@figs-so/cli 0.1.16 → 0.2.1

package/README.md

@@ -7,11 +7,10 @@ Every agent you run (Claude Code, Codex, Cursor) publishes what it owns, what it
 needs from a person — into one shared view your whole team can see.
 
 > **The open standard for how AI employees report to humans.** The `.figs` format is that standard (this
-> repo). The hosted app at **[app.figs.so](https://app.figs.so)** is the easiest place to read it; you can
-> also self-host.
+> repo). The hosted app at **[app.figs.so](https://app.figs.so)** is where you read it.
 
 [![CLI on npm](https://img.shields.io/npm/v/%40figs-so%2Fcli?label=%40figs-so%2Fcli)](https://www.npmjs.com/package/@figs-so/cli)
- ·  License: **MIT** (this repo — protocol + CLI)  ·  The app: **AGPL-3.0**
+ ·  License: **MIT** (this repo — protocol + CLI)  ·  The app: **hosted** (closed source)
 
 ---
 
@@ -41,7 +40,9 @@ npx @figs-so/cli@latest push                     # publish → it appears in you
 ```
 
 That's it — your agent now shows up at **[app.figs.so](https://app.figs.so)**. No instrumentation, no
-SDK in your agent's code. From there you decide, deliberately, how much of its real work to surface.
+SDK in your agent's code. From there you decide, deliberately, how much of its real work to surface —
+and day to day the agent records itself in one stroke per event: `figs report` (a run) ·
+`figs ask` (needs a human) · `figs resolve` (close an ask). Each pushes itself.
 
 ## How it works
 
@@ -72,8 +73,11 @@ are shorthand for exactly that (always current, no version drift). Prefer a real
 | `figs login` / `logout` | device-flow browser approve / remove local token |
 | `figs workspaces [--json]` | list your workspaces (create one in the web app) |
 | `figs init [--workspace <slug>]` | generate identity + write `.figs/` (omit the flag: uses your only workspace, else lists them) |
-| `figs doctor` | validate `.figs/` against the contract before pushing |
-| `figs push` | one-way publish of `.figs/` |
+| **`figs report --result "…"`** | record a run — stamps id + timestamp, auto-captures the session trace, `--attach`es artifacts, pushes itself (`--resolves <ask-id>` closes an ask in the same stroke) |
+| **`figs ask <type> --title "…"`** | raise a self-contained ask (`blocked` · `needs-decision` · `sign-off` · `fyi`) — options/details/attachments, pushed so a human sees it |
+| **`figs resolve <ask-id>`** | close an ask — `--chosen` verbatim-checked against its options, `--withdrawn` for the un-ask |
+| `figs push` | the bare transport — the verbs call it automatically; type it yourself after hand-edits or `--no-push` |
+| `figs doctor` | validate `.figs/` against the spec without pushing — the conformance check for hand-authored or non-CLI setups |
 | `figs status [--json]` | login / workspace / agent state |
 | `figs help [<command>]` | usage (`-h`/`--help` on any command; `-v` for version) |
 

package/SPEC.md

@@ -54,7 +54,6 @@ the CLI attaches it on push. Everything else is optional and rendered when prese
 | `id` | UUID | ✓ | Identity. **Supplied from `config.json#agentId` by the CLI on push — not written in this file.** |
 | `name` | string | ✓ | Display name. |
 | `key` | string | | Display slug; derived from `name` if absent. |
-| `type` | `"agent"` \| `"human"` | | Default `"agent"`. |
 | `avatar` | `{ seed: string }` | | Seed for the generated avatar. |
 | `role` | string | | Short title, e.g. "Reconciliation Officer". |
 | `status` | string | | Free-text lifecycle, e.g. `in_dev`, `active`. |
@@ -92,8 +91,27 @@ One JSON object per line (JSON Lines). Each is something the agent did.
 | `unit` | string | | The `Unit.id` this run is about. |
 | `period` | string | | |
 | `result` | string | | One-line outcome. |
-| `status` | `"ok"` \| `"warn"` \| `"fail"` | | Default `"ok"`. |
-| `artifact` | string | | File name under `artifacts/` to attach. |
+| `status` | `"ok"` \| `"warn"` \| `"fail"` | | Default `"ok"`. **Outcome, never lifecycle** — a run is a complete fact when reported; nothing "closes" a run. |
+| `artifacts` | string[] | | File names under `artifacts/` to attach. Singular `artifact` (string) remains valid shorthand for one — readers normalize to the array (same pattern as `resolution`'s bare-string shorthand). |
+| `resolves` | string | | The ask `id` this run executes/closes (the agent did the answered/approved thing and is reporting back — see [§6.1](#61-lifecycle--two-ledgers-split-by-author)). |
+| `session` | `Session` | | Where/how this ran (see [§5.1](#51-session--runtime-metadata-optional)). Optional, self-reported. |
+
+### 5.1 `Session` — runtime metadata (optional)
+
+An optional, **self-reported** block describing the runtime session that produced a run (or raised an
+ask — see §6). Every field is optional — fill what your runtime exposes, omit the rest. This is
+*transparency, not attestation*: the values come from the runtime's own records — `figs report`
+captures them automatically; hand-authors copy what their runtime exposes. Cryptographic provenance
+remains [reserved](#reserved-not-in-v1).
+
+| Field | Type | Meaning |
+|---|---|---|
+| `runtime` | string | What ran it, e.g. `claude-code`, `codex`, `claude-managed-agents`. |
+| `model` | string | Model id, e.g. `claude-fable-5`. |
+| `sessionId` | string | The runtime's own session identifier. |
+| `startedAt` | string (ISO-8601 w/ offset) | When this job began (the record's `ts` is when it was reported). |
+| `commit` | string | The agent repo's HEAD at run time; append `+dirty` when the working tree had uncommitted changes, e.g. `1b68668+dirty`. |
+| `tokens` | `{ input?, output?, cacheRead?, cacheWrite? }` (numbers) | **Session totals at report time** — cumulative for the whole session, *not* per-job. Approximate by design (an interactive session may include unrelated chat). Readers may derive per-run deltas between consecutive runs sharing a `sessionId`. Include cache figures when available — in agentic sessions they often dominate real cost. |
 
 ## 6. `asks.jsonl` — handoffs to a human
 
@@ -103,20 +121,57 @@ primitive** — the agent reached the edge of its autonomy.
 | Field | Type | Req | Meaning |
 |---|---|:--:|---|
 | `id` | string | ✓ | Stable id (upsert key). |
-| `type` | enum | ✓ | `blocked` \| `needs-decision` \| `sign-off` \| `fyi`. `fyi` is a non-blocking heads-up (no decision needed). (`confirm-assumption` still validates but is **deprecated** — use `needs-decision` or `fyi`.) |
-| `status` | `"open"` \| `"resolved"` | | Default `"open"`. |
+| `type` | enum | ✓ | `blocked` \| `needs-decision` \| `sign-off` \| `fyi`. `fyi` is a non-blocking heads-up (no decision needed). |
+| `status` | enum | | `"open"` (default) \| `"resolved"` (the need was met) \| `"withdrawn"` (the **asker** retracted it — no longer needed, nobody acted) \| `"rejected"` (the **answerer** declined it — a human said no; usually born in the reader's UI, but the agent may record an out-of-band rejection too). Three closes, three authors-of-the-ending. **Rejected is terminal** on this id — readers keep it sticky; re-raising is a new ask. |
+| `to` | `"manager"` \| `"builder"` | | Who the ask is addressed to: the human accountable for the **work** (`manager`) or for the **machine** (`builder` — e.g. self-edit/logic-change flags). Absent = unaddressed; readers may guess from `type` but must present it as a guess. |
 | `title` | string | ✓ | The ask, in one line. |
 | `unit` | string | | The `Unit.id` this concerns. |
+| `run` | string | | The run `id` this ask was raised during (the work that surfaced it). **Optional** — asks also arise outside runs (a self-found issue, expired credentials). |
 | `found` | string | | What the agent found / why it's stuck. |
 | `need` | string | | What it needs from the human. |
-| `options` | string[] | | Candidate resolutions. |
+| `options` | string[] | | Candidate resolutions — **short, stable, quotable** strings: a future answer references one *verbatim* (see [§6.2](#62-resolution--how-an-ask-closed)). |
 | `details` | `{ l, v }[]` | | Labelled facts (e.g. amount at risk). |
 | `refs` | `{ label, artifact? }[]` | | Pointers to artifacts that back the ask. |
+| `resolution` | string \| `Resolution` | | The agent's account of the close ([§6.2](#62-resolution--how-an-ask-closed)). A bare string is shorthand for `{ "note": … }`. |
 | `ts` | string (ISO-8601 w/ offset) | | |
+| `session` | `Session` | | The session that raised this ask (same shape as [§5.1](#51-session--runtime-metadata-optional)). |
+
+### 6.1 Lifecycle — two ledgers, split by author
+
+An ask is the **anchor of a thread whose two halves are owned by different parties**:
+
+- **The agent's ledger** is `asks.jsonl` — only the agent writes here. Records **fold by `id`**
+  (field-level merge: later lines layer over earlier ones), so the close is an *append*, not an edit:
+
+  ```jsonc
+  { "id": "acme-bridge", "status": "resolved",
+    "resolution": { "chosen": "Strip the alpha prefix", "via": "human", "by": "Sarah (accounting)" } }
+  ```
 
-> In v1, an ask is **one-way**: it announces that a human is needed. Resolution happens in the agent's own
-> workflow (the agent sets `status: "resolved"` on a later push). Answers flowing *back* through Figs are
-> [reserved for a future version](#reserved-not-in-v1).
+  Appending keeps the local file crash-safe, concurrency-safe (multiple runners), and an honest
+  self-audit trail; the folded record the reader stores is one complete ask.
+- **The human's ledger** is server-side — claims, answers, and verdicts born in the reader's UI.
+  These are [reserved](#reserved-not-in-v1) in v1 and **never appear in `asks.jsonl`**: nobody
+  writes into the other side's record; the two ledgers cross-reference by id.
+
+The full state machine: `open` → *(answered/verdict — human, server-side)* →
+`resolved` | `withdrawn` *(agent, in `asks.jsonl`)* — plus the one human-side close:
+**`rejected`** (a reject verdict in the reader's UI closes the ask immediately; the agent's
+later resolution append folds onto it without reopening). Today resolution otherwise happens
+in the agent's own workflow; answers flowing back through the reader are arriving incrementally.
+
+### 6.2 `Resolution` — how an ask closed
+
+| Field | Type | Meaning |
+|---|---|---|
+| `note` | string | The agent's one-line account of the close. |
+| `chosen` | string | The decision taken — **verbatim** one of the ask's `options[]`. |
+| `via` | `"figs"` \| `"human"` \| `"self"` | Where the unblock came from: an answer pulled from Figs (verifiable, future) · answered out-of-band (self-reported) · the blocker cleared on its own. |
+| `by` | string | Who answered, as the agent knows it (self-reported; verified attribution only exists for `via: "figs"`). |
+| `answer` | string | **Reserved** — the Figs answer-event id the agent acted on, once answer-down ships. |
+
+All fields optional; a bare-string `resolution` is shorthand for `{ "note": … }` and readers
+normalize it to the object form.
 
 ## 7. `artifacts/` — rendered files
 
@@ -147,9 +202,22 @@ unchanged file is skipped on publish).
 The server upserts the agent by `id` and runs/asks by `id`; it never deletes. An agent **self-registers**
 on first push — there is no "create agent" step.
 
+**A push never re-homes an agent.** The workspace an agent is registered to is authoritative
+server-side: a payload whose `workspaceId` differs from it is rejected with HTTP `409` and body
+`{ "error", "code": "agent_moved", "workspaceId"? }`. The `error` text states the fix; `workspaceId`
+(the agent's current home) is included only when the pushing token has access to that workspace.
+Moving an agent between workspaces is a reader-side management act, outside this contract — the agent
+recovers by setting `config.json#workspaceId` to the workspace named in the error and pushing again
+(each runner self-heals on its own next push; nothing propagates through the repo).
+
+Because every push is authenticated, the receiver knows which account performed it and **may stamp each
+newly created run/ask with that identity** ("pushed by"). This is server-observed — it attributes the
+*credential*, not necessarily the human at the keyboard (a shared runner box should use a dedicated
+account named for what it is, e.g. "Runner — analytics box"). Agents never author this field.
+
 ## 9. Validation & versioning
 
-- A `.figs/` folder can be validated against this contract before publishing (`figs doctor` →
+- A `.figs/` folder can be validated against this spec before publishing (`figs doctor` →
   `POST {endpoint}/api/validate`). The shapes are the source of truth; readers reject malformed payloads.
 - **`figs-spec` is integer-versioned.** v1 is the current version. **Additive/optional** fields keep the
   version number (an older `agent.json` still validates). The number is bumped only on a **breaking**
@@ -161,8 +229,14 @@ on first push — there is no "create agent" step.
 
 Deliberately out of scope for v1, named here so implementers don't repurpose these concepts:
 
-- **Two-way / answer-down.** A human answer or sign-off flowing *back* to the agent through Figs (vs. the
-  agent resolving in its own workflow). v1 is report-only.
+- **Two-way / answer-down — thread events.** A human answer or sign-off flowing *back* to the agent
+  through Figs (vs. the agent resolving in its own workflow). v1 is report-only. The shapes are locked
+  so `options[]`/`resolution` are designed for them: server-side events keyed to the ask id —
+  `answer { by, ts, chosen?, text? }` where
+  `chosen` verbatim-matches an `options[]` entry · `verdict { by, ts, verdict: "approved" | "changes-requested" | "rejected", text? }`
+  for sign-offs. Answers/verdicts are permission-gated to the agent's manager/builder (the injection
+  gate); delivery is **agent-pulled** (an inbox read), never pushed into the repo. Item kinds `note`
+  and `directive` (human-initiated) are named-reserved.
 - **Provenance / signing.** Cryptographic attestation that a report is complete, fresh, and untampered.
   v1 state is *self-reported*; treat it as visibility, not a tamper-evident audit trail.
 - **Per-record visibility / scoping.** v1 publishes to a workspace where all members can read everything.
@@ -178,7 +252,6 @@ Deliberately out of scope for v1, named here so implementers don't repurpose the
 // .figs/agent.json   (no `id` here — `figs init` puts it in config.json; the CLI attaches it on push)
 {
   "name": "Reconciliation",
-  "type": "agent",
   "role": "Reconciliation Officer",
   "status": "in_dev",
   "avatar": { "seed": "Reconciliation" },
@@ -205,16 +278,22 @@ Deliberately out of scope for v1, named here so implementers don't repurpose the
 
 ```jsonc
 // .figs/runs.jsonl   (one object per line)
-{ "id": "acme-2025-11", "ts": "2026-05-28T23:41:26Z", "unit": "acme", "period": "2025-11", "result": "88% matched · 31 keys flagged", "status": "ok", "artifact": "acme-2025-11.html" }
+{ "id": "acme-2025-11", "ts": "2026-05-28T23:41:26Z", "unit": "acme", "period": "2025-11", "result": "88% matched · 31 keys flagged", "status": "ok", "artifact": "acme-2025-11.html",
+  "session": { "runtime": "claude-code", "model": "claude-fable-5", "sessionId": "3fffcd97-d4f5-4b77-8243-8f450d7c9614",
+    "startedAt": "2026-05-28T23:02:00Z", "commit": "1b68668",
+    "tokens": { "input": 26608, "output": 135532, "cacheRead": 8677869, "cacheWrite": 543145 } } }
 ```
 
 ```jsonc
-// .figs/asks.jsonl   (one object per line)
-{ "id": "acme-bridge", "ts": "2026-05-28T21:05:00Z", "type": "needs-decision", "status": "open", "unit": "acme",
+// .figs/asks.jsonl   (one object per line; records fold by id — the close is an append)
+{ "id": "acme-bridge", "ts": "2026-05-28T21:05:00Z", "type": "needs-decision", "status": "open", "to": "manager", "unit": "acme", "run": "acme-2025-11",
   "title": "No bridge rule for prefixed invoice numbers",
   "found": "~180 rows can't be matched safely; guessing risks false matches.",
   "need": "Confirm the bridge rule for prefixed invoice numbers.",
   "options": [ "Strip the alpha prefix", "Use a mapping you provide", "Treat as out-of-scope" ],
   "details": [ { "l": "Amount at risk", "v": "$50.0M" } ],
   "refs": [ { "label": "Acme report", "artifact": "acme-2025-11.html" } ] }
+{ "id": "acme-bridge", "status": "resolved",
+  "resolution": { "chosen": "Strip the alpha prefix", "via": "human", "by": "Sarah (accounting)",
+                  "note": "confirmed in terminal — applied from 2025-11 onward" } }
 ```

package/figs.mjs

@@ -9,11 +9,21 @@
  *   figs workspaces                     list the user's workspaces               [--json]
  *   figs init --workspace <slug-or-id> [--endpoint <url>]
  *                                         create .figs/config.json + GUIDE.md (generates a stable agent id)
- *   figs doctor                         validate .figs/ against the contract before pushing
+ *   figs report --result "…"            record a run (stamps id/ts/session, --attach files, auto-push)
+ *   figs ask <type> --title "…"         raise an ask (self-contained: options/details/attachments, auto-push)
+ *   figs resolve <ask-id>               close an ask (verbatim-checks --chosen, auto-push)
+ *   figs doctor                         validate .figs/ against the spec before pushing
  *   figs push                           one-way push the .figs/ spine to the ingest endpoint
  *   figs version                        print the CLI version (and check for updates)
  *   figs help [<command>]               usage; `-h`/`--help` on any command, `-v` for version
  *
+ * The writing verbs (report/ask/resolve) are sugar over the same files — they
+ * stamp ids + real-clock timestamps, validate on write with teaching errors,
+ * copy attachments into artifacts/, then invoke the same push as `figs push`
+ * (auto-push IS push — one transport, many entry points; --no-push to batch).
+ * Hand-writing the JSONL + bare `push` remains fully supported — files are the
+ * protocol; the verbs are conveniences.
+ *
  * Designed to be driven by an agent: non-interactive, clear output, `--json`
  * on read commands, `-h`/`--help`/`help` everywhere, and errors that say what to
  * do next. Bare `figs` prints help; unknown commands AND unknown flags exit
@@ -27,17 +37,20 @@
  */
 
 import {
+  appendFileSync,
   chmodSync,
   existsSync,
   mkdirSync,
+  readdirSync,
   readFileSync,
   rmSync,
+  statSync,
   writeFileSync,
 } from "node:fs"
 import { homedir } from "node:os"
-import { basename, join } from "node:path"
+import { basename, extname, join } from "node:path"
 import { randomUUID } from "node:crypto"
-import { spawn } from "node:child_process"
+import { execSync, spawn } from "node:child_process"
 
 // Single source of truth for the version: package.json (shipped alongside this
 // file in the published package). One edit keeps `figs version`, the floor
@@ -96,12 +109,72 @@ const COMMANDS = {
     ],
     eg: "figs init --workspace acme-corp",
   },
-  doctor: { args: "", flags: ["--json"], desc: "validate .figs/ against the live contract before pushing" },
+  report: {
+    args: "--result <text> [options]",
+    flags: [
+      "--result", "--id", "--unit", "--period", "--status", "--attach",
+      "--resolves", "--chosen", "--by", "--note", "--no-push",
+    ],
+    desc: "record a run — writes one line to runs.jsonl, stamps id/ts/session, pushes",
+    more: [
+      "You supply the content; the CLI does the bookkeeping (id, real-clock ts, session",
+      "trace from your runtime's own records, validation, artifact copy, push).",
+      "--attach <file> (repeatable) copies the file into artifacts/ and links it.",
+      "--resolves <ask-id> also closes that ask (with optional --chosen/--by/--note).",
+      "--id only for deliberate stable ids (re-running the same job updates the same run).",
+      "--no-push writes locally only; `figs push` publishes later.",
+      "Hand-writing runs.jsonl works too — this verb is sugar over the same file.",
+    ],
+    eg: 'figs report --result "88% matched · 31 flagged" --attach ./acme-2025-11.html',
+  },
+  ask: {
+    args: "<type> --title <text> [options]",
+    flags: [
+      "--id", "--title", "--need", "--found", "--option", "--detail", "--attach",
+      "--to", "--unit", "--run", "--stdin", "--no-push",
+    ],
+    desc: "raise an ask — one self-contained line in asks.jsonl, pushed so a human sees it",
+    more: [
+      "<type> is one of: blocked · needs-decision · sign-off · fyi.",
+      "Make it self-contained — a future session with zero context (or another human)",
+      "must be able to act from this record alone: --found (what you saw), --need (what",
+      "you need), --option (repeatable; short, stable, quotable — answers cite one",
+      "verbatim), --detail \"Label=Value\" (repeatable), --attach <file> (repeatable;",
+      "for sign-offs attach the exact content for review + a brief: what to do once",
+      "approved and what it requires).",
+      "--run <run-id> links the run this came out of — explicit id only (other",
+      "sessions may report concurrently; `figs report` prints the id it wrote).",
+      "--stdin reads a full JSON object instead of flags (long texts; attachments still via --attach).",
+    ],
+    eg: 'figs ask sign-off --title "Send 10 payment reminders" --attach ./previews.html --run recon-2026-06',
+  },
+  resolve: {
+    args: "<ask-id> [--chosen <option>] [--by <who>] [--note <text>] [--withdrawn|--rejected]",
+    flags: ["--chosen", "--by", "--note", "--withdrawn", "--rejected", "--no-push"],
+    desc: "close an ask — appends the resolution fold line and pushes",
+    more: [
+      "--chosen must quote one of the ask's options[] verbatim (checked).",
+      "Three closes, by who ended it: resolved (default — the need was met) ·",
+      "--withdrawn (YOU retracted it; nobody acted) · --rejected (a HUMAN declined",
+      "it — record their out-of-band no; rejected is terminal, re-raising = a new ask).",
+      "Use `figs report --resolves <ask-id>` instead when a run did the work.",
+    ],
+    eg: 'figs resolve acme-bridge --chosen "Strip the alpha prefix" --by "Sarah (accounting)"',
+  },
+  doctor: {
+    args: "",
+    flags: ["--json"],
+    desc: "validate .figs/ against the spec without pushing — the conformance check for hand-authored or non-CLI setups",
+  },
   push: {
     args: "",
     flags: [],
     desc: "publish .figs/ — spine to /api/ingest, artifacts to /api/artifacts",
-    more: ["Idempotent (records fold by id). Exits non-zero if an artifact upload is rejected."],
+    more: [
+      "Idempotent (records fold by id). Exits non-zero if an artifact upload is rejected.",
+      "The writing verbs (report/ask/resolve) call this automatically — you only need it",
+      "after hand-editing files, after --no-push, or to retry a failed auto-push.",
+    ],
     eg: "figs push",
   },
   version: { args: "", flags: [], desc: "print the CLI version and check for updates" },
@@ -137,6 +210,121 @@ function flag(name) {
   }
   return undefined
 }
+/** All values of a repeatable flag, in order. */
+function flagAll(name) {
+  const args = process.argv.slice(2)
+  const out = []
+  for (let i = 0; i < args.length; i++) {
+    if (args[i] === name && args[i + 1] !== undefined) out.push(args[i + 1])
+    else if (args[i].startsWith(`${name}=`)) out.push(args[i].slice(name.length + 1))
+  }
+  return out
+}
+/** Boolean flag — present or not (takes no value). */
+function hasFlag(name) {
+  return process.argv.slice(2).includes(name)
+}
+/** First non-flag token after the command (e.g. the ask type, the ask id). */
+function positional() {
+  const args = process.argv.slice(3)
+  for (let i = 0; i < args.length; i++) {
+    if (args[i].startsWith("-")) {
+      // skip `--name value` pairs (but not `--name=value` or booleans)
+      if (!args[i].includes("=") && !BOOLEAN_FLAGS.has(args[i])) i++
+      continue
+    }
+    return args[i]
+  }
+  return undefined
+}
+const BOOLEAN_FLAGS = new Set([
+  "--no-push", "--stdin", "--withdrawn", "--rejected", "--json", "-h", "--help",
+])
+
+/** ISO-8601 with the machine's real UTC offset (never the agent's guess). */
+function nowIso() {
+  const d = new Date()
+  const pad = (n, w = 2) => String(Math.abs(n)).padStart(w, "0")
+  const off = -d.getTimezoneOffset()
+  const sign = off >= 0 ? "+" : "-"
+  return (
+    `${d.getFullYear()}-${pad(d.getMonth() + 1)}-${pad(d.getDate())}` +
+    `T${pad(d.getHours())}:${pad(d.getMinutes())}:${pad(d.getSeconds())}` +
+    (off === 0 ? "Z" : `${sign}${pad(Math.trunc(off / 60))}:${pad(off % 60)}`)
+  )
+}
+/** Generated unique id — stable/content-derived ids only via explicit --id. */
+function genId(prefix) {
+  return `${prefix}-${Date.now().toString(36)}${Math.random().toString(36).slice(2, 5)}`
+}
+
+// ---------- local validation (the spec's common mistakes, caught on write) ----
+// The server's schema stays the source of truth; these catch what hand-authors
+// and flag typos get wrong, with errors that teach the fix.
+const ASK_TYPES = ["blocked", "needs-decision", "sign-off", "fyi"]
+const RUN_STATUSES = ["ok", "warn", "fail"]
+const ASK_STATUSES = ["open", "resolved", "withdrawn", "rejected"]
+const TO_VALUES = ["manager", "builder"]
+const ARTIFACT_EXTS = new Set([
+  ".html", ".md", ".txt", ".json", ".png", ".jpg", ".jpeg", ".gif", ".webp", ".svg",
+])
+const ARTIFACT_MAX = 3 * 1024 * 1024
+
+/** "signoff" → `did you mean "sign-off"?` — normalized nearest match. */
+function didYouMean(value, allowed) {
+  const norm = (s) => String(s).toLowerCase().replace(/[^a-z0-9]/g, "")
+  const hit = allowed.find((a) => norm(a) === norm(value))
+  return hit ? ` — did you mean "${hit}"?` : ` (valid: ${allowed.join(" · ")})`
+}
+function checkEnum(issues, obj, field, allowed, label) {
+  const v = obj[field]
+  if (v !== undefined && !allowed.includes(v)) {
+    issues.push(`${label}.${field}: "${v}" isn't valid${didYouMean(v, allowed)}`)
+  }
+}
+/** Validate one folded run record → array of issue strings. */
+function validateRun(r) {
+  const issues = []
+  const label = `run "${r.id ?? "?"}"`
+  if (!r.id || typeof r.id !== "string") issues.push(`${label}: missing required "id"`)
+  if (!r.ts) issues.push(`${label}: missing required "ts" (ISO-8601 — \`figs report\` stamps it for you)`)
+  checkEnum(issues, r, "status", RUN_STATUSES, label)
+  if (r.artifact !== undefined && typeof r.artifact !== "string") {
+    issues.push(`${label}.artifact: must be a single file name (use "artifacts" for a list)`)
+  }
+  if (r.artifacts !== undefined && (!Array.isArray(r.artifacts) || r.artifacts.some((a) => typeof a !== "string"))) {
+    issues.push(`${label}.artifacts: must be an array of file names`)
+  }
+  return issues
+}
+/** Validate one folded ask record → array of issue strings. */
+function validateAsk(a) {
+  const issues = []
+  const label = `ask "${a.id ?? "?"}"`
+  if (!a.id || typeof a.id !== "string") issues.push(`${label}: missing required "id"`)
+  if (!a.type) {
+    issues.push(
+      `${label}: missing required "type" — was it raised on another machine? (closing it from here needs the full record; cross-machine fetch is coming)`,
+    )
+  } else checkEnum(issues, a, "type", ASK_TYPES, label)
+  if (!a.title) issues.push(`${label}: missing required "title"`)
+  checkEnum(issues, a, "status", ASK_STATUSES, label)
+  checkEnum(issues, a, "to", TO_VALUES, label)
+  if (a.options !== undefined && (!Array.isArray(a.options) || a.options.some((o) => typeof o !== "string"))) {
+    issues.push(`${label}.options: must be an array of short, quotable strings`)
+  }
+  if (a.details !== undefined && (!Array.isArray(a.details) || a.details.some((d) => !d || typeof d.l !== "string"))) {
+    issues.push(`${label}.details: must be [{ "l": "Label", "v": "Value" }]`)
+  }
+  if (a.refs !== undefined && (!Array.isArray(a.refs) || a.refs.some((r) => !r || typeof r.label !== "string"))) {
+    issues.push(`${label}.refs: must be [{ "label": "…", "artifact": "<file in artifacts/>" }]`)
+  }
+  return issues
+}
+/** Validate the whole local outbox (folded) — returns all issues. */
+function validateOutbox(runs, asks) {
+  return [...runs.flatMap(validateRun), ...asks.flatMap(validateAsk)]
+}
 function getToken() {
   return process.env.FIGS_TOKEN || readJson(globalCreds, {}).token
 }
@@ -287,6 +475,9 @@ else if (COMMANDS[cmd]) {
   else if (cmd === "status") await status()
   else if (cmd === "workspaces") await workspaces()
   else if (cmd === "init") await init()
+  else if (cmd === "report") await reportCmd()
+  else if (cmd === "ask") await askCmd()
+  else if (cmd === "resolve") await resolveCmd()
   else if (cmd === "doctor") await doctor()
   else if (cmd === "push") await push()
 } else {
@@ -732,7 +923,377 @@ async function init() {
   console.log(`        Full guide: ${endpoint}/llms.txt`)
 }
 
-/** Validate the local .figs/ payload against the contract — no write. */
+// ====================== the writing verbs ===================================
+// report / ask / resolve — sugar over the same files (hand-writing stays
+// first-class). The agent supplies content; the CLI stamps id + real-clock ts,
+// captures the session trace, validates with teaching errors, copies
+// attachments, then invokes the same push as `figs push`.
+
+function requireFigs() {
+  if (!existsSync(repoDir)) die("no .figs/ here — run `figs init` first")
+  const config = readJson(join(repoDir, "config.json"), {})
+  if (!config.workspaceId || !config.agentId) {
+    die("config missing workspaceId/agentId — run `figs init`")
+  }
+}
+function appendJsonl(name, obj) {
+  appendFileSync(join(repoDir, name), JSON.stringify(obj) + "\n")
+}
+/** Print a record without its (noisy) session block. */
+function summarize(obj) {
+  const { session, ...rest } = obj
+  return JSON.stringify(rest) + (session ? "  (+ session trace)" : "")
+}
+
+/** Copy attachments into artifacts/ — ext + size checks; immutable once there. */
+function attachFiles(paths) {
+  const names = []
+  for (const p of paths) {
+    if (!existsSync(p)) die(`--attach: no such file: ${p}`)
+    const ext = extname(p).toLowerCase()
+    if (!ARTIFACT_EXTS.has(ext)) {
+      die(`--attach: unsupported type "${ext || p}" — supported: ${[...ARTIFACT_EXTS].join(" ")}`)
+    }
+    const bytes = readFileSync(p)
+    if (bytes.length > ARTIFACT_MAX) {
+      die(`--attach: ${basename(p)} is ${(bytes.length / 1048576).toFixed(1)} MB — over the 3 MB cap; compress or split it`)
+    }
+    const name = basename(p)
+    const dest = join(repoDir, "artifacts", name)
+    if (existsSync(dest) && !readFileSync(dest).equals(bytes)) {
+      die(
+        `--attach: artifacts/${name} already exists with different content — artifacts are immutable once published; use a new name (e.g. ${name.slice(0, -ext.length)}-v2${ext}) and reference that`,
+      )
+    }
+    mkdirSync(join(repoDir, "artifacts"), { recursive: true })
+    writeFileSync(dest, bytes)
+    names.push(name)
+  }
+  return names
+}
+
+// ---------- session auto-capture --------------------------------------------
+// The trace comes from the runtime's own records, never from the model's
+// memory. Best-effort by design: any failure → the optional block is omitted;
+// a report is never blocked on trace capture.
+function captureSession() {
+  try {
+    const candidates = [findClaudeTranscript(), findCodexTranscript()].filter(Boolean)
+    if (!candidates.length) return undefined
+    // The transcript being written *now* is the newest one, whichever runtime
+    // owns it. Anything older than a day is a leftover, not this session.
+    const best = candidates.sort((a, b) => b.mtimeMs - a.mtimeMs)[0]
+    if (Date.now() - best.mtimeMs > 86400000) return undefined
+    const session = best.parse(best.path)
+    if (!session) return undefined
+    const commit = captureCommit()
+    if (commit) session.commit = commit
+    return session
+  } catch {
+    return undefined
+  }
+}
+function newestFile(dir, filter) {
+  if (!existsSync(dir)) return null
+  let best = null
+  for (const f of readdirSync(dir)) {
+    if (!filter(f)) continue
+    const p = join(dir, f)
+    let st
+    try {
+      st = statSync(p)
+    } catch {
+      continue
+    }
+    if (!st.isFile()) continue
+    if (!best || st.mtimeMs > best.mtimeMs) best = { path: p, name: f, mtimeMs: st.mtimeMs }
+  }
+  return best
+}
+function findClaudeTranscript() {
+  const dir = join(homedir(), ".claude", "projects", process.cwd().replace(/[\\/:]/g, "-"))
+  const f = newestFile(dir, (n) => n.endsWith(".jsonl"))
+  return f ? { ...f, parse: parseClaudeTranscript } : null
+}
+function parseClaudeTranscript(path) {
+  const tokens = { input: 0, output: 0, cacheRead: 0, cacheWrite: 0 }
+  let model, startedAt
+  for (const line of readFileSync(path, "utf8").split("\n")) {
+    if (!line.trim()) continue
+    let e
+    try {
+      e = JSON.parse(line)
+    } catch {
+      continue
+    }
+    if (!startedAt && typeof e.timestamp === "string") startedAt = e.timestamp
+    const m = e.message
+    if (!m?.usage || m.model === "<synthetic>") continue
+    if (typeof m.model === "string") model = m.model
+    tokens.input += m.usage.input_tokens ?? 0
+    tokens.output += m.usage.output_tokens ?? 0
+    tokens.cacheRead += m.usage.cache_read_input_tokens ?? 0
+    tokens.cacheWrite += m.usage.cache_creation_input_tokens ?? 0
+  }
+  const out = { runtime: "claude-code", sessionId: basename(path, ".jsonl") }
+  if (model) out.model = model
+  if (startedAt) out.startedAt = startedAt
+  if (tokens.input + tokens.output + tokens.cacheRead + tokens.cacheWrite > 0) out.tokens = tokens
+  return out
+}
+function findCodexTranscript() {
+  const root = join(homedir(), ".codex", "sessions")
+  if (!existsSync(root)) return null
+  const desc = (dir) => {
+    try {
+      return readdirSync(dir).sort().reverse()
+    } catch {
+      return []
+    }
+  }
+  for (const y of desc(root)) {
+    for (const m of desc(join(root, y))) {
+      for (const d of desc(join(root, y, m))) {
+        const f = newestFile(join(root, y, m, d), (n) => n.startsWith("rollout-") && n.endsWith(".jsonl"))
+        if (f) return { ...f, parse: parseCodexTranscript }
+      }
+    }
+  }
+  return null
+}
+function parseCodexTranscript(path) {
+  let model, usage, startedAt
+  for (const line of readFileSync(path, "utf8").split("\n")) {
+    if (!line.trim()) continue
+    let e
+    try {
+      e = JSON.parse(line)
+    } catch {
+      continue
+    }
+    if (!startedAt && typeof e.timestamp === "string") startedAt = e.timestamp
+    const p = e.payload ?? e
+    if (!model && typeof p?.model === "string") model = p.model
+    const u = p?.info?.total_token_usage ?? p?.total_token_usage
+    if (u) usage = u
+  }
+  const out = { runtime: "codex" }
+  const uuid = basename(path).match(/[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}/i)
+  if (uuid) out.sessionId = uuid[0]
+  if (model) out.model = model
+  if (startedAt) out.startedAt = startedAt
+  if (usage) {
+    out.tokens = {
+      input: usage.input_tokens ?? 0,
+      output: usage.output_tokens ?? 0,
+      cacheRead: usage.cached_input_tokens ?? 0,
+    }
+  }
+  return out
+}
+function captureCommit() {
+  try {
+    const opts = { stdio: ["ignore", "pipe", "ignore"] }
+    const sha = execSync("git rev-parse --short HEAD", opts).toString().trim()
+    if (!sha) return undefined
+    const dirty = execSync("git status --porcelain", opts).toString().trim()
+    return dirty ? `${sha}+dirty` : sha
+  } catch {
+    return undefined
+  }
+}
+
+// ---------- the resolution fold (shared by `resolve` and `report --resolves`) -
+function buildResolution(askId, { chosen, by, note, withdrawn, rejected }) {
+  if (withdrawn && rejected) {
+    die("--withdrawn and --rejected are different closes: withdrawn = YOU retracted the ask; rejected = a HUMAN declined it. Pick the one that's true.")
+  }
+  if ((withdrawn || rejected) && chosen) {
+    die(`--chosen marks the need as met — it can't combine with ${withdrawn ? "--withdrawn" : "--rejected"} (use --note for the account)`)
+  }
+  const asks = foldById(readJsonl("asks.jsonl"))
+  const ask = asks.find((a) => a.id === askId)
+  const warnings = []
+  if (!ask) {
+    warnings.push(
+      `ask "${askId}" isn't in the local asks.jsonl (raised on another machine, or pruned) — recording the close anyway; the server folds it onto the full record`,
+    )
+  } else if (chosen && ask.options?.length && !ask.options.includes(chosen)) {
+    const norm = (s) => s.toLowerCase().replace(/[^a-z0-9]/g, "")
+    const near = ask.options.find((o) => norm(o) === norm(chosen))
+    if (near) die(`--chosen must quote the option verbatim — did you mean "${near}"?`)
+    die(
+      `--chosen "${chosen}" doesn't match any of the ask's options:\n` +
+        ask.options.map((o) => `    · ${o}`).join("\n") +
+        "\n  (quote one verbatim, or use --note for a free-text account)",
+    )
+  }
+  const resolution = {}
+  if (chosen) resolution.chosen = chosen
+  if (by) resolution.by = by
+  if (note) resolution.note = note
+  // `via` says where the unblock came from; out-of-band human answers are
+  // "human". A rejection is inherently a human's call; otherwise set it only
+  // when there's evidence of one (a chosen/by), never on withdrawn (nobody
+  // acted — that's the point).
+  if (rejected || (!withdrawn && (chosen || by))) resolution.via = "human"
+  const line = {
+    id: askId,
+    status: withdrawn ? "withdrawn" : rejected ? "rejected" : "resolved",
+  }
+  if (Object.keys(resolution).length) line.resolution = resolution
+  return { line, warnings }
+}
+
+/** The verbs' shared final step — same transport as `figs push`. */
+async function autoPush() {
+  if (hasFlag("--no-push")) {
+    console.log("figs:   saved locally (--no-push) — `figs push` publishes it")
+    return
+  }
+  if (!(await doPush())) {
+    console.warn("figs: ! saved locally — the push failed (see above); fix and run `figs push`")
+    process.exitCode = 1
+  }
+}
+
+async function reportCmd() {
+  requireFigs()
+  const result = flag("--result")
+  if (!result) {
+    die('report needs --result "<one-line outcome>" — e.g. figs report --result "88% matched · 31 flagged"')
+  }
+  const run = { id: flag("--id") || genId("r"), ts: nowIso(), result }
+  const unit = flag("--unit")
+  if (unit) run.unit = unit
+  const period = flag("--period")
+  if (period) run.period = period
+  const status = flag("--status")
+  if (status) run.status = status
+  const attached = attachFiles(flagAll("--attach"))
+  if (attached.length === 1) run.artifact = attached[0]
+  else if (attached.length > 1) run.artifacts = attached
+  const resolves = flag("--resolves")
+  let resolution = null
+  if (resolves) {
+    run.resolves = resolves
+    resolution = buildResolution(resolves, {
+      chosen: flag("--chosen"),
+      by: flag("--by"),
+      note: flag("--note"),
+    })
+  }
+  const session = captureSession()
+  if (session) run.session = session
+
+  const issues = validateRun(run)
+  if (issues.length) die(`not written:\n  ${issues.join("\n  ")}`)
+  appendJsonl("runs.jsonl", run)
+  console.log(`figs: ✓ run recorded — ${summarize(run)}`)
+  if (resolution) {
+    for (const w of resolution.warnings) console.warn(`figs: ! ${w}`)
+    appendJsonl("asks.jsonl", resolution.line)
+    console.log(`figs: ✓ ask ${resolves} ${resolution.line.status}`)
+  }
+  await autoPush()
+}
+
+async function askCmd() {
+  requireFigs()
+  let base = {}
+  if (hasFlag("--stdin")) {
+    let raw = ""
+    try {
+      raw = readFileSync(0, "utf8")
+    } catch {
+      /* no stdin */
+    }
+    if (!raw.trim()) die("--stdin given but nothing arrived on stdin — pipe a JSON object")
+    try {
+      base = JSON.parse(raw)
+    } catch (e) {
+      die(`--stdin: invalid JSON: ${e.message}`)
+    }
+    if (!base || typeof base !== "object" || Array.isArray(base)) {
+      die("--stdin must be a single JSON object (one ask)")
+    }
+  }
+  const type = positional() ?? base.type
+  if (!type) die(`ask needs a type: figs ask <${ASK_TYPES.join("|")}> --title "…"`)
+  const ask = { ...base, id: flag("--id") ?? base.id ?? genId("ask"), ts: nowIso(), type }
+  if (!ask.status) ask.status = "open"
+  const title = flag("--title") ?? base.title
+  if (!title) die('ask needs --title "<the ask, in one line>"')
+  ask.title = title
+  for (const [f, k] of [["--need", "need"], ["--found", "found"], ["--unit", "unit"], ["--to", "to"]]) {
+    const v = flag(f)
+    if (v) ask[k] = v
+  }
+  const options = flagAll("--option")
+  if (options.length) ask.options = options
+  for (const o of ask.options ?? []) {
+    if (o.length > 80) {
+      console.warn(
+        `figs: ! option "${o.slice(0, 40)}…" is long — options should be short, stable, quotable (an answer cites one verbatim)`,
+      )
+    }
+  }
+  const details = flagAll("--detail").map((d) => {
+    const i = d.indexOf("=")
+    if (i < 1) die(`--detail must be "Label=Value", got "${d}"`)
+    return { l: d.slice(0, i), v: d.slice(i + 1) }
+  })
+  if (details.length) ask.details = [...(base.details ?? []), ...details]
+  const runRef = flag("--run")
+  if (runRef === "last") {
+    // Deliberately unsupported: concurrent sessions of the same agent report
+    // runs in parallel — "the latest run" may be someone else's. Explicit only.
+    die('--run takes the explicit run id (no "last" — another session may have reported since); `figs report` prints the id of what it wrote')
+  }
+  if (runRef) ask.run = runRef
+  const attached = attachFiles(flagAll("--attach"))
+  if (attached.length) {
+    ask.refs = [...(base.refs ?? []), ...attached.map((n) => ({ label: n, artifact: n }))]
+  }
+  if (ask.type === "sign-off" && !ask.refs?.length) {
+    console.warn(
+      "figs: ! tip: a sign-off reviews best with attachments — the exact content to approve, plus a brief (what to do once approved + what it requires). Add --attach <file>",
+    )
+  }
+  const session = captureSession()
+  if (session) ask.session = session
+
+  const issues = validateAsk(ask)
+  if (issues.length) die(`not written:\n  ${issues.join("\n  ")}`)
+  appendJsonl("asks.jsonl", ask)
+  console.log(`figs: ✓ ask raised — ${summarize(ask)}`)
+  if (!ask.to) {
+    console.log("figs:   tip: address asks with --to manager|builder so they route to the right person")
+  }
+  await autoPush()
+  console.log(
+    "figs:   answers arrive out-of-band for now (`figs inbox` is coming) — your human replies in the app thread or directly to you",
+  )
+}
+
+async function resolveCmd() {
+  requireFigs()
+  const askId = positional()
+  if (!askId) die("resolve needs the ask id: figs resolve <ask-id> [--chosen …] [--withdrawn]")
+  const { line, warnings } = buildResolution(askId, {
+    chosen: flag("--chosen"),
+    by: flag("--by"),
+    note: flag("--note"),
+    withdrawn: hasFlag("--withdrawn"),
+    rejected: hasFlag("--rejected"),
+  })
+  for (const w of warnings) console.warn(`figs: ! ${w}`)
+  appendJsonl("asks.jsonl", line)
+  console.log(`figs: ✓ ask ${askId} ${line.status} — ${JSON.stringify(line)}`)
+  await autoPush()
+}
+
+/** Validate the local .figs/ payload against the spec — no write, no push. */
 async function doctor() {
   // Local checks first (no token/network needed) — fail fast and offline.
   if (!existsSync(repoDir)) die("no .figs/ here — run `figs init` first")
@@ -754,6 +1315,18 @@ async function doctor() {
     process.exit(1)
   }
 
+  // Same local checks the write-path runs — catches hand-authored mistakes
+  // offline, before the server round-trip.
+  const localIssues = validateOutbox(
+    foldById(readJsonl("runs.jsonl")),
+    foldById(readJsonl("asks.jsonl")),
+  )
+  if (localIssues.length) {
+    console.log("figs: ✗ local validation issues:")
+    for (const i of localIssues) console.log(`  ${i}`)
+    process.exit(1)
+  }
+
   if (!getToken()) die("not logged in — run `figs login`")
   const r = await api("POST", "/api/validate", {
     workspaceId: config.workspaceId,
@@ -780,26 +1353,51 @@ async function doctor() {
   process.exit(1)
 }
 
+/** `figs push` — the bare transport; exits non-zero on any failure. */
 async function push() {
-  const token = process.env.FIGS_TOKEN || readJson(globalCreds, {}).token
-  if (!token) die("not logged in — run `figs login` (or set FIGS_TOKEN)")
-  await checkVersion({ hardFail: true })
-  if (!existsSync(repoDir)) {
-    die("no .figs/ here — run `figs init` first")
+  if (!(await doPush())) process.exit(1)
+}
+
+/**
+ * The one transport: spine → /api/ingest, artifacts → /api/artifacts/upload.
+ * `figs push` is a thin wrapper; the writing verbs call this after their local
+ * append (auto-push IS push — one transport, many entry points). Runs the same
+ * local checks as `figs doctor` first, so a malformed hand-written line never
+ * reaches the server as a confusing 4xx. Prints its own errors and returns
+ * false on failure — callers decide whether that's fatal.
+ */
+async function doPush() {
+  const fail = (msg) => {
+    console.error(`figs: ✗ push: ${msg}`)
+    return false
   }
+  const token = getToken()
+  if (!token) return fail("not logged in — run `figs login` (or set FIGS_TOKEN)")
+  await checkVersion({ hardFail: true })
+  if (!existsSync(repoDir)) return fail("no .figs/ here — run `figs init` first")
   const config = readJson(join(repoDir, "config.json"), {})
   if (!config.workspaceId || !config.agentId) {
-    die("config missing workspaceId/agentId — run `figs init`")
+    return fail("config missing workspaceId/agentId — run `figs init`")
   }
   const endpoint =
     process.env.FIGS_ENDPOINT || config.endpoint || DEFAULT_ENDPOINT
 
   const agentJson = readJson(join(repoDir, "agent.json"), null)
-  if (!agentJson) die("missing .figs/agent.json")
+  if (!agentJson) return fail("missing .figs/agent.json")
   const agent = { ...agentJson, id: config.agentId }
   const runs = foldById(readJsonl("runs.jsonl"))
   const asks = foldById(readJsonl("asks.jsonl"))
 
+  // Local pre-flight — fail fast, offline, with teaching errors.
+  const placeholders = findPlaceholders(agentJson)
+  if (placeholders.length) {
+    return fail(
+      `agent.json still has template placeholders (${placeholders.map((p) => p.path).join(", ")}) — fill them in; \`figs doctor\` lists them`,
+    )
+  }
+  const issues = validateOutbox(runs, asks)
+  if (issues.length) return fail(`local validation failed:\n  ${issues.join("\n  ")}`)
+
   const base = endpoint.replace(/\/+$/, "")
   let res
   try {
@@ -809,17 +1407,17 @@ async function push() {
       body: JSON.stringify({ workspaceId: config.workspaceId, agent, runs, asks }),
     })
   } catch (e) {
-    die(`push failed — cannot reach ${base} (${netReason(e)})`)
+    return fail(`cannot reach ${base} (${netReason(e)})`)
   }
   const text = await res.text()
-  if (!res.ok) die(`push failed (${res.status}): ${text}`)
+  if (!res.ok) return fail(`server rejected it (${res.status}): ${text}`)
   console.log(
     `figs: ✓ pushed ${agent.name ?? agent.id} — ${runs.length} runs, ${asks.length} asks`,
   )
   // The wow-moment link — relay this to your human so they can see the agent.
   console.log(`       view at ${base}/w/${config.workspaceId}`)
 
-  await pushArtifacts(base, token, config, runs, asks)
+  return pushArtifacts(base, token, config, runs, asks)
 }
 
 /**
@@ -836,10 +1434,9 @@ async function pushArtifacts(base, token, config, runs, asks) {
   const refNames = (asks ?? []).flatMap((a) =>
     (a.refs ?? []).map((r) => r.artifact),
   )
-  const names = [
-    ...new Set([...runs.map((r) => r.artifact), ...refNames].filter(Boolean)),
-  ]
-  if (names.length === 0) return
+  const runNames = runs.flatMap((r) => [r.artifact, ...(r.artifacts ?? [])])
+  const names = [...new Set([...runNames, ...refNames].filter(Boolean))]
+  if (names.length === 0) return true
 
   let uploaded = 0
   let unchanged = 0
@@ -889,9 +1486,10 @@ async function pushArtifacts(base, token, config, runs, asks) {
       (missing ? `, ${missing} missing` : "") +
       (failed ? `, ${failed} failed` : ""),
   )
-  // The spine already landed; signal a non-zero exit so an agent's run loop can
-  // catch that an artifact the manager needs to read did not publish.
-  if (failed) process.exit(1)
+  // The spine already landed; a false return lets the caller exit non-zero so
+  // an agent's run loop can catch that an artifact the manager needs to read
+  // did not publish.
+  return failed === 0
 }
 
 function readJsonl(name) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@figs-so/cli",
-  "version": "0.1.16",
+  "version": "0.2.1",
   "description": "Figs CLI — publish your AI agent's state to Figs (figs.so). Run by the agent.",
   "type": "module",
   "bin": {
@@ -12,6 +12,9 @@
     "SPEC.md",
     "LICENSE"
   ],
+  "scripts": {
+    "test": "node --test"
+  },
   "engines": {
     "node": ">=18"
   },