npm - @jaguilar87/gaia - Versions diffs - 5.0.0-rc.2 - Mend

@jaguilar87/gaia 5.0.0-rc.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (621) hide show

package/.claude-plugin/marketplace.json +33 -0
package/.claude-plugin/plugin.json +26 -0
package/ARCHITECTURE.md +335 -0
package/CHANGELOG.md +1298 -0
package/CODE_OF_CONDUCT.md +11 -0
package/CONTRIBUTING.md +146 -0
package/INSTALL.md +436 -0
package/LICENSE +21 -0
package/README.md +222 -0
package/SECURITY.md +47 -0
package/agents/README.md +78 -0
package/agents/cloud-troubleshooter.md +73 -0
package/agents/developer.md +65 -0
package/agents/gaia-operator.md +64 -0
package/agents/gaia-orchestrator.md +111 -0
package/agents/gaia-planner.md +53 -0
package/agents/gaia-system.md +71 -0
package/agents/gitops-operator.md +61 -0
package/agents/terraform-architect.md +63 -0
package/bin/README.md +106 -0
package/bin/cli/__init__.py +1 -0
package/bin/cli/approvals.py +740 -0
package/bin/cli/cleanup.py +562 -0
package/bin/cli/context.py +283 -0
package/bin/cli/doctor.py +651 -0
package/bin/cli/history.py +305 -0
package/bin/cli/memory.py +483 -0
package/bin/cli/metrics.py +1068 -0
package/bin/cli/plans.py +515 -0
package/bin/cli/status.py +302 -0
package/bin/cli/update.py +382 -0
package/bin/gaia +112 -0
package/bin/gaia-cleanup.js +531 -0
package/bin/gaia-doctor.js +635 -0
package/bin/gaia-evidence +126 -0
package/bin/gaia-history.js +251 -0
package/bin/gaia-metrics.js +1278 -0
package/bin/gaia-review.js +269 -0
package/bin/gaia-scan +44 -0
package/bin/gaia-scan.py +589 -0
package/bin/gaia-skills-diagnose.js +929 -0
package/bin/gaia-status.js +278 -0
package/bin/gaia-uninstall.js +111 -0
package/bin/gaia-update.js +919 -0
package/bin/pre-publish-validate.js +610 -0
package/bin/python-detect.js +60 -0
package/bin/validate-sandbox.sh +601 -0
package/commands/README.md +64 -0
package/commands/gaia.md +37 -0
package/commands/scan-project.md +67 -0
package/config/README.md +71 -0
package/config/cloud/aws.json +134 -0
package/config/cloud/gcp.json +139 -0
package/config/context-contracts.json +158 -0
package/config/crons-schema.md +81 -0
package/config/git_standards.json +72 -0
package/config/surface-routing.json +417 -0
package/config/universal-rules.json +102 -0
package/dist/gaia-ops/.claude-plugin/plugin.json +24 -0
package/dist/gaia-ops/README.md +80 -0
package/dist/gaia-ops/agents/cloud-troubleshooter.md +73 -0
package/dist/gaia-ops/agents/developer.md +65 -0
package/dist/gaia-ops/agents/gaia-operator.md +64 -0
package/dist/gaia-ops/agents/gaia-orchestrator.md +111 -0
package/dist/gaia-ops/agents/gaia-planner.md +53 -0
package/dist/gaia-ops/agents/gaia-system.md +71 -0
package/dist/gaia-ops/agents/gitops-operator.md +61 -0
package/dist/gaia-ops/agents/terraform-architect.md +63 -0
package/dist/gaia-ops/commands/gaia.md +37 -0
package/dist/gaia-ops/config/README.md +71 -0
package/dist/gaia-ops/config/cloud/aws.json +134 -0
package/dist/gaia-ops/config/cloud/gcp.json +139 -0
package/dist/gaia-ops/config/context-contracts.json +158 -0
package/dist/gaia-ops/config/crons-schema.md +81 -0
package/dist/gaia-ops/config/git_standards.json +72 -0
package/dist/gaia-ops/config/surface-routing.json +417 -0
package/dist/gaia-ops/config/universal-rules.json +102 -0
package/dist/gaia-ops/hooks/adapters/__init__.py +52 -0
package/dist/gaia-ops/hooks/adapters/base.py +219 -0
package/dist/gaia-ops/hooks/adapters/channel.py +17 -0
package/dist/gaia-ops/hooks/adapters/claude_code.py +1890 -0
package/dist/gaia-ops/hooks/adapters/types.py +194 -0
package/dist/gaia-ops/hooks/adapters/utils.py +25 -0
package/dist/gaia-ops/hooks/hooks.json +192 -0
package/dist/gaia-ops/hooks/modules/__init__.py +15 -0
package/dist/gaia-ops/hooks/modules/agents/__init__.py +29 -0
package/dist/gaia-ops/hooks/modules/agents/contract_validator.py +647 -0
package/dist/gaia-ops/hooks/modules/agents/response_contract.py +496 -0
package/dist/gaia-ops/hooks/modules/agents/skill_injection_verifier.py +120 -0
package/dist/gaia-ops/hooks/modules/agents/state_tracker.py +267 -0
package/dist/gaia-ops/hooks/modules/agents/task_info_builder.py +74 -0
package/dist/gaia-ops/hooks/modules/agents/transcript_analyzer.py +458 -0
package/dist/gaia-ops/hooks/modules/agents/transcript_reader.py +152 -0
package/dist/gaia-ops/hooks/modules/audit/__init__.py +28 -0
package/dist/gaia-ops/hooks/modules/audit/event_detector.py +168 -0
package/dist/gaia-ops/hooks/modules/audit/logger.py +131 -0
package/dist/gaia-ops/hooks/modules/audit/metrics.py +134 -0
package/dist/gaia-ops/hooks/modules/audit/workflow_auditor.py +611 -0
package/dist/gaia-ops/hooks/modules/audit/workflow_recorder.py +296 -0
package/dist/gaia-ops/hooks/modules/context/__init__.py +11 -0
package/dist/gaia-ops/hooks/modules/context/agentic_loop_detector.py +165 -0
package/dist/gaia-ops/hooks/modules/context/anchor_tracker.py +317 -0
package/dist/gaia-ops/hooks/modules/context/compact_context_builder.py +218 -0
package/dist/gaia-ops/hooks/modules/context/context_freshness.py +145 -0
package/dist/gaia-ops/hooks/modules/context/context_injector.py +558 -0
package/dist/gaia-ops/hooks/modules/context/context_writer.py +530 -0
package/dist/gaia-ops/hooks/modules/context/contracts_loader.py +161 -0
package/dist/gaia-ops/hooks/modules/core/__init__.py +40 -0
package/dist/gaia-ops/hooks/modules/core/hook_entry.py +78 -0
package/dist/gaia-ops/hooks/modules/core/paths.py +160 -0
package/dist/gaia-ops/hooks/modules/core/plugin_mode.py +149 -0
package/dist/gaia-ops/hooks/modules/core/plugin_setup.py +577 -0
package/dist/gaia-ops/hooks/modules/core/state.py +179 -0
package/dist/gaia-ops/hooks/modules/core/stdin.py +24 -0
package/dist/gaia-ops/hooks/modules/events/__init__.py +1 -0
package/dist/gaia-ops/hooks/modules/events/event_writer.py +210 -0
package/dist/gaia-ops/hooks/modules/memory/__init__.py +8 -0
package/dist/gaia-ops/hooks/modules/memory/episode_writer.py +216 -0
package/dist/gaia-ops/hooks/modules/orchestrator/__init__.py +1 -0
package/dist/gaia-ops/hooks/modules/orchestrator/delegate_mode.py +122 -0
package/dist/gaia-ops/hooks/modules/scanning/__init__.py +8 -0
package/dist/gaia-ops/hooks/modules/scanning/scan_trigger.py +84 -0
package/dist/gaia-ops/hooks/modules/security/__init__.py +120 -0
package/dist/gaia-ops/hooks/modules/security/approval_cleanup.py +87 -0
package/dist/gaia-ops/hooks/modules/security/approval_constants.py +23 -0
package/dist/gaia-ops/hooks/modules/security/approval_grants.py +1638 -0
package/dist/gaia-ops/hooks/modules/security/approval_messages.py +71 -0
package/dist/gaia-ops/hooks/modules/security/approval_scopes.py +222 -0
package/dist/gaia-ops/hooks/modules/security/blocked_commands.py +595 -0
package/dist/gaia-ops/hooks/modules/security/blocked_message_formatter.py +87 -0
package/dist/gaia-ops/hooks/modules/security/command_semantics.py +181 -0
package/dist/gaia-ops/hooks/modules/security/composition_rules.py +547 -0
package/dist/gaia-ops/hooks/modules/security/flag_classifiers.py +873 -0
package/dist/gaia-ops/hooks/modules/security/gitops_validator.py +179 -0
package/dist/gaia-ops/hooks/modules/security/mutative_verbs.py +1131 -0
package/dist/gaia-ops/hooks/modules/security/network_hosts.py +481 -0
package/dist/gaia-ops/hooks/modules/security/prompt_validator.py +40 -0
package/dist/gaia-ops/hooks/modules/security/shell_unwrapper.py +165 -0
package/dist/gaia-ops/hooks/modules/security/tiers.py +196 -0
package/dist/gaia-ops/hooks/modules/session/__init__.py +10 -0
package/dist/gaia-ops/hooks/modules/session/pending_scanner.py +174 -0
package/dist/gaia-ops/hooks/modules/session/session_context_writer.py +100 -0
package/dist/gaia-ops/hooks/modules/session/session_event_injector.py +160 -0
package/dist/gaia-ops/hooks/modules/session/session_manager.py +31 -0
package/dist/gaia-ops/hooks/modules/session/session_registry.py +333 -0
package/dist/gaia-ops/hooks/modules/tools/__init__.py +29 -0
package/dist/gaia-ops/hooks/modules/tools/bash_validator.py +1008 -0
package/dist/gaia-ops/hooks/modules/tools/cloud_pipe_validator.py +231 -0
package/dist/gaia-ops/hooks/modules/tools/hook_response.py +55 -0
package/dist/gaia-ops/hooks/modules/tools/shell_parser.py +227 -0
package/dist/gaia-ops/hooks/modules/tools/stage_decomposer.py +315 -0
package/dist/gaia-ops/hooks/modules/tools/task_validator.py +294 -0
package/dist/gaia-ops/hooks/modules/validation/__init__.py +23 -0
package/dist/gaia-ops/hooks/modules/validation/commit_validator.py +380 -0
package/dist/gaia-ops/hooks/post_compact.py +43 -0
package/dist/gaia-ops/hooks/post_tool_use.py +54 -0
package/dist/gaia-ops/hooks/pre_compact.py +60 -0
package/dist/gaia-ops/hooks/pre_tool_use.py +413 -0
package/dist/gaia-ops/hooks/session_end_hook.py +77 -0
package/dist/gaia-ops/hooks/session_start.py +81 -0
package/dist/gaia-ops/hooks/stop_hook.py +70 -0
package/dist/gaia-ops/hooks/subagent_start.py +71 -0
package/dist/gaia-ops/hooks/subagent_stop.py +295 -0
package/dist/gaia-ops/hooks/task_completed.py +70 -0
package/dist/gaia-ops/hooks/user_prompt_submit.py +246 -0
package/dist/gaia-ops/settings.json +72 -0
package/dist/gaia-ops/skills/README.md +158 -0
package/dist/gaia-ops/skills/agent-creation/SKILL.md +87 -0
package/dist/gaia-ops/skills/agent-creation/examples.md +170 -0
package/dist/gaia-ops/skills/agent-creation/reference.md +191 -0
package/dist/gaia-ops/skills/agent-protocol/SKILL.md +93 -0
package/dist/gaia-ops/skills/agent-protocol/examples.md +223 -0
package/dist/gaia-ops/skills/agent-response/SKILL.md +69 -0
package/dist/gaia-ops/skills/agentic-loop/SKILL.md +80 -0
package/dist/gaia-ops/skills/agentic-loop/reference.md +378 -0
package/dist/gaia-ops/skills/blog-writing/SKILL.md +98 -0
package/dist/gaia-ops/skills/blog-writing/reference.md +130 -0
package/dist/gaia-ops/skills/brief-spec/SKILL.md +185 -0
package/dist/gaia-ops/skills/command-execution/SKILL.md +64 -0
package/dist/gaia-ops/skills/command-execution/reference.md +83 -0
package/dist/gaia-ops/skills/context-updater/SKILL.md +87 -0
package/dist/gaia-ops/skills/context-updater/examples.md +71 -0
package/dist/gaia-ops/skills/developer-patterns/SKILL.md +50 -0
package/dist/gaia-ops/skills/developer-patterns/reference.md +112 -0
package/dist/gaia-ops/skills/execution/SKILL.md +99 -0
package/dist/gaia-ops/skills/fast-queries/SKILL.md +43 -0
package/dist/gaia-ops/skills/gaia-compact/SKILL.md +74 -0
package/dist/gaia-ops/skills/gaia-patterns/SKILL.md +108 -0
package/dist/gaia-ops/skills/gaia-patterns/reference.md +395 -0
package/dist/gaia-ops/skills/gaia-planner/SKILL.md +37 -0
package/dist/gaia-ops/skills/gaia-planner/reference.md +107 -0
package/dist/gaia-ops/skills/gaia-release/SKILL.md +85 -0
package/dist/gaia-ops/skills/gaia-release/reference.md +92 -0
package/dist/gaia-ops/skills/gaia-self-check/SKILL.md +114 -0
package/dist/gaia-ops/skills/gaia-self-check/reference.md +453 -0
package/dist/gaia-ops/skills/gaia-verify/SKILL.md +77 -0
package/dist/gaia-ops/skills/gaia-verify/reference.md +80 -0
package/dist/gaia-ops/skills/git-conventions/SKILL.md +47 -0
package/dist/gaia-ops/skills/gitops-patterns/SKILL.md +60 -0
package/dist/gaia-ops/skills/gitops-patterns/reference.md +183 -0
package/dist/gaia-ops/skills/gmail-policy/SKILL.md +200 -0
package/dist/gaia-ops/skills/gmail-policy/reference.md +150 -0
package/dist/gaia-ops/skills/gmail-triage/SKILL.md +100 -0
package/dist/gaia-ops/skills/gws-setup/SKILL.md +99 -0
package/dist/gaia-ops/skills/gws-setup/reference.md +73 -0
package/dist/gaia-ops/skills/investigation/SKILL.md +100 -0
package/dist/gaia-ops/skills/memory-curation/SKILL.md +83 -0
package/dist/gaia-ops/skills/memory-search/SKILL.md +88 -0
package/dist/gaia-ops/skills/orchestrator-approval/SKILL.md +160 -0
package/dist/gaia-ops/skills/orchestrator-approval/reference.md +174 -0
package/dist/gaia-ops/skills/pending-approvals/SKILL.md +72 -0
package/dist/gaia-ops/skills/pending-approvals/reference.md +214 -0
package/dist/gaia-ops/skills/readme-writing/SKILL.md +71 -0
package/dist/gaia-ops/skills/readme-writing/reference.md +188 -0
package/dist/gaia-ops/skills/reference.md +135 -0
package/dist/gaia-ops/skills/request-approval/SKILL.md +140 -0
package/dist/gaia-ops/skills/request-approval/examples.md +140 -0
package/dist/gaia-ops/skills/request-approval/reference.md +57 -0
package/dist/gaia-ops/skills/schedule-task/SKILL.md +64 -0
package/dist/gaia-ops/skills/schedule-task/reference.md +233 -0
package/dist/gaia-ops/skills/security-tiers/SKILL.md +141 -0
package/dist/gaia-ops/skills/security-tiers/destructive-commands-reference.md +623 -0
package/dist/gaia-ops/skills/security-tiers/reference.md +39 -0
package/dist/gaia-ops/skills/session-reflection/SKILL.md +69 -0
package/dist/gaia-ops/skills/skill-creation/SKILL.md +92 -0
package/dist/gaia-ops/skills/skill-creation/reference.md +29 -0
package/dist/gaia-ops/skills/terraform-patterns/SKILL.md +89 -0
package/dist/gaia-ops/skills/terraform-patterns/reference.md +93 -0
package/dist/gaia-ops/tools/__init__.py +9 -0
package/dist/gaia-ops/tools/agentic-loop/decide-status.py +210 -0
package/dist/gaia-ops/tools/agentic-loop/parse-metric.py +106 -0
package/dist/gaia-ops/tools/agentic-loop/record-iteration.py +221 -0
package/dist/gaia-ops/tools/context/README.md +132 -0
package/dist/gaia-ops/tools/context/__init__.py +42 -0
package/dist/gaia-ops/tools/context/_paths.py +20 -0
package/dist/gaia-ops/tools/context/context_provider.py +721 -0
package/dist/gaia-ops/tools/context/context_section_reader.py +342 -0
package/dist/gaia-ops/tools/context/deep_merge.py +159 -0
package/dist/gaia-ops/tools/context/pending_updates.py +760 -0
package/dist/gaia-ops/tools/context/surface_router.py +278 -0
package/dist/gaia-ops/tools/fast-queries/README.md +65 -0
package/dist/gaia-ops/tools/fast-queries/__init__.py +30 -0
package/dist/gaia-ops/tools/fast-queries/appservices/quicktriage_devops_developer.sh +75 -0
package/dist/gaia-ops/tools/fast-queries/cloud/aws/quicktriage_aws_troubleshooter.sh +32 -0
package/dist/gaia-ops/tools/fast-queries/cloud/gcp/quicktriage_gcp_troubleshooter.sh +88 -0
package/dist/gaia-ops/tools/fast-queries/gitops/quicktriage_gitops_operator.sh +48 -0
package/dist/gaia-ops/tools/fast-queries/run_triage.sh +59 -0
package/dist/gaia-ops/tools/fast-queries/terraform/quicktriage_terraform_architect.sh +80 -0
package/dist/gaia-ops/tools/gaia_simulator/__init__.py +33 -0
package/dist/gaia-ops/tools/gaia_simulator/cli.py +354 -0
package/dist/gaia-ops/tools/gaia_simulator/extractor.py +457 -0
package/dist/gaia-ops/tools/gaia_simulator/reporter.py +258 -0
package/dist/gaia-ops/tools/gaia_simulator/routing_simulator.py +334 -0
package/dist/gaia-ops/tools/gaia_simulator/runner.py +539 -0
package/dist/gaia-ops/tools/gaia_simulator/skills_mapper.py +264 -0
package/dist/gaia-ops/tools/memory/README.md +0 -0
package/dist/gaia-ops/tools/memory/__init__.py +20 -0
package/dist/gaia-ops/tools/memory/backfill_fts5.py +107 -0
package/dist/gaia-ops/tools/memory/conflict_detector.py +295 -0
package/dist/gaia-ops/tools/memory/episodic.py +1210 -0
package/dist/gaia-ops/tools/memory/git_invalidator.py +262 -0
package/dist/gaia-ops/tools/memory/paths.py +102 -0
package/dist/gaia-ops/tools/memory/scoring.py +193 -0
package/dist/gaia-ops/tools/memory/search_store.py +375 -0
package/dist/gaia-ops/tools/persist_transcript_analysis.py +85 -0
package/dist/gaia-ops/tools/review/__init__.py +1 -0
package/dist/gaia-ops/tools/review/review_engine.py +157 -0
package/dist/gaia-ops/tools/scan/__init__.py +35 -0
package/dist/gaia-ops/tools/scan/config.py +247 -0
package/dist/gaia-ops/tools/scan/merge.py +212 -0
package/dist/gaia-ops/tools/scan/orchestrator.py +549 -0
package/dist/gaia-ops/tools/scan/registry.py +127 -0
package/dist/gaia-ops/tools/scan/scanners/__init__.py +18 -0
package/dist/gaia-ops/tools/scan/scanners/base.py +137 -0
package/dist/gaia-ops/tools/scan/scanners/environment.py +349 -0
package/dist/gaia-ops/tools/scan/scanners/git.py +570 -0
package/dist/gaia-ops/tools/scan/scanners/infrastructure.py +875 -0
package/dist/gaia-ops/tools/scan/scanners/orchestration.py +600 -0
package/dist/gaia-ops/tools/scan/scanners/stack.py +1085 -0
package/dist/gaia-ops/tools/scan/scanners/tools.py +260 -0
package/dist/gaia-ops/tools/scan/setup.py +686 -0
package/dist/gaia-ops/tools/scan/tests/__init__.py +1 -0
package/dist/gaia-ops/tools/scan/tests/conftest.py +796 -0
package/dist/gaia-ops/tools/scan/tests/test_environment.py +323 -0
package/dist/gaia-ops/tools/scan/tests/test_git.py +419 -0
package/dist/gaia-ops/tools/scan/tests/test_infrastructure.py +382 -0
package/dist/gaia-ops/tools/scan/tests/test_integration.py +920 -0
package/dist/gaia-ops/tools/scan/tests/test_merge.py +269 -0
package/dist/gaia-ops/tools/scan/tests/test_orchestration.py +304 -0
package/dist/gaia-ops/tools/scan/tests/test_stack.py +604 -0
package/dist/gaia-ops/tools/scan/tests/test_tools.py +349 -0
package/dist/gaia-ops/tools/scan/ui.py +624 -0
package/dist/gaia-ops/tools/scan/verify.py +270 -0
package/dist/gaia-ops/tools/scan/walk.py +118 -0
package/dist/gaia-ops/tools/scan/workspace.py +85 -0
package/dist/gaia-ops/tools/validation/README.md +244 -0
package/dist/gaia-ops/tools/validation/__init__.py +17 -0
package/dist/gaia-ops/tools/validation/approval_gate.py +321 -0
package/dist/gaia-ops/tools/validation/validate_skills.py +189 -0
package/dist/gaia-security/.claude-plugin/plugin.json +24 -0
package/dist/gaia-security/README.md +90 -0
package/dist/gaia-security/config/universal-rules.json +102 -0
package/dist/gaia-security/hooks/adapters/__init__.py +52 -0
package/dist/gaia-security/hooks/adapters/base.py +219 -0
package/dist/gaia-security/hooks/adapters/channel.py +17 -0
package/dist/gaia-security/hooks/adapters/claude_code.py +1890 -0
package/dist/gaia-security/hooks/adapters/types.py +194 -0
package/dist/gaia-security/hooks/adapters/utils.py +25 -0
package/dist/gaia-security/hooks/hooks.json +113 -0
package/dist/gaia-security/hooks/modules/__init__.py +15 -0
package/dist/gaia-security/hooks/modules/agents/__init__.py +29 -0
package/dist/gaia-security/hooks/modules/agents/contract_validator.py +647 -0
package/dist/gaia-security/hooks/modules/agents/response_contract.py +496 -0
package/dist/gaia-security/hooks/modules/agents/skill_injection_verifier.py +120 -0
package/dist/gaia-security/hooks/modules/agents/state_tracker.py +267 -0
package/dist/gaia-security/hooks/modules/agents/task_info_builder.py +74 -0
package/dist/gaia-security/hooks/modules/agents/transcript_analyzer.py +458 -0
package/dist/gaia-security/hooks/modules/agents/transcript_reader.py +152 -0
package/dist/gaia-security/hooks/modules/audit/__init__.py +28 -0
package/dist/gaia-security/hooks/modules/audit/event_detector.py +168 -0
package/dist/gaia-security/hooks/modules/audit/logger.py +131 -0
package/dist/gaia-security/hooks/modules/audit/metrics.py +134 -0
package/dist/gaia-security/hooks/modules/audit/workflow_auditor.py +611 -0
package/dist/gaia-security/hooks/modules/audit/workflow_recorder.py +296 -0
package/dist/gaia-security/hooks/modules/context/__init__.py +11 -0
package/dist/gaia-security/hooks/modules/context/agentic_loop_detector.py +165 -0
package/dist/gaia-security/hooks/modules/context/anchor_tracker.py +317 -0
package/dist/gaia-security/hooks/modules/context/compact_context_builder.py +218 -0
package/dist/gaia-security/hooks/modules/context/context_freshness.py +145 -0
package/dist/gaia-security/hooks/modules/context/context_injector.py +558 -0
package/dist/gaia-security/hooks/modules/context/context_writer.py +530 -0
package/dist/gaia-security/hooks/modules/context/contracts_loader.py +161 -0
package/dist/gaia-security/hooks/modules/core/__init__.py +40 -0
package/dist/gaia-security/hooks/modules/core/hook_entry.py +78 -0
package/dist/gaia-security/hooks/modules/core/paths.py +160 -0
package/dist/gaia-security/hooks/modules/core/plugin_mode.py +149 -0
package/dist/gaia-security/hooks/modules/core/plugin_setup.py +577 -0
package/dist/gaia-security/hooks/modules/core/state.py +179 -0
package/dist/gaia-security/hooks/modules/core/stdin.py +24 -0
package/dist/gaia-security/hooks/modules/events/__init__.py +1 -0
package/dist/gaia-security/hooks/modules/events/event_writer.py +210 -0
package/dist/gaia-security/hooks/modules/memory/__init__.py +8 -0
package/dist/gaia-security/hooks/modules/memory/episode_writer.py +216 -0
package/dist/gaia-security/hooks/modules/orchestrator/__init__.py +1 -0
package/dist/gaia-security/hooks/modules/orchestrator/delegate_mode.py +122 -0
package/dist/gaia-security/hooks/modules/scanning/__init__.py +8 -0
package/dist/gaia-security/hooks/modules/scanning/scan_trigger.py +84 -0
package/dist/gaia-security/hooks/modules/security/__init__.py +120 -0
package/dist/gaia-security/hooks/modules/security/approval_cleanup.py +87 -0
package/dist/gaia-security/hooks/modules/security/approval_constants.py +23 -0
package/dist/gaia-security/hooks/modules/security/approval_grants.py +1638 -0
package/dist/gaia-security/hooks/modules/security/approval_messages.py +71 -0
package/dist/gaia-security/hooks/modules/security/approval_scopes.py +222 -0
package/dist/gaia-security/hooks/modules/security/blocked_commands.py +595 -0
package/dist/gaia-security/hooks/modules/security/blocked_message_formatter.py +87 -0
package/dist/gaia-security/hooks/modules/security/command_semantics.py +181 -0
package/dist/gaia-security/hooks/modules/security/composition_rules.py +547 -0
package/dist/gaia-security/hooks/modules/security/flag_classifiers.py +873 -0
package/dist/gaia-security/hooks/modules/security/gitops_validator.py +179 -0
package/dist/gaia-security/hooks/modules/security/mutative_verbs.py +1131 -0
package/dist/gaia-security/hooks/modules/security/network_hosts.py +481 -0
package/dist/gaia-security/hooks/modules/security/prompt_validator.py +40 -0
package/dist/gaia-security/hooks/modules/security/shell_unwrapper.py +165 -0
package/dist/gaia-security/hooks/modules/security/tiers.py +196 -0
package/dist/gaia-security/hooks/modules/session/__init__.py +10 -0
package/dist/gaia-security/hooks/modules/session/pending_scanner.py +174 -0
package/dist/gaia-security/hooks/modules/session/session_context_writer.py +100 -0
package/dist/gaia-security/hooks/modules/session/session_event_injector.py +160 -0
package/dist/gaia-security/hooks/modules/session/session_manager.py +31 -0
package/dist/gaia-security/hooks/modules/session/session_registry.py +333 -0
package/dist/gaia-security/hooks/modules/tools/__init__.py +29 -0
package/dist/gaia-security/hooks/modules/tools/bash_validator.py +1008 -0
package/dist/gaia-security/hooks/modules/tools/cloud_pipe_validator.py +231 -0
package/dist/gaia-security/hooks/modules/tools/hook_response.py +55 -0
package/dist/gaia-security/hooks/modules/tools/shell_parser.py +227 -0
package/dist/gaia-security/hooks/modules/tools/stage_decomposer.py +315 -0
package/dist/gaia-security/hooks/modules/tools/task_validator.py +294 -0
package/dist/gaia-security/hooks/modules/validation/__init__.py +23 -0
package/dist/gaia-security/hooks/modules/validation/commit_validator.py +380 -0
package/dist/gaia-security/hooks/post_tool_use.py +54 -0
package/dist/gaia-security/hooks/pre_tool_use.py +413 -0
package/dist/gaia-security/hooks/session_end_hook.py +77 -0
package/dist/gaia-security/hooks/session_start.py +81 -0
package/dist/gaia-security/hooks/stop_hook.py +70 -0
package/dist/gaia-security/hooks/user_prompt_submit.py +246 -0
package/dist/gaia-security/settings.json +58 -0
package/git-hooks/commit-msg +41 -0
package/hooks/README.md +100 -0
package/hooks/adapters/__init__.py +52 -0
package/hooks/adapters/base.py +219 -0
package/hooks/adapters/channel.py +17 -0
package/hooks/adapters/claude_code.py +1890 -0
package/hooks/adapters/types.py +194 -0
package/hooks/adapters/utils.py +25 -0
package/hooks/elicitation_result.py +179 -0
package/hooks/hooks.json +84 -0
package/hooks/modules/README.md +189 -0
package/hooks/modules/__init__.py +15 -0
package/hooks/modules/agents/__init__.py +29 -0
package/hooks/modules/agents/contract_validator.py +647 -0
package/hooks/modules/agents/response_contract.py +496 -0
package/hooks/modules/agents/skill_injection_verifier.py +120 -0
package/hooks/modules/agents/state_tracker.py +267 -0
package/hooks/modules/agents/task_info_builder.py +74 -0
package/hooks/modules/agents/transcript_analyzer.py +458 -0
package/hooks/modules/agents/transcript_reader.py +152 -0
package/hooks/modules/audit/__init__.py +28 -0
package/hooks/modules/audit/event_detector.py +168 -0
package/hooks/modules/audit/logger.py +131 -0
package/hooks/modules/audit/metrics.py +134 -0
package/hooks/modules/audit/workflow_auditor.py +611 -0
package/hooks/modules/audit/workflow_recorder.py +296 -0
package/hooks/modules/context/__init__.py +11 -0
package/hooks/modules/context/agentic_loop_detector.py +165 -0
package/hooks/modules/context/anchor_tracker.py +317 -0
package/hooks/modules/context/compact_context_builder.py +218 -0
package/hooks/modules/context/context_freshness.py +145 -0
package/hooks/modules/context/context_injector.py +558 -0
package/hooks/modules/context/context_writer.py +530 -0
package/hooks/modules/context/contracts_loader.py +161 -0
package/hooks/modules/core/__init__.py +40 -0
package/hooks/modules/core/hook_entry.py +78 -0
package/hooks/modules/core/paths.py +160 -0
package/hooks/modules/core/plugin_mode.py +149 -0
package/hooks/modules/core/plugin_setup.py +577 -0
package/hooks/modules/core/state.py +179 -0
package/hooks/modules/core/stdin.py +24 -0
package/hooks/modules/events/__init__.py +1 -0
package/hooks/modules/events/event_writer.py +210 -0
package/hooks/modules/evidence/__init__.py +34 -0
package/hooks/modules/evidence/assertions.py +137 -0
package/hooks/modules/evidence/index_writer.py +57 -0
package/hooks/modules/evidence/loader.py +126 -0
package/hooks/modules/evidence/runner.py +241 -0
package/hooks/modules/memory/__init__.py +8 -0
package/hooks/modules/memory/episode_writer.py +216 -0
package/hooks/modules/orchestrator/__init__.py +1 -0
package/hooks/modules/orchestrator/delegate_mode.py +122 -0
package/hooks/modules/scanning/__init__.py +8 -0
package/hooks/modules/scanning/scan_trigger.py +84 -0
package/hooks/modules/security/__init__.py +120 -0
package/hooks/modules/security/approval_cleanup.py +87 -0
package/hooks/modules/security/approval_constants.py +23 -0
package/hooks/modules/security/approval_grants.py +1638 -0
package/hooks/modules/security/approval_messages.py +71 -0
package/hooks/modules/security/approval_scopes.py +222 -0
package/hooks/modules/security/blocked_commands.py +595 -0
package/hooks/modules/security/blocked_message_formatter.py +87 -0
package/hooks/modules/security/command_semantics.py +181 -0
package/hooks/modules/security/composition_rules.py +547 -0
package/hooks/modules/security/flag_classifiers.py +873 -0
package/hooks/modules/security/gitops_validator.py +179 -0
package/hooks/modules/security/mutative_verbs.py +1131 -0
package/hooks/modules/security/network_hosts.py +481 -0
package/hooks/modules/security/prompt_validator.py +40 -0
package/hooks/modules/security/shell_unwrapper.py +165 -0
package/hooks/modules/security/tiers.py +196 -0
package/hooks/modules/session/__init__.py +10 -0
package/hooks/modules/session/pending_scanner.py +174 -0
package/hooks/modules/session/session_context_writer.py +100 -0
package/hooks/modules/session/session_event_injector.py +160 -0
package/hooks/modules/session/session_manager.py +31 -0
package/hooks/modules/session/session_registry.py +333 -0
package/hooks/modules/tools/__init__.py +29 -0
package/hooks/modules/tools/bash_validator.py +1008 -0
package/hooks/modules/tools/cloud_pipe_validator.py +231 -0
package/hooks/modules/tools/hook_response.py +55 -0
package/hooks/modules/tools/shell_parser.py +227 -0
package/hooks/modules/tools/stage_decomposer.py +315 -0
package/hooks/modules/tools/task_validator.py +294 -0
package/hooks/modules/validation/__init__.py +23 -0
package/hooks/modules/validation/commit_validator.py +380 -0
package/hooks/post_compact.py +43 -0
package/hooks/post_tool_use.py +54 -0
package/hooks/pre_compact.py +60 -0
package/hooks/pre_tool_use.py +413 -0
package/hooks/session_end_hook.py +77 -0
package/hooks/session_start.py +81 -0
package/hooks/stop_hook.py +70 -0
package/hooks/subagent_start.py +71 -0
package/hooks/subagent_stop.py +295 -0
package/hooks/task_completed.py +70 -0
package/hooks/user_prompt_submit.py +246 -0
package/index.js +83 -0
package/package.json +103 -0
package/pyproject.toml +32 -0
package/skills/README.md +158 -0
package/skills/agent-creation/SKILL.md +87 -0
package/skills/agent-creation/examples.md +170 -0
package/skills/agent-creation/reference.md +191 -0
package/skills/agent-protocol/SKILL.md +93 -0
package/skills/agent-protocol/examples.md +223 -0
package/skills/agent-response/SKILL.md +69 -0
package/skills/agentic-loop/SKILL.md +80 -0
package/skills/agentic-loop/reference.md +378 -0
package/skills/blog-writing/SKILL.md +98 -0
package/skills/blog-writing/reference.md +130 -0
package/skills/brief-spec/SKILL.md +185 -0
package/skills/command-execution/SKILL.md +64 -0
package/skills/command-execution/reference.md +83 -0
package/skills/context-updater/SKILL.md +87 -0
package/skills/context-updater/examples.md +71 -0
package/skills/developer-patterns/SKILL.md +50 -0
package/skills/developer-patterns/reference.md +112 -0
package/skills/execution/SKILL.md +99 -0
package/skills/fast-queries/SKILL.md +43 -0
package/skills/gaia-compact/SKILL.md +74 -0
package/skills/gaia-patterns/SKILL.md +108 -0
package/skills/gaia-patterns/reference.md +395 -0
package/skills/gaia-planner/SKILL.md +37 -0
package/skills/gaia-planner/reference.md +107 -0
package/skills/gaia-release/SKILL.md +85 -0
package/skills/gaia-release/reference.md +92 -0
package/skills/gaia-self-check/SKILL.md +114 -0
package/skills/gaia-self-check/reference.md +453 -0
package/skills/gaia-verify/SKILL.md +77 -0
package/skills/gaia-verify/reference.md +80 -0
package/skills/git-conventions/SKILL.md +47 -0
package/skills/gitops-patterns/SKILL.md +60 -0
package/skills/gitops-patterns/reference.md +183 -0
package/skills/gmail-policy/SKILL.md +200 -0
package/skills/gmail-policy/reference.md +150 -0
package/skills/gmail-triage/SKILL.md +100 -0
package/skills/gws-setup/SKILL.md +99 -0
package/skills/gws-setup/reference.md +73 -0
package/skills/investigation/SKILL.md +100 -0
package/skills/memory-curation/SKILL.md +83 -0
package/skills/memory-search/SKILL.md +88 -0
package/skills/orchestrator-approval/SKILL.md +160 -0
package/skills/orchestrator-approval/reference.md +174 -0
package/skills/pending-approvals/SKILL.md +72 -0
package/skills/pending-approvals/reference.md +214 -0
package/skills/readme-writing/SKILL.md +71 -0
package/skills/readme-writing/reference.md +188 -0
package/skills/reference.md +135 -0
package/skills/request-approval/SKILL.md +140 -0
package/skills/request-approval/examples.md +140 -0
package/skills/request-approval/reference.md +57 -0
package/skills/schedule-task/SKILL.md +64 -0
package/skills/schedule-task/reference.md +233 -0
package/skills/security-tiers/SKILL.md +141 -0
package/skills/security-tiers/destructive-commands-reference.md +623 -0
package/skills/security-tiers/reference.md +39 -0
package/skills/session-reflection/SKILL.md +69 -0
package/skills/skill-creation/SKILL.md +92 -0
package/skills/skill-creation/reference.md +29 -0
package/skills/terraform-patterns/SKILL.md +89 -0
package/skills/terraform-patterns/reference.md +93 -0
package/templates/README.md +69 -0
package/templates/managed-settings.template.json +43 -0
package/tools/__init__.py +9 -0
package/tools/agentic-loop/decide-status.py +210 -0
package/tools/agentic-loop/parse-metric.py +106 -0
package/tools/agentic-loop/record-iteration.py +221 -0
package/tools/context/README.md +132 -0
package/tools/context/__init__.py +42 -0
package/tools/context/_paths.py +20 -0
package/tools/context/context_provider.py +721 -0
package/tools/context/context_section_reader.py +342 -0
package/tools/context/deep_merge.py +159 -0
package/tools/context/pending_updates.py +760 -0
package/tools/context/surface_router.py +278 -0
package/tools/fast-queries/README.md +65 -0
package/tools/fast-queries/__init__.py +30 -0
package/tools/fast-queries/appservices/quicktriage_devops_developer.sh +75 -0
package/tools/fast-queries/cloud/aws/quicktriage_aws_troubleshooter.sh +32 -0
package/tools/fast-queries/cloud/gcp/quicktriage_gcp_troubleshooter.sh +88 -0
package/tools/fast-queries/gitops/quicktriage_gitops_operator.sh +48 -0
package/tools/fast-queries/run_triage.sh +59 -0
package/tools/fast-queries/terraform/quicktriage_terraform_architect.sh +80 -0
package/tools/gaia_simulator/__init__.py +33 -0
package/tools/gaia_simulator/cli.py +354 -0
package/tools/gaia_simulator/extractor.py +457 -0
package/tools/gaia_simulator/reporter.py +258 -0
package/tools/gaia_simulator/routing_simulator.py +334 -0
package/tools/gaia_simulator/runner.py +539 -0
package/tools/gaia_simulator/skills_mapper.py +264 -0
package/tools/memory/README.md +0 -0
package/tools/memory/__init__.py +20 -0
package/tools/memory/backfill_fts5.py +107 -0
package/tools/memory/conflict_detector.py +295 -0
package/tools/memory/episodic.py +1210 -0
package/tools/memory/git_invalidator.py +262 -0
package/tools/memory/paths.py +102 -0
package/tools/memory/scoring.py +193 -0
package/tools/memory/search_store.py +375 -0
package/tools/persist_transcript_analysis.py +85 -0
package/tools/review/__init__.py +1 -0
package/tools/review/review_engine.py +157 -0
package/tools/scan/__init__.py +35 -0
package/tools/scan/config.py +247 -0
package/tools/scan/merge.py +212 -0
package/tools/scan/orchestrator.py +549 -0
package/tools/scan/registry.py +127 -0
package/tools/scan/scanners/__init__.py +18 -0
package/tools/scan/scanners/base.py +137 -0
package/tools/scan/scanners/environment.py +349 -0
package/tools/scan/scanners/git.py +570 -0
package/tools/scan/scanners/infrastructure.py +875 -0
package/tools/scan/scanners/orchestration.py +600 -0
package/tools/scan/scanners/stack.py +1085 -0
package/tools/scan/scanners/tools.py +260 -0
package/tools/scan/setup.py +686 -0
package/tools/scan/tests/__init__.py +1 -0
package/tools/scan/tests/conftest.py +796 -0
package/tools/scan/tests/test_environment.py +323 -0
package/tools/scan/tests/test_git.py +419 -0
package/tools/scan/tests/test_infrastructure.py +382 -0
package/tools/scan/tests/test_integration.py +920 -0
package/tools/scan/tests/test_merge.py +269 -0
package/tools/scan/tests/test_orchestration.py +304 -0
package/tools/scan/tests/test_stack.py +604 -0
package/tools/scan/tests/test_tools.py +349 -0
package/tools/scan/ui.py +624 -0
package/tools/scan/verify.py +270 -0
package/tools/scan/walk.py +118 -0
package/tools/scan/workspace.py +85 -0
package/tools/validation/README.md +244 -0
package/tools/validation/__init__.py +17 -0
package/tools/validation/approval_gate.py +321 -0
package/tools/validation/validate_skills.py +189 -0

package/dist/gaia-security/hooks/modules/orchestrator/delegate_mode.py ADDED Viewed

@@ -0,0 +1,122 @@
+"""Orchestrator delegate mode enforcement.
+When GAIA is installed, delegate mode is always active. The orchestrator
+(main session) is restricted to dispatch-only tools. Direct investigation
+tools (Bash, Read, Edit, etc.) are blocked so the orchestrator must
+delegate to specialist agents.
+Detection: Claude Code includes ``agent_id`` and ``agent_type`` in the
+PreToolUse payload ONLY when the hook fires inside a subagent. Their absence
+means the call originates from the main session (orchestrator).
+"""
+from __future__ import annotations
+import logging
+from dataclasses import dataclass
+from typing import Any, Dict, Optional
+logger = logging.getLogger(__name__)
+# Tools the orchestrator is allowed to use in delegate mode.
+# Everything NOT in this set is blocked for the main session.
+ORCHESTRATOR_ALLOWED_TOOLS = frozenset({
+    # Dispatch and communication
+    "agent",
+    "task",
+    "sendmessage",
+    # On-demand skills / procedures
+    "skill",
+    # Agent teams task management
+    "taskcreate",
+    "taskupdate",
+    "tasklist",
+    "taskget",
+    # Tool discovery
+    "toolsearch",
+    # Web research (read-only, T0)
+    "websearch",
+    "webfetch",
+    # User interaction (built-in, may not always trigger hooks)
+    "askuserquestion",
+})
+@dataclass(frozen=True)
+class DelegateModeResult:
+    """Result of delegate mode check."""
+    blocked: bool
+    reason: Optional[str] = None
+def is_orchestrator_context(hook_payload: Dict[str, Any]) -> bool:
+    """Determine if the hook is firing in the main session (orchestrator).
+    Claude Code includes ``agent_id`` in the PreToolUse payload only when
+    the tool call originates from a subagent. Its absence means the call
+    is from the main session.
+    Args:
+        hook_payload: The full stdin JSON dict from Claude Code.
+    Returns:
+        True if this is the orchestrator (main session), False if subagent.
+    """
+    agent_id = hook_payload.get("agent_id")
+    # agent_id is absent or empty string for the main session
+    return not agent_id
+def check_delegate_mode(
+    tool_name: str, hook_payload: Dict[str, Any]
+) -> DelegateModeResult:
+    """Check whether a tool call should be blocked by delegate mode.
+    This is the single entry point. Call it early in the PreToolUse flow.
+    Args:
+        tool_name: The tool being invoked (e.g., "Bash", "Read", "Edit").
+        hook_payload: The full stdin JSON dict from Claude Code.
+    Returns:
+        DelegateModeResult with blocked=True and a reason if the call
+        should be denied, or blocked=False if it should proceed.
+    """
+    is_orchestrator = is_orchestrator_context(hook_payload)
+    if not is_orchestrator:
+        # Subagents have full tool access -- delegate mode does not apply
+        agent_id = hook_payload.get("agent_id", "<none>")
+        logger.debug(
+            "delegate_mode check: SKIP (subagent %s) tool=%s",
+            agent_id,
+            tool_name,
+        )
+        return DelegateModeResult(blocked=False)
+    normalized = tool_name.lower().strip()
+    if normalized in ORCHESTRATOR_ALLOWED_TOOLS:
+        logger.debug(
+            "delegate_mode check: ALLOW (orchestrator allowed tool) tool=%s",
+            tool_name,
+        )
+        return DelegateModeResult(blocked=False)
+    logger.warning(
+        "DELEGATE_MODE blocked tool '%s' for orchestrator (main session)",
+        tool_name,
+    )
+    return DelegateModeResult(
+        blocked=True,
+        reason=(
+            f"DELEGATION REQUIRED: '{tool_name}' is not available.\n"
+            f"Dispatch a specialist agent for this task.\n"
+            f"The routing recommendation in your last message indicates which agent to use."
+        ),
+    )

package/dist/gaia-security/hooks/modules/scanning/__init__.py ADDED Viewed

@@ -0,0 +1,8 @@
+"""
+Scanning Module
+Provides tools for triggering project scans:
+- scan_trigger: Lightweight scan invocation for session-start auto-refresh
+"""
+__all__ = []

package/dist/gaia-security/hooks/modules/scanning/scan_trigger.py ADDED Viewed

@@ -0,0 +1,84 @@
+"""
+Lightweight scan trigger for SessionStart hook.
+Runs a subset of project scanners (e.g., tools + environment) to refresh
+project-context.json without significant startup delay (<3s target).
+Uses the scan engine directly (in-process) — no dependency on bin/gaia-scan.py.
+Works in both npm and plugin mode since tools/scan/ is always available.
+Public API:
+    - trigger_lightweight_scan(project_root: Path, scanners: list) -> bool
+"""
+import logging
+import sys
+import time
+from pathlib import Path
+from typing import List
+logger = logging.getLogger(__name__)
+def trigger_lightweight_scan(
+    project_root: Path,
+    scanners: List[str] = None,
+) -> bool:
+    """Run a lightweight scan using the scan engine directly.
+    Args:
+        project_root: Working directory for the scan.
+        scanners: List of scanner names to run. Defaults to
+            ["tools", "environment"].
+    Returns:
+        True on success, False on failure. Designed to complete in <3s.
+    """
+    if scanners is None:
+        scanners = ["tools", "environment"]
+    # Ensure tools.scan is importable by adding plugin root to sys.path
+    hooks_dir = Path(__file__).resolve().parents[2]  # hooks/
+    plugin_root = hooks_dir.parent
+    if str(plugin_root) not in sys.path:
+        sys.path.insert(0, str(plugin_root))
+    try:
+        from tools.scan.config import ScanConfig
+        from tools.scan.orchestrator import ScanOrchestrator
+        from tools.scan.registry import ScannerRegistry
+    except ImportError as e:
+        logger.warning("Cannot import scan engine: %s", e)
+        return False
+    try:
+        start = time.monotonic()
+        config = ScanConfig(
+            scanners=scanners,
+            project_root=project_root,
+        )
+        registry = ScannerRegistry()
+        orchestrator = ScanOrchestrator(registry=registry, config=config)
+        output = orchestrator.run(project_root=project_root)
+        elapsed = time.monotonic() - start
+        if output.errors:
+            logger.warning(
+                "Lightweight scan completed with errors in %.1fs: %s",
+                elapsed,
+                output.errors[:3],
+            )
+            return False
+        logger.info(
+            "Lightweight scan completed in %.1fs (scanners: %s, sections: %d)",
+            elapsed,
+            ", ".join(scanners),
+            output.sections_updated,
+        )
+        return True
+    except Exception as e:
+        logger.warning("Failed to run lightweight scan: %s", e)
+        return False

package/dist/gaia-security/hooks/modules/security/__init__.py ADDED Viewed

@@ -0,0 +1,120 @@
+"""
+Security module - Security tiers, blocked patterns, mutative verb detection.
+Provides:
+- tiers: SecurityTier enum and classification
+- blocked_commands: Permanently blocked pattern matching
+- mutative_verbs: Mutative verb detection (user approval workflow)
+- gitops_validator: kubectl/helm/flux validation
+- approval_constants: Approval token patterns (legacy APPROVE: and ElicitationResult)
+- approval_grants: Time-limited T3 command passthrough after user approval
+- shell_unwrapper: Detect and strip wrapper shells for inner command classification
+- flag_classifiers: Flag-dependent classifiers for 15 command families
+- composition_rules: Cross-stage pipe composition rules (exfiltration, RCE, obfuscation)
+- network_hosts: Network host classification for curl/wget/httpie targets
+"""
+from .tiers import SecurityTier, classify_command_tier
+from .command_semantics import analyze_command, CommandSemantics
+from .blocked_commands import (
+    is_blocked_command,
+    get_blocked_patterns,
+    BlockedCommandResult,
+)
+from .gitops_validator import validate_gitops_workflow, GitOpsValidationResult
+from .mutative_verbs import (
+    CLI_FAMILY_LOOKUP,
+    CATEGORY_MUTATIVE,
+    CATEGORY_SIMULATION,
+    CATEGORY_READ_ONLY,
+    CATEGORY_UNKNOWN,
+)
+from .approval_constants import NONCE_APPROVAL_PATTERN, NONCE_APPROVAL_PREFIX
+from .approval_messages import (
+    CANONICAL_APPROVAL_TOKEN,
+    CANONICAL_APPROVAL_TOKEN_FORMAT,
+    CANONICAL_APPROVAL_TOKEN_GUIDANCE,
+    CANONICAL_APPROVAL_FORMAT_GUIDANCE,
+    LATEST_BLOCKED_COMMAND_PHRASE,
+)
+from .approval_scopes import (
+    ApprovalSignature,
+    SCOPE_EXACT_COMMAND,
+    SCOPE_SEMANTIC_SIGNATURE,
+    build_approval_signature,
+    matches_approval_signature,
+)
+from .approval_grants import (
+    check_approval_grant,
+    cleanup_expired_grants,
+    get_latest_pending_approval,
+    last_check_found_expired,
+    ApprovalGrant,
+)
+from .shell_unwrapper import ShellUnwrapper
+from .flag_classifiers import classify_by_flags, FlagClassifierResult
+from .composition_rules import (
+    check_composition,
+    build_composition_stages,
+    CompositionResult,
+    CompositionStage,
+    CompositionDecision,
+    StageType,
+)
+from .network_hosts import classify_host, extract_url_from_tokens, HostClassification
+__all__ = [
+    # Tiers
+    "SecurityTier",
+    "classify_command_tier",
+    "analyze_command",
+    "CommandSemantics",
+    # Blocked commands
+    "is_blocked_command",
+    "get_blocked_patterns",
+    "BlockedCommandResult",
+    # GitOps
+    "validate_gitops_workflow",
+    "GitOpsValidationResult",
+    # Mutative verbs
+    "CLI_FAMILY_LOOKUP",
+    "CATEGORY_MUTATIVE",
+    "CATEGORY_SIMULATION",
+    "CATEGORY_READ_ONLY",
+    "CATEGORY_UNKNOWN",
+    # Approval
+    "NONCE_APPROVAL_PREFIX",
+    "NONCE_APPROVAL_PATTERN",
+    "CANONICAL_APPROVAL_TOKEN",
+    "CANONICAL_APPROVAL_TOKEN_FORMAT",
+    "CANONICAL_APPROVAL_TOKEN_GUIDANCE",
+    "CANONICAL_APPROVAL_FORMAT_GUIDANCE",
+    "LATEST_BLOCKED_COMMAND_PHRASE",
+    "ApprovalSignature",
+    "SCOPE_EXACT_COMMAND",
+    "SCOPE_SEMANTIC_SIGNATURE",
+    "build_approval_signature",
+    "matches_approval_signature",
+    # Approval Grants
+    "check_approval_grant",
+    "cleanup_expired_grants",
+    "get_latest_pending_approval",
+    "last_check_found_expired",
+    "ApprovalGrant",
+    # Shell unwrapper
+    "ShellUnwrapper",
+    # Flag classifiers
+    "classify_by_flags",
+    "FlagClassifierResult",
+    # Composition rules
+    "check_composition",
+    "build_composition_stages",
+    "CompositionResult",
+    "CompositionStage",
+    "CompositionDecision",
+    "StageType",
+    # Network hosts
+    "classify_host",
+    "extract_url_from_tokens",
+    "HostClassification",
+]

package/dist/gaia-security/hooks/modules/security/approval_cleanup.py ADDED Viewed

@@ -0,0 +1,87 @@
+"""
+Approval file cleanup for the subagent stop hook.
+Cleans up pending approval files after an agent completes, using the current
+per-nonce file layout under .claude/cache/approvals/pending-{nonce}.json.
+Provides:
+    - cleanup(): Delete pending approval files that match agent session
+    - consume_approval_file(): Backward-compatible alias for cleanup()
+"""
+import json
+import logging
+from pathlib import Path
+from typing import Optional
+from ..core.paths import find_claude_dir
+from ..core.state import get_session_id
+logger = logging.getLogger(__name__)
+def _get_approvals_dir() -> Path:
+    """Return the approvals cache directory."""
+    return find_claude_dir() / "cache" / "approvals"
+def cleanup(agent_type: str, session_id: Optional[str] = None) -> bool:
+    """
+    Delete pending-{nonce}.json files for the current session after agent completion.
+    Scans .claude/cache/approvals/ for pending files scoped to the current
+    session and removes them, preventing stale pending approvals from
+    accumulating after the agent run finishes.
+    Args:
+        agent_type: The agent type that just completed (for logging).
+        session_id: Session ID to scope cleanup (defaults to CLAUDE_SESSION_ID).
+    Returns:
+        True if any pending approval files were consumed, False otherwise.
+    """
+    if session_id is None:
+        session_id = get_session_id()
+    approvals_dir = _get_approvals_dir()
+    if not approvals_dir.exists():
+        return False
+    consumed = False
+    try:
+        for pending_file in approvals_dir.glob("pending-*.json"):
+            # Skip the per-session index files
+            if pending_file.name.startswith("pending-index-"):
+                continue
+            try:
+                data = json.loads(pending_file.read_text())
+                if data.get("session_id") != session_id:
+                    continue
+                pending_file.unlink(missing_ok=True)
+                logger.info(
+                    "Consumed pending approval for agent '%s' "
+                    "(nonce: %s, command: %s)",
+                    agent_type,
+                    data.get("nonce", "unknown"),
+                    data.get("command", "unknown"),
+                )
+                consumed = True
+            except (json.JSONDecodeError, TypeError):
+                # Corrupt file -- remove it
+                pending_file.unlink(missing_ok=True)
+                consumed = True
+            except Exception as e:
+                logger.debug(
+                    "Failed to process pending file %s (non-fatal): %s",
+                    pending_file.name, e,
+                )
+    except Exception as e:
+        logger.debug("Failed to scan approvals dir (non-fatal): %s", e)
+    return consumed
+# Backward-compatible alias
+consume_approval_file = cleanup

package/dist/gaia-security/hooks/modules/security/approval_constants.py ADDED Viewed

@@ -0,0 +1,23 @@
+"""Approval token patterns and deprecated approval phrases for T3 operation resumes.
+The APPROVE: prefix is a legacy path (SendMessage-based nonce relay). The primary
+approval flow now uses ElicitationResult (AskUserQuestion -> user clicks Approve).
+"""
+import re
+NONCE_APPROVAL_PREFIX = "APPROVE:"
+NONCE_APPROVAL_PATTERN = re.compile(r"\bAPPROVE:([a-f0-9]{32})\b")
+# Deprecated approval phrases that agents should not use.
+# Moved here from pre_tool_use.py so all approval-related constants live together.
+DEPRECATED_APPROVAL_PHRASES = (
+    "user approved:",
+    "user approval received",
+    "approved by user",
+    "approval confirmed",
+    "approved. execute",
+    "approved, execute",
+    "proceed with execution",
+    "confirmed. proceed",
+)