@kontourai/flow-agents 1.3.0 → 2.0.0

package/src/tools/validate-source-tree.ts

@@ -2,7 +2,7 @@
 import fs from "node:fs";
 import { fileURLToPath } from "node:url";
 import path from "node:path";
-import { spawnSync } from "node:child_process";
+import { validateKitRepository as validateFlowKitRepository } from "../flow-kit/validate.js";
 import { loadJson, readText, rel, root, walkFiles } from "./common.js";
 
 class Reporter {
@@ -11,14 +11,10 @@ class Reporter {
   check(condition: boolean, message: string): void { if (!condition) this.fail(message); }
 }
 const manifestPath = path.join(root, "packaging/manifest.json");
-const packsPath = path.join(root, "packaging/packs.json");
 const kitsCatalogPath = path.join(root, "kits/catalog.json");
 const flowRoot = process.env.FLOW_CLI_ROOT ? path.resolve(process.env.FLOW_CLI_ROOT) : "";
 const flowSchemaPath = flowRoot ? path.join(flowRoot, "schemas", "flow-definition.schema.json") : "";
 const flowCliPath = flowRoot ? ["dist/cli.js", "src/cli.js"].map((candidate) => path.join(flowRoot, candidate)).find((candidate) => fs.existsSync(candidate)) ?? path.join(flowRoot, "dist/cli.js") : "";
-const kitIdRe = /^[a-z][a-z0-9-]*(?:\.[a-z][a-z0-9-]*)*$/;
-const kitAssetSections = new Set(["skills", "docs", "adapters", "evals", "assets"]);
-const kitTopLevelKeys = new Set(["schema_version", "id", "name", "product_name", "description", "flows", ...kitAssetSections]);
 const textRefExtensions = new Set([".md", ".yaml", ".yml", ".json", ".sh", ".js", ".toml"]);
 const ignoredRefDirs = new Set(["node_modules", "__pycache__", ".pytest_cache", ".cache"]);
 const legacyRefRe = /(?<![A-Za-z0-9_.-])(?:agents|agent-cards|context|evals|lib|powers|prompts|scripts|skills)\/[A-Za-z0-9_./@:+-]+/g;
@@ -32,10 +28,8 @@ const mirroredFiles = new Map<string, { mirror: string; allowedDifferences: Arra
 ]);
 const publicScriptWrappers = new Map<string, { target: string; significantLines: string[] }>([
   ["scripts/build-universal-bundles.js", { target: "../build/src/tools/build-universal-bundles.js", significantLines: [
-    "// Supports FLOW_AGENTS_PACKS through the TypeScript bundle builder.",
     'import("../build/src/tools/build-universal-bundles.js").then(({ main }) => process.exit(main()));',
   ] }],
-  ["scripts/filter-installed-packs.js", { target: "../build/src/tools/filter-installed-packs.js", significantLines: ['import("../build/src/tools/filter-installed-packs.js").then(({ main }) => process.exit(main(process.argv.slice(2))));'] }],
   ["scripts/generate-context-map.js", { target: "../build/src/tools/generate-context-map.js", significantLines: ['import("../build/src/tools/generate-context-map.js").then(({ main }) => process.exit(main(process.argv.slice(2))));'] }],
   ["scripts/kit.js", { target: "../build/src/cli/kit.js", significantLines: ['import("../build/src/cli/kit.js").then(({ main }) => main().then((code) => process.exit(code)));'] }],
   ["scripts/pull-work-provider.js", { target: "../build/src/cli/pull-work-provider.js", significantLines: ['import("../build/src/cli/pull-work-provider.js").then(({ main }) => process.exit(main()));'] }],
@@ -62,6 +56,7 @@ const hookFilePolicies = new Map<string, { category: string; requiredNeedles: st
   ["scripts/hooks/codex-telemetry-hook.js", { category: "telemetry shim", requiredNeedles: ["codex", "telemetry"] }],
   ["scripts/hooks/run-hook.js", { category: "hook runner", requiredNeedles: ["isHookEnabled", "Path traversal rejected"] }],
   ["scripts/hooks/config-protection.js", { category: "policy hook", requiredNeedles: ["Config Protection Hook"] }],
+  ["scripts/hooks/evidence-capture.js", { category: "policy hook", requiredNeedles: ["Evidence Capture Hook"] }],
   ["scripts/hooks/governance-audit.sh", { category: "policy hook", requiredNeedles: ["governance-audit.sh", "audit_emit"] }],
   ["scripts/hooks/opencode-hook-adapter.js", { category: "runtime adapter", requiredNeedles: ["opencode", "run-hook.js"] }],
   ["scripts/hooks/opencode-telemetry-hook.js", { category: "telemetry shim", requiredNeedles: ["opencode", "telemetry"] }],
@@ -78,6 +73,7 @@ const hookFilePolicies = new Map<string, { category: string; requiredNeedles: st
   ["scripts/hooks/desktop-notify.sh", { category: "local notification helper", requiredNeedles: ["desktop-notify.sh", "osascript"] }],
   ["scripts/hooks/lib/audit-transport.sh", { category: "shared hook library", requiredNeedles: ["audit_emit"] }],
   ["scripts/hooks/lib/hook-flags.js", { category: "shared hook library", requiredNeedles: ["isHookEnabled"] }],
+  ["scripts/hooks/lib/liveness-read.js", { category: "shared hook library", requiredNeedles: ["freshHolders", "readLivenessEvents"] }],
   ["scripts/hooks/lib/patterns.sh", { category: "shared hook library", requiredNeedles: ["_detect_secrets"] }],
   ["scripts/hooks/lib/resolve-formatter.js", { category: "shared hook library", requiredNeedles: ["resolveFormatter"] }],
 ]);
@@ -176,99 +172,14 @@ function validateManifest(reporter: Reporter, manifest: any, agentNames: Set<str
   for (const dir of manifest.optional_copy_dirs ?? []) if (!fs.existsSync(path.join(root, dir))) console.log(`warning: ${rel(manifestPath)} optional_copy_dirs entry absent: ${dir}`);
   for (const agent of manifest.codex?.excluded_agents ?? []) reporter.check(agentNames.has(agent), `${rel(manifestPath)}: codex excluded agent '${agent}' does not exist`);
 }
-function validatePacksManifest(reporter: Reporter, agentNames: Set<string>): void {
-  const data = tryLoadJson(packsPath, reporter);
-  if (!data || typeof data !== "object") return;
-  reporter.check(data.schema_version === "1.0", `${rel(packsPath)}: schema_version must be 1.0`);
-  reporter.check(Array.isArray(data.packs) && data.packs.length > 0, `${rel(packsPath)}: packs must be a non-empty list`);
-  const skillNames = new Set(fs.readdirSync(path.join(root, "skills")).filter((name) => fs.existsSync(path.join(root, "skills", name, "SKILL.md"))));
-  const powerNames = new Set(fs.readdirSync(path.join(root, "powers")).filter((name) => fs.existsSync(path.join(root, "powers", name, "POWER.md"))));
-  const names = new Set<string>(); const defaults = new Set<string>(); const assigned = { skills: new Set<string>(), agents: new Set<string>(), powers: new Set<string>() };
-  (Array.isArray(data.packs) ? data.packs : []).forEach((pack: any, index: number) => {
-    const name = pack?.name;
-    if (typeof name !== "string" || !/^[a-z][a-z0-9-]*$/.test(name)) { reporter.fail(`${rel(packsPath)}: packs[${index}].name must be a kebab-case string`); return; }
-    if (names.has(name)) reporter.fail(`${rel(packsPath)}: duplicate pack name '${name}'`);
-    names.add(name); if (pack.default === true) defaults.add(name);
-    reporter.check(typeof pack.description === "string" && !!pack.description, `${rel(packsPath)}: pack '${name}' missing description`);
-    for (const [field, available] of [["skills", skillNames], ["agents", agentNames], ["powers", powerNames]] as const) {
-      const values = pack[field] ?? [];
-      reporter.check(Array.isArray(values), `${rel(packsPath)}: pack '${name}' .${field} must be a list`);
-      const seen = new Set<string>();
-      for (const value of Array.isArray(values) ? values : []) {
-        if (typeof value !== "string") { reporter.fail(`${rel(packsPath)}: pack '${name}' .${field} entry is not a string`); continue; }
-        if (seen.has(value)) reporter.fail(`${rel(packsPath)}: pack '${name}' has duplicate ${field} entry '${value}'`);
-        seen.add(value); assigned[field].add(value);
-        reporter.check(available.has(value), `${rel(packsPath)}: pack '${name}' references missing ${field.slice(0, -1)} '${value}'`);
-      }
-    }
-  });
-  reporter.check(defaults.has("core"), `${rel(packsPath)}: core pack must be default`);
-  const missingSkills = [...skillNames].filter((name) => !assigned.skills.has(name)).sort();
-  reporter.check(missingSkills.length === 0, `${rel(packsPath)}: skills missing from all packs: ${missingSkills.join(", ")}`);
-}
-function safeLocalPath(baseDir: string, pathText: unknown, label: string, reporter: Reporter): string | undefined {
-  if (typeof pathText !== "string" || !pathText) { reporter.fail(`${label} must be a non-empty relative path`); return undefined; }
-  if (path.isAbsolute(pathText)) { reporter.fail(`${label} must be relative; absolute paths are not allowed`); return undefined; }
-  if (pathText.split(/[\\/]/).includes("..")) { reporter.fail(`${label} must stay inside the kit directory; '..' path traversal is not allowed`); return undefined; }
-  return path.join(baseDir, pathText);
-}
-function validateFlowDefinitionShape(file: string, data: any, reporter: Reporter): void {
-  const localCli = flowCliPath;
-  if (fs.existsSync(localCli)) {
-    const result = spawnSync("node", [localCli, "validate-definition", file, "--json"], { encoding: "utf8" });
-    if (result.status !== 0) reporter.fail(`${rel(file)}: Flow validation failed: ${(result.stderr || result.stdout).trim()}`);
-    return;
-  }
-  if (!data || typeof data !== "object") { reporter.fail(`${rel(file)}: Flow Definition must be an object`); return; }
-  for (const key of ["id", "version", "steps", "gates"]) reporter.check(key in data, `${rel(file)}: missing .${key}`);
-}
-function validateKitRepository(kitDir: string, reporter: Reporter): void {
+async function validateKitRepository(kitDir: string, reporter: Reporter): Promise<void> {
   if (!fs.existsSync(kitDir) || !fs.statSync(kitDir).isDirectory()) { reporter.fail(`${rel(kitDir)}: kit directory does not exist`); return; }
   const kitJson = path.join(kitDir, "kit.json");
   reporter.check(fs.existsSync(kitJson), `${rel(kitDir)}: missing kit.json at repository root`);
   if (!fs.existsSync(kitJson)) return;
-  const data = tryLoadJson(kitJson, reporter);
-  if (!data || typeof data !== "object") return;
-  const unknownKeys = Object.keys(data).filter((key) => !kitTopLevelKeys.has(key)).sort();
-  if (unknownKeys.length) reporter.fail(`${rel(kitJson)}: unsupported fields ${unknownKeys.join(", ")}; remove them or add them to the Flow Kit Repository contract`);
-  reporter.check(data.schema_version === "1.0", `${rel(kitJson)}: .schema_version must be "1.0"`);
-  reporter.check(typeof data.id === "string" && kitIdRe.test(data.id), `${rel(kitJson)}: .id must be a stable kebab-case string`);
-  reporter.check(typeof data.name === "string" && !!data.name.trim(), `${rel(kitJson)}: .name must be a non-empty string`);
-  for (const section of [...kitAssetSections].sort()) if (section in data) {
-    if (!Array.isArray(data[section])) { reporter.fail(`${rel(kitJson)}: .${section} must be a list of relative asset paths or objects with path`); continue; }
-    const seenPaths = new Set<string>(); const seenIds = new Set<string>();
-    data[section].forEach((entry: any, index: number) => {
-      const pathValue = typeof entry === "string" ? entry : entry?.path;
-      const assetId = typeof entry === "object" ? entry.id : undefined;
-      if (typeof entry === "object") {
-        const unknown = Object.keys(entry).filter((key) => !["id", "path", "description"].includes(key)).sort();
-        if (unknown.length) reporter.fail(`${rel(kitJson)}: ${section}[${index}] has unsupported fields ${unknown.join(", ")}; use id, path, or description`);
-      }
-      if (assetId !== undefined && (typeof assetId !== "string" || !kitIdRe.test(assetId))) reporter.fail(`${rel(kitJson)}: ${section}[${index}].id must be a stable dot/kebab-case string`);
-      const assetPath = safeLocalPath(kitDir, pathValue, `${rel(kitJson)}: ${section}[${index}].path`, reporter);
-      if (!assetPath) return;
-      if (seenPaths.has(String(pathValue))) reporter.fail(`${rel(kitJson)}: ${section}[${index}].path duplicates '${pathValue}'; declare each asset once`);
-      seenPaths.add(String(pathValue));
-      if (typeof assetId === "string") { if (seenIds.has(assetId)) reporter.fail(`${rel(kitJson)}: ${section}[${index}].id duplicates '${assetId}'; use a unique asset id`); seenIds.add(assetId); }
-      reporter.check(fs.existsSync(assetPath), `${rel(kitJson)}: ${section}[${index}].path points at missing asset: ${pathValue}; add the file or remove the entry`);
-    });
-  }
-  if (!Array.isArray(data.flows) || !data.flows.length) { reporter.fail(`${rel(kitJson)}: .flows must be a non-empty list; add at least one Flow Definition entry`); return; }
-  const seenIds = new Set<string>(); const seenPaths = new Set<string>();
-  data.flows.forEach((flow: any, index: number) => {
-    if (!flow || typeof flow !== "object") { reporter.fail(`${rel(kitJson)}: flows[${index}] must be an object with id and path`); return; }
-    if (typeof flow.id !== "string" || !kitIdRe.test(flow.id)) reporter.fail(`${rel(kitJson)}: flows[${index}].id must be a stable dot/kebab-case string`);
-    else if (seenIds.has(flow.id)) reporter.fail(`${rel(kitJson)}: flows[${index}].id duplicates '${flow.id}'; use a unique Flow id`);
-    else seenIds.add(flow.id);
-    const flowPath = safeLocalPath(kitDir, flow.path, `${rel(kitJson)}: flows[${index}].path`, reporter);
-    if (!flowPath) return;
-    if (seenPaths.has(String(flow.path))) { reporter.fail(`${rel(kitJson)}: flows[${index}].path duplicates '${flow.path}'; declare each Flow Definition once`); return; }
-    seenPaths.add(String(flow.path));
-    reporter.check(fs.existsSync(flowPath), `${rel(kitJson)}: flows[${index}].path points at missing Flow Definition: ${flow.path}; add the file or fix the path`);
-    if (fs.existsSync(flowPath)) validateFlowDefinitionShape(flowPath, tryLoadJson(flowPath, reporter), reporter);
-  });
+  for (const error of await validateFlowKitRepository(kitDir)) reporter.fail(error);
 }
-function validateKits(reporter: Reporter): void {
+async function validateKits(reporter: Reporter): Promise<void> {
   reporter.check(fs.existsSync(path.join(root, "kits")), "kits directory missing");
   const catalog = tryLoadJson(kitsCatalogPath, reporter);
   const kits = catalog?.kits;
@@ -277,14 +188,14 @@ function validateKits(reporter: Reporter): void {
   const localCli = flowCliPath;
   if (flowSchemaPath && fs.existsSync(flowSchemaPath)) console.log(fs.existsSync(localCli) ? `info: validating kit Flow Definitions with Flow CLI at ${localCli}` : `warning: Flow validator unavailable; source-tree check only verifies Flow Definition top-level shape`);
   else console.log("warning: Flow schema not configured; source-tree check only verifies Flow Definition top-level shape. Set FLOW_CLI_ROOT to enable Flow CLI validation. Container validation (kit.json core fields) will delegate to 'flow validate-kit' from @kontourai/flow when FLOW_CLI_ROOT is available.");
-  kits.forEach((entry: any, index: number) => {
+  for (const [index, entry] of kits.entries()) {
     const kitText = typeof entry === "string" ? entry : ["path", "directory", "dir", "id", "name"].map((key) => entry?.[key]).find((value) => typeof value === "string" && value);
-    if (!kitText) { reporter.fail(`${rel(kitsCatalogPath)}: kits[${index}] missing path, directory, dir, id, or name`); return; }
+    if (!kitText) { reporter.fail(`${rel(kitsCatalogPath)}: kits[${index}] missing path, directory, dir, id, or name`); continue; }
     const kitRef = String(kitText).startsWith("kits/") ? path.join(root, kitText) : path.join(root, "kits", kitText);
     const kitDir = path.basename(kitRef) === "kit.json" ? path.dirname(kitRef) : kitRef;
     reporter.check(fs.existsSync(kitDir) && fs.statSync(kitDir).isDirectory(), `${rel(kitsCatalogPath)}: kits[${index}] points at missing kit folder: ${kitText}`);
-    validateKitRepository(kitDir, reporter);
-  });
+    await validateKitRepository(kitDir, reporter);
+  }
 }
 function validateAgentPaths(reporter: Reporter, manifest: any): void {
   for (const file of walkFiles(path.join(root, "agents")).filter((item) => item.endsWith(".json"))) {
@@ -372,6 +283,35 @@ function validatePublicScriptWrappers(reporter: Reporter): void {
     reporter.check(JSON.stringify(significantLines) === JSON.stringify(policy.significantLines), `${file}: public wrapper must match the exact thin launcher body for ${policy.target}`);
   }
 }
+function validateAdrNumbers(reporter: Reporter): void {
+  // Each ADR (a docs/adr file with an `# ADR NNNN:` heading) must own a unique
+  // number, and its filename prefix must match that number. Companion/index docs
+  // without an ADR heading (e.g. a numbered skill-audit tied to an ADR) are
+  // intentionally skipped. Guards against concurrent number collisions like the
+  // duplicate ADR 0014 from PRs #180/#172.
+  const adrDir = path.join(root, "docs/adr");
+  if (!fs.existsSync(adrDir)) return;
+  const byNumber = new Map<string, string[]>();
+  for (const file of walkFiles(adrDir)) {
+    if (path.extname(file) !== ".md") continue;
+    const heading = readText(file).match(/^#\s+ADR\s+(\d{4}):/m);
+    if (!heading) continue; // not an ADR decision doc
+    const num = heading[1];
+    reporter.check(
+      path.basename(file).startsWith(`${num}-`),
+      `${rel(file)}: ADR heading number ${num} does not match the filename prefix`,
+    );
+    const list = byNumber.get(num) ?? [];
+    list.push(rel(file));
+    byNumber.set(num, list);
+  }
+  for (const [num, files] of byNumber) {
+    reporter.check(
+      files.length === 1,
+      `docs/adr: duplicate ADR number ${num} — ${files.join(", ")}. ADR numbers must be unique; renumber one.`,
+    );
+  }
+}
 function validateHookInventory(reporter: Reporter): void {
   const readme = readText(path.join(root, "scripts/README.md"));
   const hookFiles = walkFiles(path.join(root, "scripts/hooks"))
@@ -483,7 +423,7 @@ function validateNoFirstPartyPythonCommands(reporter: Reporter): void {
     reporter.fail(`${relative}: direct first-party Python command reference is not allowed; use npm/flow-agents TypeScript commands`);
   }
 }
-export function main(argv = process.argv.slice(2)): number {
+export async function main(argv = process.argv.slice(2)): Promise<number> {
   const kitIndex = argv.indexOf("--kit");
   if (kitIndex >= 0) {
     const kitDir = argv[kitIndex + 1];
@@ -492,7 +432,7 @@ export function main(argv = process.argv.slice(2)): number {
     const localCli = flowCliPath;
     if (flowSchemaPath && fs.existsSync(flowSchemaPath) && fs.existsSync(localCli)) console.log(`info: validating kit Flow Definitions with Flow CLI at ${localCli}`);
     else console.log("warning: Flow validation surface unavailable; local kit check uses the minimal Flow Definition fallback");
-    validateKitRepository(path.resolve(kitDir), reporter);
+    await validateKitRepository(path.resolve(kitDir), reporter);
     if (reporter.errors.length) { console.log("Flow Kit repository validation failed:"); for (const error of reporter.errors) console.log(` - ${error}`); return 1; }
     console.log("Flow Kit repository validation passed."); return 0;
   }
@@ -502,14 +442,14 @@ export function main(argv = process.argv.slice(2)): number {
   validateAgentCards(reporter, agentNames);
   validatePowers(reporter);
   validateManifest(reporter, manifest, agentNames);
-  validatePacksManifest(reporter, agentNames);
-  validateKits(reporter);
+  await validateKits(reporter);
   validateAgentPaths(reporter, manifest);
   validateLegacyRefs(reporter);
   validateMirrors(reporter);
   validateUsageFeedbackFiles(reporter);
   validatePublicScriptWrappers(reporter);
   validateHookInventory(reporter);
+  validateAdrNumbers(reporter);
   validateFixtureOwnership(reporter);
   validatePackageCommandSurface(reporter);
   validateNoFirstPartyPythonFiles(reporter);
@@ -523,4 +463,4 @@ export function main(argv = process.argv.slice(2)): number {
 // entry-point guard fires correctly when the module is loaded directly as a script.
 const _selfRealPath = (() => { try { return fs.realpathSync(fileURLToPath(import.meta.url)); } catch { return fileURLToPath(import.meta.url); } })();
 const _argv1RealPath = (() => { try { return fs.realpathSync(process.argv[1]); } catch { return process.argv[1]; } })();
-if (_selfRealPath === _argv1RealPath) { process.exitCode = main(); }
+if (_selfRealPath === _argv1RealPath) { main().then((code) => { process.exitCode = code; }); }

package/tsconfig.json

@@ -8,6 +8,7 @@
     "types": ["node"],
     "rootDir": ".",
     "outDir": "build",
+    "declaration": true,
     "strict": true,
     "noUnusedLocals": true,
     "noUnusedParameters": true,

package/build/src/tools/filter-installed-packs.js

@@ -1,135 +0,0 @@
-#!/usr/bin/env node
-import fs from "node:fs";
-import path from "node:path";
-import { fileURLToPath } from "node:url";
-import { loadJson, writeText } from "./common.js";
-function splitPacks(value) {
-    return new Set(value.split(",").map((item) => item.trim()).filter(Boolean));
-}
-function namesFor(packs) {
-    return new Set((packs.packs ?? []).map((pack) => String(pack.name ?? "")));
-}
-function entries(pack, field) {
-    const value = pack[field];
-    return Array.isArray(value) ? value.filter((item) => typeof item === "string") : [];
-}
-function assertSafeName(name, label) {
-    if (!/^[a-z][a-z0-9-]*(?:\.[a-z][a-z0-9-]*)*$/.test(name))
-        throw new Error(`${label} contains unsafe pack member name: ${name}`);
-}
-function assertContained(rootDir, target) {
-    const rootReal = fs.realpathSync(rootDir);
-    const parentReal = fs.realpathSync(path.dirname(target));
-    const resolved = path.resolve(parentReal, path.basename(target));
-    const relative = path.relative(rootReal, resolved);
-    if (!relative || relative.startsWith("..") || path.isAbsolute(relative))
-        throw new Error(`refusing to remove path outside install root: ${target}`);
-    if (fs.existsSync(target)) {
-        const targetReal = fs.realpathSync(target);
-        const targetRelative = path.relative(rootReal, targetReal);
-        if (!targetRelative || targetRelative.startsWith("..") || path.isAbsolute(targetRelative))
-            throw new Error(`refusing to remove path outside install root: ${target}`);
-    }
-}
-function packSelection(packs, requested) {
-    const selectedNames = new Set();
-    for (const pack of packs.packs ?? [])
-        if (pack.default === true)
-            selectedNames.add(String(pack.name));
-    for (const name of requested)
-        selectedNames.add(name);
-    const unknown = [...selectedNames].filter((name) => !namesFor(packs).has(name)).sort();
-    if (unknown.length)
-        throw new Error(`unknown pack(s): ${unknown.join(", ")}`);
-    const selected = { skills: new Set(), agents: new Set(), powers: new Set() };
-    for (const pack of packs.packs ?? []) {
-        if (!selectedNames.has(String(pack.name)))
-            continue;
-        for (const field of Object.keys(selected)) {
-            for (const item of entries(pack, field))
-                selected[field].add(item);
-        }
-    }
-    return [selectedNames, selected];
-}
-function allPackMembers(packs, field) {
-    const values = new Set();
-    for (const pack of packs.packs ?? [])
-        for (const item of entries(pack, field))
-            values.add(item);
-    return values;
-}
-function removePath(rootDir, target, dryRun) {
-    if (!fs.existsSync(target))
-        return false;
-    assertContained(rootDir, target);
-    if (dryRun) {
-        console.log(`would remove ${target}`);
-        return true;
-    }
-    fs.rmSync(target, { recursive: true, force: true });
-    console.log(`removed ${target}`);
-    return true;
-}
-function pruneNamedDirs(rootDir, parent, known, keep, dryRun) {
-    let removed = 0;
-    for (const name of [...known].filter((name) => !keep.has(name)).sort()) {
-        assertSafeName(name, parent);
-        if (removePath(rootDir, path.join(rootDir, parent, name), dryRun))
-            removed += 1;
-    }
-    return removed;
-}
-function pruneAgentFiles(rootDir, parent, suffix, known, keep, dryRun) {
-    let removed = 0;
-    for (const name of [...known].filter((name) => !keep.has(name)).sort()) {
-        assertSafeName(name, parent);
-        if (removePath(rootDir, path.join(rootDir, parent, `${name}${suffix}`), dryRun))
-            removed += 1;
-    }
-    return removed;
-}
-export function main(argv = process.argv.slice(2)) {
-    const args = argv;
-    const dryRun = args.includes("--dry-run");
-    const rootArg = args.find((arg) => !arg.startsWith("--"));
-    const packsFlag = args.indexOf("--packs");
-    if (!rootArg || packsFlag < 0 || !args[packsFlag + 1]) {
-        console.error("usage: filter-installed-packs <root> --packs <packs> [--dry-run]");
-        return 2;
-    }
-    const rootDir = path.resolve(rootArg);
-    const packsPath = path.join(rootDir, "packaging", "packs.json");
-    if (!fs.existsSync(packsPath))
-        throw new Error(`pack manifest not found: ${packsPath}`);
-    const packs = loadJson(packsPath);
-    const [selectedNames, selected] = packSelection(packs, splitPacks(args[packsFlag + 1]));
-    let removed = 0;
-    removed += pruneNamedDirs(rootDir, "skills", allPackMembers(packs, "skills"), selected.skills, dryRun);
-    removed += pruneNamedDirs(rootDir, ".claude/skills", allPackMembers(packs, "skills"), selected.skills, dryRun);
-    removed += pruneNamedDirs(rootDir, ".codex/skills", allPackMembers(packs, "skills"), selected.skills, dryRun);
-    removed += pruneNamedDirs(rootDir, ".opencode/skills", allPackMembers(packs, "skills"), selected.skills, dryRun);
-    removed += pruneNamedDirs(rootDir, ".pi/skills", allPackMembers(packs, "skills"), selected.skills, dryRun);
-    removed += pruneNamedDirs(rootDir, "powers", allPackMembers(packs, "powers"), selected.powers, dryRun);
-    removed += pruneAgentFiles(rootDir, "agents", ".json", allPackMembers(packs, "agents"), selected.agents, dryRun);
-    removed += pruneAgentFiles(rootDir, ".claude/agents", ".md", allPackMembers(packs, "agents"), selected.agents, dryRun);
-    removed += pruneAgentFiles(rootDir, ".codex/agents", ".toml", allPackMembers(packs, "agents"), selected.agents, dryRun);
-    removed += pruneAgentFiles(rootDir, ".opencode/agents", ".md", allPackMembers(packs, "agents"), selected.agents, dryRun);
-    const summary = {
-        selected_packs: [...selectedNames].sort(),
-        removed_entries: removed,
-        kept: Object.fromEntries(Object.entries(selected).map(([field, values]) => [field, [...values].sort()])),
-    };
-    if (!dryRun)
-        writeText(path.join(rootDir, ".flow-agents/installed-packs.json"), `${JSON.stringify(summary, null, 2)}\n`);
-    console.log(JSON.stringify(summary, null, 2));
-    return 0;
-}
-if (process.argv[1] && fs.realpathSync(fileURLToPath(import.meta.url)) === fs.realpathSync(path.resolve(process.argv[1])))
-    try {
-        process.exit(main());
-    }
-    catch (error) {
-        console.error(error instanceof Error ? error.message : String(error));
-        process.exit(1);
-    }

package/packaging/packs.json

@@ -1,49 +0,0 @@
-{
-  "schema_version": "1.0",
-  "packs": [
-    {
-      "name": "core",
-      "default": true,
-      "description": "Small default surface for reliable coding and workflow execution.",
-      "skills": [
-        "search-first",
-        "browser-test"
-      ],
-      "agents": [
-        "tool-planner",
-        "tool-worker",
-        "tool-verifier",
-        "tool-code-reviewer",
-        "tool-playwright"
-      ],
-      "powers": [
-        "playwright"
-      ]
-    },
-    {
-      "name": "development",
-      "default": false,
-      "description": "Development workflow depth for backlog, release, dependency, GitHub, TDD, and frontend work.",
-      "skills": [
-        "dependency-update",
-        "eval-rebuild",
-        "github-cli",
-        "agentic-engineering"
-      ],
-      "agents": [
-        "dev",
-        "tool-dependencies-updater",
-        "tool-security-reviewer",
-        "tool-explore-config",
-        "tool-explore-deps",
-        "tool-explore-entry",
-        "tool-explore-patterns",
-        "tool-explore-structure",
-        "tool-explore-tests"
-      ],
-      "powers": [
-        "dependency-checker"
-      ]
-    }
-  ]
-}

package/scripts/filter-installed-packs.js

@@ -1,2 +0,0 @@
-#!/usr/bin/env node
-import("../build/src/tools/filter-installed-packs.js").then(({ main }) => process.exit(main(process.argv.slice(2))));

package/src/tools/filter-installed-packs.ts

@@ -1,132 +0,0 @@
-#!/usr/bin/env node
-import fs from "node:fs";
-import path from "node:path";
-import { fileURLToPath } from "node:url";
-import { loadJson, writeText } from "./common.js";
-
-type PacksManifest = { packs?: Array<Record<string, unknown>> };
-type Selection = Record<"skills" | "agents" | "powers", Set<string>>;
-
-function splitPacks(value: string): Set<string> {
-  return new Set(value.split(",").map((item) => item.trim()).filter(Boolean));
-}
-
-function namesFor(packs: PacksManifest): Set<string> {
-  return new Set((packs.packs ?? []).map((pack) => String(pack.name ?? "")));
-}
-
-function entries(pack: Record<string, unknown>, field: keyof Selection): string[] {
-  const value = pack[field];
-  return Array.isArray(value) ? value.filter((item): item is string => typeof item === "string") : [];
-}
-
-function assertSafeName(name: string, label: string): void {
-  if (!/^[a-z][a-z0-9-]*(?:\.[a-z][a-z0-9-]*)*$/.test(name)) throw new Error(`${label} contains unsafe pack member name: ${name}`);
-}
-
-function assertContained(rootDir: string, target: string): void {
-  const rootReal = fs.realpathSync(rootDir);
-  const parentReal = fs.realpathSync(path.dirname(target));
-  const resolved = path.resolve(parentReal, path.basename(target));
-  const relative = path.relative(rootReal, resolved);
-  if (!relative || relative.startsWith("..") || path.isAbsolute(relative)) throw new Error(`refusing to remove path outside install root: ${target}`);
-  if (fs.existsSync(target)) {
-    const targetReal = fs.realpathSync(target);
-    const targetRelative = path.relative(rootReal, targetReal);
-    if (!targetRelative || targetRelative.startsWith("..") || path.isAbsolute(targetRelative)) throw new Error(`refusing to remove path outside install root: ${target}`);
-  }
-}
-
-function packSelection(packs: PacksManifest, requested: Set<string>): [Set<string>, Selection] {
-  const selectedNames = new Set<string>();
-  for (const pack of packs.packs ?? []) if (pack.default === true) selectedNames.add(String(pack.name));
-  for (const name of requested) selectedNames.add(name);
-  const unknown = [...selectedNames].filter((name) => !namesFor(packs).has(name)).sort();
-  if (unknown.length) throw new Error(`unknown pack(s): ${unknown.join(", ")}`);
-  const selected: Selection = { skills: new Set(), agents: new Set(), powers: new Set() };
-  for (const pack of packs.packs ?? []) {
-    if (!selectedNames.has(String(pack.name))) continue;
-    for (const field of Object.keys(selected) as Array<keyof Selection>) {
-      for (const item of entries(pack, field)) selected[field].add(item);
-    }
-  }
-  return [selectedNames, selected];
-}
-
-function allPackMembers(packs: PacksManifest, field: keyof Selection): Set<string> {
-  const values = new Set<string>();
-  for (const pack of packs.packs ?? []) for (const item of entries(pack, field)) values.add(item);
-  return values;
-}
-
-function removePath(rootDir: string, target: string, dryRun: boolean): boolean {
-  if (!fs.existsSync(target)) return false;
-  assertContained(rootDir, target);
-  if (dryRun) {
-    console.log(`would remove ${target}`);
-    return true;
-  }
-  fs.rmSync(target, { recursive: true, force: true });
-  console.log(`removed ${target}`);
-  return true;
-}
-
-function pruneNamedDirs(rootDir: string, parent: string, known: Set<string>, keep: Set<string>, dryRun: boolean): number {
-  let removed = 0;
-  for (const name of [...known].filter((name) => !keep.has(name)).sort()) {
-    assertSafeName(name, parent);
-    if (removePath(rootDir, path.join(rootDir, parent, name), dryRun)) removed += 1;
-  }
-  return removed;
-}
-
-function pruneAgentFiles(rootDir: string, parent: string, suffix: string, known: Set<string>, keep: Set<string>, dryRun: boolean): number {
-  let removed = 0;
-  for (const name of [...known].filter((name) => !keep.has(name)).sort()) {
-    assertSafeName(name, parent);
-    if (removePath(rootDir, path.join(rootDir, parent, `${name}${suffix}`), dryRun)) removed += 1;
-  }
-  return removed;
-}
-
-export function main(argv = process.argv.slice(2)): number {
-  const args = argv;
-  const dryRun = args.includes("--dry-run");
-  const rootArg = args.find((arg) => !arg.startsWith("--"));
-  const packsFlag = args.indexOf("--packs");
-  if (!rootArg || packsFlag < 0 || !args[packsFlag + 1]) {
-    console.error("usage: filter-installed-packs <root> --packs <packs> [--dry-run]");
-    return 2;
-  }
-  const rootDir = path.resolve(rootArg);
-  const packsPath = path.join(rootDir, "packaging", "packs.json");
-  if (!fs.existsSync(packsPath)) throw new Error(`pack manifest not found: ${packsPath}`);
-  const packs = loadJson<PacksManifest>(packsPath);
-  const [selectedNames, selected] = packSelection(packs, splitPacks(args[packsFlag + 1]));
-  let removed = 0;
-  removed += pruneNamedDirs(rootDir, "skills", allPackMembers(packs, "skills"), selected.skills, dryRun);
-  removed += pruneNamedDirs(rootDir, ".claude/skills", allPackMembers(packs, "skills"), selected.skills, dryRun);
-  removed += pruneNamedDirs(rootDir, ".codex/skills", allPackMembers(packs, "skills"), selected.skills, dryRun);
-  removed += pruneNamedDirs(rootDir, ".opencode/skills", allPackMembers(packs, "skills"), selected.skills, dryRun);
-  removed += pruneNamedDirs(rootDir, ".pi/skills", allPackMembers(packs, "skills"), selected.skills, dryRun);
-  removed += pruneNamedDirs(rootDir, "powers", allPackMembers(packs, "powers"), selected.powers, dryRun);
-  removed += pruneAgentFiles(rootDir, "agents", ".json", allPackMembers(packs, "agents"), selected.agents, dryRun);
-  removed += pruneAgentFiles(rootDir, ".claude/agents", ".md", allPackMembers(packs, "agents"), selected.agents, dryRun);
-  removed += pruneAgentFiles(rootDir, ".codex/agents", ".toml", allPackMembers(packs, "agents"), selected.agents, dryRun);
-  removed += pruneAgentFiles(rootDir, ".opencode/agents", ".md", allPackMembers(packs, "agents"), selected.agents, dryRun);
-  const summary = {
-    selected_packs: [...selectedNames].sort(),
-    removed_entries: removed,
-    kept: Object.fromEntries(Object.entries(selected).map(([field, values]) => [field, [...values].sort()])),
-  };
-  if (!dryRun) writeText(path.join(rootDir, ".flow-agents/installed-packs.json"), `${JSON.stringify(summary, null, 2)}\n`);
-  console.log(JSON.stringify(summary, null, 2));
-  return 0;
-}
-
-if (process.argv[1] && fs.realpathSync(fileURLToPath(import.meta.url)) === fs.realpathSync(path.resolve(process.argv[1]))) try {
-  process.exit(main());
-} catch (error) {
-  console.error(error instanceof Error ? error.message : String(error));
-  process.exit(1);
-}