@kynver-app/runtime 0.1.103 → 0.1.106

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (47) hide show
  1. package/dist/cleanup-completion-blocker.d.ts +10 -0
  2. package/dist/cleanup-guards.d.ts +1 -6
  3. package/dist/cleanup-worktree-salvage.d.ts +7 -0
  4. package/dist/cli.js +171 -62
  5. package/dist/cli.js.map +4 -4
  6. package/dist/index.js +172 -63
  7. package/dist/index.js.map +4 -4
  8. package/dist/server/cleanup.d.ts +3 -0
  9. package/dist/server/cleanup.js +3511 -0
  10. package/dist/server/cleanup.js.map +7 -0
  11. package/dist/server/default-repo.d.ts +1 -0
  12. package/dist/server/default-repo.js +228 -0
  13. package/dist/server/default-repo.js.map +7 -0
  14. package/dist/server/harness-notice.d.ts +2 -0
  15. package/dist/server/harness-notice.js +287 -0
  16. package/dist/server/harness-notice.js.map +7 -0
  17. package/dist/server/heavy-verification.d.ts +2 -0
  18. package/dist/server/heavy-verification.js +223 -0
  19. package/dist/server/heavy-verification.js.map +7 -0
  20. package/dist/server/landing.d.ts +1 -0
  21. package/dist/server/landing.js +44 -0
  22. package/dist/server/landing.js.map +7 -0
  23. package/dist/server/memory-cost-enforce.d.ts +1 -0
  24. package/dist/server/memory-cost-enforce.js +470 -0
  25. package/dist/server/memory-cost-enforce.js.map +7 -0
  26. package/dist/server/memory-cost.d.ts +1 -0
  27. package/dist/server/memory-cost.js +184 -0
  28. package/dist/server/memory-cost.js.map +7 -0
  29. package/dist/server/monitor.d.ts +3 -0
  30. package/dist/server/monitor.js +1577 -0
  31. package/dist/server/monitor.js.map +7 -0
  32. package/dist/server/orchestration.d.ts +10 -0
  33. package/dist/server/orchestration.js +444 -0
  34. package/dist/server/orchestration.js.map +7 -0
  35. package/dist/server/pr-evidence.d.ts +2 -0
  36. package/dist/server/pr-evidence.js +163 -0
  37. package/dist/server/pr-evidence.js.map +7 -0
  38. package/dist/server/repo-search.d.ts +1 -0
  39. package/dist/server/repo-search.js +224 -0
  40. package/dist/server/repo-search.js.map +7 -0
  41. package/dist/server/worker-policy.d.ts +2 -0
  42. package/dist/server/worker-policy.js +177 -0
  43. package/dist/server/worker-policy.js.map +7 -0
  44. package/dist/status.d.ts +4 -0
  45. package/dist/worker-persona-catalog.js +2 -2
  46. package/dist/worker-persona-catalog.js.map +2 -2
  47. package/package.json +63 -3
package/dist/server/worker-policy.js.map ADDED
@@ -0,0 +1,7 @@
1
+ {
2
+ "version": 3,
3
+ "sources": ["../../src/worker-env.ts", "../../src/config.ts", "../../src/wsl-host.ts", "../../src/disk-gate.ts", "../../src/paths.ts", "../../src/resource-gate.ts", "../../src/model-routing.ts", "../../src/worker-provider-policy.ts"],
4
+ "sourcesContent": ["/**\r\n * Worker spawn env scrub \u2014 harness workers must not inherit host deployment secrets.\r\n */\r\n\r\n/** Exact env keys that must never reach a worker child process. */\r\nexport const FORBIDDEN_WORKER_ENV_KEYS = [\r\n \"ANTHROPIC_API_KEY\",\r\n \"ANALYST_API_KEY\",\r\n \"RECRUITER_API_KEY\",\r\n \"AUTH_SECRET\",\r\n \"NEXTAUTH_SECRET\",\r\n \"DATABASE_URL\",\r\n \"PRODUCTION_DATABASE_URL\",\r\n \"KYNVER_PRODUCTION_DATABASE_URL\",\r\n \"REDIS_URL\",\r\n \"GOOGLE_CLIENT_SECRET\",\r\n \"GITHUB_CLIENT_SECRET\",\r\n \"KYNVER_API_KEY\",\r\n \"KYNVER_SERVICE_SECRET\",\r\n \"KYNVER_RUNTIME_SECRET\",\r\n \"KYNVER_CRON_SECRET\",\r\n \"OPENCLAW_CRON_SECRET\",\r\n \"QSTASH_TOKEN\",\r\n \"QSTASH_CURRENT_SIGNING_KEY\",\r\n \"QSTASH_NEXT_SIGNING_KEY\",\r\n \"TOOL_SECRETS_KEK\",\r\n \"TOOL_EXECUTOR_DISPATCH_SECRET\",\r\n \"CLOUDFLARE_API_TOKEN\",\r\n \"STRIPE_SECRET_KEY\",\r\n \"STRIPE_WEBHOOK_SECRET\",\r\n \"STRIPE_IDENTITY_WEBHOOK_SECRET\",\r\n \"VOYAGE_API_KEY\",\r\n \"PERPLEXITY_API_KEY\",\r\n \"FRED_API_KEY\",\r\n \"FMP_API_KEY\",\r\n \"CURSOR_API_KEY\",\r\n] as const;\r\n\r\nconst FORBIDDEN_KEY_SET = new Set<string>(FORBIDDEN_WORKER_ENV_KEYS);\r\n\r\n/** Keys matching these suffixes are stripped (case-sensitive). */\r\nconst FORBIDDEN_SUFFIXES = [\"_SECRET\", \"_API_KEY\"] as const;\r\n\r\nexport function isForbiddenWorkerEnvKey(key: string): boolean {\r\n if (FORBIDDEN_KEY_SET.has(key)) return true;\r\n return FORBIDDEN_SUFFIXES.some((suffix) => key.endsWith(suffix));\r\n}\r\n\r\nexport function listForbiddenWorkerEnvKeys(env: NodeJS.ProcessEnv): string[] {\r\n return Object.keys(env).filter(isForbiddenWorkerEnvKey).sort();\r\n}\r\n\r\nexport function scrubWorkerEnv(env: NodeJS.ProcessEnv): NodeJS.ProcessEnv {\r\n const next = { ...env };\r\n for (const key of Object.keys(next)) {\r\n if (isForbiddenWorkerEnvKey(key)) delete next[key];\r\n }\r\n return next;\r\n}\r\n\r\nexport interface WorkerEnvAudit {\r\n forbiddenPresent: string[];\r\n safe: boolean;\r\n}\r\n\r\nexport function auditWorkerEnv(env: NodeJS.ProcessEnv): WorkerEnvAudit {\r\n const forbiddenPresent = listForbiddenWorkerEnvKeys(env);\r\n return { forbiddenPresent, safe: forbiddenPresent.length === 0 };\r\n}\r\n\r\n/** @deprecated Use {@link scrubWorkerEnv} \u2014 kept for existing imports from git.ts */\r\nexport function scrubClaudeEnv(env: NodeJS.ProcessEnv): NodeJS.ProcessEnv {\r\n return scrubWorkerEnv(env);\r\n}\r\n", "import { existsSync, mkdirSync, readFileSync, writeFileSync } from \"node:fs\";\r\nimport { homedir, totalmem } from \"node:os\";\r\nimport path from \"node:path\";\r\nimport { discoverDefaultRepo } from \"./default-repo-discovery.js\";\r\nimport { displayUserPath, redactHomePath } from \"./path-values.js\";\r\nimport { trimTrailingSlash } from \"./util.js\";\r\nimport { normalizeWorkerPoolBoxKind, resolveBoxIdentity } from \"./box-identity.js\";\r\nimport { recommendSetupWorkerCap } from \"./worker-cap-source.js\";\r\nimport { observeRunnerDiskGate } from \"./disk-gate.js\";\r\nimport os from \"node:os\";\r\n\r\nexport interface KynverUserConfig {\r\n apiBaseUrl?: string;\r\n agentOsSlug?: string;\r\n agentOsId?: string;\r\n defaultRepo?: string;\r\n workerProvider?: string;\r\n /** Default Claude model when dispatch does not infer or pass `--model`. */\r\n defaultModel?: string;\r\n harnessRoot?: string;\r\n /**\r\n * Operator attestation that the hosted Kynver deployment uses this scheduler provider\r\n * (set on user runners after Vercel env cutover \u2014 scheduling is deployment-owned).\r\n */\r\n deploymentSchedulerProvider?: \"qstash\" | \"kynver-cron\" | \"openclaw-cron\";\r\n /** Physical box pool for capacity snapshots (`forge` | `ghost`). Set via `kynver setup --box-kind`. */\r\n boxKind?: \"ghost\" | \"forge\";\r\n /** Max concurrent workers on this machine. Omit to auto-size from RAM. */\r\n maxConcurrentWorkers?: number;\r\n /** Where maxConcurrentWorkers came from. */\r\n maxConcurrentWorkersSource?: \"setup-auto\" | \"setup-flag\" | \"operator\";\r\n /** @internal Advanced tuning \u2014 not required for setup. */\r\n perWorkerMemBytes?: number;\r\n /** @internal Advanced tuning \u2014 not required for setup. */\r\n memReserveBytes?: number;\r\n /** @internal Advanced tuning \u2014 not required for setup. */\r\n memUtilization?: number;\r\n}\r\n\r\nconst CONFIG_DIR = path.join(homedir(), \".kynver\");\r\nconst CONFIG_FILE = path.join(CONFIG_DIR, \"config.json\");\r\nconst CREDENTIALS_FILE = path.join(CONFIG_DIR, \"credentials\");\r\n\r\ninterface KynverCredentialsFile {\r\n apiKey?: string;\r\n /** Scoped `krc1.*` runner token for AgentOS by-id callbacks. */\r\n runnerToken?: string;\r\n runnerTokenAgentOsId?: string;\r\n}\r\n\r\nexport function loadUserConfig(): KynverUserConfig {\r\n if (!existsSync(CONFIG_FILE)) return {};\r\n try {\r\n return JSON.parse(readFileSync(CONFIG_FILE, \"utf8\")) as KynverUserConfig;\r\n } catch {\r\n return {};\r\n }\r\n}\r\n\r\nexport function saveUserConfig(config: KynverUserConfig): void {\r\n mkdirSync(CONFIG_DIR, { recursive: true });\r\n writeFileSync(CONFIG_FILE, `${JSON.stringify(normalizeConfigPaths(config), null, 2)}\\n`, { mode: 0o600 });\r\n}\r\n\r\n/** Persist path fields with `~` instead of absolute home directories. */\r\nexport function normalizeConfigPaths(config: KynverUserConfig): KynverUserConfig {\r\n return {\r\n ...config,\r\n ...(config.harnessRoot?.trim() ? { harnessRoot: redactHomePath(config.harnessRoot.trim()) } : {}),\r\n ...(config.defaultRepo?.trim() ? { defaultRepo: redactHomePath(config.defaultRepo.trim()) } : {}),\r\n };\r\n}\r\n\r\n/** Values for setup output (never emit `/home/<user>/\u2026`). */\r\nexport function presentUserConfig(config: KynverUserConfig): KynverUserConfig {\r\n return normalizeConfigPaths(config);\r\n}\r\n\r\nfunction inferSetupFields(\r\n existing: KynverUserConfig,\r\n args: Record<string, string | boolean>,\r\n): Partial<KynverUserConfig> {\r\n const creds = loadCredentialsFile();\r\n const apiBaseUrl =\r\n (typeof args.apiBaseUrl === \"string\" ? args.apiBaseUrl : undefined) ||\r\n existing.apiBaseUrl?.trim() ||\r\n process.env.KYNVER_API_URL?.trim() ||\r\n process.env.KYNVER_CRON_FIRE_BASE_URL?.trim() ||\r\n process.env.OPENCLAW_CRON_FIRE_BASE_URL?.trim();\r\n const agentOsId =\r\n (typeof args.agentOsId === \"string\" ? args.agentOsId : undefined) ||\r\n existing.agentOsId?.trim() ||\r\n process.env.KYNVER_AGENT_OS_ID?.trim() ||\r\n (creds.runnerToken?.trim().startsWith(\"krc1.\") ? creds.runnerTokenAgentOsId?.trim() : undefined);\r\n const explicitRepo =\r\n typeof args.repo === \"string\"\r\n ? args.repo\r\n : args.discoverRepo === true || args.discoverRepo === \"true\"\r\n ? discoverDefaultRepo()?.repo\r\n : undefined;\r\n const defaultRepo =\r\n explicitRepo ||\r\n existing.defaultRepo?.trim() ||\r\n process.env.KYNVER_DEFAULT_REPO?.trim() ||\r\n process.env.KYNVER_HARNESS_REPO?.trim() ||\r\n discoverDefaultRepo()?.repo;\r\n const harnessRoot =\r\n (typeof args.harnessRoot === \"string\" ? args.harnessRoot : undefined) ||\r\n existing.harnessRoot?.trim() ||\r\n process.env.KYNVER_HARNESS_ROOT?.trim() ||\r\n process.env.OPUS_HARNESS_ROOT?.trim();\r\n\r\n return {\r\n ...(apiBaseUrl ? { apiBaseUrl: trimTrailingSlash(apiBaseUrl) } : {}),\r\n ...(agentOsId ? { agentOsId } : {}),\r\n ...(defaultRepo ? { defaultRepo } : {}),\r\n ...(harnessRoot ? { harnessRoot } : {}),\r\n ...(typeof args.agentOsSlug === \"string\"\r\n ? { agentOsSlug: args.agentOsSlug }\r\n : existing.agentOsSlug\r\n ? { agentOsSlug: existing.agentOsSlug }\r\n : {}),\r\n };\r\n}\r\n\r\nconst SETUP_PER_WORKER_MEM_BYTES = 500 * 1024 * 1024;\r\nconst SETUP_MEM_RESERVE_BYTES = 4 * 1024 * 1024 * 1024;\r\nconst SETUP_MEM_UTILIZATION = 0.85;\r\nconst SETUP_AUTO_MAX_WORKERS_CEILING = 64;\r\n\r\nfunction normalizeBoxKind(raw: unknown): \"ghost\" | \"forge\" | undefined {\r\n const kind = String(raw ?? \"\").trim().toLowerCase();\r\n if (!kind) return undefined;\r\n if (kind === \"ghost\" || kind.includes(\"ghost\") || kind.includes(\"openclaw\")) return \"ghost\";\r\n if (kind === \"forge\" || kind.includes(\"forge\")) return \"forge\";\r\n return undefined;\r\n}\r\n\r\nexport function computeSetupAutoMaxWorkers(totalMemBytes: number): number {\r\n const budgetBytes = Math.max(0, Math.floor(totalMemBytes * SETUP_MEM_UTILIZATION) - SETUP_MEM_RESERVE_BYTES);\r\n const raw = Math.max(1, Math.floor(budgetBytes / SETUP_PER_WORKER_MEM_BYTES));\r\n return Math.min(raw, SETUP_AUTO_MAX_WORKERS_CEILING);\r\n}\r\n\r\nexport function resolveSetupWorkerConfig(\r\n existing: KynverUserConfig,\r\n args: Record<string, string | boolean>,\r\n totalMemBytes = totalmem(),\r\n): Pick<KynverUserConfig, \"maxConcurrentWorkers\" | \"maxConcurrentWorkersSource\" | \"boxKind\"> {\r\n const maxWorkersRaw =\r\n typeof args.maxWorkers === \"string\"\r\n ? args.maxWorkers\r\n : typeof args.maxConcurrentWorkers === \"string\"\r\n ? args.maxConcurrentWorkers\r\n : undefined;\r\n const explicitBoxKindArg =\r\n typeof args.boxKind === \"string\"\r\n ? args.boxKind\r\n : typeof args[\"box-kind\"] === \"string\"\r\n ? String(args[\"box-kind\"])\r\n : undefined;\r\n const boxKind = resolveBoxIdentity(process.env, {\r\n ...existing,\r\n ...(explicitBoxKindArg ? { boxKind: normalizeWorkerPoolBoxKind(explicitBoxKindArg) } : {}),\r\n }).boxKind;\r\n const diskGate = observeRunnerDiskGate({\r\n diskPath: typeof args.diskPath === \"string\" ? args.diskPath : \"/\",\r\n });\r\n const capRecommendation = recommendSetupWorkerCap({\r\n totalMemBytes,\r\n diskPath: diskGate.path,\r\n diskGateOk: diskGate.ok,\r\n diskFreeBytes: diskGate.freeBytes,\r\n config: existing,\r\n });\r\n if (maxWorkersRaw) {\r\n return {\r\n maxConcurrentWorkers: Math.max(1, Math.floor(Number(maxWorkersRaw))),\r\n maxConcurrentWorkersSource: \"setup-flag\",\r\n boxKind,\r\n };\r\n }\r\n if (existing.maxConcurrentWorkers !== undefined && existing.maxConcurrentWorkers !== null) {\r\n return {\r\n maxConcurrentWorkers: Math.max(1, Math.floor(Number(existing.maxConcurrentWorkers))),\r\n maxConcurrentWorkersSource: existing.maxConcurrentWorkersSource ?? \"operator\",\r\n boxKind,\r\n };\r\n }\r\n return {\r\n maxConcurrentWorkers: capRecommendation.recommendedMaxWorkers,\r\n maxConcurrentWorkersSource: \"setup-auto\",\r\n boxKind,\r\n };\r\n}\r\n\r\nfunction loadCredentialsFile(): KynverCredentialsFile {\r\n if (!existsSync(CREDENTIALS_FILE)) return {};\r\n try {\r\n return JSON.parse(readFileSync(CREDENTIALS_FILE, \"utf8\")) as KynverCredentialsFile;\r\n } catch {\r\n return {};\r\n }\r\n}\r\n\r\nfunction saveCredentialsFile(parsed: KynverCredentialsFile): void {\r\n mkdirSync(CONFIG_DIR, { recursive: true });\r\n writeFileSync(CREDENTIALS_FILE, `${JSON.stringify(parsed, null, 2)}\\n`, { mode: 0o600 });\r\n}\r\n\r\nexport function loadApiKey(): string | undefined {\r\n if (process.env.KYNVER_API_KEY) return process.env.KYNVER_API_KEY;\r\n return loadCredentialsFile().apiKey;\r\n}\r\n\r\nexport function saveApiKey(apiKey: string): void {\r\n saveCredentialsFile({ ...loadCredentialsFile(), apiKey });\r\n}\r\n\r\nexport function loadRunnerToken(agentOsId?: string): string | undefined {\r\n const envToken = process.env.KYNVER_RUNNER_TOKEN?.trim();\r\n if (envToken) return envToken;\r\n\r\n const creds = loadCredentialsFile();\r\n if (!creds.runnerToken) return undefined;\r\n if (agentOsId && creds.runnerTokenAgentOsId && creds.runnerTokenAgentOsId !== agentOsId) {\r\n return undefined;\r\n }\r\n return creds.runnerToken;\r\n}\r\n\r\nexport function saveRunnerToken(agentOsId: string, token: string): void {\r\n saveCredentialsFile({\r\n ...loadCredentialsFile(),\r\n runnerToken: token,\r\n runnerTokenAgentOsId: agentOsId,\r\n });\r\n}\r\n\r\nexport function resolveBaseUrl(argsBaseUrl?: string): string {\r\n const baseUrl = resolveConfiguredBaseUrl(argsBaseUrl);\r\n if (!baseUrl) failConfig(\"requires --base-url, KYNVER_API_URL, KYNVER_CRON_FIRE_BASE_URL, or ~/.kynver/config.json apiBaseUrl\");\r\n return baseUrl;\r\n}\r\n\r\nfunction resolveConfiguredBaseUrl(argsBaseUrl?: string): string | undefined {\r\n const baseUrl =\r\n argsBaseUrl ||\r\n process.env.KYNVER_API_URL ||\r\n process.env.KYNVER_CRON_FIRE_BASE_URL ||\r\n process.env.OPENCLAW_CRON_FIRE_BASE_URL ||\r\n loadUserConfig().apiBaseUrl;\r\n return baseUrl ? trimTrailingSlash(String(baseUrl)) : undefined;\r\n}\r\n\r\nfunction resolveConfiguredCallbackSecret(argsSecret?: string, agentOsId?: string): string | undefined {\r\n const scoped =\r\n argsSecret ||\r\n loadRunnerToken(agentOsId) ||\r\n (agentOsId ? undefined : loadRunnerToken(loadUserConfig().agentOsId));\r\n if (scoped) return String(scoped);\r\n\r\n const globalSecret =\r\n process.env.KYNVER_RUNTIME_SECRET ||\r\n process.env.KYNVER_CRON_SECRET ||\r\n process.env.OPENCLAW_CRON_SECRET;\r\n if (globalSecret) {\r\n console.warn(\r\n \"[kynver] using deployment-level callback secret; run `kynver runner credential --agent-os-id <id>` for a scoped token\",\r\n );\r\n return String(globalSecret);\r\n }\r\n\r\n return undefined;\r\n}\r\n\r\nexport function resolveCallbackSecret(argsSecret?: string, agentOsId?: string): string {\r\n const configured = resolveConfiguredCallbackSecret(argsSecret, agentOsId);\r\n if (configured) return configured;\r\n\r\n failConfig(\r\n \"requires --secret, KYNVER_RUNNER_TOKEN, a scoped runner token (`kynver runner credential`), ~/.kynver/credentials runnerToken, KYNVER_API_KEY with an API base URL to mint one, or (legacy) KYNVER_RUNTIME_SECRET / KYNVER_CRON_SECRET / OPENCLAW_CRON_SECRET\",\r\n );\r\n}\r\n\r\nexport async function resolveCallbackSecretWithMint(\r\n argsSecret?: string,\r\n agentOsId?: string,\r\n opts?: { baseUrl?: string },\r\n): Promise<string> {\r\n const configured = resolveConfiguredCallbackSecret(argsSecret, agentOsId);\r\n if (configured) return configured;\r\n\r\n const apiKey = loadApiKey();\r\n const baseUrl = resolveConfiguredBaseUrl(opts?.baseUrl);\r\n if (apiKey && agentOsId && baseUrl) {\r\n try {\r\n const token = await fetchRunnerCredential(agentOsId, { baseUrl, apiKey });\r\n saveRunnerToken(agentOsId, token);\r\n return token;\r\n } catch (error) {\r\n failConfig(`runner credential mint failed: ${(error as Error).message}`);\r\n }\r\n }\r\n\r\n failConfig(\r\n \"requires --secret, KYNVER_RUNNER_TOKEN, a scoped runner token (`kynver runner credential`), ~/.kynver/credentials runnerToken, KYNVER_API_KEY with an API base URL to mint one, or (legacy) KYNVER_RUNTIME_SECRET / KYNVER_CRON_SECRET / OPENCLAW_CRON_SECRET\",\r\n );\r\n}\r\n\r\n/**\r\n * Force-mint a fresh scoped runner token for `agentOsId`, bypassing any cached\r\n * or env token. Recovery path for a callback that 401s because the configured\r\n * token is revoked, expired, or scoped to a *different* workspace (the\r\n * self-linked repair case). Requires an API key + base URL to mint; returns\r\n * `null` when a fresh token cannot be obtained, so the caller degrades to a\r\n * structural blocker instead of papering the worker over as done.\r\n */\r\nexport async function refreshRunnerToken(\r\n agentOsId: string,\r\n opts?: { baseUrl?: string },\r\n): Promise<string | null> {\r\n const apiKey = loadApiKey();\r\n const baseUrl = resolveConfiguredBaseUrl(opts?.baseUrl);\r\n if (!apiKey || !agentOsId || !baseUrl) return null;\r\n try {\r\n const token = await fetchRunnerCredential(agentOsId, { baseUrl, apiKey });\r\n saveRunnerToken(agentOsId, token);\r\n return token;\r\n } catch {\r\n return null;\r\n }\r\n}\r\n\r\nexport async function refreshRunnerTokenForAuthFailure(\r\n rejectedSecret: string,\r\n agentOsId: string,\r\n opts?: { baseUrl?: string },\r\n): Promise<{ ok: true; token: string } | { ok: false; reason: string }> {\r\n const apiKey = loadApiKey();\r\n const baseUrl = resolveConfiguredBaseUrl(opts?.baseUrl);\r\n if (!apiKey) return { ok: false, reason: \"KYNVER_API_KEY is required to refresh a rejected runner token\" };\r\n if (!agentOsId) return { ok: false, reason: \"agentOsId is required to refresh a rejected runner token\" };\r\n if (!baseUrl) return { ok: false, reason: \"KYNVER_API_URL or --base-url is required to refresh a rejected runner token\" };\r\n\r\n try {\r\n const token = await fetchRunnerCredential(agentOsId, { baseUrl, apiKey });\r\n if (token && token !== rejectedSecret) {\r\n saveRunnerToken(agentOsId, token);\r\n return { ok: true, token };\r\n }\r\n return { ok: false, reason: \"runner credential refresh returned the rejected token\" };\r\n } catch (error) {\r\n return { ok: false, reason: (error as Error).message };\r\n }\r\n}\r\n\r\nexport async function fetchRunnerCredential(\r\n agentOsId: string,\r\n opts?: { baseUrl?: string; apiKey?: string },\r\n): Promise<string> {\r\n const apiKey = opts?.apiKey || loadApiKey();\r\n if (!apiKey) throw new Error(\"API key required \u2014 run `kynver login` first\");\r\n\r\n const base = resolveBaseUrl(opts?.baseUrl);\r\n const url = `${base}/api/agent-os/by-id/${encodeURIComponent(agentOsId)}/runner-credentials`;\r\n const res = await fetch(url, {\r\n method: \"POST\",\r\n headers: {\r\n \"Content-Type\": \"application/json\",\r\n Authorization: `Bearer ${apiKey}`,\r\n },\r\n body: JSON.stringify({}),\r\n });\r\n\r\n const text = await res.text();\r\n let parsed: { token?: string; error?: string } | null = null;\r\n try {\r\n parsed = JSON.parse(text) as { token?: string; error?: string };\r\n } catch {\r\n parsed = null;\r\n }\r\n if (!res.ok || !parsed?.token) {\r\n throw new Error(\r\n `runner credential mint failed (${res.status}): ${parsed?.error ?? text.slice(0, 200)}`,\r\n );\r\n }\r\n return parsed.token;\r\n}\r\n\r\nexport async function mintRunnerCredential(args: Record<string, string | boolean>): Promise<void> {\r\n const agentOsId =\r\n (args.agentOsId ? String(args.agentOsId) : loadUserConfig().agentOsId) || \"\";\r\n if (!agentOsId) failConfig(\"runner credential requires --agent-os-id or agentOsId in ~/.kynver/config.json\");\r\n\r\n try {\r\n const token = await fetchRunnerCredential(agentOsId, {\r\n baseUrl: args.baseUrl ? String(args.baseUrl) : undefined,\r\n });\r\n saveRunnerToken(agentOsId, token);\r\n console.log(\r\n JSON.stringify(\r\n {\r\n ok: true,\r\n agentOsId,\r\n credentialsPath: displayUserPath(CREDENTIALS_FILE),\r\n tokenPrefix: `${token.slice(0, 12)}\u2026`,\r\n note: \"Scoped runner token saved; callbacks use X-Kynver-Runner-Token.\",\r\n },\r\n null,\r\n 2,\r\n ),\r\n );\r\n } catch (err) {\r\n console.error(err instanceof Error ? err.message : String(err));\r\n process.exit(1);\r\n }\r\n}\r\n\r\nfunction failConfig(message: string): never {\r\n console.error(message);\r\n process.exit(1);\r\n}\r\n\r\nexport function parseArgs(argv: string[]): Record<string, string | boolean> {\r\n const args: Record<string, string | boolean> = {};\r\n for (let i = 0; i < argv.length; i++) {\r\n const item = argv[i];\r\n if (!item.startsWith(\"--\")) continue;\r\n const key = item.slice(2).replace(/-([a-z])/g, (_, c: string) => c.toUpperCase());\r\n const next = argv[i + 1];\r\n if (!next || next.startsWith(\"--\")) args[key] = true;\r\n else {\r\n args[key] = next;\r\n i++;\r\n }\r\n }\r\n return args;\r\n}\r\n\r\nexport async function runSetup(args: Record<string, string | boolean>): Promise<void> {\r\n const existing = loadUserConfig();\r\n const diskGate = observeRunnerDiskGate({\r\n diskPath: typeof args.diskPath === \"string\" ? args.diskPath : \"/\",\r\n });\r\n const capRecommendation = recommendSetupWorkerCap({\r\n totalMemBytes: os.totalmem(),\r\n diskPath: diskGate.path,\r\n diskGateOk: diskGate.ok,\r\n diskFreeBytes: diskGate.freeBytes,\r\n config: existing,\r\n });\r\n const workerConfig = resolveSetupWorkerConfig(existing, args);\r\n const config: KynverUserConfig = normalizeConfigPaths({\r\n ...existing,\r\n ...inferSetupFields(existing, args),\r\n ...workerConfig,\r\n workerProvider:\r\n typeof args.provider === \"string\"\r\n ? args.provider\r\n : existing.workerProvider || \"cursor\",\r\n });\r\n saveUserConfig(config);\r\n const boxIdentity = resolveBoxIdentity(process.env, config);\r\n\r\n let runnerCredentialNote: string | undefined;\r\n const apiKey = loadApiKey();\r\n const agentOsId = config.agentOsId;\r\n if (apiKey && agentOsId) {\r\n try {\r\n const token = await fetchRunnerCredential(agentOsId, {\r\n baseUrl: typeof args.apiBaseUrl === \"string\" ? args.apiBaseUrl : config.apiBaseUrl,\r\n apiKey,\r\n });\r\n saveRunnerToken(agentOsId, token);\r\n runnerCredentialNote = \"Scoped runner token minted and saved to ~/.kynver/credentials.\";\r\n } catch {\r\n runnerCredentialNote =\r\n \"Runner token not minted (server offline or master secret unset). Run `kynver runner credential` after deploy.\";\r\n }\r\n }\r\n\r\n console.log(\r\n JSON.stringify(\r\n {\r\n ok: true,\r\n configPath: displayUserPath(CONFIG_FILE),\r\n config: presentUserConfig(config),\r\n boxKind: config.boxKind,\r\n boxKindSource: boxIdentity.source,\r\n workerCapRecommendation: capRecommendation,\r\n ...(boxIdentity.warnings.length ? { boxIdentityWarnings: boxIdentity.warnings } : {}),\r\n note:\r\n runnerCredentialNote ??\r\n \"boxKind and maxConcurrentWorkers persisted; override with --box-kind and --max-workers. Run `kynver login` + `kynver runner credential` for scoped callbacks.\",\r\n },\r\n null,\r\n 2,\r\n ),\r\n );\r\n}\r\n\r\nexport async function runLogin(args: Record<string, string | boolean>): Promise<void> {\r\n const apiKey = typeof args.apiKey === \"string\" ? args.apiKey : process.env.KYNVER_API_KEY;\r\n if (!apiKey) failConfig(\"kynver login requires --api-key or KYNVER_API_KEY\");\r\n saveApiKey(apiKey);\r\n console.log(JSON.stringify({ ok: true, credentialsPath: displayUserPath(CREDENTIALS_FILE) }, null, 2));\r\n}\r\n", "import { existsSync, readFileSync, statfsSync } from \"node:fs\";\r\n\r\n/**\r\n * WSL host disk probe.\r\n *\r\n * Under WSL, the runtime VHDX (mounted at `/`) grows dynamically into the\r\n * Windows host C: drive. When Windows C: fills up, the VHDX cannot expand:\r\n * writes return SIGBUS, workers exit 135, and the Vmmem VM degrades while\r\n * the Linux-side `statfs /` still reports plenty of free space inside the\r\n * VHDX. This module gives the harness a cheap signal for that pressure so\r\n * it can block dispatch *before* a large npm install/build pushes Windows\r\n * C: into the ground.\r\n */\r\n\r\n/** Default warn threshold for the Windows host disk (25 GiB free). */\r\nexport const DEFAULT_WSL_HOST_WARN_FREE_BYTES = 25 * 1024 * 1024 * 1024;\r\n/** Default critical threshold for the Windows host disk (12 GiB free). Below\r\n * this, large rebuilds have been observed to trigger SIGBUS / exit 135 on\r\n * WSL when the VHDX cannot grow further. */\r\nexport const DEFAULT_WSL_HOST_CRITICAL_FREE_BYTES = 12 * 1024 * 1024 * 1024;\r\n/** Default Windows host mount point under WSL. Overridable via env or option. */\r\nexport const DEFAULT_WSL_HOST_MOUNT = \"/mnt/c\";\r\n\r\nexport interface WslHostDiskShape {\r\n ok: boolean;\r\n /** Mount point that was probed. */\r\n path: string;\r\n freeBytes: number;\r\n totalBytes: number;\r\n usedPercent: number;\r\n warnBelowBytes: number;\r\n criticalBelowBytes: number;\r\n /** Human-readable explanation when the host disk is under pressure. */\r\n reason: string | null;\r\n /** True when the probe itself failed (mount missing, statfs error). */\r\n probeError: string | null;\r\n}\r\n\r\n/**\r\n * Cheap WSL detection. Reads `/proc/sys/kernel/osrelease` (kernel string\r\n * contains \"microsoft\" / \"WSL2\" on Microsoft's WSL kernel) and falls back\r\n * to `/proc/version`. Both reads are one-shot and gated by `existsSync`,\r\n * so non-Linux hosts return false without throwing.\r\n */\r\nexport function isWslHost(): boolean {\r\n if (process.platform !== \"linux\") return false;\r\n for (const probe of [\"/proc/sys/kernel/osrelease\", \"/proc/version\"]) {\r\n try {\r\n if (!existsSync(probe)) continue;\r\n const text = readFileSync(probe, \"utf8\");\r\n if (/microsoft|wsl/i.test(text)) return true;\r\n } catch {\r\n // ignore \u2014 try the next probe path\r\n }\r\n }\r\n return false;\r\n}\r\n\r\nexport interface ObserveWslHostDiskOptions {\r\n /** Override the Windows host mount path (e.g. `/mnt/d`). Falls back to\r\n * `KYNVER_WSL_HOST_MOUNT` env, then `/mnt/c`. */\r\n wslHostMount?: string;\r\n wslHostFreeWarnBytes?: number;\r\n wslHostFreeCriticalBytes?: number;\r\n /** Override WSL detection for tests / cross-platform CI:\r\n * `true` \u2192 treat host as WSL; `false` \u2192 treat host as non-WSL;\r\n * `undefined` \u2192 autodetect via `isWslHost()`. */\r\n forceWsl?: boolean;\r\n /** Test seam \u2014 swap in a fake statfs. */\r\n statfs?: (path: string) => { bavail: bigint | number; blocks: bigint | number; bsize: bigint | number };\r\n}\r\n\r\n/**\r\n * Probe the Windows host disk under WSL. Returns `null` when this host is\r\n * not WSL (so callers can treat the field as optional in the gate output).\r\n * When WSL but the mount is unreachable, returns a `probeError` row with\r\n * `ok = false` rather than throwing \u2014 the gate must still block dispatch\r\n * because we can't prove the host disk is healthy.\r\n */\r\nexport function observeWslHostDisk(\r\n options: ObserveWslHostDiskOptions = {},\r\n): WslHostDiskShape | null {\r\n const wsl = options.forceWsl === undefined ? isWslHost() : options.forceWsl;\r\n if (!wsl) return null;\r\n\r\n const path =\r\n options.wslHostMount?.trim() ||\r\n process.env.KYNVER_WSL_HOST_MOUNT?.trim() ||\r\n DEFAULT_WSL_HOST_MOUNT;\r\n const warnBelowBytes = options.wslHostFreeWarnBytes ?? DEFAULT_WSL_HOST_WARN_FREE_BYTES;\r\n const criticalBelowBytes =\r\n options.wslHostFreeCriticalBytes ?? DEFAULT_WSL_HOST_CRITICAL_FREE_BYTES;\r\n\r\n const statfs = options.statfs ?? statfsSync;\r\n let stats: { bavail: bigint | number; blocks: bigint | number; bsize: bigint | number };\r\n try {\r\n stats = statfs(path);\r\n } catch (error) {\r\n return {\r\n ok: false,\r\n path,\r\n freeBytes: 0,\r\n totalBytes: 0,\r\n usedPercent: 100,\r\n warnBelowBytes,\r\n criticalBelowBytes,\r\n reason: `Windows host disk probe failed at ${path}: ${(error as Error).message}`,\r\n probeError: (error as Error).message,\r\n };\r\n }\r\n\r\n const freeBytes = Number(stats.bavail) * Number(stats.bsize);\r\n const totalBytes = Number(stats.blocks) * Number(stats.bsize);\r\n const usedPercent = totalBytes > 0 ? ((totalBytes - freeBytes) / totalBytes) * 100 : 100;\r\n const lowFree = freeBytes < warnBelowBytes;\r\n const criticalFree = freeBytes < criticalBelowBytes;\r\n const ok = !lowFree && !criticalFree;\r\n\r\n const freeGiB = (freeBytes / (1024 * 1024 * 1024)).toFixed(1);\r\n let reason: string | null = null;\r\n if (!ok) {\r\n const tag = criticalFree ? \"critical\" : \"warning\";\r\n reason =\r\n `Windows host disk ${path} at ${tag}: ${freeGiB} GiB free ` +\r\n `(<${(criticalFree ? criticalBelowBytes : warnBelowBytes) / 1024 / 1024 / 1024} GiB); ` +\r\n `WSL VHDX cannot grow safely. ${summarizeWslRecoverySteps()}`;\r\n }\r\n\r\n return {\r\n ok,\r\n path,\r\n freeBytes,\r\n totalBytes,\r\n usedPercent,\r\n warnBelowBytes,\r\n criticalBelowBytes,\r\n reason,\r\n probeError: null,\r\n };\r\n}\r\n\r\n/**\r\n * Short operator recovery hint embedded in gate reasons so AgentOS evidence\r\n * surfaces actionable steps without a doc lookup. Keep terse \u2014 full runbook\r\n * lives at `docs/runbooks/wsl-disk-pressure.md`.\r\n */\r\nexport function summarizeWslRecoverySteps(): string {\r\n return (\r\n \"Recovery: \" +\r\n \"1) free Windows C: (empty Recycle Bin / Storage Sense / clear %TEMP%); \" +\r\n \"2) shut down WSL (`wsl --shutdown`) then compact the VHDX (`Optimize-VHD` or `diskpart compact vdisk`); \" +\r\n \"3) clear local node_modules / .next / harness worktrees before restarting workers. \" +\r\n \"Full runbook: docs/runbooks/wsl-disk-pressure.md.\"\r\n );\r\n}\r\n", "import { statfsSync } from \"node:fs\";\r\nimport type { DispatchNextDiskGateShape } from \"./callbacks.js\";\r\nimport {\r\n observeWslHostDisk,\r\n type ObserveWslHostDiskOptions,\r\n type WslHostDiskShape,\r\n} from \"./wsl-host.js\";\r\n\r\nconst DEFAULT_WARN_FREE_BYTES = 30 * 1024 * 1024 * 1024;\r\nconst DEFAULT_CRITICAL_FREE_BYTES = 15 * 1024 * 1024 * 1024;\r\nconst DEFAULT_MAX_USED_PERCENT = 80;\r\nconst DEFAULT_HARD_MAX_USED_PERCENT = 90;\r\n\r\nexport interface ObserveDiskGateInput {\r\n diskPath?: string;\r\n diskFreeWarnBytes?: number;\r\n diskFreeCriticalBytes?: number;\r\n diskMaxUsedPercent?: number;\r\n diskHardMaxUsedPercent?: number;\r\n /** Opt-out for the WSL host disk probe \u2014 leave `false`/undefined by\r\n * default so we always check `/mnt/c` under WSL. */\r\n skipWslHostCheck?: boolean;\r\n wslHost?: ObserveWslHostDiskOptions;\r\n}\r\n\r\nexport function observeRunnerDiskGate(input: ObserveDiskGateInput = {}): DispatchNextDiskGateShape {\r\n const path = input.diskPath?.trim() || \"/\";\r\n const warnBelowBytes = input.diskFreeWarnBytes ?? DEFAULT_WARN_FREE_BYTES;\r\n const criticalBelowBytes = input.diskFreeCriticalBytes ?? DEFAULT_CRITICAL_FREE_BYTES;\r\n const maxUsedPercent = input.diskMaxUsedPercent ?? DEFAULT_MAX_USED_PERCENT;\r\n const hardMaxUsedPercent = input.diskHardMaxUsedPercent ?? DEFAULT_HARD_MAX_USED_PERCENT;\r\n\r\n const stats = statfsSync(path);\r\n const freeBytes = Number(stats.bavail) * Number(stats.bsize);\r\n const totalBytes = Number(stats.blocks) * Number(stats.bsize);\r\n const usedPercent = totalBytes > 0 ? ((totalBytes - freeBytes) / totalBytes) * 100 : 100;\r\n const lowFree = freeBytes < warnBelowBytes;\r\n const criticalFree = freeBytes < criticalBelowBytes;\r\n const highUse = usedPercent > maxUsedPercent;\r\n const hardHighUse = usedPercent > hardMaxUsedPercent;\r\n const localOk = !lowFree && !criticalFree && !highUse && !hardHighUse;\r\n\r\n // WSL guard: the VHDX (mounted at `/`) grows into Windows C:; a healthy\r\n // local statfs is meaningless if the host disk is about to refuse writes.\r\n const wslHost: WslHostDiskShape | null = input.skipWslHostCheck\r\n ? null\r\n : observeWslHostDisk(input.wslHost);\r\n\r\n const ok = localOk && (wslHost ? wslHost.ok : true);\r\n\r\n let reason: string | null = null;\r\n if (!ok) {\r\n reason = [\r\n criticalFree ? `free space below critical ${criticalBelowBytes} bytes` : null,\r\n lowFree ? `free space below warning ${warnBelowBytes} bytes` : null,\r\n hardHighUse ? `used percent above hard cap ${hardMaxUsedPercent}%` : null,\r\n highUse ? `used percent above cap ${maxUsedPercent}%` : null,\r\n wslHost && !wslHost.ok ? wslHost.reason : null,\r\n ]\r\n .filter(Boolean)\r\n .join(\"; \");\r\n }\r\n\r\n return {\r\n ok,\r\n path,\r\n freeBytes,\r\n totalBytes,\r\n usedPercent,\r\n warnBelowBytes,\r\n criticalBelowBytes,\r\n maxUsedPercent,\r\n hardMaxUsedPercent,\r\n reason,\r\n wslHost,\r\n };\r\n}\r\n", "import { existsSync } from \"node:fs\";\r\nimport { homedir } from \"node:os\";\r\nimport path from \"node:path\";\r\nimport { loadUserConfig } from \"./config.js\";\r\nimport { resolveUserPath } from \"./path-values.js\";\r\nimport { safeSlug } from \"./util.js\";\r\n\r\nconst LEGACY_ROOT = path.join(homedir(), \".openclaw\", \"harness\");\r\n\r\nconst HARNESS_LAYOUT_DIR_NAMES = new Set([\"runs\", \"worktrees\"]);\r\n\r\n/**\r\n * Canonical harness root: the directory that contains `runs/` and `worktrees/`.\r\n * Strips mistaken trailing layout segments (e.g. env set to `.../harness/runs`).\r\n * Server mirror: agent-os.harness-root.ts\r\n */\r\nexport function normalizeHarnessRoot(root: string): string {\r\n let resolved = path.resolve(resolveUserPath(root.trim()));\r\n while (HARNESS_LAYOUT_DIR_NAMES.has(path.basename(resolved))) {\r\n resolved = path.dirname(resolved);\r\n }\r\n return resolved;\r\n}\r\n\r\n/** Canonical harness root for CLI/workers. */\r\nexport function resolveHarnessRoot(): string {\r\n const env = process.env.KYNVER_HARNESS_ROOT || process.env.OPUS_HARNESS_ROOT;\r\n if (env) return normalizeHarnessRoot(env);\r\n const configured = loadUserConfig().harnessRoot?.trim();\r\n if (configured) return normalizeHarnessRoot(configured);\r\n const kynverRoot = path.join(homedir(), \".kynver\", \"harness\");\r\n if (existsSync(kynverRoot)) return kynverRoot;\r\n if (existsSync(LEGACY_ROOT)) return LEGACY_ROOT;\r\n return kynverRoot;\r\n}\r\n\r\nexport function harnessRunsDir(harnessRoot: string): string {\r\n return path.join(normalizeHarnessRoot(harnessRoot), \"runs\");\r\n}\r\n\r\nexport function harnessWorktreesDir(harnessRoot: string): string {\r\n return path.join(normalizeHarnessRoot(harnessRoot), \"worktrees\");\r\n}\r\n\r\nexport function getHarnessPaths() {\r\n const harnessRoot = resolveHarnessRoot();\r\n return {\r\n harnessRoot,\r\n runsDir: harnessRunsDir(harnessRoot),\r\n worktreesDir: harnessWorktreesDir(harnessRoot),\r\n };\r\n}\r\n\r\nexport function runDir(runsDir: string, id: string): string {\r\n return path.join(runsDir, safeSlug(id));\r\n}\r\n", "import os from \"node:os\";\r\nimport { readMemAvailableBytes } from \"./bounded-build/meminfo.js\";\r\nimport path from \"node:path\";\r\nimport { loadUserConfig, type KynverUserConfig } from \"./config.js\";\r\nimport { resolveBoxKindFromConfig } from \"./box-identity.js\";\r\nimport type { WorkerCapSource } from \"./worker-cap-source.js\";\r\nimport { resolveWorkerCap } from \"./worker-cap-source.js\";\r\nimport type { DispatchNextDiskGateShape } from \"./callbacks.js\";\r\nimport { observeRunnerDiskGate } from \"./disk-gate.js\";\r\nimport { listRunRecords, loadRun, runDirectory, type HarnessRunRecord } from \"./run-store.js\";\r\nimport { listRunWorkerNames } from \"./run-worker-index.js\";\r\nimport { isActiveHarnessWorker, workerProcessMatchesRecord } from \"./harness-worker-active.js\";\r\nimport { readJson, safeSlug } from \"./util.js\";\r\nimport type { HarnessWorkerRecord } from \"./status.js\";\r\n\r\nexport { workerProcessMatchesRecord };\r\n\r\n/** Default RAM budget per worker (~500 MiB, dogfood measured). Internal \u2014 not a setup knob. */\r\nexport const DEFAULT_PER_WORKER_MEM_BYTES = 500 * 1024 * 1024;\r\n\r\n/** Keep headroom for OS / IDE. Internal \u2014 not a setup knob. */\r\nexport const DEFAULT_MEM_RESERVE_BYTES = 4 * 1024 * 1024 * 1024;\r\n\r\n/** Fraction of total RAM used when auto-sizing worker cap. Internal. */\r\nexport const DEFAULT_MEM_UTILIZATION = 0.85;\r\n\r\n/** Auto cap when the user has not set maxConcurrentWorkers (safety on huge hosts). */\r\nexport const AUTO_MAX_WORKERS_CEILING = 64;\r\n\r\nexport interface RunnerResourceGateShape {\r\n ok: boolean;\r\n totalMemBytes: number;\r\n freeMemBytes: number;\r\n memReserveBytes: number;\r\n perWorkerMemBytes: number;\r\n configuredMaxWorkers: number | null;\r\n /** Where the effective worker cap was resolved (workspace override, env, config, or auto). */\r\n workerCapSource: WorkerCapSource;\r\n /** Physical pool for this host (`forge` | `ghost`). */\r\n boxKind: string;\r\n autoCap: number;\r\n capacityWorkers: number;\r\n maxConcurrentWorkers: number;\r\n activeWorkers: number;\r\n slotsAvailable: number;\r\n reason: string | null;\r\n /** Present unless `KYNVER_RESOURCE_GATE_SKIP_DISK=1`. */\r\n diskGate?: DispatchNextDiskGateShape;\r\n}\r\n\r\nexport interface ObserveResourceGateInput {\r\n runId: string;\r\n config?: KynverUserConfig;\r\n /** Command Center / workspace override \u2014 wins over local config when set. */\r\n configuredMaxWorkersOverride?: number | null;\r\n /** Override active worker count (tests). */\r\n activeWorkers?: number;\r\n totalMemBytes?: number;\r\n freeMemBytes?: number;\r\n diskPath?: string;\r\n skipDiskGate?: boolean;\r\n}\r\n\r\nfunction positiveInt(value: unknown, fallback: number): number {\r\n const n = Number(value);\r\n if (!Number.isFinite(n) || n <= 0) return fallback;\r\n return Math.floor(n);\r\n}\r\n\r\nfunction resolveResourceConfig(\r\n config: KynverUserConfig = loadUserConfig(),\r\n configuredMaxWorkersOverride?: number | null,\r\n totalMemBytes?: number,\r\n) {\r\n const perWorkerMemBytes = positiveInt(config.perWorkerMemBytes, DEFAULT_PER_WORKER_MEM_BYTES);\r\n const memReserveBytes = positiveInt(config.memReserveBytes, DEFAULT_MEM_RESERVE_BYTES);\r\n const memUtilization = Math.min(\r\n 1,\r\n Math.max(0.1, Number(config.memUtilization) > 0 ? Number(config.memUtilization) : DEFAULT_MEM_UTILIZATION),\r\n );\r\n const cap = resolveWorkerCap({\r\n config,\r\n configuredMaxWorkersOverride,\r\n totalMemBytes: totalMemBytes ?? os.totalmem(),\r\n });\r\n return {\r\n perWorkerMemBytes,\r\n memReserveBytes,\r\n memUtilization,\r\n configuredMaxWorkers: cap.configuredMaxWorkers,\r\n autoCap: cap.autoCap,\r\n workerCapSource: cap.workerCapSource,\r\n };\r\n}\r\n\r\n/** How many workers this host could run from RAM alone (before a user cap). */\r\nexport function computeAutoMaxWorkers(\r\n totalMemBytes: number,\r\n opts: { perWorkerMemBytes?: number; memReserveBytes?: number; memUtilization?: number } = {},\r\n): number {\r\n const perWorkerMemBytes = opts.perWorkerMemBytes ?? DEFAULT_PER_WORKER_MEM_BYTES;\r\n const memReserveBytes = opts.memReserveBytes ?? DEFAULT_MEM_RESERVE_BYTES;\r\n const memUtilization = opts.memUtilization ?? DEFAULT_MEM_UTILIZATION;\r\n const budgetBytes = Math.max(0, Math.floor(totalMemBytes * memUtilization) - memReserveBytes);\r\n const raw = Math.max(1, Math.floor(budgetBytes / perWorkerMemBytes));\r\n return Math.min(raw, AUTO_MAX_WORKERS_CEILING);\r\n}\r\n\r\nfunction readAvailableMemBytes(): number {\r\n return readMemAvailableBytes();\r\n}\r\n\r\n/** Count alive, still-executing workers in a single run record. */\r\nfunction countActiveWorkersForRun(run: HarnessRunRecord): number {\r\n let active = 0;\r\n for (const name of listRunWorkerNames(run)) {\r\n const worker = readJson<HarnessWorkerRecord | undefined>(\r\n path.join(runDirectory(run.id), \"workers\", safeSlug(name), \"worker.json\"),\r\n undefined,\r\n );\r\n if (!worker || !isActiveHarnessWorker(worker)) continue;\r\n active++;\r\n }\r\n return active;\r\n}\r\n\r\n/** Count active workers in ONE run (kept for callers/tests scoped to a run). */\r\nexport function countActiveWorkers(runId: string): number {\r\n return countActiveWorkersForRun(loadRun(runId));\r\n}\r\n\r\n/**\r\n * Count active workers across EVERY run on disk. The harness creates a new run\r\n * per task, so a per-run count let concurrent runs each believe the machine was\r\n * idle \u2014 the configured cap was never a real global ceiling (the \"spawns 4 or\r\n * infinity, never N\" bug). This machine-wide count is what the gate must use.\r\n */\r\nexport function countActiveWorkersGlobal(): number {\r\n let active = 0;\r\n for (const run of listRunRecords()) active += countActiveWorkersForRun(run);\r\n return active;\r\n}\r\n\r\n/**\r\n * Compute how many workers this host can run and how many dispatch slots remain.\r\n * Uses total RAM for steady-state capacity and free RAM as a hard safety gate.\r\n */\r\nexport function observeRunnerResourceGate(input: ObserveResourceGateInput): RunnerResourceGateShape {\r\n const config = input.config ?? loadUserConfig();\r\n const totalMemBytes = input.totalMemBytes ?? os.totalmem();\r\n const { perWorkerMemBytes, memReserveBytes, memUtilization, configuredMaxWorkers, autoCap: resolvedAutoCap, workerCapSource } =\r\n resolveResourceConfig(config, input.configuredMaxWorkersOverride, totalMemBytes);\r\n const boxKind = resolveBoxKindFromConfig(config);\r\n const freeMemBytes = input.freeMemBytes ?? readAvailableMemBytes();\r\n // Active count is GLOBAL across all runs (see countActiveWorkersGlobal), so the\r\n // cap is a true machine-wide ceiling rather than per-run.\r\n const activeWorkers = input.activeWorkers ?? countActiveWorkersGlobal();\r\n\r\n const budgetBytes = Math.max(0, Math.floor(totalMemBytes * memUtilization) - memReserveBytes);\r\n const capacityFromTotal = Math.max(0, Math.floor(budgetBytes / perWorkerMemBytes));\r\n const capacityFromFree = Math.max(0, Math.floor(Math.max(0, freeMemBytes - memReserveBytes) / perWorkerMemBytes));\r\n\r\n const autoCap = resolvedAutoCap;\r\n const targetCap = configuredMaxWorkers ?? autoCap;\r\n const maxConcurrentWorkers = Math.max(0, Math.min(targetCap, capacityFromTotal));\r\n const slotsByCapacity = Math.max(0, maxConcurrentWorkers - activeWorkers);\r\n // capacityFromFree is ADDITIONAL headroom: free/available RAM already excludes\r\n // memory held by running workers, so we must NOT subtract activeWorkers again.\r\n // Doing so (the old `capacityFromFree - activeWorkers`) double-counted active\r\n // workers and collapsed dispatch to a handful of slots under load.\r\n const slotsByFreeMem = capacityFromFree;\r\n let slotsAvailable = Math.min(slotsByCapacity, slotsByFreeMem);\r\n\r\n const skipDisk = input.skipDiskGate || process.env.KYNVER_RESOURCE_GATE_SKIP_DISK === \"1\";\r\n const diskGate = skipDisk\r\n ? undefined\r\n : observeRunnerDiskGate({\r\n diskPath:\r\n input.diskPath?.trim() ||\r\n process.env.KYNVER_DISK_GUARD_PATH?.trim() ||\r\n \"/\",\r\n });\r\n if (diskGate && !diskGate.ok) slotsAvailable = 0;\r\n\r\n let reason: string | null = null;\r\n if (slotsAvailable <= 0) {\r\n if (diskGate && !diskGate.ok) {\r\n reason = diskGate.reason ?? \"disk gate blocked worker admission\";\r\n } else if (activeWorkers >= maxConcurrentWorkers) {\r\n reason = `at worker limit (${activeWorkers}/${maxConcurrentWorkers} running)`;\r\n } else if (capacityFromFree <= 0) {\r\n reason = \"insufficient free memory \u2014 waiting for workers to finish\";\r\n } else {\r\n reason = \"no worker slots available\";\r\n }\r\n }\r\n\r\n return {\r\n ok: slotsAvailable > 0,\r\n totalMemBytes,\r\n freeMemBytes,\r\n memReserveBytes,\r\n perWorkerMemBytes,\r\n configuredMaxWorkers,\r\n workerCapSource,\r\n boxKind,\r\n autoCap,\r\n capacityWorkers: capacityFromTotal,\r\n maxConcurrentWorkers,\r\n activeWorkers,\r\n slotsAvailable,\r\n reason,\r\n ...(diskGate ? { diskGate } : {}),\r\n };\r\n}\r\n", "import { loadUserConfig, type KynverUserConfig } from \"./config.js\";\r\nimport { resolveOrchestrationRouting } from \"./orchestration-providers/routing.js\";\r\nimport type { OrchestrationRoutingAudit } from \"./orchestration-providers/types.js\";\r\nimport { CLAUDE_DEFAULT_MODEL } from \"./providers/claude.js\";\r\nimport { CODEX_DEFAULT_MODEL } from \"./providers/codex.js\";\r\nimport { enforceCursorWorkerProvider, isClaudeFamilyProvider, taskAllowsClaudeWorker } from \"./worker-provider-policy.js\";\r\n\r\n/** Conservative default \u2014 Sonnet for ordinary harness work (not Opus). */\r\nexport const GLOBAL_DEFAULT_MODEL = \"claude-sonnet-4-6\";\r\nexport const CURSOR_DEFAULT_MODEL = \"composer-2.5\";\r\n\r\nexport interface ModelRoutingDecision {\r\n /** Model id passed to the provider CLI (undefined \u2192 provider default). */\r\n model?: string;\r\n /** Worker provider key (`claude` | `cursor` | `codex`). */\r\n provider: string;\r\n /** Audit trail for Command Center / worker.json. */\r\n rule: string;\r\n /** Original task/board model request when inferred from metadata. */\r\n requestedModel?: string;\r\n /** Provider/auth/cost audit for orchestration routing (no secrets). */\r\n orchestrationAudit?: OrchestrationRoutingAudit;\r\n}\r\n\r\nfunction taskString(task: Record<string, unknown>, key: string): string {\r\n const v = task[key];\r\n return typeof v === \"string\" ? v.trim() : \"\";\r\n}\r\n\r\nfunction normalizeRef(ref: string): string {\r\n return ref.toLowerCase();\r\n}\r\n\r\n/** Resolve global default: config \u2192 env \u2192 Sonnet. */\r\nexport function resolveGlobalDefaultModel(config: KynverUserConfig = loadUserConfig()): string {\r\n const fromConfig = config.defaultModel?.trim();\r\n if (fromConfig) return fromConfig;\r\n const fromEnv = process.env.KYNVER_DEFAULT_MODEL?.trim();\r\n if (fromEnv) return fromEnv;\r\n return GLOBAL_DEFAULT_MODEL;\r\n}\r\n\r\nfunction inferProviderFromModel(model: string | undefined): string {\r\n const m = (model ?? \"\").toLowerCase();\r\n if (!m) return \"cursor\";\r\n if (\r\n m.includes(\"composer\") ||\r\n m.includes(\"cursor\") ||\r\n m.includes(\"codex\") ||\r\n m.startsWith(\"gpt-\") ||\r\n m.startsWith(\"gpt5\")\r\n ) {\r\n return \"cursor\";\r\n }\r\n if (/^claude[-_]/i.test(m) || /^(?:opus|sonnet|haiku)\\b/i.test(m)) {\r\n return \"claude\";\r\n }\r\n return \"cursor\";\r\n}\r\n\r\nfunction normalizeProviderAliasModel(model: string, explicitProvider: string | undefined): ModelRoutingDecision | null {\r\n const alias = model.trim().toLowerCase();\r\n const provider = explicitProvider?.trim();\r\n if (alias === \"cursor\") {\r\n return {\r\n model: CURSOR_DEFAULT_MODEL,\r\n provider: \"cursor\",\r\n rule:\r\n provider && provider !== \"cursor\"\r\n ? \"explicit:model_provider_alias_overrode_provider\"\r\n : \"explicit:model_provider_alias\",\r\n requestedModel: model,\r\n };\r\n }\r\n if (alias === \"claude\" || alias === \"anthropic\") {\r\n return {\r\n model: CLAUDE_DEFAULT_MODEL,\r\n provider: \"claude\",\r\n rule:\r\n provider && provider !== \"claude\"\r\n ? \"explicit:model_provider_alias_overrode_provider\"\r\n : \"explicit:model_provider_alias\",\r\n requestedModel: model,\r\n };\r\n }\r\n return null;\r\n}\r\n\r\nfunction isOpusLane(ref: string, title: string): boolean {\r\n if (ref.includes(\"deep\") && ref.includes(\"review\")) return true;\r\n if (ref.includes(\"security\")) return true;\r\n if (ref.includes(\"plan_author\") || ref.includes(\"plan-author\")) return true;\r\n if (title.includes(\"deep review\") || title.includes(\"security review\")) return true;\r\n if (ref.includes(\"plan\") && !ref.includes(\"review\") && (ref.includes(\"author\") || ref.includes(\"strategy\"))) {\r\n return true;\r\n }\r\n return false;\r\n}\r\n\r\n/**\r\n * Infer model + provider from AgentOS task metadata when the dispatcher did not\r\n * pass an explicit `--model`. Explicit CLI/model args always win.\r\n */\r\nexport function inferModelRoutingFromTask(task: Record<string, unknown>): ModelRoutingDecision {\r\n const ref = normalizeRef(taskString(task, \"executorRef\"));\r\n const title = taskString(task, \"title\").toLowerCase();\r\n const priority = taskString(task, \"priority\") || \"normal\";\r\n const roleLane = normalizeRef(taskString(task, \"roleLane\"));\r\n\r\n // Coding lanes \u2192 Cursor (cheaper than Opus for implementation).\r\n if (ref.includes(\"provider:codex\") || ref.startsWith(\"codex:\")) {\r\n return { provider: \"codex\", model: CODEX_DEFAULT_MODEL, rule: \"lane:codex_orchestration\" };\r\n }\r\n if (\r\n ref.includes(\"cursor\") ||\r\n ref.includes(\"composer\") ||\r\n ref.includes(\"copilot\") ||\r\n roleLane === \"implementer\" ||\r\n roleLane === \"repair_implementer\"\r\n ) {\r\n return { provider: \"cursor\", rule: \"lane:implementation\" };\r\n }\r\n if (ref.includes(\"codex\")) {\r\n return { provider: \"codex\", model: CODEX_DEFAULT_MODEL, rule: \"lane:codex_orchestration\" };\r\n }\r\n\r\n // Landing / merge hygiene \u2192 Cursor (Dalton/Lorentz lanes).\r\n if (ref.includes(\"landing\") || title.startsWith(\"land:\") || title.includes(\" merge\")) {\r\n return { provider: \"cursor\", rule: \"lane:landing\" };\r\n }\r\n\r\n // Reviews \u2014 Cursor unless the task carries an explicit Claude operator override.\r\n if (ref.includes(\"review\") || /^review[\\s:]/.test(title) || roleLane.includes(\"review\")) {\r\n if (isOpusLane(ref, title) || roleLane === \"deep_reviewer\") {\r\n return { provider: \"cursor\", rule: \"lane:deep_review\" };\r\n }\r\n return { provider: \"cursor\", rule: \"lane:review\" };\r\n }\r\n\r\n // Planning / strategy \u2192 Cursor by default (Claude only with operator override).\r\n if (isOpusLane(ref, title) || roleLane === \"plan_author\") {\r\n return { provider: \"cursor\", rule: \"lane:planning\" };\r\n }\r\n\r\n if (priority === \"critical\") {\r\n return { provider: \"cursor\", rule: \"priority:critical\" };\r\n }\r\n if (priority === \"high\") {\r\n return { provider: \"cursor\", rule: \"priority:high\" };\r\n }\r\n if (priority === \"low\") {\r\n return { provider: \"cursor\", rule: \"priority:low\" };\r\n }\r\n\r\n const model = resolveGlobalDefaultModel();\r\n return {\r\n model,\r\n provider: inferProviderFromModel(model),\r\n rule: \"default:global\",\r\n };\r\n}\r\n\r\n/** Resolve launch parameters: explicit CLI wins, then task inference, then global default. */\r\nexport function resolveWorkerLaunch(input: {\r\n explicitModel?: string;\r\n explicitProvider?: string;\r\n /** When true, `--provider claude` is honored without a task-level override. */\r\n explicitProviderIsOperatorOverride?: boolean;\r\n task?: Record<string, unknown>;\r\n}): ModelRoutingDecision {\r\n let decision: ModelRoutingDecision;\r\n\r\n if (input.explicitModel?.trim()) {\r\n const model = input.explicitModel.trim();\r\n const providerAlias = normalizeProviderAliasModel(model, input.explicitProvider);\r\n if (providerAlias) {\r\n decision = providerAlias;\r\n } else {\r\n decision = {\r\n model,\r\n provider: input.explicitProvider?.trim() || inferProviderFromModel(model),\r\n rule: \"explicit:cli\",\r\n requestedModel: model,\r\n };\r\n }\r\n } else if (input.task && Object.keys(input.task).length > 0) {\r\n const inferred = inferModelRoutingFromTask(input.task);\r\n decision = {\r\n ...inferred,\r\n requestedModel: inferred.model,\r\n };\r\n } else {\r\n const model = resolveGlobalDefaultModel();\r\n decision = {\r\n model,\r\n provider: input.explicitProvider?.trim() || inferProviderFromModel(model),\r\n rule: \"default:global\",\r\n requestedModel: model,\r\n };\r\n }\r\n\r\n const afterCursorPolicy = enforceCursorWorkerProvider({\r\n routing: decision,\r\n task: input.task,\r\n explicitProvider: input.explicitProvider,\r\n explicitProviderIsOperatorOverride: input.explicitProviderIsOperatorOverride,\r\n });\r\n\r\n if (!input.task || Object.keys(input.task).length === 0) {\r\n return afterCursorPolicy;\r\n }\r\n\r\n // Explicit provider aliases (\"cursor\", \"claude\") are operator-level directives \u2014\r\n // the caller chose the provider by name, so orchestration routing must not\r\n // override the resolved model/provider/rule back to a different path.\r\n if (\r\n afterCursorPolicy.rule === \"explicit:model_provider_alias\" ||\r\n afterCursorPolicy.rule === \"explicit:model_provider_alias_overrode_provider\" ||\r\n afterCursorPolicy.rule === \"explicit:cli\"\r\n ) {\r\n return afterCursorPolicy;\r\n }\r\n\r\n if (\r\n isClaudeFamilyProvider(afterCursorPolicy.provider) &&\r\n (input.explicitProviderIsOperatorOverride || taskAllowsClaudeWorker(input.task))\r\n ) {\r\n return afterCursorPolicy;\r\n }\r\n\r\n const orchestration = resolveOrchestrationRouting({\r\n task: input.task,\r\n explicitProvider: input.explicitProvider ?? afterCursorPolicy.provider,\r\n explicitModel: afterCursorPolicy.model,\r\n });\r\n\r\n return {\r\n provider: orchestration.provider,\r\n model:\r\n orchestration.provider === \"codex\"\r\n ? orchestration.model ?? afterCursorPolicy.model ?? CODEX_DEFAULT_MODEL\r\n : afterCursorPolicy.model,\r\n rule: orchestration.rule,\r\n requestedModel: afterCursorPolicy.requestedModel,\r\n orchestrationAudit: orchestration.audit,\r\n };\r\n}\r\n\r\n/** Fallback chain tail after provider start \u2014 never hard-code Opus here. */\r\nexport function resolveModelFallback(\r\n startedModel: string | undefined,\r\n launchModel: string | undefined,\r\n providerDefault: string | undefined,\r\n): string {\r\n return startedModel || launchModel || providerDefault || resolveGlobalDefaultModel() || CLAUDE_DEFAULT_MODEL;\r\n}\r\n", "import { CURSOR_DEFAULT_MODEL } from \"./model-routing.js\";\r\nimport type { ModelRoutingDecision } from \"./model-routing.js\";\r\n\r\n/** Default harness worker CLI provider unless an operator override allows Claude. */\r\nexport const DEFAULT_WORKER_PROVIDER = \"cursor\";\r\n\r\nconst CLAUDE_FAMILY = new Set([\"claude\", \"opus\", \"anthropic\"]);\r\n\r\nconst TASK_OVERRIDE_MARKERS = [\r\n /\\[worker-provider:\\s*claude\\]/i,\r\n /\\[use-claude-worker\\]/i,\r\n /\\[operator-worker-provider:\\s*claude\\]/i,\r\n];\r\n\r\nfunction taskString(task: Record<string, unknown>, key: string): string {\r\n const v = task[key];\r\n return typeof v === \"string\" ? v.trim() : \"\";\r\n}\r\n\r\nexport function isClaudeFamilyProvider(provider: string | null | undefined): boolean {\r\n if (!provider?.trim()) return false;\r\n const normalized = provider.trim().toLowerCase();\r\n if (CLAUDE_FAMILY.has(normalized)) return true;\r\n return normalized.includes(\"claude\") || normalized.includes(\"opus\");\r\n}\r\n\r\n/**\r\n * True when the board row explicitly opts into a Claude/Opus worker\r\n * (operator override on the task).\r\n */\r\nexport function taskAllowsClaudeWorker(task: Record<string, unknown> | null | undefined): boolean {\r\n if (!task) return false;\r\n\r\n const override = task.workerProviderOverride;\r\n if (typeof override === \"string\" && isClaudeFamilyProvider(override)) return true;\r\n\r\n const ref = taskString(task, \"executorRef\").toLowerCase();\r\n if (ref === \"provider:claude\" || ref.startsWith(\"provider:claude:\")) return true;\r\n if (ref.includes(\"claude-worker-override\") || ref.includes(\"operator-claude\")) return true;\r\n\r\n const description = taskString(task, \"description\");\r\n if (TASK_OVERRIDE_MARKERS.some((re) => re.test(description))) return true;\r\n\r\n const title = taskString(task, \"title\");\r\n if (/\\[use-claude-worker\\]/i.test(title)) return true;\r\n\r\n return false;\r\n}\r\n\r\nexport interface EnforceCursorWorkerProviderInput {\r\n routing: ModelRoutingDecision;\r\n task?: Record<string, unknown> | null;\r\n /** Per-invocation `--provider` from the harness CLI. */\r\n explicitProvider?: string | null;\r\n /** When true, `--provider claude` is treated as an operator run override. */\r\n explicitProviderIsOperatorOverride?: boolean;\r\n}\r\n\r\nfunction coerceCursorModel(model: string | undefined, ruleSuffix: string): ModelRoutingDecision {\r\n const coerced: ModelRoutingDecision = {\r\n provider: DEFAULT_WORKER_PROVIDER,\r\n model: CURSOR_DEFAULT_MODEL,\r\n rule: `policy:cursor_default${ruleSuffix}`,\r\n requestedModel: model,\r\n };\r\n return coerced;\r\n}\r\n\r\n/**\r\n * Rewrites Claude/Opus routing to Cursor unless the task or an explicit operator\r\n * run override allows Claude workers.\r\n */\r\nexport function enforceCursorWorkerProvider(\r\n input: EnforceCursorWorkerProviderInput,\r\n): ModelRoutingDecision {\r\n const { routing, task } = input;\r\n const explicit = input.explicitProvider?.trim().toLowerCase();\r\n\r\n if (input.explicitProviderIsOperatorOverride && isClaudeFamilyProvider(explicit)) {\r\n return {\r\n ...routing,\r\n provider: \"claude\",\r\n rule: routing.rule.startsWith(\"explicit:\") ? routing.rule : \"explicit:operator_provider\",\r\n };\r\n }\r\n\r\n if (taskAllowsClaudeWorker(task)) {\r\n return routing;\r\n }\r\n\r\n if (routing.rule === \"explicit:cli\" && isClaudeFamilyProvider(routing.provider)) {\r\n return routing;\r\n }\r\n\r\n if (!isClaudeFamilyProvider(routing.provider)) {\r\n return routing;\r\n }\r\n\r\n const suffix =\r\n routing.rule && routing.rule !== \"default:global\" ? `:${routing.rule.replace(/:/g, \"_\")}` : \"\";\r\n return coerceCursorModel(routing.model, suffix);\r\n}\r\n\r\n/** Normalize config/registry defaults \u2014 legacy `claude` configs map to Cursor unless overridden. */\r\nexport function resolveConfiguredWorkerProvider(\r\n configured: string | null | undefined,\r\n fallback: string = DEFAULT_WORKER_PROVIDER,\r\n): string {\r\n const trimmed = configured?.trim();\r\n if (!trimmed) return fallback;\r\n if (isClaudeFamilyProvider(trimmed)) return DEFAULT_WORKER_PROVIDER;\r\n if (trimmed === \"codex\") return \"codex\";\r\n return trimmed;\r\n}\r\n\r\n/** Plan / Command Center executor lists \u2014 Cursor wins when both families appear. */\r\nexport function preferCursorExecutor(executors: string[]): string[] {\r\n const unique = [...new Set(executors.map((e) => e.trim().toLowerCase()).filter(Boolean))];\r\n if (unique.includes(DEFAULT_WORKER_PROVIDER)) {\r\n return [...new Set(unique.map((e) => (isClaudeFamilyProvider(e) ? DEFAULT_WORKER_PROVIDER : e)))];\r\n }\r\n if (unique.every((e) => isClaudeFamilyProvider(e))) {\r\n return [DEFAULT_WORKER_PROVIDER];\r\n }\r\n return unique;\r\n}\r\n"],
5
+ "mappings": ";AAKO,IAAM,4BAA4B;AAAA,EACvC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF;AAEA,IAAM,oBAAoB,IAAI,IAAY,yBAAyB;AAGnE,IAAM,qBAAqB,CAAC,WAAW,UAAU;AAE1C,SAAS,wBAAwB,KAAsB;AAC5D,MAAI,kBAAkB,IAAI,GAAG,EAAG,QAAO;AACvC,SAAO,mBAAmB,KAAK,CAAC,WAAW,IAAI,SAAS,MAAM,CAAC;AACjE;AAEO,SAAS,2BAA2B,KAAkC;AAC3E,SAAO,OAAO,KAAK,GAAG,EAAE,OAAO,uBAAuB,EAAE,KAAK;AAC/D;AAEO,SAAS,eAAe,KAA2C;AACxE,QAAM,OAAO,EAAE,GAAG,IAAI;AACtB,aAAW,OAAO,OAAO,KAAK,IAAI,GAAG;AACnC,QAAI,wBAAwB,GAAG,EAAG,QAAO,KAAK,GAAG;AAAA,EACnD;AACA,SAAO;AACT;AAOO,SAAS,eAAe,KAAwC;AACrE,QAAM,mBAAmB,2BAA2B,GAAG;AACvD,SAAO,EAAE,kBAAkB,MAAM,iBAAiB,WAAW,EAAE;AACjE;;;ACnEA,SAAS,WAAAA,UAAS,gBAAgB;AAClC,OAAOC,WAAU;;;ACaV,IAAM,mCAAmC,KAAK,OAAO,OAAO;AAI5D,IAAM,uCAAuC,KAAK,OAAO,OAAO;;;ACXvE,IAAM,0BAA0B,KAAK,OAAO,OAAO;AACnD,IAAM,8BAA8B,KAAK,OAAO,OAAO;;;ACRvD,SAAS,eAAe;AACxB,OAAO,UAAU;AAKjB,IAAM,cAAc,KAAK,KAAK,QAAQ,GAAG,aAAa,SAAS;;;ACWxD,IAAM,+BAA+B,MAAM,OAAO;AAGlD,IAAM,4BAA4B,IAAI,OAAO,OAAO;;;AJkB3D,IAAM,aAAaC,MAAK,KAAKC,SAAQ,GAAG,SAAS;AACjD,IAAM,cAAcD,MAAK,KAAK,YAAY,aAAa;AACvD,IAAM,mBAAmBA,MAAK,KAAK,YAAY,aAAa;AAoF5D,IAAM,6BAA6B,MAAM,OAAO;AAChD,IAAM,0BAA0B,IAAI,OAAO,OAAO;;;AKrH3C,IAAM,uBAAuB;;;ACL7B,IAAM,0BAA0B;AAEvC,IAAM,gBAAgB,oBAAI,IAAI,CAAC,UAAU,QAAQ,WAAW,CAAC;AAE7D,IAAM,wBAAwB;AAAA,EAC5B;AAAA,EACA;AAAA,EACA;AACF;AAEA,SAAS,WAAW,MAA+B,KAAqB;AACtE,QAAM,IAAI,KAAK,GAAG;AAClB,SAAO,OAAO,MAAM,WAAW,EAAE,KAAK,IAAI;AAC5C;AAEO,SAAS,uBAAuB,UAA8C;AACnF,MAAI,CAAC,UAAU,KAAK,EAAG,QAAO;AAC9B,QAAM,aAAa,SAAS,KAAK,EAAE,YAAY;AAC/C,MAAI,cAAc,IAAI,UAAU,EAAG,QAAO;AAC1C,SAAO,WAAW,SAAS,QAAQ,KAAK,WAAW,SAAS,MAAM;AACpE;AAMO,SAAS,uBAAuB,MAA2D;AAChG,MAAI,CAAC,KAAM,QAAO;AAElB,QAAM,WAAW,KAAK;AACtB,MAAI,OAAO,aAAa,YAAY,uBAAuB,QAAQ,EAAG,QAAO;AAE7E,QAAM,MAAM,WAAW,MAAM,aAAa,EAAE,YAAY;AACxD,MAAI,QAAQ,qBAAqB,IAAI,WAAW,kBAAkB,EAAG,QAAO;AAC5E,MAAI,IAAI,SAAS,wBAAwB,KAAK,IAAI,SAAS,iBAAiB,EAAG,QAAO;AAEtF,QAAM,cAAc,WAAW,MAAM,aAAa;AAClD,MAAI,sBAAsB,KAAK,CAAC,OAAO,GAAG,KAAK,WAAW,CAAC,EAAG,QAAO;AAErE,QAAM,QAAQ,WAAW,MAAM,OAAO;AACtC,MAAI,yBAAyB,KAAK,KAAK,EAAG,QAAO;AAEjD,SAAO;AACT;AAWA,SAAS,kBAAkB,OAA2B,YAA0C;AAC9F,QAAM,UAAgC;AAAA,IACpC,UAAU;AAAA,IACV,OAAO;AAAA,IACP,MAAM,wBAAwB,UAAU;AAAA,IACxC,gBAAgB;AAAA,EAClB;AACA,SAAO;AACT;AAMO,SAAS,4BACd,OACsB;AACtB,QAAM,EAAE,SAAS,KAAK,IAAI;AAC1B,QAAM,WAAW,MAAM,kBAAkB,KAAK,EAAE,YAAY;AAE5D,MAAI,MAAM,sCAAsC,uBAAuB,QAAQ,GAAG;AAChF,WAAO;AAAA,MACL,GAAG;AAAA,MACH,UAAU;AAAA,MACV,MAAM,QAAQ,KAAK,WAAW,WAAW,IAAI,QAAQ,OAAO;AAAA,IAC9D;AAAA,EACF;AAEA,MAAI,uBAAuB,IAAI,GAAG;AAChC,WAAO;AAAA,EACT;AAEA,MAAI,QAAQ,SAAS,kBAAkB,uBAAuB,QAAQ,QAAQ,GAAG;AAC/E,WAAO;AAAA,EACT;AAEA,MAAI,CAAC,uBAAuB,QAAQ,QAAQ,GAAG;AAC7C,WAAO;AAAA,EACT;AAEA,QAAM,SACJ,QAAQ,QAAQ,QAAQ,SAAS,mBAAmB,IAAI,QAAQ,KAAK,QAAQ,MAAM,GAAG,CAAC,KAAK;AAC9F,SAAO,kBAAkB,QAAQ,OAAO,MAAM;AAChD;AAGO,SAAS,gCACd,YACA,WAAmB,yBACX;AACR,QAAM,UAAU,YAAY,KAAK;AACjC,MAAI,CAAC,QAAS,QAAO;AACrB,MAAI,uBAAuB,OAAO,EAAG,QAAO;AAC5C,MAAI,YAAY,QAAS,QAAO;AAChC,SAAO;AACT;AAGO,SAAS,qBAAqB,WAA+B;AAClE,QAAM,SAAS,CAAC,GAAG,IAAI,IAAI,UAAU,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,YAAY,CAAC,EAAE,OAAO,OAAO,CAAC,CAAC;AACxF,MAAI,OAAO,SAAS,uBAAuB,GAAG;AAC5C,WAAO,CAAC,GAAG,IAAI,IAAI,OAAO,IAAI,CAAC,MAAO,uBAAuB,CAAC,IAAI,0BAA0B,CAAE,CAAC,CAAC;AAAA,EAClG;AACA,MAAI,OAAO,MAAM,CAAC,MAAM,uBAAuB,CAAC,CAAC,GAAG;AAClD,WAAO,CAAC,uBAAuB;AAAA,EACjC;AACA,SAAO;AACT;",
6
+ "names": ["homedir", "path", "path", "homedir"]
7
+ }
package/dist/status.d.ts CHANGED
@@ -184,6 +184,7 @@ export declare function computeAttention(input: {
184
184
  finalResult: unknown;
185
185
  firstEventAt: string | null;
186
186
  stdoutBytes: number;
187
+ stderrBytes?: number;
187
188
  heartbeatBytes: number;
188
189
  lastActivityAt: string | null;
189
190
  heartbeatBlocker: string | null;
@@ -196,6 +197,9 @@ export declare function computeAttention(input: {
196
197
  landingContract?: WorkerLandingContract | null;
197
198
  prUrl?: string | null;
198
199
  localOnly?: boolean;
200
+ taskId?: string | null;
201
+ agentOsId?: string | null;
202
+ reconcileReason?: string | null;
199
203
  }): WorkerAttention;
200
204
  export declare function computeWorkerStatus(worker: HarnessWorkerRecord, options?: WorkerStatusOptions): RawHarnessWorkerStatus;
201
205
  export declare function isFinishedWorkerStatus(status: RawHarnessWorkerStatus): boolean;
package/dist/worker-persona-catalog.js CHANGED
@@ -86,14 +86,14 @@ var WORKER_PERSONA_CATALOG = [
86
86
  {
87
87
  slug: "lorentz",
88
88
  displayName: "Lorentz",
89
- description: "Review / testing \u2014 pre-landing and post-landing verification, report + deep review.",
89
+ description: "Deep/adversarial review lane expert for risk, correctness, and safety gates. Run adversarial review and validation gating.",
90
90
  dispatchLane: "review",
91
91
  defaultRoleLane: "report_reviewer"
92
92
  },
93
93
  {
94
94
  slug: "dalton",
95
95
  displayName: "Dalton",
96
- description: "Landing / merge execution \u2014 merge-ready PR landing and merge evidence only (no implementation).",
96
+ description: "Landing-only \u2014 merge-ready handoff and final verification evidence; no implementation ownership.",
97
97
  dispatchLane: "landing",
98
98
  defaultRoleLane: "implementer"
99
99
  }
package/dist/worker-persona-catalog.js.map CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "version": 3,
3
3
  "sources": ["../src/worker-persona-catalog.ts"],
4
- "sourcesContent": ["// Canonical Command Center worker persona catalog \u2014 single source of truth for\r\n// harness dispatch lanes, default plan role lanes, and persona slug validation.\r\n// AgentOS re-exports this module; do not duplicate lane maps elsewhere.\r\n\r\nexport const WORKER_PERSONA_DISPATCH_LANES = [\r\n \"implementation\",\r\n \"review\",\r\n \"landing\",\r\n] as const;\r\n\r\nexport type WorkerPersonaDispatchLane = (typeof WORKER_PERSONA_DISPATCH_LANES)[number];\r\n\r\nexport const WORKER_PERSONA_DEFAULT_ROLE_LANES = [\r\n \"plan_author\",\r\n \"implementer\",\r\n \"report_reviewer\",\r\n \"deep_reviewer\",\r\n \"runtime_verifier\",\r\n \"system\",\r\n] as const;\r\n\r\nexport type WorkerPersonaDefaultRoleLane = (typeof WORKER_PERSONA_DEFAULT_ROLE_LANES)[number];\r\n\r\nexport interface WorkerPersonaCatalogEntry {\r\n slug: string;\r\n displayName: string;\r\n description: string;\r\n /** Harness dispatch lane reserved for this persona (null = orchestration / no dispatch). */\r\n dispatchLane: WorkerPersonaDispatchLane | null;\r\n /** Default plan progress role when enriching harness tasks. */\r\n defaultRoleLane: WorkerPersonaDefaultRoleLane;\r\n}\r\n\r\nexport const WORKER_PERSONA_CATALOG: readonly WorkerPersonaCatalogEntry[] = [\r\n {\r\n slug: \"ghost\",\r\n displayName: \"Ghost\",\r\n description: \"Orchestration \u2014 coordinates lanes, handoffs, and operator decisions.\",\r\n dispatchLane: null,\r\n defaultRoleLane: \"system\",\r\n },\r\n {\r\n slug: \"astra\",\r\n displayName: \"Astra\",\r\n description: \"Planning \u2014 plan authoring, milestones, and operational flow design.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"plan_author\",\r\n },\r\n {\r\n slug: \"rhea\",\r\n displayName: \"Rhea\",\r\n description: \"Runtime / control-plane implementation \u2014 harness, dispatch, and AgentOS plumbing.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"mnemo\",\r\n displayName: \"Mnemo\",\r\n description: \"Memory-quality implementation \u2014 MARM lanes, retrieval hygiene, and consolidation.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"sentinel\",\r\n displayName: \"Sentinel\",\r\n description: \"Security / privacy implementation and security verification gates.\",\r\n dispatchLane: \"review\",\r\n defaultRoleLane: \"deep_reviewer\",\r\n },\r\n {\r\n slug: \"pixel\",\r\n displayName: \"Pixel\",\r\n description: \"Frontend \u2014 Command Center UI, dashboards, and client surfaces.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"schema\",\r\n displayName: \"Schema\",\r\n description: \"Data / migrations \u2014 Prisma schema, seeds, and persistence contracts.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"atlas\",\r\n displayName: \"Atlas\",\r\n description: \"Infra / reliability \u2014 deploy pipelines, observability, and runtime health.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"runtime_verifier\",\r\n },\r\n {\r\n slug: \"bridge\",\r\n displayName: \"Bridge\",\r\n description: \"Integrations / MCP \u2014 tool manifests, OpenClaw bridges, and cross-service wiring.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"catalyst\",\r\n displayName: \"Catalyst\",\r\n description: \"Product / domain \u2014 business rules, domain packs, and feature semantics.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"lorentz\",\r\n displayName: \"Lorentz\",\r\n description: \"Review / testing \u2014 pre-landing and post-landing verification, report + deep review.\",\r\n dispatchLane: \"review\",\r\n defaultRoleLane: \"report_reviewer\",\r\n },\r\n {\r\n slug: \"dalton\",\r\n displayName: \"Dalton\",\r\n description: \"Landing / merge execution \u2014 merge-ready PR landing and merge evidence only (no implementation).\",\r\n dispatchLane: \"landing\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n] as const;\r\n\r\nexport type WorkerPersonaCatalogSlug = (typeof WORKER_PERSONA_CATALOG)[number][\"slug\"];\r\n\r\nconst BY_SLUG = new Map(WORKER_PERSONA_CATALOG.map((entry) => [entry.slug, entry]));\r\n\r\nexport function getWorkerPersonaCatalogEntry(\r\n slug: string | null | undefined,\r\n): WorkerPersonaCatalogEntry | null {\r\n if (!slug) return null;\r\n const key = slug.trim().toLowerCase();\r\n return BY_SLUG.get(key) ?? null;\r\n}\r\n\r\n/** Dispatch lane reserved for a persona; null when orchestration-only or unknown. */\r\nexport function getPersonaDispatchLane(\r\n slug: string | null | undefined,\r\n): WorkerPersonaDispatchLane | null {\r\n return getWorkerPersonaCatalogEntry(slug)?.dispatchLane ?? null;\r\n}\r\n\r\nexport function getPersonaDefaultRoleLane(\r\n slug: string | null | undefined,\r\n): WorkerPersonaDefaultRoleLane | null {\r\n return getWorkerPersonaCatalogEntry(slug)?.defaultRoleLane ?? null;\r\n}\r\n\r\nexport function isKnownWorkerPersonaSlug(slug: string | null | undefined): boolean {\r\n if (!slug) return false;\r\n return BY_SLUG.has(slug.trim().toLowerCase());\r\n}\r\n\r\n/** Personas whose harness dispatch lane is `review` (derived \u2014 do not hardcode slugs). */\r\nexport function workerPersonaReviewSlugs(): readonly WorkerPersonaCatalogSlug[] {\r\n return WORKER_PERSONA_CATALOG.filter((entry) => entry.dispatchLane === \"review\").map(\r\n (entry) => entry.slug,\r\n );\r\n}\r\n\r\n/** Personas whose harness dispatch lane is `landing` (derived \u2014 do not hardcode slugs). */\r\nexport function workerPersonaLandingSlugs(): readonly WorkerPersonaCatalogSlug[] {\r\n return WORKER_PERSONA_CATALOG.filter((entry) => entry.dispatchLane === \"landing\").map(\r\n (entry) => entry.slug,\r\n );\r\n}\r\n"],
5
- "mappings": ";AAIO,IAAM,gCAAgC;AAAA,EAC3C;AAAA,EACA;AAAA,EACA;AACF;AAIO,IAAM,oCAAoC;AAAA,EAC/C;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF;AAcO,IAAM,yBAA+D;AAAA,EAC1E;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AACF;AAIA,IAAM,UAAU,IAAI,IAAI,uBAAuB,IAAI,CAAC,UAAU,CAAC,MAAM,MAAM,KAAK,CAAC,CAAC;AAE3E,SAAS,6BACd,MACkC;AAClC,MAAI,CAAC,KAAM,QAAO;AAClB,QAAM,MAAM,KAAK,KAAK,EAAE,YAAY;AACpC,SAAO,QAAQ,IAAI,GAAG,KAAK;AAC7B;AAGO,SAAS,uBACd,MACkC;AAClC,SAAO,6BAA6B,IAAI,GAAG,gBAAgB;AAC7D;AAEO,SAAS,0BACd,MACqC;AACrC,SAAO,6BAA6B,IAAI,GAAG,mBAAmB;AAChE;AAEO,SAAS,yBAAyB,MAA0C;AACjF,MAAI,CAAC,KAAM,QAAO;AAClB,SAAO,QAAQ,IAAI,KAAK,KAAK,EAAE,YAAY,CAAC;AAC9C;AAGO,SAAS,2BAAgE;AAC9E,SAAO,uBAAuB,OAAO,CAAC,UAAU,MAAM,iBAAiB,QAAQ,EAAE;AAAA,IAC/E,CAAC,UAAU,MAAM;AAAA,EACnB;AACF;AAGO,SAAS,4BAAiE;AAC/E,SAAO,uBAAuB,OAAO,CAAC,UAAU,MAAM,iBAAiB,SAAS,EAAE;AAAA,IAChF,CAAC,UAAU,MAAM;AAAA,EACnB;AACF;",
4
+ "sourcesContent": ["// Canonical Command Center worker persona catalog \u2014 single source of truth for\r\n// harness dispatch lanes, default plan role lanes, and persona slug validation.\r\n// AgentOS re-exports this module; do not duplicate lane maps elsewhere.\r\n\r\nexport const WORKER_PERSONA_DISPATCH_LANES = [\r\n \"implementation\",\r\n \"review\",\r\n \"landing\",\r\n] as const;\r\n\r\nexport type WorkerPersonaDispatchLane = (typeof WORKER_PERSONA_DISPATCH_LANES)[number];\r\n\r\nexport const WORKER_PERSONA_DEFAULT_ROLE_LANES = [\r\n \"plan_author\",\r\n \"implementer\",\r\n \"report_reviewer\",\r\n \"deep_reviewer\",\r\n \"runtime_verifier\",\r\n \"system\",\r\n] as const;\r\n\r\nexport type WorkerPersonaDefaultRoleLane = (typeof WORKER_PERSONA_DEFAULT_ROLE_LANES)[number];\r\n\r\nexport interface WorkerPersonaCatalogEntry {\r\n slug: string;\r\n displayName: string;\r\n description: string;\r\n /** Harness dispatch lane reserved for this persona (null = orchestration / no dispatch). */\r\n dispatchLane: WorkerPersonaDispatchLane | null;\r\n /** Default plan progress role when enriching harness tasks. */\r\n defaultRoleLane: WorkerPersonaDefaultRoleLane;\r\n}\r\n\r\nexport const WORKER_PERSONA_CATALOG: readonly WorkerPersonaCatalogEntry[] = [\r\n {\r\n slug: \"ghost\",\r\n displayName: \"Ghost\",\r\n description: \"Orchestration \u2014 coordinates lanes, handoffs, and operator decisions.\",\r\n dispatchLane: null,\r\n defaultRoleLane: \"system\",\r\n },\r\n {\r\n slug: \"astra\",\r\n displayName: \"Astra\",\r\n description: \"Planning \u2014 plan authoring, milestones, and operational flow design.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"plan_author\",\r\n },\r\n {\r\n slug: \"rhea\",\r\n displayName: \"Rhea\",\r\n description: \"Runtime / control-plane implementation \u2014 harness, dispatch, and AgentOS plumbing.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"mnemo\",\r\n displayName: \"Mnemo\",\r\n description: \"Memory-quality implementation \u2014 MARM lanes, retrieval hygiene, and consolidation.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"sentinel\",\r\n displayName: \"Sentinel\",\r\n description: \"Security / privacy implementation and security verification gates.\",\r\n dispatchLane: \"review\",\r\n defaultRoleLane: \"deep_reviewer\",\r\n },\r\n {\r\n slug: \"pixel\",\r\n displayName: \"Pixel\",\r\n description: \"Frontend \u2014 Command Center UI, dashboards, and client surfaces.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"schema\",\r\n displayName: \"Schema\",\r\n description: \"Data / migrations \u2014 Prisma schema, seeds, and persistence contracts.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"atlas\",\r\n displayName: \"Atlas\",\r\n description: \"Infra / reliability \u2014 deploy pipelines, observability, and runtime health.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"runtime_verifier\",\r\n },\r\n {\r\n slug: \"bridge\",\r\n displayName: \"Bridge\",\r\n description: \"Integrations / MCP \u2014 tool manifests, OpenClaw bridges, and cross-service wiring.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"catalyst\",\r\n displayName: \"Catalyst\",\r\n description: \"Product / domain \u2014 business rules, domain packs, and feature semantics.\",\r\n dispatchLane: \"implementation\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n {\r\n slug: \"lorentz\",\r\n displayName: \"Lorentz\",\r\n description:\r\n \"Deep/adversarial review lane expert for risk, correctness, and safety gates. Run adversarial review and validation gating.\",\r\n dispatchLane: \"review\",\r\n defaultRoleLane: \"report_reviewer\",\r\n },\r\n {\r\n slug: \"dalton\",\r\n displayName: \"Dalton\",\r\n description:\r\n \"Landing-only \u2014 merge-ready handoff and final verification evidence; no implementation ownership.\",\r\n dispatchLane: \"landing\",\r\n defaultRoleLane: \"implementer\",\r\n },\r\n] as const;\r\n\r\nexport type WorkerPersonaCatalogSlug = (typeof WORKER_PERSONA_CATALOG)[number][\"slug\"];\r\n\r\nconst BY_SLUG = new Map(WORKER_PERSONA_CATALOG.map((entry) => [entry.slug, entry]));\r\n\r\nexport function getWorkerPersonaCatalogEntry(\r\n slug: string | null | undefined,\r\n): WorkerPersonaCatalogEntry | null {\r\n if (!slug) return null;\r\n const key = slug.trim().toLowerCase();\r\n return BY_SLUG.get(key) ?? null;\r\n}\r\n\r\n/** Dispatch lane reserved for a persona; null when orchestration-only or unknown. */\r\nexport function getPersonaDispatchLane(\r\n slug: string | null | undefined,\r\n): WorkerPersonaDispatchLane | null {\r\n return getWorkerPersonaCatalogEntry(slug)?.dispatchLane ?? null;\r\n}\r\n\r\nexport function getPersonaDefaultRoleLane(\r\n slug: string | null | undefined,\r\n): WorkerPersonaDefaultRoleLane | null {\r\n return getWorkerPersonaCatalogEntry(slug)?.defaultRoleLane ?? null;\r\n}\r\n\r\nexport function isKnownWorkerPersonaSlug(slug: string | null | undefined): boolean {\r\n if (!slug) return false;\r\n return BY_SLUG.has(slug.trim().toLowerCase());\r\n}\r\n\r\n/** Personas whose harness dispatch lane is `review` (derived \u2014 do not hardcode slugs). */\r\nexport function workerPersonaReviewSlugs(): readonly WorkerPersonaCatalogSlug[] {\r\n return WORKER_PERSONA_CATALOG.filter((entry) => entry.dispatchLane === \"review\").map(\r\n (entry) => entry.slug,\r\n );\r\n}\r\n\r\n/** Personas whose harness dispatch lane is `landing` (derived \u2014 do not hardcode slugs). */\r\nexport function workerPersonaLandingSlugs(): readonly WorkerPersonaCatalogSlug[] {\r\n return WORKER_PERSONA_CATALOG.filter((entry) => entry.dispatchLane === \"landing\").map(\r\n (entry) => entry.slug,\r\n );\r\n}\r\n"],
5
+ "mappings": ";AAIO,IAAM,gCAAgC;AAAA,EAC3C;AAAA,EACA;AAAA,EACA;AACF;AAIO,IAAM,oCAAoC;AAAA,EAC/C;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF;AAcO,IAAM,yBAA+D;AAAA,EAC1E;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aAAa;AAAA,IACb,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aACE;AAAA,IACF,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,aAAa;AAAA,IACb,aACE;AAAA,IACF,cAAc;AAAA,IACd,iBAAiB;AAAA,EACnB;AACF;AAIA,IAAM,UAAU,IAAI,IAAI,uBAAuB,IAAI,CAAC,UAAU,CAAC,MAAM,MAAM,KAAK,CAAC,CAAC;AAE3E,SAAS,6BACd,MACkC;AAClC,MAAI,CAAC,KAAM,QAAO;AAClB,QAAM,MAAM,KAAK,KAAK,EAAE,YAAY;AACpC,SAAO,QAAQ,IAAI,GAAG,KAAK;AAC7B;AAGO,SAAS,uBACd,MACkC;AAClC,SAAO,6BAA6B,IAAI,GAAG,gBAAgB;AAC7D;AAEO,SAAS,0BACd,MACqC;AACrC,SAAO,6BAA6B,IAAI,GAAG,mBAAmB;AAChE;AAEO,SAAS,yBAAyB,MAA0C;AACjF,MAAI,CAAC,KAAM,QAAO;AAClB,SAAO,QAAQ,IAAI,KAAK,KAAK,EAAE,YAAY,CAAC;AAC9C;AAGO,SAAS,2BAAgE;AAC9E,SAAO,uBAAuB,OAAO,CAAC,UAAU,MAAM,iBAAiB,QAAQ,EAAE;AAAA,IAC/E,CAAC,UAAU,MAAM;AAAA,EACnB;AACF;AAGO,SAAS,4BAAiE;AAC/E,SAAO,uBAAuB,OAAO,CAAC,UAAU,MAAM,iBAAiB,SAAS,EAAE;AAAA,IAChF,CAAC,UAAU,MAAM;AAAA,EACnB;AACF;",
6
6
  "names": []
7
7
  }
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@kynver-app/runtime",
3
- "version": "0.1.103",
3
+ "version": "0.1.106",
4
4
  "description": "Kynver AgentOS local execution runtime and CLI",
5
5
  "type": "module",
6
6
  "main": "./dist/index.js",
@@ -19,14 +19,74 @@
19
19
  "import": "./dist/worker-persona-catalog.js",
20
20
  "default": "./dist/worker-persona-catalog.js"
21
21
  },
22
- "./package.json": "./package.json"
22
+ "./server/monitor": {
23
+ "types": "./dist/server/monitor.d.ts",
24
+ "import": "./dist/server/monitor.js",
25
+ "default": "./dist/server/monitor.js"
26
+ },
27
+ "./server/landing": {
28
+ "types": "./dist/server/landing.d.ts",
29
+ "import": "./dist/server/landing.js",
30
+ "default": "./dist/server/landing.js"
31
+ },
32
+ "./server/worker-policy": {
33
+ "types": "./dist/server/worker-policy.d.ts",
34
+ "import": "./dist/server/worker-policy.js",
35
+ "default": "./dist/server/worker-policy.js"
36
+ },
37
+ "./server/orchestration": {
38
+ "types": "./dist/server/orchestration.d.ts",
39
+ "import": "./dist/server/orchestration.js",
40
+ "default": "./dist/server/orchestration.js"
41
+ },
42
+ "./server/heavy-verification": {
43
+ "types": "./dist/server/heavy-verification.d.ts",
44
+ "import": "./dist/server/heavy-verification.js",
45
+ "default": "./dist/server/heavy-verification.js"
46
+ },
47
+ "./server/memory-cost": {
48
+ "types": "./dist/server/memory-cost.d.ts",
49
+ "import": "./dist/server/memory-cost.js",
50
+ "default": "./dist/server/memory-cost.js"
51
+ },
52
+ "./server/pr-evidence": {
53
+ "types": "./dist/server/pr-evidence.d.ts",
54
+ "import": "./dist/server/pr-evidence.js",
55
+ "default": "./dist/server/pr-evidence.js"
56
+ },
57
+ "./server/default-repo": {
58
+ "types": "./dist/server/default-repo.d.ts",
59
+ "import": "./dist/server/default-repo.js",
60
+ "default": "./dist/server/default-repo.js"
61
+ },
62
+ "./server/cleanup": {
63
+ "types": "./dist/server/cleanup.d.ts",
64
+ "import": "./dist/server/cleanup.js",
65
+ "default": "./dist/server/cleanup.js"
66
+ },
67
+ "./package.json": "./package.json",
68
+ "./server/repo-search": {
69
+ "types": "./dist/server/repo-search.d.ts",
70
+ "import": "./dist/server/repo-search.js",
71
+ "default": "./dist/server/repo-search.js"
72
+ },
73
+ "./server/harness-notice": {
74
+ "types": "./dist/server/harness-notice.d.ts",
75
+ "import": "./dist/server/harness-notice.js",
76
+ "default": "./dist/server/harness-notice.js"
77
+ },
78
+ "./server/memory-cost-enforce": {
79
+ "types": "./dist/server/memory-cost-enforce.d.ts",
80
+ "import": "./dist/server/memory-cost-enforce.js",
81
+ "default": "./dist/server/memory-cost-enforce.js"
82
+ }
23
83
  },
24
84
  "files": [
25
85
  "dist/**",
26
86
  "README.md"
27
87
  ],
28
88
  "scripts": {
29
- "build": "esbuild src/cli.ts src/index.ts src/worker-persona-catalog.ts --bundle --platform=node --format=esm --packages=external --outdir=dist --sourcemap && tsc -p tsconfig.json --emitDeclarationOnly && node scripts/chmod-cli-bin.mjs",
89
+ "build": "esbuild src/cli.ts src/index.ts src/worker-persona-catalog.ts src/server/monitor.ts src/server/landing.ts src/server/worker-policy.ts src/server/orchestration.ts src/server/heavy-verification.ts src/server/memory-cost.ts src/server/pr-evidence.ts src/server/default-repo.ts src/server/cleanup.ts src/server/repo-search.ts src/server/harness-notice.ts src/server/memory-cost-enforce.ts --bundle --platform=node --format=esm --packages=external --outbase=src --outdir=dist --sourcemap && tsc -p tsconfig.json --emitDeclarationOnly && node scripts/chmod-cli-bin.mjs",
30
90
  "typecheck": "tsc -p tsconfig.json --noEmit",
31
91
  "test": "vitest run --config vitest.config.ts",
32
92
  "prepublishOnly": "node ../../scripts/npm-publish-guard.mjs"