@pellux/goodvibes-agent 1.1.7 → 1.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (255) hide show
  1. package/CHANGELOG.md +170 -0
  2. package/README.md +46 -30
  3. package/dist/package/{ast-grep-napi.linux-x64-gnu-mkk8xwww.node → ast-grep-napi.linux-x64-gnu-swtppvy9.node} +0 -0
  4. package/dist/package/{ast-grep-napi.linux-x64-musl-ryqtgdv6.node → ast-grep-napi.linux-x64-musl-ttfcdtap.node} +0 -0
  5. package/dist/package/main.js +132577 -91483
  6. package/docs/README.md +14 -7
  7. package/docs/channels-remote-and-api.md +8 -5
  8. package/docs/connected-host.md +14 -12
  9. package/docs/getting-started.md +56 -30
  10. package/docs/knowledge-artifacts-and-multimodal.md +7 -5
  11. package/docs/project-planning.md +2 -2
  12. package/docs/providers-and-routing.md +11 -3
  13. package/docs/tools-and-commands.md +114 -45
  14. package/docs/voice-and-live-tts.md +3 -1
  15. package/package.json +3 -2
  16. package/release/release-notes.md +130 -5
  17. package/release/release-readiness.json +120 -90
  18. package/src/agent/assistant-cockpit.ts +247 -0
  19. package/src/agent/autonomy-schedule-format.ts +96 -0
  20. package/src/agent/autonomy-schedule.ts +514 -0
  21. package/src/agent/channel-delivery-receipts.ts +292 -0
  22. package/src/agent/competitive-feature-inventory.ts +296 -0
  23. package/src/agent/document-registry-types.ts +106 -0
  24. package/src/agent/document-registry.ts +734 -0
  25. package/src/agent/harness-control.ts +2 -2
  26. package/src/agent/memory-prompt.ts +2 -2
  27. package/src/agent/operator-actions.ts +50 -6
  28. package/src/agent/persona-registry.ts +8 -0
  29. package/src/agent/project-context-files.ts +273 -0
  30. package/src/agent/prompt-context-receipts.ts +502 -0
  31. package/src/agent/reminder-schedule-format.ts +16 -2
  32. package/src/agent/research-run-registry.ts +582 -0
  33. package/src/agent/research-source-registry.ts +441 -0
  34. package/src/agent/routine-registry.ts +19 -3
  35. package/src/agent/routine-schedule-format.ts +27 -2
  36. package/src/agent/runtime-profile-starters.ts +7 -0
  37. package/src/agent/runtime-profile.ts +106 -4
  38. package/src/agent/schedule-edit-format.ts +129 -0
  39. package/src/agent/schedule-edit.ts +496 -0
  40. package/src/agent/schedule-next-routes.ts +42 -0
  41. package/src/agent/setup-wizard-checkpoint.ts +140 -0
  42. package/src/agent/setup-wizard.ts +447 -0
  43. package/src/agent/skill-registry-types.ts +102 -0
  44. package/src/agent/skill-registry.ts +81 -107
  45. package/src/agent/vibe-confirmation-routes.ts +62 -0
  46. package/src/agent/vibe-file.ts +285 -0
  47. package/src/cli/agent-knowledge-command.ts +45 -2
  48. package/src/cli/help.ts +3 -0
  49. package/src/cli/profiles-command.ts +25 -11
  50. package/src/config/agent-settings-policy.ts +1 -18
  51. package/src/input/agent-workspace-activation.ts +53 -0
  52. package/src/input/agent-workspace-artifact-browser-editor.ts +494 -0
  53. package/src/input/agent-workspace-artifact-metadata.ts +17 -0
  54. package/src/input/agent-workspace-basic-command-editors.ts +5 -1
  55. package/src/input/agent-workspace-categories.ts +153 -155
  56. package/src/input/agent-workspace-channel-triage.ts +481 -0
  57. package/src/input/agent-workspace-channels.ts +263 -0
  58. package/src/input/agent-workspace-command-editor.ts +152 -0
  59. package/src/input/agent-workspace-context-snapshot.ts +349 -0
  60. package/src/input/agent-workspace-delegation-editor-submission.ts +8 -0
  61. package/src/input/agent-workspace-document-editor.ts +502 -0
  62. package/src/input/agent-workspace-document-ops-editor.ts +523 -0
  63. package/src/input/agent-workspace-host-category.ts +1 -1
  64. package/src/input/agent-workspace-local-library-snapshot.ts +167 -0
  65. package/src/input/agent-workspace-model-compare-editor.ts +376 -0
  66. package/src/input/agent-workspace-model-compare-prompt-submission.ts +552 -0
  67. package/src/input/agent-workspace-model-compare-types.ts +82 -0
  68. package/src/input/agent-workspace-model-compare-utils.ts +35 -0
  69. package/src/input/agent-workspace-onboarding-categories.ts +141 -0
  70. package/src/input/agent-workspace-operations-command-editor-submission.ts +53 -0
  71. package/src/input/agent-workspace-operations-command-editors.ts +22 -0
  72. package/src/input/agent-workspace-research-report-editor.ts +212 -0
  73. package/src/input/agent-workspace-research-run-editor.ts +144 -0
  74. package/src/input/agent-workspace-research-source-editor.ts +167 -0
  75. package/src/input/agent-workspace-review-packet-snapshot.ts +593 -0
  76. package/src/input/agent-workspace-review-packet-utils.ts +265 -0
  77. package/src/input/agent-workspace-settings.ts +262 -30
  78. package/src/input/agent-workspace-setup-checkpoint-action.ts +127 -0
  79. package/src/input/agent-workspace-setup-snapshot.ts +198 -0
  80. package/src/input/agent-workspace-setup.ts +34 -1
  81. package/src/input/agent-workspace-snapshot.ts +162 -147
  82. package/src/input/agent-workspace-types.ts +287 -2
  83. package/src/input/agent-workspace.ts +18 -0
  84. package/src/input/command-registry.ts +9 -2
  85. package/src/input/commands/agent-runtime-profile-runtime.ts +28 -13
  86. package/src/input/commands/channels-runtime.ts +102 -114
  87. package/src/input/commands/delegation-runtime.ts +87 -24
  88. package/src/input/commands/knowledge-browser-flags.ts +12 -0
  89. package/src/input/commands/knowledge.ts +28 -14
  90. package/src/input/commands/operator-actions-runtime.ts +6 -3
  91. package/src/input/commands/schedule-runtime.ts +71 -14
  92. package/src/input/commands/session-content.ts +2 -2
  93. package/src/input/commands/shell-core.ts +2 -0
  94. package/src/input/commands/vibe-runtime.ts +140 -0
  95. package/src/input/commands.ts +2 -0
  96. package/src/input/connected-host-routes.ts +123 -0
  97. package/src/input/settings-modal-types.ts +14 -0
  98. package/src/main.ts +15 -15
  99. package/src/panels/qr-panel.ts +2 -2
  100. package/src/renderer/agent-workspace-context-lines.ts +686 -0
  101. package/src/renderer/agent-workspace.ts +30 -419
  102. package/src/renderer/settings-modal-helpers.ts +12 -0
  103. package/src/renderer/settings-modal.ts +12 -0
  104. package/src/runtime/bootstrap-command-context.ts +11 -1
  105. package/src/runtime/bootstrap-command-parts.ts +14 -3
  106. package/src/runtime/bootstrap-core.ts +39 -1
  107. package/src/runtime/bootstrap-shell.ts +6 -0
  108. package/src/runtime/bootstrap.ts +113 -30
  109. package/src/runtime/connected-host-auth.ts +3 -2
  110. package/src/runtime/execution-ledger.ts +231 -0
  111. package/src/runtime/services.ts +88 -10
  112. package/src/runtime/tool-permission-safety.ts +199 -5
  113. package/src/shell/session-continuity-hints.ts +39 -0
  114. package/src/tools/agent-artifacts-tool.ts +606 -0
  115. package/src/tools/agent-audit-tool.ts +155 -0
  116. package/src/tools/agent-autonomy-schedule-tool.ts +238 -0
  117. package/src/tools/agent-autonomy-tool.ts +140 -0
  118. package/src/tools/agent-channel-send-tool.ts +24 -2
  119. package/src/tools/agent-channels-tool.ts +140 -0
  120. package/src/tools/agent-computer-tool.ts +168 -0
  121. package/src/tools/agent-context-policy.ts +137 -7
  122. package/src/tools/agent-context-tool.ts +143 -0
  123. package/src/tools/agent-delegation-tool.ts +128 -0
  124. package/src/tools/agent-device-tool.ts +240 -0
  125. package/src/tools/agent-documents-tool.ts +684 -0
  126. package/src/tools/agent-execution-tool.ts +230 -0
  127. package/src/tools/agent-harness-agent-orchestration.ts +703 -0
  128. package/src/tools/agent-harness-autonomy-intake.ts +785 -0
  129. package/src/tools/agent-harness-autonomy-live-records.ts +588 -0
  130. package/src/tools/agent-harness-autonomy-queue-types.ts +88 -0
  131. package/src/tools/agent-harness-autonomy-queue.ts +560 -0
  132. package/src/tools/agent-harness-background-processes-types.ts +35 -0
  133. package/src/tools/agent-harness-background-processes.ts +794 -0
  134. package/src/tools/agent-harness-browser-cockpit-route.ts +219 -0
  135. package/src/tools/agent-harness-browser-control.ts +338 -0
  136. package/src/tools/agent-harness-channel-metadata.ts +168 -10
  137. package/src/tools/agent-harness-cli-command-policy.ts +110 -0
  138. package/src/tools/agent-harness-command-catalog.ts +4 -2
  139. package/src/tools/agent-harness-command-runner.ts +42 -0
  140. package/src/tools/agent-harness-connected-host-status.ts +7 -4
  141. package/src/tools/agent-harness-delegation-posture.ts +234 -19
  142. package/src/tools/agent-harness-document-ops-reviewer-readiness.ts +234 -0
  143. package/src/tools/agent-harness-document-ops-types.ts +72 -0
  144. package/src/tools/agent-harness-document-ops.ts +671 -0
  145. package/src/tools/agent-harness-execution-history.ts +489 -0
  146. package/src/tools/agent-harness-execution-posture.ts +382 -0
  147. package/src/tools/agent-harness-file-recovery.ts +135 -0
  148. package/src/tools/agent-harness-keybinding-metadata.ts +16 -12
  149. package/src/tools/agent-harness-learning-curator-common.ts +102 -0
  150. package/src/tools/agent-harness-learning-curator-consolidation.ts +295 -0
  151. package/src/tools/agent-harness-learning-curator-proposals.ts +606 -0
  152. package/src/tools/agent-harness-learning-curator-types.ts +151 -0
  153. package/src/tools/agent-harness-learning-curator.ts +417 -0
  154. package/src/tools/agent-harness-local-model-benchmarks.ts +199 -0
  155. package/src/tools/agent-harness-local-model-cookbook.ts +238 -0
  156. package/src/tools/agent-harness-local-model-endpoints.ts +673 -0
  157. package/src/tools/agent-harness-media-posture.ts +208 -2
  158. package/src/tools/agent-harness-memory-posture.ts +556 -0
  159. package/src/tools/agent-harness-metadata.ts +100 -168
  160. package/src/tools/agent-harness-mode-catalog.ts +84 -33
  161. package/src/tools/agent-harness-model-catalog.ts +162 -0
  162. package/src/tools/agent-harness-model-provider-health.ts +186 -0
  163. package/src/tools/agent-harness-model-readiness.ts +406 -0
  164. package/src/tools/agent-harness-model-routing-types.ts +266 -0
  165. package/src/tools/agent-harness-model-routing-utils.ts +30 -0
  166. package/src/tools/agent-harness-model-routing.ts +137 -190
  167. package/src/tools/agent-harness-operator-methods.ts +115 -133
  168. package/src/tools/agent-harness-pairing-posture.ts +431 -18
  169. package/src/tools/agent-harness-personal-ops-discovery.ts +533 -0
  170. package/src/tools/agent-harness-personal-ops-intake.ts +385 -0
  171. package/src/tools/agent-harness-personal-ops-lanes.ts +204 -0
  172. package/src/tools/agent-harness-personal-ops-records.ts +732 -0
  173. package/src/tools/agent-harness-personal-ops-runner.ts +637 -0
  174. package/src/tools/agent-harness-personal-ops-types.ts +222 -0
  175. package/src/tools/agent-harness-personal-ops.ts +606 -0
  176. package/src/tools/agent-harness-project-context.ts +144 -0
  177. package/src/tools/agent-harness-prompt-context.ts +589 -0
  178. package/src/tools/agent-harness-provider-account-metadata.ts +2 -2
  179. package/src/tools/agent-harness-release-evidence.ts +9 -7
  180. package/src/tools/agent-harness-release-readiness.ts +9 -7
  181. package/src/tools/agent-harness-research-briefing.ts +427 -0
  182. package/src/tools/agent-harness-research-queue.ts +250 -0
  183. package/src/tools/agent-harness-research-runs.ts +295 -0
  184. package/src/tools/agent-harness-research-workflow.ts +322 -0
  185. package/src/tools/agent-harness-security-posture.ts +2 -2
  186. package/src/tools/agent-harness-service-posture.ts +9 -9
  187. package/src/tools/agent-harness-session-metadata.ts +3 -3
  188. package/src/tools/agent-harness-setup-connected-host.ts +501 -0
  189. package/src/tools/agent-harness-setup-describe.ts +557 -0
  190. package/src/tools/agent-harness-setup-handoffs.ts +502 -0
  191. package/src/tools/agent-harness-setup-model-helpers.ts +101 -0
  192. package/src/tools/agent-harness-setup-plan.ts +253 -0
  193. package/src/tools/agent-harness-setup-posture-types.ts +218 -0
  194. package/src/tools/agent-harness-setup-posture-utils.ts +173 -0
  195. package/src/tools/agent-harness-setup-posture.ts +449 -221
  196. package/src/tools/agent-harness-setup-smoke.ts +508 -0
  197. package/src/tools/agent-harness-sudo-posture.ts +114 -0
  198. package/src/tools/agent-harness-tool-schema.ts +120 -7
  199. package/src/tools/agent-harness-tool-types.ts +78 -0
  200. package/src/tools/agent-harness-tool-utils.ts +43 -0
  201. package/src/tools/agent-harness-tool.ts +311 -370
  202. package/src/tools/agent-harness-ui-surface-metadata.ts +76 -69
  203. package/src/tools/agent-harness-ui-surface-types.ts +46 -0
  204. package/src/tools/agent-harness-vibe-health.ts +105 -0
  205. package/src/tools/agent-harness-workspace-action-runner.ts +149 -0
  206. package/src/tools/agent-harness-workspace-actions.ts +114 -8
  207. package/src/tools/agent-harness-workspace-editor-execution.ts +214 -0
  208. package/src/tools/agent-harness-workspace-editor-runner.ts +755 -0
  209. package/src/tools/agent-host-tool.ts +159 -0
  210. package/src/tools/agent-knowledge-ingest-tool.ts +34 -1
  211. package/src/tools/agent-learning-consolidation-core.ts +327 -0
  212. package/src/tools/agent-learning-consolidation-tool.ts +758 -0
  213. package/src/tools/agent-memory-tool.ts +214 -0
  214. package/src/tools/agent-model-compare-export.ts +315 -0
  215. package/src/tools/agent-model-compare-handoff.ts +592 -0
  216. package/src/tools/agent-model-compare-judgment.ts +633 -0
  217. package/src/tools/agent-model-compare-run.ts +722 -0
  218. package/src/tools/agent-model-compare-tool.ts +698 -0
  219. package/src/tools/agent-model-compare-types.ts +191 -0
  220. package/src/tools/agent-model-compare-utils.ts +93 -0
  221. package/src/tools/agent-models-tool.ts +208 -0
  222. package/src/tools/agent-operator-action-tool.ts +1 -1
  223. package/src/tools/agent-operator-method-tool.ts +643 -0
  224. package/src/tools/agent-personal-ops-tool.ts +197 -0
  225. package/src/tools/agent-policy-explanation.ts +415 -0
  226. package/src/tools/agent-research-report-tool.ts +608 -0
  227. package/src/tools/agent-research-runs-tool.ts +434 -0
  228. package/src/tools/agent-research-sources-tool.ts +443 -0
  229. package/src/tools/agent-research-tool.ts +687 -0
  230. package/src/tools/agent-review-packet-presets-core.ts +757 -0
  231. package/src/tools/agent-review-packet-presets-tool.ts +466 -0
  232. package/src/tools/agent-review-packet-share-tool.ts +305 -0
  233. package/src/tools/agent-route-planner-candidates-setup.ts +411 -0
  234. package/src/tools/agent-route-planner-candidates-surfaces.ts +432 -0
  235. package/src/tools/agent-route-planner-candidates-work.ts +251 -0
  236. package/src/tools/agent-route-planner-helpers.ts +667 -0
  237. package/src/tools/agent-route-planner.ts +185 -0
  238. package/src/tools/agent-route-tool.ts +105 -0
  239. package/src/tools/agent-schedule-edit-tool.ts +210 -0
  240. package/src/tools/agent-schedule-tool.ts +282 -0
  241. package/src/tools/agent-security-tool.ts +145 -0
  242. package/src/tools/agent-sessions-tool.ts +122 -0
  243. package/src/tools/agent-settings-import-tool.ts +104 -0
  244. package/src/tools/agent-settings-tool.ts +176 -0
  245. package/src/tools/agent-setup-tool.ts +226 -0
  246. package/src/tools/agent-support-tool.ts +122 -0
  247. package/src/tools/agent-terminal-process-tools.ts +167 -0
  248. package/src/tools/agent-tool-policy-guard-types.ts +77 -0
  249. package/src/tools/agent-tool-policy-guard.ts +106 -85
  250. package/src/tools/agent-vibe-tool.ts +297 -0
  251. package/src/tools/agent-work-plan-tool.ts +265 -6
  252. package/src/tools/agent-workspace-tool.ts +305 -0
  253. package/src/tools/artifact-archive.ts +169 -0
  254. package/src/tools/tool-definition-compaction.ts +36 -0
  255. package/src/version.ts +1 -1
@@ -57,12 +57,12 @@
57
57
  "capability": "Terminal-first personal operator workspace launches by default and exposes the high-signal workflows from one TUI surface.",
58
58
  "owner": "agent",
59
59
  "status": "covered",
60
- "evidence": "src/input/agent-workspace-categories.ts; src/renderer/agent-workspace.ts; docs/getting-started.md",
60
+ "evidence": "src/input/agent-workspace-categories.ts; src/renderer/agent-workspace.ts; src/tools/agent-route-planner.ts; src/tools/agent-support-tool.ts; src/tools/agent-sessions-tool.ts; src/tools/agent-audit-tool.ts; docs/getting-started.md",
61
61
  "action": "Keep Agent workspace as the first-screen product surface and avoid adding a marketing or coding-first entrypoint.",
62
62
  "quality": {
63
- "capabilityCoverage": "Matches the release expectation that the product opens into the real operator workspace, with setup, runtime posture, local context, channels, media, planning, and delegation reachable from one first-screen TUI.",
64
- "userAccess": "The user can open the workspace by default or through /agent, /home, and /operator, then browse workspace categories and actions directly.",
65
- "modelAccess": "agent_harness mode:\"summary\", mode:\"workspace\", mode:\"workspace_categories\", mode:\"workspace_actions\", mode:\"workspace_action\", mode:\"run_workspace_action\", mode:\"panels\", mode:\"panel\", mode:\"open_panel\", mode:\"ui_surfaces\", mode:\"ui_surface\", mode:\"open_ui_surface\", mode:\"shortcuts\", mode:\"keybindings\", mode:\"keybinding\", mode:\"run_keybinding\", mode:\"set_keybinding\", and mode:\"reset_keybinding\" expose the same workspace map, visible navigation routes, and keyboard route controls to the model, with compact workspace action, panel, UI surface, and keybinding modelRoute hints for route selection.",
63
+ "capabilityCoverage": "Matches the release expectation that the product opens into the real operator workspace, with visible assistant-first Home lanes for setup, chat/model, connected browser cockpit/PWA handoff, project work, Personal Ops, research/docs, background supervision, and safety/recovery plus deeper setup, runtime posture, local context, channels, media, planning, and delegation categories.",
64
+ "userAccess": "The user can open the workspace by default or through /agent, /home, and /operator, start from the assistant cockpit lanes including the browser cockpit handoff, then browse or search deeper workspace categories and actions directly.",
65
+ "modelAccess": "route action:\"plan|status\" plus lower-level agent_harness mode:\"route_decision\" choose the preferred visible Agent route for a plain user task, including alternatives, missing fields, confirmation boundary, workspace matches, and harness mode matches across setup, settings, Personal Ops, research, autonomy, execution, delegation, computer/browser, workspace, host, device, channel, security, Local Context, and Knowledge surfaces without executing tools; host/daemon health, doctor, readiness, service, and compatibility wording prefers host action:\"status\" before repair or lifecycle effects, normal settings/configuration wording prefers settings action:\"list\" before set/reset/import effects, model provider/local-cookbook/local-server-smoke/route-fit wording prefers models action:\"provider|local|smoke|route\" before credential, smoke, benchmark, or route-change effects, Personal Ops briefing/queue/fresh-read/connector setup wording prefers personal_ops action:\"briefing|queue|intake|lane\" before live provider reads or effects, direct reminder/schedule/cron/lifecycle wording prefers schedule action:\"list\" before confirmed schedule effects, command-shaped background work prefers execution action:\"processes\" plus first-class terminal/process routes, interactive PTY/stdin/sudo wording prefers execution action:\"process_capabilities\" before hidden process starts or credential effects, external memory-provider/backend/sync/import-export wording prefers memory action:\"provider\" or the external provider checklist before provider effects, browser-backed research runner wording prefers research action:\"runner\" readiness, visual research report rendering wording prefers research action:\"plan\" plus report artifacts before browser/PWA rendering is claimed, voice workflow/TTS-provider wording prefers device action:\"voice|provider\" before capture, playback, or picker effects, browser cockpit/PWA wording prefers computer action:\"browser\" before visible open handoffs, channel setup/triage/delivery-receipt/send wording prefers channels action:\"setup|triage|deliveries|channel\" before confirmed external delivery, permission posture/finding/blocked-action wording prefers security action:\"status|finding|explain\" before policy changes or risky work, support-bundle/session/audit evidence wording prefers support action:\"status|bundle\", sessions action:\"list|get\", and audit action:\"readiness|evidence|item|artifact\" before bundle export/import/share, session lifecycle, or audit drill-in effects, broader ongoing or watcher-like background work stays on autonomy intake, file undo/redo/recovery wording prefers execution action:\"recovery\", media generation wording prefers media provider readiness plus confirmed agent_media_generate saved artifacts, and screenshot, browser-navigation/control, screen-observation, and desktop-control wording prefers computer action:\"plan\" before live UI tools are considered; workspace action:\"status|actions|action|run|surfaces|surface|open|panels|panel|open_panel|shortcuts|keybindings|keybinding|run_keybinding|set_keybinding|reset_keybinding|commands|command|run_command|cli_commands|cli_command\" plus autonomy action:\"intake|queue|item|status\" plus computer action:\"status|plan|control|browser|setup|mcp|open_browser\" plus device action:\"status|capability|voice|provider|open_tts_provider|open_tts_voice\" plus models action:\"status|route|local|providers|provider|smoke\" plus personal_ops action:\"briefing|status|queue|intake|lane|read\" plus channels action:\"status|channel|setup|triage|deliveries\" plus schedule action:\"list|create|remind|edit|run|pause|resume|delete\" expose the same assistant-first cockpit, workspace map, connected browser cockpit/PWA route with service/web setup fallback, workspace category coverage, visible autonomy queue live records, model provider/local-cookbook/smoke/route-fit routes, Personal Ops briefing/queue/fresh-read routes, channel setup/triage/delivery history, schedule post-action nextRoutes, mobile/PWA controls, Agent onboarding marker status, unpublished browser/PWA receipt reporting, visible navigation routes, keyboard route controls, and command/action execution to the model without requiring harness mode memorization; lower-level agent_harness mode:\"summary\", mode:\"route_decision\", mode:\"workspace\", mode:\"workspace_categories\", mode:\"workspace_actions\", mode:\"workspace_action\", mode:\"run_workspace_action\", mode:\"autonomy_intake\", mode:\"autonomy_queue\", mode:\"autonomy_queue_item\", mode:\"agent_orchestration\", mode:\"agent_orchestration_agent\", mode:\"panels\", mode:\"panel\", mode:\"open_panel\", mode:\"ui_surfaces\", mode:\"ui_surface\", mode:\"open_ui_surface\", mode:\"shortcuts\", mode:\"keybindings\", mode:\"keybinding\", mode:\"run_keybinding\", mode:\"set_keybinding\", and mode:\"reset_keybinding\" remain detailed compatibility routes for route inspection and release verification, including managed multi-agent milestones, work-plan dispatch receipts, task/run diagnostics, bounded redacted output descriptors, automation telemetry, and compact modelRoute hints.",
66
66
  "safetyBoundary": "The workspace stays Agent-first and avoids hidden connected-host lifecycle control, coding-first entrypoints, and marketing-only surfaces.",
67
67
  "releaseEvidence": "release-readiness inventory plus package-facing README and getting-started docs cite the workspace files and keep this as a required release item."
68
68
  }
@@ -72,13 +72,13 @@
72
72
  "capability": "First-run setup covers provider access, Agent Knowledge, local behavior libraries, channels, voice/media, and connected-host posture.",
73
73
  "owner": "agent",
74
74
  "status": "covered",
75
- "evidence": "src/input/agent-workspace.ts; src/input/agent-workspace-categories.ts; src/runtime/onboarding/verify.ts; src/tools/agent-harness-setup-posture.ts",
75
+ "evidence": "src/agent/setup-wizard-checkpoint.ts; src/input/agent-workspace.ts; src/input/agent-workspace-categories.ts; src/runtime/onboarding/verify.ts; src/tools/agent-settings-import-tool.ts; src/tools/agent-harness-setup-posture.ts",
76
76
  "action": "Keep setup review tied to the Agent workspace, Agent-owned settings, and connected-host readiness checks.",
77
77
  "quality": {
78
- "capabilityCoverage": "Covers first-run provider setup, Agent Knowledge readiness, local behavior libraries, channels, voice/media, support posture, and connected-host compatibility through the Agent workspace.",
79
- "userAccess": "The user gets the Agent workspace with setup readiness, current settings, and reviewable readiness state.",
80
- "modelAccess": "agent_harness mode:\"setup_posture\" and mode:\"setup_item\" exposes setup marker state, derived capability flags, provider route, provider-account counts, subscription counts, local behavior discovery, channel/media/setup signals, and single setup-item lookup; settings rows include compact modelRoute hints, and visible UI, workspace, and command routes remain for confirmed setup mutations.",
81
- "safetyBoundary": "Setup reads and writes Agent-owned settings only, keeps token values redacted, and does not start or install connected-host services.",
78
+ "capabilityCoverage": "Covers first-run provider setup, a guided setup wizard with progress/current-step/saved-checkpoint/backtracking/repeated-smoke-blocker focus, visible connected-host auth and install-smoke checklist rows, GoodVibes settings import, Agent Knowledge readiness, VIBE.md personality health, local behavior libraries, channels, voice/media, browser/desktop control readiness, sudo execution posture with SUDO_PASSWORD presence-only guidance, support posture, connected-host compatibility, live service probe evidence, token-safe connected-host auth posture with exact pairing route ids, confirmed SDK-backed local token create/repair, token-safe install smoke checks, confirmed setup smoke execution, optional durable redacted setup smoke artifacts, latest-smoke and history/trend Home/setup summary surfacing, primary handoff cards for every actionable setup row, read-only setup repair decisions for the safest next token/status/bootstrap/lifecycle/no-action route, setup closeout decisions from critical blocker, saved smoke, and completion-marker evidence, confirmed onboarding finish through the workspace action route, offline GoodVibes host bootstrap guidance, recommended diagnostic/status repair cards, setup-state fixtures, setup serviceLifecycleDecision gates, inspect-first confirmed connected-host service repair routes through the Agent workspace, certified service receipt outcomes for services.status/install/start/restart, and exact install/start/restart/no-action lifecycle decisions from services.status receipts.",
79
+ "userAccess": "The user gets the Agent workspace with setup readiness, a guided Start wizard that highlights the current setup step, saved setup checkpoint, stale-checkpoint auto-advance evidence, repeated smoke blocker, and closeout state, visible Start actions to show/save/clear the setup checkpoint, visible connected-host auth and install-smoke checklist rows beside runtime/model setup, current settings, GoodVibes import preview/apply, reviewable readiness state, primary handoffs from setup blockers to the safest visible workspace form, diagnostic, user-run guidance, or confirmed route, sudo posture with blocked background escalation routes and presence-only credential status, a direct setup repair decision route for the current blocker or a named host/auth/service target, confirmed local connected-host token create/repair, confirmed token-safe setup smoke, saved redacted setup smoke evidence artifacts with latest result, trend, recent runs, and frequent blockers surfaced in the setup summary, token-safe connected-host auth status with exact pairing route ids, setup closeout that says fix blocker, run final smoke, finish setup, or complete, confirmed Apply & close marker write, offline install/trust/verify/service/reconnect commands when no host is reachable, exact service status/install/start/restart repair options when the connected-host operator endpoint supports them, serviceLifecycleDecision status gates, and success criteria plus certified receipt outcomes and exact lifecycle decisions when service methods return status proof.",
80
+ "modelAccess": "setup action:\"status|item|repair|checkpoint|save_checkpoint|clear_checkpoint|token|smoke|finish|import_settings\" gives the preferred direct first-run setup route; settings action:\"list|get|set|reset|import\" gives the preferred direct Agent settings and redacted shared GoodVibes settings import route; host action:\"status|capabilities|capability|services|service|methods|method\" gives the preferred direct connected-host diagnostics route; import_goodvibes_settings action:\"preview|apply\" remains available for compatibility; agent_harness mode:\"summary\", mode:\"setup_posture\", mode:\"setup_item\", mode:\"setup_repair\", mode:\"setup_checkpoint\", mode:\"mark_setup_checkpoint\", mode:\"clear_setup_checkpoint\", mode:\"provision_connected_host_token\", mode:\"run_setup_smoke\", mode:\"settings\", mode:\"get_setting\", mode:\"set_setting\", and mode:\"reset_setting\" remain available for detailed setup/settings compatibility and expose setup marker state, a guided setupWizard with progress/current step/checkpoint state/checkpoint autoAdvance evidence/backtracking routes/rerun and save-smoke routes/repeated-blocker focus, setupWizard.closeout and top-level setupCloseout decisions with blocker/smoke/marker evidence plus the exact finish route, a prioritized first-run setup plan with connected-host/provider/auth blockers, sudo execution posture, primaryHandoff and handoffs cards with kind/effect/userRoute/modelRoute/safety/confirmation metadata, nextSetupActions and summary nextSetupHandoffs handoff routes, a read-only setup repair decision that selects token repair, connected-host status, services.status receipt, user-run bootstrap, or no lifecycle action without executing it, confirmed setup checkpoint save/clear, confirmed local token provisioning, token-safe install smoke checks, confirmed redacted smoke evidence collection, optional artifact capture for user-run smoke output, latest saved smoke artifact result, setup smoke history/trend/recent-run/frequent-blocker metadata, local model readiness and cookbook follow-through, VIBE.md personality health counts for applied/blocked/truncated files, shared GoodVibes settings import counts, browser/desktop-control ready-attention-setup readiness, SUDO_PASSWORD presence-only guidance with blocked background sudo/stdin password routes, exact follow-up routes, live service probe evidence, setup serviceLifecycleDecision gates, token-safe connected-host auth posture with pairing route ids, recommended repair cards, offline GoodVibes host bootstrap commands, connected-host repair cards with success criteria, certified service repair receipt outcomes and lifecycleDecision outputs from agent_operator_method, derived capability flags, provider route, provider-account counts, subscription counts, local behavior discovery, channel/media/setup signals, single setup-item lookup, and checkpoint inspection; mode:\"run_workspace_action\" actionId:\"onboarding-apply-close\" writes the confirmed user onboarding markers, mode:\"run_workspace_action\" actionId:\"import-goodvibes-tui-settings\" remains available for visible workspace parity; settings rows include compact first-class modelRoute hints, and visible UI, workspace, and command routes remain for confirmed setup mutations.",
81
+ "safetyBoundary": "Setup reads and writes Agent-owned settings only, keeps token values redacted, imports secret-backed values through the secret manager, stores setup checkpoints as only the visible setup step id, label, source, timestamp, and generic note without explicit user request text, exposes setup repair as a read-only decision that never starts, installs, restarts, writes tokens, imports settings, or opens UI by itself, exposes missing-host bootstrap commands as user-run guidance, runs setup smoke only as a confirmed redacted evidence collection route without implicit shell/package/host commands, redacts token/secret/password/credential/authorization/api-key-like values before optional artifact storage, treats setup closeout as advisory until confirmed Apply & close writes only the user onboarding markers, exposes sudo as credential presence, blocked route, and foreground guidance only without reading, storing, printing, or injecting raw password values, exposes connected-host auth as presence/path/fingerprint posture plus pairing route ids only, creates or repairs the local canonical operator token only through confirmed SDK-backed setup while preserving valid tokens and leaving env tokens untouched, exposes connected-host service install/start/restart only as confirmed operator-method repair routes that remain inspect-first until services.status lifecycleDecision evidence proves need, and intentionally excludes service stop/uninstall from first-run setup.",
82
82
  "releaseEvidence": "Readiness evidence cites Agent workspace, verification, and direct harness sources, while ledger accounting and package-facing docs cover model-visible setup posture."
83
83
  }
84
84
  },
@@ -90,9 +90,9 @@
90
90
  "evidence": "src/input/agent-workspace-categories.ts; src/input/commands/local-provider-runtime.ts; src/input/commands/shell-core.ts; src/tools/agent-harness-model-routing.ts; docs/providers-and-routing.md",
91
91
  "action": "Preserve workspace-first model/provider controls and scriptable mirrors.",
92
92
  "quality": {
93
- "capabilityCoverage": "Covers active model visibility, custom provider setup, model refresh, favorites, pinned models, context windows, provider health, and reasoning effort controls.",
94
- "userAccess": "The user can operate provider and model routing from the Agent workspace, /model, /provider, model picker, provider workspace, and scriptable CLI mirrors.",
95
- "modelAccess": "agent_harness mode:\"model_routing\" and mode:\"model_route\" exposes current provider/model route, selectable models, provider ids, pinned models, reasoning support, context windows, safe route setting keys, and single route/model lookup; visible picker, settings, workspace, and command routes remain for confirmed selection, refresh, pin/unpin, custom provider, and setting mutations.",
93
+ "capabilityCoverage": "Covers active model visibility, custom provider setup, model refresh, favorites, pinned models, context windows, provider-health posture split across SDK type availability, daemon publication, and Agent consumption, reasoning effort controls, visible route-readiness inspection, readiness scoring across latency/context/tools/vision/cost/privacy, hardware-scored local model recommendations, setup/download guidance, local endpoint candidates with exact endpoint inspection, model-list smoke commands, success criteria, failure triage, confirmed models action:\"smoke\" checks, provider-add and refresh route hints, confirmed local benchmark execution through agent_model_compare, saved benchmark-evidence review, saved local benchmark history with filtered benchmark analytics, and revealed winner judgments feeding matching recipe confidence.",
94
+ "userAccess": "The user can operate provider and model routing from the Agent workspace, /model, /provider, model picker, provider workspace, scriptable CLI mirrors, and explicit Model Routing actions for route readiness, local cookbook guidance, confirmed local server checks, local benchmark execution, and benchmark evidence review.",
95
+ "modelAccess": "Route planning prefers models action:\"provider\" for provider account/subscription wording, action:\"local\" for Ollama/local cookbook/hardware-fit wording, action:\"smoke\" for local server health checks, and action:\"route\" for context/tool/latency/cost/privacy route-fit wording before credential, smoke, benchmark, or route-change effects; models action:\"status|route|local|providers|provider|smoke\" exposes current provider/model route, selectable models, provider ids, provider/subscription posture, pinned models, reasoning support, context windows, readiness scores/dimensions, providerHealth with SDK provider-health type availability, daemon publication status, Agent consumption status, missing signals, and live latency when a daemon-published read model is reachable, safe route setting keys, hardware-scored local model cookbook, setup/download guidance, local endpoint candidates with exact route/provider inspection, model-list smoke commands, success criteria, failure triage, confirmed local model-list smoke results, provider-add and refresh route hints, confirmed local benchmark workspace action route, saved local benchmark history with judgment evidence and a benchmark-filtered analytics route, and single route/model/endpoint/provider lookup; lower-level agent_harness mode:\"model_routing\", mode:\"model_route\", mode:\"provider_accounts\", mode:\"provider_account\", and confirmed mode:\"run_local_model_smoke\" remain compatibility routes; workspace action hints expose Inspect route readiness, Check local servers through models action:\"smoke\", and Review benchmark evidence; visible picker, settings, workspace, and command routes remain for confirmed selection, refresh, benchmark execution, judgment review/apply, pin/unpin, custom provider, and setting mutations.",
96
96
  "safetyBoundary": "Provider auth and model changes are explicit, secret-backed where needed, and do not print raw credentials.",
97
97
  "releaseEvidence": "Provider routing docs, direct harness source, package-facing text checks, and readiness item evidence keep this feature required for stable releases."
98
98
  }
@@ -107,7 +107,7 @@
107
107
  "quality": {
108
108
  "capabilityCoverage": "Covers account snapshots, subscriptions, usage windows, auth route posture, and login/logout safety without token leakage.",
109
109
  "userAccess": "The user can inspect provider accounts and subscription state through Agent workspace routes and /accounts, /auth, and /subscription commands.",
110
- "modelAccess": "agent_harness mode:\"provider_accounts\" and mode:\"provider_account\" exposes provider auth route posture, subscription freshness, usage windows, route issues, repair guidance, and single-provider lookup; mode:\"model_routing\" and mode:\"model_route\", mode:\"settings\", mode:\"get_setting\", mode:\"set_setting\", and mode:\"reset_setting\" expose related routing/readiness context with per-setting modelRoute hints while login/logout remains a visible confirmation-gated user flow.",
110
+ "modelAccess": "models action:\"providers|provider|status|route\" exposes provider auth route posture, subscription freshness, usage windows, route issues, repair guidance, single-provider lookup, and related routing/readiness context; settings action:\"list|get|set|reset\" exposes per-setting first-class modelRoute hints, while lower-level agent_harness mode:\"provider_accounts\", mode:\"provider_account\", mode:\"model_routing\", mode:\"model_route\", and settings compatibility modes remain detail routes and login/logout remains a visible confirmation-gated user flow.",
111
111
  "safetyBoundary": "Account inspection is read-only by default, auth mutations require explicit confirmation, and captured output redacts tokens.",
112
112
  "releaseEvidence": "Readiness evidence points to provider account and subscription command implementations, with package policy guarding token-safe docs and release smoke."
113
113
  }
@@ -122,7 +122,7 @@
122
122
  "quality": {
123
123
  "capabilityCoverage": "Covers isolated Agent Knowledge ask, search, source review, connectors, ingest, reindex, consolidation, graph operations, and status without default knowledge fallback.",
124
124
  "userAccess": "The user can operate Agent Knowledge from the workspace, /knowledge, and goodvibes-agent knowledge CLI mirrors.",
125
- "modelAccess": "agent_knowledge and agent_knowledge_ingest expose status, ask/search, source/node/issue lists, item lookup, map summary, connector inspection, and ingest; agent_harness mode:\"workspace_actions\", mode:\"workspace_action\", mode:\"run_workspace_action\", mode:\"commands\", mode:\"command\", mode:\"run_command\", mode:\"operator_methods\", mode:\"operator_method\", mode:\"tools\", and mode:\"tool\" expose review, packet/explain, consolidation, reindex, tool schemas, and route metadata to the model.",
125
+ "modelAccess": "agent_knowledge and agent_knowledge_ingest expose status, ask/search, source/node/issue lists, item lookup, map summary, connector inspection, and ingest; workspace action:\"actions|action|run|commands|command|run_command\" exposes review, packet/explain, consolidation, reindex, and command-backed routes without requiring harness mode memorization; lower-level agent_harness mode:\"workspace_actions\", mode:\"workspace_action\", mode:\"run_workspace_action\", mode:\"commands\", mode:\"command\", mode:\"run_command\", mode:\"operator_methods\", mode:\"operator_method\", mode:\"tools\", and mode:\"tool\" remain available for detailed compatibility route metadata and tool schemas.",
126
126
  "safetyBoundary": "Connected-host Knowledge traffic targets only /api/goodvibes-agent/knowledge/*, rejects non-Agent space-selection flags, normalizes parseable public Agent-route scope aliases, and fails closed on known non-Agent payload markers; local Knowledge service review/consolidation routes remain isolated to Agent Knowledge.",
127
127
  "releaseEvidence": "Package-facing required text, architecture policy, readiness evidence, and live verification checks require isolated Knowledge status, ask, search, library, item, map, connector outcomes, Agent-route scope alias normalization, and response contamination detection."
128
128
  }
@@ -132,28 +132,28 @@
132
132
  "capability": "Artifacts, file ingest, URL lists, bookmarks, browser history, and generated media are explicit Agent Knowledge or artifact workflows instead of silent memory promotion.",
133
133
  "owner": "agent",
134
134
  "status": "covered",
135
- "evidence": "src/input/agent-workspace-categories.ts; src/input/commands/knowledge.ts; src/agent/media-generation.ts; docs/knowledge-artifacts-and-multimodal.md",
135
+ "evidence": "src/input/agent-workspace-categories.ts; src/input/commands/knowledge.ts; src/agent/media-generation.ts; src/tools/agent-harness-document-ops.ts; docs/knowledge-artifacts-and-multimodal.md",
136
136
  "action": "Keep source-to-knowledge handoff explicit and confirmation-gated.",
137
137
  "quality": {
138
- "capabilityCoverage": "Covers explicit handling for artifacts, files, URL lists, bookmarks, browser history, generated media, and reviewed source promotion.",
139
- "userAccess": "The user can use workspace ingest forms, media generation, notes, bookmarks, and Knowledge ingest mirrors with clear review steps.",
140
- "modelAccess": "agent_knowledge_ingest exposes URL/file/URL-list/bookmarks/browser-history/connector ingest, agent_media_generate exposes confirmed generated artifacts, mode:\"media_posture\" and mode:\"media_provider\" exposes media readiness, and mode:\"sessions\" and mode:\"session\" exposes bookmark/session artifact posture.",
141
- "safetyBoundary": "No artifact, generated media, or research source is silently promoted into durable memory or non-Agent knowledge.",
138
+ "capabilityCoverage": "Covers explicit handling for artifacts, files, URL lists, bookmarks, browser history, generated media, reviewed source promotion, document-operation readiness, visible review packet timeline including stale preset attention, visible review packet wizard progress/routes/refreshed-preset lineage, reusable review packet preset artifacts with missing/superseded id freshness checks and confirmed refresh-to-new-preset routes, confirmed review packet archive-reference sharing, route-decision receipt artifacts for apply and leave-unchanged evidence, visible reviewer-readiness preflight, review packet defaults that prefill export/handoff/archive/apply/leave-unchanged/save-preset/share forms from latest packet evidence with preset fallback only when live evidence is missing, inline readiness badges before export/archive/apply, reviewer-ready document export appendices, confirmed artifact package directory or ZIP archive export, and confirmed blind model comparison side-by-side, handoff diff section jumps with recent-handoff choices, plus task/document/benchmark-filtered analytics/synthesis/handoff/handoff archive with matching route-decision receipt evidence.",
139
+ "userAccess": "The user can use workspace ingest forms, reviewer-ready document export, review packet share, artifact export/package/archive forms, media generation, notes, bookmarks, and Knowledge ingest mirrors with clear review steps.",
140
+ "modelAccess": "agent_knowledge_ingest exposes URL/file/URL-list/bookmarks/browser-history/connector ingest, agent_documents exposes confirmed document artifact export with comment/suggestion summary appendices and review metadata counts, agent_review_packet_presets exposes confirmed save and refresh plus read-only list/show freshness checks and recommended reuse routes for reusable review packet preset artifacts without changing documents, model routing, handoffs, archives, or source presets, agent_review_packet_share validates saved reviewer handoff archives and sends confirmed plain-text archive references through configured channel targets without printing or attaching ZIP bytes, agent_artifacts exposes saved artifact browse/show/export/package/archive routes with confirmation-gated writes, research exposes a read-only next-action briefing, read-only planning, bounded public source-candidate search with confirmed capture routes, direct browser-runner readiness, visible project-local run/source inspection, reviewed-source bundles, saved report artifact inspection, confirmed run lifecycle controls, confirmed source triage, and sourced report artifact saves with citation coverage repair metadata, optional strict body-citation enforcement, and optional visual report packet sections; lower-level agent_research_runs, agent_research_sources, agent_research_report, agent_harness mode:\"research_briefing\", agent_harness mode:\"research_workflow\", agent_harness mode:\"research_runs\", agent_harness mode:\"research_run\", agent_harness mode:\"research_queue\", and agent_harness mode:\"research_source\" remain detail routes; Agent Workspace Research exposes browser-runner and visual-report readiness plus Research briefing, Plan workflow, public search, direct runner, and report artifact actions for research action:\"briefing|plan|search|runner|reports\", device exposes direct device/voice/browser/PWA/provider posture and confirmed visible browser/TTS picker handoffs, agent_media_generate exposes confirmed generated artifacts, agent_model_compare exposes confirmed blind model comparison with delayed reveal plus side-by-side reviewer views, section-jump reviewer handoff diffs with recent-handoff choices from artifact metadata, task/document/benchmark-filtered saved judgment analytics/synthesis, apply-winner and leave-unchanged route-decision receipts, reviewer handoff artifacts, and reviewer handoff ZIP archives that auto-include matching route-decision receipt artifacts in README counts, archive metadata, and redacted manifests, research action:\"briefing\" exposes one read-only next-action queue across visible runs, source review, saved report artifacts, browser readiness, and exact follow-up routes; research action:\"runner\" exposes the direct browser-runner readiness contract; research action:\"plan\" exposes a read-only ordered route plan across run state, public web/fetch or browser posture, browser-runner contracts, source capture/review, visual-report packet saving, and optional Knowledge promotion; research action:\"search\" exposes bounded public web result packets, source summaries, redacted capture arguments, and exact confirmed add_source routes without writing the queue; research action:\"runs|run\" exposes research run phase/progress/log-tail/control posture plus browser-backed runner readiness, fallback routes, source review, report, and Knowledge promotion routes; research action:\"sources|source|bundle\" exposes source credibility, bundle, and report handoff posture; research action:\"reports|report_artifact\" exposes saved report artifact lists, visual packet metadata, citation coverage, and bounded previews, mode:\"document_ops\" and mode:\"document_ops_lane\" expose documents, review packet timeline state including stale preset attention, review packet wizard progress/routes/refreshed-preset lineage/share handoff, route-decision receipt state, review packet preset/default freshness state, visible reviewer-readiness preflight, inline readiness badge state in workspace editor snapshots before export/archive/apply, uploads, exports, source checks, media artifacts, artifact browsing, and model comparison readiness, device action:\"voice|provider\" exposes media readiness while mode:\"media_posture\" and mode:\"media_provider\" remain detail routes, and mode:\"sessions\" and mode:\"session\" exposes bookmark/session artifact posture.",
141
+ "safetyBoundary": "No artifact, generated media, research run, or research source is silently promoted into durable memory or non-Agent knowledge.",
142
142
  "releaseEvidence": "Readiness and docs cite Knowledge/artifact/media boundaries, and package policy requires those docs in the installable package."
143
143
  }
144
144
  },
145
145
  {
146
146
  "id": "local-memory-notes-personas",
147
- "capability": "Agent-local memory, notes, personas, and runtime profiles support durable personal context without default knowledge contamination.",
147
+ "capability": "VIBE.md, project context files, and Agent-local memory posture, notes, personas, and runtime profiles support durable personal context without default knowledge contamination.",
148
148
  "owner": "agent",
149
149
  "status": "covered",
150
- "evidence": "src/agent/persona-registry.ts; src/agent/note-registry.ts; src/cli/memory-command.ts; src/input/commands/personas-runtime.ts",
150
+ "evidence": "src/agent/vibe-file.ts; src/agent/vibe-confirmation-routes.ts; src/tools/agent-vibe-tool.ts; src/tools/agent-personal-ops-tool.ts; src/tools/agent-harness-personal-ops.ts; src/agent/project-context-files.ts; src/agent/prompt-context-receipts.ts; src/tools/agent-harness-project-context.ts; src/tools/agent-harness-prompt-context.ts; src/tools/agent-harness-learning-curator.ts; src/tools/agent-learning-consolidation-tool.ts; src/input/agent-workspace-snapshot.ts; src/renderer/agent-workspace.ts; src/input/commands/vibe-runtime.ts; src/tools/agent-harness-memory-posture.ts; src/agent/persona-registry.ts; src/agent/note-registry.ts; src/cli/memory-command.ts; src/input/commands/personas-runtime.ts",
151
151
  "action": "Keep local context libraries Agent-owned and secret-rejecting.",
152
152
  "quality": {
153
- "capabilityCoverage": "Covers durable local memory, scratch notes, personas, profiles, search/review/stale/delete flows, and promotion without knowledge contamination.",
154
- "userAccess": "The user can manage records through Agent workspace Memory, Notes, Personas, Profiles, and /memory or /personas mirrors.",
155
- "modelAccess": "agent_local_registry exposes record lookup/search/get/create/update/review/use/delete for memory, notes, personas, skills, skill bundles, and routines; agent_harness exposes confirmed workspace editor routes when the user starts from visible workspace forms.",
156
- "safetyBoundary": "Local libraries reject secret-looking content and keep destructive or cross-surface promotion actions confirmation-gated.",
153
+ "capabilityCoverage": "Covers safe project/global VIBE.md personality discovery, direct vibe status/show/init/import-persona model routes, VIBE init/import preview confirmationRoutes, safe project context discovery for .hermes.md, HERMES.md, AGENTS.md, CLAUDE.md, HERMES_HOME/SOUL.md, .cursorrules, and .cursor/rules/*.mdc files, visible Local Context and Personas workspace health counts for VIBE.md/project context files, Local Context prompt receipt outcome timeline with exact drill-in and outcome filters, status/init/show/import-persona flows, setup and learning-curator health cards for blocked/truncated VIBE.md files, opt-in VIBE.md profile starter export/import/application, durable local memory, memory posture, vector/embedding health, scratch notes, personas, profiles, search/review/stale/delete flows, duplicate-consolidation preview/merge/stale/delete/rollback/recreate receipts with exact-id post-delete recreate guidance, prompt injection gates for VIBE.md, project context files, and reviewed/confident setup-ready behavior, read-only prompt-context inspection plus sanitized prompt-context receipts for applied order/recent receipt ids/exact receipt-turn-outcome filters/selected records/suppressed records/token budget/prompt hash/terminal outcome, score-driven learning prompt plans for prompt-active/suppressed/proposal/consolidation queues, and promotion without knowledge contamination.",
154
+ "userAccess": "The user can manage VIBE.md, prompt context inspection with a compact Local Context receipt outcome timeline plus exact latest receipt and outcome filter routes, project context inspection, and records through Agent workspace Local Context, Memory, Notes, Personas, Profiles, /vibe, /memory, /personas, /agent-profile starter flows with --include-vibe, and the Memory posture row.",
155
+ "modelAccess": "Runtime prompt context applies secret-scanned VIBE.md files, secret-scanned project context files, and only reviewed memory at the durable confidence threshold plus reviewed setup-ready skills, routines, bundles, and personas while listing suppressed records as review/setup work; vibe action:\"status|show|init|import_persona\" exposes the direct model route for read-only VIBE.md inspection, confirmed VIBE.md creation, and confirmed VIBE.md-to-persona import without default Knowledge writes, and unconfirmed init/import previews expose exact model and CLI confirmationRoutes; runtime prompt builds write durable sanitized prompt-context receipts with ids, turn/source/model/provider, selected and suppressed record refs, segment counts, prompt hash, size, timestamp, and terminal outcome/status/stopReason/bounded error-or-cancel detail without storing raw prompt or response text; context action:\"prompt|receipts|receipt\" exposes applied prompt composition order, recent receipt ids, exact receiptId/turnId/outcomeStatus filters, turn outcomes, selected VIBE.md/project context/memory/routine/skill/persona records, suppressed records, bounded prompt previews when includeParameters is true, and approximate token budget without mutation; Agent workspace Local Context exposes VIBE.md/project context health counts, compact prompt receipt outcome timeline counts/latest rows/detail/exact latest receipt route/outcome filter routes, and action route hints for Prompt context, Inspect VIBE.md, Inspect project context, and Inspect one context file; context action:\"files|file\" exposes loaded, truncated, and blocked .hermes.md/HERMES.md/AGENTS.md/CLAUDE.md/SOUL.md/Cursor context files with target-aware subdirectory lookup and bounded bodies; lower-level agent_harness mode:\"project_context\", mode:\"project_context_file\", and mode:\"prompt_context\" remain available for compatibility/detail coverage; /vibe exposes user-facing status/init/show/import-persona routes and Agent workspace Personas exposes VIBE.md status/init/import commands; /agent-profile and profile CLI starter flows expose vibeIncluded template summaries and opt-in --include-vibe export/from-discovered/profile creation; agent_local_registry exposes record lookup/search/get/create/update/review/use/delete for memory, notes, personas, skills, skill bundles, and routines; memory action:\"status|provider|list|search|get\" exposes local memory counts, direct memory record lookup/search, prompt-active recall, vector stats, embedding-provider doctor warnings, provider inspection, route-planner preference for external provider/backend/sync/import-export setup posture, and external-memory setup contract maps for Honcho, OpenViking, Mem0, Hindsight, Holographic, RetainDB, ByteRover, and Supermemory with provider-specific next-route packets, missing setup/status/read/write/sync checklist items, and required sync/write receipt fields while marking provider records as not published until the SDK/daemon publishes concrete setup/status/read/write/receipt records for Agent to consume; lower-level agent_harness mode:\"memory_posture\" and mode:\"memory_provider\" remain available for compatibility/detail coverage; agent_harness mode:\"setup_posture\" exposes VIBE.md personality health counts and handoff routes; memory action:\"curator|candidate\" exposes a score-driven prompt plan with prompt-active records, suppressed review/setup/low-confidence/personality/consolidation counts, proposal queues, consolidation queues, ordering rules, and exact review routes plus ranked local review, stale, setup, low-confidence, VIBE.md blocked/truncated health, duplicate-consolidation candidates with visible diffs plus update/stale/delete/rollback/recreate routes, an ordered duplicate-consolidation batch review plan, first-class agent_learning_consolidation preview/merge/stale/delete/rollback/recreate phase routes with durable receipts, delete-after-stale enforcement, deleteRecovery payloads, and exact-id recreate refusal when current records would collide, reviewed-note memory/behavior proposal, completed-work memory/behavior proposal, completed-research memory/behavior proposal, saved-session memory/behavior proposal, and promotion candidates with existing safe routes; lower-level agent_harness mode:\"learning_curator\" and mode:\"learning_candidate\" remain available for compatibility/detail coverage; route planning prefers personal_ops action:\"briefing\" for daily/calendar briefings, action:\"queue\" for saved review queues, action:\"intake\" for fresh provider-read planning, and action:\"lane\" for connector setup posture before live provider reads or effects; personal_ops action:\"briefing|status|queue|intake|lane|read\" exposes the preferred direct route for a read-only daily Personal Ops briefing plan, read-only saved inbox/calendar review queue, request-to-route Personal Ops planning, lane inspection, and one confirmed read-only inbox/calendar operation, while lower-level modes mode:\"personal_ops_briefing\", mode:\"personal_ops_queue\", mode:\"personal_ops_intake\", mode:\"personal_ops\", mode:\"personal_ops_lane\", and mode:\"run_personal_ops_read\" remain available for harness inspection; Personal Ops surfaces Agent-owned note, routine, schedule-receipt, delivery, task, and reminder live records plus honest email/calendar connector readiness, classified MCP read/write tool hints, schema-derived inbox/calendar operation records with required fields/sample inputs/schema routes/confirmation flags/fresh-read routes, inbox triage/draft and calendar agenda/conflict workflow cards with prerequisites/inspect routes/send-edit boundaries, ordered connector-read/local-compose/setup-repair/confirmed-effect execution plans, confirmed read-only MCP inbox/calendar execution with required-field checks, bounded redacted output, normalized review cards, structured next-route packets for lane/queue inspection, confirmed refresh, saved artifact reopen, local draft/reminder work, and confirmed-effect boundaries, optional saved redacted review-card artifacts, saved review artifacts resurfaced as redacted inbox thread/calendar event queue records, and a unified read-only queue view with artifact inspect routes, freshness status, confirmed refresh routes when a matching read connector is ready, local draft/reminder follow-up routes, and explicit confirmed provider-effect boundaries, task workflow cards for visible work-plan review and connected-host task review, reminder workflow cards for confirmed reminders and connected schedule review, and matching MCP connector setup routes; agent_harness exposes confirmed workspace editor routes when the user starts from visible workspace forms.",
156
+ "safetyBoundary": "VIBE.md, project context files, and local libraries reject secret-looking content; blocked/truncated personality or context files are surfaced instead of silently applied; --include-vibe refuses blocked VIBE.md files; and destructive or cross-surface promotion actions stay confirmation-gated.",
157
157
  "releaseEvidence": "Readiness evidence cites local registries and CLI/runtime commands, with package policy requiring model-visible local action docs."
158
158
  }
159
159
  },
@@ -167,7 +167,7 @@
167
167
  "quality": {
168
168
  "capabilityCoverage": "Covers local skills, skill bundles, routines, learned behavior capture, imports, review states, and reusable operator workflows.",
169
169
  "userAccess": "The user can manage skills, routines, bundles, and learned behavior through workspace routes and /skills or /routines commands.",
170
- "modelAccess": "agent_local_registry and agent_harness expose skill/routine actions, editor schemas, selected-record promotion, and routine schedule prefill to the model.",
170
+ "modelAccess": "agent_local_registry and memory action:\"curator|candidate\" expose skill/routine actions, editor schemas, selected-record promotion, prompt-active/suppressed/proposal/consolidation planning, local learning review cards, and routine schedule prefill to the model; lower-level agent_harness mode:\"learning_curator\" and mode:\"learning_candidate\" remain available for compatibility/detail coverage.",
171
171
  "safetyBoundary": "Behavior capture remains local until the user explicitly promotes, exports, schedules, or deletes a reviewed record.",
172
172
  "releaseEvidence": "Readiness evidence cites registry and command sources, and release docs describe local behavior library ownership."
173
173
  }
@@ -180,13 +180,43 @@
180
180
  "evidence": "src/agent/routine-schedule-promotion.ts; src/agent/routine-schedule-receipts.ts; src/input/commands/routines-runtime.ts; docs/getting-started.md",
181
181
  "action": "Keep local routine start separate from durable connected-host schedule creation.",
182
182
  "quality": {
183
- "capabilityCoverage": "Covers explicit promotion from local routines to durable connected schedules with receipts, redaction, reconciliation, and delivery options.",
183
+ "capabilityCoverage": "Covers explicit promotion from local routines to durable connected schedules with receipts, redaction, reconciliation, delivery options, and post-action schedule nextRoutes.",
184
184
  "userAccess": "The user can promote routines through workspace schedule forms or /routines and /schedule mirrors using explicit confirmation.",
185
- "modelAccess": "agent_harness exposes routine selection, schedule editor schemas, run_workspace_action dispatch, and first-class reminder/operator route guidance.",
185
+ "modelAccess": "workspace action:\"actions|action|run\" exposes routine selection, schedule editor schemas, confirmed dispatch, and post-action schedule nextRoutes; first-class reminder/operator route guidance remains available for exact schedule or connected-host effects.",
186
186
  "safetyBoundary": "Local routine execution stays separate from durable schedule creation, and schedule promotion requires explicit confirmation and redacted receipts.",
187
187
  "releaseEvidence": "Readiness evidence cites schedule promotion and receipts code plus docs, with live verification covering connected schedule posture."
188
188
  }
189
189
  },
190
+ {
191
+ "id": "autonomous-schedule-creation",
192
+ "capability": "Direct recurring autonomous Agent work can be created as one visible connected schedule only with explicit task, cadence, success criteria, and request provenance.",
193
+ "owner": "agent",
194
+ "status": "covered",
195
+ "evidence": "src/agent/autonomy-schedule.ts; src/tools/agent-schedule-tool.ts; src/tools/agent-autonomy-schedule-tool.ts; src/tools/agent-harness-autonomy-intake.ts; src/tools/agent-harness-autonomy-queue.ts; docs/tools-and-commands.md",
196
+ "action": "Keep autonomous schedules distinct from reminders and routine promotion, with success criteria and confirmation required before schedule creation.",
197
+ "quality": {
198
+ "capabilityCoverage": "Covers natural-language recurring Agent work through non-mutating confirmation-route previews, confirmed schedules.create payloads, explicit task and success criteria capture, safe execution policy, delivery options, visible queue/intake routes, trigger workflow posture for time-based wakeups/schedules, incoming webhook/event watchers, Gmail/email connector-gated triggers, control-plane event streams, certified watcher receipt success criteria, and a source-owned watcher evidence contract for durable run-history receipts, provider source records, redacted event payload descriptors, and queue correlation.",
199
+ "userAccess": "The user can ask for ongoing work in normal language, inspect missing fields and trigger posture through autonomy intake, and supervise created schedules through the schedule workspace and autonomy queue.",
200
+ "modelAccess": "schedule action:\"create\" exposes the preferred confirmed creation route, non-mutating preview confirmationRoutes, and post-create nextRoutes while preserving the lower-level agent_autonomy_schedule contract; autonomy action:\"intake|queue|item|status\" exposes route selection, missing fields, triggerWorkflowSummary, triggerWorkflows with ready/attention/setup-needed/not-published status, published watchers.create/list/run/start/stop posture, watcher receipt outcome criteria, source-owned watcherEvidenceContract fields, visible webhook/event-trigger setup intake, queue cards, normalized live-record controls, exact confirmed research-run checkpoint/pause/resume/cancel routes, and exact confirmed host cancel/retry/edit routes without requiring harness mode names; lower-level agent_harness mode:\"autonomy_intake\", mode:\"autonomy_queue\", mode:\"autonomy_queue_item\", mode:\"tools\", and mode:\"tool\" remain available for detailed compatibility inspection and tool schema discovery; agent_operator_method certifies watchers.create/patch/run/start/stop/delete receipts after confirmed calls.",
201
+ "safetyBoundary": "Schedule creation requires confirm:true, explicitUserRequest, task, cadence, and successCriteria; watcher creation is an admin connected-host mutation requiring trusted source/scope, task or run target, success criteria, confirm:true, and explicitUserRequest; watcher receipt certification is derived only from confirmed daemon method receipts and never from hidden polling or raw operator tokens; auto-approval and unsafe external content remain disabled in the generated schedule policy.",
202
+ "releaseEvidence": "Readiness evidence cites the Agent autonomy schedule implementation, harness intake/queue wiring, package docs, and focused tool tests."
203
+ }
204
+ },
205
+ {
206
+ "id": "connected-schedule-editing",
207
+ "capability": "Existing connected schedules can be edited by id with explicit confirmation for cadence, name, exact prompt, or autonomous-task changes.",
208
+ "owner": "agent",
209
+ "status": "covered",
210
+ "evidence": "src/agent/schedule-edit.ts; src/tools/agent-schedule-tool.ts; src/tools/agent-schedule-edit-tool.ts; src/input/commands/schedule-runtime.ts; src/tools/agent-harness-autonomy-queue.ts; docs/tools-and-commands.md",
211
+ "action": "Keep schedule edits exact-id, read-only diff previewed, and confirmation-gated through automation.jobs.patch.",
212
+ "quality": {
213
+ "capabilityCoverage": "Covers confirmed connected schedule patching for cadence, display name, exact prompt, or rebuilt autonomous task prompt using the public automation.jobs.patch route, with unconfirmed read-only schedules.list current-state diffs and confirmationRoutes when the connected host exposes schedule records.",
214
+ "userAccess": "The user can edit schedules through the Automation workspace form or /schedule edit with preview-before-confirm behavior that shows before/after name, cadence, and prompt-presence changes when current state is available.",
215
+ "modelAccess": "schedule action:\"edit\" exposes the preferred read-only diff preview, non-mutating preview confirmationRoutes, confirmed edit route, and post-edit nextRoutes while preserving the lower-level agent_schedule_edit contract; autonomy action:\"queue|item\" and workspace action:\"action\" expose live schedule edit next steps and editor schemas.",
216
+ "safetyBoundary": "Schedule edits require confirm:true or --yes plus explicit request provenance, and do not create hidden local jobs or bypass public operator routes.",
217
+ "releaseEvidence": "Readiness evidence cites the schedule edit implementation, workspace/queue wiring, docs, and focused model-tool plus slash-command tests."
218
+ }
219
+ },
190
220
  {
191
221
  "id": "reminders-and-notifications",
192
222
  "capability": "Reminder scheduling and notification delivery are explicit, confirmed, and routed through configured targets without leaking tokens.",
@@ -195,25 +225,25 @@
195
225
  "evidence": "src/agent/reminder-schedule.ts; src/input/commands/notify-runtime.ts; src/tools/agent-notify-tool.ts; src/tools/agent-harness-notification-metadata.ts; src/tools/agent-reminder-schedule-tool.ts",
196
226
  "action": "Keep reminder delivery opt-in and redacted.",
197
227
  "quality": {
198
- "capabilityCoverage": "Covers reminders, notification targets, webhook delivery, redacted readiness, and explicit one-shot sends.",
228
+ "capabilityCoverage": "Covers reminders, notification targets, webhook delivery, redacted readiness, explicit one-shot sends, confirmed reminder workflow cards with preview confirmationRoutes, autonomous schedule creation records, and connected schedule review/control records.",
199
229
  "userAccess": "The user can schedule reminders and manage notifications from the Agent workspace and /notify or /schedule commands.",
200
- "modelAccess": "agent_reminder_schedule, agent_notify, and agent_harness mode:\"notifications\" and mode:\"notification_target\" plus command/workspace action metadata expose reminder and notification flows to the model.",
230
+ "modelAccess": "schedule action:\"remind|create|edit|run|pause|resume|delete\", personal_ops action:\"briefing|status|queue|intake|lane|read\", agent_reminder_schedule, agent_notify, agent_autonomy_schedule, agent_schedule_edit, agent_operator_action, and agent_harness mode:\"personal_ops_briefing\", mode:\"personal_ops_queue\", mode:\"personal_ops_intake\", mode:\"personal_ops\", mode:\"personal_ops_lane\", mode:\"notifications\", and mode:\"notification_target\" plus command/workspace action metadata expose briefing, review queue, reminder preview confirmationRoutes, connected schedule, post-action schedule nextRoutes, and notification flows to the model.",
201
231
  "safetyBoundary": "Delivery is opt-in, exact-target, confirmation-gated where mutating, and does not render stored tokens.",
202
232
  "releaseEvidence": "Readiness evidence cites reminder, notify, and tool implementations, with live outcome certification covering externally backed delivery."
203
233
  }
204
234
  },
205
235
  {
206
236
  "id": "channel-readiness-send",
207
- "capability": "Agent can inspect channel readiness, accounts, policies, status, setup guidance, and send one confirmed delivery.",
237
+ "capability": "Agent can inspect channel readiness, accounts, policies, status, setup guidance, delivery receipts, and send one confirmed delivery.",
208
238
  "owner": "agent",
209
239
  "status": "covered",
210
- "evidence": "src/input/commands/channels-runtime.ts; src/agent/channel-delivery.ts; src/tools/agent-channel-send-tool.ts; src/tools/agent-harness-channel-metadata.ts; docs/channels-remote-and-api.md",
211
- "action": "Keep channel delivery exact-target and confirmation-gated.",
240
+ "evidence": "src/input/commands/channels-runtime.ts; src/input/agent-workspace-channel-triage.ts; src/agent/channel-delivery.ts; src/agent/channel-delivery-receipts.ts; src/tools/agent-channel-send-tool.ts; src/tools/agent-harness-channel-metadata.ts; docs/channels-remote-and-api.md",
241
+ "action": "Keep channel delivery exact-target, confirmation-gated, and inspectable through redacted receipts.",
212
242
  "quality": {
213
- "capabilityCoverage": "Covers channel readiness, account posture, setup guidance, policy, status, and one-message confirmed delivery across configured channel surfaces.",
214
- "userAccess": "The user can inspect and send channel messages through Agent Workspace -> Channels and /channels mirrors.",
215
- "modelAccess": "agent_harness mode:\"channels\" and mode:\"channel\" exposes structured readiness, setup state, delivery posture, risk labels, and safe config-key names; agent_channel_send exposes the exact confirmed send route.",
216
- "safetyBoundary": "Channel sends require explicit target and confirmation, do not infer routes from chat, and do not expose secret values.",
243
+ "capabilityCoverage": "Covers channel readiness, ordered per-channel setup guide, account posture, setup schema guidance, allowlist policy, live status/doctor checks, read-only channel triage, redacted confirmed-send receipt history, and one-message confirmed delivery across configured channel surfaces.",
244
+ "userAccess": "The user can inspect setup progress, channel readiness, triage blockers/retries/messages/routes, recent redacted send receipts, and send channel messages through Agent Workspace -> Channels, /channels guide, /channels triage, /channels deliveries, and /channels mirrors.",
245
+ "modelAccess": "Route planning prefers channels action:\"setup\" for channel setup wording, action:\"triage\" for blocker/retry/error wording, action:\"deliveries\" for delivery history wording, and action:\"channel\" or status search for send/notify wording before confirmed external delivery; channels action:\"status|channel|setup|triage|deliveries\" exposes structured readiness, current setup guide step, daemon delivery attempts, visible surface messages, route bindings, redacted receipt history, delivery posture, risk labels, safe config-key names, allowlist/status/doctor routes, and explicit test-send boundary; lower-level agent_harness mode:\"channels\", mode:\"channel\", mode:\"channel_setup_guide\", mode:\"channel_triage\", and mode:\"channel_deliveries\" remain available for compatibility/detail coverage; agent_channel_send exposes the exact confirmed send route and returns the receipt id when the Agent shell path is available.",
246
+ "safetyBoundary": "Channel sends require explicit target and confirmation, the setup guide and receipt ledger are read-only, receipts redact webhook/link addresses and bound/redact message previews, does not infer routes from chat, and does not expose secret values.",
217
247
  "releaseEvidence": "Readiness evidence cites channel runtime/tool/docs sources, and live certification requires real external channel outcome coverage before release."
218
248
  }
219
249
  },
@@ -225,24 +255,24 @@
225
255
  "evidence": "src/input/agent-workspace-categories.ts; src/input/commands/qrcode-runtime.ts; src/tools/agent-harness-pairing-posture.ts; src/cli/help.ts",
226
256
  "action": "Keep token display redacted unless the user explicitly asks for manual pairing output.",
227
257
  "quality": {
228
- "capabilityCoverage": "Covers QR-first companion pairing, manual-token fallback, shared-session posture, realtime client readiness, and safe token display.",
229
- "userAccess": "The user can pair through workspace access routes, /pair, and /qrcode, with manual token display requiring explicit confirmation.",
230
- "modelAccess": "agent_harness mode:\"pairing_posture\" and mode:\"pairing_route\" exposes companion pairing endpoint binding, pairing surface id, token presence/fingerprint, route catalog, connected-host status/capability routes, channel readiness routes, and single pairing-route lookup without returning raw tokens or QR payloads.",
258
+ "capabilityCoverage": "Covers QR-first companion pairing, manual-token fallback, shared-session posture, realtime client readiness, safe token display, and a read-only companion device capability map for pairing, mobile command routing, browser/PWA, voice/TTS, notifications, browser/desktop control, and unpublished camera/location posture.",
259
+ "userAccess": "The user can pair through workspace access routes, /pair, and /qrcode, with manual token display requiring explicit confirmation; device and mobile readiness is inspectable through device posture and the Voice & Media Device capability map action before the user tries a phone/browser/voice handoff.",
260
+ "modelAccess": "device action:\"status|capability\" exposes companion pairing endpoint binding, pairing surface id, token presence/fingerprint, route catalog, deviceCapabilitySummary, compact deviceCapabilities rows, the device-capability-map route, connected-host status/capability routes, channel readiness routes, and single pairing-route lookup without returning raw tokens or QR payloads; lower-level agent_harness mode:\"pairing_posture\" and mode:\"pairing_route\" remain detailed compatibility routes; Agent workspace actionId:\"device-capability-map\" routes to device action:\"status\".",
231
261
  "safetyBoundary": "Raw pairing tokens are hidden by default and only displayed when the user explicitly requests manual output.",
232
262
  "releaseEvidence": "Readiness evidence cites workspace, QR runtime, direct harness, and help surfaces, with live certification covering connected-host pairing readiness."
233
263
  }
234
264
  },
235
265
  {
236
266
  "id": "approvals-and-automation-actions",
237
- "capability": "Approvals, automation jobs, runs, and schedules expose read-only status plus narrow confirmed approve, deny, cancel, run, pause, resume, retry, and run-now actions.",
267
+ "capability": "Approvals, automation jobs, runs, and schedules expose read-only status plus narrow confirmed approve, deny, cancel, run, pause, resume, retry, run-now, enable, disable, and delete actions.",
238
268
  "owner": "agent",
239
269
  "status": "covered",
240
- "evidence": "src/agent/operator-actions.ts; src/input/commands/operator-actions-runtime.ts; src/input/commands/schedule-runtime.ts; docs/tools-and-commands.md",
270
+ "evidence": "src/agent/operator-actions.ts; src/tools/agent-schedule-tool.ts; src/input/commands/operator-actions-runtime.ts; src/input/commands/schedule-runtime.ts; docs/tools-and-commands.md",
241
271
  "action": "Do not create or mutate broad automation definitions from ordinary chat.",
242
272
  "quality": {
243
- "capabilityCoverage": "Covers approval queues, automation jobs/runs/schedules, status views, and narrow confirmed approve, deny, cancel, run, pause, resume, retry, and run-now operations.",
273
+ "capabilityCoverage": "Covers approval queues, automation jobs/runs/schedules, status views, and narrow confirmed approve, deny, cancel, run, pause, resume, retry, run-now, enable, disable, and delete operations.",
244
274
  "userAccess": "The user can operate approvals and automation through workspace forms and exact /approval, /automation, and /schedule mirrors.",
245
- "modelAccess": "agent_operator_briefing, agent_operator_action, and agent_harness command and workspace metadata expose read-only status and exact confirmed actions to the model.",
275
+ "modelAccess": "schedule action:\"list|run|pause|resume|delete\" exposes the preferred schedule status/lifecycle path with post-action nextRoutes while preserving agent_operator_briefing, agent_operator_action, and agent_harness command and workspace metadata for read-only status and exact confirmed actions.",
246
276
  "safetyBoundary": "Ordinary chat cannot silently create or mutate broad automation definitions; every mutation is exact and confirmation-gated.",
247
277
  "releaseEvidence": "Readiness evidence cites operator action and runtime sources, and live certification covers externally backed automation outcomes."
248
278
  }
@@ -255,26 +285,26 @@
255
285
  "evidence": "src/input/commands/planning-runtime.ts; src/input/commands/work-plan-runtime.ts; src/planning/project-planning-coordinator.ts; docs/project-planning.md",
256
286
  "action": "Keep planning serial and explicit until the user asks for execution.",
257
287
  "quality": {
258
- "capabilityCoverage": "Covers planning interviews, visible work-plan state, task status, and project planning without implicit parallel execution jobs.",
259
- "userAccess": "The user can inspect and update planning from /plan, /workplan, workspace planning panels, and task/status surfaces.",
260
- "modelAccess": "agent_work_plan exposes list/get/create/update/status/remove/clear_completed for visible Agent-local work plans; agent_harness mode:\"panels\" and mode:\"panel\" expose matching TUI visibility with compact panel modelRoute hints without spawning implementation jobs.",
261
- "safetyBoundary": "Planning stays serial and explicit until the user asks for execution, and it does not auto-spawn implementation roles.",
288
+ "capabilityCoverage": "Covers planning interviews, visible work-plan state, confirmed dispatch of approved plan items into visible Agent spawn/batch-spawn jobs with saved linked-agent receipts, closeout surfacing in managed orchestration cards, task status, and project planning without implicit parallel execution jobs.",
289
+ "userAccess": "The user can inspect and update planning from /plan, /workplan, workspace planning panels, and task/status surfaces, approved selected plan items can be dispatched to visible agents only through confirmation, and linked dispatch receipts appear in Agent orchestration closeout cards.",
290
+ "modelAccess": "agent_work_plan exposes list/get/create/update/set_status/dispatch_agents/remove/clear_completed for visible Agent-local work plans; dispatch_agents previews selected ids, then calls first-class agent spawn or batch-spawn after confirm:true plus explicitUserRequest, writes linked-agent receipts, and returns next routes for orchestration, work-plan detail, agent inspect/wait/message/cancel, and closeout; agent_harness mode:\"agent_orchestration\" and mode:\"agent_orchestration_agent\" correlate linked work-plan items, dispatch receipt counts, closeout routes, and remote artifact review routes; personal_ops action:\"briefing|status|queue|intake|lane\" plus lower-level agent_harness mode:\"personal_ops_briefing\", mode:\"personal_ops_queue\", mode:\"personal_ops_intake\", mode:\"personal_ops\", and mode:\"personal_ops_lane\" expose daily briefing, review queue, request planning, visible work-plan, connected-host task review, and host task operation cards; agent_harness mode:\"panels\" and mode:\"panel\" expose matching TUI visibility with compact panel modelRoute hints without spawning implementation jobs.",
291
+ "safetyBoundary": "Planning stays serial and explicit until the user asks for execution; agent dispatch requires selected work-plan ids, confirm:true, explicit user request provenance, and first-class visible Agent routes.",
262
292
  "releaseEvidence": "Readiness evidence cites planning coordinator and command sources, with verification ledger accounting for onboarding and work-plan surfaces."
263
293
  }
264
294
  },
265
295
  {
266
296
  "id": "explicit-build-delegation",
267
- "capability": "Build, fix, review, and implementation work delegates to GoodVibes TUI/shared-session routes only when the user explicitly asks.",
297
+ "capability": "Build, fix, review, and implementation work uses local read/edit/exec with confirmed file recovery when the current Agent workspace is sufficient, and delegates to GoodVibes TUI/shared-session routes when isolation, parallelism, remote execution, separate worktrees, or delegated review is useful.",
268
298
  "owner": "agent",
269
299
  "status": "covered",
270
- "evidence": "src/input/commands/delegation-runtime.ts; src/input/agent-workspace-delegation-editor-submission.ts; src/tools/agent-harness-delegation-posture.ts; docs/tools-and-commands.md",
271
- "action": "Do not turn the personal Agent into a coding TUI or implicit reviewer.",
300
+ "evidence": "src/tools/agent-execution-tool.ts; src/tools/agent-computer-tool.ts; src/tools/agent-harness-execution-posture.ts; src/tools/agent-harness-sudo-posture.ts; src/tools/agent-harness-agent-orchestration.ts; src/tools/agent-harness-background-processes.ts; src/tools/agent-harness-execution-history.ts; src/tools/agent-harness-file-recovery.ts; src/input/commands/delegation-runtime.ts; src/input/agent-workspace-delegation-editor-submission.ts; src/tools/agent-harness-delegation-posture.ts; src/tools/agent-delegation-tool.ts; docs/tools-and-commands.md",
301
+ "action": "Prefer local execution for ordinary current-workspace tasks and use delegation only when it improves the user outcome.",
272
302
  "quality": {
273
- "capabilityCoverage": "Covers build, fix, review, and implementation delegation through explicit shared-session/task routes instead of turning Agent into a coding TUI.",
274
- "userAccess": "The user can delegate from Agent workspace forms or /delegate when they explicitly ask for build/fix/review/implementation work.",
275
- "modelAccess": "agent_harness mode:\"delegation_posture\" and mode:\"delegation_route\" exposes explicit build-delegation routes, runtime availability, delegated-review policy, main-conversation ownership, blocked local coding ownership, and single delegation-route lookup; delegated work submission remains a visible confirmed workspace or slash-command flow.",
276
- "safetyBoundary": "Delegated review or implementation is never the default reasoning path and requires explicit user intent.",
277
- "releaseEvidence": "Readiness evidence cites delegation runtime, direct harness source, and docs, with package boundary checks rejecting coding-first Agent product drift."
303
+ "capabilityCoverage": "Covers local read/search/analyze, edit/write, bounded foreground shell, setup-linked sudo posture with SUDO_PASSWORD presence-only guidance, tracked local background process start/list/status/log/wait/stop with process-style poll/log/kill/write and session-id aliases, read-only process parity reporting for terminal background start plus process list/poll/wait/log/kill/write/PTY/sudo semantics, route-planner preference for process capability posture when users ask about interactive CLI, PTY, stdin, sudo, or privilege prompts, dynamic SDK/daemon substrate probes for ProcessManager stdin/PTY methods, terminal/PTY operator routes, session-input routes, and credential routes, confirmed stdin write dispatch when a safe ProcessManager stdin method is discovered, Work workspace process supervision with tracked process counts and stdin/PTY/sudo parity, visible Agent manager orchestration with serial-by-default spawn/batch-spawn policy, managed multi-agent milestones, per-agent plan cards, confirmed approved work-plan dispatch with linked-agent receipts and post-dispatch next routes, closeout cards, auto-attached remote artifact review routes, remote-runner contract/artifact evidence, live subagent records, safe inspect/message/wait/cancel routes, web/fetch, process monitor/live tail/tool inspector supervision routes, grouped execution-history activity cards with redacted records, verification evidence, bounded process-output summaries, exact inspect routes, confirmed FileUndoManager recovery, first-class computer action:\"status|control|browser|setup|mcp|open_browser\" browser/PWA and browser/desktop ready-attention-setup routing with workflow cards/checklists/fallback routes, and explicit shared-session/task delegation for isolation, remote, parallel, worktree, or review handoff with structured handoff briefs.",
304
+ "userAccess": "The user can inspect execution posture, sudo posture, tracked background processes, the process parity/doctor report, execution history activity cards, exact records, Agent orchestration cards, work-plan links, approved work-plan dispatch receipts, closeout review cards, remote artifact review routes, and file recovery from first-class execution/workspace surfaces plus lower-level agent_harness detail routes, use local tools in the current workspace, open visible process monitor/live tail/tool inspector supervision, apply confirmed undo/redo snapshots, or delegate from Agent workspace forms and /delegate with original ask, reason, success criteria, workspace hint, priority, and explicit review intent when a handoff is useful.",
305
+ "modelAccess": "execution action:\"status|route|history|record|processes|process_capabilities|process|recovery\" exposes local-vs-delegated route selection, sudo posture, delegation decision cards, registered execution tools, process monitor/live tail/tool inspector supervision routes, strict browser/desktop ready-attention-setup state with workflow cards, setup checklists, fallback routes, exact setup/execution routes, background-process routes, direct process parity/doctor reporting, grouped activity cards, exact records, and file recovery posture without requiring harness mode names; execution action:\"capabilities|doctor|parity\" aliases route straight to the read-only process capability report; computer action:\"status|plan|control|browser|setup|mcp|open_browser\" exposes browser/PWA readiness, browser/screenshot/desktop-control workflow planning, browser/desktop-control posture, setup/repair routes, MCP/tool discovery, and confirmed browser cockpit opens without requiring harness mode names; lower-level agent_harness mode:\"execution_posture\", mode:\"execution_route\", and mode:\"browser_control_route\" remain compatibility routes; first-class terminal and process tools expose terminal(command, background:true) start plus process(action:list|poll|wait|log|kill|write|capabilities) lifecycle UX over the same tracked ProcessManager records; mode:\"setup_item\" setupItemId:\"sudo-execution-posture\" exposes foreground-supervised escalation guidance, credential presence only, blocked background sudo/stdin password routes, and missing SDK/daemon mediation contracts; mode:\"agent_orchestration\" and mode:\"agent_orchestration_agent\" expose visible Agent records, serial-by-default policy, managed multi-agent plan milestones, per-agent plan cards, work-plan links, dispatch receipt counts, closeout cards, remote-runner contract/artifact evidence, auto-attached remote artifact review routes matched by runner id, approved work-plan dispatch route, spawn/batch-spawn decision cards, templates, and exact first-class agent list/inspect/message/wait/cancel routes; agent_work_plan action:\"dispatch_agents\" converts selected approved work-plan ids into first-class agent spawn or batch-spawn with saved linked-agent receipts after confirmation and next routes for orchestration, work-plan detail, agent inspect/wait/message/cancel, and closeout; mode:\"background_processes\" and mode:\"background_process\" expose tracked local process status, bounded redacted output with byte/count/truncation metadata, processId/processSessionId/sessionId aliases, and a process parity matrix with SDK/daemon substrate probes; mode:\"run_background_process\" starts, waits on, stops/kills, polls, logs with explicit truncation metadata, dispatches write only through a discovered safe ProcessManager stdin method after confirmation, returns unsupported guidance without fake write support, or reports capabilities for tracked local processes with confirmation and explicit user request required for start/wait/stop/kill/write; the capability report distinguishes GoodVibes session-input routes from local process stdin; mode:\"execution_history\" and mode:\"execution_history_item\" expose grouped activity cards, bounded redacted tool/shell/edit records, verification evidence, bounded process-output summaries, supervision routes, and file-recovery handoffs; mode:\"file_recovery\" and mode:\"run_file_recovery\" expose confirmed local file undo/redo; first-class delegation action:\"status|routes|route\" exposes local-first, TUI handoff, delegated-review, remote-inspection, and hidden-fanout-blocked lanes with required fields, success evidence, status routes, recovery routes, delegated-review policy, and confirmed workspace/slash-command handoff routes, while lower-level agent_harness mode:\"delegation_posture\" and mode:\"delegation_route\" remain compatibility routes.",
306
+ "safetyBoundary": "Local execution remains governed by first-class tool policies; tracked background process start/wait/stop/write requires confirmation, output is bounded and redacted, process parity reporting is read-only, stdin write dispatches only through a discovered safe ProcessManager method and never echoes input data, PTY remains unsupported until a typed interactive session contract exists, hidden sudo prompts are blocked, and sudo posture reports only non-secret credential presence plus foreground guidance without reading, storing, printing, or injecting raw password values; execution history keeps secret-looking args redacted and bounded, and cards attach only bounded summaries instead of raw hidden logs; file recovery requires explicit confirmation and does not expose file contents; delegated review or implementation remains a visible confirmed flow and is not the default when local execution is sufficient.",
307
+ "releaseEvidence": "Readiness evidence cites execution posture, computer adapter, file recovery, delegation runtime, direct harness source, and docs, with package boundary checks rejecting hidden execution and unconfirmed handoff drift."
278
308
  }
279
309
  },
280
310
  {
@@ -282,12 +312,12 @@
282
312
  "capability": "MCP servers, tool inventory, trust posture, secrets, and security review are inspectable and confirmation-gated from the Agent workspace.",
283
313
  "owner": "agent",
284
314
  "status": "covered",
285
- "evidence": "src/input/commands/mcp-runtime.ts; src/input/commands/security-runtime.ts; src/input/commands/product-runtime.ts; src/input/agent-workspace-categories.ts; src/tools/agent-harness-mcp-metadata.ts",
315
+ "evidence": "src/input/commands/mcp-runtime.ts; src/input/commands/security-runtime.ts; src/input/commands/product-runtime.ts; src/input/agent-workspace-categories.ts; src/tools/agent-harness-mcp-metadata.ts; src/tools/agent-security-tool.ts; src/tools/agent-policy-explanation.ts",
286
316
  "action": "Keep tool trust changes explicit and do not silently install or expose tools.",
287
317
  "quality": {
288
318
  "capabilityCoverage": "Covers MCP server setup, tool inventory, trust posture, security review, secrets, and confirmation-gated trust changes.",
289
319
  "userAccess": "The user can review MCP and tool trust through Agent workspace, /mcp, /security, /trust, and settings surfaces.",
290
- "modelAccess": "agent_harness mode:\"mcp_servers\" and mode:\"mcp_server\" exposes read-only server posture, trust mode, role, quarantine state, and optional per-server tool inventory; mode:\"security_posture\" and mode:\"security_finding\" exposes trust/security findings; mode:\"tools\" and mode:\"tool\" expose compact model tool rows with direct harness inspection routes and detailed schemas on request; mode:\"settings\", mode:\"get_setting\", and mode:\"set_setting\" exposes per-setting modelRoute hints and confirmed setting routes.",
320
+ "modelAccess": "agent_harness mode:\"mcp_servers\" and mode:\"mcp_server\" exposes read-only server posture, trust mode, role, quarantine state, and optional per-server tool inventory; security action:\"status|finding|explain\" plus lower-level mode:\"security_posture\", mode:\"security_finding\", and mode:\"policy_explain\" exposes trust/security posture, exact findings, and read-only policy explanations for one model action, with route-planner preference for permission-status, finding/incident, and blocked-action wording; mode:\"tools\" and mode:\"tool\" expose compact model tool rows with direct harness inspection routes and detailed schemas on request; settings action:\"list|get|set\" exposes per-setting first-class modelRoute hints and confirmed setting routes.",
291
321
  "safetyBoundary": "Tool trust changes, secret writes, and server mutations are explicit and do not silently install or expose tools.",
292
322
  "releaseEvidence": "Readiness evidence cites MCP/security/product runtimes and the direct MCP server harness catalog, with package text policy and the verification ledger documenting model-visible harness boundaries."
293
323
  }
@@ -297,13 +327,13 @@
297
327
  "capability": "Voice, live TTS, image input, media provider readiness, and confirmed image/video artifact generation are available from the TUI.",
298
328
  "owner": "agent",
299
329
  "status": "covered",
300
- "evidence": "src/input/commands/tts-runtime.ts; src/input/commands/local-runtime.ts; src/input/agent-workspace-voice-media.ts; src/tools/agent-harness-media-posture.ts; docs/voice-and-live-tts.md",
330
+ "evidence": "src/input/commands/tts-runtime.ts; src/input/commands/local-runtime.ts; src/input/agent-workspace-voice-media.ts; src/input/agent-workspace-categories.ts; src/renderer/agent-workspace.ts; src/tools/agent-harness-media-posture.ts; docs/voice-and-live-tts.md",
301
331
  "action": "Keep spoken output and generated media out of durable knowledge unless explicitly ingested.",
302
332
  "quality": {
303
- "capabilityCoverage": "Covers voice review, live TTS, image input, media provider readiness, transcription/voice posture, and confirmed image/video artifact generation.",
304
- "userAccess": "The user can operate voice and media through Agent Workspace -> Voice & Media and /tts, /voice, /image, and /media commands.",
305
- "modelAccess": "agent_harness mode:\"media_posture\" and mode:\"media_provider\" exposes voice/media provider readiness, selected TTS setup, browser-tool posture, artifact availability, safe secret-key names, and model routes; agent_media_generate performs confirmed media generation.",
306
- "safetyBoundary": "Spoken output and generated media are not durable knowledge unless the user explicitly ingests reviewed artifacts.",
333
+ "capabilityCoverage": "Covers voice review, live TTS, image input, media provider readiness, transcription/voice posture, voice workflow readiness for push-to-talk, voice memo transcription, spoken responses, honest not-published wake-word capture, and confirmed image/video artifact generation.",
334
+ "userAccess": "The user can operate voice and media through Agent Workspace -> Voice & Media and /tts, /voice, /image, and /media commands, with Voice workflows, Device capability map, and Browser/PWA readiness actions visible before trying spoken input, output, mobile, or browser handoffs.",
335
+ "modelAccess": "device action:\"voice|provider|status|open_tts_provider|open_tts_voice\" exposes voice/media provider readiness, selected TTS setup, artifact availability, safe secret-key names, model routes, voice workflow summary, exact push-to-talk/transcription/spoken-response/wake-word workflow lookup, setup routes, and policy boundaries; computer action:\"browser|open_browser|control|setup|mcp\" exposes browser-tool posture and the connected browser handoff; lower-level agent_harness mode:\"media_posture\", mode:\"media_provider\", mode:\"pairing_posture\", and mode:\"ui_surface\" remain detailed compatibility routes; Agent workspace actionId:\"voice-workflow-posture\" routes to device action:\"voice\", actionId:\"device-capability-map\" routes to device action:\"status\", and actionId:\"browser-cockpit-readiness\" routes to computer action:\"browser\"; agent_media_generate performs confirmed media generation.",
336
+ "safetyBoundary": "Spoken output and generated media are not durable knowledge unless the user explicitly ingests reviewed artifacts; always-listening wake capture stays not-published until a permission-scoped runtime contract exists.",
307
337
  "releaseEvidence": "Readiness evidence cites voice/media runtime/docs and direct harness sources, while ledger accounting and live certification cover media and connected-host outcomes."
308
338
  }
309
339
  },
@@ -312,12 +342,12 @@
312
342
  "capability": "Session save/load/export/search, transcript review, bookmarks, image attachment, and context references are handled inside the TUI.",
313
343
  "owner": "agent",
314
344
  "status": "covered",
315
- "evidence": "src/input/commands/session-workflow.ts; src/input/commands/conversation-runtime.ts; src/input/session-picker-modal.ts; src/input/agent-workspace-categories.ts; src/tools/agent-harness-session-metadata.ts",
345
+ "evidence": "src/input/commands/session-workflow.ts; src/input/commands/conversation-runtime.ts; src/input/session-picker-modal.ts; src/input/agent-workspace-categories.ts; src/tools/agent-sessions-tool.ts; src/tools/agent-harness-session-metadata.ts",
316
346
  "action": "Keep conversation controls local and visible.",
317
347
  "quality": {
318
348
  "capabilityCoverage": "Covers save/load/export/search, transcript review, bookmarks, image attachment, context references, session continuity, and artifact follow-up.",
319
349
  "userAccess": "The user can manage sessions and conversation artifacts through TUI controls, workspace actions, pickers, overlays, and /save, /load, /sessions, /conversation, /bookmarks, and /image commands.",
320
- "modelAccess": "agent_harness mode:\"sessions\" and mode:\"session\" exposes current session posture, saved-session metadata/search, bookmark counts, saved bookmark file counts, and single-session lookup; visible save/resume/export/delete/bookmark flows remain confirmation-gated user routes.",
350
+ "modelAccess": "sessions action:\"list|get\" exposes current session posture, saved-session metadata/search, bookmark counts, saved bookmark file counts, and single-session lookup; lower-level agent_harness mode:\"sessions\" and mode:\"session\" remain available for compatibility/detail inspection; visible save/resume/export/delete/bookmark flows remain confirmation-gated user routes.",
321
351
  "safetyBoundary": "Conversation controls stay visible and local; file/URL context references do not silently ingest into Agent Knowledge.",
322
352
  "releaseEvidence": "Readiness evidence cites session workflow, workspace, and direct harness sources, while ledger accounting and package text checks cover sessions/bookmarks, overlays, and command catalog docs."
323
353
  }
@@ -327,12 +357,12 @@
327
357
  "capability": "Support, auth, subscription, and trust bundles can be exported or inspected with redaction and explicit confirmation.",
328
358
  "owner": "agent",
329
359
  "status": "covered",
330
- "evidence": "src/cli/bundle-command.ts; src/input/commands/recall-bundle.ts; src/input/commands/security-runtime.ts; src/input/commands/platform-access-runtime.ts; src/input/commands/product-runtime.ts; src/input/agent-workspace-categories.ts; src/tools/agent-harness-security-posture.ts",
360
+ "evidence": "src/cli/bundle-command.ts; src/input/commands/recall-bundle.ts; src/input/commands/security-runtime.ts; src/input/commands/platform-access-runtime.ts; src/input/commands/product-runtime.ts; src/input/agent-workspace-categories.ts; src/tools/agent-harness-security-posture.ts; src/tools/agent-security-tool.ts; src/tools/agent-support-tool.ts; src/tools/agent-policy-explanation.ts",
331
361
  "action": "Keep sensitive bundle export confirmation-gated.",
332
362
  "quality": {
333
363
  "capabilityCoverage": "Covers support, auth, subscription, trust, recall, and portable bundle inspection/export/import with redaction and confirmation.",
334
364
  "userAccess": "The user can export and inspect bundles through workspace routes and /bundle, /auth, /trust, /subscription, and recall bundle commands.",
335
- "modelAccess": "agent_harness mode:\"security_posture\" and mode:\"security_finding\" exposes redacted token, policy, MCP, plugin, incident, auth, and support-bundle posture; mode:\"support_bundles\" and mode:\"support_bundle\" exposes bundle routes and redacted existing-bundle inspection without returning raw config, token, or secret values.",
365
+ "modelAccess": "security action:\"status|finding|explain\" plus lower-level agent_harness mode:\"security_posture\", mode:\"security_finding\", and mode:\"policy_explain\" exposes redacted token, policy, MCP, plugin, incident, auth, support-bundle posture, exact findings, and policy explanations for one model action, with route-planner preference for permission-status, finding/incident, and blocked-action wording; support action:\"status|bundle\" exposes bundle routes and redacted existing-bundle inspection without returning raw config, token, or secret values, while lower-level agent_harness mode:\"support_bundles\" and mode:\"support_bundle\" remain available for detail.",
336
366
  "safetyBoundary": "Sensitive bundle export/import and trust changes are confirmation-gated and redact secret values.",
337
367
  "releaseEvidence": "Readiness evidence cites bundle, security, auth, trust, workspace, and direct harness sources, with package policy and ledger accounting guarding token-safe documentation and install smoke."
338
368
  }
@@ -347,7 +377,7 @@
347
377
  "quality": {
348
378
  "capabilityCoverage": "Covers status, doctor, compatibility, health, auth review, connected-host route posture, and Agent Knowledge readiness.",
349
379
  "userAccess": "The user can run workspace health routes and goodvibes-agent status, doctor, compat, and auth review mirrors.",
350
- "modelAccess": "agent_harness mode:\"operator_methods\", mode:\"operator_method\", mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host\", mode:\"connected_host_capability\", mode:\"connected_host_status\", mode:\"daemon\", mode:\"daemon_status\", mode:\"cli_commands\", mode:\"cli_command\", mode:\"setup_posture\", mode:\"setup_item\", mode:\"provider_accounts\", mode:\"provider_account\", mode:\"mcp_servers\", and mode:\"mcp_server\" expose the same diagnostics to the model, with compact connected-host modelRoute hints for follow-up route selection.",
380
+ "modelAccess": "host action:\"status|capabilities|capability|services|service|methods|method\" gives the preferred connected-host diagnostics route; agent_harness mode:\"operator_methods\", mode:\"operator_method\", mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host\", mode:\"connected_host_capability\", mode:\"connected_host_status\", mode:\"daemon\", mode:\"daemon_status\", mode:\"cli_commands\", mode:\"cli_command\", mode:\"setup_posture\", mode:\"setup_item\", mode:\"mcp_servers\", and mode:\"mcp_server\" plus models action:\"status|providers\" expose the same diagnostics to the model, with compact connected-host modelRoute hints for follow-up route selection.",
351
381
  "safetyBoundary": "Diagnostics are read-only, redact token state, and provide repair guidance without lifecycle control.",
352
382
  "releaseEvidence": "Readiness evidence cites status/health/compat sources, with live verification requiring CLI status, compat, doctor, connected-host, model, and Agent Knowledge checks."
353
383
  }
@@ -377,7 +407,7 @@
377
407
  "quality": {
378
408
  "capabilityCoverage": "Covers external outcome checks for compiled CLI, connected-host status/health/model routes, host compatibility, isolated Agent Knowledge status/ask/search/source/node/issue/map/connector routes, and packaged evidence for item inspection.",
379
409
  "userAccess": "Release operators and maintainers inspect the packaged live-verification artifacts as audit material; end users receive releases backed by recorded external outcome checks rather than a separate product surface.",
380
- "modelAccess": "agent_harness mode:\"service_posture\", mode:\"service_endpoint\", and mode:\"connected_host_status\" mirror service endpoint posture and live-readiness posture into the main conversation for assistant use, including a compact modelRoute for follow-up diagnostics.",
410
+ "modelAccess": "host action:\"services|service|status\" mirrors service endpoint posture and live-readiness posture into the main conversation for assistant use; lower-level agent_harness mode:\"service_posture\", mode:\"service_endpoint\", and mode:\"connected_host_status\" remain compatibility routes with compact modelRoute follow-up diagnostics.",
381
411
  "safetyBoundary": "Live reports redact local paths, private network addresses, and token values while refusing host incompatibility as a passing state.",
382
412
  "releaseEvidence": "release/live-verification JSON and Markdown reports are required release evidence and are current for this release line."
383
413
  }
@@ -387,12 +417,12 @@
387
417
  "capability": "The release-quality inventory is staged with release metadata and blocks stable releases when unknown or gap entries remain.",
388
418
  "owner": "release",
389
419
  "status": "covered",
390
- "evidence": "release/release-readiness.json; src/tools/agent-harness-release-evidence.ts; src/tools/agent-harness-release-readiness.ts; src/tools/agent-harness-tool.ts; src/cli/package-verification.ts; scripts/release.ts",
420
+ "evidence": "release/release-readiness.json; src/tools/agent-audit-tool.ts; src/tools/agent-harness-release-evidence.ts; src/tools/agent-harness-release-readiness.ts; src/tools/agent-harness-tool.ts; src/cli/package-verification.ts; scripts/release.ts",
391
421
  "action": "Keep this inventory current whenever quality evidence or ownership changes.",
392
422
  "quality": {
393
423
  "capabilityCoverage": "Makes release-quality coverage a release criterion for each capability item rather than accepting a bare covered status.",
394
424
  "userAccess": "Release operators and maintainers inspect the packaged release-readiness inventory as audit material for every capability, owner, action, evidence, and quality dimension.",
395
- "modelAccess": "agent_harness mode:\"release_evidence\", mode:\"release_evidence_artifact\", mode:\"release_readiness\", mode:\"release_readiness_item\", mode:\"modes\", and mode:\"mode\" expose the same operator/audit release evidence bundle, inventory, and harness capability catalog to the model with summary, search, single-artifact, single-item, and single-mode lookup routes, while package verification keeps the packaged files present.",
425
+ "modelAccess": "audit action:\"readiness|item|evidence|artifact\" plus lower-level agent_harness mode:\"release_evidence\", mode:\"release_evidence_artifact\", mode:\"release_readiness\", mode:\"release_readiness_item\", mode:\"modes\", and mode:\"mode\" expose the same operator/audit release evidence bundle, inventory, and harness capability catalog to the model with summary, search, single-artifact, single-item, and single-mode lookup routes; route action:\"plan\" prefers audit readiness or evidence for release readiness, release evidence, verification ledger, and operator/audit wording, while package verification keeps the packaged files present.",
396
426
  "safetyBoundary": "The inventory uses neutral evidence aliases and excludes local or private evidence details from the repository.",
397
427
  "releaseEvidence": "Package verification requires required item ids, zero blocker statuses, quality dimensions, fresh live evidence, searchable harness mode discovery, compact tool metadata, command/CLI/tool route metadata, keyboard route metadata, connected-host route metadata, operator/audit route metadata, and release script staging."
398
428
  }
@@ -406,8 +436,8 @@
406
436
  "action": "Agent should keep readiness and confirmed send UX while connected-host owns adapters and lifecycle.",
407
437
  "quality": {
408
438
  "capabilityCoverage": "Covers core external messaging routes, delivery records, ingress/egress, account lifecycle, directory lookup, target resolution, render policy, and adapter contracts through connected-host ownership.",
409
- "userAccess": "The user sees channel readiness and confirmed sends in Agent while connected-host owns adapter lifecycle and route execution.",
410
- "modelAccess": "agent_channel_send plus agent_harness mode:\"channels\" and mode:\"channel\", connected-host capability, channel workspace, slash-command, and settings metadata expose channel operation boundaries to the model.",
439
+ "userAccess": "The user sees channel readiness, redacted confirmed-send receipts, and confirmed sends in Agent while connected-host owns adapter lifecycle and route execution.",
440
+ "modelAccess": "channels action:\"status|channel|setup|triage|deliveries\", agent_channel_send, lower-level agent_harness mode:\"channels\", mode:\"channel\", mode:\"channel_setup_guide\", mode:\"channel_triage\", and mode:\"channel_deliveries\", connected-host capability, channel workspace, slash-command, and settings metadata expose channel operation boundaries to the model.",
411
441
  "safetyBoundary": "Agent never owns host lifecycle or secret-bearing adapters; it routes exact confirmed delivery through public connected-host contracts.",
412
442
  "releaseEvidence": "Readiness evidence cites connected-host evidence alias and Agent channel docs, with live outcome certification covering real delivery before release."
413
443
  }
@@ -420,10 +450,10 @@
420
450
  "evidence": "goodvibes-connected-host: automation runtime and operator API contract inventory reviewed under runtime-contract-review; docs/tools-and-commands.md",
421
451
  "action": "Agent should expose read-only status and narrow confirmed actions, not host lifecycle ownership.",
422
452
  "quality": {
423
- "capabilityCoverage": "Covers durable jobs, runs, schedules, watchers, deliveries, route bindings, and service lifecycle through connected-host runtime ownership.",
424
- "userAccess": "The user can inspect automation state and run narrow confirmed actions from Agent without managing host services.",
425
- "modelAccess": "agent_operator_briefing, agent_operator_action, and agent_harness connected-host capability reports expose automation status/action boundaries to the model.",
426
- "safetyBoundary": "Agent does not create broad host automation definitions or lifecycle operations from chat.",
453
+ "capabilityCoverage": "Covers durable jobs, runs, schedules, watchers, deliveries, route bindings, and service lifecycle through connected-host runtime ownership, including published watcher create/list/run/start/stop operator methods, Agent-certified watcher receipt outcomes, and Agent-visible handoff requirements for durable watcher run/source records.",
454
+ "userAccess": "The user can inspect automation state, route trigger setup through autonomy intake, and run narrow confirmed actions from Agent without managing host services.",
455
+ "modelAccess": "schedule action:\"list|run|pause|resume|delete\", autonomy action:\"intake|queue|item\", agent_operator_briefing, agent_operator_action, agent_operator_method, host action:\"methods|method|capability\", lower-level agent_harness mode:\"operator_methods|operator_method\", and connected-host capability reports expose automation status/action/watcher boundaries, post-action schedule nextRoutes, certified watcher receipts, and source-owned watcher run/source evidence requirements to the model.",
456
+ "safetyBoundary": "Agent does not create broad host automation definitions or lifecycle operations from chat; watcher creation stays an admin confirmed operator method with trusted source/scope and explicit user request, and receipt certification uses only returned daemon fields.",
427
457
  "releaseEvidence": "Readiness evidence cites connected-host automation inventory and Agent tools docs, with live certification covering external automation outcomes."
428
458
  }
429
459
  },
@@ -437,7 +467,7 @@
437
467
  "quality": {
438
468
  "capabilityCoverage": "Covers operator methods, events, auth, realtime transport, status, control-plane catalogs, WebSocket/SSE feeds, and route families.",
439
469
  "userAccess": "The user receives status, health, model route, work/approval/automation, and realtime posture through Agent diagnostics and workspace surfaces.",
440
- "modelAccess": "agent_harness mode:\"operator_methods\", mode:\"operator_method\", mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host\", mode:\"connected_host_capability\", mode:\"connected_host_status\", and first-class operator tools expose public operator routes and endpoint diagnostics to the model, with compact connected-host route hints in posture, capability, and status results.",
470
+ "modelAccess": "host action:\"status|capabilities|capability|services|service|methods|method\" plus agent_harness mode:\"operator_methods\", mode:\"operator_method\", mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host\", mode:\"connected_host_capability\", mode:\"connected_host_status\", and first-class operator tools expose public operator routes and endpoint diagnostics to the model, with compact connected-host route hints in posture, capability, and status results.",
441
471
  "safetyBoundary": "Agent uses public authenticated operator routes only and does not expose lifecycle or non-Agent host internals.",
442
472
  "releaseEvidence": "Readiness evidence cites connected-host operator inventory and connected-host docs, with live verification requiring status, health, and model route checks."
443
473
  }
@@ -452,7 +482,7 @@
452
482
  "quality": {
453
483
  "capabilityCoverage": "Covers Agent Knowledge handlers, ingestion, connectors, graph operations, refinement, jobs, schedules, ask, search, and status through isolated connected-host routes.",
454
484
  "userAccess": "The user can operate isolated Agent Knowledge from TUI and CLI without selecting or leaking into non-Agent knowledge spaces.",
455
- "modelAccess": "agent_knowledge, agent_knowledge_ingest, agent_harness mode:\"operator_methods\" and mode:\"operator_method\", and connected-host capability reports expose isolated Knowledge operation to the model.",
485
+ "modelAccess": "agent_knowledge, agent_knowledge_ingest, host action:\"methods|method|capability\", agent_harness mode:\"operator_methods\" and mode:\"operator_method\", and connected-host capability reports expose isolated Knowledge operation to the model.",
456
486
  "safetyBoundary": "Only /api/goodvibes-agent/knowledge/* routes are allowed. Agent rejects alternate knowledge space routing, normalizes parseable public Agent-route scope aliases, and fails closed on known non-Agent payload markers.",
457
487
  "releaseEvidence": "Readiness evidence cites connected-host evidence alias and Knowledge docs, with live verification requiring isolated status, ask, search, library, item, map, connector checks, Agent-route scope alias normalization, and response contamination detection."
458
488
  }
@@ -467,7 +497,7 @@
467
497
  "quality": {
468
498
  "capabilityCoverage": "Covers voice synthesis, streaming voice, transcription, realtime voice setup, media analysis, artifact storage, and media provider route handlers through connected-host ownership.",
469
499
  "userAccess": "The user can inspect media readiness and generate artifacts from Agent while provider runtime ownership stays outside the package.",
470
- "modelAccess": "agent_media_generate and agent_harness mode:\"media_posture\" and mode:\"media_provider\" expose media provider readiness, selected TTS setup, browser-tool posture, artifact availability, safe secret-key names, model routes, and single provider lookup; connected-host capability metadata exposes ownership boundaries.",
500
+ "modelAccess": "agent_media_generate and device action:\"voice|provider\" expose media provider readiness, selected TTS setup, browser-tool posture, artifact availability, safe secret-key names, model routes, voice workflow posture, and single provider lookup; lower-level agent_harness mode:\"media_posture\" and mode:\"media_provider\" remain detailed compatibility routes; connected-host capability metadata exposes ownership boundaries.",
471
501
  "safetyBoundary": "Agent stores generated bytes as artifacts and does not print inline base64 or silently ingest media into knowledge.",
472
502
  "releaseEvidence": "Readiness evidence cites connected-host media inventory and voice/media docs, with live certification covering externally backed media outcomes."
473
503
  }
@@ -482,7 +512,7 @@
482
512
  "quality": {
483
513
  "capabilityCoverage": "Covers provider account snapshots, usage windows, OAuth/service route metadata, auth routes, and provider usage endpoints through connected-host ownership.",
484
514
  "userAccess": "The user can inspect account posture and usage from Agent surfaces while provider services remain connected-host responsibilities.",
485
- "modelAccess": "agent_harness mode:\"provider_accounts\", mode:\"provider_account\", mode:\"model_routing\", mode:\"model_route\", mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host_status\", and mode:\"connected_host_capability\" expose account and routing posture to the model.",
515
+ "modelAccess": "models action:\"status|route|providers|provider\" plus host action:\"services|service|status|capability\" and agent_harness mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host_status\", and mode:\"connected_host_capability\" expose account and routing posture to the model.",
486
516
  "safetyBoundary": "Agent guides and inspects auth without owning provider service internals or printing raw secrets.",
487
517
  "releaseEvidence": "Readiness evidence cites connected-host provider account inventory and Agent provider-account runtime sources."
488
518
  }
@@ -497,7 +527,7 @@
497
527
  "quality": {
498
528
  "capabilityCoverage": "Covers token bootstrap, QR pairing, realtime delivery, browser/mobile-safe client surfaces, foreground events, and transport compatibility through connected-host ownership.",
499
529
  "userAccess": "The user pairs companion clients and sees realtime compatibility from Agent while token issuance remains outside Agent.",
500
- "modelAccess": "agent_harness mode:\"pairing_posture\", mode:\"pairing_route\", mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host\", mode:\"connected_host_capability\", and mode:\"connected_host_status\" expose pairing endpoint binding, token fingerprint, route catalog, realtime/status boundaries, and single route/capability lookup without returning raw tokens or QR payloads; connected-host rows include compact modelRoute hints for safe follow-up.",
530
+ "modelAccess": "device action:\"status|capability\" plus host action:\"status|capabilities|capability|services|service\" and agent_harness mode:\"pairing_posture\", mode:\"pairing_route\", mode:\"service_posture\", mode:\"service_endpoint\", mode:\"connected_host\", mode:\"connected_host_capability\", and mode:\"connected_host_status\" expose pairing endpoint binding, token fingerprint, route catalog, device capability map status for browser/mobile/voice/delivery/desktop readiness, realtime/status boundaries, and single route/capability lookup without returning raw tokens or QR payloads; connected-host rows include compact modelRoute hints for safe follow-up.",
501
531
  "safetyBoundary": "Agent renders pairing UX and status without owning token issuance or exposing raw tokens by default.",
502
532
  "releaseEvidence": "Readiness evidence cites connected-host pairing/realtime inventory and channel docs, with live certification covering pairing readiness."
503
533
  }
@@ -526,8 +556,8 @@
526
556
  "action": "Keep the long-tail channel matrix registered in the connected-host surface union, plugin registry, delivery strategies, setup schemas, and operator channel routes.",
527
557
  "quality": {
528
558
  "capabilityCoverage": "Covers the long-tail channel matrix through connected-host surface unions, plugin registry, delivery strategies, setup schemas, and operator channel routes.",
529
- "userAccess": "The user sees all configured channel readiness and exact send paths through Agent channel surfaces.",
530
- "modelAccess": "agent_channel_send and agent_harness mode:\"channels\" and mode:\"channel\", channel workspace, command, settings, and connected-host capability reports expose the channel matrix to the model.",
559
+ "userAccess": "The user sees all configured channel readiness, recent redacted delivery receipts, and exact send paths through Agent channel surfaces.",
560
+ "modelAccess": "channels action:\"status|channel|setup|triage|deliveries\", agent_channel_send, lower-level agent_harness mode:\"channels\", mode:\"channel\", mode:\"channel_setup_guide\", mode:\"channel_triage\", and mode:\"channel_deliveries\", channel workspace, command, settings, and connected-host capability reports expose the channel matrix to the model.",
531
561
  "safetyBoundary": "Agent keeps adapter setup and secret-bearing lifecycle in connected-host ownership while confirmed sends stay exact-target.",
532
562
  "releaseEvidence": "Readiness evidence cites connected-host long-tail channel inventory and Agent channel docs, with live outcome certification covering external sends."
533
563
  }
@@ -542,7 +572,7 @@
542
572
  "quality": {
543
573
  "capabilityCoverage": "Covers phone-call style conversation or notification delivery as a channel-class surface through connected-host telephony adapters and routed delivery.",
544
574
  "userAccess": "The user can inspect telephony readiness and send via channel/reminder/routine delivery routes when configured.",
545
- "modelAccess": "agent_channel_send, agent_reminder_schedule, and agent_harness mode:\"channels\" and mode:\"channel\" plus connected-host metadata expose telephony as a routed channel surface to the model.",
575
+ "modelAccess": "channels action:\"status|channel|setup|triage|deliveries\", agent_channel_send, agent_reminder_schedule, and lower-level agent_harness mode:\"channels\", mode:\"channel\", mode:\"channel_setup_guide\", mode:\"channel_triage\", and mode:\"channel_deliveries\" plus connected-host metadata expose telephony as a routed channel surface to the model.",
546
576
  "safetyBoundary": "Agent does not own telephony adapter credentials or service lifecycle and uses explicit target/confirmation rules for delivery.",
547
577
  "releaseEvidence": "Readiness evidence cites connected-host telephony inventory and Agent channel/reminder/routine sources."
548
578
  }
@@ -553,11 +583,11 @@
553
583
  "owner": "companion",
554
584
  "status": "covered",
555
585
  "evidence": "goodvibes-companion: companion command-depth, pairing, chat, shared-session, approvals, tasks, provider/model controls, attachments, and realtime foreground-event inventory reviewed under runtime-contract-review; docs/channels-remote-and-api.md",
556
- "action": "Keep the companion app aligned with public connected-host contracts for secure auth, QR pairing, companion chat, shared sessions, approvals, tasks, provider/model controls, attachments, and realtime foreground events.",
586
+ "action": "Keep the companion app aligned with public connected-host contracts for secure auth, QR pairing, companion chat, shared sessions, approvals, tasks, provider/model controls, attachments, realtime foreground events, and permission-scoped device APIs that can populate the Agent capability map.",
557
587
  "quality": {
558
- "capabilityCoverage": "Covers companion command depth beyond pairing: chat, shared sessions, approvals, tasks, provider/model controls, attachments, and realtime foreground events.",
559
- "userAccess": "The user gets companion-facing command depth through the companion app and Agent pairing/session surfaces.",
560
- "modelAccess": "agent_harness mode:\"pairing_posture\" and mode:\"pairing_route\", mode:\"model_routing\" and mode:\"model_route\", connected_host, connected_host_capability, connected_host_status, operator methods, and first-class operator/channel/media tools expose pairing, shared-session, task, approval, provider/model, attachment, and mobile route boundaries for companion workflows.",
588
+ "capabilityCoverage": "Covers companion command depth beyond pairing: chat, shared sessions, approvals, tasks, provider/model controls, attachments, realtime foreground events, and Agent-visible ready/attention/setup-needed/not-published posture for mobile command routing, browser/PWA, voice/TTS, notifications, browser/desktop control, voice workflows, and camera/location sensors.",
589
+ "userAccess": "The user gets companion-facing command depth through the companion app and Agent pairing/session surfaces, with the Agent Voice & Media Device capability map, Browser/PWA readiness, and voice workflow posture showing what is ready, what needs setup, and which camera/location/wake-word contracts are not published yet.",
590
+ "modelAccess": "device action:\"status|capability|voice\" exposes the companion device capability map, device-capability-map route, and voice workflow readiness; computer action:\"plan|browser|open_browser\" exposes browser/screenshot/desktop-control planning, Browser/PWA readiness, and confirmed browser cockpit handoff; lower-level agent_harness mode:\"pairing_posture\", mode:\"pairing_route\", mode:\"browser_control_route\", and mode:\"media_posture\" remain compatibility routes; Voice & Media action route hints expose voice-workflow-posture and device-capability-map through device actions, and browser-cockpit-readiness through computer action:\"browser\"; models action:\"status|route|providers|provider\", host action:\"status|capabilities|capability|methods\", connected_host, connected_host_capability, connected_host_status, operator methods, and first-class operator/channel/media tools expose pairing, shared-session, task, approval, provider/model, attachment, and mobile route boundaries for companion workflows.",
561
591
  "safetyBoundary": "Companion commands align to public connected-host contracts for secure auth and do not bypass Agent confirmation or token policy.",
562
592
  "releaseEvidence": "Readiness evidence cites companion evidence alias and channel docs, with live certification covering companion/pairing outcomes."
563
593
  }
@@ -572,7 +602,7 @@
572
602
  "quality": {
573
603
  "capabilityCoverage": "Requires fresh external outcome evidence for externally backed capabilities, including channel sends, schedule execution, provider usage, media generation, pairing, and Agent Knowledge answers.",
574
604
  "userAccess": "Release operators and maintainers inspect strict live outcome certification artifacts before stable publication; end users receive releases only after those outcomes are recorded.",
575
- "modelAccess": "The model can inspect live-verification artifacts through agent_harness mode:\"release_evidence_artifact\" and inspect mode:\"service_posture\", mode:\"service_endpoint\", and mode:\"connected_host_status\" for the endpoint and live posture used by the release gate.",
605
+ "modelAccess": "The model can inspect live-verification artifacts through audit action:\"artifact\" plus lower-level agent_harness mode:\"release_evidence_artifact\" and inspect host action:\"services|service|status\" plus mode:\"service_posture\", mode:\"service_endpoint\", and mode:\"connected_host_status\" for the endpoint and live posture used by the release gate.",
576
606
  "safetyBoundary": "Live certification redacts token values, local paths, and private addresses and treats warnings, failures, and skips as release blockers.",
577
607
  "releaseEvidence": "The current strict live verification artifacts record pass-only release evidence and are required by package verification for this release line."
578
608
  }