@h-rig/isolation-plugin 0.0.6-alpha.157 → 0.0.6-alpha.158

package/dist/src/image.js

@@ -0,0 +1,1498 @@
+// @bun
+var __esm = (fn, res) => () => (fn && (res = fn(fn = 0)), res);
+
+// packages/isolation-plugin/src/sandbox/utils.ts
+import { resolveMonorepoRoot as resolveMonorepoRoot2 } from "@rig/core/layout";
+var init_utils = () => {};
+
+// packages/isolation-plugin/src/image.ts
+import { ptr as ptr2, toBuffer as toBuffer2 } from "bun:ffi";
+import {
+  existsSync as existsSync5,
+  readFileSync as readFileSync3,
+  readdirSync,
+  mkdirSync as mkdirSync4,
+  writeFileSync as writeFileSync3,
+  renameSync as renameSync4,
+  rmSync as rmSync3,
+  cpSync as cpSync2,
+  lstatSync,
+  unlinkSync,
+  symlinkSync
+} from "fs";
+import { resolve as resolve6 } from "path";
+import { resolveRigLayout as resolveRigLayout2 } from "@rig/core/layout";
+
+// packages/isolation-plugin/src/runtime-native.ts
+import { dlopen, ptr, suffix, toBuffer } from "bun:ffi";
+import { copyFileSync, existsSync as existsSync2, mkdirSync as mkdirSync2, renameSync as renameSync2, rmSync, statSync as statSync2 } from "fs";
+import { tmpdir as tmpdir2 } from "os";
+import { dirname, resolve as resolve2 } from "path";
+
+// packages/isolation-plugin/src/native-extract.ts
+import { existsSync, mkdirSync, readFileSync, renameSync, statSync, writeFileSync } from "fs";
+import { tmpdir } from "os";
+import { resolve } from "path";
+
+// packages/isolation-plugin/src/embedded-native-assets.ts
+var embeddedNatives = null;
+
+// packages/isolation-plugin/src/native-extract.ts
+var sharedNativeOutputDir = resolve(tmpdir(), "rig-native");
+var extractionCache = {};
+function hasEmbeddedNatives() {
+  return embeddedNatives != null;
+}
+function extractEmbeddedNative(name) {
+  if (name in extractionCache) {
+    return extractionCache[name] ?? null;
+  }
+  const entry = embeddedNatives?.[name];
+  if (!entry) {
+    extractionCache[name] = null;
+    return null;
+  }
+  try {
+    const targetPath = resolve(sharedNativeOutputDir, entry.fileName);
+    mkdirSync(sharedNativeOutputDir, { recursive: true });
+    const upToDate = existsSync(targetPath) && statSync(targetPath).size === entry.size;
+    if (!upToDate) {
+      const bytes = readFileSync(entry.filePath);
+      const tempPath = `${targetPath}.${process.pid}.${Date.now()}.tmp`;
+      writeFileSync(tempPath, bytes, { mode: 493 });
+      renameSync(tempPath, targetPath);
+    }
+    extractionCache[name] = targetPath;
+  } catch {
+    extractionCache[name] = null;
+  }
+  return extractionCache[name] ?? null;
+}
+
+// packages/isolation-plugin/src/runtime-native.ts
+var sharedNativeRuntimeOutputDir = resolve2(tmpdir2(), "rig-native");
+var sharedNativeRuntimeOutputPath = resolve2(sharedNativeRuntimeOutputDir, `runtime-native-${process.platform}-${process.arch}.${suffix}`);
+var colocatedNativeRuntimeFileName = `runtime-native.${suffix}`;
+var nativeRuntimeLibrary = await loadNativeRuntimeLibrary();
+function requireNativeRuntimeLibrary(feature) {
+  if (!nativeRuntimeLibrary) {
+    throw new Error(`Native Zig runtime is required for ${feature}`);
+  }
+  return nativeRuntimeLibrary;
+}
+async function ensureNativeRuntimeLibraryPath(outputPath = sharedNativeRuntimeOutputPath, options = {}) {
+  const explicitLib = process.env.RIG_NATIVE_RUNTIME_LIB?.trim();
+  if (explicitLib && existsSync2(explicitLib)) {
+    return explicitLib;
+  }
+  const embeddedPath = extractEmbeddedNative("snapshot");
+  if (embeddedPath) {
+    return embeddedPath;
+  }
+  if (await buildNativeRuntimeLibrary(outputPath, options)) {
+    return outputPath;
+  }
+  return !options.force && existsSync2(outputPath) ? outputPath : null;
+}
+async function materializeNativeRuntimeLibrary(targetDir) {
+  const sourcePath = await ensureNativeRuntimeLibraryPath();
+  if (!sourcePath) {
+    return null;
+  }
+  const targetPath = resolve2(targetDir, colocatedNativeRuntimeFileName);
+  mkdirSync2(targetDir, { recursive: true });
+  const needsCopy = !existsSync2(targetPath) || statSync2(sourcePath).mtimeMs > statSync2(targetPath).mtimeMs;
+  if (needsCopy) {
+    copyFileSync(sourcePath, targetPath);
+  }
+  return targetPath;
+}
+async function loadNativeRuntimeLibrary() {
+  if (process.env.RIG_DISABLE_ZIG_NATIVE === "1") {
+    return null;
+  }
+  const explicitLib = process.env.RIG_NATIVE_RUNTIME_LIB?.trim();
+  if (explicitLib && existsSync2(explicitLib)) {
+    const loaded = tryDlopenNativeRuntimeLibrary(explicitLib);
+    if (loaded) {
+      return loaded;
+    }
+  }
+  const embeddedPath = extractEmbeddedNative("snapshot");
+  if (embeddedPath) {
+    const loaded = tryDlopenNativeRuntimeLibrary(embeddedPath);
+    if (loaded) {
+      return loaded;
+    }
+  }
+  for (const candidate of nativeRuntimeLibraryCandidates()) {
+    if (!candidate || !existsSync2(candidate)) {
+      continue;
+    }
+    const loaded = tryDlopenNativeRuntimeLibrary(candidate);
+    if (loaded) {
+      return loaded;
+    }
+  }
+  const builtLibraryPath = await ensureNativeRuntimeLibraryPath(sharedNativeRuntimeOutputPath, { force: true });
+  if (!builtLibraryPath) {
+    return null;
+  }
+  return tryDlopenNativeRuntimeLibrary(builtLibraryPath);
+}
+function nativePackageLibraryCandidates(fromDir, names) {
+  const candidates = [];
+  let cursor = resolve2(fromDir);
+  for (let index = 0;index < 8; index += 1) {
+    for (const name of names) {
+      candidates.push(resolve2(cursor, "native", `${process.platform}-${process.arch}`, name), resolve2(cursor, "native", `${process.platform}-${process.arch}`, "lib", name), resolve2(cursor, "native", name), resolve2(cursor, "native", "lib", name));
+    }
+    const parent = dirname(cursor);
+    if (parent === cursor)
+      break;
+    cursor = parent;
+  }
+  return candidates;
+}
+function nativeRuntimeLibraryCandidates() {
+  const explicit = process.env.RIG_NATIVE_RUNTIME_LIB?.trim() || "";
+  const execDir = process.execPath?.trim() ? dirname(process.execPath.trim()) : "";
+  const platformSpecific = `runtime-native-${process.platform}-${process.arch}.${suffix}`;
+  return [...new Set([
+    explicit,
+    ...nativePackageLibraryCandidates(import.meta.dir, [colocatedNativeRuntimeFileName, platformSpecific]),
+    execDir ? resolve2(execDir, colocatedNativeRuntimeFileName) : "",
+    execDir ? resolve2(execDir, platformSpecific) : "",
+    execDir ? resolve2(execDir, "..", colocatedNativeRuntimeFileName) : "",
+    execDir ? resolve2(execDir, "..", platformSpecific) : "",
+    execDir ? resolve2(execDir, "lib", colocatedNativeRuntimeFileName) : "",
+    execDir ? resolve2(execDir, "..", "lib", colocatedNativeRuntimeFileName) : "",
+    sharedNativeRuntimeOutputPath
+  ].filter(Boolean))];
+}
+function resolveNativeRuntimeSourcePath() {
+  const explicit = process.env.RIG_NATIVE_RUNTIME_SOURCE?.trim();
+  if (explicit && existsSync2(explicit)) {
+    return explicit;
+  }
+  const bundled = resolve2(import.meta.dir, "../native/snapshot.zig");
+  return existsSync2(bundled) ? bundled : null;
+}
+async function buildNativeRuntimeLibrary(outputPath, options = {}) {
+  if (process.env.RIG_DISABLE_ZIG_NATIVE === "1") {
+    return false;
+  }
+  const zigBinary = Bun.which("zig");
+  const sourcePath = resolveNativeRuntimeSourcePath();
+  if (!zigBinary || !sourcePath) {
+    return false;
+  }
+  const tempOutputPath = `${outputPath}.${process.pid}.${Date.now()}.${Math.random().toString(36).slice(2)}.tmp`;
+  try {
+    mkdirSync2(dirname(outputPath), { recursive: true });
+    const needsBuild = options.force === true || !existsSync2(outputPath) || statSync2(sourcePath).mtimeMs > statSync2(outputPath).mtimeMs;
+    if (!needsBuild) {
+      return true;
+    }
+    const build = Bun.spawn([
+      zigBinary,
+      "build-lib",
+      sourcePath,
+      "-dynamic",
+      "-O",
+      "ReleaseFast",
+      `-femit-bin=${tempOutputPath}`
+    ], {
+      cwd: import.meta.dir,
+      stdout: "pipe",
+      stderr: "pipe"
+    });
+    const exitCode = await build.exited;
+    if (exitCode !== 0 || !existsSync2(tempOutputPath)) {
+      rmSync(tempOutputPath, { force: true });
+      return false;
+    }
+    renameSync2(tempOutputPath, outputPath);
+    return true;
+  } catch {
+    rmSync(tempOutputPath, { force: true });
+    return false;
+  }
+}
+function tryDlopenNativeRuntimeLibrary(outputPath) {
+  try {
+    return dlopen(outputPath, {
+      rig_scope_match: {
+        args: ["ptr", "ptr"],
+        returns: "u8"
+      },
+      snapshot_capture: {
+        args: ["ptr", "u64", "ptr", "u64"],
+        returns: "ptr"
+      },
+      snapshot_delta: {
+        args: ["ptr", "ptr"],
+        returns: "ptr"
+      },
+      snapshot_store_delta: {
+        args: ["ptr", "ptr", "ptr", "u64", "ptr", "u64", "ptr", "u64", "ptr", "u64"],
+        returns: "ptr"
+      },
+      snapshot_inspect_delta: {
+        args: ["ptr", "u64"],
+        returns: "ptr"
+      },
+      snapshot_apply_delta: {
+        args: ["ptr", "u64", "ptr", "u64"],
+        returns: "ptr"
+      },
+      snapshot_release: {
+        args: ["ptr"],
+        returns: "void"
+      },
+      runtime_hash_file: {
+        args: ["ptr", "u64"],
+        returns: "ptr"
+      },
+      runtime_hash_tree: {
+        args: ["ptr", "u64"],
+        returns: "ptr"
+      },
+      runtime_prepare_paths: {
+        args: ["ptr", "u64", "ptr", "u64", "ptr", "u64", "ptr", "u64", "ptr", "u64"],
+        returns: "ptr"
+      },
+      runtime_link_dependency_layer: {
+        args: ["ptr", "u64", "ptr", "u64"],
+        returns: "ptr"
+      },
+      runtime_scan_worktrees: {
+        args: ["ptr", "u64"],
+        returns: "ptr"
+      }
+    });
+  } catch {
+    return null;
+  }
+}
+
+// packages/isolation-plugin/src/isolation/index.ts
+import { BROWSER_CONTRACT_SERVICE_CAPABILITY, MEMORY } from "@rig/contracts";
+import { safePathSegment as safePathSegment3 } from "@rig/core/safe-identifiers";
+
+// packages/isolation-plugin/src/isolation/git-native.ts
+import { tmpdir as tmpdir3 } from "os";
+import { dirname as dirname2, isAbsolute, resolve as resolve3 } from "path";
+var sharedGitNativeOutputDir = resolve3(tmpdir3(), "rig-native");
+var sharedGitNativeOutputPath = resolve3(sharedGitNativeOutputDir, `rig-git-${process.platform}-${process.arch}${process.platform === "win32" ? ".exe" : ""}`);
+
+// packages/isolation-plugin/src/isolation/index.ts
+import { defineCapability as defineCapability2 } from "@rig/core/capability";
+import { loadCapabilityForRoot, requireCapabilityForRoot, requireInstalledCapability as requireInstalledCapability2 } from "@rig/core/capability-loaders";
+import { buildPluginHostContext } from "@rig/core/plugin-host-context";
+import { TASK_DATA_SERVICE_CAPABILITY } from "@rig/contracts";
+import { resolveRuntimeWorkspaceLayout as resolveRuntimeWorkspaceLayout3 } from "@rig/core/layout";
+import { ensureRuntimeOverlay } from "@rig/core/runtime-overlay";
+import {
+  DEFAULT_RUNTIME_MEMORY_RETRIEVAL,
+  writeRuntimeContext
+} from "@rig/core/runtime-context";
+import { secretDefinesFromEnv } from "@rig/core/baked-secrets";
+
+// packages/isolation-plugin/src/isolation/home.ts
+import { resolveBunBinaryPath, resolveBunInstallDir, resolveClaudeBinaryPath, resolveClaudeInstallDir, resolveNodeInstallDir } from "@rig/core/runtime-paths";
+import { resolveRuntimeSecrets } from "@rig/core/baked-secrets";
+import { browserEnvFromContext, loadRuntimeContext, runtimeMemoryEnvFromContext, RUNTIME_CONTEXT_ENV } from "@rig/core/runtime-context";
+
+// packages/isolation-plugin/src/isolation/shared.ts
+import { agentId, safeGitRefComponent, taskRuntimeId } from "@rig/core/safe-identifiers";
+import { resolveCheckoutRoot } from "@rig/core/checkout-root";
+var generatedCredentialFiles = new Set;
+
+// packages/isolation-plugin/src/isolation/home.ts
+var GITHUB_KNOWN_HOSTS = [
+  "github.com ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOMqqnkVzrm0SdG6UOoqKLsabgH5C9okWi0dh2l9GKJl",
+  "github.com ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBEmKSENjQEezOmxkZMy7opKgwFB9nkt5YRrYMjNuG5N87uRgg6CLrbo5wAdT/y6v0mKV0U2w0WZ2YB/++Tpockg=",
+  "github.com ssh-rsa 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"
+].join(`
+`);
+
+// packages/isolation-plugin/src/isolation/discovery.ts
+import { resolveRuntimeWorkspaceLayout } from "@rig/core/layout";
+import { loadRuntimeContext as loadRuntimeContext2 } from "@rig/core/runtime-context";
+
+// packages/isolation-plugin/src/isolation/worktree.ts
+import { assertPathInsideRoot, safeGitRefComponent as safeGitRefComponent2, safePathSegment } from "@rig/core/safe-identifiers";
+
+// packages/isolation-plugin/src/isolation/toolchain.ts
+import { assertPathInsideRoot as assertPathInsideRoot2, safePathSegment as safePathSegment2 } from "@rig/core/safe-identifiers";
+
+// packages/isolation-plugin/src/isolation/runtime-binary-build.ts
+import { chmodSync, copyFileSync as copyFileSync2, cpSync, existsSync as existsSync3, linkSync, mkdirSync as mkdirSync3, renameSync as renameSync3, rmSync as rmSync2, writeFileSync as writeFileSync2 } from "fs";
+import { basename, dirname as dirname3, resolve as resolve4 } from "path";
+import { fileURLToPath } from "url";
+import { drainMicrotasks, gcAndSweep } from "bun:jsc";
+import { resolveRigLayout } from "@rig/core/layout";
+import { runtimeProvisioningEnv } from "@rig/core/runtime-provisioning-env";
+var runtimeBinaryBuildQueue = Promise.resolve();
+function materializeSelfExecRole(outputPath, define) {
+  const selfPath = process.execPath;
+  mkdirSync3(dirname3(outputPath), { recursive: true });
+  rmSync2(outputPath, { force: true });
+  try {
+    linkSync(selfPath, outputPath);
+  } catch {
+    copyFileSync2(selfPath, outputPath);
+  }
+  chmodSync(outputPath, 493);
+  const role = basename(outputPath).replace(/\.exe$/i, "");
+  writeFileSync2(`${outputPath}.rig-runconfig.json`, `${JSON.stringify({ role, define: define ?? {} }, null, 2)}
+`, { mode: 384 });
+}
+async function buildBinary(entrypoint, outputPath, cwd, defines, external) {
+  if (hasEmbeddedNatives()) {
+    materializeSelfExecRole(outputPath, defines);
+    return;
+  }
+  await buildRuntimeBinary({
+    sourcePath: entrypoint,
+    outputPath,
+    cwd,
+    ...defines ? { define: defines } : {},
+    env: runtimeProvisioningEnv(),
+    ...external ? { external } : {}
+  });
+}
+async function buildRuntimeBinary(options) {
+  return runSerializedRuntimeBinaryBuild(async () => {
+    const resolved = resolveRuntimeBinaryBuildOptions(options);
+    runBestEffortBuildGc();
+    const manifestPath = runtimeBinaryCacheManifestPath(resolved.outputPath);
+    const buildKey = createRuntimeBinaryBuildKey({
+      entrypoint: resolved.entrypoint,
+      define: resolved.define,
+      env: resolved.env,
+      external: resolved.external
+    });
+    if (await isRuntimeBinaryBuildFresh({ outputPath: resolved.outputPath, manifestPath, buildKey })) {
+      return;
+    }
+    if (shouldUseRuntimeBinaryBuildWorker()) {
+      await buildRuntimeBinaryViaWorker(resolved);
+    } else {
+      await buildRuntimeBinaryInProcess(resolved, { manifestPath, buildKey });
+    }
+    runBestEffortBuildGc();
+  });
+}
+async function buildRuntimeBinaryInProcess(options, manifest) {
+  const tempBuildDir = resolve4(dirname3(options.outputPath), `.bun-build-${process.pid}-${Date.now()}-${Math.random().toString(36).slice(2)}`);
+  const tempOutputPath = resolve4(tempBuildDir, basename(options.outputPath));
+  mkdirSync3(tempBuildDir, { recursive: true });
+  await withTemporaryEnv({
+    ...options.env,
+    ...options.define ? { RIG_BUILD_CONFIG_JSON: JSON.stringify(options.define) } : {}
+  }, async () => withTemporaryCwd(tempBuildDir, async () => {
+    const buildResult = await Bun.build({
+      entrypoints: [options.entrypoint],
+      compile: {
+        target: currentCompileTarget(),
+        outfile: tempOutputPath
+      },
+      target: "bun",
+      format: "esm",
+      minify: true,
+      bytecode: true,
+      metafile: true,
+      ...options.external ? { external: options.external } : {},
+      ...options.define ? { define: { __RIG_BUILD_CONFIG__: JSON.stringify(options.define) } } : {}
+    });
+    if (!buildResult.success) {
+      const details = buildResult.logs.map((log) => [log.message, log.position?.file ? `${log.position.file}:${log.position.line}:${log.position.column}` : ""].filter(Boolean).join(" ")).filter(Boolean).join(`
+`);
+      throw new Error(`Failed to build ${options.entrypoint}: ${details || "Bun.build() returned errors"}`);
+    }
+    if (!existsSync3(tempOutputPath)) {
+      const emitted = buildResult.outputs.map((output) => output.path).join(", ") || "(none)";
+      throw new Error(`Failed to build ${options.entrypoint}: Bun.build() did not emit ${tempOutputPath}. Emitted: ${emitted}`);
+    }
+    renameSync3(tempOutputPath, options.outputPath);
+    chmodSync(options.outputPath, 493);
+    if (manifest) {
+      await writeRuntimeBinaryCacheManifest({
+        manifestPath: manifest.manifestPath,
+        buildKey: manifest.buildKey,
+        cwd: tempBuildDir,
+        metafile: buildResult.metafile
+      });
+    }
+  })).finally(() => {
+    rmSync2(tempBuildDir, { recursive: true, force: true });
+  });
+}
+function runBestEffortBuildGc() {
+  try {
+    drainMicrotasks();
+  } catch {}
+  try {
+    gcAndSweep();
+  } catch {}
+}
+function runtimeBinaryCacheManifestPath(outputPath) {
+  return `${outputPath}.build-manifest.json`;
+}
+function resolveRuntimeBinaryBuildOptions(options) {
+  return {
+    ...options,
+    entrypoint: resolve4(options.cwd, options.sourcePath),
+    outputPath: resolve4(options.outputPath)
+  };
+}
+function shouldUseRuntimeBinaryBuildWorker() {
+  if (process.env.RIG_RUNTIME_BUILD_WORKER === "1") {
+    return false;
+  }
+  if (process.env.RIG_RUNTIME_BUILD_IN_PROCESS === "1") {
+    return false;
+  }
+  return true;
+}
+async function buildRuntimeBinaryViaWorker(options) {
+  const workerSourcePath = resolveRuntimeBinaryBuildWorkerSourcePath(options);
+  if (!workerSourcePath || !existsSync3(workerSourcePath)) {
+    await buildRuntimeBinaryInProcess(options, {
+      manifestPath: runtimeBinaryCacheManifestPath(options.outputPath),
+      buildKey: createRuntimeBinaryBuildKey({
+        entrypoint: options.entrypoint,
+        define: options.define,
+        env: options.env,
+        external: options.external
+      })
+    });
+    return;
+  }
+  const payloadPath = createRuntimeBinaryBuildWorkerPayloadPath(options.outputPath);
+  const bunCli = resolveRuntimeBinaryBuildWorkerInvocation();
+  await Bun.write(payloadPath, `${JSON.stringify(options)}
+`);
+  const build = Bun.spawn([bunCli.command, workerSourcePath, payloadPath], {
+    cwd: options.cwd,
+    stdout: "pipe",
+    stderr: "pipe",
+    env: {
+      ...process.env,
+      ...options.env,
+      ...bunCli.env,
+      RIG_RUNTIME_BUILD_WORKER: "1"
+    }
+  });
+  const [exitCode, stdout, stderr] = await Promise.all([
+    build.exited,
+    new Response(build.stdout).text(),
+    new Response(build.stderr).text()
+  ]);
+  rmSync2(payloadPath, { force: true });
+  if (exitCode !== 0) {
+    throw new Error(`Failed to build ${options.entrypoint}: ${(stderr || stdout || `worker exited ${exitCode}`).trim()}`);
+  }
+}
+function createRuntimeBinaryBuildWorkerPayloadPath(outputPath) {
+  return resolve4(dirname3(outputPath), `.bun-build-worker-${process.pid}-${Date.now()}-${Math.random().toString(36).slice(2)}.json`);
+}
+function resolveRuntimeBinaryBuildWorkerSourcePath(options) {
+  const envRoots = [
+    options.cwd?.trim(),
+    process.env.RIG_HOST_PROJECT_ROOT?.trim(),
+    process.env.PROJECT_RIG_ROOT?.trim()
+  ].filter(Boolean);
+  for (const root of envRoots) {
+    const candidate = resolve4(root, "packages/isolation-plugin/src/isolation/binary-build-worker.ts");
+    if (existsSync3(candidate)) {
+      return candidate;
+    }
+  }
+  const localCandidate = resolve4(import.meta.dir, "binary-build-worker.ts");
+  return existsSync3(localCandidate) ? localCandidate : null;
+}
+function resolveRuntimeBinaryBuildWorkerInvocation() {
+  const bunPath = Bun.which("bun");
+  if (bunPath) {
+    return { command: bunPath, env: {} };
+  }
+  if (process.execPath?.trim()) {
+    return {
+      command: process.execPath,
+      env: { BUN_BE_BUN: "1" }
+    };
+  }
+  throw new Error("bun is required to run the runtime binary build worker.");
+}
+function currentCompileTarget() {
+  if (process.platform === "darwin") {
+    return process.arch === "arm64" ? "bun-darwin-arm64" : "bun-darwin-x64";
+  }
+  if (process.platform === "linux") {
+    return process.arch === "arm64" ? "bun-linux-arm64" : "bun-linux-x64";
+  }
+  return "bun-windows-x64";
+}
+function createRuntimeBinaryBuildKey(input) {
+  return JSON.stringify({
+    version: 1,
+    bunVersion: Bun.version,
+    platform: process.platform,
+    arch: process.arch,
+    entrypoint: input.entrypoint,
+    define: sortRecord(input.define),
+    external: input.external ? [...input.external].sort() : undefined,
+    env: sortRecord(input.env)
+  });
+}
+async function isRuntimeBinaryBuildFresh(input) {
+  if (!existsSync3(input.outputPath) || !existsSync3(input.manifestPath)) {
+    return false;
+  }
+  let manifest = null;
+  try {
+    manifest = await Bun.file(input.manifestPath).json();
+  } catch {
+    return false;
+  }
+  if (!manifest || manifest.version !== 1 || manifest.buildKey !== input.buildKey) {
+    return false;
+  }
+  for (const [filePath, expectedDigest] of Object.entries(manifest.inputs || {})) {
+    if (!existsSync3(filePath)) {
+      return false;
+    }
+    if (await sha256File(filePath) !== expectedDigest) {
+      return false;
+    }
+  }
+  return true;
+}
+async function writeRuntimeBinaryCacheManifest(input) {
+  const inputs = {};
+  for (const inputPath of Object.keys(input.metafile?.inputs || {}).sort()) {
+    const normalized = normalizeBuildInputPath(input.cwd, inputPath);
+    if (!normalized || !existsSync3(normalized)) {
+      continue;
+    }
+    inputs[normalized] = await sha256File(normalized);
+  }
+  const manifest = {
+    version: 1,
+    buildKey: input.buildKey,
+    inputs
+  };
+  await Bun.write(input.manifestPath, `${JSON.stringify(manifest, null, 2)}
+`);
+}
+function normalizeBuildInputPath(cwd, inputPath) {
+  if (!inputPath) {
+    return null;
+  }
+  if (inputPath.startsWith("file://")) {
+    return fileURLToPath(inputPath);
+  }
+  if (inputPath.startsWith("<")) {
+    return null;
+  }
+  return resolve4(cwd, inputPath);
+}
+async function sha256File(path) {
+  const hasher = new Bun.CryptoHasher("sha256");
+  hasher.update(await Bun.file(path).arrayBuffer());
+  return hasher.digest("hex");
+}
+function sortRecord(value) {
+  if (!value) {
+    return;
+  }
+  return Object.fromEntries(Object.entries(value).sort(([left], [right]) => left.localeCompare(right)));
+}
+async function runSerializedRuntimeBinaryBuild(action) {
+  const previous = runtimeBinaryBuildQueue;
+  let release;
+  runtimeBinaryBuildQueue = new Promise((resolve5) => {
+    release = resolve5;
+  });
+  await previous;
+  try {
+    return await action();
+  } finally {
+    release();
+  }
+}
+async function withTemporaryEnv(env, action) {
+  if (!env) {
+    return action();
+  }
+  const previousValues = new Map;
+  for (const [key, value] of Object.entries(env)) {
+    previousValues.set(key, process.env[key]);
+    if (value === undefined) {
+      delete process.env[key];
+    } else {
+      process.env[key] = value;
+    }
+  }
+  try {
+    return await action();
+  } finally {
+    for (const [key, value] of previousValues.entries()) {
+      if (value === undefined) {
+        delete process.env[key];
+      } else {
+        process.env[key] = value;
+      }
+    }
+  }
+}
+async function withTemporaryCwd(cwd, action) {
+  const previousCwd = process.cwd();
+  process.chdir(cwd);
+  try {
+    return await action();
+  } finally {
+    process.chdir(previousCwd);
+  }
+}
+
+// packages/isolation-plugin/src/isolation/toolchain.ts
+import {
+  GUARD_TOOLCHAIN_SOURCES,
+  LIFECYCLE_TOOLCHAIN_SOURCES,
+  TOOL_MATERIALIZER
+} from "@rig/contracts";
+import { defineCapability } from "@rig/core/capability";
+import { buildProjectPluginHost, requireInstalledCapability } from "@rig/core/capability-loaders";
+import { resolveBunBinaryPath as resolveBunBinaryPath2 } from "@rig/core/runtime-paths";
+var ToolMaterializerCap = defineCapability(TOOL_MATERIALIZER);
+var GuardToolchainSourcesCap = defineCapability(GUARD_TOOLCHAIN_SOURCES);
+var LifecycleToolchainSourcesCap = defineCapability(LIFECYCLE_TOOLCHAIN_SOURCES);
+var SNAPSHOT_SIDECAR_SOURCE = ["packages", "isolation-plugin", "src", "snapshot-sidecar.ts"].join("/");
+async function resolveContributedToolchainSources(projectRoot) {
+  const host = await buildProjectPluginHost(projectRoot);
+  const contributions = [];
+  if (host) {
+    for (const cap of [GuardToolchainSourcesCap, LifecycleToolchainSourcesCap]) {
+      const contribution = await cap.resolve(host);
+      if (contribution)
+        contributions.push(contribution);
+    }
+  }
+  const hookSources = contributions.flatMap((c) => (c.hookBinaries ?? []).map((hb) => [hb.name, hb.source]));
+  const namedSources = {};
+  for (const c of contributions) {
+    for (const [key, value] of Object.entries(c.namedSources ?? {}))
+      namedSources[key] = value;
+  }
+  return { hookSources, namedSources };
+}
+
+// packages/isolation-plugin/src/runtime-config.ts
+import { existsSync as existsSync4, readFileSync as readFileSync2, statSync as statSync3 } from "fs";
+import { resolve as resolve5 } from "path";
+import {
+  POLICY_VERSION
+} from "@rig/contracts";
+var DEFAULT_SCOPE = {
+  fail_closed: true,
+  harness_paths_exempt: true,
+  runtime_paths_exempt: true
+};
+var DEFAULT_SANDBOX = {
+  mode: "enforce",
+  network: true,
+  read_deny: [],
+  write_allow_from_runtime: true
+};
+var DEFAULT_ISOLATION = {
+  default_mode: "worktree",
+  repo_symlink_fallback: false,
+  strict_provisioning: true,
+  fail_closed_on_provision_error: true
+};
+var DEFAULT_COMPLETION = {
+  derive_checks_from_scope: true,
+  checks: [],
+  typescript_config_probe: ["tsconfig.json"],
+  eslint_config_probe: [".eslintrc.js", ".eslintrc.json", "eslint.config.js"]
+};
+var DEFAULT_RUNTIME_IMAGE = {
+  deps: { monorepo_install: false, hp_next_install: false },
+  plugins_require_binaries: true
+};
+var DEFAULT_RUNTIME_SNAPSHOT = { enabled: true };
+var policyCache = null;
+var policyCachePath = null;
+function loadRuntimeImageConfig(projectRoot) {
+  return loadPolicy(projectRoot).runtime_image ?? {
+    deps: { ...DEFAULT_RUNTIME_IMAGE.deps },
+    plugins_require_binaries: DEFAULT_RUNTIME_IMAGE.plugins_require_binaries
+  };
+}
+function defaultPolicy() {
+  return {
+    version: POLICY_VERSION,
+    mode: "enforce",
+    scope: { ...DEFAULT_SCOPE },
+    rules: [],
+    sandbox: { ...DEFAULT_SANDBOX },
+    isolation: { ...DEFAULT_ISOLATION },
+    completion: { ...DEFAULT_COMPLETION },
+    runtime_image: {
+      deps: { ...DEFAULT_RUNTIME_IMAGE.deps },
+      plugins_require_binaries: DEFAULT_RUNTIME_IMAGE.plugins_require_binaries
+    },
+    runtime_snapshot: { ...DEFAULT_RUNTIME_SNAPSHOT }
+  };
+}
+function loadPolicy(projectRoot) {
+  const configPath = resolve5(projectRoot, "rig/policy/policy.json");
+  if (!existsSync4(configPath))
+    return defaultPolicy();
+  let mtimeMs;
+  try {
+    mtimeMs = statSync3(configPath).mtimeMs;
+  } catch {
+    return defaultPolicy();
+  }
+  if (policyCache && policyCachePath === configPath && policyCache.mtimeMs === mtimeMs) {
+    return policyCache.config;
+  }
+  try {
+    const config = mergeWithDefaults(JSON.parse(readFileSync2(configPath, "utf-8")));
+    policyCache = { mtimeMs, config };
+    policyCachePath = configPath;
+    return config;
+  } catch {
+    return defaultPolicy();
+  }
+}
+function mergeWithDefaults(parsed) {
+  const base = defaultPolicy();
+  if (typeof parsed.mode === "string" && isValidMode(parsed.mode))
+    base.mode = parsed.mode;
+  if (parsed.scope && typeof parsed.scope === "object" && !Array.isArray(parsed.scope)) {
+    const scope = parsed.scope;
+    if (typeof scope.fail_closed === "boolean")
+      base.scope.fail_closed = scope.fail_closed;
+    if (typeof scope.harness_paths_exempt === "boolean")
+      base.scope.harness_paths_exempt = scope.harness_paths_exempt;
+    if (typeof scope.runtime_paths_exempt === "boolean")
+      base.scope.runtime_paths_exempt = scope.runtime_paths_exempt;
+  }
+  if (Array.isArray(parsed.rules))
+    base.rules = precompilePolicyRuleRegexes(parsed.rules.filter(isValidRule));
+  if (Array.isArray(parsed.deny) && base.rules.length === 0) {
+    base.rules = precompilePolicyRuleRegexes(migrateLegacyDeny(parsed.deny));
+  }
+  if (parsed.sandbox && typeof parsed.sandbox === "object" && !Array.isArray(parsed.sandbox)) {
+    const sandbox = parsed.sandbox;
+    if (typeof sandbox.mode === "string" && isValidMode(sandbox.mode))
+      base.sandbox.mode = sandbox.mode;
+    if (typeof sandbox.network === "boolean")
+      base.sandbox.network = sandbox.network;
+    if (Array.isArray(sandbox.read_deny))
+      base.sandbox.read_deny = sandbox.read_deny.filter((value) => typeof value === "string");
+    if (typeof sandbox.write_allow_from_runtime === "boolean")
+      base.sandbox.write_allow_from_runtime = sandbox.write_allow_from_runtime;
+  }
+  if (parsed.isolation && typeof parsed.isolation === "object" && !Array.isArray(parsed.isolation)) {
+    const isolation = parsed.isolation;
+    if (isolation.default_mode === "worktree")
+      base.isolation.default_mode = isolation.default_mode;
+    if (typeof isolation.repo_symlink_fallback === "boolean")
+      base.isolation.repo_symlink_fallback = isolation.repo_symlink_fallback;
+    if (typeof isolation.strict_provisioning === "boolean")
+      base.isolation.strict_provisioning = isolation.strict_provisioning;
+    if (typeof isolation.fail_closed_on_provision_error === "boolean")
+      base.isolation.fail_closed_on_provision_error = isolation.fail_closed_on_provision_error;
+  }
+  if (parsed.completion && typeof parsed.completion === "object" && !Array.isArray(parsed.completion)) {
+    const completion = parsed.completion;
+    if (typeof completion.derive_checks_from_scope === "boolean")
+      base.completion.derive_checks_from_scope = completion.derive_checks_from_scope;
+    if (Array.isArray(completion.checks))
+      base.completion.checks = completion.checks.filter((value) => typeof value === "string");
+    if (Array.isArray(completion.typescript_config_probe))
+      base.completion.typescript_config_probe = completion.typescript_config_probe.filter((value) => typeof value === "string");
+    if (Array.isArray(completion.eslint_config_probe))
+      base.completion.eslint_config_probe = completion.eslint_config_probe.filter((value) => typeof value === "string");
+  }
+  if (parsed.runtime_image && typeof parsed.runtime_image === "object" && !Array.isArray(parsed.runtime_image)) {
+    const runtimeImage = parsed.runtime_image;
+    if (runtimeImage.deps && typeof runtimeImage.deps === "object" && !Array.isArray(runtimeImage.deps)) {
+      const deps = runtimeImage.deps;
+      if (typeof deps.monorepo_install === "boolean")
+        base.runtime_image.deps.monorepo_install = deps.monorepo_install;
+      if (typeof deps.hp_next_install === "boolean")
+        base.runtime_image.deps.hp_next_install = deps.hp_next_install;
+    }
+    if (typeof runtimeImage.plugins_require_binaries === "boolean")
+      base.runtime_image.plugins_require_binaries = runtimeImage.plugins_require_binaries;
+  }
+  if (parsed.runtime_snapshot && typeof parsed.runtime_snapshot === "object" && !Array.isArray(parsed.runtime_snapshot)) {
+    const runtimeSnapshot = parsed.runtime_snapshot;
+    if (typeof runtimeSnapshot.enabled === "boolean")
+      base.runtime_snapshot.enabled = runtimeSnapshot.enabled;
+  }
+  return base;
+}
+function isValidMode(value) {
+  return value === "off" || value === "observe" || value === "enforce";
+}
+function isValidRule(value) {
+  if (!value || typeof value !== "object" || Array.isArray(value))
+    return false;
+  const rule = value;
+  return typeof rule.id === "string" && typeof rule.category === "string" && !!rule.match && typeof rule.match === "object";
+}
+function migrateLegacyDeny(deny) {
+  const rules = [];
+  for (const entry of deny) {
+    if (typeof entry.id !== "string")
+      continue;
+    const match = {};
+    if (typeof entry.pattern === "string")
+      match.pattern = entry.pattern;
+    if (typeof entry.regex === "string")
+      match.regex = entry.regex;
+    if (!match.pattern && !match.regex)
+      continue;
+    const rule = {
+      id: entry.id,
+      category: "command",
+      match,
+      action: entry.action === "warn" ? "warn" : "block"
+    };
+    if (typeof entry.reason === "string") {
+      rule.description = entry.reason;
+    }
+    rules.push(rule);
+  }
+  return rules;
+}
+function precompilePolicyRuleRegexes(rules) {
+  return rules.map((rule) => {
+    const compiled = { ...rule };
+    const matchRegex = compileRegex(rule.match?.regex);
+    const unlessRegex = compileRegex(rule.unless?.regex);
+    if (matchRegex) {
+      compiled.compiledRegex = matchRegex;
+    }
+    if (unlessRegex) {
+      compiled.compiledUnlessRegex = unlessRegex;
+    }
+    return compiled;
+  });
+}
+function compileRegex(pattern) {
+  if (!pattern)
+    return;
+  try {
+    return new RegExp(pattern);
+  } catch {
+    return;
+  }
+}
+
+// packages/isolation-plugin/src/sandbox/backend.ts
+init_utils();
+import {
+  resolveBunInstallDir as resolveBunInstallDir2,
+  resolveClaudeInstallDir as resolveClaudeInstallDir2,
+  resolveNodeInstallDir as resolveNodeInstallDir2,
+  resolveRuntimeDependencyRoots
+} from "@rig/core/runtime-paths";
+
+// packages/isolation-plugin/src/isolation/runner.ts
+import { resolveRuntimeWorkspaceLayout as resolveRuntimeWorkspaceLayout2 } from "@rig/core/layout";
+import { resolveBunBinaryPath as resolveBunBinaryPath3 } from "@rig/core/runtime-paths";
+
+// packages/isolation-plugin/src/isolation/index.ts
+var TaskDataCap = defineCapability2(TASK_DATA_SERVICE_CAPABILITY);
+
+// packages/isolation-plugin/src/isolation/provisioning-env.ts
+import { runtimeProvisioningEnv as runtimeProvisioningEnv2 } from "@rig/core/runtime-provisioning-env";
+
+// packages/isolation-plugin/src/image.ts
+import { resolveBunBinaryPath as resolveBunBinaryPath4 } from "@rig/core/runtime-paths";
+var HASH_RESULT_SIZE = 40;
+var nativeRuntimeLibrary2 = null;
+function sha256Hex2(input) {
+  const hasher = new Bun.CryptoHasher("sha256");
+  hasher.update(input);
+  return hasher.digest("hex");
+}
+function hashFile(filePath) {
+  if (!existsSync5(filePath)) {
+    return "";
+  }
+  return hashPathWithNative("runtime_hash_file", filePath);
+}
+function hashDirectory(dir) {
+  if (!existsSync5(dir)) {
+    return sha256Hex2("(empty)");
+  }
+  return hashPathWithNative("runtime_hash_tree", dir);
+}
+function hashDirectories(dirs) {
+  const combined = new Bun.CryptoHasher("sha256");
+  for (const { label, path } of dirs) {
+    const dirHash = hashDirectory(path);
+    combined.update(`${label}:${dirHash}
+`);
+  }
+  return combined.digest("hex");
+}
+async function probeVersion(args) {
+  try {
+    const proc = Bun.spawn(args, { stdout: "pipe", stderr: "pipe" });
+    const [exitCode, stdout] = await Promise.all([
+      proc.exited,
+      new Response(proc.stdout).text()
+    ]);
+    if (exitCode === 0) {
+      return stdout.trim().split(`
+`)[0] ?? "";
+    }
+    return "";
+  } catch {
+    return "";
+  }
+}
+async function computeRuntimeImageFingerprint(projectRoot) {
+  return runFingerprintSidecar(projectRoot);
+}
+async function computeRuntimeImageFingerprintNative(projectRoot) {
+  const [nodeVersion, claudeVersion] = await Promise.all([
+    probeVersion(["node", "--version"]),
+    probeVersion(["claude", "--version"])
+  ]);
+  const runtimeDir = resolve6(projectRoot, "packages", "runtime");
+  const cliDir = resolve6(projectRoot, "packages", "cli");
+  const runtimeCodeHash = hashDirectories([
+    { label: "packages/runtime", path: runtimeDir },
+    { label: "packages/cli", path: cliDir }
+  ]);
+  const policyPath = resolve6(projectRoot, "rig/policy/policy.json");
+  const policyHash = hashFile(policyPath);
+  const pluginsDir = resolve6(projectRoot, "rig/plugins");
+  const pluginsHash = hashDirectory(pluginsDir);
+  const baseLockfiles = [
+    "bun.lock",
+    "bun.lockb",
+    "package-lock.json",
+    "package.json",
+    "tsconfig.json"
+  ];
+  const extra = process.env.RIG_RUNTIME_IMAGE_EXTRA_LOCKFILES?.trim();
+  const lockfileCandidates = extra ? [...baseLockfiles, ...extra.split(",").map((p) => p.trim()).filter(Boolean)] : baseLockfiles;
+  const lockfileHashes = {};
+  for (const relPath of lockfileCandidates) {
+    const fullPath = resolve6(projectRoot, relPath);
+    if (existsSync5(fullPath)) {
+      lockfileHashes[relPath] = hashFile(fullPath);
+    }
+  }
+  return {
+    platform: process.platform,
+    bunVersion: Bun.version,
+    nodeVersion,
+    claudeVersion,
+    runtimeCodeHash,
+    policyHash,
+    pluginsHash,
+    lockfileHashes
+  };
+}
+async function runFingerprintSidecar(projectRoot) {
+  const sidecarPath = resolveRuntimeSourceScriptPath(projectRoot, "image-fingerprint-sidecar.ts");
+  const bunCli = resolveBunCliInvocation();
+  const proc = Bun.spawn([bunCli.command, sidecarPath, "--project-root", projectRoot], {
+    cwd: projectRoot,
+    env: {
+      ...process.env,
+      ...bunCli.env
+    },
+    stdout: "pipe",
+    stderr: "pipe"
+  });
+  const [exitCode, stdout, stderr] = await Promise.all([
+    proc.exited,
+    new Response(proc.stdout).text(),
+    new Response(proc.stderr).text()
+  ]);
+  if (exitCode !== 0) {
+    throw new Error(stderr.trim() || stdout.trim() || `runtime image sidecar exited with ${exitCode}`);
+  }
+  return JSON.parse(stdout);
+}
+function resolveRuntimeSourceScriptPath(projectRoot, fileName) {
+  const hostRoots = [
+    process.env.RIG_HOST_PROJECT_ROOT?.trim(),
+    process.env.PROJECT_RIG_ROOT?.trim(),
+    projectRoot.trim()
+  ].filter((value) => Boolean(value));
+  for (const root of hostRoots) {
+    const candidate = resolve6(root, "packages/isolation-plugin/src", fileName);
+    if (existsSync5(candidate)) {
+      return candidate;
+    }
+  }
+  return resolve6(import.meta.dir, fileName);
+}
+function resolveBunCliInvocation() {
+  if (process.env.RIG_BUN_PATH?.trim()) {
+    return {
+      command: process.env.RIG_BUN_PATH.trim(),
+      env: {}
+    };
+  }
+  try {
+    const systemBun = resolveBunBinaryPath4();
+    return {
+      command: systemBun,
+      env: {}
+    };
+  } catch {}
+  if (process.execPath?.trim()) {
+    return {
+      command: process.execPath,
+      env: { BUN_BE_BUN: "1" }
+    };
+  }
+  return { command: "bun", env: {} };
+}
+function hashPathWithNative(symbol, path) {
+  const pathBuffer = Buffer.from(path, "utf8");
+  const runtimeLibrary = getNativeRuntimeLibrary();
+  const resultPtr = runtimeLibrary.symbols[symbol](Number(ptr2(pathBuffer)), pathBuffer.byteLength);
+  if (!resultPtr) {
+    throw new Error(`${symbol} returned null for ${path}`);
+  }
+  try {
+    const view = viewAt(resultPtr, HASH_RESULT_SIZE);
+    const error = readError(view, 24, 32);
+    if (error) {
+      throw new Error(`${symbol} failed: ${error}`);
+    }
+    return readString(readU64(view, 8), readU64(view, 16));
+  } finally {
+    runtimeLibrary.symbols.snapshot_release(resultPtr);
+  }
+}
+function getNativeRuntimeLibrary() {
+  if (nativeRuntimeLibrary2) {
+    return nativeRuntimeLibrary2;
+  }
+  nativeRuntimeLibrary2 = requireNativeRuntimeLibrary("runtime image hashing");
+  return nativeRuntimeLibrary2;
+}
+function viewAt(pointer, size) {
+  const buffer = toBuffer2(pointer, 0, size);
+  return new DataView(buffer.buffer, buffer.byteOffset, buffer.byteLength);
+}
+function readString(pointer, length) {
+  if (!pointer || length === 0) {
+    return "";
+  }
+  return Buffer.from(toBuffer2(pointer, 0, length)).toString("utf8");
+}
+function readU64(view, offset) {
+  return Number(view.getBigUint64(offset, true));
+}
+function readError(view, pointerOffset, lengthOffset) {
+  const errorPointer = readU64(view, pointerOffset);
+  const errorLength = readU64(view, lengthOffset);
+  if (!errorPointer || !errorLength) {
+    return null;
+  }
+  return readString(errorPointer, errorLength);
+}
+function computeRuntimeImageId(fp) {
+  const serialized = JSON.stringify(fp);
+  return sha256Hex2(serialized).slice(0, 16);
+}
+var LOCK_STALE_MS = 10 * 60 * 1000;
+function isPidAlive(pid) {
+  if (!Number.isInteger(pid) || pid <= 0) {
+    return false;
+  }
+  try {
+    process.kill(pid, 0);
+    return true;
+  } catch {
+    return false;
+  }
+}
+function readRuntimeImageLockData(lockPath) {
+  try {
+    const stat = lstatSync(lockPath);
+    const raw = stat.isDirectory() ? readFileSync3(resolve6(lockPath, "owner.json"), "utf-8") : readFileSync3(lockPath, "utf-8");
+    return JSON.parse(raw);
+  } catch {
+    return null;
+  }
+}
+function acquireRuntimeImageLock(lockPath) {
+  const lockData = { pid: process.pid, timestamp: Date.now() };
+  const lockBody = JSON.stringify(lockData);
+  const tryExclusiveCreate = () => {
+    try {
+      mkdirSync4(lockPath);
+      writeFileSync3(resolve6(lockPath, "owner.json"), lockBody, "utf-8");
+      return true;
+    } catch {
+      try {
+        if (existsSync5(lockPath) && !lstatSync(lockPath).isDirectory()) {
+          rmSync3(lockPath, { force: true });
+        }
+      } catch {}
+      return false;
+    }
+  };
+  if (tryExclusiveCreate()) {
+    return true;
+  }
+  if (existsSync5(lockPath)) {
+    const data = readRuntimeImageLockData(lockPath);
+    if (data) {
+      const age = Date.now() - data.timestamp;
+      if (age < LOCK_STALE_MS) {
+        return false;
+      }
+      if (isPidAlive(data.pid)) {
+        return false;
+      }
+    }
+    rmSync3(lockPath, { recursive: true, force: true });
+  }
+  return tryExclusiveCreate();
+}
+function releaseRuntimeImageLock(lockPath) {
+  try {
+    rmSync3(lockPath, { recursive: true, force: true });
+  } catch {}
+}
+async function waitForRuntimeImageManifest(manifestPath, timeoutMs, pollMs = 500) {
+  const deadline = Date.now() + timeoutMs;
+  while (!existsSync5(manifestPath) && Date.now() < deadline) {
+    await Bun.sleep(pollMs);
+  }
+  return existsSync5(manifestPath);
+}
+var SHARED_HOOK_NAMES = [
+  "scope-guard",
+  "import-guard",
+  "safety-guard",
+  "test-integrity-guard",
+  "audit-trail",
+  "post-edit-lint",
+  "inject-context",
+  "task-runtime-start"
+];
+function discoverValidators(projectRoot) {
+  const validatorsRoot = resolve6(projectRoot, "packages/validator-kit/src/validators");
+  const entries = [];
+  if (!existsSync5(validatorsRoot)) {
+    return entries;
+  }
+  const categories = readdirSync(validatorsRoot, { withFileTypes: true }).filter((e) => e.isDirectory()).map((e) => e.name).sort();
+  for (const category of categories) {
+    const categoryDir = resolve6(validatorsRoot, category);
+    const files = readdirSync(categoryDir, { withFileTypes: true }).filter((e) => e.isFile() && e.name.endsWith(".ts")).map((e) => e.name).sort();
+    for (const file of files) {
+      const check = file.replace(/\.ts$/, "");
+      if (!/^[a-z][\w-]*$/.test(check)) {
+        continue;
+      }
+      entries.push({
+        category,
+        check,
+        sourcePath: `packages/validator-kit/src/validators/${category}/${check}.ts`
+      });
+    }
+  }
+  return entries;
+}
+function discoverPlugins(projectRoot) {
+  const pluginsRoot = resolve6(projectRoot, "rig/plugins");
+  if (!existsSync5(pluginsRoot)) {
+    return [];
+  }
+  return readdirSync(pluginsRoot, { withFileTypes: true }).filter((entry) => entry.isFile() && /\.plugin\.(ts|js|mjs|cjs)$/.test(entry.name)).map((entry) => {
+    const name = entry.name.replace(/\.plugin\.(ts|js|mjs|cjs)$/, "");
+    return {
+      name,
+      sourcePath: `rig/plugins/${entry.name}`
+    };
+  }).sort((a, b) => a.name < b.name ? -1 : a.name > b.name ? 1 : 0);
+}
+async function provisionDependencyLayer(projectRoot, tempDepsDir) {
+  const config = loadRuntimeImageConfig(projectRoot);
+  if (!config.deps.monorepo_install && !config.deps.hp_next_install)
+    return;
+  const linkNodeModules = (sourceNodeModules, targetNodeModules) => {
+    if (existsSync5(targetNodeModules)) {
+      return;
+    }
+    try {
+      symlinkSync(sourceNodeModules, targetNodeModules);
+    } catch {
+      cpSync2(sourceNodeModules, targetNodeModules, {
+        recursive: true,
+        force: true,
+        dereference: true
+      });
+    }
+  };
+  const ensureInstall = async (cwd, label) => {
+    const bunCli = resolveBunBinaryPath4();
+    const install = Bun.spawn([bunCli, "install"], {
+      cwd,
+      stdout: "pipe",
+      stderr: "pipe",
+      env: runtimeProvisioningEnv2()
+    });
+    const [exitCode, stdout, stderr] = await Promise.all([
+      install.exited,
+      new Response(install.stdout).text(),
+      new Response(install.stderr).text()
+    ]);
+    if (exitCode !== 0) {
+      throw new Error([
+        `Failed to install shared runtime dependencies for ${label}.`,
+        `cwd: ${cwd}`,
+        stderr.trim() || stdout.trim()
+      ].filter(Boolean).join(`
+`));
+    }
+  };
+  if (config.deps.monorepo_install) {
+    const monorepoSubRel = process.env.RIG_MONOREPO_INSTALL_PATH?.trim() || "repos/spliter-monorepo/humoongate";
+    const monorepoSubRoot = resolve6(projectRoot, monorepoSubRel);
+    const monorepoSubPackage = resolve6(monorepoSubRoot, "package.json");
+    if (existsSync5(monorepoSubPackage)) {
+      const sourceNodeModules = resolve6(monorepoSubRoot, "node_modules");
+      try {
+        if (lstatSync(sourceNodeModules).isSymbolicLink() && !existsSync5(sourceNodeModules)) {
+          unlinkSync(sourceNodeModules);
+        }
+      } catch {}
+      if (!existsSync5(sourceNodeModules)) {
+        await ensureInstall(monorepoSubRoot, "monorepo");
+      }
+      const targetRoot = resolve6(tempDepsDir, "humoongate");
+      const targetNodeModules = resolve6(targetRoot, "node_modules");
+      mkdirSync4(targetRoot, { recursive: true });
+      linkNodeModules(sourceNodeModules, targetNodeModules);
+      for (const fileName of ["package.json", "bun.lockb"]) {
+        const source = resolve6(monorepoSubRoot, fileName);
+        if (existsSync5(source)) {
+          cpSync2(source, resolve6(targetRoot, fileName), { force: true });
+        }
+      }
+    }
+  }
+  if (config.deps.hp_next_install) {
+    const monorepoRel = process.env.RIG_HP_NEXT_MONOREPO_PATH?.trim() || "repos/spliter-monorepo";
+    const appRel = process.env.RIG_HP_NEXT_APP_PATH?.trim() || "microservices/hp-next-frontend/app";
+    const monorepoRoot = resolve6(projectRoot, monorepoRel);
+    const hpNextRoot = resolve6(monorepoRoot, appRel);
+    const hpNextPackage = resolve6(hpNextRoot, "package.json");
+    if (existsSync5(hpNextPackage)) {
+      const rootNodeModules = resolve6(monorepoRoot, "node_modules");
+      const hpNextNodeModules = resolve6(hpNextRoot, "node_modules");
+      if (!existsSync5(rootNodeModules) && !existsSync5(hpNextNodeModules)) {
+        await ensureInstall(monorepoRoot, "spliter-monorepo hp-next workspace");
+      }
+      const targetRoot = resolve6(tempDepsDir, "microservices", "hp-next-frontend", "app");
+      mkdirSync4(targetRoot, { recursive: true });
+      if (existsSync5(rootNodeModules)) {
+        linkNodeModules(rootNodeModules, resolve6(targetRoot, "root-node_modules"));
+      }
+      if (existsSync5(hpNextNodeModules)) {
+        linkNodeModules(hpNextNodeModules, resolve6(targetRoot, "node_modules"));
+      }
+      for (const fileName of ["package.json", "bun.lock", "bun.lockb", "package-lock.json"]) {
+        const source = resolve6(hpNextRoot, fileName);
+        if (existsSync5(source)) {
+          cpSync2(source, resolve6(targetRoot, fileName), { force: true });
+        }
+      }
+      for (const fileName of ["package.json", "bun.lock", "bun.lockb", "package-lock.json"]) {
+        const source = resolve6(monorepoRoot, fileName);
+        if (existsSync5(source)) {
+          cpSync2(source, resolve6(targetRoot, `workspace-${fileName}`), { force: true });
+        }
+      }
+    }
+  }
+}
+function imageFromDir(rootDir, fingerprint, id) {
+  return {
+    id,
+    rootDir,
+    binDir: resolve6(rootDir, "bin"),
+    hooksDir: resolve6(rootDir, "bin/hooks"),
+    pluginsDir: resolve6(rootDir, "bin/plugins"),
+    validatorsDir: resolve6(rootDir, "bin/validators"),
+    depsDir: resolve6(rootDir, "deps"),
+    manifestPath: resolve6(rootDir, "image-manifest.json"),
+    fingerprint
+  };
+}
+function cleanupImageBuildDirs(rootDir, currentBuildDir) {
+  const imagesRootDir = resolve6(rootDir, "..");
+  const buildPrefix = `${rootDir}.building-`;
+  try {
+    for (const entry of readdirSync(imagesRootDir)) {
+      const fullPath = resolve6(imagesRootDir, entry);
+      if (fullPath.startsWith(buildPrefix) && fullPath !== currentBuildDir) {
+        rmSync3(fullPath, { recursive: true, force: true });
+      }
+    }
+  } catch {}
+}
+async function buildImage(projectRoot, image) {
+  const { rootDir } = image;
+  const bunPath = resolveBunBinaryPath4();
+  const buildDir = `${rootDir}.building-${process.pid}`;
+  cleanupImageBuildDirs(rootDir, buildDir);
+  if (existsSync5(buildDir)) {
+    rmSync3(buildDir, { recursive: true, force: true });
+  }
+  let promoted = false;
+  try {
+    const tempBinDir = resolve6(buildDir, "bin");
+    const tempHooksDir = resolve6(buildDir, "bin/hooks");
+    const tempPluginsDir = resolve6(buildDir, "bin/plugins");
+    const tempValidatorsDir = resolve6(buildDir, "bin/validators");
+    const tempDepsDir = resolve6(buildDir, "deps");
+    mkdirSync4(tempBinDir, { recursive: true });
+    mkdirSync4(tempHooksDir, { recursive: true });
+    mkdirSync4(tempPluginsDir, { recursive: true });
+    mkdirSync4(tempValidatorsDir, { recursive: true });
+    mkdirSync4(tempDepsDir, { recursive: true });
+    const nativeRuntimeLibraryPath = await materializeNativeRuntimeLibrary(tempBinDir);
+    if (!nativeRuntimeLibraryPath) {
+      throw new Error("Failed to provision the native Zig runtime library for runtime images.");
+    }
+    await buildBinary("packages/cli/bin/rig.ts", resolve6(tempBinDir, "rig"), projectRoot);
+    await buildBinary("packages/cli/bin/rig-agent.ts", resolve6(tempBinDir, "rig-agent"), projectRoot);
+    const { hookSources, namedSources } = await resolveContributedToolchainSources(projectRoot);
+    const controlledBashSource = namedSources["controlled-bash"];
+    if (!controlledBashSource) {
+      throw new Error("No controlled-bash toolchain source contribution is registered.");
+    }
+    await buildBinary(controlledBashSource, resolve6(tempBinDir, "controlled-bash"), projectRoot);
+    for (const [hookName, source] of hookSources) {
+      await buildBinary(source, resolve6(tempHooksDir, hookName), projectRoot);
+    }
+    const plugins = discoverPlugins(projectRoot);
+    for (const plugin of plugins) {
+      if (existsSync5(resolve6(projectRoot, plugin.sourcePath))) {
+        await buildBinary(plugin.sourcePath, resolve6(tempPluginsDir, plugin.name), projectRoot);
+      }
+    }
+    const validators = discoverValidators(projectRoot);
+    for (const { category, check, sourcePath } of validators) {
+      if (!existsSync5(resolve6(projectRoot, sourcePath))) {
+        continue;
+      }
+      await buildBinary(sourcePath, resolve6(tempValidatorsDir, `${category}-${check}`), projectRoot, {
+        AGENT_BUN_PATH: bunPath
+      });
+    }
+    await provisionDependencyLayer(projectRoot, tempDepsDir);
+    const manifest = {
+      id: image.id,
+      fingerprint: image.fingerprint,
+      builtAt: new Date().toISOString(),
+      pid: process.pid
+    };
+    writeFileSync3(resolve6(buildDir, "image-manifest.json"), JSON.stringify(manifest, null, 2), "utf-8");
+    if (existsSync5(rootDir)) {
+      return;
+    }
+    try {
+      renameSync4(buildDir, rootDir);
+      promoted = true;
+    } catch {
+      if (existsSync5(rootDir)) {
+        return;
+      }
+      throw new Error(`Failed to promote runtime image build directory: ${buildDir} -> ${rootDir}`);
+    }
+  } finally {
+    if (!promoted && existsSync5(buildDir)) {
+      rmSync3(buildDir, { recursive: true, force: true });
+    }
+  }
+}
+function isRuntimeImageHealthy(projectRoot, image) {
+  if (!existsSync5(image.manifestPath)) {
+    return false;
+  }
+  const requiredPaths = [
+    resolve6(image.binDir, "rig"),
+    resolve6(image.binDir, "rig-agent"),
+    resolve6(image.binDir, "controlled-bash"),
+    ...SHARED_HOOK_NAMES.map((hookName) => resolve6(image.hooksDir, hookName)),
+    ...discoverPlugins(projectRoot).map((plugin) => resolve6(image.pluginsDir, plugin.name)),
+    ...discoverValidators(projectRoot).map(({ category, check }) => resolve6(image.validatorsDir, `${category}-${check}`))
+  ];
+  return requiredPaths.every((path) => existsSync5(path));
+}
+function computeRuntimeImageIdFromFingerprint(fp) {
+  return computeRuntimeImageId(fp);
+}
+async function ensureRuntimeImage(projectRoot) {
+  const fingerprint = await computeRuntimeImageFingerprint(projectRoot);
+  const id = computeRuntimeImageId(fingerprint);
+  const layout = resolveRigLayout2(projectRoot);
+  const imagesRoot = resolve6(layout.runtimeDir, "images");
+  mkdirSync4(imagesRoot, { recursive: true });
+  const imageRootDir = resolve6(imagesRoot, id);
+  const image = imageFromDir(imageRootDir, fingerprint, id);
+  if (isRuntimeImageHealthy(projectRoot, image)) {
+    return image;
+  }
+  const lockPath = resolve6(imagesRoot, `${id}.lock`);
+  const acquired = acquireRuntimeImageLock(lockPath);
+  try {
+    if (isRuntimeImageHealthy(projectRoot, image)) {
+      return image;
+    }
+    if (!acquired) {
+      const ready = await waitForRuntimeImageManifest(image.manifestPath, LOCK_STALE_MS);
+      if (!ready || !isRuntimeImageHealthy(projectRoot, image)) {
+        throw new Error(`Runtime image ${id} is being built by another process and is not healthy after waiting. ` + `Lock file: ${lockPath}`);
+      }
+      return image;
+    }
+    if (existsSync5(image.rootDir)) {
+      rmSync3(image.rootDir, { recursive: true, force: true });
+    }
+    await buildImage(projectRoot, image);
+    return image;
+  } finally {
+    if (acquired) {
+      releaseRuntimeImageLock(lockPath);
+    }
+  }
+}
+export {
+  waitForRuntimeImageManifest,
+  releaseRuntimeImageLock,
+  ensureRuntimeImage,
+  computeRuntimeImageIdFromFingerprint,
+  computeRuntimeImageId,
+  computeRuntimeImageFingerprintNative,
+  computeRuntimeImageFingerprint,
+  acquireRuntimeImageLock
+};