@kontourai/flow-agents 0.1.1

package/docs/_layouts/default.html

@@ -0,0 +1,87 @@
+<!doctype html>
+<html lang="en">
+  <head>
+    <meta charset="utf-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1, viewport-fit=cover">
+    <meta name="color-scheme" content="light dark">
+    <meta name="theme-color" content="#0a0e13" media="(prefers-color-scheme: dark)">
+    <meta name="theme-color" content="#f5f4ef" media="(prefers-color-scheme: light)">
+    <meta name="description" content="{{ page.description | default: site.description }}">
+    <meta property="og:type" content="website">
+    <meta property="og:site_name" content="Kontour Flow Agents">
+    <meta property="og:title" content="{{ page.title | default: site.title }}">
+    <meta property="og:description" content="{{ page.description | default: site.description }}">
+    <meta property="og:image" content="https://kontourai.github.io/flow-agents/assets/og-image.png">
+    <meta name="twitter:card" content="summary_large_image">
+    <meta name="twitter:title" content="{{ page.title | default: site.title }}">
+    <meta name="twitter:image" content="https://kontourai.github.io/flow-agents/assets/og-image.png">
+    <title>{{ page.title | default: site.title }}</title>
+    <link rel="preconnect" href="https://fonts.googleapis.com">
+    <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
+    <link href="https://fonts.googleapis.com/css2?family=Fraunces:opsz,wght@9..144,500;9..144,600&family=Hanken+Grotesk:wght@400;500;600;700&family=IBM+Plex+Mono:wght@400;500;600&display=swap" rel="stylesheet">
+    <link rel="stylesheet" href="{{ '/assets/site.css' | relative_url }}">
+    <link rel="icon" href="{{ '/assets/favicon.svg' | relative_url }}" type="image/svg+xml">
+  </head>
+  <body>
+    <script>
+      (function () {
+        var stored = localStorage.getItem("flow-agents-docs-theme");
+        var preferred = window.matchMedia("(prefers-color-scheme: dark)").matches ? "dark" : "light";
+        document.documentElement.dataset.theme = stored || preferred;
+      })();
+    </script>
+    <div class="site-shell">
+      <aside class="site-rail" id="site-rail" aria-label="Documentation">
+        <a class="brand" href="{{ '/' | relative_url }}">
+          <span class="brand-mark" aria-hidden="true"></span>
+          <span>
+            <span class="brand-name">Kontour <strong>Flow Agents</strong></span>
+            <span class="brand-kicker">agent workflows · v0.1.0</span>
+          </span>
+        </a>
+        <nav class="doc-nav">
+          <a href="{{ '/' | relative_url }}">Overview</a>
+          <a href="{{ '/workflow-usage-guide.html' | relative_url }}">Workflow Guide</a>
+          <a href="{{ '/agent-system-guidebook.html' | relative_url }}">System Guidebook</a>
+          <a href="{{ '/skills-map.html' | relative_url }}">Workflow Map</a>
+          <a href="{{ '/north-star.html' | relative_url }}">North Star</a>
+          <a href="{{ '/sandbox-policy.html' | relative_url }}">Execution Safety</a>
+          <a href="{{ '/veritas-integration.html' | relative_url }}">Governance Evidence</a>
+          <a href="{{ '/workflow-eval-strategy.html' | relative_url }}">Eval Strategy</a>
+          <a href="{{ '/context-map.html' | relative_url }}">Developer Reference</a>
+          <a class="doc-nav-external" href="https://kontourai.github.io/flow/" rel="noopener">Kontour Flow ↗</a>
+          <a class="doc-nav-external" href="https://github.com/kontourai/flow-agents" rel="noopener">GitHub ↗</a>
+        </nav>
+        <button class="theme-toggle" type="button" data-theme-toggle aria-label="Toggle color theme">
+          <span class="theme-toggle__track" aria-hidden="true">
+            <span class="theme-toggle__thumb"></span>
+          </span>
+          <span data-theme-label>Theme</span>
+        </button>
+      </aside>
+      <div class="nav-backdrop" data-nav-backdrop hidden></div>
+      <main class="doc-main">
+        <div class="doc-topbar">
+          <button class="nav-toggle" type="button" data-nav-toggle aria-expanded="false" aria-controls="site-rail" aria-label="Toggle navigation">
+            <span></span><span></span><span></span>
+          </button>
+          <a class="mobile-brand" href="{{ '/' | relative_url }}">Kontour <strong>Flow Agents</strong></a>
+          <button class="theme-toggle theme-toggle--compact" type="button" data-theme-toggle aria-label="Toggle color theme">
+            <span class="theme-toggle__track" aria-hidden="true">
+              <span class="theme-toggle__thumb"></span>
+            </span>
+            <span data-theme-label>Theme</span>
+          </button>
+        </div>
+        <article class="doc-content">
+          {{ content }}
+        </article>
+        <footer class="site-footer">
+          <p><strong>Kontour AI</strong> shows the work behind AI. Flow Agents is the agent-facing layer, built on <a href="https://kontourai.github.io/flow/">Kontour Flow</a>.</p>
+        </footer>
+      </main>
+    </div>
+    <script src="https://cdn.jsdelivr.net/npm/mermaid@11/dist/mermaid.min.js"></script>
+    <script src="{{ '/assets/site.js' | relative_url }}" defer></script>
+  </body>
+</html>

package/docs/adr/0001-flow-agents-consumes-flow.md

@@ -0,0 +1,77 @@
+---
+title: ADR 0001: Flow Agents Consumes Flow For Workflow Enforcement
+---
+
+# ADR 0001: Flow Agents Consumes Flow For Workflow Enforcement
+
+Date: 2026-05-24
+
+## Status
+
+Accepted
+
+## Context
+
+Flow Agents has been accumulating workflow sidecars, hooks, gate checks, evidence records, runtime exports, skills, provider settings, and Console ideas. That made the product useful, but it also blurred product boundaries with Kontour Surface and Kontour Veritas.
+
+Surface already owns portable product transparency: claims, evidence, policies, freshness, gaps, and trust snapshots. Veritas already owns repo and AI-agent governance: repo standards, requirements, evidence checks, change guidance, and merge readiness.
+
+Generic workflow enforcement is broader than Flow Agents and narrower than Veritas. It needs a focused owner.
+
+## Decision
+
+Flow Agents will consume Kontour Flow for generic workflow enforcement instead of owning the generic enforcement kernel.
+
+Flow owns:
+
+- Flow Definitions
+- Flow Runs
+- steps
+- gates
+- transitions
+- gate evidence
+- exceptions
+- continuation
+- Flow Reports
+
+Flow Agents owns:
+
+- work modes
+- skills
+- provider settings
+- runtime adapters
+- native harness hooks
+- useful Flow-backed workflow packs
+- Console views for agent users
+- local-first setup and runtime exports
+
+Veritas remains an optional development governance evidence provider for Flow-backed Build workflows.
+
+## Consequences
+
+Positive:
+
+- Flow Agents stays focused on agent-facing interoperability and seamless workflow enforcement.
+- Flow can serve non-agent or future agent consumers without inheriting Flow Agents-specific runtime concerns.
+- Veritas stays focused on repo/change governance rather than generic process state.
+- Surface remains the shared transparency foundation underneath both Flow and Veritas.
+
+Trade-offs:
+
+- Flow Agents has to map existing sidecars into Flow concepts over time.
+- There is one more Kontour product boundary to explain.
+- Until Flow has a package, Flow Agents keeps its existing sidecar writer and hooks as the local implementation surface.
+
+## Alternatives Considered
+
+### Keep Workflow Enforcement In Flow Agents
+
+Rejected because it would make Flow Agents responsible for both the agent-facing distribution and the generic process enforcement kernel.
+
+### Put Workflow Enforcement In Veritas
+
+Rejected because Veritas should remain centered on repo standards and merge readiness.
+
+### Use Surface Directly
+
+Rejected because Surface represents trust state but does not define process steps, gates, transitions, or continuation semantics.

package/docs/adr/0002-flow-kits-as-extension-unit.md

@@ -0,0 +1,13 @@
+---
+title: ADR 0002: Flow Kits As The Extension Unit
+---
+
+# ADR 0002: Flow Kits As The Extension Unit
+
+Flow Agents will use **Flow Kit** as the product and implementation term for installable workflow bundles, replacing the older "pack" vocabulary. A Flow Kit may contain Flow Definitions, skills, adapters, provider contracts, docs, and evals; the Kit Catalog lists available kits and installable assets, but the workflow semantics live in kit-owned Flow Definition files. This avoids overloading packaging metadata with process semantics and gives custom workflow authoring a clearer product language.
+
+**Status**: Accepted
+
+**Considered Options**: Keeping "pack" was familiar from the current `packaging/packs.json`, but it was too generic and carried plugin-marketplace baggage. Keeping "pack" internally while using "kit" publicly was rejected because the repository is unpublished and a split vocabulary would make the migration harder to understand.
+
+**Consequences**: Flow Agents will use `kits/catalog.json` as the Kit Catalog. The first real kit will live under `kits/builder/` with its own `kit.json` and Flow Definitions under `kits/builder/flows/`. The Builder Kit must be installable through the same compliance path as future external Flow Kit repositories.

package/docs/adr/0003-flow-agents-coordinates-kits-and-adapters.md

@@ -0,0 +1,13 @@
+---
+title: ADR 0003: Flow Agents Coordinates Kits And Adapters
+---
+
+# ADR 0003: Flow Agents Coordinates Kits And Adapters
+
+Flow Agents will not own the builder, or knowledge workflows as core behavior. Those out-of-the-box behaviors will be extracted into normal Flow Kits that use the same manifest, Flow Definition, skill, doc, provider, and eval contracts as third-party kits. Flow Agents owns kit validation, installation, runtime adapter selection, provider wiring, status/control commands, and runtime-specific export; Runtime Adapters own target-specific integration for local agent runtimes and API/framework agents.
+
+**Status**: Accepted
+
+**Considered Options**: Keeping built-in workflows inside Flow Agents core would make the kit model less real and force custom users into a second-class extension path. Treating every adapter as built into Flow Agents would make local agent runtimes, LangGraph, Strands, CrewAI, VoltAgent, and future API frameworks all pay for each other's dependencies and release cadence. Separate adapter packages can come after the internal interface is proven, but the architecture should assume adapters are independently selectable.
+
+**Consequences**: The Builder Kit is the first proof point and should be self-validated before Knowledge receives the same depth. Knowledge can remain a future kit target until the builder workflow proves the kit, adapter, and install contracts.

package/docs/adr/0004-gates-expect-surface-claims.md

@@ -0,0 +1,15 @@
+---
+title: ADR 0004: Gates Expect Surface Claims
+---
+
+# ADR 0004: Gates Expect Surface Claims
+
+Flow-backed kits will model rich gate evidence as claim expectations rather than provider-specific requirements. A gate expectation can require `kind: "surface.claim"`, a Surface claim type such as `repo.policy_compliance`, accepted trust statuses such as `verified`, and whether the expectation blocks the transition; project or runtime config maps claim types to trusted Surface producers and authority traces. This lets the Builder Kit use repo governance, command checks, CI, human decisions, or future producers without naming a specific provider in the Flow Definition.
+
+**Status**: Accepted
+
+**Considered Options**: Provider-aware gate rules were rejected because they would make Flow Definitions know too much about individual tools. Plain evidence strings such as `tests` or `veritas` were rejected because they cannot represent claim type, accepted status, producer authority, transparency gaps, or project-level enforcement overrides cleanly.
+
+**Consequences**: Trusted producer mappings belong upstream in Flow project configuration, not Flow Agents runtime configuration. Flow Agents can help author, install, and adapt that configuration for agent runtimes, but CI, framework agents, local CLIs, and humans should all evaluate gates against the same Flow-owned authority model.
+
+**Initial Shape**: Gate expectations should use `expects` entries with `id`, `kind: "surface.claim"`, `required`, `claim.type`, optional `claim.subject`, `claim.accepted_statuses`, `description`, and optional `explore_hint`. The Builder Kit should use intuitive subject strings such as `flow-run`, `flow-step`, `work-item`, `change`, `pull-request`, `release`, `decision`, and `artifact`, while the schema remains open to other subject values.

package/docs/adr/0005-kubernetes-inspired-resource-contracts.md

@@ -0,0 +1,48 @@
+---
+title: ADR 0005: Kubernetes-Inspired Kontour Resource Contracts
+---
+
+# ADR 0005: Kubernetes-Inspired Kontour Resource Contracts
+
+Date: 2026-05-27
+
+## Status
+
+Accepted
+
+## Context
+
+Kontour products need durable records that humans, agents, runtime adapters, provider integrations, CLI tools, CI systems, evals, and future control planes can all inspect without relying on hidden chat context. Kubernetes, Tekton, and Argo have converged on versioned resource shapes with metadata, desired state, observed status, and status conditions; that shape is familiar, toolable, and a good fit for workflow state. OpenTelemetry GenAI conventions are also emerging for agent observability, so Kontour products should not invent isolated telemetry concepts where compatible conventions already exist.
+
+## Decision
+
+New durable, agent-facing, provider-facing, CLI-facing, cross-product, or user-authored Kontour contracts will use a Kubernetes-inspired Kontour Resource Contract shape by default: versioned resource identity, metadata, desired intent, observed status, and condition-style status summaries. Flow Agents is the first adopter, and current pre-public contracts in Flow, Surface, and Veritas should be audited for migration rather than grandfathered automatically.
+
+Kontour Resource Contracts do not create a Kubernetes dependency; local files and provider-backed records remain first-class, and a Kubernetes operator is only a possible future adapter over the same contracts. Product namespaces should distinguish owners, such as `flow.kontourai.io/v1alpha1`, `flowagents.kontourai.io/v1alpha1`, `builder.flowagents.kontourai.io/v1alpha1`, `surface.kontourai.io/v1alpha1`, and `veritas.kontourai.io/v1alpha1`.
+
+Products may keep product-native internal types when they are materially clearer, but exported durable artifacts should converge on Kontour Resource Contracts or document an explicit mapping and exception.
+
+## Consequences
+
+Positive:
+
+- Agents can reason about durable product state without bespoke parsing for every artifact.
+- Runtime adapters, provider adapters, CLI tools, CI systems, evals, and the future Console can share one contract style.
+- Active Workflow Runs can publish Selected Scope metadata for future overlap checks.
+- Future Kubernetes operator support remains possible without making Kubernetes the default runtime.
+
+Trade-offs:
+
+- Kontour products must avoid turning every concept into a resource.
+- Status must stay disciplined: intent belongs in the desired-state portion of a contract, observed facts belong in status, and evidence records remain separately inspectable.
+- Existing pre-public sidecars and exported artifacts need migration plans or documented exceptions instead of accidental grandfathering.
+
+## Alternatives Considered
+
+### Ad Hoc JSON Sidecars
+
+Rejected as the long-term direction because ad hoc sidecars are easy to create but hard for adapters, evals, providers, and users to understand consistently.
+
+### Depend Directly On Kubernetes CRDs
+
+Rejected because Flow Agents must remain local-first and runtime-neutral. Kubernetes may become an adapter target, not the substrate required to use Flow Agents.

package/docs/adr/0006-typescript-first-source-policy.md

@@ -0,0 +1,98 @@
+---
+title: ADR 0006: TypeScript-First Source Policy
+---
+
+# ADR 0006: TypeScript-First Source Policy
+
+Date: 2026-05-31
+
+## Status
+
+Accepted
+
+## Context
+
+Kontour repositories increasingly share source, contracts, adapters, workflow tooling, and evidence paths. Flow Agents currently includes JavaScript hook/runtime helpers and Python tooling; Flow and Veritas have JavaScript or MJS runtime surfaces; Surface is already TypeScript-first; and `kontourai.io` is an Astro site with TypeScript-enabled tooling plus JavaScript and MJS site/config files.
+
+Without a cross-repo policy, new work can accidentally deepen language fragmentation or turn every existing JavaScript, MJS, or Python file into an implicit permanent exception. The policy needs to set direction without bundling source migration, CI rewrites, or sibling repository edits into this ADR.
+
+The refreshed local inventory below was collected on 2026-05-31 from sibling checkouts under `~/code/kontourai/`. It is a branch-local snapshot, not a claim about all remote branches.
+
+Inventory command:
+
+```bash
+rg --files -g '!node_modules' -g '!dist' -g '!_site' -g '!coverage' -g '!evals/results' |
+  rg '\.(ts|tsx|js|jsx|mjs|cjs|py|d\.ts)$'
+```
+
+| Repo | Local branch/status caveat | Snapshot summary | Validation/typecheck surface observed | Follow-up |
+| --- | --- | --- | --- | --- |
+| `flow` | `flow-definition-transition-guard-impl...origin/flow-definition-transition-guard-impl`; untracked local runtime artifacts | 0 TS/TSX, 2 JS, 1 MJS, 0 Python. Small JS/MJS runtime and schema-check surface. | `check:schemas` and `test`; no TypeScript typecheck yet. | Track migration in [Flow #20](https://github.com/kontourai/flow/issues/20). |
+| `flow-agents` | `main...origin/main` | 0 TS/TSX, 34 JS, 34 Python. Mixed hooks, eval helpers, runtime scripts, docs asset JS, and Python tooling. | Static/eval scripts exist outside `package.json`; no TypeScript typecheck yet. | Track TypeScript migration planning in [Flow Agents #65](https://github.com/kontourai/flow-agents/issues/65) and Python removal policy/migration in [Flow Agents #67](https://github.com/kontourai/flow-agents/issues/67). |
+| `surface` | `main...origin/main` | 52 TS files, 0 JS, 2 MJS, 0 Python. Product and test source are TypeScript-first; MJS is limited to build/bin scripts. | `typecheck`, `build`, `test`, and `verify` scripts are present. | No new migration issue needed; refreshed inventory supports Surface as already TypeScript-first. |
+| `veritas` | `main...origin/main [ahead 4, behind 4]` | 0 TS/TSX, 1 `.d.ts`, 80 MJS, 0 Python. MJS product/runtime surface with a typed plugin interface declaration. | `verify`, `test`, coverage, vocabulary, redaction, and Veritas readiness scripts; no TypeScript typecheck yet. | Track staged migration in [Veritas #21](https://github.com/kontourai/veritas/issues/21). |
+| `kontourai.io` | `codex/survey-extraction-readiness-audit...origin/codex/survey-extraction-readiness-audit`; untracked local runtime artifacts | 0 TS/TSX, 1 `.d.ts`, 1 JS, 4 MJS, 0 Python. Astro/TypeScript-enabled site with environment typing, JS worker asset, MJS config/scripts/tests. | `build`, `validate`, and rendered-site test scripts are present; Astro build provides the TypeScript-enabled site validation path. | No new issue currently needed; remaining JS/MJS files fit accepted site/config/test/asset exceptions unless future product source expands in JS. |
+
+The existing follow-up issues were checked with GitHub CLI on 2026-05-31 and were open:
+
+- [Flow #20: Migrate Flow source toward TypeScript](https://github.com/kontourai/flow/issues/20)
+- [Flow Agents #65: Plan Flow Agents TypeScript migration for runtime and hook code](https://github.com/kontourai/flow-agents/issues/65)
+- [Flow Agents #67: Remove Python from Flow Agents source, tooling, and docs](https://github.com/kontourai/flow-agents/issues/67)
+- [Veritas #21: Plan staged TypeScript migration for Veritas source](https://github.com/kontourai/veritas/issues/21)
+
+## Decision
+
+Kontour product and runtime source should be TypeScript-first across Flow, Flow Agents, Surface, Veritas, and `kontourai.io`.
+
+New durable product code, runtime adapters, package APIs, CLI behavior, workflow orchestration, hooks, provider bridges, and shared contracts should be authored in TypeScript by default when they live in repositories that are TypeScript-enabled or are being migrated toward TypeScript. Existing JavaScript, MJS, and Python source is not grandfathered as permanent direction; repositories with nontrivial runtime source outside TypeScript should track staged migration through repo-specific issues.
+
+This ADR does not require immediate source migration, package manifest changes, `tsconfig` changes, build script changes, or CI workflow edits. It defines the policy direction and the boundary for accepted exceptions.
+
+### CI And Validation Expectations
+
+TypeScript-enabled repositories should expose a typecheck or build validation that proves the authored TypeScript surface compiles. CI should run that validation before code is treated as releasable.
+
+Repositories that are not yet TypeScript-enabled should first link a migration plan or issue before requiring a TypeScript typecheck in CI. During migration, existing test, schema, static, or verify commands remain valid evidence, but new TypeScript source should include an appropriate typecheck/build path before it becomes the normal implementation surface.
+
+For `kontourai.io`, Astro build and site validation are the current TypeScript-enabled validation path. A separate migration issue is not needed for the current snapshot because the remaining JS/MJS files are config, script, test, or generated/site asset surfaces rather than a broad non-TypeScript product source layer.
+
+### Allowed JavaScript And MJS Exceptions
+
+JavaScript, MJS, CJS, or plain JS assets are acceptable when they are deliberately limited to one of these categories:
+
+- package and tool configuration where the tool expects JavaScript or MJS, such as Astro, Playwright, build-page scripts, or package bin launchers
+- generated docs or site assets, including browser-delivered files where TypeScript compilation would add no useful ownership boundary
+- shell-adjacent launchers or thin entrypoints where portability, startup behavior, shebang support, or package-manager conventions materially matter
+- fixtures, examples, and tests where local repository convention already uses JS/MJS and the files are not the primary product implementation surface
+- historical archived, vendored, or generated artifacts that are not edited as active source
+
+Exceptions should stay narrow. A file matching an exception category can remain JS/MJS, but expanding product/runtime behavior in JS/MJS should be treated as a deliberate exception or routed into the repository's TypeScript migration plan.
+
+## Consequences
+
+Positive:
+
+- New cross-repo implementation work has a clear default language.
+- Surface remains the reference TypeScript-first repository instead of being blocked by other repositories' migrations.
+- Flow, Flow Agents, and Veritas can migrate deliberately through linked issues rather than ad hoc rewrites.
+- CI expectations are explicit without forcing build-system changes into this policy slice.
+
+Trade-offs:
+
+- The policy depends on branch-local inventory snapshots and must be refreshed when migration work materially changes a repository.
+- Existing JavaScript, MJS, and Python files still require staged migration decisions; this ADR does not remove them.
+- Exception categories need discipline so config/tooling allowances do not become a broad runtime-source escape hatch.
+
+## Alternatives Considered
+
+### Allow Each Repository To Choose Independently
+
+Rejected because shared contracts, adapters, and workflow tooling already cross repository boundaries. Independent language policy would preserve avoidable friction for maintainers and agents.
+
+### Require Immediate TypeScript Migration Everywhere
+
+Rejected because Flow, Flow Agents, and Veritas need staged migration plans, validation paths, and reviewable changes. This ADR sets direction and links follow-up issues without bundling broad source rewrites into a docs policy change.
+
+### Ban All JavaScript And MJS
+
+Rejected because package configuration, tool scripts, site assets, thin launchers, fixtures, and generated or historical artifacts often have practical reasons to remain JS/MJS. The policy narrows those exceptions instead of pretending they do not exist.