@hasna/loops 0.3.20 → 0.3.22

package/README.md

@@ -324,7 +324,10 @@ renames only with `--apply`. Apply mode writes a SQLite backup under
 groups loops with the same normalized name, cwd, and schedule. `hygiene scripts`
 inventories loops whose command still references `~/.hasna/loops/scripts`.
 `hygiene route-tasks` upserts deduped Todos tasks for hygiene findings with
-stable fingerprints and `no_tmux_dispatch=true` metadata.
+stable fingerprints and `no_tmux_dispatch=true` metadata. Route commands use a
+package-managed cursor under `<LOOPS_DATA_DIR>/route-cursors.json` so bounded
+`--max-actions` runs advance through all findings over repeated scheduled runs
+instead of reprocessing only the first batch.
 
 Archive loops when retiring old automation but preserving history:
 

package/dist/cli/index.js

@@ -2833,6 +2833,7 @@ function commandSpec(target) {
     timeoutMs: agentTarget.timeoutMs ?? DEFAULT_TIMEOUT_MS,
     account: agentTarget.account,
     accountTool: agentTarget.account?.tool ?? accountToolForProvider(agentTarget.provider),
+    nativeAuthProfile: agentTarget.authProfile ? { provider: agentTarget.provider, profile: agentTarget.authProfile } : undefined,
     preflightAnyOf: agentTarget.provider === "cursor" ? ["cursor", "agent"] : undefined,
     stdin: agentTarget.prompt,
     allowlist: agentTarget.allowlist
@@ -2914,6 +2915,9 @@ function remotePreflightScript(spec, metadata) {
   if (spec.preflightAnyOf?.length) {
     lines.push(`if ! ${spec.preflightAnyOf.map((command) => `command -v ${shellQuote(command)} >/dev/null 2>&1`).join(" && ! ")}; then`, `  echo 'none of required executables found: ${spec.preflightAnyOf.join(", ")}' >&2`, "  exit 127", "fi");
   }
+  if (spec.nativeAuthProfile?.provider === "codewith") {
+    lines.push(`__OPENLOOPS_CODEWITH_PROFILES="$(${shellQuote(spec.command)} profile list)" || {`, `  printf '%s\\n' ${shellQuote("codewith auth profile preflight failed")} >&2`, "  exit 1", "}", `if ! printf '%s\\n' "$__OPENLOOPS_CODEWITH_PROFILES" | awk 'NR > 1 { print $1 }' | grep -Fx ${shellQuote(spec.nativeAuthProfile.profile)} >/dev/null; then`, `  printf '%s\\n' ${shellQuote(`codewith auth profile not found: ${spec.nativeAuthProfile.profile}`)} >&2`, "  exit 1", "fi");
+  }
   return lines.join(`
 `);
 }
@@ -2929,6 +2933,29 @@ function transportEnv(opts) {
   env.PATH = normalizeExecutionPath(env);
   return env;
 }
+function preflightNativeAuthProfile(spec, env) {
+  if (!spec.nativeAuthProfile)
+    return;
+  if (spec.nativeAuthProfile.provider !== "codewith")
+    return;
+  const result = spawnSync2(spec.command, ["profile", "list"], {
+    encoding: "utf8",
+    env,
+    stdio: ["ignore", "pipe", "pipe"],
+    timeout: 15000
+  });
+  if (result.error) {
+    throw new Error(`codewith auth profile preflight failed: ${result.error.message}`);
+  }
+  if ((result.status ?? 1) !== 0) {
+    const detail = (result.stderr || result.stdout || `exit ${result.status ?? "unknown"}`).trim();
+    throw new Error(`codewith auth profile preflight failed${detail ? `: ${detail}` : ""}`);
+  }
+  const profiles = new Set((result.stdout || "").split(/\r?\n/).slice(1).map((line) => line.trim().split(/\s+/)[0]).filter(Boolean));
+  if (!profiles.has(spec.nativeAuthProfile.profile)) {
+    throw new Error(`codewith auth profile not found: ${spec.nativeAuthProfile.profile}`);
+  }
+}
 function preflightRemoteSpec(spec, machine, metadata, opts) {
   const plan = (opts.machineCommandResolver ?? resolveMachineCommand)(machine.id, "bash -s");
   const result = spawnSync2(plan.command, plan.args, {
@@ -3070,6 +3097,7 @@ function preflightTarget(target, metadata = {}, opts = {}) {
   if (spec.preflightAnyOf?.length && !spec.preflightAnyOf.some((command) => executableExists(command, env))) {
     throw new Error(`none of required executables found: ${spec.preflightAnyOf.join(", ")}`);
   }
+  preflightNativeAuthProfile(spec, env);
   return {
     command: spec.command,
     accountProfile: spec.account?.profile,
@@ -3111,6 +3139,19 @@ async function executeTarget(target, metadata = {}, opts = {}) {
       durationMs: 0
     };
   }
+  try {
+    preflightNativeAuthProfile(spec, env);
+  } catch (err) {
+    return {
+      status: "failed",
+      stdout: "",
+      stderr: "",
+      error: err instanceof Error ? err.message : String(err),
+      startedAt,
+      finishedAt: nowIso(),
+      durationMs: 0
+    };
+  }
   const child = spawn(spec.command, spec.args, {
     cwd: spec.cwd,
     env,
@@ -3767,11 +3808,21 @@ async function executeWorkflow(store, workflow, opts = {}) {
   return workflowResult(finalRun, terminalStatus, startedAt, finishedAt, JSON.stringify({ workflowRun: finalRun, steps }, null, 2), blockingError);
 }
 function preflightWorkflow(workflow, opts = {}) {
-  return workflowExecutionOrder(workflow).map((step) => preflightTarget(targetWithStepAccount(step), {
-    workflowId: workflow.id,
-    workflowName: workflow.name,
-    workflowStepId: step.id
-  }, opts));
+  return workflowExecutionOrder(workflow).map((step) => {
+    try {
+      return {
+        workflowStepId: step.id,
+        ...preflightTarget(targetWithStepAccount(step), {
+          workflowId: workflow.id,
+          workflowName: workflow.name,
+          workflowStepId: step.id
+        }, opts)
+      };
+    } catch (error) {
+      const message = error instanceof Error ? error.message : String(error);
+      throw new Error(`workflow step ${step.id} preflight failed: ${message}`);
+    }
+  });
 }
 async function executeLoopTarget(store, loop, run, opts = {}) {
   if (loop.target.type !== "workflow") {
@@ -4757,6 +4808,7 @@ function recommendedTask(loop, run, failure, route) {
     `Status: ${run.status}`,
     `Classification: ${failure.classification}`,
     `Fingerprint: ${failure.fingerprint}`,
+    `No-tmux routing: Do not dispatch or paste prompts into tmux panes; use task-triggered headless worker/verifier workflows only.`,
     route.cwd ? `Route cwd: ${route.cwd}` : undefined,
     route.provider ? `Provider: ${route.provider}` : undefined,
     failure.evidence.error ? `Error:
@@ -5091,7 +5143,7 @@ function buildScriptInventoryReport(store, opts = {}) {
 // package.json
 var package_default = {
   name: "@hasna/loops",
-  version: "0.3.20",
+  version: "0.3.22",
   description: "Persistent local loop and workflow runner for deterministic commands and headless AI coding agents",
   type: "module",
   main: "dist/index.js",
@@ -5332,6 +5384,7 @@ function renderTodosTaskWorkerVerifierWorkflow(input) {
     "You are the worker agent for a task-triggered OpenLoops workflow.",
     "Investigate first before changing files. Use the todos CLI as the source of truth for the task.",
     "Claim/start the task if appropriate, inspect the repository/project state, implement only the task scope, run focused validation, preserve unrelated user changes, and update the task with comments, evidence, changed files, commits, and blockers.",
+    "Do not dispatch or paste prompts into tmux panes. If additional work is required, create or update deduped todos tasks so task-created routing can start a fresh headless workflow.",
     "Do not mark the task complete unless the work is genuinely done and validated.",
     "",
     `Task context JSON: ${compactJson(taskContext)}`
@@ -5343,6 +5396,7 @@ function renderTodosTaskWorkerVerifierWorkflow(input) {
     "You are the verifier agent for a task-triggered OpenLoops workflow.",
     "Use fresh context. Inspect the task, repository state, commits, tests, and worker evidence. Act as an adversarial reviewer focused on correctness, regressions, missing tests, security, and incomplete requirements.",
     "If the work is valid, record verification evidence in todos and mark/leave the task in the correct completed state according to the todos CLI. If it is not valid, add precise follow-up tasks or comments and leave the original task open or blocked with clear evidence.",
+    "Do not dispatch or paste prompts into tmux panes. If additional work is required, create or update deduped todos tasks so task-created routing can start a fresh headless workflow.",
     "Do not make broad unrelated changes. Only apply tiny verification fixes when they are necessary and low risk; otherwise create follow-up tasks.",
     "",
     `Task context JSON: ${compactJson(taskContext)}`
@@ -5573,6 +5627,41 @@ function print(value, human) {
   else
     console.log(human);
 }
+function printCreatedLoop(loop, human, preflight) {
+  if (preflight !== undefined)
+    print({ loop: publicLoop(loop), preflight }, human);
+  else
+    print(publicLoop(loop), human);
+}
+function preflightFailed(error, context) {
+  if (!isJson())
+    throw error;
+  const message = error instanceof Error ? error.message : String(error);
+  print({
+    ok: false,
+    created: false,
+    preflight: {
+      ok: false,
+      error: redact(message, 320)
+    },
+    ...context
+  });
+  process.exit(1);
+}
+function preflightLoopTarget(target, context, metadata, opts) {
+  try {
+    return preflightTarget(target, metadata, opts);
+  } catch (error) {
+    preflightFailed(error, context);
+  }
+}
+function preflightStoredWorkflow(workflow, context, opts) {
+  try {
+    return preflightWorkflow(workflow, opts);
+  } catch (error) {
+    preflightFailed(error, context);
+  }
+}
 function printTextOutput(value) {
   for (const line of textOutputBlocks(value, { indent: "  " }))
     console.log(line);
@@ -5761,6 +5850,53 @@ function stableHash(parts) {
   return createHash2("sha256").update(parts.map((part) => JSON.stringify(part)).join(`
 `)).digest("hex").slice(0, 16);
 }
+function routeCursorsPath() {
+  return join3(dataDir(), "route-cursors.json");
+}
+function readRouteCursors() {
+  const path = routeCursorsPath();
+  if (!existsSync3(path))
+    return {};
+  try {
+    const parsed = JSON.parse(readFileSync2(path, "utf8"));
+    return parsed && typeof parsed === "object" && !Array.isArray(parsed) ? parsed : {};
+  } catch {
+    return {};
+  }
+}
+function writeRouteCursor(key, lastFingerprint) {
+  if (!lastFingerprint)
+    return;
+  const cursors = readRouteCursors();
+  cursors[key] = { lastFingerprint, updatedAt: new Date().toISOString() };
+  writeFileSync3(routeCursorsPath(), JSON.stringify(cursors, null, 2), { mode: 384 });
+}
+function selectRouteItems(items, maxActions, cursorKey, fingerprintOf) {
+  const total = items.length;
+  const boundedMax = Math.max(0, Math.floor(Number.isFinite(maxActions) ? maxActions : 0));
+  if (total === 0 || boundedMax === 0) {
+    return { selected: [], cursor: { key: cursorKey, total, maxActions: boundedMax, startIndex: 0 } };
+  }
+  const cursors = readRouteCursors();
+  const previousFingerprint = cursors[cursorKey]?.lastFingerprint;
+  const previousIndex = previousFingerprint ? items.findIndex((item) => fingerprintOf(item) === previousFingerprint) : -1;
+  const startIndex = previousIndex >= 0 ? (previousIndex + 1) % total : 0;
+  const selected = [];
+  const count = Math.min(boundedMax, total);
+  for (let index = 0;index < count; index += 1)
+    selected.push(items[(startIndex + index) % total]);
+  return {
+    selected,
+    cursor: {
+      key: cursorKey,
+      total,
+      maxActions: boundedMax,
+      previousFingerprint,
+      startIndex,
+      lastFingerprint: selected.length ? fingerprintOf(selected[selected.length - 1]) : undefined
+    }
+  };
+}
 function eventData(event) {
   const data = event.data;
   if (data && typeof data === "object" && !Array.isArray(data))
@@ -5842,6 +5978,36 @@ function booleanLike(value) {
 function hasTruthyField(records, keys) {
   return records.some((record) => keys.some((key) => booleanLike(record[key])));
 }
+function automationRecords(data, metadata) {
+  const records = [];
+  const dataAutomation = nestedObject(data, "automation");
+  if (dataAutomation)
+    records.push(dataAutomation);
+  const dataTask = nestedObject(data, "task");
+  const dataTaskAutomation = dataTask ? nestedObject(dataTask, "automation") : undefined;
+  if (dataTaskAutomation)
+    records.push(dataTaskAutomation);
+  const dataPayload = nestedObject(data, "payload");
+  const payloadAutomation = dataPayload ? nestedObject(dataPayload, "automation") : undefined;
+  if (payloadAutomation)
+    records.push(payloadAutomation);
+  const payloadTask = dataPayload ? nestedObject(dataPayload, "task") : undefined;
+  const payloadTaskAutomation = payloadTask ? nestedObject(payloadTask, "automation") : undefined;
+  if (payloadTaskAutomation)
+    records.push(payloadTaskAutomation);
+  const dataMetadata = nestedObject(data, "metadata");
+  const dataMetadataAutomation = dataMetadata ? nestedObject(dataMetadata, "automation") : undefined;
+  if (dataMetadataAutomation)
+    records.push(dataMetadataAutomation);
+  const metadataAutomation = nestedObject(metadata, "automation");
+  if (metadataAutomation)
+    records.push(metadataAutomation);
+  const metadataTask = nestedObject(metadata, "task");
+  const metadataTaskAutomation = metadataTask ? nestedObject(metadataTask, "automation") : undefined;
+  if (metadataTaskAutomation)
+    records.push(metadataTaskAutomation);
+  return records;
+}
 function tagsFromValue(value) {
   if (Array.isArray(value))
     return value.map((entry) => String(entry).trim()).filter(Boolean);
@@ -5860,7 +6026,7 @@ function taskEventTags(records) {
 function taskRouteEligibility(data, metadata) {
   const records = taskEventRecords(data, metadata);
   const tags = taskEventTags(records);
-  const hasRouteOptIn = tags.includes("auto:route") || hasTruthyField(records, ["route_enabled", "routeEnabled", "automation_allowed", "automationAllowed", "allowed"]);
+  const hasRouteOptIn = tags.includes("auto:route") || hasTruthyField(records, ["route_enabled", "routeEnabled", "automation_allowed", "automationAllowed"]) || hasTruthyField(automationRecords(data, metadata), ["allowed"]);
   if (!hasRouteOptIn)
     return { eligible: false, reason: "missing explicit route opt-in", tags };
   const status = taskEventField(data, ["status", "task_status", "taskStatus"])?.toLowerCase();
@@ -5940,7 +6106,7 @@ function permissionModeFromOpts(opts, provider) {
   return mode;
 }
 var create = program.command("create").description("create loops");
-addGoalOptions(addAccountOptions(addMachineOptions(addScheduleOptions(create.command("command <name>").description("create a deterministic shell command loop").requiredOption("--cmd <command>", "command string to execute").option("--cwd <dir>", "working directory").option("--timeout <duration>", "run timeout").option("--no-shell", "execute without a shell"))))).action((name, opts) => {
+addGoalOptions(addAccountOptions(addMachineOptions(addScheduleOptions(create.command("command <name>").description("create a deterministic shell command loop").requiredOption("--cmd <command>", "command string to execute").option("--cwd <dir>", "working directory").option("--timeout <duration>", "run timeout").option("--no-shell", "execute without a shell").option("--preflight", "check target executables/accounts before storing the loop"))))).action((name, opts) => {
   const store = new Store;
   try {
     const target = {
@@ -5951,13 +6117,15 @@ addGoalOptions(addAccountOptions(addMachineOptions(addScheduleOptions(create.com
       timeoutMs: opts.timeout ? parseDuration(opts.timeout) : undefined,
       account: accountFromOpts(opts)
     };
-    const loop = store.createLoop(baseCreateInput(name, opts, target));
-    print(publicLoop(loop), `created loop ${loop.id} (${loop.name}) next=${loop.nextRunAt}`);
+    const input = baseCreateInput(name, opts, target);
+    const preflight = opts.preflight ? preflightLoopTarget(input.target, { name, type: "command" }, { loopName: name }, { machine: input.machine }) : undefined;
+    const loop = store.createLoop(input);
+    printCreatedLoop(loop, `created loop ${loop.id} (${loop.name}) next=${loop.nextRunAt}`, preflight);
   } finally {
     store.close();
   }
 });
-addGoalOptions(addAccountOptions(addMachineOptions(addScheduleOptions(create.command("agent <name>").description("create a headless coding-agent loop").requiredOption("--provider <provider>", "claude, cursor, codewith, aicopilot, opencode, or codex").requiredOption("--prompt <prompt>", "agent prompt").option("--cwd <dir>", "working directory").option("--model <model>", "model").option("--variant <variant>", "provider-specific model variant or reasoning effort").option("--agent <agent>", "provider-specific agent").option("--auth-profile <profile>", "provider-native auth profile; currently supported for codewith").option("--timeout <duration>", "run timeout").option("--permission-mode <mode>", "provider permission mode: default, plan, auto, or bypass").option("--sandbox <mode>", "provider sandbox: codewith/codex use read-only/workspace-write/danger-full-access; cursor uses enabled/disabled").option("--allow-tool <name>", "advisory per-session tool allowlist metadata; may be repeated or comma-separated", collectValues, []).option("--allow-command <name>", "advisory per-session command allowlist metadata; may be repeated or comma-separated", collectValues, []).option("--config-isolation <mode>", "safe or none", "safe"))))).action((name, opts) => {
+addGoalOptions(addAccountOptions(addMachineOptions(addScheduleOptions(create.command("agent <name>").description("create a headless coding-agent loop").requiredOption("--provider <provider>", "claude, cursor, codewith, aicopilot, opencode, or codex").requiredOption("--prompt <prompt>", "agent prompt").option("--cwd <dir>", "working directory").option("--model <model>", "model").option("--variant <variant>", "provider-specific model variant or reasoning effort").option("--agent <agent>", "provider-specific agent").option("--auth-profile <profile>", "provider-native auth profile; currently supported for codewith").option("--timeout <duration>", "run timeout").option("--permission-mode <mode>", "provider permission mode: default, plan, auto, or bypass").option("--sandbox <mode>", "provider sandbox: codewith/codex use read-only/workspace-write/danger-full-access; cursor uses enabled/disabled").option("--allow-tool <name>", "advisory per-session tool allowlist metadata; may be repeated or comma-separated", collectValues, []).option("--allow-command <name>", "advisory per-session command allowlist metadata; may be repeated or comma-separated", collectValues, []).option("--config-isolation <mode>", "safe or none", "safe").option("--preflight", "check target executables/accounts before storing the loop"))))).action((name, opts) => {
   const provider = opts.provider;
   if (!["claude", "cursor", "codewith", "aicopilot", "opencode", "codex"].includes(provider)) {
     throw new Error("unsupported provider");
@@ -5983,13 +6151,15 @@ addGoalOptions(addAccountOptions(addMachineOptions(addScheduleOptions(create.com
       allowlist: allowlistFromOpts(opts),
       account: accountFromOpts(opts)
     };
-    const loop = store.createLoop(baseCreateInput(name, opts, target));
-    print(publicLoop(loop), `created loop ${loop.id} (${loop.name}) next=${loop.nextRunAt}`);
+    const input = baseCreateInput(name, opts, target);
+    const preflight = opts.preflight ? preflightLoopTarget(input.target, { name, type: "agent", provider }, { loopName: name }, { machine: input.machine }) : undefined;
+    const loop = store.createLoop(input);
+    printCreatedLoop(loop, `created loop ${loop.id} (${loop.name}) next=${loop.nextRunAt}`, preflight);
   } finally {
     store.close();
   }
 });
-addGoalOptions(addMachineOptions(addScheduleOptions(create.command("workflow <name>").description("schedule a stored workflow").requiredOption("--workflow <idOrName>", "workflow id or name")))).action((name, opts) => {
+addGoalOptions(addMachineOptions(addScheduleOptions(create.command("workflow <name>").description("schedule a stored workflow").requiredOption("--workflow <idOrName>", "workflow id or name").option("--preflight", "check workflow step executables/accounts before storing the loop")))).action((name, opts) => {
   const store = new Store;
   try {
     const workflow = store.requireWorkflow(opts.workflow);
@@ -5997,8 +6167,10 @@ addGoalOptions(addMachineOptions(addScheduleOptions(create.command("workflow <na
       type: "workflow",
       workflowId: workflow.id
     };
-    const loop = store.createLoop(baseCreateInput(name, opts, target));
-    print(publicLoop(loop), `created workflow loop ${loop.id} (${loop.name}) workflow=${workflow.name} next=${loop.nextRunAt}`);
+    const input = baseCreateInput(name, opts, target);
+    const preflight = opts.preflight ? preflightStoredWorkflow(workflow, { name, type: "workflow", workflow: workflow.name }, { machine: input.machine }) : undefined;
+    const loop = store.createLoop(input);
+    printCreatedLoop(loop, `created workflow loop ${loop.id} (${loop.name}) workflow=${workflow.name} next=${loop.nextRunAt}`, preflight);
   } finally {
     store.close();
   }
@@ -6517,9 +6689,10 @@ health.command("route-tasks").description("upsert deduped todos tasks for failed
   const store = new Store;
   try {
     const report = buildHealthReport(store, { limit: Number(opts.limit), includeInactive: Boolean(opts.includeInactive) });
-    const failures = report.expectations.filter((entry) => !entry.ok && entry.recommendedTask).slice(0, Number(opts.maxActions));
+    const failures = report.expectations.filter((entry) => !entry.ok && entry.recommendedTask);
+    const selection = selectRouteItems(failures, Number(opts.maxActions), `health:${stableHash([opts.project, opts.taskList, opts.limit, Boolean(opts.includeInactive)])}`, (expectation) => expectation.recommendedTask.dedupeKey);
     const listId = opts.dryRun ? undefined : ensureTodosTaskList(opts.project, opts.taskList, "Loop Error Self Heal", "Deduped OpenLoops health expectation failures routed by loops health route-tasks.");
-    const actions = failures.map((expectation) => {
+    const actions = selection.selected.map((expectation) => {
       const task = expectation.recommendedTask;
       const metadata = {
         source: "openloops.health.route-tasks",
@@ -6561,7 +6734,15 @@ health.command("route-tasks").description("upsert deduped todos tasks for failed
       }
       return { action: "upserted", fingerprint: task.dedupeKey, task: JSON.parse(result.stdout || "{}") };
     });
-    const routed = { ok: actions.every((action) => action.action !== "upsert-failed"), inspected: report.summary.loops, failures: failures.length, actions };
+    const routed = {
+      ok: actions.every((action) => action.action !== "upsert-failed"),
+      inspected: report.summary.loops,
+      failures: failures.length,
+      routing: selection.cursor,
+      actions
+    };
+    if (!opts.dryRun && routed.ok)
+      writeRouteCursor(selection.cursor.key, selection.cursor.lastFingerprint);
     if (isJson() || opts.json)
       console.log(JSON.stringify(routed, null, 2));
     else {
@@ -6711,25 +6892,36 @@ function buildHygieneRouteTasks(store, opts) {
 hygiene.command("names").description("check or apply canonical machine-/repo-prefixed loop names").option("--apply", "rename loops in-place").option("--include-stopped", "include stopped loops").option("--include-inactive", "include stopped, expired, and archived loops").option("--limit <n>", "maximum loops to inspect", "1000").option("--json", "print JSON").action((opts) => {
   const store = new Store;
   try {
-    const backupPath = opts.apply ? backupLoopsDatabase("name-hygiene") : undefined;
     const report = buildNameHygieneReport(store, {
-      apply: Boolean(opts.apply),
+      apply: false,
       includeStopped: Boolean(opts.includeStopped),
       includeInactive: Boolean(opts.includeInactive),
       limit: Number(opts.limit)
     });
-    const output = backupPath ? { ...report, backupPath } : report;
+    let outputReport = report;
+    const backupPath = opts.apply && report.changed > 0 ? backupLoopsDatabase("name-hygiene") : undefined;
+    if (opts.apply && report.changed > 0) {
+      outputReport = buildNameHygieneReport(store, {
+        apply: true,
+        includeStopped: Boolean(opts.includeStopped),
+        includeInactive: Boolean(opts.includeInactive),
+        limit: Number(opts.limit)
+      });
+    } else if (opts.apply) {
+      outputReport = { ...report, applied: true };
+    }
+    const output = backupPath ? { ...outputReport, backupPath } : outputReport;
     if (isJson() || opts.json)
       console.log(JSON.stringify(output, null, 2));
     else {
-      console.log(`hygiene_names checked=${report.checked} changed=${report.changed} applied=${report.applied}`);
+      console.log(`hygiene_names checked=${outputReport.checked} changed=${outputReport.changed} applied=${outputReport.applied}`);
       if (backupPath)
         console.log(`backup=${backupPath}`);
-      for (const change of report.changes.filter((entry) => entry.changed)) {
-        console.log(`${report.applied ? "renamed" : "would-rename"} ${change.id} ${change.oldName} -> ${change.newName}`);
+      for (const change of outputReport.changes.filter((entry) => entry.changed)) {
+        console.log(`${outputReport.applied ? "renamed" : "would-rename"} ${change.id} ${change.oldName} -> ${change.newName}`);
       }
     }
-    if (!report.ok && !report.applied)
+    if (!outputReport.ok && !outputReport.applied)
       process.exitCode = 1;
   } finally {
     store.close();
@@ -6787,9 +6979,9 @@ hygiene.command("route-tasks").description("upsert deduped todos tasks for hygie
       limit: Number(opts.limit),
       scriptsDir: opts.scriptsDir
     });
-    const tasks = route.tasks.slice(0, Number(opts.maxActions));
+    const selection = selectRouteItems(route.tasks, Number(opts.maxActions), `hygiene:${stableHash([opts.project, opts.taskList, checks, opts.limit, Boolean(opts.includeInactive), opts.scriptsDir ?? ""])}`, (task) => task.fingerprint);
     const listId = opts.dryRun ? undefined : ensureTodosTaskList(opts.project, opts.taskList, "OpenLoops Hygiene", "Deduped OpenLoops hygiene findings routed by loops hygiene route-tasks.");
-    const actions = tasks.map((task) => {
+    const actions = selection.selected.map((task) => {
       if (opts.dryRun) {
         return { action: "would-upsert", check: task.check, title: task.title, fingerprint: task.fingerprint, priority: task.priority, metadata: task.metadata };
       }
@@ -6826,8 +7018,11 @@ hygiene.command("route-tasks").description("upsert deduped todos tasks for hygie
       checks,
       checked: route.checked,
       findings: route.findings,
+      routing: selection.cursor,
       actions
     };
+    if (!opts.dryRun && routed.ok)
+      writeRouteCursor(selection.cursor.key, selection.cursor.lastFingerprint);
     if (isJson() || opts.json)
       console.log(JSON.stringify(routed, null, 2));
     else {

package/dist/daemon/index.js

@@ -2724,6 +2724,7 @@ function commandSpec(target) {
     timeoutMs: agentTarget.timeoutMs ?? DEFAULT_TIMEOUT_MS,
     account: agentTarget.account,
     accountTool: agentTarget.account?.tool ?? accountToolForProvider(agentTarget.provider),
+    nativeAuthProfile: agentTarget.authProfile ? { provider: agentTarget.provider, profile: agentTarget.authProfile } : undefined,
     preflightAnyOf: agentTarget.provider === "cursor" ? ["cursor", "agent"] : undefined,
     stdin: agentTarget.prompt,
     allowlist: agentTarget.allowlist
@@ -2805,6 +2806,9 @@ function remotePreflightScript(spec, metadata) {
   if (spec.preflightAnyOf?.length) {
     lines.push(`if ! ${spec.preflightAnyOf.map((command) => `command -v ${shellQuote(command)} >/dev/null 2>&1`).join(" && ! ")}; then`, `  echo 'none of required executables found: ${spec.preflightAnyOf.join(", ")}' >&2`, "  exit 127", "fi");
   }
+  if (spec.nativeAuthProfile?.provider === "codewith") {
+    lines.push(`__OPENLOOPS_CODEWITH_PROFILES="$(${shellQuote(spec.command)} profile list)" || {`, `  printf '%s\\n' ${shellQuote("codewith auth profile preflight failed")} >&2`, "  exit 1", "}", `if ! printf '%s\\n' "$__OPENLOOPS_CODEWITH_PROFILES" | awk 'NR > 1 { print $1 }' | grep -Fx ${shellQuote(spec.nativeAuthProfile.profile)} >/dev/null; then`, `  printf '%s\\n' ${shellQuote(`codewith auth profile not found: ${spec.nativeAuthProfile.profile}`)} >&2`, "  exit 1", "fi");
+  }
   return lines.join(`
 `);
 }
@@ -2820,6 +2824,29 @@ function transportEnv(opts) {
   env.PATH = normalizeExecutionPath(env);
   return env;
 }
+function preflightNativeAuthProfile(spec, env) {
+  if (!spec.nativeAuthProfile)
+    return;
+  if (spec.nativeAuthProfile.provider !== "codewith")
+    return;
+  const result = spawnSync2(spec.command, ["profile", "list"], {
+    encoding: "utf8",
+    env,
+    stdio: ["ignore", "pipe", "pipe"],
+    timeout: 15000
+  });
+  if (result.error) {
+    throw new Error(`codewith auth profile preflight failed: ${result.error.message}`);
+  }
+  if ((result.status ?? 1) !== 0) {
+    const detail = (result.stderr || result.stdout || `exit ${result.status ?? "unknown"}`).trim();
+    throw new Error(`codewith auth profile preflight failed${detail ? `: ${detail}` : ""}`);
+  }
+  const profiles = new Set((result.stdout || "").split(/\r?\n/).slice(1).map((line) => line.trim().split(/\s+/)[0]).filter(Boolean));
+  if (!profiles.has(spec.nativeAuthProfile.profile)) {
+    throw new Error(`codewith auth profile not found: ${spec.nativeAuthProfile.profile}`);
+  }
+}
 function preflightRemoteSpec(spec, machine, metadata, opts) {
   const plan = (opts.machineCommandResolver ?? resolveMachineCommand)(machine.id, "bash -s");
   const result = spawnSync2(plan.command, plan.args, {
@@ -2961,6 +2988,7 @@ function preflightTarget(target, metadata = {}, opts = {}) {
   if (spec.preflightAnyOf?.length && !spec.preflightAnyOf.some((command) => executableExists(command, env))) {
     throw new Error(`none of required executables found: ${spec.preflightAnyOf.join(", ")}`);
   }
+  preflightNativeAuthProfile(spec, env);
   return {
     command: spec.command,
     accountProfile: spec.account?.profile,
@@ -3002,6 +3030,19 @@ async function executeTarget(target, metadata = {}, opts = {}) {
       durationMs: 0
     };
   }
+  try {
+    preflightNativeAuthProfile(spec, env);
+  } catch (err) {
+    return {
+      status: "failed",
+      stdout: "",
+      stderr: "",
+      error: err instanceof Error ? err.message : String(err),
+      startedAt,
+      finishedAt: nowIso(),
+      durationMs: 0
+    };
+  }
   const child = spawn(spec.command, spec.args, {
     cwd: spec.cwd,
     env,
@@ -3658,11 +3699,21 @@ async function executeWorkflow(store, workflow, opts = {}) {
   return workflowResult(finalRun, terminalStatus, startedAt, finishedAt, JSON.stringify({ workflowRun: finalRun, steps }, null, 2), blockingError);
 }
 function preflightWorkflow(workflow, opts = {}) {
-  return workflowExecutionOrder(workflow).map((step) => preflightTarget(targetWithStepAccount(step), {
-    workflowId: workflow.id,
-    workflowName: workflow.name,
-    workflowStepId: step.id
-  }, opts));
+  return workflowExecutionOrder(workflow).map((step) => {
+    try {
+      return {
+        workflowStepId: step.id,
+        ...preflightTarget(targetWithStepAccount(step), {
+          workflowId: workflow.id,
+          workflowName: workflow.name,
+          workflowStepId: step.id
+        }, opts)
+      };
+    } catch (error) {
+      const message = error instanceof Error ? error.message : String(error);
+      throw new Error(`workflow step ${step.id} preflight failed: ${message}`);
+    }
+  });
 }
 async function executeLoopTarget(store, loop, run, opts = {}) {
   if (loop.target.type !== "workflow") {
@@ -4419,7 +4470,7 @@ function enableStartup(result) {
 // package.json
 var package_default = {
   name: "@hasna/loops",
-  version: "0.3.20",
+  version: "0.3.22",
   description: "Persistent local loop and workflow runner for deterministic commands and headless AI coding agents",
   type: "module",
   main: "dist/index.js",

package/dist/index.js

@@ -2714,6 +2714,7 @@ function commandSpec(target) {
     timeoutMs: agentTarget.timeoutMs ?? DEFAULT_TIMEOUT_MS,
     account: agentTarget.account,
     accountTool: agentTarget.account?.tool ?? accountToolForProvider(agentTarget.provider),
+    nativeAuthProfile: agentTarget.authProfile ? { provider: agentTarget.provider, profile: agentTarget.authProfile } : undefined,
     preflightAnyOf: agentTarget.provider === "cursor" ? ["cursor", "agent"] : undefined,
     stdin: agentTarget.prompt,
     allowlist: agentTarget.allowlist
@@ -2795,6 +2796,9 @@ function remotePreflightScript(spec, metadata) {
   if (spec.preflightAnyOf?.length) {
     lines.push(`if ! ${spec.preflightAnyOf.map((command) => `command -v ${shellQuote(command)} >/dev/null 2>&1`).join(" && ! ")}; then`, `  echo 'none of required executables found: ${spec.preflightAnyOf.join(", ")}' >&2`, "  exit 127", "fi");
   }
+  if (spec.nativeAuthProfile?.provider === "codewith") {
+    lines.push(`__OPENLOOPS_CODEWITH_PROFILES="$(${shellQuote(spec.command)} profile list)" || {`, `  printf '%s\\n' ${shellQuote("codewith auth profile preflight failed")} >&2`, "  exit 1", "}", `if ! printf '%s\\n' "$__OPENLOOPS_CODEWITH_PROFILES" | awk 'NR > 1 { print $1 }' | grep -Fx ${shellQuote(spec.nativeAuthProfile.profile)} >/dev/null; then`, `  printf '%s\\n' ${shellQuote(`codewith auth profile not found: ${spec.nativeAuthProfile.profile}`)} >&2`, "  exit 1", "fi");
+  }
   return lines.join(`
 `);
 }
@@ -2810,6 +2814,29 @@ function transportEnv(opts) {
   env.PATH = normalizeExecutionPath(env);
   return env;
 }
+function preflightNativeAuthProfile(spec, env) {
+  if (!spec.nativeAuthProfile)
+    return;
+  if (spec.nativeAuthProfile.provider !== "codewith")
+    return;
+  const result = spawnSync2(spec.command, ["profile", "list"], {
+    encoding: "utf8",
+    env,
+    stdio: ["ignore", "pipe", "pipe"],
+    timeout: 15000
+  });
+  if (result.error) {
+    throw new Error(`codewith auth profile preflight failed: ${result.error.message}`);
+  }
+  if ((result.status ?? 1) !== 0) {
+    const detail = (result.stderr || result.stdout || `exit ${result.status ?? "unknown"}`).trim();
+    throw new Error(`codewith auth profile preflight failed${detail ? `: ${detail}` : ""}`);
+  }
+  const profiles = new Set((result.stdout || "").split(/\r?\n/).slice(1).map((line) => line.trim().split(/\s+/)[0]).filter(Boolean));
+  if (!profiles.has(spec.nativeAuthProfile.profile)) {
+    throw new Error(`codewith auth profile not found: ${spec.nativeAuthProfile.profile}`);
+  }
+}
 function preflightRemoteSpec(spec, machine, metadata, opts) {
   const plan = (opts.machineCommandResolver ?? resolveMachineCommand)(machine.id, "bash -s");
   const result = spawnSync2(plan.command, plan.args, {
@@ -2951,6 +2978,7 @@ function preflightTarget(target, metadata = {}, opts = {}) {
   if (spec.preflightAnyOf?.length && !spec.preflightAnyOf.some((command) => executableExists(command, env))) {
     throw new Error(`none of required executables found: ${spec.preflightAnyOf.join(", ")}`);
   }
+  preflightNativeAuthProfile(spec, env);
   return {
     command: spec.command,
     accountProfile: spec.account?.profile,
@@ -2992,6 +3020,19 @@ async function executeTarget(target, metadata = {}, opts = {}) {
       durationMs: 0
     };
   }
+  try {
+    preflightNativeAuthProfile(spec, env);
+  } catch (err) {
+    return {
+      status: "failed",
+      stdout: "",
+      stderr: "",
+      error: err instanceof Error ? err.message : String(err),
+      startedAt,
+      finishedAt: nowIso(),
+      durationMs: 0
+    };
+  }
   const child = spawn(spec.command, spec.args, {
     cwd: spec.cwd,
     env,
@@ -3648,11 +3689,21 @@ async function executeWorkflow(store, workflow, opts = {}) {
   return workflowResult(finalRun, terminalStatus, startedAt, finishedAt, JSON.stringify({ workflowRun: finalRun, steps }, null, 2), blockingError);
 }
 function preflightWorkflow(workflow, opts = {}) {
-  return workflowExecutionOrder(workflow).map((step) => preflightTarget(targetWithStepAccount(step), {
-    workflowId: workflow.id,
-    workflowName: workflow.name,
-    workflowStepId: step.id
-  }, opts));
+  return workflowExecutionOrder(workflow).map((step) => {
+    try {
+      return {
+        workflowStepId: step.id,
+        ...preflightTarget(targetWithStepAccount(step), {
+          workflowId: workflow.id,
+          workflowName: workflow.name,
+          workflowStepId: step.id
+        }, opts)
+      };
+    } catch (error) {
+      const message = error instanceof Error ? error.message : String(error);
+      throw new Error(`workflow step ${step.id} preflight failed: ${message}`);
+    }
+  });
 }
 async function executeLoopTarget(store, loop, run, opts = {}) {
   if (loop.target.type !== "workflow") {
@@ -4268,6 +4319,7 @@ function renderTodosTaskWorkerVerifierWorkflow(input) {
     "You are the worker agent for a task-triggered OpenLoops workflow.",
     "Investigate first before changing files. Use the todos CLI as the source of truth for the task.",
     "Claim/start the task if appropriate, inspect the repository/project state, implement only the task scope, run focused validation, preserve unrelated user changes, and update the task with comments, evidence, changed files, commits, and blockers.",
+    "Do not dispatch or paste prompts into tmux panes. If additional work is required, create or update deduped todos tasks so task-created routing can start a fresh headless workflow.",
     "Do not mark the task complete unless the work is genuinely done and validated.",
     "",
     `Task context JSON: ${compactJson(taskContext)}`
@@ -4279,6 +4331,7 @@ function renderTodosTaskWorkerVerifierWorkflow(input) {
     "You are the verifier agent for a task-triggered OpenLoops workflow.",
     "Use fresh context. Inspect the task, repository state, commits, tests, and worker evidence. Act as an adversarial reviewer focused on correctness, regressions, missing tests, security, and incomplete requirements.",
     "If the work is valid, record verification evidence in todos and mark/leave the task in the correct completed state according to the todos CLI. If it is not valid, add precise follow-up tasks or comments and leave the original task open or blocked with clear evidence.",
+    "Do not dispatch or paste prompts into tmux panes. If additional work is required, create or update deduped todos tasks so task-created routing can start a fresh headless workflow.",
     "Do not make broad unrelated changes. Only apply tiny verification fixes when they are necessary and low risk; otherwise create follow-up tasks.",
     "",
     `Task context JSON: ${compactJson(taskContext)}`
@@ -4850,6 +4903,7 @@ function recommendedTask(loop, run, failure, route) {
     `Status: ${run.status}`,
     `Classification: ${failure.classification}`,
     `Fingerprint: ${failure.fingerprint}`,
+    `No-tmux routing: Do not dispatch or paste prompts into tmux panes; use task-triggered headless worker/verifier workflows only.`,
     route.cwd ? `Route cwd: ${route.cwd}` : undefined,
     route.provider ? `Provider: ${route.provider}` : undefined,
     failure.evidence.error ? `Error:

package/dist/sdk/index.js

@@ -2714,6 +2714,7 @@ function commandSpec(target) {
     timeoutMs: agentTarget.timeoutMs ?? DEFAULT_TIMEOUT_MS,
     account: agentTarget.account,
     accountTool: agentTarget.account?.tool ?? accountToolForProvider(agentTarget.provider),
+    nativeAuthProfile: agentTarget.authProfile ? { provider: agentTarget.provider, profile: agentTarget.authProfile } : undefined,
     preflightAnyOf: agentTarget.provider === "cursor" ? ["cursor", "agent"] : undefined,
     stdin: agentTarget.prompt,
     allowlist: agentTarget.allowlist
@@ -2795,6 +2796,9 @@ function remotePreflightScript(spec, metadata) {
   if (spec.preflightAnyOf?.length) {
     lines.push(`if ! ${spec.preflightAnyOf.map((command) => `command -v ${shellQuote(command)} >/dev/null 2>&1`).join(" && ! ")}; then`, `  echo 'none of required executables found: ${spec.preflightAnyOf.join(", ")}' >&2`, "  exit 127", "fi");
   }
+  if (spec.nativeAuthProfile?.provider === "codewith") {
+    lines.push(`__OPENLOOPS_CODEWITH_PROFILES="$(${shellQuote(spec.command)} profile list)" || {`, `  printf '%s\\n' ${shellQuote("codewith auth profile preflight failed")} >&2`, "  exit 1", "}", `if ! printf '%s\\n' "$__OPENLOOPS_CODEWITH_PROFILES" | awk 'NR > 1 { print $1 }' | grep -Fx ${shellQuote(spec.nativeAuthProfile.profile)} >/dev/null; then`, `  printf '%s\\n' ${shellQuote(`codewith auth profile not found: ${spec.nativeAuthProfile.profile}`)} >&2`, "  exit 1", "fi");
+  }
   return lines.join(`
 `);
 }
@@ -2810,6 +2814,29 @@ function transportEnv(opts) {
   env.PATH = normalizeExecutionPath(env);
   return env;
 }
+function preflightNativeAuthProfile(spec, env) {
+  if (!spec.nativeAuthProfile)
+    return;
+  if (spec.nativeAuthProfile.provider !== "codewith")
+    return;
+  const result = spawnSync2(spec.command, ["profile", "list"], {
+    encoding: "utf8",
+    env,
+    stdio: ["ignore", "pipe", "pipe"],
+    timeout: 15000
+  });
+  if (result.error) {
+    throw new Error(`codewith auth profile preflight failed: ${result.error.message}`);
+  }
+  if ((result.status ?? 1) !== 0) {
+    const detail = (result.stderr || result.stdout || `exit ${result.status ?? "unknown"}`).trim();
+    throw new Error(`codewith auth profile preflight failed${detail ? `: ${detail}` : ""}`);
+  }
+  const profiles = new Set((result.stdout || "").split(/\r?\n/).slice(1).map((line) => line.trim().split(/\s+/)[0]).filter(Boolean));
+  if (!profiles.has(spec.nativeAuthProfile.profile)) {
+    throw new Error(`codewith auth profile not found: ${spec.nativeAuthProfile.profile}`);
+  }
+}
 function preflightRemoteSpec(spec, machine, metadata, opts) {
   const plan = (opts.machineCommandResolver ?? resolveMachineCommand)(machine.id, "bash -s");
   const result = spawnSync2(plan.command, plan.args, {
@@ -2951,6 +2978,7 @@ function preflightTarget(target, metadata = {}, opts = {}) {
   if (spec.preflightAnyOf?.length && !spec.preflightAnyOf.some((command) => executableExists(command, env))) {
     throw new Error(`none of required executables found: ${spec.preflightAnyOf.join(", ")}`);
   }
+  preflightNativeAuthProfile(spec, env);
   return {
     command: spec.command,
     accountProfile: spec.account?.profile,
@@ -2992,6 +3020,19 @@ async function executeTarget(target, metadata = {}, opts = {}) {
       durationMs: 0
     };
   }
+  try {
+    preflightNativeAuthProfile(spec, env);
+  } catch (err) {
+    return {
+      status: "failed",
+      stdout: "",
+      stderr: "",
+      error: err instanceof Error ? err.message : String(err),
+      startedAt,
+      finishedAt: nowIso(),
+      durationMs: 0
+    };
+  }
   const child = spawn(spec.command, spec.args, {
     cwd: spec.cwd,
     env,
@@ -3648,11 +3689,21 @@ async function executeWorkflow(store, workflow, opts = {}) {
   return workflowResult(finalRun, terminalStatus, startedAt, finishedAt, JSON.stringify({ workflowRun: finalRun, steps }, null, 2), blockingError);
 }
 function preflightWorkflow(workflow, opts = {}) {
-  return workflowExecutionOrder(workflow).map((step) => preflightTarget(targetWithStepAccount(step), {
-    workflowId: workflow.id,
-    workflowName: workflow.name,
-    workflowStepId: step.id
-  }, opts));
+  return workflowExecutionOrder(workflow).map((step) => {
+    try {
+      return {
+        workflowStepId: step.id,
+        ...preflightTarget(targetWithStepAccount(step), {
+          workflowId: workflow.id,
+          workflowName: workflow.name,
+          workflowStepId: step.id
+        }, opts)
+      };
+    } catch (error) {
+      const message = error instanceof Error ? error.message : String(error);
+      throw new Error(`workflow step ${step.id} preflight failed: ${message}`);
+    }
+  });
 }
 async function executeLoopTarget(store, loop, run, opts = {}) {
   if (loop.target.type !== "workflow") {

package/docs/USAGE.md

@@ -49,6 +49,28 @@ Run a deterministic command every minute:
 loops create command repo-status --every 1m --cmd "git status --short" --cwd /path/to/repo
 ```
 
+Validate the target before storing the loop:
+
+```bash
+loops create command repo-status \
+  --every 1m \
+  --cmd git \
+  --no-shell \
+  --preflight
+```
+
+`--preflight` is available on `loops create command`, `loops create agent`, and
+`loops create workflow`. It checks target executables and configured account
+profiles before the loop row is stored, so a missing command, provider binary,
+OpenAccounts profile, or workflow step dependency fails without creating a
+scheduled loop. Use `--json` with `--preflight` to capture stable machine-readable
+preflight evidence.
+
+For shell command loops, preflight can only verify the shell plus configured
+accounts because the command string is interpreted later by the shell. Use
+`--no-shell` or workflow command `args` when you need executable-level
+validation before storing the loop.
+
 Run a Claude loop every morning:
 
 ```bash
@@ -333,7 +355,10 @@ inventories loops whose command still references `~/.hasna/loops/scripts`; use
 it as a migration gate before deleting local scripts. `hygiene route-tasks`
 upserts deduped Todos tasks for hygiene findings with stable fingerprints and
 `no_tmux_dispatch=true` metadata; use `--dry-run --json` before enabling it as a
-production loop.
+production loop. Route commands store a small cursor in
+`<LOOPS_DATA_DIR>/route-cursors.json` so bounded `--max-actions` runs advance
+through all findings over repeated scheduled runs instead of reprocessing only
+the first batch.
 
 Archive loops when retiring old automation but preserving history:
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hasna/loops",
-  "version": "0.3.20",
+  "version": "0.3.22",
   "description": "Persistent local loop and workflow runner for deterministic commands and headless AI coding agents",
   "type": "module",
   "main": "dist/index.js",