@miller-tech/uap 1.12.0 → 1.13.0

package/templates/hooks/pre-tool-use-bash.sh

@@ -0,0 +1,79 @@
+#!/usr/bin/env bash
+# UAP Dangerous Command Guard — BLOCKING hook
+# Event: PreToolUse (matcher: Bash)
+# Exit 2 = BLOCK the command. Exit 0 = allow.
+# Enforces: iac-pipeline-enforcement, worktree-enforcement, git safety policies.
+set -euo pipefail
+
+# Read tool input from stdin (JSON)
+INPUT=$(cat)
+
+# Extract command from tool_input
+CMD=$(echo "$INPUT" | jq -r '.tool_input.command // empty' 2>/dev/null || true)
+
+# If we can't determine the command, fail open
+if [ -z "$CMD" ]; then
+  exit 0
+fi
+
+# ─── IaC Pipeline Enforcement ───────────────────────────────────
+# Block local terraform apply/destroy (policies/iac-pipeline-enforcement.md)
+# Allow: terraform fmt, validate, init, plan, output, show, state list, graph
+if echo "$CMD" | grep -qiE '\bterraform\s+(apply|destroy)\b'; then
+  echo "BLOCKED [iac-pipeline-enforcement]: terraform apply/destroy MUST go through CI/CD pipeline. Local execution is prohibited. Use: terraform fmt, validate, or plan locally. See policies/iac-pipeline-enforcement.md" >&2
+  exit 2
+fi
+
+# ─── Git Force Push Protection ──────────────────────────────────
+# Block force pushes to any branch
+if echo "$CMD" | grep -qE 'git\s+push\s+.*--force|git\s+push\s+-f\b|git\s+push\s+.*--force-with-lease'; then
+  echo "BLOCKED [git-safety]: Force push is prohibited. Use standard push and resolve conflicts through PRs. If you believe this is necessary, ask the user for explicit approval first." >&2
+  exit 2
+fi
+
+# ─── Direct Master/Main Commit Protection ───────────────────────
+# Block git commit when on master/main AND not inside a worktree
+if echo "$CMD" | grep -qE '\bgit\s+commit\b'; then
+  PROJECT_DIR="${CLAUDE_PROJECT_DIR:-.}"
+  CWD=$(echo "$INPUT" | jq -r '.cwd // empty' 2>/dev/null || true)
+  CHECK_DIR="${CWD:-$PROJECT_DIR}"
+
+  # Only block if NOT inside a worktree directory
+  if ! echo "$CHECK_DIR" | grep -q '\.worktrees/'; then
+    CURRENT_BRANCH=$(git -C "$CHECK_DIR" rev-parse --abbrev-ref HEAD 2>/dev/null || echo "unknown")
+    if [ "$CURRENT_BRANCH" = "main" ] || [ "$CURRENT_BRANCH" = "master" ]; then
+      echo "BLOCKED [worktree-enforcement]: Direct commits to ${CURRENT_BRANCH} are prohibited. Create a worktree first: uap worktree create <slug>. See policies/worktree-enforcement.md" >&2
+      exit 2
+    fi
+  fi
+fi
+
+# ─── Direct Push to Master/Main Protection ──────────────────────
+# Block git push targeting main/master directly (not through PR)
+if echo "$CMD" | grep -qE '\bgit\s+push\b'; then
+  # Block explicit pushes to main/master
+  if echo "$CMD" | grep -qE '\bgit\s+push\s+(origin\s+)?(main|master)\b'; then
+    echo "BLOCKED [worktree-enforcement]: Direct push to main/master is prohibited. Use: uap worktree pr <id> to create a PR instead. See policies/worktree-enforcement.md" >&2
+    exit 2
+  fi
+fi
+
+# ─── Destructive Git Operations ─────────────────────────────────
+# Block git reset --hard and git clean -f outside worktrees
+if echo "$CMD" | grep -qE '\bgit\s+reset\s+--hard\b|\bgit\s+clean\s+-[a-z]*f'; then
+  CWD=$(echo "$INPUT" | jq -r '.cwd // empty' 2>/dev/null || true)
+  if ! echo "${CWD:-.}" | grep -q '\.worktrees/'; then
+    echo "BLOCKED [git-safety]: Destructive git operations (reset --hard, clean -f) are prohibited outside worktrees. These can destroy uncommitted work in the project root." >&2
+    exit 2
+  fi
+fi
+
+# ─── Manual Version Edit Protection ─────────────────────────────
+# Block direct edits to package.json version field via sed/awk
+if echo "$CMD" | grep -qE "(sed|awk).*package\.json.*(version|\"version\")|((sed|awk).*version.*package\.json)|(jq.*\.version.*package\.json)"; then
+  echo "BLOCKED [semver-versioning]: Manual package.json version edits are prohibited. Use: npm run version:patch, version:minor, or version:major. See policies/semver-versioning.md" >&2
+  exit 2
+fi
+
+# Command allowed
+exit 0

package/templates/hooks/pre-tool-use-edit-write.sh

@@ -0,0 +1,44 @@
+#!/usr/bin/env bash
+# UAP Worktree File Guard — BLOCKING hook
+# Event: PreToolUse (matcher: Edit|Write)
+# Exit 2 = BLOCK the edit/write. Exit 0 = allow.
+# Enforces: worktree-file-guard, worktree-enforcement policies.
+set -euo pipefail
+
+# Read tool input from stdin (JSON)
+INPUT=$(cat)
+
+# Extract file_path from tool_input
+FILE_PATH=$(echo "$INPUT" | jq -r '.tool_input.file_path // .tool_input.filePath // empty' 2>/dev/null || true)
+
+# If we can't determine the file path, fail open
+if [ -z "$FILE_PATH" ]; then
+  exit 0
+fi
+
+# Exempt paths — runtime data, not source code
+EXEMPT_PATTERNS=(
+  "agents/data/"
+  "node_modules/"
+  ".uap-backups/"
+  ".uap/"
+  ".git/"
+  "dist/"
+  "/tmp/"
+  "/dev/"
+)
+
+for pattern in "${EXEMPT_PATTERNS[@]}"; do
+  if echo "$FILE_PATH" | grep -q "$pattern"; then
+    exit 0
+  fi
+done
+
+# Allow if path is inside a worktree
+if echo "$FILE_PATH" | grep -q '\.worktrees/'; then
+  exit 0
+fi
+
+# BLOCK: path is outside worktrees and not exempt
+echo '{"decision":"block","reason":"WORKTREE POLICY VIOLATION: File path is outside .worktrees/. All edits must target files inside a worktree. Run: uap worktree create <slug> then edit files in .worktrees/NNN-<slug>/. See policies/worktree-file-guard.md"}' >&2
+exit 2

package/templates/hooks/session-end.sh

@@ -1,53 +1,38 @@
 #!/usr/bin/env bash
-# UAP Session End Hook (universal - all coding harnesses)
-# Records session completion in memory and cleans up agent state.
-# Fails safely - never blocks the agent.
+# UAP Session End Hook — Cleanup and archival
+# Event: SessionEnd
+# Stores final session summary and cleans up coordination state.
+# Always exits 0 (never blocks).
 set -euo pipefail
 
-PROJECT_DIR="${CLAUDE_PROJECT_DIR:-${FACTORY_PROJECT_DIR:-${CURSOR_PROJECT_DIR:-${UAP_PROJECT_DIR:-.}}}}"
+PROJECT_DIR="${CLAUDE_PROJECT_DIR:-${FACTORY_PROJECT_DIR:-${CURSOR_PROJECT_DIR:-.}}}"
 DB_PATH="${PROJECT_DIR}/agents/data/memory/short_term.db"
 COORD_DB="${PROJECT_DIR}/agents/data/coordination/coordination.db"
-
-if [ ! -f "$DB_PATH" ]; then
-  exit 0
-fi
-
 TIMESTAMP=$(date -u +"%Y-%m-%dT%H:%M:%SZ")
 
-# Record session end marker in memory
-sqlite3 "$DB_PATH" "
-  INSERT OR IGNORE INTO memories (timestamp, type, content)
-  VALUES ('$TIMESTAMP', 'action', '[post-session] Session completed at $TIMESTAMP');
-" 2>/dev/null || true
-
-# Count decisions stored this session
-session_decisions=$(sqlite3 "$DB_PATH" "
-  SELECT COUNT(*) FROM session_memories
-  WHERE timestamp >= datetime('now', '-4 hours')
-    AND type = 'decision';
-" 2>/dev/null || echo "0")
-
-if [ "$session_decisions" = "0" ]; then
-  echo "<system-reminder>"
-  echo "WARNING: No decisions stored this session."
-  echo "Consider storing a summary before ending:"
-  echo "  sqlite3 ./agents/data/memory/short_term.db \"INSERT INTO session_memories (session_id,timestamp,type,content,importance) VALUES ('current',datetime('now'),'decision','<summary>',7);\""
-  echo "</system-reminder>"
+# Store session end marker
+if [ -f "$DB_PATH" ]; then
+  sqlite3 "$DB_PATH" "
+    INSERT OR IGNORE INTO memories (timestamp, type, content)
+    VALUES ('$TIMESTAMP', 'action', '[session-end] Session terminated at $TIMESTAMP');
+  " 2>/dev/null || true
 fi
 
-# Clean up agent registrations from this session
+# Clean up all active agents and work claims
 if [ -f "$COORD_DB" ]; then
   sqlite3 "$COORD_DB" "
-    DELETE FROM work_claims WHERE agent_id IN (
-      SELECT id FROM agent_registry
-      WHERE status='active' AND last_heartbeat >= datetime('now','-10 minutes')
-    );
-    UPDATE work_announcements SET completed_at='$TIMESTAMP'
-      WHERE completed_at IS NULL AND agent_id IN (
-        SELECT id FROM agent_registry
-        WHERE status='active' AND last_heartbeat >= datetime('now','-10 minutes')
-      );
-    UPDATE agent_registry SET status='completed'
-      WHERE status='active' AND last_heartbeat >= datetime('now','-10 minutes');
+    UPDATE work_announcements SET completed_at = '$TIMESTAMP'
+    WHERE completed_at IS NULL;
+    DELETE FROM work_claims;
+    UPDATE agent_registry SET status = 'completed'
+    WHERE status IN ('active', 'idle');
   " 2>/dev/null || true
 fi
+
+# Clean up backup files older than 7 days (retention policy)
+BACKUP_DIR="${PROJECT_DIR}/.uap-backups"
+if [ -d "$BACKUP_DIR" ]; then
+  find "$BACKUP_DIR" -maxdepth 1 -mindepth 1 -type d -mtime +7 -exec rm -rf {} \; 2>/dev/null || true
+fi
+
+exit 0

package/templates/hooks/stop.sh

@@ -0,0 +1,142 @@
+#!/usr/bin/env bash
+# UAP Completion Gate + Session Cleanup — Stop hook
+# Event: Stop
+# Checks completion gates and cleans up session state.
+# Exit 2 = BLOCK stop (force agent to continue). Exit 0 = allow stop.
+# Enforces: completion-gate, mandatory-testing-deployment policies.
+set -euo pipefail
+
+PROJECT_DIR="${CLAUDE_PROJECT_DIR:-${FACTORY_PROJECT_DIR:-${CURSOR_PROJECT_DIR:-.}}}"
+DB_PATH="${PROJECT_DIR}/agents/data/memory/short_term.db"
+COORD_DB="${PROJECT_DIR}/agents/data/coordination/coordination.db"
+
+# ─── Detect if code was changed ─────────────────────────────────
+CODE_CHANGED="false"
+TS_CHANGED="false"
+TEST_FILES_CHANGED="false"
+UNCOMMITTED_CHANGES="false"
+
+# Check for uncommitted changes in the working tree
+CHANGED_FILES=$(git -C "$PROJECT_DIR" diff --name-only HEAD 2>/dev/null || true)
+STAGED_FILES=$(git -C "$PROJECT_DIR" diff --cached --name-only 2>/dev/null || true)
+UNTRACKED_FILES=$(git -C "$PROJECT_DIR" ls-files --others --exclude-standard 2>/dev/null || true)
+
+ALL_CHANGES="${CHANGED_FILES}${STAGED_FILES}${UNTRACKED_FILES}"
+
+if [ -n "$ALL_CHANGES" ]; then
+  UNCOMMITTED_CHANGES="true"
+
+  # Check for source code changes
+  if echo "$ALL_CHANGES" | grep -qE '\.(ts|tsx|js|jsx)$'; then
+    CODE_CHANGED="true"
+  fi
+
+  # Check for TypeScript changes specifically
+  if echo "$ALL_CHANGES" | grep -qE '\.tsx?$'; then
+    TS_CHANGED="true"
+  fi
+
+  # Check for test file changes
+  if echo "$ALL_CHANGES" | grep -qE 'test/.*\.(ts|tsx|js|jsx)$'; then
+    TEST_FILES_CHANGED="true"
+  fi
+fi
+
+# ─── Completion Gate Checklist ───────────────────────────────────
+output=""
+warnings=0
+
+if [ "$CODE_CHANGED" = "true" ]; then
+  output+="## COMPLETION GATE CHECKLIST"$'\n'
+  output+=""$'\n'
+
+  # Gate 1: New tests written
+  if [ "$TEST_FILES_CHANGED" = "true" ]; then
+    output+="[PASS] New test files modified/added"$'\n'
+  else
+    output+="[WARN] No test files modified — completion-gate requires 2+ new tests for code changes"$'\n'
+    warnings=$((warnings + 1))
+  fi
+
+  # Gate 2: Build check (heuristic — check if dist/ is newer than last src change)
+  if [ -d "${PROJECT_DIR}/dist" ]; then
+    DIST_TIME=$(stat -c %Y "${PROJECT_DIR}/dist" 2>/dev/null || echo "0")
+    SRC_TIME=$(find "${PROJECT_DIR}/src" -name "*.ts" -newer "${PROJECT_DIR}/dist" 2>/dev/null | head -1)
+    if [ -z "$SRC_TIME" ]; then
+      output+="[PASS] Build appears up-to-date (dist/ newer than src/)"$'\n'
+    else
+      output+="[WARN] Build may be stale — run 'npm run build' to verify"$'\n'
+      warnings=$((warnings + 1))
+    fi
+  else
+    output+="[WARN] No dist/ directory — run 'npm run build'"$'\n'
+    warnings=$((warnings + 1))
+  fi
+
+  # Gate 3: Uncommitted changes
+  if [ -n "$STAGED_FILES" ] || [ -n "$CHANGED_FILES" ]; then
+    output+="[WARN] Uncommitted changes detected — commit or stash before version bump"$'\n'
+    warnings=$((warnings + 1))
+  fi
+
+  # Gate 4: Version bump check (was package.json version changed?)
+  VERSION_BUMPED="false"
+  if echo "$ALL_CHANGES" | grep -q "package.json"; then
+    # Check if version field actually changed
+    VERSION_DIFF=$(git -C "$PROJECT_DIR" diff HEAD -- package.json 2>/dev/null | grep -E '^\+.*"version"' || true)
+    if [ -n "$VERSION_DIFF" ]; then
+      VERSION_BUMPED="true"
+    fi
+  fi
+  if [ "$VERSION_BUMPED" = "true" ]; then
+    output+="[PASS] Version bump detected in package.json"$'\n'
+  else
+    output+="[WARN] No version bump — run 'npm run version:patch/minor/major' before claiming done"$'\n'
+    warnings=$((warnings + 1))
+  fi
+
+  output+=""$'\n'
+
+  if [ "$warnings" -gt 0 ]; then
+    output+="$warnings completion gate warning(s). Review policies/completion-gate.md before claiming task done."$'\n'
+  else
+    output+="All completion gates appear satisfied."$'\n'
+  fi
+fi
+
+# ─── Session Cleanup ─────────────────────────────────────────────
+# Store session marker in memory DB
+if [ -f "$DB_PATH" ]; then
+  TIMESTAMP=$(date -u +"%Y-%m-%dT%H:%M:%SZ")
+  sqlite3 "$DB_PATH" "
+    INSERT OR IGNORE INTO memories (timestamp, type, content)
+    VALUES ('$TIMESTAMP', 'action', '[session-end] Agent stopping at $TIMESTAMP. Code changed: $CODE_CHANGED, Tests: $TEST_FILES_CHANGED, Warnings: $warnings');
+  " 2>/dev/null || true
+fi
+
+# Mark agent as completed in coordination DB
+if [ -f "$COORD_DB" ]; then
+  # Complete all active announcements for agents from this session
+  sqlite3 "$COORD_DB" "
+    UPDATE work_announcements SET completed_at = datetime('now')
+    WHERE completed_at IS NULL AND agent_id IN (
+      SELECT id FROM agent_registry
+      WHERE status = 'active' AND last_heartbeat >= datetime('now', '-5 minutes')
+    );
+    DELETE FROM work_claims WHERE agent_id IN (
+      SELECT id FROM agent_registry
+      WHERE status = 'active' AND last_heartbeat >= datetime('now', '-5 minutes')
+    );
+    UPDATE agent_registry SET status = 'completed'
+    WHERE status = 'active' AND last_heartbeat >= datetime('now', '-5 minutes');
+  " 2>/dev/null || true
+fi
+
+# Output the checklist (informational — shown to model)
+if [ -n "$output" ]; then
+  echo "$output"
+fi
+
+# Allow stop (exit 0) — we use warnings, not hard blocks, because
+# the model needs agency to decide when it's truly done vs still working.
+exit 0