npm - @pellux/goodvibes-agent - Versions diffs - 0.1.0 - Mend

@pellux/goodvibes-agent 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (398) hide show

package/.goodvibes/GOODVIBES.md +35 -0
package/.goodvibes/agents/reviewer.md +48 -0
package/.goodvibes/skills/add-provider/SKILL.md +199 -0
package/CHANGELOG.md +25 -0
package/README.md +74 -0
package/bin/goodvibes-agent.ts +2 -0
package/docs/README.md +23 -0
package/docs/deployment-and-services.md +57 -0
package/docs/getting-started.md +53 -0
package/docs/release-and-publishing.md +46 -0
package/package.json +134 -0
package/scripts/check-bun.sh +20 -0
package/src/audio/player.ts +156 -0
package/src/audio/spoken-turn-controller.ts +203 -0
package/src/audio/spoken-turn-model-routing.ts +117 -0
package/src/audio/spoken-turn-wiring.ts +44 -0
package/src/audio/text-chunker.ts +110 -0
package/src/cli/bundle-command.ts +227 -0
package/src/cli/completion.ts +90 -0
package/src/cli/config-overrides.ts +159 -0
package/src/cli/endpoints.ts +63 -0
package/src/cli/entrypoint.ts +172 -0
package/src/cli/help.ts +299 -0
package/src/cli/index.ts +11 -0
package/src/cli/management-commands.ts +426 -0
package/src/cli/management.ts +744 -0
package/src/cli/network-posture.ts +46 -0
package/src/cli/package-verification.ts +123 -0
package/src/cli/parser.ts +369 -0
package/src/cli/provider-auth-routes.ts +22 -0
package/src/cli/provider-classification.ts +107 -0
package/src/cli/redaction.ts +105 -0
package/src/cli/service-command.ts +26 -0
package/src/cli/service-posture.ts +482 -0
package/src/cli/status.ts +383 -0
package/src/cli/surface-command.ts +247 -0
package/src/cli/tui-startup.ts +32 -0
package/src/cli/types.ts +69 -0
package/src/cli-flags.ts +21 -0
package/src/config/goodvibes-home-audit.ts +465 -0
package/src/config/index.ts +57 -0
package/src/config/provider-model.ts +23 -0
package/src/config/secret-config.ts +119 -0
package/src/config/secrets.ts +71 -0
package/src/config/surface.ts +1 -0
package/src/core/composer-state.ts +61 -0
package/src/core/conversation-rendering.ts +359 -0
package/src/core/conversation.ts +551 -0
package/src/core/history.ts +45 -0
package/src/core/orchestrator.ts +7 -0
package/src/core/system-message-router.ts +171 -0
package/src/daemon/cli.ts +55 -0
package/src/daemon/safe-serve.ts +61 -0
package/src/input/agent-workspace.ts +428 -0
package/src/input/autocomplete.ts +96 -0
package/src/input/bookmark-modal.ts +115 -0
package/src/input/command-args-hint.ts +36 -0
package/src/input/command-registry.ts +329 -0
package/src/input/commands/agent-externalized-tui.ts +73 -0
package/src/input/commands/agent-workspace-runtime.ts +17 -0
package/src/input/commands/branch-runtime.ts +72 -0
package/src/input/commands/cloudflare-runtime.ts +370 -0
package/src/input/commands/config.ts +18 -0
package/src/input/commands/control-room-runtime.ts +255 -0
package/src/input/commands/conversation-runtime.ts +207 -0
package/src/input/commands/discovery-runtime.ts +52 -0
package/src/input/commands/eval.ts +204 -0
package/src/input/commands/experience-runtime.ts +278 -0
package/src/input/commands/guidance-runtime.ts +106 -0
package/src/input/commands/health-runtime.ts +434 -0
package/src/input/commands/hooks-runtime.ts +148 -0
package/src/input/commands/incident-runtime.ts +95 -0
package/src/input/commands/integration-runtime.ts +394 -0
package/src/input/commands/intelligence-runtime.ts +223 -0
package/src/input/commands/knowledge.ts +531 -0
package/src/input/commands/local-auth-runtime.ts +105 -0
package/src/input/commands/local-provider-runtime.ts +170 -0
package/src/input/commands/local-runtime.ts +392 -0
package/src/input/commands/local-setup-review.ts +199 -0
package/src/input/commands/local-setup-transfer.ts +135 -0
package/src/input/commands/local-setup.ts +282 -0
package/src/input/commands/managed-runtime.ts +209 -0
package/src/input/commands/marketplace-runtime.ts +290 -0
package/src/input/commands/mcp-runtime.ts +432 -0
package/src/input/commands/memory-product-runtime.ts +111 -0
package/src/input/commands/memory.ts +151 -0
package/src/input/commands/notify-runtime.ts +83 -0
package/src/input/commands/onboarding-runtime.ts +14 -0
package/src/input/commands/operator-panel-runtime.ts +146 -0
package/src/input/commands/operator-runtime.ts +392 -0
package/src/input/commands/planning-runtime.ts +205 -0
package/src/input/commands/platform-access-runtime.ts +422 -0
package/src/input/commands/platform-services-runtime.ts +246 -0
package/src/input/commands/policy-dispatch.ts +339 -0
package/src/input/commands/policy.ts +17 -0
package/src/input/commands/product-runtime.ts +351 -0
package/src/input/commands/profile-sync-runtime.ts +99 -0
package/src/input/commands/provider-accounts-runtime.ts +113 -0
package/src/input/commands/provider.ts +363 -0
package/src/input/commands/qrcode-runtime.ts +20 -0
package/src/input/commands/quit-shared.ts +162 -0
package/src/input/commands/recall-bundle.ts +132 -0
package/src/input/commands/recall-capture.ts +152 -0
package/src/input/commands/recall-query.ts +229 -0
package/src/input/commands/recall-review.ts +98 -0
package/src/input/commands/recall-shared.ts +22 -0
package/src/input/commands/remote-runtime-pool.ts +106 -0
package/src/input/commands/remote-runtime-setup.ts +199 -0
package/src/input/commands/remote-runtime.ts +431 -0
package/src/input/commands/replay-runtime.ts +18 -0
package/src/input/commands/runtime-services.ts +291 -0
package/src/input/commands/schedule-runtime.ts +91 -0
package/src/input/commands/services-runtime.ts +209 -0
package/src/input/commands/session-content.ts +408 -0
package/src/input/commands/session-workflow.ts +464 -0
package/src/input/commands/session.ts +375 -0
package/src/input/commands/settings-sync-runtime.ts +174 -0
package/src/input/commands/share-runtime.ts +119 -0
package/src/input/commands/shell-core.ts +307 -0
package/src/input/commands/skills-runtime.ts +221 -0
package/src/input/commands/subscription-runtime.ts +434 -0
package/src/input/commands/tasks-runtime.ts +230 -0
package/src/input/commands/teamwork-runtime.ts +339 -0
package/src/input/commands/teleport-runtime.ts +57 -0
package/src/input/commands/tts-runtime.ts +29 -0
package/src/input/commands/work-plan-runtime.ts +169 -0
package/src/input/commands.ts +131 -0
package/src/input/feed-context-factory.ts +254 -0
package/src/input/file-picker.ts +192 -0
package/src/input/handler-command-route.ts +180 -0
package/src/input/handler-content-actions.ts +497 -0
package/src/input/handler-feed-routes.ts +648 -0
package/src/input/handler-feed.ts +452 -0
package/src/input/handler-interactions.ts +281 -0
package/src/input/handler-modal-routes.ts +418 -0
package/src/input/handler-modal-stack.ts +263 -0
package/src/input/handler-modal-token-routes.ts +329 -0
package/src/input/handler-onboarding-cloudflare.ts +391 -0
package/src/input/handler-onboarding.ts +620 -0
package/src/input/handler-picker-routes.ts +472 -0
package/src/input/handler-prompt-buffer.ts +320 -0
package/src/input/handler-shortcuts.ts +213 -0
package/src/input/handler-ui-state.ts +372 -0
package/src/input/handler.ts +729 -0
package/src/input/input-history.ts +297 -0
package/src/input/keybindings.ts +292 -0
package/src/input/mcp-workspace.ts +554 -0
package/src/input/model-picker-provider-filter.ts +28 -0
package/src/input/model-picker-types.ts +137 -0
package/src/input/model-picker.ts +797 -0
package/src/input/onboarding/handler-onboarding-routes.ts +125 -0
package/src/input/onboarding/onboarding-runtime-status.ts +87 -0
package/src/input/onboarding/onboarding-wizard-apply.ts +277 -0
package/src/input/onboarding/onboarding-wizard-cloudflare-step.ts +494 -0
package/src/input/onboarding/onboarding-wizard-cloudflare.ts +204 -0
package/src/input/onboarding/onboarding-wizard-constants.ts +158 -0
package/src/input/onboarding/onboarding-wizard-external-surface-extra-specs.ts +130 -0
package/src/input/onboarding/onboarding-wizard-external-surfaces.ts +762 -0
package/src/input/onboarding/onboarding-wizard-helpers.ts +167 -0
package/src/input/onboarding/onboarding-wizard-rules.ts +256 -0
package/src/input/onboarding/onboarding-wizard-state.ts +365 -0
package/src/input/onboarding/onboarding-wizard-steps.ts +798 -0
package/src/input/onboarding/onboarding-wizard-types.ts +195 -0
package/src/input/onboarding/onboarding-wizard.ts +711 -0
package/src/input/panel-integration-actions.ts +78 -0
package/src/input/profile-picker-modal.ts +222 -0
package/src/input/search.ts +100 -0
package/src/input/selection-modal.ts +163 -0
package/src/input/selection.ts +135 -0
package/src/input/session-picker-modal.ts +136 -0
package/src/input/settings-modal-behavior.ts +37 -0
package/src/input/settings-modal-secrets.ts +41 -0
package/src/input/settings-modal-subscriptions.ts +95 -0
package/src/input/settings-modal-types.ts +91 -0
package/src/input/settings-modal.ts +793 -0
package/src/input/submission-intent.ts +17 -0
package/src/input/submission-router.ts +59 -0
package/src/input/tts-settings-actions.ts +100 -0
package/src/main.ts +792 -0
package/src/mcp/runtime-reload.ts +81 -0
package/src/panels/agent-inspector-panel.ts +521 -0
package/src/panels/agent-inspector-shared.ts +94 -0
package/src/panels/agent-logs-panel.ts +559 -0
package/src/panels/agent-logs-shared.ts +129 -0
package/src/panels/approval-panel.ts +150 -0
package/src/panels/automation-control-panel.ts +212 -0
package/src/panels/base-panel.ts +254 -0
package/src/panels/builtin/agent.ts +117 -0
package/src/panels/builtin/development.ts +31 -0
package/src/panels/builtin/knowledge.ts +26 -0
package/src/panels/builtin/operations.ts +349 -0
package/src/panels/builtin/session.ts +129 -0
package/src/panels/builtin/shared.ts +274 -0
package/src/panels/builtin-panels.ts +23 -0
package/src/panels/cockpit-panel.ts +183 -0
package/src/panels/communication-panel.ts +153 -0
package/src/panels/confirm-state.ts +61 -0
package/src/panels/context-visualizer-panel.ts +204 -0
package/src/panels/control-plane-panel.ts +211 -0
package/src/panels/cost-tracker-panel.ts +444 -0
package/src/panels/debug-panel.ts +432 -0
package/src/panels/diff-panel.ts +520 -0
package/src/panels/docs-panel.ts +283 -0
package/src/panels/eval-panel.ts +399 -0
package/src/panels/file-explorer-panel.ts +584 -0
package/src/panels/file-preview-panel.ts +434 -0
package/src/panels/forensics-panel.ts +364 -0
package/src/panels/git-panel.ts +638 -0
package/src/panels/hooks-panel.ts +239 -0
package/src/panels/incident-review-panel.ts +197 -0
package/src/panels/index.ts +46 -0
package/src/panels/intelligence-panel.ts +176 -0
package/src/panels/knowledge-panel.ts +345 -0
package/src/panels/local-auth-panel.ts +130 -0
package/src/panels/marketplace-panel.ts +212 -0
package/src/panels/memory-panel.ts +225 -0
package/src/panels/ops-control-panel.ts +150 -0
package/src/panels/ops-strategy-panel.ts +235 -0
package/src/panels/orchestration-panel.ts +273 -0
package/src/panels/panel-list-panel.ts +509 -0
package/src/panels/panel-manager.ts +570 -0
package/src/panels/panel-picker.ts +106 -0
package/src/panels/plan-dashboard-panel.ts +274 -0
package/src/panels/plugins-panel.ts +178 -0
package/src/panels/policy-panel.ts +308 -0
package/src/panels/polish.ts +717 -0
package/src/panels/project-planning-panel.ts +711 -0
package/src/panels/provider-account-snapshot.ts +259 -0
package/src/panels/provider-accounts-panel.ts +218 -0
package/src/panels/provider-health-domains.ts +215 -0
package/src/panels/provider-health-panel.ts +727 -0
package/src/panels/provider-health-tracker.ts +115 -0
package/src/panels/provider-stats-panel.ts +366 -0
package/src/panels/qr-panel.ts +182 -0
package/src/panels/remote-panel.ts +449 -0
package/src/panels/routes-panel.ts +178 -0
package/src/panels/sandbox-panel.ts +283 -0
package/src/panels/schedule-panel.ts +329 -0
package/src/panels/scrollable-list-panel.ts +491 -0
package/src/panels/search-focus.ts +32 -0
package/src/panels/security-panel.ts +295 -0
package/src/panels/services-panel.ts +231 -0
package/src/panels/session-browser-panel.ts +400 -0
package/src/panels/session-maintenance.ts +125 -0
package/src/panels/settings-sync-panel.ts +120 -0
package/src/panels/skills-panel.ts +431 -0
package/src/panels/subscription-panel.ts +263 -0
package/src/panels/symbol-outline-panel.ts +486 -0
package/src/panels/system-messages-panel.ts +230 -0
package/src/panels/tasks-panel.ts +399 -0
package/src/panels/thinking-panel.ts +304 -0
package/src/panels/token-budget-panel.ts +475 -0
package/src/panels/tool-inspector-panel.ts +429 -0
package/src/panels/types.ts +54 -0
package/src/panels/watchers-panel.ts +193 -0
package/src/panels/work-plan-panel.ts +175 -0
package/src/panels/worktree-panel.ts +182 -0
package/src/panels/wrfc-panel.ts +609 -0
package/src/permissions/prompt.ts +165 -0
package/src/planning/project-planning-coordinator.ts +543 -0
package/src/plugins/loader.ts +15 -0
package/src/renderer/agent-detail-modal.ts +331 -0
package/src/renderer/agent-workspace.ts +238 -0
package/src/renderer/ansi-sanitize.ts +76 -0
package/src/renderer/autocomplete-overlay.ts +154 -0
package/src/renderer/block-actions.ts +76 -0
package/src/renderer/bookmark-modal.ts +101 -0
package/src/renderer/bottom-bar.ts +58 -0
package/src/renderer/buffer.ts +113 -0
package/src/renderer/code-block.ts +373 -0
package/src/renderer/compositor.ts +283 -0
package/src/renderer/context-inspector.ts +219 -0
package/src/renderer/conversation-layout.ts +67 -0
package/src/renderer/conversation-overlays.ts +140 -0
package/src/renderer/conversation-surface.ts +260 -0
package/src/renderer/diff-view.ts +132 -0
package/src/renderer/diff.ts +130 -0
package/src/renderer/file-picker-overlay.ts +101 -0
package/src/renderer/file-tree.ts +153 -0
package/src/renderer/fullscreen-primitives.ts +130 -0
package/src/renderer/fullscreen-workspace.ts +199 -0
package/src/renderer/git-status.ts +89 -0
package/src/renderer/help-overlay.ts +267 -0
package/src/renderer/history-search-overlay.ts +73 -0
package/src/renderer/layout-engine.ts +97 -0
package/src/renderer/layout.ts +32 -0
package/src/renderer/live-tail-modal.ts +156 -0
package/src/renderer/markdown.ts +635 -0
package/src/renderer/mcp-workspace.ts +237 -0
package/src/renderer/modal-factory.ts +467 -0
package/src/renderer/modal-utils.ts +24 -0
package/src/renderer/model-picker-overlay.ts +473 -0
package/src/renderer/model-workspace.ts +488 -0
package/src/renderer/onboarding/onboarding-wizard.ts +615 -0
package/src/renderer/overlay-box.ts +146 -0
package/src/renderer/overlay-viewport.ts +104 -0
package/src/renderer/panel-composite.ts +158 -0
package/src/renderer/panel-picker-overlay.ts +202 -0
package/src/renderer/panel-tab-bar.ts +69 -0
package/src/renderer/panel-workspace-bar.ts +42 -0
package/src/renderer/process-indicator.ts +96 -0
package/src/renderer/process-modal.ts +656 -0
package/src/renderer/process-summary.ts +67 -0
package/src/renderer/profile-picker-modal.ts +129 -0
package/src/renderer/progress.ts +98 -0
package/src/renderer/qr-renderer.ts +120 -0
package/src/renderer/search-overlay.ts +54 -0
package/src/renderer/selection-modal-overlay.ts +214 -0
package/src/renderer/semantic-diff.ts +369 -0
package/src/renderer/session-picker-modal.ts +127 -0
package/src/renderer/settings-modal-helpers.ts +193 -0
package/src/renderer/settings-modal.ts +537 -0
package/src/renderer/shell-surface.ts +88 -0
package/src/renderer/status-glyphs.ts +21 -0
package/src/renderer/status-token.ts +67 -0
package/src/renderer/surface-layout.ts +101 -0
package/src/renderer/syntax-highlighter.ts +542 -0
package/src/renderer/system-message.ts +83 -0
package/src/renderer/tab-strip.ts +108 -0
package/src/renderer/text-layout.ts +31 -0
package/src/renderer/thinking.ts +17 -0
package/src/renderer/tool-call.ts +234 -0
package/src/renderer/ui-factory.ts +524 -0
package/src/renderer/ui-primitives.ts +96 -0
package/src/runtime/bootstrap-command-context.ts +278 -0
package/src/runtime/bootstrap-command-parts.ts +386 -0
package/src/runtime/bootstrap-core.ts +540 -0
package/src/runtime/bootstrap-hook-bridge.ts +112 -0
package/src/runtime/bootstrap-shell.ts +283 -0
package/src/runtime/bootstrap.ts +575 -0
package/src/runtime/cloudflare-control-plane.ts +349 -0
package/src/runtime/context.ts +142 -0
package/src/runtime/diagnostics/panels/index.ts +24 -0
package/src/runtime/diagnostics/panels/ops.ts +156 -0
package/src/runtime/diagnostics/panels/panel-resources.ts +118 -0
package/src/runtime/diagnostics/panels/policy.ts +177 -0
package/src/runtime/index.ts +662 -0
package/src/runtime/onboarding/apply.ts +642 -0
package/src/runtime/onboarding/derivation.ts +534 -0
package/src/runtime/onboarding/index.ts +7 -0
package/src/runtime/onboarding/markers.ts +148 -0
package/src/runtime/onboarding/snapshot.ts +406 -0
package/src/runtime/onboarding/state.ts +141 -0
package/src/runtime/onboarding/types.ts +404 -0
package/src/runtime/onboarding/verify.ts +171 -0
package/src/runtime/operator-token-cleanup.ts +27 -0
package/src/runtime/perf/panel-contracts.ts +32 -0
package/src/runtime/perf/panel-health-monitor.ts +18 -0
package/src/runtime/sandbox-public-gaps.ts +358 -0
package/src/runtime/services.ts +670 -0
package/src/runtime/store/domains/domain-read-matrix.ts +15 -0
package/src/runtime/store/domains/index.ts +222 -0
package/src/runtime/store/domains/panels.ts +117 -0
package/src/runtime/store/domains/ui-perf.ts +103 -0
package/src/runtime/store/index.ts +305 -0
package/src/runtime/store/selectors/index.ts +359 -0
package/src/runtime/store/state.ts +145 -0
package/src/runtime/surface-feature-flags.ts +65 -0
package/src/runtime/terminal-output-guard.ts +228 -0
package/src/runtime/ui/index.ts +39 -0
package/src/runtime/ui/model-picker/data-provider.ts +182 -0
package/src/runtime/ui/model-picker/health-enrichment.ts +228 -0
package/src/runtime/ui/model-picker/index.ts +59 -0
package/src/runtime/ui/model-picker/types.ts +149 -0
package/src/runtime/ui/provider-health/data-provider.ts +244 -0
package/src/runtime/ui/provider-health/fallback-visualizer.ts +71 -0
package/src/runtime/ui/provider-health/index.ts +46 -0
package/src/runtime/ui/provider-health/types.ts +146 -0
package/src/runtime/ui-events.ts +1 -0
package/src/runtime/ui-read-model-helpers.ts +1 -0
package/src/runtime/ui-read-models-observability-maintenance.ts +1 -0
package/src/runtime/ui-read-models-observability-options.ts +1 -0
package/src/runtime/ui-read-models-observability-remote.ts +1 -0
package/src/runtime/ui-read-models-observability-security.ts +1 -0
package/src/runtime/ui-read-models-observability-system.ts +1 -0
package/src/runtime/ui-read-models-observability.ts +1 -0
package/src/runtime/ui-read-models.ts +61 -0
package/src/runtime/ui-service-queries.ts +1 -0
package/src/runtime/ui-services.ts +190 -0
package/src/scripts/process-messages.ts +42 -0
package/src/shell/blocking-input.ts +98 -0
package/src/shell/service-settings-sync.ts +273 -0
package/src/shell/ui-openers.ts +352 -0
package/src/tools/index.ts +1 -0
package/src/tools/wrfc-agent-guard.ts +49 -0
package/src/types/grid.ts +48 -0
package/src/types/sql-js.d.ts +15 -0
package/src/utils/clipboard.ts +22 -0
package/src/utils/splash-lines.ts +46 -0
package/src/utils/terminal-width.ts +185 -0
package/src/verification/live-verifier.ts +430 -0
package/src/verification/verification-ledger.ts +242 -0
package/src/version.ts +17 -0
package/src/widget/index.ts +2 -0
package/src/widget/types.ts +9 -0
package/src/widget/widget.ts +8 -0
package/src/work-plans/work-plan-store.ts +374 -0
package/tsconfig.json +18 -0

package/src/input/commands/policy-dispatch.ts ADDED Viewed

@@ -0,0 +1,339 @@
+import type { CommandContext } from '../command-registry.ts';
+import {
+  buildPolicyPreflightReview,
+  createPermissionSimulator,
+  lintPolicyConfig,
+  runPolicySimulationScenarios,
+} from '@/runtime/index.ts';
+import { DivergenceDashboard } from '@/runtime/index.ts';
+import type { PolicyRuntimeState } from '@/runtime/index.ts';
+import { createUnsignedBundle } from '@/runtime/index.ts';
+import type { PolicyBundlePayload } from '@/runtime/index.ts';
+import type { PolicyRule, PermissionsConfig, DivergenceStats } from '@/runtime/index.ts';
+import { requireShellPaths } from './runtime-services.ts';
+function getPolicyState(ctx?: CommandContext): PolicyRuntimeState {
+  const policyRuntimeState = ctx?.extensions.policyRuntimeState;
+  if (!policyRuntimeState) {
+    throw new Error('Policy runtime state is not available in this runtime.');
+  }
+  return policyRuntimeState;
+}
+function getRegistry(ctx?: CommandContext) {
+  return ctx?.extensions.policyRegistry ?? getPolicyState(ctx).getRegistry();
+}
+function fmtRate(rate: number): string {
+  return `${(rate * 100).toFixed(1)}%`;
+}
+function bundleSummary(
+  label: string,
+  version: { bundle: { bundleId: string; issuedAt: string; issuer?: string }; state: string; rules: PolicyRule[] },
+): string {
+  const issuer = version.bundle.issuer ? ` issuer=${version.bundle.issuer}` : '';
+  const ts = version.bundle.issuedAt.replace('T', ' ').slice(0, 19);
+  return `${label}: ${version.bundle.bundleId} (${ts}${issuer}) [${version.rules.length} rules, ${version.state}]`;
+}
+async function handleLoad(args: string[], context: CommandContext): Promise<void> {
+  const registry = getRegistry(context);
+  const policyState = getPolicyState(context);
+  const bundleId = args[0] ?? `policy-candidate-${Date.now()}`;
+  const ruleCount = Math.max(0, parseInt(args[1] ?? '0', 10));
+  const rules: PolicyRule[] = [];
+  for (let i = 0; i < ruleCount; i++) {
+    rules.push({
+      type: 'prefix',
+      id: `${bundleId}-rule-${i}`,
+      description: `Demo rule ${i}`,
+      origin: 'user',
+      effect: 'allow',
+      toolPattern: '*',
+      commandPrefixes: [],
+    });
+  }
+  const payload: PolicyBundlePayload = {
+    version: 1,
+    rules,
+    description: `Loaded via /policy load at ${new Date().toISOString()}`,
+  };
+  const bundle = createUnsignedBundle(bundleId, payload);
+  const result = registry.loadCandidate(bundle);
+  if (!result.ok) {
+    context.print(`[policy] Load failed: ${result.error ?? 'unknown error'}`);
+    return;
+  }
+  const candidate = registry.getCandidate();
+  if (candidate) {
+    policyState.notify();
+    context.print(bundleSummary('[policy] Candidate loaded', candidate));
+    context.print('[policy] Next: run `/policy simulate` to collect divergence evidence before promoting.');
+  }
+}
+async function handleSimulate(args: string[], context: CommandContext): Promise<void> {
+  const registry = getRegistry(context);
+  const policyState = getPolicyState(context);
+  const projectRoot = requireShellPaths(context).workingDirectory;
+  const candidate = registry.getCandidate();
+  const current = registry.getCurrent();
+  if (!candidate) {
+    context.print('[policy] No candidate bundle loaded. Run `/policy load <bundle-id>` first.');
+    return;
+  }
+  if (!registry.markSimulating()) {
+    context.print(`[policy] Cannot start simulation: candidate is in "${candidate.state}" state. Only a freshly loaded ("loaded") candidate can be simulated.`);
+    return;
+  }
+  const currentConfig: PermissionsConfig = {
+    mode: 'default',
+    projectRoot,
+    rules: current?.rules ?? [],
+    defaultEffect: 'allow',
+  };
+  const candidateForSim = registry.getCandidate();
+  if (!candidateForSim) {
+    throw new Error('Invariant: candidate disappeared after markSimulating()');
+  }
+  const candidateConfig: PermissionsConfig = {
+    mode: 'default',
+    projectRoot,
+    rules: candidateForSim.rules,
+    defaultEffect: 'allow',
+  };
+  const modeArg = args[0];
+  const simulationMode = modeArg === 'enforce' ? 'enforce' : modeArg === 'silent' ? 'simulation-only' : 'warn-on-divergence';
+  const simulator = createPermissionSimulator(currentConfig, candidateConfig, simulationMode, {});
+  const dashboard = new DivergenceDashboard(simulator, simulationMode, { threshold: 0.05 });
+  policyState.setDashboard(dashboard);
+  context.print(`[policy] Simulation started in "${simulationMode}" mode. Evaluations will be tracked against candidate bundle "${candidate.bundle.bundleId}".`);
+  context.print('[policy] Use `/policy diff` to compare rules. When ready, run `/policy promote` to enforce (requires gate passing).');
+  const report = simulator.getDivergenceReport();
+  const gateResult = dashboard.checkEnforceGate();
+  const scenarioSummary = runPolicySimulationScenarios(simulator);
+  registry.attachSimulationReport(report, gateResult);
+  policyState.recordSimulationSummary(scenarioSummary);
+  const candidate2 = registry.getCandidate();
+  policyState.notify();
+  context.print(`[policy] Baseline divergence: ${fmtRate(report.overall.divergenceRate)} (${report.overall.total} divergences / ${report.overall.totalEvaluations} evaluations). Gate: ${gateResult.status}.`);
+  context.print(`[policy] Scenario run: ${scenarioSummary.totalScenarios} samples, ${scenarioSummary.divergentScenarios} diverged, ${scenarioSummary.allowedByActual}/${scenarioSummary.allowedBySimulated} allowed (actual/candidate).`);
+  if (candidate2) context.print(bundleSummary('[policy] Candidate state', candidate2));
+}
+async function handleDiff(_args: string[], context: CommandContext): Promise<void> {
+  const registry = getRegistry(context);
+  const diff = registry.diff();
+  if (!diff) {
+    const current = registry.getCurrent();
+    const candidate = registry.getCandidate();
+    if (!current) context.print('[policy] No active bundle. Load a bundle with `/policy load`.');
+    else if (!candidate) context.print('[policy] No candidate bundle. Load a candidate with `/policy load`.');
+    else context.print('[policy] Diff unavailable.');
+    return;
+  }
+  context.print(`[policy] Diff: ${diff.fromBundleId} → ${diff.toBundleId} (${diff.totalChanges} change${diff.totalChanges !== 1 ? 's' : ''})`);
+  context.print(`  Added:    ${diff.added.length} rule${diff.added.length !== 1 ? 's' : ''}`);
+  context.print(`  Removed:  ${diff.removed.length} rule${diff.removed.length !== 1 ? 's' : ''}`);
+  context.print(`  Changed:  ${diff.changed.length} rule${diff.changed.length !== 1 ? 's' : ''}`);
+  context.print(`  Unchanged: ${diff.unchanged.length} rule${diff.unchanged.length !== 1 ? 's' : ''}`);
+  if (diff.added.length > 0) {
+    context.print('  [+] Added rules:');
+    for (const r of diff.added) context.print(`      + ${r.id} (${r.type}, effect=${r.effect})`);
+  }
+  if (diff.removed.length > 0) {
+    context.print('  [-] Removed rules:');
+    for (const r of diff.removed) context.print(`      - ${r.id} (${r.type}, effect=${r.effect})`);
+  }
+  if (diff.changed.length > 0) {
+    context.print('  [~] Changed rules:');
+    for (const c of diff.changed) context.print(`      ~ ${c.ruleId}`);
+  }
+  const dashboard = getPolicyState(context).getDashboard();
+  if (dashboard) {
+    const snap = dashboard.getSnapshot();
+    const report = snap.report;
+    const prefixEntries = Object.entries(report.byCommandPrefix);
+    if (prefixEntries.length > 0) {
+      context.print('  [divergence by command prefix]');
+      for (const [prefix, stats] of prefixEntries) {
+        context.print(`      ${prefix}: ${fmtRate(stats.divergenceRate)} (${stats.total}/${stats.totalEvaluations})`);
+      }
+    }
+    const classEntries = Object.entries(report.byToolClass) as Array<[string, DivergenceStats]>;
+    if (classEntries.length > 0) {
+      context.print('  [divergence by tool class]');
+      for (const [cls, stats] of classEntries) {
+        if (!stats) continue;
+        context.print(`      ${cls}: ${fmtRate(stats.divergenceRate)} (${stats.total}/${stats.totalEvaluations})`);
+      }
+    }
+  }
+}
+async function handleLint(_args: string[], context: CommandContext): Promise<void> {
+  const registry = getRegistry(context);
+  const current = registry.getCurrent();
+  const candidate = registry.getCandidate();
+  if (!current && !candidate) {
+    context.print('[policy] No policy bundles loaded. Use `/policy load` to begin.');
+    return;
+  }
+  const findings = [
+    ...(current ? lintPolicyConfig({ mode: 'custom', rules: current.rules }).map((finding) => ({ scope: 'current', ...finding })) : []),
+    ...(candidate ? lintPolicyConfig({ mode: 'custom', rules: candidate.rules }).map((finding) => ({ scope: 'candidate', ...finding })) : []),
+  ];
+  if (findings.length === 0) {
+    context.print('[policy] No lint findings for the active or candidate bundles.');
+    return;
+  }
+  context.print(`[policy] Lint findings (${findings.length}):`);
+  for (const finding of findings) {
+    context.print(`  [${finding.scope}] ${finding.severity.toUpperCase()} ${finding.ruleId ? `${finding.ruleId}: ` : ''}${finding.message}`);
+  }
+}
+async function handlePreflight(_args: string[], context: CommandContext): Promise<void> {
+  const registry = getRegistry(context);
+  const policyState = getPolicyState(context);
+  const current = registry.getCurrent();
+  const candidate = registry.getCandidate();
+  const lintFindings = [
+    ...(current ? lintPolicyConfig({ mode: 'custom', rules: current.rules }) : []),
+    ...(candidate ? lintPolicyConfig({ mode: 'custom', rules: candidate.rules }) : []),
+  ];
+  const review = buildPolicyPreflightReview({
+    config: context.platform.config,
+    lintFindings,
+    mcpServers: context.extensions.mcpRegistry.listServerSecurity().map((server) => ({
+      serverName: server.name,
+      trustMode: server.trustMode,
+      role: server.role,
+      allowedPaths: server.allowedPaths,
+      allowedHosts: server.allowedHosts,
+    })),
+  });
+  policyState.recordPreflightReview(review);
+  context.print(`[policy] Preflight review: ${review.status.toUpperCase()} (${review.issueCount} issue${review.issueCount === 1 ? '' : 's'})`);
+  context.print(`[policy] ${review.summary}`);
+  for (const issue of review.issues.slice(0, 8)) {
+    const subject = issue.serverName ? ` ${issue.serverName}` : '';
+    const detail = issue.detail ? ` — ${issue.detail}` : '';
+    context.print(`  [${issue.severity.toUpperCase()}] ${issue.source}${subject}: ${issue.message}${detail}`);
+  }
+}
+async function handlePromote(args: string[], context: CommandContext): Promise<void> {
+  const registry = getRegistry(context);
+  const policyState = getPolicyState(context);
+  const force = args.includes('--force');
+  if (force) {
+    context.print('[policy] WARNING: --force bypasses the divergence gate. This is not safe for production use.');
+  }
+  const result = registry.promote(force);
+  if (!result.ok) {
+    context.print(`[policy] Promotion blocked: ${result.error}`);
+    if (result.gate) {
+      context.print(`[policy] Gate: ${result.gate.status} — divergence rate ${result.gate.divergenceRate !== undefined ? fmtRate(result.gate.divergenceRate) : 'unknown'} (threshold ${fmtRate(result.gate.threshold)}, ${result.gate.totalEvaluations} evaluations).`);
+    }
+    return;
+  }
+  const current = registry.getCurrent();
+  context.print(`[policy] Promoted: "${result.bundleId}" is now the active enforcement policy.`);
+  if (result.gate) {
+    context.print(`[policy] Gate at promotion: ${result.gate.status} — divergence rate ${result.gate.divergenceRate !== undefined ? fmtRate(result.gate.divergenceRate) : 'unknown'} (threshold ${fmtRate(result.gate.threshold)}).`);
+  }
+  if (current) context.print(bundleSummary('[policy] Active bundle', current));
+  policyState.notify();
+}
+async function handleRollback(_args: string[], context: CommandContext): Promise<void> {
+  const registry = getRegistry(context);
+  const policyState = getPolicyState(context);
+  const result = registry.rollback();
+  if (!result.ok) {
+    context.print(`[policy] Rollback failed: ${result.error}`);
+    return;
+  }
+  const current = registry.getCurrent();
+  context.print(`[policy] Rolled back to bundle "${result.restoredBundleId}".`);
+  if (current) context.print(bundleSummary('[policy] Active bundle', current));
+  policyState.setDashboard(null);
+  policyState.notify();
+  context.print('[policy] Simulation dashboard cleared. Run `/policy simulate` for the restored bundle.');
+}
+async function handleStatus(_args: string[], context: CommandContext): Promise<void> {
+  const registry = getRegistry(context);
+  const policyState = getPolicyState(context);
+  const current = registry.getCurrent();
+  const candidate = registry.getCandidate();
+  const history = registry.getHistory();
+  if (!current && !candidate) {
+    context.print('[policy] No policy bundles loaded. Use `/policy load` to begin.');
+    return;
+  }
+  if (current) context.print(bundleSummary('[policy] Current (enforced)', current));
+  if (candidate) context.print(bundleSummary('[policy] Candidate', candidate));
+  context.print(`[policy] History: ${history.length} previous bundle(s).`);
+  const dashboard = policyState.getDashboard();
+  if (dashboard) {
+    const snap = dashboard.getSnapshot();
+    context.print(`[policy] Divergence gate: ${snap.gate.status} — ${snap.gate.divergenceRate !== undefined ? fmtRate(snap.gate.divergenceRate) : fmtRate(snap.report.overall.divergenceRate)} (${snap.report.overall.totalEvaluations} evaluations).`);
+  } else {
+    context.print('[policy] No active simulation dashboard.');
+  }
+}
+export function renderPolicyUsage(): string {
+  return [
+    'Usage: /policy <subcommand>',
+    '  /policy                        — open the policy/governance panel',
+    '  load <bundle-id> [rule-count]  — Load a candidate bundle',
+    '  simulate [mode]               — Run simulation (silent|warn|enforce)',
+    '  diff                          — Show rule diff (current vs candidate)',
+    '  lint                          — Lint active and candidate bundles',
+    '  preflight                     — Review proactive policy and MCP risk state',
+    '  promote [--force]             — Promote candidate to enforcement',
+    '  rollback                      — Restore the previous active bundle',
+    '  status                        — Show current policy state',
+  ].join('\n');
+}
+export async function dispatchPolicyCommand(args: string[], context: CommandContext): Promise<void> {
+  const [sub, ...rest] = args;
+  switch (sub) {
+    case 'load':
+      await handleLoad(rest, context);
+      break;
+    case 'simulate':
+    case 'sim':
+      await handleSimulate(rest, context);
+      break;
+    case 'diff':
+      await handleDiff(rest, context);
+      break;
+    case 'lint':
+      await handleLint(rest, context);
+      break;
+    case 'preflight':
+    case 'pf':
+      await handlePreflight(rest, context);
+      break;
+    case 'promote':
+      await handlePromote(rest, context);
+      break;
+    case 'rollback':
+    case 'rb':
+      await handleRollback(rest, context);
+      break;
+    case 'status':
+    case 'st':
+      await handleStatus(rest, context);
+      break;
+    default:
+      context.print(renderPolicyUsage());
+      break;
+  }
+}

package/src/input/commands/policy.ts ADDED Viewed

@@ -0,0 +1,17 @@
+import type { SlashCommand, CommandContext } from '../command-registry.ts';
+import { dispatchPolicyCommand } from './policy-dispatch.ts';
+export const policyCommand: SlashCommand = {
+  name: 'policy',
+  aliases: ['pol'],
+  description: 'Open the policy panel or manage versioned policy bundles (load, simulate, diff, promote, rollback).',
+  usage: '<subcommand> [args]',
+  argsHint: 'load|simulate|diff|lint|preflight|promote|rollback|status',
+  handler: async (args: string[], context: CommandContext): Promise<void> => {
+    if (args.length === 0 && context.openPolicyPanel) {
+      context.openPolicyPanel();
+      return;
+    }
+    await dispatchPolicyCommand(args, context);
+  },
+};