@integrity-labs/agt-cli 0.10.1 → 0.10.3

package/dist/{chunk-N7TRKQMT.js → chunk-6YGOQRAR.js}

@@ -215,6 +215,25 @@ var INTEGRATION_REGISTRY = [
     },
     docs_url: "https://github.com/Pika-Labs/Pika-Skills"
   },
+  {
+    id: "claude-code",
+    name: "Claude Code",
+    category: "code",
+    description: "Claude Code AI agent runtime \u2014 code editing, task execution, file management, and development workflows",
+    supported_auth_types: ["api_key", "none"],
+    capabilities: [
+      { id: "claude-code:edit-code", name: "Edit Code", description: "Read, write, and edit source files", access: "write" },
+      { id: "claude-code:run-tasks", name: "Run Tasks", description: "Execute bash commands and development tasks", access: "write" },
+      { id: "claude-code:search", name: "Search Code", description: "Search files and grep codebase", access: "read" },
+      { id: "claude-code:git", name: "Git Operations", description: "Commit, branch, push, and manage version control", access: "write" }
+    ],
+    cli_tool: {
+      package: "@anthropic-ai/claude-code",
+      binary: "claude",
+      env_key: "ANTHROPIC_API_KEY"
+    },
+    docs_url: "https://docs.anthropic.com/en/docs/claude-code"
+  },
   {
     id: "custom",
     name: "Custom Integration",
@@ -1333,6 +1352,38 @@ ${entry.content}`
       return changed;
     }, codeName);
   },
+  executePluginHook(ctx) {
+    const agentDir = join(AUGMENTED_DIR, ctx.codeName);
+    const projectDir = join(agentDir, "project");
+    mkdirSync(agentDir, { recursive: true });
+    const startedAt = Date.now();
+    return new Promise((resolve3) => {
+      const child = execFile("bash", ["-c", ctx.script], {
+        cwd: agentDir,
+        timeout: 6e4,
+        maxBuffer: 1024 * 1024,
+        env: {
+          ...process.env,
+          AGENT_CODE_NAME: ctx.codeName,
+          AGENT_DIR: agentDir,
+          AGENT_PROJECT_DIR: projectDir,
+          AGENT_FRAMEWORK: "openclaw"
+        }
+      }, (error, stdout, stderr) => {
+        const durationMs = Date.now() - startedAt;
+        const timedOut = !!error && error.code === "ETIMEDOUT";
+        resolve3({
+          exitCode: error ? typeof error.code === "number" ? error.code : 1 : 0,
+          stdout: stdout?.toString() ?? "",
+          stderr: stderr?.toString() ?? "",
+          durationMs,
+          timedOut
+        });
+      });
+      child.on("error", () => {
+      });
+    });
+  },
   readGatewayToken(codeName) {
     const homeDir = getHomeDir();
     try {
@@ -1808,9 +1859,10 @@ function extractAllowedDomains(input) {
 registerFramework(nemoClawAdapter);
 
 // ../../packages/core/dist/provisioning/frameworks/claudecode/index.js
-import { readFileSync as readFileSync3, writeFileSync as writeFileSync3, mkdirSync as mkdirSync3, existsSync as existsSync3, chmodSync as chmodSync3 } from "fs";
+import { readFileSync as readFileSync3, writeFileSync as writeFileSync3, mkdirSync as mkdirSync3, existsSync as existsSync3, chmodSync as chmodSync3, readdirSync, rmSync } from "fs";
 import { join as join3, relative } from "path";
 import { homedir as homedir2 } from "os";
+import { execFile as execFile3 } from "child_process";
 
 // ../../packages/core/dist/provisioning/frameworks/claudecode/identity.js
 function buildMemorySection(hasQmd) {
@@ -1879,7 +1931,7 @@ function buildKnowledgeSection2(knowledge) {
     return "";
   const orgEntries = knowledge.filter((k) => k.scope === "org");
   const teamEntries = knowledge.filter((k) => k.scope === "team");
-  const formatEntry = (k) => `- **${k.title}** (skill: \`knowledge-${k.slug}\`)`;
+  const formatEntry = (k) => `- **${k.title}**`;
   let body = "";
   if (orgEntries.length) {
     body += `### Organization
@@ -1898,9 +1950,9 @@ ${teamEntries.map(formatEntry).join("\n")}
   }
   return `## Core Knowledge
 
-Your team has provided the following core knowledge as skills. These are
-automatically available \u2014 Claude Code will surface the relevant skill when
-you need context. You do not need to read files manually.
+Your team has provided core knowledge via the \`core-knowledge\` skill.
+It is automatically available \u2014 Claude Code will surface it when you need
+context. You do not need to read files manually.
 
 ${body}
 `;
@@ -2106,6 +2158,32 @@ function deployArtifactsToProject(codeName, provisionDir) {
     } catch {
     }
   }
+  const skillsDir = join3(provisionDir, ".claude", "skills");
+  const destSkillsDir = join3(projectDir, ".claude", "skills");
+  try {
+    if (existsSync3(destSkillsDir)) {
+      const srcFolders = existsSync3(skillsDir) ? new Set(readdirSync(skillsDir)) : /* @__PURE__ */ new Set();
+      for (const folder of readdirSync(destSkillsDir)) {
+        if (folder.startsWith("knowledge-") || folder === "core-knowledge" && !srcFolders.has(folder)) {
+          try {
+            rmSync(join3(destSkillsDir, folder), { recursive: true });
+          } catch {
+          }
+        }
+      }
+    }
+    if (existsSync3(skillsDir)) {
+      for (const skillFolder of readdirSync(skillsDir)) {
+        const srcSkillFile = join3(skillsDir, skillFolder, "SKILL.md");
+        if (!existsSync3(srcSkillFile))
+          continue;
+        const destFolder = join3(destSkillsDir, skillFolder);
+        mkdirSync3(destFolder, { recursive: true });
+        writeFileSync3(join3(destFolder, "SKILL.md"), readFileSync3(srcSkillFile, "utf-8"));
+      }
+    }
+  } catch {
+  }
   const agentMcpPath = join3(getAgentDir(codeName), "provision", ".mcp.json");
   const projectMcpPath = join3(projectDir, ".mcp.json");
   try {
@@ -2190,6 +2268,88 @@ function provisionStopHook(codeName) {
   settings["hooks"] = hooks;
   writeFileSync3(settingsPath, JSON.stringify(settings, null, 2));
 }
+function provisionIsolationHook(codeName) {
+  const projectDir = getProjectDir(codeName);
+  const claudeDir = join3(projectDir, ".claude");
+  mkdirSync3(claudeDir, { recursive: true });
+  const homeDir = getHomeDir3();
+  const augmentedBase = join3(homeDir, ".augmented");
+  const ownAgentDir = join3(augmentedBase, codeName);
+  const logFile = join3(ownAgentDir, "isolation.log");
+  const hookScriptPath = join3(claudeDir, "agt-isolation-hook.sh");
+  const hookScript = [
+    "#!/bin/bash",
+    "# Auto-generated by Augmented \u2014 prevents cross-agent file access.",
+    "# Exit 0 = allow, Exit 2 = block (with stderr message shown to agent)",
+    "set -euo pipefail",
+    "INPUT=$(cat)",
+    `TOOL=$(echo "$INPUT" | jq -r '.tool_name // empty')`,
+    "",
+    "# Only check file-access tools",
+    'case "$TOOL" in',
+    "  Read|Edit|Write|Glob|Grep|MultiEdit) ;;",
+    "  Bash)",
+    "    # For Bash, we can't reliably parse arbitrary commands \u2014 rely on allowedDirectories.",
+    "    # But block obvious attempts to read other agent dirs.",
+    `    CMD=$(echo "$INPUT" | jq -r '.tool_input.command // empty')`,
+    `    if echo "$CMD" | grep -qE '${augmentedBase}/[^/]+/' 2>/dev/null; then`,
+    `      MATCH=$(echo "$CMD" | grep -oE '${augmentedBase}/[^/]+' | head -1)`,
+    `      AGENT_DIR=$(basename "$MATCH")`,
+    `      if [ "$AGENT_DIR" != "${codeName}" ] && [ "$AGENT_DIR" != "_mcp" ]; then`,
+    `        echo "$(date -u +%Y-%m-%dT%H:%M:%SZ) BLOCKED bash targeting $MATCH" >> "${logFile}"`,
+    `        echo "Access denied: you cannot access other agents' directories." >&2`,
+    "        exit 2",
+    "      fi",
+    "    fi",
+    "    exit 0 ;;",
+    "  *) exit 0 ;;",
+    "esac",
+    "",
+    "# Extract file_path from tool input",
+    `FILE_PATH=$(echo "$INPUT" | jq -r '.tool_input.file_path // .tool_input.path // empty')`,
+    '[ -z "$FILE_PATH" ] && exit 0',
+    "",
+    "# Resolve to absolute path",
+    'if [[ "$FILE_PATH" != /* ]]; then',
+    `  CWD=$(echo "$INPUT" | jq -r '.cwd // empty')`,
+    '  [ -n "$CWD" ] && FILE_PATH="$CWD/$FILE_PATH"',
+    "fi",
+    "",
+    "# Check if path targets another agent's directory",
+    `AUGMENTED_BASE="${augmentedBase}"`,
+    'case "$FILE_PATH" in',
+    '  "$AUGMENTED_BASE"/*/*)  ',
+    '    AGENT_DIR=$(echo "$FILE_PATH" | sed "s|$AUGMENTED_BASE/||" | cut -d/ -f1)',
+    `    if [ "$AGENT_DIR" != "${codeName}" ] && [ "$AGENT_DIR" != "_mcp" ]; then`,
+    `      echo "$(date -u +%Y-%m-%dT%H:%M:%SZ) BLOCKED $TOOL on $FILE_PATH" >> "${logFile}"`,
+    `      echo "Access denied: you cannot access other agents' directories." >&2`,
+    "      exit 2",
+    "    fi ;;",
+    "esac",
+    "",
+    "exit 0"
+  ].join("\n") + "\n";
+  writeFileSync3(hookScriptPath, hookScript, { mode: 493 });
+  const settingsPath = join3(claudeDir, "settings.local.json");
+  let settings = {};
+  try {
+    settings = JSON.parse(readFileSync3(settingsPath, "utf-8"));
+  } catch {
+  }
+  const hooks = settings["hooks"] ?? {};
+  hooks["PreToolUse"] = [
+    {
+      hooks: [
+        {
+          type: "command",
+          command: hookScriptPath
+        }
+      ]
+    }
+  ];
+  settings["hooks"] = hooks;
+  writeFileSync3(settingsPath, JSON.stringify(settings, null, 2));
+}
 function modifyJsonConfig(filePath, fn) {
   let originalContent;
   let config;
@@ -2225,6 +2385,19 @@ function buildSettingsJson(input) {
   if (agent.primary_model) {
     settings["model"] = agent.primary_model;
   }
+  const projectDir = getProjectDir(agent.code_name);
+  const agentDir = getAgentDir(agent.code_name);
+  const homeDir = getHomeDir3();
+  settings["allowedDirectories"] = [
+    projectDir,
+    // Agent's project dir (CLAUDE.md, settings.json, etc.)
+    agentDir,
+    // Agent's config dir (.env, schedules, registration)
+    join3(homeDir, ".augmented", "_mcp"),
+    // Shared MCP binaries
+    "/tmp"
+    // Temp files
+  ];
   return settings;
 }
 function buildMcpJson(input) {
@@ -2327,20 +2500,28 @@ var claudeCodeAdapter = {
       { relativePath: "CHARTER.md", content: input.charterContent },
       { relativePath: "TOOLS.md", content: input.toolsContent }
     ];
-    for (const entry of input.knowledge ?? []) {
-      const skillPath = `.claude/skills/knowledge-${entry.slug}/SKILL.md`;
-      assertSafeRelativePath(skillPath);
-      const scopeLabel = entry.scope === "org" ? "organization" : "team";
+    const knowledgeEntries = input.knowledge ?? [];
+    if (knowledgeEntries.length > 0) {
+      const safeTitles = knowledgeEntries.map((k) => k.title.replace(/[\n\r"\\]/g, " ").trim().toLowerCase()).filter(Boolean);
+      const sections = knowledgeEntries.map((entry) => {
+        const scopeLabel = entry.scope === "org" ? "Organization" : "Team";
+        const safeTitle = entry.title.replace(/[\n\r]/g, " ").trim();
+        return `## ${safeTitle}
+*${scopeLabel} knowledge*
+
+${entry.content}`;
+      }).join("\n\n---\n\n");
+      const description = `Use this skill when the user asks about the company, organization, team, products, or any of: ${safeTitles.join(", ")}. Provides core reference material from the knowledge base.`;
       artifacts.push({
-        relativePath: skillPath,
+        relativePath: ".claude/skills/core-knowledge/SKILL.md",
         content: `---
-name: knowledge-${entry.slug}
-description: "${entry.title} \u2014 ${scopeLabel}-level core knowledge. Use when you need context about ${entry.title.toLowerCase()}."
+name: core-knowledge
+description: ${JSON.stringify(description)}
 ---
 
-# ${entry.title}
+# Core Knowledge
 
-${entry.content}`
+${sections}`
       });
     }
     return artifacts;
@@ -2356,8 +2537,8 @@ ${entry.content}`
     const augDir = join3(homeDir, ".augmented");
     const agents = /* @__PURE__ */ new Set();
     try {
-      const { readdirSync, statSync } = await import("fs");
-      const entries = readdirSync(augDir);
+      const { readdirSync: readdirSync2, statSync } = await import("fs");
+      const entries = readdirSync2(augDir);
       for (const entry of entries) {
         const ccDir = join3(augDir, entry, "claudecode");
         try {
@@ -2425,9 +2606,9 @@ ${entry.content}`
   // so ensureGatewayRunning() returns early with running=false
   async getVersion() {
     try {
-      const { execFile: execFile3 } = await import("child_process");
+      const { execFile: execFile4 } = await import("child_process");
       return new Promise((resolve3) => {
-        execFile3("claude", ["--version"], { timeout: 5e3 }, (err, stdout) => {
+        execFile4("claude", ["--version"], { timeout: 5e3 }, (err, stdout) => {
           if (err) {
             resolve3(null);
             return;
@@ -2675,6 +2856,23 @@ ${entry.content}`
           args: ["-y", "@composio/mcp", "start", "--url", config.url],
           env: config.headers ?? {}
         };
+      } else if (config.url.includes("mcp.pipedream.net")) {
+        const pdUrl = new URL(config.url);
+        const pathParts = pdUrl.pathname.split("/").filter(Boolean);
+        const externalUserId = decodeURIComponent(pathParts[0] ?? "");
+        const appSlug = decodeURIComponent(pathParts[1] ?? "");
+        const headers = config.headers ?? {};
+        const authToken = (headers["Authorization"] ?? "").replace("Bearer ", "");
+        serverEntry = {
+          command: "npx",
+          args: ["-y", "@pipedream/mcp", "stdio", "--app", appSlug, "--external-user-id", externalUserId],
+          env: {
+            PIPEDREAM_PROJECT_ID: headers["x-pd-project-id"] ?? process.env["PIPEDREAM_PROJECT_ID"] ?? "",
+            PIPEDREAM_CLIENT_ID: headers["x-pd-client-id"] ?? process.env["PIPEDREAM_CLIENT_ID"] ?? "",
+            PIPEDREAM_CLIENT_SECRET: headers["x-pd-client-secret"] ?? process.env["PIPEDREAM_CLIENT_SECRET"] ?? "",
+            PIPEDREAM_PROJECT_ENVIRONMENT: headers["x-pd-environment"] ?? process.env["PIPEDREAM_ENVIRONMENT"] ?? "development"
+          }
+        };
       } else {
         serverEntry = {
           command: "npx",
@@ -2710,6 +2908,9 @@ ${entry.content}`
   },
   installSkillFiles(codeName, skillId, files) {
     assertValidCodeName(skillId);
+    const isPluginManaged = skillId.startsWith("plugin-");
+    const READ_ONLY_MODE = 292;
+    const READ_WRITE_MODE = 420;
     const agentDir = getAgentDir(codeName);
     const projectDir = getProjectDir(codeName);
     for (const baseDir of [join3(agentDir, "skills"), join3(projectDir, ".claude", "skills")]) {
@@ -2723,7 +2924,19 @@ ${entry.content}`
           throw new Error(`Path traversal detected: ${file.relativePath} resolves outside ${skillDir}`);
         }
         mkdirSync3(join3(filePath, ".."), { recursive: true });
+        if (isPluginManaged && existsSync3(filePath)) {
+          try {
+            chmodSync3(filePath, READ_WRITE_MODE);
+          } catch {
+          }
+        }
         writeFileSync3(filePath, file.content);
+        if (isPluginManaged) {
+          try {
+            chmodSync3(filePath, READ_ONLY_MODE);
+          } catch {
+          }
+        }
       }
     }
   },
@@ -2748,6 +2961,40 @@ ${entry.content}`
     };
     writeFileSync3(pluginsJsonPath, JSON.stringify(pluginsConfig, null, 2));
   },
+  executePluginHook(ctx) {
+    assertValidCodeName(ctx.codeName);
+    const agentRootDir = join3(getHomeDir3(), ".augmented", ctx.codeName);
+    const projectDir = getProjectDir(ctx.codeName);
+    mkdirSync3(agentRootDir, { recursive: true });
+    mkdirSync3(projectDir, { recursive: true });
+    const startedAt = Date.now();
+    return new Promise((resolve3) => {
+      const child = execFile3("bash", ["-c", ctx.script], {
+        cwd: agentRootDir,
+        timeout: 6e4,
+        maxBuffer: 1024 * 1024,
+        env: {
+          ...process.env,
+          AGENT_CODE_NAME: ctx.codeName,
+          AGENT_DIR: agentRootDir,
+          AGENT_PROJECT_DIR: projectDir,
+          AGENT_FRAMEWORK: "claude-code"
+        }
+      }, (error, stdout, stderr) => {
+        const durationMs = Date.now() - startedAt;
+        const timedOut = !!error && error.code === "ETIMEDOUT";
+        resolve3({
+          exitCode: error ? typeof error.code === "number" ? error.code : 1 : 0,
+          stdout: stdout?.toString() ?? "",
+          stderr: stderr?.toString() ?? "",
+          durationMs,
+          timedOut
+        });
+      });
+      child.on("error", () => {
+      });
+    });
+  },
   writeTokenFile(codeName, integrations) {
     const agentDir = getAgentDir(codeName);
     mkdirSync3(agentDir, { recursive: true });
@@ -2773,6 +3020,250 @@ ${entry.content}`
 };
 registerFramework(claudeCodeAdapter);
 
+// ../../packages/core/dist/provisioning/frameworks/managed-agents/system-prompt.js
+function generateSystemPrompt(input) {
+  const { agent, charterFrontmatter, charterContent, resolvedChannels, integrations } = input;
+  const sections = [];
+  sections.push(`# Agent Identity
+
+**Name**: ${agent.display_name} (\`${agent.code_name}\`)
+**Environment**: ${agent.environment}
+**Risk Tier**: ${agent.risk_tier}
+**Owner**: ${charterFrontmatter.owner.name}${charterFrontmatter.owner.email ? ` <${charterFrontmatter.owner.email}>` : ""}
+**Augmented Agent ID**: ${agent.agent_id}`);
+  const bodyContent = stripFrontmatter(charterContent).trim();
+  if (bodyContent) {
+    sections.push(bodyContent);
+  }
+  if (resolvedChannels.length > 0) {
+    sections.push(`## Allowed Channels
+
+This agent is permitted to communicate via the following channels:
+${resolvedChannels.map((ch) => `- ${ch}`).join("\n")}`);
+  }
+  const budget = charterFrontmatter.budget;
+  const limits = charterFrontmatter.limits;
+  if (budget || limits) {
+    const budgetLines = [];
+    if (budget) {
+      const window = budget.window;
+      if (budget.type === "tokens" || budget.type === "both") {
+        budgetLines.push(`- Token budget: ${(budget.limit_tokens ?? budget.limit).toLocaleString()} tokens per ${window}`);
+      }
+      if (budget.type === "dollars" || budget.type === "both") {
+        budgetLines.push(`- Cost budget: $${(budget.limit_dollars ?? budget.limit).toFixed(2)} per ${window}`);
+      }
+      if (budget.enforcement) {
+        budgetLines.push(`- Enforcement: ${budget.enforcement}`);
+      }
+    }
+    if (limits) {
+      budgetLines.push(`- Max tokens per request: ${limits.max_tokens_per_request.toLocaleString()}`);
+      budgetLines.push(`- Max tokens per run: ${limits.max_tokens_per_run.toLocaleString()}`);
+    }
+    sections.push(`## Budget Constraints
+
+${budgetLines.join("\n")}`);
+  }
+  const apiKeyIntegrations = (integrations ?? []).filter((i) => i.auth_type === "api_key" && i.credentials.api_key);
+  if (apiKeyIntegrations.length > 0) {
+    const credLines = apiKeyIntegrations.map((i) => {
+      const envKey = `${i.definition_id.toUpperCase().replace(/[^A-Z0-9]/g, "_")}_API_KEY`;
+      return `- **${i.display_name}**: API key available as \`${envKey}\``;
+    });
+    sections.push(`## Available Integrations (API Keys)
+
+The following integration credentials are available for use in this session:
+${credLines.join("\n")}
+
+These credentials are pre-loaded. Reference them by their environment variable names when invoking tools.`);
+  }
+  return sections.join("\n\n");
+}
+function stripFrontmatter(content) {
+  if (!content.startsWith("---"))
+    return content;
+  const secondDelimiter = content.indexOf("\n---", 3);
+  if (secondDelimiter === -1)
+    return content;
+  return content.slice(secondDelimiter + 4);
+}
+
+// ../../packages/core/dist/provisioning/frameworks/managed-agents/tools-mapper.js
+var TOOL_ID_TO_ANTHROPIC = [
+  ["bash", "bash"],
+  ["shell", "bash"],
+  ["exec", "bash"],
+  ["read", "read"],
+  ["fs_read", "read"],
+  ["file_read", "read"],
+  ["write", "write"],
+  ["fs_write", "write"],
+  ["file_write", "write"],
+  ["edit", "edit"],
+  ["fs_edit", "edit"],
+  ["file_edit", "edit"],
+  ["glob", "glob"],
+  ["fs_glob", "glob"],
+  ["grep", "grep"],
+  ["fs_grep", "grep"],
+  ["web_fetch", "web_fetch"],
+  ["fetch", "web_fetch"],
+  ["http", "web_fetch"],
+  ["web_search", "web_search"],
+  ["search", "web_search"]
+];
+function mapToolsToAgentToolset(toolsFrontmatter) {
+  const enabledTools = /* @__PURE__ */ new Set();
+  for (const tool of toolsFrontmatter.tools) {
+    const id = tool.id.toLowerCase();
+    for (const [prefix, anthropicTool] of TOOL_ID_TO_ANTHROPIC) {
+      if (id === prefix || id.startsWith(`${prefix}_`) || id.startsWith(`${prefix}-`)) {
+        enabledTools.add(anthropicTool);
+        break;
+      }
+    }
+  }
+  const allTools = [
+    "bash",
+    "read",
+    "write",
+    "edit",
+    "glob",
+    "grep",
+    "web_fetch",
+    "web_search"
+  ];
+  return {
+    type: "agent_toolset_20260401",
+    default_config: { enabled: false },
+    configs: allTools.map((name) => ({ name, enabled: enabledTools.has(name) }))
+  };
+}
+function extractAllowedHosts(toolsFrontmatter) {
+  const hosts = /* @__PURE__ */ new Set();
+  for (const tool of toolsFrontmatter.tools) {
+    for (const domain of tool.network?.allowlist_domains ?? []) {
+      hosts.add(domain);
+    }
+  }
+  return [...hosts];
+}
+
+// ../../packages/core/dist/provisioning/frameworks/managed-agents/environment-config.js
+function buildEnvironmentConfig(riskTier, allowedHosts) {
+  switch (riskTier) {
+    case "Low":
+      return {
+        type: "cloud",
+        networking: { type: "unrestricted" }
+      };
+    case "Medium":
+      return {
+        type: "cloud",
+        networking: {
+          type: "limited",
+          allowed_hosts: allowedHosts,
+          allow_mcp_servers: true,
+          allow_package_managers: true
+        }
+      };
+    case "High":
+      return {
+        type: "cloud",
+        networking: {
+          type: "limited",
+          allowed_hosts: [],
+          allow_mcp_servers: true,
+          allow_package_managers: false
+        }
+      };
+  }
+}
+
+// ../../packages/core/dist/provisioning/frameworks/managed-agents/index.js
+function buildMcpServers(input) {
+  const servers = [];
+  for (const integration of input.integrations ?? []) {
+    if (integration.auth_type !== "managed")
+      continue;
+    const config = integration.config;
+    const mcpUrl = config["mcp_server_url"];
+    if (!mcpUrl)
+      continue;
+    const connectedAccountId = integration.credentials["connected_account_id"];
+    const apiKey = integration.credentials["api_key"];
+    const headers = {};
+    if (apiKey)
+      headers["Authorization"] = `secret_ref://${integration.definition_id}/api_key`;
+    if (connectedAccountId)
+      headers["X-Connected-Account-Id"] = String(connectedAccountId);
+    servers.push({
+      type: "url",
+      name: integration.definition_id.replace(/[^a-z0-9-]/gi, "-").toLowerCase(),
+      url: mcpUrl,
+      ...Object.keys(headers).length > 0 ? { headers } : {}
+    });
+  }
+  return servers;
+}
+var ManagedAgentsAdapter = {
+  id: "managed-agents",
+  label: "Managed Agents (Anthropic Cloud)",
+  buildArtifacts(input) {
+    const { agent, toolsFrontmatter } = input;
+    const toolset = mapToolsToAgentToolset(toolsFrontmatter);
+    const allowedHosts = extractAllowedHosts(toolsFrontmatter);
+    const environmentConfig = buildEnvironmentConfig(agent.risk_tier, allowedHosts);
+    const mcpServers = buildMcpServers(input);
+    const tools = [toolset];
+    for (const server of mcpServers) {
+      tools.push({ type: "mcp_toolset", mcp_server_name: server.name });
+    }
+    const config = {
+      name: agent.display_name,
+      model: agent.primary_model ?? "claude-sonnet-4-6",
+      system: generateSystemPrompt(input),
+      tools,
+      mcp_servers: mcpServers,
+      description: agent.description,
+      metadata: {
+        augmented_agent_id: agent.agent_id,
+        augmented_code_name: agent.code_name,
+        augmented_environment: agent.environment,
+        augmented_risk_tier: agent.risk_tier,
+        augmented_framework: "managed-agents"
+      },
+      _environment_config: environmentConfig
+    };
+    return [
+      {
+        relativePath: "managed-agent.json",
+        content: JSON.stringify(config, null, 2)
+      }
+    ];
+  },
+  driftTrackedFiles() {
+    return ["managed-agent.json"];
+  },
+  // -------------------------------------------------------------------------
+  // No local runtime — all execution is in Anthropic's cloud.
+  // These methods are intentional no-ops.
+  // -------------------------------------------------------------------------
+  async getRegisteredAgents() {
+    return /* @__PURE__ */ new Set();
+  },
+  async registerAgent(_codeName, _teamDir) {
+    return true;
+  },
+  async deregisterAgent(_codeName) {
+    return true;
+  },
+  writeAuthProfiles(_codeName, _profiles) {
+  }
+};
+registerFramework(ManagedAgentsAdapter);
+
 // src/lib/config.ts
 import { readFileSync as readFileSync4, writeFileSync as writeFileSync4, mkdirSync as mkdirSync4, existsSync as existsSync4 } from "fs";
 import { join as join4 } from "path";
@@ -2888,6 +3379,11 @@ async function doExchange(rawKey, retried) {
   if (!res.ok) {
     const body = await res.json().catch(() => ({}));
     const errorMsg = String(body["error"] ?? res.statusText);
+    const host = requireHost();
+    const obfuscated = rawKey.length > 12 ? `${rawKey.slice(0, 8)}${"*".repeat(rawKey.length - 12)}${rawKey.slice(-4)}` : rawKey.slice(0, 4) + "****";
+    if (res.status >= 502 && res.status <= 504) {
+      throw new Error(`API unreachable (${res.status}): ${host} \u2014 is the API server running?`);
+    }
     if (errorMsg.includes("revoked") && !retried) {
       reloadFromShellProfile();
       const freshKey = getApiKey();
@@ -2895,8 +3391,6 @@ async function doExchange(rawKey, retried) {
         return doExchange(freshKey, true);
       }
     }
-    const host = requireHost();
-    const obfuscated = rawKey.length > 12 ? `${rawKey.slice(0, 8)}${"*".repeat(rawKey.length - 12)}${rawKey.slice(-4)}` : rawKey.slice(0, 4) + "****";
     throw new Error(`API key exchange failed: ${errorMsg} (host=${host}, key=${obfuscated})`);
   }
   const data = await res.json();
@@ -4546,7 +5040,12 @@ var ROLE_PERMISSIONS = {
     "audit_log.view",
     "host.create",
     "host.manage",
-    "host.view"
+    "host.view",
+    "plugin.view",
+    "plugin.install",
+    "plugin.configure",
+    "plugin.manage_scopes",
+    "plugin.approve_requests"
   ],
   admin: [
     "team.manage_members",
@@ -4560,7 +5059,12 @@ var ROLE_PERMISSIONS = {
     "audit_log.view",
     "host.create",
     "host.manage",
-    "host.view"
+    "host.view",
+    "plugin.view",
+    "plugin.install",
+    "plugin.configure",
+    "plugin.manage_scopes",
+    "plugin.approve_requests"
   ],
   member: [
     "agent.create",
@@ -4568,12 +5072,17 @@ var ROLE_PERMISSIONS = {
     "agent.deploy",
     "agent.view",
     "audit_log.view",
-    "host.view"
+    "host.view",
+    "plugin.view",
+    "plugin.install",
+    "plugin.configure",
+    "plugin.manage_scopes"
   ],
   viewer: [
     "agent.view",
     "audit_log.view",
-    "host.view"
+    "host.view",
+    "plugin.view"
   ]
 };
 var permissionSets = new Map(Object.entries(ROLE_PERMISSIONS).map(([role, actions]) => [role, new Set(actions)]));
@@ -4680,6 +5189,129 @@ function getTemplate(id) {
   return DEPLOYMENT_TEMPLATES.find((t) => t.id === id);
 }
 
+// ../../packages/core/dist/plugins/context-validator.js
+import Ajv20202 from "ajv/dist/2020.js";
+import addFormats2 from "ajv-formats";
+
+// ../../packages/core/dist/plugins/context-meta-schema.json
+var context_meta_schema_default = {
+  $schema: "https://json-schema.org/draft/2020-12/schema",
+  $id: "https://augmented.dev/schemas/plugin-context.meta.schema.json",
+  title: "Plugin Context Schema (meta)",
+  description: "Meta-schema for the constrained subset of JSON Schema that plugin authors may declare for their plugin context. Anything outside this subset is rejected at PUT time. See ENG-4341 / docs/plugins/plugin-context-rfc.md.",
+  type: "object",
+  required: ["type", "properties"],
+  additionalProperties: false,
+  properties: {
+    $schema: {
+      type: "string"
+    },
+    type: {
+      type: "string",
+      const: "object"
+    },
+    properties: {
+      type: "object",
+      minProperties: 0,
+      additionalProperties: {
+        $ref: "#/$defs/field"
+      }
+    },
+    required: {
+      type: "array",
+      items: { type: "string" },
+      uniqueItems: true
+    }
+  },
+  $defs: {
+    field: {
+      oneOf: [
+        { $ref: "#/$defs/stringField" },
+        { $ref: "#/$defs/booleanField" },
+        { $ref: "#/$defs/stringArrayField" },
+        { $ref: "#/$defs/stringMapField" }
+      ]
+    },
+    stringField: {
+      type: "object",
+      required: ["type"],
+      additionalProperties: false,
+      properties: {
+        type: { const: "string" },
+        title: { type: "string" },
+        description: { type: "string" },
+        enum: {
+          type: "array",
+          items: { type: "string" },
+          minItems: 1,
+          uniqueItems: true
+        },
+        default: { type: "string" }
+      }
+    },
+    booleanField: {
+      type: "object",
+      required: ["type"],
+      additionalProperties: false,
+      properties: {
+        type: { const: "boolean" },
+        title: { type: "string" },
+        description: { type: "string" },
+        default: { type: "boolean" }
+      }
+    },
+    stringArrayField: {
+      type: "object",
+      required: ["type", "items"],
+      additionalProperties: false,
+      properties: {
+        type: { const: "array" },
+        items: {
+          type: "object",
+          required: ["type"],
+          additionalProperties: false,
+          properties: {
+            type: { const: "string" }
+          }
+        },
+        title: { type: "string" },
+        description: { type: "string" },
+        default: {
+          type: "array",
+          items: { type: "string" }
+        }
+      }
+    },
+    stringMapField: {
+      type: "object",
+      required: ["type", "additionalProperties"],
+      additionalProperties: false,
+      properties: {
+        type: { const: "object" },
+        additionalProperties: {
+          type: "object",
+          required: ["type"],
+          additionalProperties: false,
+          properties: {
+            type: { const: "string" }
+          }
+        },
+        title: { type: "string" },
+        description: { type: "string" },
+        default: {
+          type: "object",
+          additionalProperties: { type: "string" }
+        }
+      }
+    }
+  }
+};
+
+// ../../packages/core/dist/plugins/context-validator.js
+var ajv2 = new Ajv20202({ allErrors: true, strict: false });
+addFormats2(ajv2);
+var compiledMetaSchema = ajv2.compile(context_meta_schema_default);
+
 // ../../packages/core/dist/drift/comparators.js
 function compareToolPolicy(expected, actual) {
   const findings = [];
@@ -4876,6 +5508,7 @@ export {
   getChannel,
   getAllChannelIds,
   provisionStopHook,
+  provisionIsolationHook,
   getApiKey,
   getActiveTeam,
   setActiveTeam,
@@ -4906,4 +5539,4 @@ export {
   detectDrift,
   provision
 };
-//# sourceMappingURL=chunk-N7TRKQMT.js.map
+//# sourceMappingURL=chunk-6YGOQRAR.js.map