@lumenflow/cli 3.19.0 → 3.20.0

package/packs/sidekick/manifest.ts

@@ -34,26 +34,33 @@ const SIDEKICK_SCOPE_WRITE: PathScope = {
 };
 
 // ---------------------------------------------------------------------------
-// 16-tool contract (per strategy: 5 groups)
+// Sidekick tool contract
 // ---------------------------------------------------------------------------
 
 const TOOL_PERMISSIONS_MAP = {
-  // Task tools (4)
+  // Task tools (6)
   'task:create': TOOL_PERMISSIONS.WRITE,
   'task:list': TOOL_PERMISSIONS.READ,
+  'task:update': TOOL_PERMISSIONS.WRITE,
+  'task:cancel': TOOL_PERMISSIONS.ADMIN,
   'task:complete': TOOL_PERMISSIONS.WRITE,
   'task:schedule': TOOL_PERMISSIONS.WRITE,
-  // Memory tools (3)
+  // Memory tools (4)
   'memory:store': TOOL_PERMISSIONS.WRITE,
   'memory:recall': TOOL_PERMISSIONS.READ,
-  'memory:forget': TOOL_PERMISSIONS.WRITE,
-  // Channel tools (3)
+  'memory:update': TOOL_PERMISSIONS.WRITE,
+  'memory:forget': TOOL_PERMISSIONS.ADMIN,
+  // Channel tools (5)
   'channel:configure': TOOL_PERMISSIONS.WRITE,
+  'channel:list': TOOL_PERMISSIONS.READ,
+  'channel:delete': TOOL_PERMISSIONS.ADMIN,
   'channel:send': TOOL_PERMISSIONS.WRITE,
   'channel:receive': TOOL_PERMISSIONS.READ,
-  // Routine tools (3)
+  // Routine tools (5)
   'routine:create': TOOL_PERMISSIONS.WRITE,
   'routine:list': TOOL_PERMISSIONS.READ,
+  'routine:update': TOOL_PERMISSIONS.WRITE,
+  'routine:delete': TOOL_PERMISSIONS.ADMIN,
   'routine:run': TOOL_PERMISSIONS.READ, // plan-only, no execution
   // System tools (3)
   'sidekick:init': TOOL_PERMISSIONS.WRITE,
@@ -68,20 +75,28 @@ const MEMORY_TOOLS_ENTRY = 'tool-impl/memory-tools.ts';
 const CHANNEL_TOOLS_ENTRY = 'tool-impl/channel-tools.ts';
 const ROUTINE_TOOLS_ENTRY = 'tool-impl/routine-tools.ts';
 const SYSTEM_TOOLS_ENTRY = 'tool-impl/system-tools.ts';
+const POLICY_FACTORY_ENTRY = 'policy-factory.ts#createSidekickPolicyFactory';
 
 const TOOL_ENTRIES: Record<SidekickToolName, string> = {
   'task:create': TASK_TOOLS_ENTRY,
   'task:list': TASK_TOOLS_ENTRY,
+  'task:update': TASK_TOOLS_ENTRY,
+  'task:cancel': TASK_TOOLS_ENTRY,
   'task:complete': TASK_TOOLS_ENTRY,
   'task:schedule': TASK_TOOLS_ENTRY,
   'memory:store': MEMORY_TOOLS_ENTRY,
   'memory:recall': MEMORY_TOOLS_ENTRY,
+  'memory:update': MEMORY_TOOLS_ENTRY,
   'memory:forget': MEMORY_TOOLS_ENTRY,
   'channel:configure': CHANNEL_TOOLS_ENTRY,
+  'channel:list': CHANNEL_TOOLS_ENTRY,
+  'channel:delete': CHANNEL_TOOLS_ENTRY,
   'channel:send': CHANNEL_TOOLS_ENTRY,
   'channel:receive': CHANNEL_TOOLS_ENTRY,
   'routine:create': ROUTINE_TOOLS_ENTRY,
   'routine:list': ROUTINE_TOOLS_ENTRY,
+  'routine:update': ROUTINE_TOOLS_ENTRY,
+  'routine:delete': ROUTINE_TOOLS_ENTRY,
   'routine:run': ROUTINE_TOOLS_ENTRY,
   'sidekick:init': SYSTEM_TOOLS_ENTRY,
   'sidekick:status': SYSTEM_TOOLS_ENTRY,
@@ -109,7 +124,7 @@ const TOOL_INPUT_SCHEMAS: Record<SidekickToolName, Record<string, unknown>> = {
   'task:list': {
     type: 'object',
     properties: {
-      status: { type: 'string', enum: ['pending', 'done'] },
+      status: { type: 'string', enum: ['pending', 'done', 'canceled'] },
       priority: { type: 'string', enum: ['P0', 'P1', 'P2', 'P3'] },
       tags: { type: 'array', items: { type: 'string' } },
       search: { type: 'string' },
@@ -118,6 +133,30 @@ const TOOL_INPUT_SCHEMAS: Record<SidekickToolName, Record<string, unknown>> = {
     },
     additionalProperties: false,
   },
+  'task:update': {
+    type: 'object',
+    properties: {
+      id: { type: 'string', minLength: 1 },
+      title: { type: 'string', minLength: 1 },
+      description: { type: 'string' },
+      priority: { type: 'string', enum: ['P0', 'P1', 'P2', 'P3'] },
+      tags: { type: 'array', items: { type: 'string' } },
+      due_at: { type: 'string' },
+      cron: { type: 'string' },
+      dry_run: { type: 'boolean' },
+    },
+    required: ['id'],
+    additionalProperties: false,
+  },
+  'task:cancel': {
+    type: 'object',
+    properties: {
+      id: { type: 'string', minLength: 1 },
+      dry_run: { type: 'boolean' },
+    },
+    required: ['id'],
+    additionalProperties: false,
+  },
   'task:complete': {
     type: 'object',
     properties: {
@@ -169,6 +208,18 @@ const TOOL_INPUT_SCHEMAS: Record<SidekickToolName, Record<string, unknown>> = {
     required: ['id'],
     additionalProperties: false,
   },
+  'memory:update': {
+    type: 'object',
+    properties: {
+      id: { type: 'string', minLength: 1 },
+      type: { type: 'string', enum: ['fact', 'preference', 'note', 'snippet'] },
+      content: { type: 'string', minLength: 1 },
+      tags: { type: 'array', items: { type: 'string' } },
+      dry_run: { type: 'boolean' },
+    },
+    required: ['id'],
+    additionalProperties: false,
+  },
   'channel:configure': {
     type: 'object',
     properties: {
@@ -179,6 +230,20 @@ const TOOL_INPUT_SCHEMAS: Record<SidekickToolName, Record<string, unknown>> = {
     required: ['name'],
     additionalProperties: false,
   },
+  'channel:list': {
+    type: 'object',
+    properties: {},
+    additionalProperties: false,
+  },
+  'channel:delete': {
+    type: 'object',
+    properties: {
+      id: { type: 'string', minLength: 1 },
+      dry_run: { type: 'boolean' },
+    },
+    required: ['id'],
+    additionalProperties: false,
+  },
   'channel:send': {
     type: 'object',
     properties: {
@@ -236,6 +301,40 @@ const TOOL_INPUT_SCHEMAS: Record<SidekickToolName, Record<string, unknown>> = {
     },
     additionalProperties: false,
   },
+  'routine:update': {
+    type: 'object',
+    properties: {
+      id: { type: 'string', minLength: 1 },
+      name: { type: 'string', minLength: 1 },
+      steps: {
+        type: 'array',
+        minItems: 1,
+        items: {
+          type: 'object',
+          properties: {
+            tool: { type: 'string', minLength: 1 },
+            input: { type: 'object', additionalProperties: true },
+          },
+          required: ['tool'],
+          additionalProperties: false,
+        },
+      },
+      cron: { type: 'string' },
+      enabled: { type: 'boolean' },
+      dry_run: { type: 'boolean' },
+    },
+    required: ['id'],
+    additionalProperties: false,
+  },
+  'routine:delete': {
+    type: 'object',
+    properties: {
+      id: { type: 'string', minLength: 1 },
+      dry_run: { type: 'boolean' },
+    },
+    required: ['id'],
+    additionalProperties: false,
+  },
   'routine:run': {
     type: 'object',
     properties: {
@@ -310,6 +409,7 @@ const SIDEKICK_MANIFEST_TEMPLATE = {
   id: SIDEKICK_PACK_ID,
   version: SIDEKICK_PACK_VERSION,
   config_key: SIDEKICK_PACK_ID,
+  policy_factory: POLICY_FACTORY_ENTRY,
   task_types: ['sidekick'],
   tools: SIDEKICK_TOOL_NAMES.map((name) => buildTool(name)),
   policies: [

package/packs/sidekick/manifest.yaml

@@ -1,6 +1,7 @@
 id: sidekick
 version: 0.1.0
 config_key: sidekick
+policy_factory: policy-factory.ts#createSidekickPolicyFactory
 task_types:
   - sidekick
 tools:
@@ -49,7 +50,7 @@ tools:
       properties:
         status:
           type: string
-          enum: [pending, done]
+          enum: [pending, done, canceled]
         priority:
           type: string
           enum: [P0, P1, P2, P3]
@@ -67,6 +68,67 @@ tools:
     output_schema:
       type: object
       additionalProperties: true
+  - name: task:update
+    entry: tool-impl/task-tools.ts
+    permission: write
+    required_scopes:
+      - type: path
+        pattern: .sidekick/**
+        access: read
+      - type: path
+        pattern: .sidekick/**
+        access: write
+    input_schema:
+      type: object
+      properties:
+        id:
+          type: string
+          minLength: 1
+        title:
+          type: string
+          minLength: 1
+        description:
+          type: string
+        priority:
+          type: string
+          enum: [P0, P1, P2, P3]
+        tags:
+          type: array
+          items: { type: string }
+        due_at:
+          type: string
+        cron:
+          type: string
+        dry_run:
+          type: boolean
+      required: [id]
+      additionalProperties: false
+    output_schema:
+      type: object
+      additionalProperties: true
+  - name: task:cancel
+    entry: tool-impl/task-tools.ts
+    permission: admin
+    required_scopes:
+      - type: path
+        pattern: .sidekick/**
+        access: read
+      - type: path
+        pattern: .sidekick/**
+        access: write
+    input_schema:
+      type: object
+      properties:
+        id:
+          type: string
+          minLength: 1
+        dry_run:
+          type: boolean
+      required: [id]
+      additionalProperties: false
+    output_schema:
+      type: object
+      additionalProperties: true
   - name: task:complete
     entry: tool-impl/task-tools.ts
     permission: write
@@ -174,6 +236,29 @@ tools:
       type: object
       additionalProperties: true
   - name: memory:forget
+    entry: tool-impl/memory-tools.ts
+    permission: admin
+    required_scopes:
+      - type: path
+        pattern: .sidekick/**
+        access: read
+      - type: path
+        pattern: .sidekick/**
+        access: write
+    input_schema:
+      type: object
+      properties:
+        id:
+          type: string
+          minLength: 1
+        dry_run:
+          type: boolean
+      required: [id]
+      additionalProperties: false
+    output_schema:
+      type: object
+      additionalProperties: true
+  - name: memory:update
     entry: tool-impl/memory-tools.ts
     permission: write
     required_scopes:
@@ -189,6 +274,15 @@ tools:
         id:
           type: string
           minLength: 1
+        type:
+          type: string
+          enum: [fact, preference, note, snippet]
+        content:
+          type: string
+          minLength: 1
+        tags:
+          type: array
+          items: { type: string }
         dry_run:
           type: boolean
       required: [id]
@@ -222,6 +316,43 @@ tools:
     output_schema:
       type: object
       additionalProperties: true
+  - name: channel:list
+    entry: tool-impl/channel-tools.ts
+    permission: read
+    required_scopes:
+      - type: path
+        pattern: .sidekick/**
+        access: read
+    input_schema:
+      type: object
+      properties: {}
+      additionalProperties: false
+    output_schema:
+      type: object
+      additionalProperties: true
+  - name: channel:delete
+    entry: tool-impl/channel-tools.ts
+    permission: admin
+    required_scopes:
+      - type: path
+        pattern: .sidekick/**
+        access: read
+      - type: path
+        pattern: .sidekick/**
+        access: write
+    input_schema:
+      type: object
+      properties:
+        id:
+          type: string
+          minLength: 1
+        dry_run:
+          type: boolean
+      required: [id]
+      additionalProperties: false
+    output_schema:
+      type: object
+      additionalProperties: true
   - name: channel:send
     entry: tool-impl/channel-tools.ts
     permission: write
@@ -342,6 +473,73 @@ tools:
     output_schema:
       type: object
       additionalProperties: true
+  - name: routine:update
+    entry: tool-impl/routine-tools.ts
+    permission: write
+    required_scopes:
+      - type: path
+        pattern: .sidekick/**
+        access: read
+      - type: path
+        pattern: .sidekick/**
+        access: write
+    input_schema:
+      type: object
+      properties:
+        id:
+          type: string
+          minLength: 1
+        name:
+          type: string
+          minLength: 1
+        steps:
+          type: array
+          minItems: 1
+          items:
+            type: object
+            properties:
+              tool:
+                type: string
+                minLength: 1
+              input:
+                type: object
+                additionalProperties: true
+            required: [tool]
+            additionalProperties: false
+        cron:
+          type: string
+        enabled:
+          type: boolean
+        dry_run:
+          type: boolean
+      required: [id]
+      additionalProperties: false
+    output_schema:
+      type: object
+      additionalProperties: true
+  - name: routine:delete
+    entry: tool-impl/routine-tools.ts
+    permission: admin
+    required_scopes:
+      - type: path
+        pattern: .sidekick/**
+        access: read
+      - type: path
+        pattern: .sidekick/**
+        access: write
+    input_schema:
+      type: object
+      properties:
+        id:
+          type: string
+          minLength: 1
+        dry_run:
+          type: boolean
+      required: [id]
+      additionalProperties: false
+    output_schema:
+      type: object
+      additionalProperties: true
   - name: routine:run
     entry: tool-impl/routine-tools.ts
     permission: read

package/packs/sidekick/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@lumenflow/packs-sidekick",
-  "version": "3.19.0",
+  "version": "3.20.0",
   "description": "Sidekick personal assistant pack for LumenFlow — 16 tools for task management, typed memory, channels, routines, and audit",
   "keywords": [
     "lumenflow",
@@ -50,6 +50,9 @@
     "test": "vitest run",
     "typecheck": "tsc --noEmit"
   },
+  "dependencies": {
+    "@lumenflow/kernel": "workspace:^"
+  },
   "devDependencies": {
     "typescript": "^5.9.3",
     "vitest": "^4.0.18"

package/packs/sidekick/policy-factory.ts

@@ -0,0 +1,38 @@
+// Copyright (c) 2026 Hellmai Ltd
+// SPDX-License-Identifier: AGPL-3.0-only
+
+import { POLICY_TRIGGERS, type PackPolicyFactory, type PolicyRule } from '@lumenflow/kernel';
+import { SIDEKICK_POLICY_ID_PREFIX } from './constants.js';
+
+export const SIDEKICK_APPROVAL_REQUIRED_TOOL_NAMES = [
+  'task:cancel',
+  'memory:forget',
+  'channel:delete',
+  'routine:delete',
+] as const;
+
+const SIDEKICK_APPROVAL_REQUIRED_TOOL_NAME_SET = new Set<string>(
+  SIDEKICK_APPROVAL_REQUIRED_TOOL_NAMES,
+);
+
+export function isSidekickApprovalRequiredToolName(toolName: string): boolean {
+  return SIDEKICK_APPROVAL_REQUIRED_TOOL_NAME_SET.has(toolName);
+}
+
+export const createSidekickPolicyFactory: PackPolicyFactory = async () => {
+  if (SIDEKICK_APPROVAL_REQUIRED_TOOL_NAME_SET.size === 0) {
+    return [];
+  }
+
+  const approvalRule: PolicyRule = {
+    id: `${SIDEKICK_POLICY_ID_PREFIX}.destructive-approval`,
+    trigger: POLICY_TRIGGERS.ON_TOOL_REQUEST,
+    decision: 'approval_required',
+    reason: 'Destructive Sidekick tools require explicit approval before execution.',
+    when: (context) =>
+      typeof context.tool_name === 'string' &&
+      isSidekickApprovalRequiredToolName(context.tool_name.trim()),
+  };
+
+  return [approvalRule];
+};

package/packs/sidekick/tool-impl/channel-tools.ts

@@ -23,6 +23,8 @@ import {
 
 const TOOL_NAMES = {
   CONFIGURE: 'channel:configure',
+  LIST: 'channel:list',
+  DELETE: 'channel:delete',
   SEND: 'channel:send',
   RECEIVE: 'channel:receive',
 } as const;
@@ -116,6 +118,99 @@ async function channelConfigureTool(
   return success({ channel: resolvedChannel as unknown as Record<string, unknown> });
 }
 
+// ---------------------------------------------------------------------------
+// channel:list
+// ---------------------------------------------------------------------------
+
+async function channelListTool(_input: unknown, _context?: ToolContextLike): Promise<ToolOutput> {
+  const storage = getStoragePort();
+  const channels = await storage.readStore('channels');
+  const messages = await storage.readStore('messages');
+
+  const items = channels
+    .map((channel) => {
+      const channelMessages = messages.filter((message) => message.channel_id === channel.id);
+      const lastMessage = channelMessages.toSorted(
+        (left, right) => Date.parse(right.created_at) - Date.parse(left.created_at),
+      )[0];
+
+      return {
+        ...channel,
+        message_count: channelMessages.length,
+        last_message_at: lastMessage?.created_at,
+      };
+    })
+    .toSorted((left, right) => {
+      const leftTs = left.last_message_at ?? left.updated_at;
+      const rightTs = right.last_message_at ?? right.updated_at;
+      return Date.parse(rightTs) - Date.parse(leftTs);
+    });
+
+  return success({
+    items: items as unknown as Record<string, unknown>,
+    count: items.length,
+  });
+}
+
+// ---------------------------------------------------------------------------
+// channel:delete
+// ---------------------------------------------------------------------------
+
+async function channelDeleteTool(input: unknown, context?: ToolContextLike): Promise<ToolOutput> {
+  const parsed = toRecord(input);
+  const id = asNonEmptyString(parsed.id);
+
+  if (!id) {
+    return failure('INVALID_INPUT', 'id is required.');
+  }
+
+  const storage = getStoragePort();
+  const channels = await storage.readStore('channels');
+  const channel = channels.find((entry) => entry.id === id);
+
+  if (!channel) {
+    return failure('NOT_FOUND', `channel ${id} was not found.`);
+  }
+
+  const messages = await storage.readStore('messages');
+  const deletedMessages = messages.filter((message) => message.channel_id === id);
+
+  if (isDryRun(parsed)) {
+    return success({
+      dry_run: true,
+      deleted_id: id,
+      deleted_message_count: deletedMessages.length,
+    });
+  }
+
+  await storage.withLock(async () => {
+    const latestChannels = await storage.readStore('channels');
+    const latestMessages = await storage.readStore('messages');
+    await storage.writeStore(
+      'channels',
+      latestChannels.filter((entry) => entry.id !== id),
+    );
+    await storage.writeStore(
+      'messages',
+      latestMessages.filter((message) => message.channel_id !== id),
+    );
+    await storage.appendAudit(
+      buildAuditEvent({
+        tool: TOOL_NAMES.DELETE,
+        op: 'delete',
+        context,
+        ids: [id],
+        details: { deleted_message_count: deletedMessages.length },
+      }),
+    );
+  });
+
+  return success({
+    deleted_id: id,
+    deleted_message_count: deletedMessages.length,
+  });
+}
+
 // ---------------------------------------------------------------------------
 // channel:send
 // ---------------------------------------------------------------------------
@@ -390,6 +485,10 @@ export default async function channelTools(
   switch (context?.tool_name) {
     case TOOL_NAMES.CONFIGURE:
       return channelConfigureTool(input, context);
+    case TOOL_NAMES.LIST:
+      return channelListTool(input, context);
+    case TOOL_NAMES.DELETE:
+      return channelDeleteTool(input, context);
     case TOOL_NAMES.SEND:
       return channelSendTool(input, context);
     case TOOL_NAMES.RECEIVE: