMode, dangerousFalseConfidenceModes, likelyWeakOutcomeModes, trustRisk, and successCriteriaToMechanismMap."
+          "notesMarkdown": "Effectiveness target, satisfaction criteria, failure modes, and false-confidence risks.",
+          "context": "Capture effectivenessTarget, userSatisfactionCriteria, primaryFailureMode, dangerousFalseConfidenceModes, likelyWeakOutcomeModes, and trustRisk."
         },
         "verify": [
           "The authored workflow now has a clear outcome bar, not just an authoring bar."
@@ -493,12 +492,11 @@
               "Reviewer-family or validator output is evidence, not authority."
             ],
             "procedure": [
-              "Score these dimensions 0-2 with one sentence of evidence each: `voiceClarity`, `ceremonyLevel`, `loopSoundness`, `delegationBoundedness`, `artifactClarity`, `taskEffectiveness`, `falseConfidenceResistance`, `stateMinimality`, `coverageSharpness`, `domainFit`, `handoffUtility`, `rigorAdaptability` (0 = adapts to complexity/rigor levels, 2 = single-weight), `enforcementStrength` (0 = behavioral rules have structural teeth; 2 = important rules are prose-only with no enforcement mechanism), `outputQualityMechanisms` (0 = each key generative step has a concrete enforcement mechanism for output quality such as a self-audit, second pass, example contrast, or rubric; 1 = some generative steps rely only on metaGuidance or prose rules; 2 = generative steps have no quality enforcement beyond prompt wording), and `modernizationDiscipline` (0 = every valueInventory item preserved, equivalently replaced with justification, or dropped with justification; 2 = items missing or replaced with weaker versions without justification  -- score 0 for create mode).",
-              "For each generative step (any step whose output is judged on content quality rather than structural correctness), run an adversarial trace: what does a lazy or average agent do here, and does the prompt prevent it? A step where the lazy path produces a plausible-looking but shallow result scores poorly on `outputQualityMechanisms`. Check each such step against the successCriteriaToMechanismMap from Phase 1 -- any criterion whose mechanism lives in this step must actually be enforced here.",
+              "Score these dimensions 0-2 with one sentence of evidence each: `voiceClarity`, `ceremonyLevel`, `loopSoundness`, `delegationBoundedness`, `artifactClarity`, `taskEffectiveness`, `falseConfidenceResistance`, `stateMinimality`, `coverageSharpness`, `domainFit`, `handoffUtility`, `rigorAdaptability` (0 = adapts to complexity/rigor levels, 2 = single-weight), `enforcementStrength` (0 = behavioral rules have structural teeth; 2 = important rules are prose-only with no enforcement mechanism), and `modernizationDiscipline` (0 = every valueInventory item preserved, equivalently replaced with justification, or dropped with justification; 2 = items missing or replaced with weaker versions without justification  -- score 0 for create mode).",
               "If delegation is available and rigor is THOROUGH, run an adversarial review bundle with these lenses: `engine_native_reviewer`, `task_effectiveness_reviewer`, `state_economy_reviewer`, `false_confidence_reviewer`, `domain_fit_reviewer`, and `maintainer_reviewer`.",
               "Synthesize what the review confirmed, what it challenged, and what changed your mind.",
               "When scoring `falseConfidenceResistance`, explicitly check: do the workflow's quality gates protect edge cases and degraded paths, or only the happy path? A workflow that passes its own checks on ideal input but fails silently on minimal or unexpected input scores 2.",
-              "Set hard-gate failures whenever any of these are materially weak: `taskEffectiveness`, `falseConfidenceResistance`, `stateMinimality`, `coverageSharpness`, `domainFit`, `handoffUtility`, or `outputQualityMechanisms`.",
+              "Set hard-gate failures whenever any of these are materially weak: `taskEffectiveness`, `falseConfidenceResistance`, `stateMinimality`, `coverageSharpness`, `domainFit`, or `handoffUtility`.",
               "Set `authoringIntegrityPassed = true` only if structural and authoring-quality dimensions are all acceptable. Set `outcomeEffectivenessPassed = true` only if the workflow is likely to achieve satisfying results for the user."
             ],
             "outputRequired": {
@@ -550,7 +548,6 @@
             { "type": "contains", "value": "handoffUtility", "message": "Review must score handoffUtility" },
             { "type": "contains", "value": "rigorAdaptability", "message": "Review must score rigorAdaptability" },
             { "type": "contains", "value": "enforcementStrength", "message": "Review must score enforcementStrength" },
-            { "type": "contains", "value": "outputQualityMechanisms", "message": "Review must score outputQualityMechanisms" },
             {
               "type": "contains",
               "value": "modernizationDiscipline",
@@ -668,31 +665,6 @@
       },
       "notesOptional": true,
       "requireConfirmation": false
-    },
-    {
-      "id": "phase-8-process-retrospective",
-      "title": "Phase 8: Process Retrospective",
-      "promptBlocks": {
-        "goal": "While this run is still fresh, identify gaps in the workflow-for-workflows process itself -- not in the authored workflow.",
-        "constraints": [
-          "This step is about the authoring process, not the authored workflow. Do not summarize the workflow again.",
-          "Be honest. If the process caught everything, say so. If it missed something, say specifically where and why."
-        ],
-        "procedure": [
-          "Look back at the full run. Were any weaknesses in the authored workflow only identified post-hoc -- after the quality gate loop, by the user, or by a later reviewer?",
-          "For each weakness identified late: name the Phase where it should have been caught, explain why the current step failed to surface it, and propose a specific change to that step's procedure or scoring rubric that would catch it on the next run.",
-          "Check the successCriteriaToMechanismMap from Phase 1 against the final workflow: did every criterion end up with a concrete enforcement mechanism? Any criterion that is still prose-only in the final file is a gap in the Phase 1 or Phase 3 process.",
-          "If nothing was missed and the process caught all meaningful issues in-band, say so explicitly and explain what worked."
-        ],
-        "outputRequired": {
-          "notesMarkdown": "Process gaps found (or confirmed absent), where they should have been caught, and concrete proposed changes to workflow-for-workflows. This output is raw material for improving this workflow.",
-          "context": "Capture processGaps and suggestedProcessImprovements."
-        },
-        "verify": [
-          "The retrospective identifies specific step-level changes, not vague general improvements."
-        ]
-      },
-      "requireConfirmation": false
     }
   ],
   "validatedAgainstSpecVersion": 3