@pellux/goodvibes-agent 0.1.9 → 0.1.11

package/src/input/onboarding/onboarding-wizard-constants.ts

@@ -30,13 +30,13 @@ export const DEFAULT_CAPABILITIES: readonly OnboardingStep1CapabilityItem[] = [
     id: 'network-access',
     label: 'Let other devices use GoodVibes',
     selected: false,
-    detail: 'Make enabled GoodVibes services reachable from other devices on your LAN. Local authentication is required.',
+    detail: 'Review external daemon surfaces that are reachable from other devices on your LAN. Local authentication is required.',
   },
   {
     id: 'webhook-events',
     label: 'Receive webhooks or events from other tools',
     selected: false,
-    detail: 'Turn on the HTTP listener for incoming webhooks, callbacks, and automation events.',
+    detail: 'Review the external HTTP listener required for incoming webhooks, callbacks, and automation events.',
   },
   {
     id: 'external-integrations',
@@ -48,7 +48,7 @@ export const DEFAULT_CAPABILITIES: readonly OnboardingStep1CapabilityItem[] = [
     id: 'cloudflare-batch',
     label: 'Use Cloudflare for batch or remote daemon work',
     selected: false,
-    detail: 'Optionally configure Cloudflare Workers and Queues for explicit or eligible background batch jobs. Immediate local daemon behavior stays the default unless enabled.',
+    detail: 'Optionally configure Cloudflare Workers and Queues for explicit or eligible background batch jobs. The external daemon still owns execution.',
   },
 ];
 
@@ -60,13 +60,13 @@ export const REASONING_OPTIONS: readonly OnboardingWizardRadioOption[] = [
 ];
 
 export const NETWORK_MODE_OPTIONS: readonly OnboardingWizardRadioOption[] = [
-  { id: 'local-network-default', label: 'Local Network (Default)', hint: 'Use the default LAN-facing setup for enabled browser, service, and event features.' },
-  { id: 'custom', label: 'Custom', hint: 'Choose IP addresses and ports for each enabled service.' },
+  { id: 'local-network-default', label: 'Local Network (Default)', hint: 'Review the default LAN-facing external daemon setup for browser, control-plane, and event features.' },
+  { id: 'custom', label: 'Custom', hint: 'Review IP addresses and ports for each external daemon surface.' },
 ];
 
 export const HITL_MODE_OPTIONS: readonly OnboardingWizardRadioOption[] = [
   { id: 'quiet', label: 'Quiet', hint: 'Only interrupt for important attention requests.' },
-  { id: 'balanced', label: 'Balanced', hint: 'Show important activity without turning the TUI into a log stream.' },
+  { id: 'balanced', label: 'Balanced', hint: 'Show important activity without turning Agent into a log stream.' },
   { id: 'operator', label: 'Operator', hint: 'Keep operational activity visible for hands-on supervision.' },
 ];
 
@@ -90,7 +90,7 @@ export const SECRET_POLICY_OPTIONS: readonly OnboardingWizardRadioOption[] = [
 
 export const TELEGRAM_MODE_OPTIONS: readonly OnboardingWizardRadioOption[] = [
   { id: 'webhook', label: 'Webhook', hint: 'Receive Telegram updates through a webhook.' },
-  { id: 'polling', label: 'Polling', hint: 'Poll Telegram for updates from the background service.' },
+  { id: 'polling', label: 'Polling', hint: 'The external daemon polls Telegram for updates.' },
 ];
 
 export const WHATSAPP_PROVIDER_OPTIONS: readonly OnboardingWizardRadioOption[] = [

package/src/input/onboarding/onboarding-wizard-external-surface-extra-specs.ts

@@ -105,8 +105,8 @@ export const HOME_ASSISTANT_SURFACE_SPEC: ExternalSurfaceSpec = {
       kind: 'text',
       label: 'Home Assistant device ID',
       hint: 'Stable device identifier exposed by the GoodVibes daemon.',
-      placeholder: 'goodvibes-daemon',
-      defaultValue: (snapshot) => snapshot?.config.surfaces.homeassistant.deviceId ?? 'goodvibes-daemon',
+      placeholder: 'goodvibes-agent',
+      defaultValue: (snapshot) => snapshot?.config.surfaces.homeassistant.deviceId ?? 'goodvibes-agent',
     },
     {
       id: 'external-services.homeassistant.device-name',
@@ -114,8 +114,8 @@ export const HOME_ASSISTANT_SURFACE_SPEC: ExternalSurfaceSpec = {
       kind: 'text',
       label: 'Home Assistant device name',
       hint: 'Display name for the GoodVibes daemon device in Home Assistant.',
-      placeholder: 'GoodVibes Daemon',
-      defaultValue: (snapshot) => snapshot?.config.surfaces.homeassistant.deviceName ?? 'GoodVibes Daemon',
+      placeholder: 'GoodVibes Agent',
+      defaultValue: (snapshot) => snapshot?.config.surfaces.homeassistant.deviceName ?? 'GoodVibes Agent',
     },
     {
       id: 'external-services.homeassistant.event-type',

package/src/input/onboarding/onboarding-wizard-steps.ts

@@ -436,7 +436,7 @@ function buildExternalSurfaceStep(
       id: `external-surface:${surface.id}` as OnboardingWizardExternalSurfaceStepId,
       title,
       shortLabel: surface.label.replace(/ surface$/i, ''),
-      description: `Configure ${surface.label}. Settings are saved either way; Agent does not start or own the background service.`,
+      description: `Configure ${surface.label}. Settings are saved either way; Agent does not start or own the external daemon service.`,
       summaryTitle: `${surface.label} setup`,
       summaryLines: [
         `External activation requested: ${autoStartValue === 'yes' ? 'yes' : 'no'}`,
@@ -540,8 +540,8 @@ export function buildNetworkStep(controller: OnboardingWizardController): Onboar
       const sharedIpField: OnboardingWizardChecklistFieldDefinition = {
         kind: 'checklist',
         id: 'network.shared-ip',
-        label: 'Use the same IP address for all services',
-        hint: 'When included, browser, GoodVibes service, and webhook listener network bindings share one IP address.',
+        label: 'Use the same IP address for all external daemon surfaces',
+        hint: 'When included, browser, external daemon control plane, and webhook listener network bindings share one IP address in the daemon host configuration.',
         defaultValue: controller.getSharedIpDefault(networkEnabled),
       };
       const sharedIp = controller.getBooleanFieldValue(sharedIpField.id, sharedIpField.defaultValue);
@@ -561,8 +561,8 @@ export function buildNetworkStep(controller: OnboardingWizardController): Onboar
         fields.push({
           kind: 'text',
           id: 'network.service-port',
-          label: 'GoodVibes service port',
-          hint: 'Port for the background service and control plane.',
+          label: 'External daemon control-plane port',
+          hint: 'Port exposed by the external daemon control plane.',
           placeholder: '3421',
           defaultValue: String(bindSettings?.controlPlane.port ?? 3421),
         });
@@ -570,8 +570,8 @@ export function buildNetworkStep(controller: OnboardingWizardController): Onboar
           fields.push({
             kind: 'text',
             id: 'network.service-ip',
-            label: 'GoodVibes service IP address',
-            hint: 'IP address for the background service and control plane.',
+            label: 'External daemon control-plane IP address',
+            hint: 'IP address exposed by the external daemon control plane.',
             placeholder: '0.0.0.0',
             defaultValue: normalizeText(bindSettings?.controlPlane.host) || '0.0.0.0',
           });
@@ -625,7 +625,7 @@ export function buildNetworkStep(controller: OnboardingWizardController): Onboar
       id: 'network',
       title: 'Network setup',
       shortLabel: 'Network',
-      description: 'Choose the LAN default or customize IP addresses and ports for the enabled browser, service, and listener surfaces.',
+      description: 'Review LAN defaults or IP addresses and ports for the external daemon browser, control-plane, and listener surfaces. Agent does not apply daemon bind changes.',
       summaryTitle: 'Bind posture',
       summaryLines: [
         `Mode: ${custom ? 'custom' : 'local network default'}`,
@@ -653,7 +653,7 @@ export function buildAccountsStep(controller: OnboardingWizardController): Onboa
         id: 'accounts.admin-username',
         label: 'Local auth admin username',
         hint: needsAuthBootstrap
-          ? 'Required before any background service, browser surface, or listener is exposed.'
+          ? 'Required before the external daemon exposes browser, control-plane, or listener surfaces.'
           : 'Optional. Enter an existing admin username to rotate its password, or a new username to create another admin.',
         placeholder: defaultAdminUsername,
         defaultValue: defaultAdminUsername,
@@ -666,7 +666,7 @@ export function buildAccountsStep(controller: OnboardingWizardController): Onboa
         hint: needsAuthBootstrap
           ? controller.hasBootstrapCredentialPresent()
             ? 'Creates or updates the named local admin, removes the bootstrap credential file, and retires the bootstrap admin when it is a different user.'
-            : 'Creates the first local admin user and an initial session before LAN/server settings are applied.'
+            : 'Creates the first local admin user and an initial session before external daemon network settings are used by the daemon owner.'
           : 'Optional. Leave blank to keep existing local auth unchanged; enter a password to create or rotate the named admin user.',
         placeholder: needsAuthBootstrap ? 'password required' : 'leave blank to keep unchanged',
         defaultValue: '',
@@ -724,7 +724,7 @@ export function buildAccountsStep(controller: OnboardingWizardController): Onboa
       title: 'Subscriptions and auth review',
       shortLabel: 'Accounts',
       description: needsAuthBootstrap
-        ? 'Create wizard-owned local auth before any LAN, browser, service, or listener settings are applied.'
+        ? 'Create local auth state before external daemon LAN, browser, service, or listener settings are applied by the daemon owner.'
         : 'Review existing subscription and local auth state. Existing local auth is kept unless you change it elsewhere.',
       summaryTitle: 'Stored account state',
       summaryLines: [
@@ -732,8 +732,8 @@ export function buildAccountsStep(controller: OnboardingWizardController): Onboa
         `Auth: ${auth?.userCount ?? 0} users / ${auth?.sessionCount ?? 0} sessions`,
         needsAuthBootstrap
           ? controller.hasBootstrapCredentialPresent()
-            ? 'Bootstrap credentials will be replaced before network settings are applied'
-            : 'Local admin will be created before network settings are applied'
+            ? 'Bootstrap credentials will be replaced before external network settings are used'
+            : 'Local admin will be created before external network settings are used'
           : controller.hasLocalAuthUser() ? 'Existing local auth will be kept' : 'Local auth is not required for this setup',
       ],
       fields,

package/src/input/profile-picker-modal.ts

@@ -2,7 +2,7 @@
  * ProfilePickerModal — state management for the /profiles picker modal.
  *
  * Lists profiles from ProfileManager.list(), tracks selected index,
- * and handles load/delete/save actions.
+ * and handles load actions.
  */
 
 import type { ProfileInfo, ProfileData, ProfileManager } from '@pellux/goodvibes-sdk/platform/profiles';
@@ -141,39 +141,12 @@ export class ProfilePickerModal {
     }
   }
 
-  /**
-   * Delete the selected profile from disk.
-   * Refreshes the list after deletion.
-   */
   deleteSelected(): boolean {
     const profile = this.getSelected();
     if (!profile) return false;
-    if (this.deleteConfirmationTarget !== profile.name) {
-      this.deleteConfirmationTarget = profile.name;
-      this.statusMessage = `Press delete again to remove profile: ${profile.name}`;
-      return false;
-    }
-
-    try {
-      const deleted = this.profileManager.delete(profile.name);
-      if (!deleted) {
-        this.statusMessage = `Profile not found: ${profile.name}`;
-        this.deleteConfirmationTarget = null;
-        return false;
-      }
-      this.profiles = this.profileManager.list();
-      if (this.selectedIndex >= this.profiles.length) {
-        this.selectedIndex = Math.max(0, this.profiles.length - 1);
-      }
-      this._clampScroll();
-      this.deleteConfirmationTarget = null;
-      this.statusMessage = `Deleted: ${profile.name}`;
-      return true;
-    } catch (e) {
-      this.deleteConfirmationTarget = null;
-      this.statusMessage = `Error: ${summarizeError(e)}`;
-      return false;
-    }
+    this.deleteConfirmationTarget = null;
+    this.statusMessage = `Deletion requires an explicit command: /profiles delete ${profile.name} --yes`;
+    return false;
   }
 
   /**
@@ -184,7 +157,16 @@ export class ProfilePickerModal {
       this.statusMessage = 'Profile name cannot be empty';
       return false;
     }
+    void configManager;
+    this.statusMessage = `Saving requires an explicit command: /profiles save ${name} --yes`;
+    return false;
+  }
 
+  public saveCurrentAsConfirmed(name: string, configManager: ConfigManager): boolean {
+    if (!name || !name.trim()) {
+      this.statusMessage = 'Profile name cannot be empty';
+      return false;
+    }
     try {
       const all = configManager.getAll();
       const data: ProfileData = {

package/src/input/session-picker-modal.ts

@@ -2,10 +2,9 @@
  * SessionPickerModal — state management for the /sessions picker modal.
  *
  * Lists sessions from SessionManager.list(), tracks selected index,
- * and handles load/delete actions.
+ * and handles load actions.
  */
 
-import { unlinkSync } from 'node:fs';
 import type { SessionInfo, SessionManager } from '@pellux/goodvibes-sdk/platform/sessions';
 import type { ConversationManager } from '../core/conversation';
 import { summarizeError } from '@pellux/goodvibes-sdk/platform/utils';
@@ -90,37 +89,12 @@ export class SessionPickerModal {
     }
   }
 
-  /**
-   * Delete the currently selected session from disk.
-   * Refreshes the list after deletion.
-   */
   deleteSelected(): boolean {
     const session = this.getSelected();
     if (!session) return false;
-    if (this.deleteConfirmationTarget !== session.name) {
-      this.deleteConfirmationTarget = session.name;
-      this.statusMessage = `Press d again to delete ${session.name}.`;
-      return false;
-    }
-
-    try {
-      // Delete directly via filePath so it works with any session directory
-      unlinkSync(session.filePath);
-      // Reload list from the global session manager (removes the deleted entry)
-      this.sessions = this.sessionManager.list();
-      // Adjust selection
-      if (this.selectedIndex >= this.sessions.length) {
-        this.selectedIndex = Math.max(0, this.sessions.length - 1);
-      }
-      this._clampScroll();
-      this.deleteConfirmationTarget = null;
-      this.statusMessage = `Deleted: ${session.name}`;
-      return true;
-    } catch (e) {
-      this.deleteConfirmationTarget = null;
-      this.statusMessage = `Error: ${summarizeError(e)}`;
-      return false;
-    }
+    this.deleteConfirmationTarget = null;
+    this.statusMessage = `Deletion requires an explicit command: /session delete ${session.name} --yes`;
+    return false;
   }
 
   private _clampScroll(): void {

package/src/input/settings-modal-agent-policy.ts

@@ -0,0 +1,18 @@
+export const AGENT_EXTERNAL_DAEMON_SETTING_LOCK_REASON = 'GoodVibes Agent connects to an external daemon. Change this from GoodVibes TUI or the daemon host; Agent settings are read-only for daemon lifecycle and bind posture.';
+
+const EXTERNAL_DAEMON_SETTING_PREFIXES = [
+  'service.',
+  'controlPlane.',
+  'httpListener.',
+  'web.',
+] as const;
+
+const EXTERNAL_DAEMON_SETTING_KEYS = new Set<string>([
+  'danger.daemon',
+  'danger.httpListener',
+]);
+
+export function isExternalDaemonOwnedSettingKey(key: string): boolean {
+  return EXTERNAL_DAEMON_SETTING_KEYS.has(key)
+    || EXTERNAL_DAEMON_SETTING_PREFIXES.some((prefix) => key.startsWith(prefix));
+}

package/src/input/settings-modal-subscriptions.ts

@@ -23,7 +23,7 @@ export function buildSubscriptionEntries(
       activeRoute: 'unconfigured',
       authFreshness: 'unconfigured',
       routeReason: 'Built-in subscription adapter is available, but no active subscription session is stored yet.',
-      nextActions: [`Use /subscription login ${provider} start to begin browser sign-in.`],
+      nextActions: [`Use /subscription login ${provider} start --yes to begin browser sign-in.`],
     });
   }
 
@@ -38,7 +38,7 @@ export function buildSubscriptionEntries(
       activeRoute: providers.get(provider)?.activeRoute ?? 'unconfigured',
       authFreshness: providers.get(provider)?.authFreshness ?? 'unconfigured',
       routeReason: providers.get(provider)?.routeReason ?? 'OAuth metadata is configured for this provider.',
-      nextActions: providers.get(provider)?.nextActions ?? [`Use /subscription login ${provider} start to begin browser sign-in.`],
+      nextActions: providers.get(provider)?.nextActions ?? [`Use /subscription login ${provider} start --yes to begin browser sign-in.`],
     });
   }
 
@@ -51,7 +51,7 @@ export function buildSubscriptionEntries(
       activeRoute: 'unconfigured',
       authFreshness: 'pending',
       routeReason: 'OAuth login is pending completion for this provider.',
-      nextActions: [`Finish /subscription login ${pending.provider} finish <code> to activate this session.`],
+      nextActions: [`Finish /subscription login ${pending.provider} finish <code> --yes to activate this session.`],
     });
   }
 

package/src/input/settings-modal-types.ts

@@ -1,7 +1,24 @@
 import type { ConfigSetting } from '@pellux/goodvibes-sdk/platform/config';
+import type { ConfigKey } from '@pellux/goodvibes-sdk/platform/config';
 import type { ProviderAuthFreshness, ProviderAuthRoute } from '@/runtime/index.ts';
 import type { FeatureFlag, FlagState } from '@/runtime/index.ts';
 
+export interface SettingsModalChange {
+  readonly key: ConfigKey;
+  readonly previousValue: unknown;
+  readonly value: unknown;
+}
+
+export interface SettingsModalChangeResult {
+  readonly message?: string;
+}
+
+export type SettingsModalChangeHandler = (change: SettingsModalChange) => SettingsModalChangeResult | void;
+
+export interface SettingsModalOpenOptions {
+  readonly onSettingApplied?: SettingsModalChangeHandler;
+}
+
 export type SettingsCategory =
   | 'display'
   | 'ui'

package/src/input/settings-modal.ts

@@ -1,14 +1,4 @@
-/**
- * SettingsModal — state management for the /settings and /config fullscreen workspace.
- *
- * Loads CONFIG_SCHEMA, groups settings by category, and tracks UI state:
- *   - Active category (Tab to cycle)
- *   - Selected setting index within category (↑↓)
- *   - Editing mode for inline string/number input
- *   - Feature flags tab with runtime toggle support
- *
- * Saves changes via configManager.set(key, value) or featureFlagManager methods.
- */
+/** SettingsModal state for the /settings and /config fullscreen workspace. */
 
 import { CONFIG_SCHEMA, type ConfigKey, type PersistedFlagState } from '@pellux/goodvibes-sdk/platform/config';
 import type { ModelPickerTarget } from './model-picker.ts';
@@ -40,24 +30,11 @@ import {
   type SettingEntry,
   type SettingsCategory,
   type SettingsFocusPane,
+  type SettingsModalChangeHandler,
+  type SettingsModalOpenOptions,
   type SubscriptionEntry,
 } from './settings-modal-types.ts';
-
-export interface SettingsModalChange {
-  readonly key: ConfigKey;
-  readonly previousValue: unknown;
-  readonly value: unknown;
-}
-
-export interface SettingsModalChangeResult {
-  readonly message?: string;
-}
-
-export type SettingsModalChangeHandler = (change: SettingsModalChange) => SettingsModalChangeResult | void;
-
-export interface SettingsModalOpenOptions {
-  readonly onSettingApplied?: SettingsModalChangeHandler;
-}
+import { AGENT_EXTERNAL_DAEMON_SETTING_LOCK_REASON, isExternalDaemonOwnedSettingKey } from './settings-modal-agent-policy.ts';
 
 export {
   SETTINGS_CATEGORIES,
@@ -67,8 +44,13 @@ export {
   type SettingEntry,
   type SettingsCategory,
   type SettingsFocusPane,
+  type SettingsModalChange,
+  type SettingsModalChangeHandler,
+  type SettingsModalChangeResult,
+  type SettingsModalOpenOptions,
   type SubscriptionEntry,
 } from './settings-modal-types.ts';
+export { AGENT_EXTERNAL_DAEMON_SETTING_LOCK_REASON, isExternalDaemonOwnedSettingKey } from './settings-modal-agent-policy.ts';
 
 // ---------------------------------------------------------------------------
 // SettingsModal
@@ -369,6 +351,7 @@ export class SettingsModal {
 
     const entry = this.getSelected();
     if (!entry || !this.configManager) return;
+    if (this._blockExternalDaemonOwnedSetting(entry)) return;
 
     const { setting } = entry;
 
@@ -433,6 +416,7 @@ export class SettingsModal {
 
     const entry = this.getSelected();
     if (!entry || !this.configManager) return;
+    if (this._blockExternalDaemonOwnedSetting(entry)) return;
     const { setting } = entry;
 
     if (setting.type === 'boolean') {
@@ -554,6 +538,11 @@ export class SettingsModal {
 
     const entry = this.getSelected();
     if (!entry || !this.configManager) return false;
+    if (this._blockExternalDaemonOwnedSetting(entry)) {
+      this.editingMode = false;
+      this.editBuffer = '';
+      return false;
+    }
 
     const { setting } = entry;
     let parsed: unknown = this.editBuffer;
@@ -600,6 +589,7 @@ export class SettingsModal {
     if (this.editingMode || !this.configManager) return null;
     const entry = this.getSelected();
     if (!entry) return null;
+    if (this._blockExternalDaemonOwnedSetting(entry)) return null;
     const key = entry.setting.key as ConfigKey;
     this._setValue(key, entry.setting.default);
     if (isSecretConfigKey(key) && this.secretsManager) {
@@ -635,15 +625,16 @@ export class SettingsModal {
       const cat = rawCat as SettingsCategory;
       const currentValue = configManager.get(setting.key as ConfigKey);
       const resolved = getResolvedSettingLookup(configManager, setting.key as ConfigKey)?.entry;
+      const daemonOwned = isExternalDaemonOwnedSettingKey(setting.key);
       const entry: SettingEntry = {
         setting,
         currentValue,
         isDefault: currentValue === setting.default,
         effectiveSource: resolved?.effectiveSource,
-        locked: resolved?.locked,
+        locked: daemonOwned || resolved?.locked,
         conflict: resolved?.conflict,
         sourceLabel: resolved?.sourceLabel,
-        lockReason: resolved?.lockReason,
+        lockReason: daemonOwned ? AGENT_EXTERNAL_DAEMON_SETTING_LOCK_REASON : resolved?.lockReason,
       };
       if (this.groups.has(cat)) this.groups.get(cat)!.push(entry);
       if ((rawCat === 'controlPlane' || rawCat === 'httpListener' || rawCat === 'web') && this.groups.has('network')) {
@@ -752,6 +743,10 @@ export class SettingsModal {
 
   private _setValue(key: ConfigKey, value: unknown): void {
     if (!this.configManager) return;
+    if (isExternalDaemonOwnedSettingKey(key)) {
+      this.lastSettingEffectMessage = AGENT_EXTERNAL_DAEMON_SETTING_LOCK_REASON;
+      return;
+    }
     // Diff previous value before writing — avoids false restart notices on no-op saves
     const previousValue = this.configManager.get(key);
     const isRestartKey = ['host', 'port', 'hostMode', 'enabled'].includes(key.split('.')[1] ?? '');
@@ -790,4 +785,10 @@ export class SettingsModal {
     }
   }
 
+  private _blockExternalDaemonOwnedSetting(entry: SettingEntry): boolean {
+    if (!isExternalDaemonOwnedSettingKey(entry.setting.key)) return false;
+    this.lastSettingEffectMessage = entry.lockReason ?? AGENT_EXTERNAL_DAEMON_SETTING_LOCK_REASON;
+    return true;
+  }
+
 }

package/src/main.ts

@@ -20,8 +20,6 @@ import { registerBuiltinCommands } from './input/commands.ts';
 import { ScheduleManager } from '@pellux/goodvibes-sdk/platform/tools';
 import { InputHistory } from './input/input-history.ts';
 import { getTierPromptSupplement, getTierForContextWindow } from '@pellux/goodvibes-sdk/platform/providers';
-import { GitStatusProvider } from './renderer/git-status.ts';
-import type { GitHeaderInfo } from './renderer/git-status.ts';
 import { createShellLayout } from './renderer/layout-engine.ts';
 import { buildShellFooter, estimateShellFooterHeight } from './renderer/shell-surface.ts';
 import { buildConversationViewport } from './renderer/conversation-layout.ts';
@@ -53,7 +51,6 @@ import { attachSpokenTurnModelRouting, createSpokenTurnInputOptions } from './au
 import { allowTerminalWrite, installTuiTerminalOutputGuard } from './runtime/terminal-output-guard.ts';
 import { ProjectPlanningCoordinator } from './planning/project-planning-coordinator.ts';
 import { buildCommandArgsHint } from './input/command-args-hint.ts';
-import { summarizeRunningAgents } from './renderer/process-summary.ts';
 import { GOODVIBES_AGENT_PAIRING_SURFACE } from './config/surface.ts';
 
 const ALT_SCREEN_ENTER = '\x1b[?1049h';
@@ -93,8 +90,6 @@ async function main() {
     commandRegistry,
     inputHistory,
     hookDispatcher,
-    gitStatusProvider,
-    lastGitInfoRef,
     bootstrapUnsubs,
     agentStatusIntervalRef,
     orchestratorRefs,
@@ -133,15 +128,12 @@ async function main() {
     const sessionSnapshot = uiServices.readModels.session.getSnapshot();
     const tasksSnapshot = uiServices.readModels.tasks.getSnapshot();
     const remoteSnapshot = uiServices.readModels.remote.getSnapshot();
-    const worktreeSnapshot = uiServices.readModels.worktrees.getSnapshot();
     return {
       pendingApprovals: sessionSnapshot.pendingApproval ? 1 : 0,
       activeTasks: tasksSnapshot.tasks.filter((task) => task.status === 'running' || task.status === 'queued').length,
       blockedTasks: tasksSnapshot.tasks.filter((task) => task.status === 'blocked').length,
       remoteContracts: remoteSnapshot.contracts.length,
       remoteRunners: remoteSnapshot.contracts.slice(0, 4).map((contract) => contract.runnerId),
-      worktreeCount: worktreeSnapshot.records.length,
-      worktreePaths: worktreeSnapshot.records.slice(0, 3).map((record) => record.path),
       openPanels: panelManager.getAllOpen().map((panel) => panel.id),
     };
   };
@@ -478,15 +470,9 @@ async function main() {
     // Cache the current model for consistent values across the entire render frame
     const currentModel = providerRegistry.getCurrentModel();
     const sessionSnapshot = uiServices.readModels.session.getSnapshot();
-    const agentSnapshot = uiServices.readModels.agents.getSnapshot();
 
-    const headerLines = UIFactory.createHeader(width, currentModel.id, currentModel.provider, conversation.title || undefined, lastGitInfoRef.value);
-    const managerAgents = agentManager.list().filter(
-      (a) => a.status === 'running' || a.status === 'pending',
-    );
-    const runtimeAgents = agentSnapshot.active;
-    const runningAgentSummary = summarizeRunningAgents(managerAgents, runtimeAgents, ctx.services.wrfcController.listChains());
-    const runningAgentCount = runningAgentSummary.count;
+    const headerLines = UIFactory.createHeader(width, currentModel.id, currentModel.provider, conversation.title || undefined);
+    const runningAgentCount = 0;
     const runningProcessCount = processManager.list().filter((p) => !p.status.startsWith('done')).length;
     const cw = getPromptContentWidth();
     const promptInfo = input.getWrappedPromptInfo(cw);
@@ -533,7 +519,7 @@ async function main() {
       runningAgentCount,
       runningProcessCount,
       indicatorFocused: input.indicatorFocused,
-      runningAgentProgress: runningAgentSummary.progress,
+      runningAgentProgress: undefined,
       composerMode: composerState.modeLabel,
       composerStatus: composerState.statusLabel,
       composerFlags: composerState.flags,
@@ -684,8 +670,6 @@ async function main() {
   });
 
   // --- Streaming speed + tool preview wiring ---
-  const refreshGit = () => gitStatusProvider.refresh().then((info) => { lastGitInfoRef.value = info; render(); }).catch(() => { /* non-fatal */ });
-  // Refresh git status after each turn completes or after tool results arrive
   unsubs.push(uiServices.events.turns.on('TURN_COMPLETED', () => {
     // Auto-save after every LLM turn so kills don't lose the session
     try {
@@ -701,13 +685,6 @@ async function main() {
       );
       hookDispatcher.fire({ path: 'Lifecycle:session:save' as HookEventPath, phase: 'Lifecycle' as HookPhase, category: 'session' as HookCategory, specific: 'save', sessionId: runtime.sessionId, timestamp: Date.now(), payload: { sessionId: runtime.sessionId } }).catch((err: unknown) => logger.debug('hook fire error', { error: summarizeError(err) }));
     } catch (e) { logger.debug('auto-save on turn:complete failed', { error: summarizeError(e) }); }
-    refreshGit();
-  }));
-  unsubs.push(uiServices.events.tools.on('TOOL_SUCCEEDED', () => {
-    refreshGit();
-  }));
-  unsubs.push(uiServices.events.tools.on('TOOL_FAILED', () => {
-    refreshGit();
   }));
 
   unsubs.push(uiServices.events.turns.on('STREAM_START', () => {

package/src/panels/incident-review-panel.ts

@@ -185,7 +185,7 @@ export class IncidentReviewPanel extends ScrollableListPanel<FailureReport> {
       }
     }
     footerLines.push(buildPanelLine(width, [['  Action Rail', C.label]]));
-    footerLines.push(buildPanelLine(width, [[`  /incident latest   /incident export ${selected.id}   /recall capture incident ${selected.id}`, C.info]]));
+    footerLines.push(buildPanelLine(width, [[`  /incident latest   /incident export ${selected.id} <path> --yes   /incident capture ${selected.id} --yes`, C.info]]));
     footerLines.push(buildGuidanceLine(width, '/security', 'open the broader trust and incident posture control room', C));
 
     return this.renderList(width, height, {

package/src/panels/local-auth-panel.ts

@@ -81,7 +81,7 @@ export class LocalAuthPanel extends ScrollableListPanel<LocalAuthUser> {
         ...(issueMessages.length > 0
           ? issueMessages.map((issue) => buildPanelLine(width, [[` issue: ${issue}`.slice(0, Math.max(0, width)), C.warn]]))
           : [buildPanelLine(width, [[' local auth posture looks healthy.', C.good]])]),
-        buildGuidanceLine(width, '/auth local rotate-password <user> <password>', 'rotate bootstrap/default credentials and revoke older sessions as needed', C),
+        buildGuidanceLine(width, '/auth local rotate-password <user> <password> --yes', 'rotate bootstrap/default credentials and revoke older sessions as needed', C),
       ], C),
     ];
 
@@ -104,8 +104,8 @@ export class LocalAuthPanel extends ScrollableListPanel<LocalAuthUser> {
       footerLines.push(
         ...buildDetailBlock(width, 'Selected user', [
           buildPanelLine(width, [[' username ', C.label], [selected.username, C.value], ['  roles ', C.label], [formatRoles(selected.roles).slice(0, Math.max(0, width - 23)), C.info]]),
-          buildPanelLine(width, [[` next: /auth local rotate-password ${selected.username} <password>`.slice(0, Math.max(0, width)), C.dim]]),
-          buildPanelLine(width, [[` next: /auth local delete-user ${selected.username}`.slice(0, Math.max(0, width)), C.dim]]),
+          buildPanelLine(width, [[` next: /auth local rotate-password ${selected.username} <password> --yes`.slice(0, Math.max(0, width)), C.dim]]),
+          buildPanelLine(width, [[` next: /auth local delete-user ${selected.username} --yes`.slice(0, Math.max(0, width)), C.dim]]),
         ], C),
       );
     }
@@ -119,7 +119,7 @@ export class LocalAuthPanel extends ScrollableListPanel<LocalAuthUser> {
         ])),
       );
     }
-    footerLines.push(buildPanelLine(width, [[' /auth local review  /auth local add-user  /auth local rotate-password  /auth local revoke-session ', C.dim]]));
+    footerLines.push(buildPanelLine(width, [[' /auth local review  mutations require --yes: add-user rotate-password revoke-session ', C.dim]]));
 
     return this.renderList(width, height, {
       title: 'Local Auth Control Room',

package/src/panels/provider-account-snapshot.ts

@@ -209,7 +209,7 @@ export async function buildProviderAccountSnapshot(
     }
     if (pending) {
       issues.push('Provider has a pending OAuth login that has not been completed yet.');
-      recommendedActions.push(`Finish /subscription login ${providerId} finish <code> or clear the pending login.`);
+      recommendedActions.push(`Finish /subscription login ${providerId} finish <code> --yes or clear the pending login.`);
     }
     if (hasSubscription && hasApiKey) {
       issues.push('Provider has both subscription and API-key auth paths; routing must remain explicit.');

package/src/panels/provider-health-domains.ts

@@ -54,13 +54,13 @@ export function buildProviderHealthDomainSummaries(
     summary: auth.bootstrapCredentialPresent
       ? 'bootstrap credential file still present'
       : `${auth.userCount} users / ${auth.sessionCount} sessions`,
-    next: auth.bootstrapCredentialPresent ? '/auth local clear-bootstrap-file' : '/auth local review',
+    next: auth.bootstrapCredentialPresent ? '/auth local clear-bootstrap-file --yes' : '/auth local review',
     details: [
       auth.bootstrapCredentialPresent ? 'bootstrap credential file should be cleared after rotation' : `${auth.userCount} local auth users configured`,
       auth.userCount <= 1 ? 'only one local auth user configured' : `${auth.sessionCount} active local auth sessions`,
     ].filter(Boolean),
     nextSteps: auth.bootstrapCredentialPresent
-      ? ['/auth local review', '/auth local rotate-password <user> <password>', '/auth local clear-bootstrap-file']
+      ? ['/auth local review', '/auth local rotate-password <user> <password> --yes', '/auth local clear-bootstrap-file --yes']
       : ['/auth local review'],
   });