@miller-tech/uap 1.12.0 → 1.13.1

package/templates/hooks/post-compact.sh

@@ -0,0 +1,111 @@
+#!/usr/bin/env bash
+# UAP Post-Compact Compliance Re-injection — INFORMATIONAL hook
+# Event: PostCompact
+# Re-injects policy awareness after context compaction.
+# Always exits 0 (never blocks).
+set -euo pipefail
+
+PROJECT_DIR="${CLAUDE_PROJECT_DIR:-${FACTORY_PROJECT_DIR:-${CURSOR_PROJECT_DIR:-.}}}"
+DB_PATH="${PROJECT_DIR}/agents/data/memory/short_term.db"
+COORD_DB="${PROJECT_DIR}/agents/data/coordination/coordination.db"
+
+output=""
+
+# ─── Active Policy Summary ──────────────────────────────────────
+output+="<system-reminder>"$'\n'
+output+="## UAP COMPLIANCE RESTORED (Post-Compact)"$'\n'
+output+=""$'\n'
+output+="Context was compacted. All policies remain in effect:"$'\n'
+output+=""$'\n'
+output+="### BLOCKING HOOKS (hard enforcement):"$'\n'
+output+="- **Worktree File Guard**: Edit/Write operations BLOCKED outside .worktrees/"$'\n'
+output+="- **Dangerous Command Guard**: terraform apply/destroy, git push --force, direct master commits BLOCKED"$'\n'
+output+="- **Completion Gate**: Stop/completion checked for test, build, version gates"$'\n'
+output+=""$'\n'
+output+="### ACTIVE POLICIES [all REQUIRED]:"$'\n'
+output+="1. worktree-enforcement — All file changes in .worktrees/NNN-<slug>/"$'\n'
+output+="2. worktree-file-guard — Edit/Write paths must be inside worktrees"$'\n'
+output+="3. pre-edit-build-gate — npm run build before/after .ts edits"$'\n'
+output+="4. completion-gate — 2+ tests, build, lint, version bump before DONE"$'\n'
+output+="5. semver-versioning — npm run version:patch/minor/major (no manual edits)"$'\n'
+output+="6. mandatory-file-backup — Backup files before modification"$'\n'
+output+="7. iac-state-parity — All infra changes reflected in IaC"$'\n'
+output+="8. iac-pipeline-enforcement — No local terraform apply/destroy"$'\n'
+output+="9. kubectl-verify-backport — kubectl changes backported to IaC"$'\n'
+output+="10. definition-of-done-iac — Pipeline apply + kubectl verify required"$'\n'
+output+="11. image-asset-verification — Script-based, not vision-based [RECOMMENDED]"$'\n'
+output+=""$'\n'
+output+="### MANDATORY BEFORE WORK:"$'\n'
+output+="- Verify you are in a worktree: pwd must contain .worktrees/"$'\n'
+output+="- Run: uap task ready"$'\n'
+output+="- Query memory: uap memory query \"<current task>\""$'\n'
+output+=""$'\n'
+
+# ─── Restore session context from memory ─────────────────────────
+if [ -f "$DB_PATH" ]; then
+  recent=$(sqlite3 "$DB_PATH" "
+    SELECT type || ': ' || substr(content, 1, 100) FROM memories
+    WHERE timestamp >= datetime('now', '-2 hours')
+    ORDER BY id DESC LIMIT 5;
+  " 2>/dev/null || true)
+
+  if [ -n "$recent" ]; then
+    output+="### Recent Memory (last 2h):"$'\n'
+    output+="$recent"$'\n'
+    output+=""$'\n'
+  fi
+
+  # Session decisions
+  decisions=$(sqlite3 "$DB_PATH" "
+    SELECT substr(content, 1, 120) FROM session_memories
+    WHERE type = 'decision' AND importance >= 6
+    ORDER BY id DESC LIMIT 3;
+  " 2>/dev/null || true)
+
+  if [ -n "$decisions" ]; then
+    output+="### Recent Decisions:"$'\n'
+    output+="$decisions"$'\n'
+    output+=""$'\n'
+  fi
+fi
+
+# ─── Multi-agent coordination status ────────────────────────────
+if [ -f "$COORD_DB" ]; then
+  active_work=$(sqlite3 "$COORD_DB" "
+    SELECT agent_id || ' editing ' || resource
+    FROM work_announcements
+    WHERE completed_at IS NULL
+    ORDER BY announced_at DESC LIMIT 5;
+  " 2>/dev/null || true)
+
+  if [ -n "$active_work" ]; then
+    output+="### Active Work (coordinate — do not conflict):"$'\n'
+    output+="$active_work"$'\n'
+    output+=""$'\n'
+  fi
+fi
+
+# ─── Worktree status ────────────────────────────────────────────
+CURRENT_BRANCH=$(git -C "$PROJECT_DIR" rev-parse --abbrev-ref HEAD 2>/dev/null || echo "unknown")
+IS_WORKTREE="false"
+if echo "$PROJECT_DIR" | grep -q '\.worktrees/'; then
+  IS_WORKTREE="true"
+fi
+GIT_DIR=$(git -C "$PROJECT_DIR" rev-parse --git-dir 2>/dev/null || true)
+GIT_COMMON=$(git -C "$PROJECT_DIR" rev-parse --git-common-dir 2>/dev/null || true)
+if [ -n "$GIT_DIR" ] && [ -n "$GIT_COMMON" ] && [ "$GIT_DIR" != "$GIT_COMMON" ]; then
+  IS_WORKTREE="true"
+fi
+
+if [ "$IS_WORKTREE" = "false" ] && { [ "$CURRENT_BRANCH" = "main" ] || [ "$CURRENT_BRANCH" = "master" ]; }; then
+  output+="### ⚠ WORKTREE VIOLATION: You are on $CURRENT_BRANCH in the project root."$'\n'
+  output+="Run: uap worktree create <slug> BEFORE any file edits."$'\n'
+  output+=""$'\n'
+else
+  output+="### Worktree: ACTIVE (branch: $CURRENT_BRANCH)"$'\n'
+  output+=""$'\n'
+fi
+
+output+="</system-reminder>"$'\n'
+
+echo "$output"

package/templates/hooks/post-tool-use-edit-write.sh

@@ -0,0 +1,38 @@
+#!/usr/bin/env bash
+# UAP Build Gate Reminder — INFORMATIONAL hook
+# Event: PostToolUse (matcher: Edit|Write)
+# Reminds about pre-edit build gate after .ts file modifications.
+# Enforces: pre-edit-build-gate policy.
+# Always exits 0 (never blocks).
+set -euo pipefail
+
+# Read tool input from stdin (JSON)
+INPUT=$(cat)
+
+# Extract file_path from tool_input
+FILE_PATH=$(echo "$INPUT" | jq -r '.tool_input.file_path // .tool_input.filePath // empty' 2>/dev/null || true)
+
+# If we can't determine the file path, exit silently
+if [ -z "$FILE_PATH" ]; then
+  exit 0
+fi
+
+# Only remind for TypeScript files
+if echo "$FILE_PATH" | grep -qE '\.tsx?$'; then
+  echo "[BUILD GATE] TypeScript file modified: $(basename "$FILE_PATH"). Run 'npm run build' before editing the next file. See policies/pre-edit-build-gate.md"
+fi
+
+# Remind about file backup policy for any file edit
+PROJECT_DIR="${CLAUDE_PROJECT_DIR:-.}"
+BACKUP_DIR="${PROJECT_DIR}/.uap-backups/$(date +%Y-%m-%d)"
+RELATIVE_PATH="${FILE_PATH#"$PROJECT_DIR"/}"
+
+# Check if backup exists for this file
+if [ ! -f "${BACKUP_DIR}/${RELATIVE_PATH}" ] 2>/dev/null; then
+  # Only warn for source files, not generated or runtime files
+  if ! echo "$FILE_PATH" | grep -qE '(node_modules|dist|\.uap-backups|agents/data|\.git)/'; then
+    echo "[BACKUP REMINDER] No backup found for $(basename "$FILE_PATH"). Policy requires: mkdir -p $(dirname "${BACKUP_DIR}/${RELATIVE_PATH}") && cp \"$FILE_PATH\" \"${BACKUP_DIR}/${RELATIVE_PATH}\""
+  fi
+fi
+
+exit 0

package/templates/hooks/pre-tool-use-bash.sh

@@ -0,0 +1,87 @@
+#!/usr/bin/env bash
+# UAP Dangerous Command Guard — BLOCKING hook
+# Event: PreToolUse (matcher: Bash)
+# Exit 2 = BLOCK the command. Exit 0 = allow.
+# Enforces: iac-pipeline-enforcement, worktree-enforcement, git safety policies.
+set -euo pipefail
+
+# Read tool input from stdin (JSON)
+INPUT=$(cat)
+
+# Extract command from tool_input
+CMD=$(echo "$INPUT" | jq -r '.tool_input.command // empty' 2>/dev/null || true)
+
+# If we can't determine the command, fail open
+if [ -z "$CMD" ]; then
+  exit 0
+fi
+
+# ─── IaC Pipeline Enforcement ───────────────────────────────────
+# Block local terraform apply/destroy (policies/iac-pipeline-enforcement.md)
+# Allow: terraform fmt, validate, init, plan, output, show, state list, graph
+if echo "$CMD" | grep -qiE '\bterraform\s+(apply|destroy)\b'; then
+  echo "BLOCKED [iac-pipeline-enforcement]: terraform apply/destroy MUST go through CI/CD pipeline. Local execution is prohibited. Use: terraform fmt, validate, or plan locally. See policies/iac-pipeline-enforcement.md" >&2
+  exit 2
+fi
+
+# ─── Git Force Push Protection ──────────────────────────────────
+# Block force pushes to any branch
+if echo "$CMD" | grep -qE 'git\s+push\s+.*--force|git\s+push\s+-f\b|git\s+push\s+.*--force-with-lease'; then
+  echo "BLOCKED [git-safety]: Force push is prohibited. Use standard push and resolve conflicts through PRs. If you believe this is necessary, ask the user for explicit approval first." >&2
+  exit 2
+fi
+
+# ─── Direct Master/Main Commit Protection ───────────────────────
+# Block git commit when on master/main AND not inside a worktree
+if echo "$CMD" | grep -qE '\bgit\s+commit\b'; then
+  PROJECT_DIR="${CLAUDE_PROJECT_DIR:-.}"
+  CWD=$(echo "$INPUT" | jq -r '.cwd // empty' 2>/dev/null || true)
+  CHECK_DIR="${CWD:-$PROJECT_DIR}"
+
+  # Only block if NOT inside a worktree directory
+  if ! echo "$CHECK_DIR" | grep -q '\.worktrees/'; then
+    CURRENT_BRANCH=$(git -C "$CHECK_DIR" rev-parse --abbrev-ref HEAD 2>/dev/null || echo "unknown")
+    if [ "$CURRENT_BRANCH" = "main" ] || [ "$CURRENT_BRANCH" = "master" ]; then
+      # Allow automated version bump commits (message contains "bump version")
+      if echo "$CMD" | grep -qE 'chore: bump version|version:patch|version:minor|version:major|version-bump'; then
+        exit 0
+      fi
+      echo "BLOCKED [worktree-enforcement]: Direct commits to ${CURRENT_BRANCH} are prohibited. Create a worktree first: uap worktree create <slug>. See policies/worktree-enforcement.md" >&2
+      exit 2
+    fi
+  fi
+fi
+
+# ─── Direct Push to Master/Main Protection ──────────────────────
+# Block git push targeting main/master directly (not through PR)
+if echo "$CMD" | grep -qE '\bgit\s+push\b'; then
+  # Block explicit pushes to main/master
+  if echo "$CMD" | grep -qE '\bgit\s+push\s+(origin\s+)?(main|master)\b'; then
+    # Allow push after version bump (git push && git push --tags pattern)
+    if echo "$CMD" | grep -qE 'git\s+push\s+--tags|git\s+push\s*&&\s*git\s+push\s+--tags'; then
+      exit 0
+    fi
+    echo "BLOCKED [worktree-enforcement]: Direct push to main/master is prohibited. Use: uap worktree pr <id> to create a PR instead. See policies/worktree-enforcement.md" >&2
+    exit 2
+  fi
+fi
+
+# ─── Destructive Git Operations ─────────────────────────────────
+# Block git reset --hard and git clean -f outside worktrees
+if echo "$CMD" | grep -qE '\bgit\s+reset\s+--hard\b|\bgit\s+clean\s+-[a-z]*f'; then
+  CWD=$(echo "$INPUT" | jq -r '.cwd // empty' 2>/dev/null || true)
+  if ! echo "${CWD:-.}" | grep -q '\.worktrees/'; then
+    echo "BLOCKED [git-safety]: Destructive git operations (reset --hard, clean -f) are prohibited outside worktrees. These can destroy uncommitted work in the project root." >&2
+    exit 2
+  fi
+fi
+
+# ─── Manual Version Edit Protection ─────────────────────────────
+# Block direct edits to package.json version field via sed/awk
+if echo "$CMD" | grep -qE "(sed|awk).*package\.json.*(version|\"version\")|((sed|awk).*version.*package\.json)|(jq.*\.version.*package\.json)"; then
+  echo "BLOCKED [semver-versioning]: Manual package.json version edits are prohibited. Use: npm run version:patch, version:minor, or version:major. See policies/semver-versioning.md" >&2
+  exit 2
+fi
+
+# Command allowed
+exit 0

package/templates/hooks/pre-tool-use-edit-write.sh

@@ -0,0 +1,44 @@
+#!/usr/bin/env bash
+# UAP Worktree File Guard — BLOCKING hook
+# Event: PreToolUse (matcher: Edit|Write)
+# Exit 2 = BLOCK the edit/write. Exit 0 = allow.
+# Enforces: worktree-file-guard, worktree-enforcement policies.
+set -euo pipefail
+
+# Read tool input from stdin (JSON)
+INPUT=$(cat)
+
+# Extract file_path from tool_input
+FILE_PATH=$(echo "$INPUT" | jq -r '.tool_input.file_path // .tool_input.filePath // empty' 2>/dev/null || true)
+
+# If we can't determine the file path, fail open
+if [ -z "$FILE_PATH" ]; then
+  exit 0
+fi
+
+# Exempt paths — runtime data, not source code
+EXEMPT_PATTERNS=(
+  "agents/data/"
+  "node_modules/"
+  ".uap-backups/"
+  ".uap/"
+  ".git/"
+  "dist/"
+  "/tmp/"
+  "/dev/"
+)
+
+for pattern in "${EXEMPT_PATTERNS[@]}"; do
+  if echo "$FILE_PATH" | grep -q "$pattern"; then
+    exit 0
+  fi
+done
+
+# Allow if path is inside a worktree
+if echo "$FILE_PATH" | grep -q '\.worktrees/'; then
+  exit 0
+fi
+
+# BLOCK: path is outside worktrees and not exempt
+echo '{"decision":"block","reason":"WORKTREE POLICY VIOLATION: File path is outside .worktrees/. All edits must target files inside a worktree. Run: uap worktree create <slug> then edit files in .worktrees/NNN-<slug>/. See policies/worktree-file-guard.md"}' >&2
+exit 2

package/templates/hooks/session-end.sh

@@ -1,53 +1,38 @@
 #!/usr/bin/env bash
-# UAP Session End Hook (universal - all coding harnesses)
-# Records session completion in memory and cleans up agent state.
-# Fails safely - never blocks the agent.
+# UAP Session End Hook — Cleanup and archival
+# Event: SessionEnd
+# Stores final session summary and cleans up coordination state.
+# Always exits 0 (never blocks).
 set -euo pipefail
 
-PROJECT_DIR="${CLAUDE_PROJECT_DIR:-${FACTORY_PROJECT_DIR:-${CURSOR_PROJECT_DIR:-${UAP_PROJECT_DIR:-.}}}}"
+PROJECT_DIR="${CLAUDE_PROJECT_DIR:-${FACTORY_PROJECT_DIR:-${CURSOR_PROJECT_DIR:-.}}}"
 DB_PATH="${PROJECT_DIR}/agents/data/memory/short_term.db"
 COORD_DB="${PROJECT_DIR}/agents/data/coordination/coordination.db"
-
-if [ ! -f "$DB_PATH" ]; then
-  exit 0
-fi
-
 TIMESTAMP=$(date -u +"%Y-%m-%dT%H:%M:%SZ")
 
-# Record session end marker in memory
-sqlite3 "$DB_PATH" "
-  INSERT OR IGNORE INTO memories (timestamp, type, content)
-  VALUES ('$TIMESTAMP', 'action', '[post-session] Session completed at $TIMESTAMP');
-" 2>/dev/null || true
-
-# Count decisions stored this session
-session_decisions=$(sqlite3 "$DB_PATH" "
-  SELECT COUNT(*) FROM session_memories
-  WHERE timestamp >= datetime('now', '-4 hours')
-    AND type = 'decision';
-" 2>/dev/null || echo "0")
-
-if [ "$session_decisions" = "0" ]; then
-  echo "<system-reminder>"
-  echo "WARNING: No decisions stored this session."
-  echo "Consider storing a summary before ending:"
-  echo "  sqlite3 ./agents/data/memory/short_term.db \"INSERT INTO session_memories (session_id,timestamp,type,content,importance) VALUES ('current',datetime('now'),'decision','<summary>',7);\""
-  echo "</system-reminder>"
+# Store session end marker
+if [ -f "$DB_PATH" ]; then
+  sqlite3 "$DB_PATH" "
+    INSERT OR IGNORE INTO memories (timestamp, type, content)
+    VALUES ('$TIMESTAMP', 'action', '[session-end] Session terminated at $TIMESTAMP');
+  " 2>/dev/null || true
 fi
 
-# Clean up agent registrations from this session
+# Clean up all active agents and work claims
 if [ -f "$COORD_DB" ]; then
   sqlite3 "$COORD_DB" "
-    DELETE FROM work_claims WHERE agent_id IN (
-      SELECT id FROM agent_registry
-      WHERE status='active' AND last_heartbeat >= datetime('now','-10 minutes')
-    );
-    UPDATE work_announcements SET completed_at='$TIMESTAMP'
-      WHERE completed_at IS NULL AND agent_id IN (
-        SELECT id FROM agent_registry
-        WHERE status='active' AND last_heartbeat >= datetime('now','-10 minutes')
-      );
-    UPDATE agent_registry SET status='completed'
-      WHERE status='active' AND last_heartbeat >= datetime('now','-10 minutes');
+    UPDATE work_announcements SET completed_at = '$TIMESTAMP'
+    WHERE completed_at IS NULL;
+    DELETE FROM work_claims;
+    UPDATE agent_registry SET status = 'completed'
+    WHERE status IN ('active', 'idle');
   " 2>/dev/null || true
 fi
+
+# Clean up backup files older than 7 days (retention policy)
+BACKUP_DIR="${PROJECT_DIR}/.uap-backups"
+if [ -d "$BACKUP_DIR" ]; then
+  find "$BACKUP_DIR" -maxdepth 1 -mindepth 1 -type d -mtime +7 -exec rm -rf {} \; 2>/dev/null || true
+fi
+
+exit 0

package/templates/hooks/stop.sh

@@ -0,0 +1,142 @@
+#!/usr/bin/env bash
+# UAP Completion Gate + Session Cleanup — Stop hook
+# Event: Stop
+# Checks completion gates and cleans up session state.
+# Exit 2 = BLOCK stop (force agent to continue). Exit 0 = allow stop.
+# Enforces: completion-gate, mandatory-testing-deployment policies.
+set -euo pipefail
+
+PROJECT_DIR="${CLAUDE_PROJECT_DIR:-${FACTORY_PROJECT_DIR:-${CURSOR_PROJECT_DIR:-.}}}"
+DB_PATH="${PROJECT_DIR}/agents/data/memory/short_term.db"
+COORD_DB="${PROJECT_DIR}/agents/data/coordination/coordination.db"
+
+# ─── Detect if code was changed ─────────────────────────────────
+CODE_CHANGED="false"
+TS_CHANGED="false"
+TEST_FILES_CHANGED="false"
+UNCOMMITTED_CHANGES="false"
+
+# Check for uncommitted changes in the working tree
+CHANGED_FILES=$(git -C "$PROJECT_DIR" diff --name-only HEAD 2>/dev/null || true)
+STAGED_FILES=$(git -C "$PROJECT_DIR" diff --cached --name-only 2>/dev/null || true)
+UNTRACKED_FILES=$(git -C "$PROJECT_DIR" ls-files --others --exclude-standard 2>/dev/null || true)
+
+ALL_CHANGES="${CHANGED_FILES}${STAGED_FILES}${UNTRACKED_FILES}"
+
+if [ -n "$ALL_CHANGES" ]; then
+  UNCOMMITTED_CHANGES="true"
+
+  # Check for source code changes
+  if echo "$ALL_CHANGES" | grep -qE '\.(ts|tsx|js|jsx)$'; then
+    CODE_CHANGED="true"
+  fi
+
+  # Check for TypeScript changes specifically
+  if echo "$ALL_CHANGES" | grep -qE '\.tsx?$'; then
+    TS_CHANGED="true"
+  fi
+
+  # Check for test file changes
+  if echo "$ALL_CHANGES" | grep -qE 'test/.*\.(ts|tsx|js|jsx)$'; then
+    TEST_FILES_CHANGED="true"
+  fi
+fi
+
+# ─── Completion Gate Checklist ───────────────────────────────────
+output=""
+warnings=0
+
+if [ "$CODE_CHANGED" = "true" ]; then
+  output+="## COMPLETION GATE CHECKLIST"$'\n'
+  output+=""$'\n'
+
+  # Gate 1: New tests written
+  if [ "$TEST_FILES_CHANGED" = "true" ]; then
+    output+="[PASS] New test files modified/added"$'\n'
+  else
+    output+="[WARN] No test files modified — completion-gate requires 2+ new tests for code changes"$'\n'
+    warnings=$((warnings + 1))
+  fi
+
+  # Gate 2: Build check (heuristic — check if dist/ is newer than last src change)
+  if [ -d "${PROJECT_DIR}/dist" ]; then
+    DIST_TIME=$(stat -c %Y "${PROJECT_DIR}/dist" 2>/dev/null || echo "0")
+    SRC_TIME=$(find "${PROJECT_DIR}/src" -name "*.ts" -newer "${PROJECT_DIR}/dist" 2>/dev/null | head -1)
+    if [ -z "$SRC_TIME" ]; then
+      output+="[PASS] Build appears up-to-date (dist/ newer than src/)"$'\n'
+    else
+      output+="[WARN] Build may be stale — run 'npm run build' to verify"$'\n'
+      warnings=$((warnings + 1))
+    fi
+  else
+    output+="[WARN] No dist/ directory — run 'npm run build'"$'\n'
+    warnings=$((warnings + 1))
+  fi
+
+  # Gate 3: Uncommitted changes
+  if [ -n "$STAGED_FILES" ] || [ -n "$CHANGED_FILES" ]; then
+    output+="[WARN] Uncommitted changes detected — commit or stash before version bump"$'\n'
+    warnings=$((warnings + 1))
+  fi
+
+  # Gate 4: Version bump check (was package.json version changed?)
+  VERSION_BUMPED="false"
+  if echo "$ALL_CHANGES" | grep -q "package.json"; then
+    # Check if version field actually changed
+    VERSION_DIFF=$(git -C "$PROJECT_DIR" diff HEAD -- package.json 2>/dev/null | grep -E '^\+.*"version"' || true)
+    if [ -n "$VERSION_DIFF" ]; then
+      VERSION_BUMPED="true"
+    fi
+  fi
+  if [ "$VERSION_BUMPED" = "true" ]; then
+    output+="[PASS] Version bump detected in package.json"$'\n'
+  else
+    output+="[WARN] No version bump — run 'npm run version:patch/minor/major' before claiming done"$'\n'
+    warnings=$((warnings + 1))
+  fi
+
+  output+=""$'\n'
+
+  if [ "$warnings" -gt 0 ]; then
+    output+="$warnings completion gate warning(s). Review policies/completion-gate.md before claiming task done."$'\n'
+  else
+    output+="All completion gates appear satisfied."$'\n'
+  fi
+fi
+
+# ─── Session Cleanup ─────────────────────────────────────────────
+# Store session marker in memory DB
+if [ -f "$DB_PATH" ]; then
+  TIMESTAMP=$(date -u +"%Y-%m-%dT%H:%M:%SZ")
+  sqlite3 "$DB_PATH" "
+    INSERT OR IGNORE INTO memories (timestamp, type, content)
+    VALUES ('$TIMESTAMP', 'action', '[session-end] Agent stopping at $TIMESTAMP. Code changed: $CODE_CHANGED, Tests: $TEST_FILES_CHANGED, Warnings: $warnings');
+  " 2>/dev/null || true
+fi
+
+# Mark agent as completed in coordination DB
+if [ -f "$COORD_DB" ]; then
+  # Complete all active announcements for agents from this session
+  sqlite3 "$COORD_DB" "
+    UPDATE work_announcements SET completed_at = datetime('now')
+    WHERE completed_at IS NULL AND agent_id IN (
+      SELECT id FROM agent_registry
+      WHERE status = 'active' AND last_heartbeat >= datetime('now', '-5 minutes')
+    );
+    DELETE FROM work_claims WHERE agent_id IN (
+      SELECT id FROM agent_registry
+      WHERE status = 'active' AND last_heartbeat >= datetime('now', '-5 minutes')
+    );
+    UPDATE agent_registry SET status = 'completed'
+    WHERE status = 'active' AND last_heartbeat >= datetime('now', '-5 minutes');
+  " 2>/dev/null || true
+fi
+
+# Output the checklist (informational — shown to model)
+if [ -n "$output" ]; then
+  echo "$output"
+fi
+
+# Allow stop (exit 0) — we use warnings, not hard blocks, because
+# the model needs agency to decide when it's truly done vs still working.
+exit 0