@ouro.bot/cli 0.1.0-alpha.42 → 0.1.0-alpha.420

package/dist/heart/cross-chat-delivery.js

@@ -0,0 +1,131 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.deliverCrossChatMessage = deliverCrossChatMessage;
+const types_1 = require("../mind/friends/types");
+const runtime_1 = require("../nerves/runtime");
+function buildPendingEnvelope(request, agentName, now) {
+    return {
+        from: agentName,
+        friendId: request.friendId,
+        channel: request.channel,
+        key: request.key,
+        content: request.content,
+        timestamp: now,
+    };
+}
+function queueForLater(request, deps, detail) {
+    deps.queuePending(buildPendingEnvelope(request, deps.agentName, (deps.now ?? Date.now)()));
+    return {
+        status: "queued_for_later",
+        detail,
+    };
+}
+function isExplicitlyAuthorized(request) {
+    return request.intent === "explicit_cross_chat"
+        && Boolean(request.authorizingSession)
+        && (0, types_1.isTrustedLevel)(request.authorizingSession?.trustLevel);
+}
+async function deliverCrossChatMessage(request, deps) {
+    (0, runtime_1.emitNervesEvent)({
+        component: "engine",
+        event: "engine.cross_chat_delivery_start",
+        message: "resolving cross-chat delivery",
+        meta: {
+            friendId: request.friendId,
+            channel: request.channel,
+            key: request.key,
+            intent: request.intent,
+            authorizingTrustLevel: request.authorizingSession?.trustLevel ?? null,
+        },
+    });
+    if (!isExplicitlyAuthorized(request) && request.intent !== "generic_outreach") {
+        const result = {
+            status: "blocked",
+            detail: "cross-chat delivery requires a trusted asking session or generic outreach intent",
+        };
+        (0, runtime_1.emitNervesEvent)({
+            level: "warn",
+            component: "engine",
+            event: "engine.cross_chat_delivery_end",
+            message: "blocked cross-chat delivery",
+            meta: {
+                friendId: request.friendId,
+                channel: request.channel,
+                key: request.key,
+                status: result.status,
+            },
+        });
+        return result;
+    }
+    const deliverer = deps.deliverers?.[request.channel];
+    if (!deliverer) {
+        const result = queueForLater(request, deps, "live delivery unavailable right now; queued for the next active turn");
+        (0, runtime_1.emitNervesEvent)({
+            component: "engine",
+            event: "engine.cross_chat_delivery_end",
+            message: "queued explicit cross-chat delivery because no live deliverer was available",
+            meta: {
+                friendId: request.friendId,
+                channel: request.channel,
+                key: request.key,
+                status: result.status,
+            },
+        });
+        return result;
+    }
+    try {
+        const direct = await deliverer(request);
+        if (direct.status === "delivered_now" || direct.status === "blocked" || direct.status === "failed") {
+            const result = {
+                status: direct.status,
+                detail: direct.detail,
+            };
+            (0, runtime_1.emitNervesEvent)({
+                level: result.status === "failed" ? "error" : result.status === "blocked" ? "warn" : "info",
+                component: "engine",
+                event: "engine.cross_chat_delivery_end",
+                message: "completed direct cross-chat delivery resolution",
+                meta: {
+                    friendId: request.friendId,
+                    channel: request.channel,
+                    key: request.key,
+                    status: result.status,
+                },
+            });
+            return result;
+        }
+        const result = queueForLater(request, deps, direct.detail.trim() || "live delivery unavailable right now; queued for the next active turn");
+        (0, runtime_1.emitNervesEvent)({
+            component: "engine",
+            event: "engine.cross_chat_delivery_end",
+            message: "queued explicit cross-chat delivery after adapter reported unavailability",
+            meta: {
+                friendId: request.friendId,
+                channel: request.channel,
+                key: request.key,
+                status: result.status,
+            },
+        });
+        return result;
+    }
+    catch (error) {
+        const result = {
+            status: "failed",
+            detail: error instanceof Error ? error.message : String(error),
+        };
+        (0, runtime_1.emitNervesEvent)({
+            level: "error",
+            component: "engine",
+            event: "engine.cross_chat_delivery_end",
+            message: "cross-chat delivery threw unexpectedly",
+            meta: {
+                friendId: request.friendId,
+                channel: request.channel,
+                key: request.key,
+                status: result.status,
+                reason: result.detail,
+            },
+        });
+        return result;
+    }
+}

package/dist/heart/daemon/agent-config-check.js

@@ -0,0 +1,419 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.vaultUnlockOrRecoverFix = vaultUnlockOrRecoverFix;
+exports.checkAgentConfig = checkAgentConfig;
+exports.checkAgentConfigWithProviderHealth = checkAgentConfigWithProviderHealth;
+const fs = __importStar(require("fs"));
+const path = __importStar(require("path"));
+const identity_1 = require("../identity");
+const runtime_1 = require("../../nerves/runtime");
+const provider_models_1 = require("../provider-models");
+const machine_identity_1 = require("../machine-identity");
+const provider_state_1 = require("../provider-state");
+const provider_credentials_1 = require("../provider-credentials");
+const vault_unlock_1 = require("../../repertoire/vault-unlock");
+const readiness_repair_1 = require("./readiness-repair");
+function isAgentProvider(value) {
+    return Object.prototype.hasOwnProperty.call(identity_1.PROVIDER_CREDENTIALS, value);
+}
+function agentRootFor(agentName, bundlesRoot) {
+    return path.join(bundlesRoot, `${agentName}.ouro`);
+}
+function configPathFor(agentName, bundlesRoot) {
+    return path.join(agentRootFor(agentName, bundlesRoot), "agent.json");
+}
+function resolveFacingProvider(parsed, facing, agentName, agentJsonPath) {
+    const raw = parsed[facing];
+    if (!raw || typeof raw !== "object" || Array.isArray(raw)) {
+        return {
+            ok: false,
+            result: {
+                ok: false,
+                error: `agent.json for '${agentName}' is missing ${facing}.provider`,
+                fix: `Add ${facing}: { provider, model } to ${agentJsonPath}. Valid providers: ${Object.keys(identity_1.PROVIDER_CREDENTIALS).join(", ")}`,
+            },
+        };
+    }
+    const provider = raw.provider;
+    if (typeof provider !== "string" || provider.length === 0) {
+        return {
+            ok: false,
+            result: {
+                ok: false,
+                error: `agent.json for '${agentName}' is missing ${facing}.provider`,
+                fix: `Set ${facing}.provider in ${agentJsonPath}. Valid providers: ${Object.keys(identity_1.PROVIDER_CREDENTIALS).join(", ")}`,
+            },
+        };
+    }
+    if (!isAgentProvider(provider)) {
+        return {
+            ok: false,
+            result: {
+                ok: false,
+                error: `Unknown provider '${provider}' in ${facing}.provider for '${agentName}'`,
+                fix: `Set ${facing}.provider to one of: ${Object.keys(identity_1.PROVIDER_CREDENTIALS).join(", ")}`,
+            },
+        };
+    }
+    return { ok: true, selected: { facing, provider } };
+}
+function readAgentConfigForProviderState(agentName, bundlesRoot) {
+    const agentJsonPath = configPathFor(agentName, bundlesRoot);
+    let raw;
+    try {
+        raw = fs.readFileSync(agentJsonPath, "utf-8");
+    }
+    catch {
+        return {
+            ok: false,
+            result: {
+                ok: false,
+                error: `agent.json not found at ${agentJsonPath}`,
+                fix: `Run 'ouro hatch ${agentName}' to create the agent bundle, or verify that ${bundlesRoot}/${agentName}.ouro/ exists.`,
+            },
+        };
+    }
+    let parsed;
+    try {
+        parsed = JSON.parse(raw);
+    }
+    catch {
+        return {
+            ok: false,
+            result: {
+                ok: false,
+                error: `agent.json at ${agentJsonPath} contains invalid JSON`,
+                fix: `Open ${agentJsonPath} and fix the JSON syntax.`,
+            },
+        };
+    }
+    if (parsed.enabled === false) {
+        return { ok: true, disabled: true, agentJsonPath, parsed };
+    }
+    return { ok: true, disabled: false, agentJsonPath, parsed };
+}
+function readFacingForBootstrap(parsed, facing, agentName, agentJsonPath) {
+    const providerResult = resolveFacingProvider(parsed, facing, agentName, agentJsonPath);
+    if (!providerResult.ok) {
+        return {
+            ok: false,
+            result: {
+                ok: false,
+                error: providerResult.result.error,
+                fix: `Run 'ouro use --agent ${agentName} --lane ${facing === "humanFacing" ? "outward" : "inner"} --provider <provider> --model <model>' to configure this machine's provider binding.`,
+            },
+        };
+    }
+    const raw = parsed[facing];
+    const model = typeof raw.model === "string" && raw.model.trim().length > 0
+        ? raw.model.trim()
+        : (0, provider_models_1.getDefaultModelForProvider)(providerResult.selected.provider);
+    return { ok: true, provider: providerResult.selected.provider, model };
+}
+function bootstrapMissingProviderState(input) {
+    const outward = readFacingForBootstrap(input.parsed, "humanFacing", input.agentName, input.agentJsonPath);
+    if (!outward.ok)
+        return { ok: false, error: outward.result.error, fix: outward.result.fix };
+    const inner = readFacingForBootstrap(input.parsed, "agentFacing", input.agentName, input.agentJsonPath);
+    if (!inner.ok)
+        return { ok: false, error: inner.result.error, fix: inner.result.fix };
+    const now = new Date();
+    const homeDir = (0, provider_credentials_1.providerCredentialMachineHomeDir)(input.homeDir);
+    const machine = (0, machine_identity_1.loadOrCreateMachineIdentity)({ homeDir, now: () => now });
+    const state = (0, provider_state_1.bootstrapProviderStateFromAgentConfig)({
+        machineId: machine.machineId,
+        now,
+        agentConfig: {
+            humanFacing: { provider: outward.provider, model: outward.model },
+            agentFacing: { provider: inner.provider, model: inner.model },
+        },
+    });
+    const agentRoot = agentRootFor(input.agentName, input.bundlesRoot);
+    (0, provider_state_1.writeProviderState)(agentRoot, state);
+    (0, runtime_1.emitNervesEvent)({
+        component: "daemon",
+        event: "daemon.provider_state_bootstrapped",
+        message: "bootstrapped local provider state from agent config",
+        meta: { agent: input.agentName, agentRoot },
+    });
+    return { ok: true, agentRoot, state };
+}
+function readOrBootstrapProviderStateForCheck(agentName, bundlesRoot, deps = {}) {
+    const configResult = readAgentConfigForProviderState(agentName, bundlesRoot);
+    if (!configResult.ok)
+        return { ok: false, result: configResult.result };
+    if (configResult.disabled)
+        return { ok: true, disabled: true };
+    const agentRoot = agentRootFor(agentName, bundlesRoot);
+    const stateResult = (0, provider_state_1.readProviderState)(agentRoot);
+    if (stateResult.ok) {
+        return { ok: true, disabled: false, agentRoot, state: stateResult.state };
+    }
+    if (stateResult.reason === "invalid") {
+        return {
+            ok: false,
+            result: {
+                ok: false,
+                error: `provider state for ${agentName} is invalid at ${stateResult.statePath}: ${stateResult.error}`,
+                fix: `Run 'ouro use --agent ${agentName} --lane outward --provider <provider> --model <model> --force' to rewrite this machine's provider binding.`,
+            },
+        };
+    }
+    const bootstrap = bootstrapMissingProviderState({
+        agentName,
+        bundlesRoot,
+        parsed: configResult.parsed,
+        agentJsonPath: configResult.agentJsonPath,
+        homeDir: deps.homeDir,
+    });
+    if (!bootstrap.ok)
+        return { ok: false, result: bootstrap };
+    return { ok: true, disabled: false, agentRoot: bootstrap.agentRoot, state: bootstrap.state };
+}
+function providerCredentialConfig(record) {
+    return {
+        ...record.credentials,
+        ...record.config,
+    };
+}
+function pingAttemptCount(result) {
+    if (Array.isArray(result.attempts))
+        return result.attempts.length;
+    return undefined;
+}
+function writeLaneReadiness(input) {
+    const binding = input.state.lanes[input.lane];
+    const checkedAt = new Date().toISOString();
+    input.state.updatedAt = checkedAt;
+    input.state.readiness[input.lane] = {
+        status: input.status,
+        provider: binding.provider,
+        model: binding.model,
+        checkedAt,
+        credentialRevision: input.credentialRevision,
+        ...(input.error ? { error: input.error } : {}),
+        ...(input.attempts !== undefined ? { attempts: input.attempts } : {}),
+    };
+    (0, provider_state_1.writeProviderState)(input.agentRoot, input.state);
+}
+function missingCredentialResult(agentName, lane, provider, model, credentialPath) {
+    return {
+        ok: false,
+        error: `${lane} provider ${provider} model ${model} has no credentials in ${agentName}'s vault at ${credentialPath}`,
+        fix: `Run 'ouro auth --agent ${agentName} --provider ${provider}' to authenticate.`,
+        issue: (0, readiness_repair_1.providerCredentialMissingIssue)({
+            agentName,
+            lane,
+            provider,
+            model,
+            credentialPath,
+        }),
+    };
+}
+function isTransientVaultError(error) {
+    const normalized = error.toLowerCase();
+    return (normalized.includes("timed out") ||
+        normalized.includes("econnrefused") ||
+        normalized.includes("socket hang up") ||
+        normalized.includes("etimedout"));
+}
+function invalidPoolResult(agentName, lane, provider, model, pool) {
+    if (pool.reason === "unavailable" && isTransientVaultError(pool.error)) {
+        return {
+            ok: false,
+            error: `${lane} provider ${provider} model ${model} cannot read provider credentials from ${agentName}'s vault: ${pool.error}`,
+            fix: `Vault read timed out -- this usually resolves on retry. Run 'ouro up' again.`,
+        };
+    }
+    if (pool.reason === "unavailable" && isVaultLockedError(pool.error)) {
+        return {
+            ok: false,
+            error: `${lane} provider ${provider} model ${model} cannot read provider credentials because ${agentName}'s credential vault is locked on this machine.`,
+            fix: vaultUnlockOrRecoverFix(agentName),
+            issue: (0, readiness_repair_1.vaultLockedIssue)(agentName),
+        };
+    }
+    if (pool.reason === "unavailable" && (0, vault_unlock_1.isCredentialVaultNotConfiguredError)(pool.error)) {
+        return {
+            ok: false,
+            error: `${lane} provider ${provider} model ${model} cannot read provider credentials because ${agentName}'s credential vault is not configured in agent.json.`,
+            fix: (0, vault_unlock_1.vaultCreateRecoverFix)(agentName, `Then run 'ouro auth --agent ${agentName} --provider ${provider}' and rerun 'ouro up'.`),
+            issue: (0, readiness_repair_1.vaultUnconfiguredIssue)(agentName),
+        };
+    }
+    if (pool.reason === "invalid") {
+        return {
+            ok: false,
+            error: `${lane} provider ${provider} model ${model} cannot read provider credentials from ${agentName}'s vault at ${pool.poolPath}: ${pool.error}`,
+            fix: `Run 'ouro auth --agent ${agentName} --provider ${provider}' to rewrite this provider credential, then run 'ouro up' again.`,
+        };
+    }
+    return {
+        ok: false,
+        error: `${lane} provider ${provider} model ${model} cannot read provider credentials from ${agentName}'s vault at ${pool.poolPath}: ${pool.error}`,
+        fix: vaultUnlockOrRecoverFix(agentName, `Then run 'ouro up' again. If the credential is missing or stale after unlock or recovery, run 'ouro auth --agent ${agentName} --provider ${provider}'.`),
+    };
+}
+function isVaultLockedError(error) {
+    const normalized = error.toLowerCase();
+    return /(?:ouro )?credential vault is locked|vault(?: is)? locked/.test(normalized);
+}
+function vaultUnlockOrRecoverFix(agentName, nextStep = "Then run 'ouro up' again.") {
+    return (0, vault_unlock_1.vaultUnlockReplaceRecoverFix)(agentName, nextStep);
+}
+function failedPingResult(agentName, lane, provider, model, result) {
+    return {
+        ok: false,
+        error: `${lane} provider ${provider} model ${model} failed live check: ${result.message}`,
+        fix: `Run 'ouro auth --agent ${agentName} --provider ${provider}' to refresh credentials.`,
+        issue: (0, readiness_repair_1.providerLiveCheckFailedIssue)({
+            agentName,
+            lane,
+            provider,
+            model,
+            message: result.message,
+        }),
+    };
+}
+function credentialRecordForLane(pool, provider) {
+    return pool.providers[provider];
+}
+/**
+ * Structural validation only. Live provider credential validation belongs to
+ * checkAgentConfigWithProviderHealth(), which reads the agent vault and pings.
+ */
+function checkAgentConfig(agentName, bundlesRoot) {
+    const configResult = readAgentConfigForProviderState(agentName, bundlesRoot);
+    if (!configResult.ok)
+        return configResult.result;
+    if (configResult.disabled)
+        return { ok: true };
+    const outward = readFacingForBootstrap(configResult.parsed, "humanFacing", agentName, configResult.agentJsonPath);
+    if (!outward.ok)
+        return outward.result;
+    const inner = readFacingForBootstrap(configResult.parsed, "agentFacing", agentName, configResult.agentJsonPath);
+    if (!inner.ok)
+        return inner.result;
+    (0, runtime_1.emitNervesEvent)({
+        component: "daemon",
+        event: "daemon.agent_config_valid",
+        message: "agent config validation passed",
+        meta: {
+            agent: agentName,
+            providers: [...new Set([outward.provider, inner.provider])],
+            liveProviderCheck: false,
+        },
+    });
+    return { ok: true };
+}
+async function checkAgentConfigWithProviderHealth(agentName, bundlesRoot, deps = {}) {
+    const stateResult = readOrBootstrapProviderStateForCheck(agentName, bundlesRoot, deps);
+    if (!stateResult.ok)
+        return stateResult.result;
+    if (stateResult.disabled)
+        return { ok: true };
+    const ping = deps.pingProvider ?? (await Promise.resolve().then(() => __importStar(require("../provider-ping")))).pingProvider;
+    const poolResult = await (0, provider_credentials_1.refreshProviderCredentialPool)(agentName, deps.onProgress ? { onProgress: deps.onProgress } : undefined);
+    const pingGroups = new Map();
+    const lanes = ["outward", "inner"];
+    for (const lane of lanes) {
+        const binding = stateResult.state.lanes[lane];
+        if (!poolResult.ok) {
+            if (poolResult.reason === "missing") {
+                return missingCredentialResult(agentName, lane, binding.provider, binding.model, poolResult.poolPath);
+            }
+            return invalidPoolResult(agentName, lane, binding.provider, binding.model, {
+                ...poolResult,
+                reason: poolResult.reason,
+            });
+        }
+        const record = credentialRecordForLane(poolResult.pool, binding.provider);
+        if (!record) {
+            return missingCredentialResult(agentName, lane, binding.provider, binding.model, poolResult.poolPath);
+        }
+        const key = `${binding.provider}\0${binding.model}\0${record.revision}`;
+        const group = pingGroups.get(key);
+        if (group) {
+            group.lanes.push(lane);
+        }
+        else {
+            pingGroups.set(key, {
+                provider: binding.provider,
+                model: binding.model,
+                record,
+                lanes: [lane],
+            });
+        }
+    }
+    for (const group of pingGroups.values()) {
+        const result = await ping(group.provider, providerCredentialConfig(group.record), { model: group.model });
+        if (!result.ok) {
+            for (const lane of group.lanes) {
+                writeLaneReadiness({
+                    agentRoot: stateResult.agentRoot,
+                    state: stateResult.state,
+                    lane,
+                    status: "failed",
+                    credentialRevision: group.record.revision,
+                    error: result.message,
+                    attempts: pingAttemptCount(result),
+                });
+            }
+            return failedPingResult(agentName, group.lanes[0], group.provider, group.model, result);
+        }
+        for (const lane of group.lanes) {
+            writeLaneReadiness({
+                agentRoot: stateResult.agentRoot,
+                state: stateResult.state,
+                lane,
+                status: "ready",
+                credentialRevision: group.record.revision,
+                attempts: pingAttemptCount(result),
+            });
+        }
+    }
+    (0, runtime_1.emitNervesEvent)({
+        component: "daemon",
+        event: "daemon.agent_config_valid",
+        message: "agent config validation passed",
+        meta: {
+            agent: agentName,
+            providers: [...new Set([...pingGroups.values()].map((group) => group.provider))],
+            liveProviderCheck: true,
+        },
+    });
+    return { ok: true };
+}

package/dist/heart/daemon/agent-discovery.js

@@ -33,12 +33,25 @@ var __importStar = (this && this.__importStar) || (function () {
     };
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
+exports.listAllBundleAgents = listAllBundleAgents;
 exports.listEnabledBundleAgents = listEnabledBundleAgents;
+exports.listBundleSyncRows = listBundleSyncRows;
 const fs = __importStar(require("fs"));
 const path = __importStar(require("path"));
+const child_process_1 = require("child_process");
 const identity_1 = require("../identity");
 const runtime_1 = require("../../nerves/runtime");
-function listEnabledBundleAgents(options = {}) {
+/**
+ * Walk the bundles root and return one row per `<name>.ouro` directory whose
+ * `agent.json` is readable and parseable. Includes both enabled and disabled
+ * agents — the caller decides what to do with the `enabled` flag.
+ *
+ * Bundles whose `agent.json` is missing, malformed, or unreadable are skipped
+ * silently (they aren't real agents from the harness's perspective).
+ *
+ * Sorted alphabetically by name for stable display.
+ */
+function listAllBundleAgents(options = {}) {
     const bundlesRoot = options.bundlesRoot ?? (0, identity_1.getAgentBundlesRoot)();
     const readdirSync = options.readdirSync ?? fs.readdirSync;
     const readFileSync = options.readFileSync ?? fs.readFileSync;
@@ -73,9 +86,72 @@ function listEnabledBundleAgents(options = {}) {
         catch {
             continue;
         }
+        discovered.push({ name: agentName, enabled });
+    }
+    return discovered.sort((left, right) => left.name.localeCompare(right.name));
+}
+function listEnabledBundleAgents(options = {}) {
+    return listAllBundleAgents(options).filter((row) => row.enabled).map((row) => row.name);
+}
+/**
+ * Read the per-agent sync block from each enabled bundle's agent.json.
+ * Used by the daemon (and stopped-state status renderer) to build per-agent
+ * sync rows without depending on argv-derived global identity. Bundles that
+ * cannot be read are skipped silently.
+ *
+ * For rows with sync enabled, also checks whether the bundle is a git repo
+ * (via .git directory presence) and resolves the remote URL via
+ * `git remote get-url <remote>`. On any error the URL is left undefined and
+ * the status renderer falls back to "local only" or "not a git repo".
+ */
+function listBundleSyncRows(options = {}) {
+    const bundlesRoot = options.bundlesRoot ?? (0, identity_1.getAgentBundlesRoot)();
+    const readFileSync = options.readFileSync ?? fs.readFileSync;
+    const execFileSync = options.execFileSync ?? child_process_1.execFileSync;
+    const existsSync = options.existsSync ?? fs.existsSync;
+    const agents = listEnabledBundleAgents(options);
+    const rows = [];
+    for (const agent of agents) {
+        const bundleRoot = path.join(bundlesRoot, `${agent}.ouro`);
+        const configPath = path.join(bundleRoot, "agent.json");
+        let enabled = false;
+        let remote = "origin";
+        try {
+            const raw = readFileSync(configPath, "utf-8");
+            const parsed = JSON.parse(raw);
+            if (parsed.sync && typeof parsed.sync === "object") {
+                if (typeof parsed.sync.enabled === "boolean")
+                    enabled = parsed.sync.enabled;
+                if (typeof parsed.sync.remote === "string" && parsed.sync.remote.length > 0) {
+                    remote = parsed.sync.remote;
+                }
+            }
+        }
+        catch {
+            // Best-effort: bundle without readable config still gets a row with defaults
+        }
+        const row = { agent, enabled, remote };
         if (enabled) {
-            discovered.push(agentName);
+            // Only meaningful when sync is enabled — we don't care about disabled bundles'
+            // git state. Check .git presence before attempting any git invocation.
+            const gitInitialized = existsSync(path.join(bundleRoot, ".git"));
+            row.gitInitialized = gitInitialized;
+            if (gitInitialized) {
+                try {
+                    const out = execFileSync("git", ["remote", "get-url", remote], {
+                        cwd: bundleRoot,
+                        stdio: "pipe",
+                        timeout: 5000,
+                    }).toString().trim();
+                    if (out.length > 0)
+                        row.remoteUrl = out;
+                }
+                catch {
+                    // No remote configured or git missing — leave remoteUrl undefined.
+                }
+            }
         }
+        rows.push(row);
     }
-    return discovered.sort((left, right) => left.localeCompare(right));
+    return rows;
 }