@pellux/goodvibes-agent 1.0.34 → 1.0.35
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +13 -4
- package/README.md +5 -3
- package/dist/package/{ast-grep-napi.linux-x64-gnu-mkk8xwww.node → ast-grep-napi.linux-x64-gnu-swtppvy9.node} +0 -0
- package/dist/package/{ast-grep-napi.linux-x64-musl-ryqtgdv6.node → ast-grep-napi.linux-x64-musl-ttfcdtap.node} +0 -0
- package/dist/package/main.js +48488 -49984
- package/docs/README.md +2 -2
- package/docs/getting-started.md +11 -8
- package/docs/release-and-publishing.md +1 -1
- package/docs/tools-and-commands.md +5 -1
- package/docs/voice-and-live-tts.md +1 -1
- package/package.json +1 -1
- package/release/live-verification/live-verification.json +13 -13
- package/release/live-verification/live-verification.md +17 -17
- package/release/release-notes.md +2 -2
- package/release/release-readiness.json +33 -33
- package/src/runtime/bootstrap-core.ts +2 -0
- package/src/runtime/bootstrap.ts +2 -0
- package/src/tools/agent-harness-media-posture.ts +1 -1
- package/src/tools/agent-harness-metadata.ts +44 -32
- package/src/tools/agent-harness-mode-catalog.ts +205 -0
- package/src/tools/agent-harness-operator-methods.ts +2 -2
- package/src/tools/agent-harness-service-posture.ts +1 -1
- package/src/tools/agent-harness-setup-posture.ts +1 -1
- package/src/tools/agent-harness-tool-schema.ts +1 -1
- package/src/tools/agent-harness-tool.ts +14 -4
- package/src/tools/agent-harness-ui-surface-metadata.ts +21 -17
- package/src/tools/tool-definition-compaction.ts +49 -0
- package/src/version.ts +1 -1
|
@@ -62,7 +62,7 @@
|
|
|
62
62
|
"quality": {
|
|
63
63
|
"capabilityCoverage": "Matches the release expectation that the product opens into the real operator workspace, with setup, runtime posture, local context, channels, media, planning, and delegation reachable from one first-screen TUI.",
|
|
64
64
|
"userAccess": "The user can open the workspace by default or through /agent, /home, and /operator, then browse workspace categories and actions directly.",
|
|
65
|
-
"modelAccess": "agent_harness summary, workspace_categories, workspace_actions, workspace_action, run_workspace_action, ui_surfaces, and open_ui_surface expose the same workspace map and visible navigation routes to the model.",
|
|
65
|
+
"modelAccess": "agent_harness mode:\"summary\", mode:\"workspace_categories\", mode:\"workspace_actions\", mode:\"workspace_action\", mode:\"run_workspace_action\", mode:\"ui_surfaces\", and mode:\"open_ui_surface\" expose the same workspace map and visible navigation routes to the model.",
|
|
66
66
|
"safetyBoundary": "The workspace stays Agent-first and avoids hidden connected-host lifecycle control, coding-first front doors, and marketing-only surfaces.",
|
|
67
67
|
"releaseEvidence": "release-readiness inventory plus package-facing README and getting-started docs cite the workspace files and keep this as a required release item."
|
|
68
68
|
}
|
|
@@ -77,7 +77,7 @@
|
|
|
77
77
|
"quality": {
|
|
78
78
|
"capabilityCoverage": "Covers first-run provider setup, Agent Knowledge readiness, local behavior libraries, channels, voice/media, support posture, and connected-host compatibility as a single setup path.",
|
|
79
79
|
"userAccess": "The user gets onboarding and setup workspaces with preloaded current settings and reviewable readiness state.",
|
|
80
|
-
"modelAccess": "agent_harness setup_posture
|
|
80
|
+
"modelAccess": "agent_harness mode:\"setup_posture\" and mode:\"setup_item\" exposes onboarding snapshot posture, setup marker state, derived capability flags, provider route, provider-account counts, subscription counts, local behavior discovery, channel/media/setup signals, and single setup-item lookup; visible UI, settings, workspace, and command routes remain for confirmed setup mutations.",
|
|
81
81
|
"safetyBoundary": "Setup reads and writes Agent-owned settings only, keeps token values redacted, and does not start or install connected-host services.",
|
|
82
82
|
"releaseEvidence": "Readiness evidence cites onboarding wizard, verification, and direct harness sources, while ledger accounting and package-facing docs cover model-visible setup/onboarding posture."
|
|
83
83
|
}
|
|
@@ -92,7 +92,7 @@
|
|
|
92
92
|
"quality": {
|
|
93
93
|
"capabilityCoverage": "Covers active model visibility, custom provider setup, model refresh, favorites, pinned models, context windows, provider health, and reasoning effort controls.",
|
|
94
94
|
"userAccess": "The user can operate provider and model routing from the Agent workspace, /model, /provider, model picker, provider workspace, and scriptable CLI mirrors.",
|
|
95
|
-
"modelAccess": "agent_harness model_routing
|
|
95
|
+
"modelAccess": "agent_harness mode:\"model_routing\" and mode:\"model_route\" exposes current provider/model route, selectable models, provider ids, pinned models, reasoning support, context windows, safe route setting keys, and single route/model lookup; visible picker, settings, workspace, and command routes remain for confirmed selection, refresh, pin/unpin, custom provider, and setting mutations.",
|
|
96
96
|
"safetyBoundary": "Provider auth and model changes are explicit, secret-backed where needed, and do not print raw credentials.",
|
|
97
97
|
"releaseEvidence": "Provider routing docs, direct harness source, package-facing text checks, and readiness item evidence keep this feature required for stable releases."
|
|
98
98
|
}
|
|
@@ -107,7 +107,7 @@
|
|
|
107
107
|
"quality": {
|
|
108
108
|
"capabilityCoverage": "Covers account snapshots, subscriptions, usage windows, auth route posture, and login/logout safety without token leakage.",
|
|
109
109
|
"userAccess": "The user can inspect provider accounts and subscription state through Agent workspace routes and /accounts, /auth, and /subscription commands.",
|
|
110
|
-
"modelAccess": "agent_harness provider_accounts
|
|
110
|
+
"modelAccess": "agent_harness mode:\"provider_accounts\" and mode:\"provider_account\" exposes provider auth route posture, subscription freshness, usage windows, route issues, repair guidance, and single-provider lookup; mode:\"model_routing\" and mode:\"model_route\", mode:\"settings\", mode:\"get_setting\", and mode:\"set_setting\", and connected_host_status expose related routing/readiness context while login/logout remains a visible confirmation-gated user flow.",
|
|
111
111
|
"safetyBoundary": "Account inspection is read-only by default, auth mutations require explicit confirmation, and captured output redacts tokens.",
|
|
112
112
|
"releaseEvidence": "Readiness evidence points to provider account and subscription command implementations, with package policy guarding token-safe docs and release smoke."
|
|
113
113
|
}
|
|
@@ -122,7 +122,7 @@
|
|
|
122
122
|
"quality": {
|
|
123
123
|
"capabilityCoverage": "Covers isolated Agent Knowledge ask, search, source review, connectors, ingest, reindex, consolidation, graph operations, and status without default knowledge fallback.",
|
|
124
124
|
"userAccess": "The user can operate Agent Knowledge from the workspace, /knowledge, and goodvibes-agent knowledge CLI mirrors.",
|
|
125
|
-
"modelAccess": "agent_knowledge and agent_knowledge_ingest expose status, ask/search, source/node/issue lists, item lookup, map summary, connector inspection, and ingest; agent_harness operator_methods
|
|
125
|
+
"modelAccess": "agent_knowledge and agent_knowledge_ingest expose status, ask/search, source/node/issue lists, item lookup, map summary, connector inspection, and ingest; agent_harness mode:\"operator_methods\" and mode:\"operator_method\" and tool/schema lookup expose route metadata to the model.",
|
|
126
126
|
"safetyBoundary": "All Knowledge traffic targets only /api/goodvibes-agent/knowledge/*, rejects non-Agent space-selection flags, and fails closed when successful responses expose default scope metadata or known non-Agent payload markers.",
|
|
127
127
|
"releaseEvidence": "Package-facing required text, architecture policy, readiness evidence, and live verification checks require isolated Knowledge status, ask, search, library, item, map, connector outcomes, and response-scope contamination detection."
|
|
128
128
|
}
|
|
@@ -137,7 +137,7 @@
|
|
|
137
137
|
"quality": {
|
|
138
138
|
"capabilityCoverage": "Covers explicit handling for artifacts, files, URL lists, bookmarks, browser history, generated media, and reviewed source promotion.",
|
|
139
139
|
"userAccess": "The user can use workspace ingest forms, media generation, notes, bookmarks, and Knowledge ingest mirrors with clear review steps.",
|
|
140
|
-
"modelAccess": "agent_knowledge_ingest exposes URL/file/URL-list/bookmarks/browser-history/connector ingest, agent_media_generate exposes confirmed generated artifacts, media_posture
|
|
140
|
+
"modelAccess": "agent_knowledge_ingest exposes URL/file/URL-list/bookmarks/browser-history/connector ingest, agent_media_generate exposes confirmed generated artifacts, mode:\"media_posture\" and mode:\"media_provider\" exposes media readiness, and mode:\"sessions\" and mode:\"session\" exposes bookmark/session artifact posture.",
|
|
141
141
|
"safetyBoundary": "No artifact, generated media, or research source is silently promoted into durable memory or non-Agent knowledge.",
|
|
142
142
|
"releaseEvidence": "Readiness and docs cite Knowledge/artifact/media boundaries, and package policy requires those docs in the installable package."
|
|
143
143
|
}
|
|
@@ -197,7 +197,7 @@
|
|
|
197
197
|
"quality": {
|
|
198
198
|
"capabilityCoverage": "Covers reminders, notification targets, webhook delivery, redacted readiness, and explicit one-shot sends.",
|
|
199
199
|
"userAccess": "The user can schedule reminders and manage notifications from the Agent workspace and /notify or /schedule commands.",
|
|
200
|
-
"modelAccess": "agent_reminder_schedule, agent_notify, and agent_harness notifications
|
|
200
|
+
"modelAccess": "agent_reminder_schedule, agent_notify, and agent_harness mode:\"notifications\" and mode:\"notification_target\" plus command/workspace action metadata expose reminder and notification flows to the model.",
|
|
201
201
|
"safetyBoundary": "Delivery is opt-in, exact-target, confirmation-gated where mutating, and does not render stored tokens.",
|
|
202
202
|
"releaseEvidence": "Readiness evidence cites reminder, notify, and tool implementations, with live outcome certification covering externally backed delivery."
|
|
203
203
|
}
|
|
@@ -212,7 +212,7 @@
|
|
|
212
212
|
"quality": {
|
|
213
213
|
"capabilityCoverage": "Covers channel readiness, account posture, setup guidance, policy, status, and one-message confirmed delivery across configured channel surfaces.",
|
|
214
214
|
"userAccess": "The user can inspect and send channel messages through Agent Workspace -> Channels and /channels mirrors.",
|
|
215
|
-
"modelAccess": "agent_harness channels
|
|
215
|
+
"modelAccess": "agent_harness mode:\"channels\" and mode:\"channel\" exposes structured readiness, setup state, delivery posture, risk labels, and safe config-key names; agent_channel_send exposes the exact confirmed send route.",
|
|
216
216
|
"safetyBoundary": "Channel sends require explicit target and confirmation, do not infer routes from chat, and do not expose secret values.",
|
|
217
217
|
"releaseEvidence": "Readiness evidence cites channel runtime/tool/docs sources, and live certification requires real external channel outcome coverage before release."
|
|
218
218
|
}
|
|
@@ -227,7 +227,7 @@
|
|
|
227
227
|
"quality": {
|
|
228
228
|
"capabilityCoverage": "Covers QR-first companion pairing, manual-token fallback, shared-session posture, realtime client readiness, and safe token display.",
|
|
229
229
|
"userAccess": "The user can pair through workspace access routes, /pair, and /qrcode, with manual token display requiring explicit confirmation.",
|
|
230
|
-
"modelAccess": "agent_harness pairing_posture
|
|
230
|
+
"modelAccess": "agent_harness mode:\"pairing_posture\" and mode:\"pairing_route\" exposes companion pairing endpoint binding, pairing surface id, token presence/fingerprint, route catalog, connected-host status/capability routes, channel readiness routes, and single pairing-route lookup without returning raw tokens or QR payloads.",
|
|
231
231
|
"safetyBoundary": "Raw pairing tokens are hidden by default and only displayed when the user explicitly requests manual output.",
|
|
232
232
|
"releaseEvidence": "Readiness evidence cites workspace, QR runtime, direct harness, and help surfaces, with live certification covering connected-host pairing readiness."
|
|
233
233
|
}
|
|
@@ -242,7 +242,7 @@
|
|
|
242
242
|
"quality": {
|
|
243
243
|
"capabilityCoverage": "Covers approval queues, automation jobs/runs/schedules, status views, and narrow confirmed approve, deny, cancel, run, pause, resume, retry, and run-now operations.",
|
|
244
244
|
"userAccess": "The user can operate approvals and automation through workspace forms and exact /approval, /automation, and /schedule mirrors.",
|
|
245
|
-
"modelAccess": "agent_operator_briefing, agent_operator_action, and agent_harness command
|
|
245
|
+
"modelAccess": "agent_operator_briefing, agent_operator_action, and agent_harness command and workspace metadata expose read-only status and exact confirmed actions to the model.",
|
|
246
246
|
"safetyBoundary": "Ordinary chat cannot silently create or mutate broad automation definitions; every mutation is exact and confirmation-gated.",
|
|
247
247
|
"releaseEvidence": "Readiness evidence cites operator action and runtime sources, and live certification covers externally backed automation outcomes."
|
|
248
248
|
}
|
|
@@ -257,7 +257,7 @@
|
|
|
257
257
|
"quality": {
|
|
258
258
|
"capabilityCoverage": "Covers planning interviews, visible work-plan state, task status, and project planning without implicit parallel execution jobs.",
|
|
259
259
|
"userAccess": "The user can inspect and update planning from /plan, /workplan, workspace planning panels, and task/status surfaces.",
|
|
260
|
-
"modelAccess": "agent_work_plan exposes list/get/create/update/status/remove/clear_completed for visible Agent-local work plans; agent_harness panels
|
|
260
|
+
"modelAccess": "agent_work_plan exposes list/get/create/update/status/remove/clear_completed for visible Agent-local work plans; agent_harness mode:\"panels\" and mode:\"panel\" and workspace metadata expose the matching TUI visibility without spawning implementation jobs.",
|
|
261
261
|
"safetyBoundary": "Planning stays serial and explicit until the user asks for execution, and it does not auto-spawn implementation roles.",
|
|
262
262
|
"releaseEvidence": "Readiness evidence cites planning coordinator and command sources, with verification ledger accounting for onboarding and work-plan surfaces."
|
|
263
263
|
}
|
|
@@ -272,7 +272,7 @@
|
|
|
272
272
|
"quality": {
|
|
273
273
|
"capabilityCoverage": "Covers build, fix, review, and implementation delegation through explicit shared-session/task routes instead of turning Agent into a coding TUI.",
|
|
274
274
|
"userAccess": "The user can delegate from Agent workspace forms or /delegate when they explicitly ask for build/fix/review/implementation work.",
|
|
275
|
-
"modelAccess": "agent_harness delegation_posture
|
|
275
|
+
"modelAccess": "agent_harness mode:\"delegation_posture\" and mode:\"delegation_route\" exposes explicit build-delegation routes, runtime availability, delegated-review policy, main-conversation ownership, blocked local coding ownership, and single delegation-route lookup; delegated work submission remains a visible confirmed workspace or slash-command flow.",
|
|
276
276
|
"safetyBoundary": "Delegated review or implementation is never the default reasoning path and requires explicit user intent.",
|
|
277
277
|
"releaseEvidence": "Readiness evidence cites delegation runtime, direct harness source, and docs, with package boundary checks rejecting coding-first Agent product drift."
|
|
278
278
|
}
|
|
@@ -287,7 +287,7 @@
|
|
|
287
287
|
"quality": {
|
|
288
288
|
"capabilityCoverage": "Covers MCP server setup, tool inventory, trust posture, security review, secrets, and confirmation-gated trust changes.",
|
|
289
289
|
"userAccess": "The user can review MCP and tool trust through Agent workspace, /mcp, /security, /trust, and settings surfaces.",
|
|
290
|
-
"modelAccess": "agent_harness mcp_servers
|
|
290
|
+
"modelAccess": "agent_harness mode:\"mcp_servers\" and mode:\"mcp_server\" exposes read-only server posture, trust mode, role, quarantine state, and optional per-server tool inventory; mode:\"security_posture\" and mode:\"security_finding\" exposes trust/security findings; tools/tool exposes model tool schema; mode:\"settings\", mode:\"get_setting\", and mode:\"set_setting\" exposes confirmed setting routes.",
|
|
291
291
|
"safetyBoundary": "Tool trust changes, secret writes, and server mutations are explicit and do not silently install or expose tools.",
|
|
292
292
|
"releaseEvidence": "Readiness evidence cites MCP/security/product runtimes and the direct MCP server harness catalog, with package text policy and the verification ledger documenting model-visible harness boundaries."
|
|
293
293
|
}
|
|
@@ -302,7 +302,7 @@
|
|
|
302
302
|
"quality": {
|
|
303
303
|
"capabilityCoverage": "Covers voice review, live TTS, image input, media provider readiness, transcription/voice posture, and confirmed image/video artifact generation.",
|
|
304
304
|
"userAccess": "The user can operate voice and media through Agent Workspace -> Voice & Media and /tts, /voice, /image, and /media commands.",
|
|
305
|
-
"modelAccess": "agent_harness media_posture
|
|
305
|
+
"modelAccess": "agent_harness mode:\"media_posture\" and mode:\"media_provider\" exposes voice/media provider readiness, selected TTS setup, browser-tool posture, artifact availability, safe secret-key names, and model routes; agent_media_generate performs confirmed media generation.",
|
|
306
306
|
"safetyBoundary": "Spoken output and generated media are not durable knowledge unless the user explicitly ingests reviewed artifacts.",
|
|
307
307
|
"releaseEvidence": "Readiness evidence cites voice/media runtime/docs and direct harness sources, while ledger accounting and live certification cover media and connected-host outcomes."
|
|
308
308
|
}
|
|
@@ -317,7 +317,7 @@
|
|
|
317
317
|
"quality": {
|
|
318
318
|
"capabilityCoverage": "Covers save/load/export/search, transcript review, bookmarks, image attachment, context references, session continuity, and artifact follow-up.",
|
|
319
319
|
"userAccess": "The user can manage sessions and conversation artifacts through TUI controls, workspace actions, pickers, overlays, and /save, /load, /sessions, /conversation, /bookmarks, and /image commands.",
|
|
320
|
-
"modelAccess": "agent_harness sessions
|
|
320
|
+
"modelAccess": "agent_harness mode:\"sessions\" and mode:\"session\" exposes current session posture, saved-session metadata/search, bookmark counts, saved bookmark file counts, and single-session lookup; visible save/resume/export/delete/bookmark flows remain confirmation-gated user routes.",
|
|
321
321
|
"safetyBoundary": "Conversation controls stay visible and local; file/URL context references do not silently ingest into Agent Knowledge.",
|
|
322
322
|
"releaseEvidence": "Readiness evidence cites session workflow, workspace, and direct harness sources, while ledger accounting and package text checks cover sessions/bookmarks, overlays, and command catalog docs."
|
|
323
323
|
}
|
|
@@ -332,7 +332,7 @@
|
|
|
332
332
|
"quality": {
|
|
333
333
|
"capabilityCoverage": "Covers support, auth, subscription, trust, recall, and portable bundle inspection/export/import with redaction and confirmation.",
|
|
334
334
|
"userAccess": "The user can export and inspect bundles through workspace routes and /bundle, /auth, /trust, /subscription, and recall bundle commands.",
|
|
335
|
-
"modelAccess": "agent_harness security_posture
|
|
335
|
+
"modelAccess": "agent_harness mode:\"security_posture\" and mode:\"security_finding\" exposes redacted token, policy, MCP, plugin, incident, auth, and support-bundle posture; mode:\"support_bundles\" and mode:\"support_bundle\" exposes bundle routes and redacted existing-bundle inspection without returning raw config, token, or secret values.",
|
|
336
336
|
"safetyBoundary": "Sensitive bundle export/import and trust changes are confirmation-gated and redact secret values.",
|
|
337
337
|
"releaseEvidence": "Readiness evidence cites bundle, security, auth, trust, workspace, and direct harness sources, with package policy and ledger accounting guarding token-safe documentation and install smoke."
|
|
338
338
|
}
|
|
@@ -347,7 +347,7 @@
|
|
|
347
347
|
"quality": {
|
|
348
348
|
"capabilityCoverage": "Covers status, doctor, compatibility, health, auth review, connected-host route posture, SDK pin checks, and Agent Knowledge readiness.",
|
|
349
349
|
"userAccess": "The user can run workspace health routes and goodvibes-agent status, doctor, compat, and auth review mirrors.",
|
|
350
|
-
"modelAccess": "agent_harness operator_methods, operator_method, service_posture, service_endpoint, connected_host, connected_host_capability, connected_host_status, cli_command, setup_posture
|
|
350
|
+
"modelAccess": "agent_harness mode:\"operator_methods\", mode:\"operator_method\", mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host\", mode:\"connected_host_capability\", mode:\"connected_host_status\", mode:\"cli_command\", mode:\"setup_posture\", mode:\"setup_item\", mode:\"provider_accounts\", mode:\"provider_account\", mode:\"mcp_servers\", and mode:\"mcp_server\" expose the same diagnostics to the model.",
|
|
351
351
|
"safetyBoundary": "Diagnostics are read-only, redact token state, and provide repair guidance without lifecycle control.",
|
|
352
352
|
"releaseEvidence": "Readiness evidence cites status/health/compat sources, with live verification requiring CLI status, compat, doctor, connected-host, model, and Agent Knowledge checks."
|
|
353
353
|
}
|
|
@@ -360,11 +360,11 @@
|
|
|
360
360
|
"evidence": "release/performance-snapshot.json; src/cli/package-verification.ts; scripts/release.ts; scripts/perf-check.ts; scripts/publish-check.ts; scripts/package-install-check.ts; .github/workflows/ci.yml",
|
|
361
361
|
"action": "Keep release validation centralized and package-facing docs aligned with Agent product boundaries.",
|
|
362
362
|
"quality": {
|
|
363
|
-
"capabilityCoverage": "Covers package identity, Bun-only install, runtime build, package docs, compact model tool and harness metadata policy, compiled binary smoke, pack/install smoke, publish checks, performance checks, and tarball policy.",
|
|
363
|
+
"capabilityCoverage": "Covers package identity, Bun-only install, runtime build, package docs, compact model tool and harness metadata policy, searchable harness mode discovery, stripped registered schema descriptions, compiled binary smoke, pack/install smoke, publish checks, performance checks, and tarball policy.",
|
|
364
364
|
"userAccess": "The user receives one installable package with goodvibes-agent as the executable and package-facing docs included in the tarball.",
|
|
365
|
-
"modelAccess": "agent_harness exposes package-facing CLI mirror metadata
|
|
365
|
+
"modelAccess": "agent_harness exposes package-facing CLI mirror metadata plus mode:\"modes\" and mode:\"mode\" discovery so the assistant can operate installed surfaces instead of hidden nested processes.",
|
|
366
366
|
"safetyBoundary": "The package excludes tests, private verification internals, connected-host binaries, lifecycle ownership, and forbidden boundary paths.",
|
|
367
|
-
"releaseEvidence": "Shared package verification, compact model tool/harness metadata checks, release scripts, performance snapshot, and release workflow policy keep the package gate required for every release."
|
|
367
|
+
"releaseEvidence": "Shared package verification, compact model tool/harness metadata checks, searchable harness mode catalog ledger, stripped schema-description checks, release scripts, performance snapshot, and release workflow policy keep the package gate required for every release."
|
|
368
368
|
}
|
|
369
369
|
},
|
|
370
370
|
{
|
|
@@ -377,7 +377,7 @@
|
|
|
377
377
|
"quality": {
|
|
378
378
|
"capabilityCoverage": "Covers external outcome checks for compiled CLI, connected-host status/health/model routes, SDK compatibility, isolated Agent Knowledge status/ask/search/source/node/issue/map/connector routes, and packaged evidence for item inspection.",
|
|
379
379
|
"userAccess": "The user gets release artifacts backed by recorded live verification rather than only local static checks.",
|
|
380
|
-
"modelAccess": "agent_harness service_posture, service_endpoint, and connected_host_status mirror service endpoint posture and live-readiness posture into the main conversation for assistant use.",
|
|
380
|
+
"modelAccess": "agent_harness mode:\"service_posture\", mode:\"service_endpoint\", and mode:\"connected_host_status\" mirror service endpoint posture and live-readiness posture into the main conversation for assistant use.",
|
|
381
381
|
"safetyBoundary": "Live reports redact local paths, private network addresses, and token values while refusing SDK mismatch as a passing state.",
|
|
382
382
|
"releaseEvidence": "release/live-verification JSON and Markdown reports are required release evidence and must be fresh once blockers are absent."
|
|
383
383
|
}
|
|
@@ -392,9 +392,9 @@
|
|
|
392
392
|
"quality": {
|
|
393
393
|
"capabilityCoverage": "Makes release-quality coverage a release criterion for each capability item rather than accepting a bare covered status.",
|
|
394
394
|
"userAccess": "The user can inspect the release/release-readiness.json inventory to see every capability, owner, action, evidence, and quality dimension.",
|
|
395
|
-
"modelAccess": "agent_harness release_evidence, release_evidence_artifact, release_readiness, and
|
|
395
|
+
"modelAccess": "agent_harness mode:\"release_evidence\", mode:\"release_evidence_artifact\", mode:\"release_readiness\", mode:\"release_readiness_item\", mode:\"modes\", and mode:\"mode\" expose the same release evidence bundle, inventory, and harness capability catalog to the model with summary, search, single-artifact, single-item, and single-mode lookup routes, while package verification keeps the packaged files present.",
|
|
396
396
|
"safetyBoundary": "The inventory uses neutral evidence aliases and excludes local or private evidence details from the repository.",
|
|
397
|
-
"releaseEvidence": "Package verification requires required item ids, zero blocker statuses, quality dimensions, fresh live evidence, and release script staging."
|
|
397
|
+
"releaseEvidence": "Package verification requires required item ids, zero blocker statuses, quality dimensions, fresh live evidence, searchable harness mode discovery, compact tool metadata, and release script staging."
|
|
398
398
|
}
|
|
399
399
|
},
|
|
400
400
|
{
|
|
@@ -407,7 +407,7 @@
|
|
|
407
407
|
"quality": {
|
|
408
408
|
"capabilityCoverage": "Covers core external messaging routes, delivery records, ingress/egress, account lifecycle, directory lookup, target resolution, render policy, and adapter contracts through connected-host ownership.",
|
|
409
409
|
"userAccess": "The user sees channel readiness and confirmed sends in Agent while connected-host owns adapter lifecycle and route execution.",
|
|
410
|
-
"modelAccess": "agent_channel_send plus agent_harness channels
|
|
410
|
+
"modelAccess": "agent_channel_send plus agent_harness mode:\"channels\" and mode:\"channel\", connected-host capability, channel workspace, slash-command, and settings metadata expose channel operation boundaries to the model.",
|
|
411
411
|
"safetyBoundary": "Agent never owns host lifecycle or secret-bearing adapters; it routes exact confirmed delivery through public connected-host contracts.",
|
|
412
412
|
"releaseEvidence": "Readiness evidence cites connected-host evidence alias and Agent channel docs, with live outcome certification covering real delivery before release."
|
|
413
413
|
}
|
|
@@ -437,7 +437,7 @@
|
|
|
437
437
|
"quality": {
|
|
438
438
|
"capabilityCoverage": "Covers operator methods, events, auth, realtime transport, status, control-plane catalogs, WebSocket/SSE feeds, and route families.",
|
|
439
439
|
"userAccess": "The user receives status, health, model route, work/approval/automation, and realtime posture through Agent diagnostics and workspace surfaces.",
|
|
440
|
-
"modelAccess": "agent_harness operator_methods, operator_method, service_posture, service_endpoint, connected_host, connected_host_capability, connected_host_status, and first-class operator tools expose public operator routes and endpoint diagnostics to the model.",
|
|
440
|
+
"modelAccess": "agent_harness mode:\"operator_methods\", mode:\"operator_method\", mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host\", mode:\"connected_host_capability\", mode:\"connected_host_status\", and first-class operator tools expose public operator routes and endpoint diagnostics to the model.",
|
|
441
441
|
"safetyBoundary": "Agent uses public authenticated operator routes only and does not expose lifecycle or non-Agent host internals.",
|
|
442
442
|
"releaseEvidence": "Readiness evidence cites connected-host operator inventory and connected-host docs, with live verification requiring status, health, and model route checks."
|
|
443
443
|
}
|
|
@@ -452,7 +452,7 @@
|
|
|
452
452
|
"quality": {
|
|
453
453
|
"capabilityCoverage": "Covers Agent Knowledge handlers, ingestion, connectors, graph operations, refinement, jobs, schedules, ask, search, and status through isolated connected-host routes.",
|
|
454
454
|
"userAccess": "The user can operate isolated Agent Knowledge from TUI and CLI without selecting or leaking into non-Agent knowledge spaces.",
|
|
455
|
-
"modelAccess": "agent_knowledge, agent_knowledge_ingest, agent_harness operator_methods
|
|
455
|
+
"modelAccess": "agent_knowledge, agent_knowledge_ingest, agent_harness mode:\"operator_methods\" and mode:\"operator_method\", and connected-host capability reports expose isolated Knowledge operation to the model.",
|
|
456
456
|
"safetyBoundary": "Only /api/goodvibes-agent/knowledge/* routes are allowed, and Agent rejects default or alternate knowledge space routing plus successful responses that carry default scope metadata.",
|
|
457
457
|
"releaseEvidence": "Readiness evidence cites connected-host evidence alias and Knowledge docs, with live verification requiring isolated status, ask, search, library, item, map, connector checks, and response-scope contamination detection."
|
|
458
458
|
}
|
|
@@ -467,7 +467,7 @@
|
|
|
467
467
|
"quality": {
|
|
468
468
|
"capabilityCoverage": "Covers voice synthesis, streaming voice, transcription, realtime voice setup, media analysis, artifact storage, and media provider route handlers through connected-host ownership.",
|
|
469
469
|
"userAccess": "The user can inspect media readiness and generate artifacts from Agent while provider runtime ownership stays outside the package.",
|
|
470
|
-
"modelAccess": "agent_media_generate and agent_harness media_posture
|
|
470
|
+
"modelAccess": "agent_media_generate and agent_harness mode:\"media_posture\" and mode:\"media_provider\" expose media provider readiness, selected TTS setup, browser-tool posture, artifact availability, safe secret-key names, model routes, and single provider lookup; connected-host capability metadata exposes ownership boundaries.",
|
|
471
471
|
"safetyBoundary": "Agent stores generated bytes as artifacts and does not print inline base64 or silently ingest media into knowledge.",
|
|
472
472
|
"releaseEvidence": "Readiness evidence cites connected-host media inventory and voice/media docs, with live certification covering externally backed media outcomes."
|
|
473
473
|
}
|
|
@@ -482,7 +482,7 @@
|
|
|
482
482
|
"quality": {
|
|
483
483
|
"capabilityCoverage": "Covers provider account snapshots, usage windows, OAuth/service route metadata, auth routes, and provider usage endpoints through connected-host and SDK ownership.",
|
|
484
484
|
"userAccess": "The user can inspect account posture and usage from Agent surfaces while provider services remain connected-host responsibilities.",
|
|
485
|
-
"modelAccess": "agent_harness provider_accounts
|
|
485
|
+
"modelAccess": "agent_harness mode:\"provider_accounts\", mode:\"provider_account\", mode:\"model_routing\", mode:\"model_route\", mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host_status\", and mode:\"connected_host_capability\" expose account and routing posture to the model.",
|
|
486
486
|
"safetyBoundary": "Agent guides and inspects auth without owning provider service internals or printing raw secrets.",
|
|
487
487
|
"releaseEvidence": "Readiness evidence cites connected-host provider account inventory and Agent provider-account runtime sources."
|
|
488
488
|
}
|
|
@@ -497,7 +497,7 @@
|
|
|
497
497
|
"quality": {
|
|
498
498
|
"capabilityCoverage": "Covers token bootstrap, QR pairing, realtime delivery, browser/mobile-safe SDK surfaces, foreground events, and transport compatibility through connected-host and SDK ownership.",
|
|
499
499
|
"userAccess": "The user pairs companion clients and sees realtime compatibility from Agent while token issuance remains outside Agent.",
|
|
500
|
-
"modelAccess": "agent_harness pairing_posture
|
|
500
|
+
"modelAccess": "agent_harness mode:\"pairing_posture\", mode:\"pairing_route\", mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host\", mode:\"connected_host_capability\", and mode:\"connected_host_status\" expose pairing endpoint binding, token fingerprint, route catalog, realtime/status boundaries, and single route/capability lookup without returning raw tokens or QR payloads.",
|
|
501
501
|
"safetyBoundary": "Agent renders pairing UX and status without owning token issuance or exposing raw tokens by default.",
|
|
502
502
|
"releaseEvidence": "Readiness evidence cites connected-host pairing/realtime inventory and channel docs, with live certification covering pairing readiness."
|
|
503
503
|
}
|
|
@@ -527,7 +527,7 @@
|
|
|
527
527
|
"quality": {
|
|
528
528
|
"capabilityCoverage": "Covers the long-tail channel matrix through connected-host surface unions, plugin registry, delivery strategies, setup schemas, and operator channel routes.",
|
|
529
529
|
"userAccess": "The user sees all configured channel readiness and exact send paths through Agent channel surfaces.",
|
|
530
|
-
"modelAccess": "agent_channel_send and agent_harness channels
|
|
530
|
+
"modelAccess": "agent_channel_send and agent_harness mode:\"channels\" and mode:\"channel\", channel workspace, command, settings, and connected-host capability reports expose the channel matrix to the model.",
|
|
531
531
|
"safetyBoundary": "Agent keeps adapter setup and secret-bearing lifecycle in connected-host/SDK ownership while confirmed sends stay exact-target.",
|
|
532
532
|
"releaseEvidence": "Readiness evidence cites connected-host long-tail channel inventory and Agent channel docs, with live outcome certification covering external sends."
|
|
533
533
|
}
|
|
@@ -542,7 +542,7 @@
|
|
|
542
542
|
"quality": {
|
|
543
543
|
"capabilityCoverage": "Covers phone-call style conversation or notification delivery as a channel-class surface through connected-host telephony adapters and bridge delivery.",
|
|
544
544
|
"userAccess": "The user can inspect telephony readiness and send via channel/reminder/routine delivery routes when configured.",
|
|
545
|
-
"modelAccess": "agent_channel_send, agent_reminder_schedule, and agent_harness channels
|
|
545
|
+
"modelAccess": "agent_channel_send, agent_reminder_schedule, and agent_harness mode:\"channels\" and mode:\"channel\" plus connected-host metadata expose telephony as a routed channel surface to the model.",
|
|
546
546
|
"safetyBoundary": "Agent does not own telephony adapter credentials or service lifecycle and uses explicit target/confirmation rules for delivery.",
|
|
547
547
|
"releaseEvidence": "Readiness evidence cites connected-host telephony inventory and Agent channel/reminder/routine sources."
|
|
548
548
|
}
|
|
@@ -557,7 +557,7 @@
|
|
|
557
557
|
"quality": {
|
|
558
558
|
"capabilityCoverage": "Covers companion command depth beyond pairing: chat, shared sessions, approvals, tasks, provider/model controls, attachments, and realtime foreground events.",
|
|
559
559
|
"userAccess": "The user gets companion-facing command depth through the companion app and Agent pairing/session surfaces.",
|
|
560
|
-
"modelAccess": "agent_harness pairing_posture
|
|
560
|
+
"modelAccess": "agent_harness mode:\"pairing_posture\" and mode:\"pairing_route\", mode:\"model_routing\" and mode:\"model_route\", connected_host, connected_host_capability, connected_host_status, operator methods, and first-class operator/channel/media tools expose pairing, shared-session, task, approval, provider/model, attachment, and mobile route boundaries for companion workflows.",
|
|
561
561
|
"safetyBoundary": "Companion commands align to SDK contracts for secure auth and do not bypass Agent confirmation or token policy.",
|
|
562
562
|
"releaseEvidence": "Readiness evidence cites companion evidence alias and channel docs, with live certification covering companion/pairing outcomes."
|
|
563
563
|
}
|
|
@@ -572,7 +572,7 @@
|
|
|
572
572
|
"quality": {
|
|
573
573
|
"capabilityCoverage": "Requires fresh external outcome evidence for externally backed capabilities, including channel sends, schedule execution, provider usage, media generation, pairing, and Agent Knowledge answers.",
|
|
574
574
|
"userAccess": "The user receives releases only after live outcomes are recorded for the external surfaces that cannot be fully proven locally.",
|
|
575
|
-
"modelAccess": "The model can inspect live-verification artifacts through agent_harness release_evidence_artifact and inspect service_posture, service_endpoint, and connected_host_status for the endpoint and live posture used by the release gate.",
|
|
575
|
+
"modelAccess": "The model can inspect live-verification artifacts through agent_harness mode:\"release_evidence_artifact\" and inspect mode:\"service_posture\", mode:\"service_endpoint\", and mode:\"connected_host_status\" for the endpoint and live posture used by the release gate.",
|
|
576
576
|
"safetyBoundary": "Live certification redacts token values, local paths, and private addresses and treats warnings, failures, skips, and SDK mismatch as release blockers.",
|
|
577
577
|
"releaseEvidence": "The current strict live verification artifacts record pass-only release evidence and are required by package verification once readiness blockers are absent."
|
|
578
578
|
}
|
|
@@ -39,6 +39,7 @@ import { registerAgentOperatorActionTool } from '../tools/agent-operator-action-
|
|
|
39
39
|
import { registerAgentOperatorBriefingTool } from '../tools/agent-operator-briefing-tool.ts';
|
|
40
40
|
import { registerAgentReminderScheduleTool } from '../tools/agent-reminder-schedule-tool.ts';
|
|
41
41
|
import { registerAgentWorkPlanTool } from '../tools/agent-work-plan-tool.ts';
|
|
42
|
+
import { compactRegisteredToolDefinitions } from '../tools/tool-definition-compaction.ts';
|
|
42
43
|
import { GOODVIBES_AGENT_SURFACE_ROOT } from '../config/surface.ts';
|
|
43
44
|
import { registerAgentRuntimeEvents } from './agent-runtime-events.ts';
|
|
44
45
|
|
|
@@ -249,6 +250,7 @@ export async function initializeBootstrapCore(
|
|
|
249
250
|
installAgentToolPolicyGuard(toolRegistry, {
|
|
250
251
|
getLastUserMessage: () => conversation.getLastUserMessage(),
|
|
251
252
|
});
|
|
253
|
+
compactRegisteredToolDefinitions(toolRegistry);
|
|
252
254
|
services.agentOrchestrator.setDependencies({
|
|
253
255
|
surfaceRoot: GOODVIBES_AGENT_SURFACE_ROOT,
|
|
254
256
|
fileCache,
|
package/src/runtime/bootstrap.ts
CHANGED
|
@@ -43,6 +43,7 @@ import { buildEnabledSkillsPrompt } from '../agent/skill-registry.ts';
|
|
|
43
43
|
import { buildEnabledRoutinesPrompt } from '../agent/routine-registry.ts';
|
|
44
44
|
import { buildReviewedMemoryPrompt } from '../agent/memory-prompt.ts';
|
|
45
45
|
import { registerAgentHarnessTool } from '../tools/agent-harness-tool.ts';
|
|
46
|
+
import { compactRegisteredToolDefinitions } from '../tools/tool-definition-compaction.ts';
|
|
46
47
|
|
|
47
48
|
const GOODVIBES_AGENT_OPERATOR_POLICY = [
|
|
48
49
|
'## GoodVibes Agent Operator Policy',
|
|
@@ -280,6 +281,7 @@ export async function bootstrapRuntime(
|
|
|
280
281
|
const commandContext = shell.commandContext;
|
|
281
282
|
const inputHistory = shell.inputHistory;
|
|
282
283
|
registerAgentHarnessTool(toolRegistry, commandRegistry, commandContext);
|
|
284
|
+
compactRegisteredToolDefinitions(toolRegistry);
|
|
283
285
|
const pluginCommandRegistry = {
|
|
284
286
|
register(command: {
|
|
285
287
|
readonly name: string;
|
|
@@ -116,7 +116,7 @@ function describeProvider(
|
|
|
116
116
|
inspectPosture: 'agent_harness mode:"media_posture"',
|
|
117
117
|
inspectProvider: 'agent_harness mode:"media_provider"',
|
|
118
118
|
generateMedia: 'agent_media_generate with confirm:true and explicitUserRequest',
|
|
119
|
-
ttsSettings: 'agent_harness settings
|
|
119
|
+
ttsSettings: 'agent_harness mode:"settings", mode:"get_setting", mode:"set_setting" for tts.provider, tts.voice, tts.llmProvider, and tts.llmModel',
|
|
120
120
|
},
|
|
121
121
|
policy: {
|
|
122
122
|
effect: 'read-only',
|