@imdeadpool/guardex 5.0.8 → 5.0.11

package/README.md

@@ -71,6 +71,12 @@ gx cleanup --branch "$(git rev-parse --abbrev-ref HEAD)"
 If you use `scripts/codex-agent.sh`, the finish flow is auto-run after the Codex session exits.
 It auto-commits sandbox changes, retries once after syncing if the branch moved behind base during the run, then pushes/opens PR merge flow against the current base branch.
 
+If you run Codex in multiple existing agent worktrees directly (for example from VS Code Source Control), finalize all completed branches with:
+
+```sh
+gx finish --all
+```
+
 ## Visual workflow
 
 ### Setup status
@@ -89,6 +95,10 @@ It auto-commits sandbox changes, retries once after syncing if the branch moved
 
 ![gx lock and delete guard screenshot](https://raw.githubusercontent.com/recodeecom/multiagent-safety/main/docs/images/workflow-lock-guard.svg)
 
+### Real VS Code Source Control layout (exact screenshot)
+
+![Real VS Code Source Control layout](https://raw.githubusercontent.com/recodeecom/multiagent-safety/main/docs/images/workflow-vscode-source-control-exact.png)
+
 ## Copy-paste: common commands
 
 ```sh
@@ -114,9 +124,21 @@ gx sync
 # continuously monitor open PRs targeting current branch and dispatch codex-agent review/merge tasks
 gx review --interval 30
 
+# start both background bots for this repo (review + cleanup)
+gx agents start
+
+# stop both background bots for this repo
+gx agents stop
+
+# auto-commit finished agent branches and open/merge PR flow in one pass
+gx finish --all
+
 # cleanup merged agent branches and hide clean stale agent worktrees
 gx cleanup
 
+# run continuous stale-branch cleanup bot (default idle threshold: 10 minutes)
+gx cleanup --watch --interval 60
+
 # scan/report
 gx scan
 gx report scorecard --repo github.com/recodeecom/multiagent-safety
@@ -139,6 +161,37 @@ Useful flags:
 
 Note: the monitor dispatches Codex through explicit `--task/--agent/--base` flags for compatibility with both older and newer `scripts/codex-agent.sh` argument parsing.
 
+### Continuous stale branch cleanup bot
+
+Use this to auto-prune idle `agent/*` worktrees created by Codex while keeping active worktrees untouched.
+
+```sh
+# watch cleanup loop every minute (default idle threshold is 10 minutes when --watch is enabled)
+gx cleanup --watch --interval 60
+
+# one-shot cleanup for branches idle at least 10 minutes
+gx cleanup --idle-minutes 10
+
+# run a single watch cycle (helpful for cron/CI checks)
+gx cleanup --watch --once --interval 60
+```
+
+### Repo Agent Supervisor (start both bots with one command)
+
+```sh
+# starts review bot + cleanup bot in background for the current repo
+gx agents start
+
+# optional tuning
+gx agents start --review-interval 30 --cleanup-interval 60 --idle-minutes 10
+
+# show whether both bots are running for this repo
+gx agents status
+
+# stop both bots and clear repo-local state
+gx agents stop
+```
+
 ## Important behavior defaults
 
 - No command defaults to `gx status`.
@@ -228,6 +281,36 @@ scripts/openspec/init-plan-workspace.sh
 
 If `package.json` exists, setup also adds `agent:*` helper scripts.
 
+## OpenSpec quick start after `gx setup`
+
+If you enabled global OpenSpec install during setup (`@fission-ai/openspec`), use the full guide here:
+
+- [`docs/openspec-getting-started.md`](./docs/openspec-getting-started.md)
+
+Default core flow:
+
+```text
+/opsx:propose <change-name> -> /opsx:apply -> /opsx:archive
+```
+
+Optional expanded flow:
+
+```sh
+openspec config profile <profile-name>
+openspec update
+```
+
+```text
+/opsx:new <change-name> -> /opsx:ff or /opsx:continue -> /opsx:apply -> /opsx:verify -> /opsx:archive
+```
+
+### OpenSpec in agent sub-branches
+
+- `scripts/codex-agent.sh` enforces an OpenSpec workspace before it launches Codex in each sandbox branch/worktree.
+- `scripts/agent-branch-start.sh` can also scaffold `openspec/plan/<agent-branch-slug>/` when you set `MUSAFETY_OPENSPEC_AUTO_INIT=true`.
+- Set `MUSAFETY_OPENSPEC_AUTO_INIT=false` (default for `agent-branch-start`) to skip branch-start auto-bootstrap.
+- Set `MUSAFETY_OPENSPEC_PLAN_SLUG=<kebab-case-slug>` to force a specific plan workspace name.
+
 ## Security and maintenance posture
 
 - CI matrix on Node 18/20/22 (`npm test`, `node --check`, `npm pack --dry-run`)
@@ -245,6 +328,22 @@ npm pack --dry-run
 
 ## Release notes
 
+### v5.0.11
+
+- Updated the managed AGENTS contract wording to use `GX` naming and added an explicit OMX completion policy requiring commit + push + PR creation/update at task completion.
+- Ensured `gx install` explicitly configures the managed `AGENTS.md` policy block and added regression coverage for this install-path behavior.
+- Bumped package version from `5.0.10` to `5.0.11` for the next npm publish.
+
+### v5.0.10
+
+- Bumped package version from `5.0.9` to `5.0.10` for the next npm publish.
+
+### v5.0.9
+
+- Enforced OpenSpec workspace bootstrap for sandbox agent execution: `scripts/codex-agent.sh` now initializes `openspec/plan/<agent-branch-slug>/` before launching Codex, and `scripts/agent-branch-start.sh` supports `MUSAFETY_OPENSPEC_AUTO_INIT` plus `MUSAFETY_OPENSPEC_PLAN_SLUG`.
+- Tightened doctor auto-finish correctness: sandbox finish now waits for merge and exits non-zero if the PR closes without merge, so repair flows are not reported as complete when policy blocks merge.
+- Updated package version from `5.0.8` to `5.0.9` for the next npm publish.
+
 ### v5.0.8
 
 - Fixed `bin/multiagent-safety.js` syntax regressions in the doctor sandbox flow (`Unexpected identifier` / `Unexpected end of input`) that were breaking CLI execution and CI tests.