@pugi/cli 0.1.0-beta.1 → 0.1.0-beta.100

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (448) hide show
  1. package/CHANGELOG.md +132 -0
  2. package/LICENSE +1 -1
  3. package/README.md +53 -11
  4. package/THIRD_PARTY_NOTICES.md +40 -0
  5. package/assets/pugi-mascot.ansi +15 -40
  6. package/assets/pugi-prozr2-mascot.ansi +9 -0
  7. package/bin/run.js +33 -1
  8. package/dist/commands/deploy.js +40 -40
  9. package/dist/commands/flatten.js +191 -0
  10. package/dist/commands/jobs-watch.js +201 -0
  11. package/dist/commands/jobs.js +42 -27
  12. package/dist/commands/retro.js +210 -0
  13. package/dist/commands/smoke.js +133 -0
  14. package/dist/core/agent-progress/cleanup.js +134 -0
  15. package/dist/core/agent-progress/schema.js +144 -0
  16. package/dist/core/agent-progress/writer.js +101 -0
  17. package/dist/core/agents/adaptive-router.js +330 -0
  18. package/dist/core/agents/query-decomposer.js +297 -0
  19. package/dist/core/agents/registry.js +3 -3
  20. package/dist/core/approvals/shortcut-resolver.js +98 -0
  21. package/dist/core/artifact-chain/dispatcher.js +148 -0
  22. package/dist/core/artifact-chain/exporter.js +164 -0
  23. package/dist/core/artifact-chain/state.js +243 -0
  24. package/dist/core/artifact-chain/steps.js +169 -0
  25. package/dist/core/ask-user/question.js +92 -0
  26. package/dist/core/audit/audit-trail.js +275 -0
  27. package/dist/core/auth/ensure-authenticated.js +129 -0
  28. package/dist/core/auth/env-provider.js +238 -0
  29. package/dist/core/auto-open-browser.js +4 -4
  30. package/dist/core/auto-update/channels.js +122 -0
  31. package/dist/core/auto-update/checker.js +241 -0
  32. package/dist/core/auto-update/state.js +235 -0
  33. package/dist/core/bare-mode/index.js +107 -0
  34. package/dist/core/bash/redirect.js +281 -0
  35. package/dist/core/bash-classifier.js +436 -40
  36. package/dist/core/checkpoint/resumer.js +149 -0
  37. package/dist/core/checkpoint/rewinder.js +291 -0
  38. package/dist/core/checkpoints/shadow-git.js +670 -0
  39. package/dist/core/citations/parser.js +109 -0
  40. package/dist/core/classifier/yolo-classifier.js +88 -0
  41. package/dist/core/codegraph/db.js +506 -0
  42. package/dist/core/codegraph/decision-store.js +248 -0
  43. package/dist/core/codegraph/detect-repo.js +459 -0
  44. package/dist/core/codegraph/install.js +134 -0
  45. package/dist/core/codegraph/offer-hook.js +220 -0
  46. package/dist/core/codegraph/parser.js +71 -0
  47. package/dist/core/codegraph/types.js +34 -0
  48. package/dist/core/compact/auto-trigger.js +96 -0
  49. package/dist/core/compact/buffer-rewriter.js +115 -0
  50. package/dist/core/compact/summarizer.js +208 -0
  51. package/dist/core/compact/token-counter.js +108 -0
  52. package/dist/core/consensus/anvil-fanout.js +25 -25
  53. package/dist/core/consensus/diff-capture.js +121 -12
  54. package/dist/core/consensus/rubric.js +21 -21
  55. package/dist/core/context/builder.js +6 -6
  56. package/dist/core/context/compaction-events.js +8 -8
  57. package/dist/core/context/compaction.js +31 -31
  58. package/dist/core/context/index.js +15 -8
  59. package/dist/core/context/invariants.js +51 -51
  60. package/dist/core/context/markdown-loader.js +28 -10
  61. package/dist/core/context/markdown-traverse.js +255 -0
  62. package/dist/core/context/pugiignore.js +41 -41
  63. package/dist/core/context/repo-skeleton.js +37 -37
  64. package/dist/core/context/tool-eviction.js +55 -0
  65. package/dist/core/context/watcher.js +32 -32
  66. package/dist/core/context/working-set.js +23 -23
  67. package/dist/core/coordinator/agent-tools.js +77 -0
  68. package/dist/core/coordinator/agent-toolset.js +65 -0
  69. package/dist/core/coordinator/fsm.js +73 -0
  70. package/dist/core/coordinator/mode-fsm.js +70 -0
  71. package/dist/core/cost/rate-card.js +129 -0
  72. package/dist/core/cost/tracker.js +221 -0
  73. package/dist/core/credentials.js +13 -13
  74. package/dist/core/cron/scheduler.js +138 -0
  75. package/dist/core/denial-tracking/index.js +8 -0
  76. package/dist/core/denial-tracking/state.js +264 -0
  77. package/dist/core/diagnostics/probe-runner.js +93 -0
  78. package/dist/core/diagnostics/probes/api.js +46 -0
  79. package/dist/core/diagnostics/probes/auth.js +93 -0
  80. package/dist/core/diagnostics/probes/bare-mode.js +42 -0
  81. package/dist/core/diagnostics/probes/cli-version.js +127 -0
  82. package/dist/core/diagnostics/probes/config.js +72 -0
  83. package/dist/core/diagnostics/probes/denial-tracking.js +57 -0
  84. package/dist/core/diagnostics/probes/disk.js +81 -0
  85. package/dist/core/diagnostics/probes/engine-live.js +46 -0
  86. package/dist/core/diagnostics/probes/git.js +65 -0
  87. package/dist/core/diagnostics/probes/hooks.js +118 -0
  88. package/dist/core/diagnostics/probes/mcp.js +75 -0
  89. package/dist/core/diagnostics/probes/node.js +59 -0
  90. package/dist/core/diagnostics/probes/pnpm.js +36 -0
  91. package/dist/core/diagnostics/probes/pugi-md.js +89 -0
  92. package/dist/core/diagnostics/probes/sandbox.js +72 -0
  93. package/dist/core/diagnostics/probes/session.js +74 -0
  94. package/dist/core/diagnostics/probes/status-snapshot.js +488 -0
  95. package/dist/core/diagnostics/probes/workspace.js +63 -0
  96. package/dist/core/diagnostics/types.js +70 -0
  97. package/dist/core/dispatch/cache-cleanup.js +197 -0
  98. package/dist/core/dispatch/cache-handoff.js +295 -0
  99. package/dist/core/edits/apply-patch-layer-e.js +189 -0
  100. package/dist/core/edits/dispatch.js +333 -7
  101. package/dist/core/edits/format-detector.js +260 -0
  102. package/dist/core/edits/format-matrix.js +26 -0
  103. package/dist/core/edits/fuzzy-ladder.js +650 -0
  104. package/dist/core/edits/index.js +5 -1
  105. package/dist/core/edits/journal.js +199 -0
  106. package/dist/core/edits/layer-a-apply.js +15 -15
  107. package/dist/core/edits/layer-a-fuzzy-apply.js +198 -0
  108. package/dist/core/edits/layer-b-apply.js +9 -9
  109. package/dist/core/edits/layer-c-apply.js +6 -6
  110. package/dist/core/edits/layer-d-ast.js +557 -14
  111. package/dist/core/edits/marker-parser.js +12 -12
  112. package/dist/core/edits/security-gate.js +27 -27
  113. package/dist/core/edits/verify-hook.js +273 -0
  114. package/dist/core/edits/worktree.js +322 -0
  115. package/dist/core/engine/anvil-client.js +214 -26
  116. package/dist/core/engine/auto-compact.js +247 -0
  117. package/dist/core/engine/budgets.js +220 -0
  118. package/dist/core/engine/compact-llm-summarizer.js +124 -0
  119. package/dist/core/engine/context-prefix.js +155 -0
  120. package/dist/core/engine/index.js +1 -1
  121. package/dist/core/engine/intensity.js +163 -0
  122. package/dist/core/engine/intent.js +260 -0
  123. package/dist/core/engine/native-pugi.js +1559 -227
  124. package/dist/core/engine/prompts.js +192 -16
  125. package/dist/core/engine/strip-internal-fields.js +124 -0
  126. package/dist/core/engine/tool-bridge.js +1887 -59
  127. package/dist/core/engine/verification-patterns.js +195 -0
  128. package/dist/core/evaluation/golden-dataset.js +293 -0
  129. package/dist/core/feedback/queue.js +177 -0
  130. package/dist/core/feedback/submitter.js +145 -0
  131. package/dist/core/file-cache.js +113 -1
  132. package/dist/core/flatten/flatten-repo.js +439 -0
  133. package/dist/core/format/osc8-link.js +28 -0
  134. package/dist/core/hook-chains.js +392 -0
  135. package/dist/core/hooks/citation-verify-hook.js +138 -0
  136. package/dist/core/hooks/citation-verify.js +112 -0
  137. package/dist/core/hooks/events.js +46 -0
  138. package/dist/core/hooks/index.js +15 -0
  139. package/dist/core/hooks/registry.js +216 -0
  140. package/dist/core/hooks/runner.js +236 -0
  141. package/dist/core/hooks/v2/event-emitter.js +115 -0
  142. package/dist/core/hooks/v2/executor.js +282 -0
  143. package/dist/core/hooks/v2/index.js +25 -0
  144. package/dist/core/hooks/v2/lifecycle.js +104 -0
  145. package/dist/core/hooks/v2/loader.js +216 -0
  146. package/dist/core/hooks/v2/matcher.js +125 -0
  147. package/dist/core/hooks/v2/trust.js +143 -0
  148. package/dist/core/hooks/v2/types.js +86 -0
  149. package/dist/core/hooks/worktree-events.js +158 -0
  150. package/dist/core/image/renderer.js +71 -0
  151. package/dist/core/init/detector.js +582 -0
  152. package/dist/core/init/template-renderer.js +242 -0
  153. package/dist/core/jobs/registry.js +18 -18
  154. package/dist/core/ledger/results-tsv.js +142 -0
  155. package/dist/core/log-discipline/stdout-redirect.js +51 -0
  156. package/dist/core/lsp/cache.js +105 -0
  157. package/dist/core/lsp/client.js +1229 -0
  158. package/dist/core/lsp/language-detect.js +66 -0
  159. package/dist/core/lsp/post-edit-diagnostics.js +171 -0
  160. package/dist/core/lsp/server-detect.js +173 -0
  161. package/dist/core/lsp/symbol-cache.js +162 -0
  162. package/dist/core/lsp/symbol-tools.js +664 -0
  163. package/dist/core/mcp/client.js +97 -28
  164. package/dist/core/mcp/http-server.js +553 -0
  165. package/dist/core/mcp/orchestrator-config.js +192 -0
  166. package/dist/core/mcp/orchestrator-tools.js +806 -0
  167. package/dist/core/mcp/permission.js +190 -0
  168. package/dist/core/mcp/registry.js +39 -17
  169. package/dist/core/mcp/server-tools.js +219 -0
  170. package/dist/core/mcp/server.js +397 -0
  171. package/dist/core/mcp/trust.js +10 -10
  172. package/dist/core/memory/dual-write.js +416 -0
  173. package/dist/core/memory/passive-extract.js +130 -0
  174. package/dist/core/memory/phase1-kinds.js +20 -0
  175. package/dist/core/memory/secret-scanner.js +304 -0
  176. package/dist/core/memory-sync/queue.js +170 -0
  177. package/dist/core/metrics/extract.js +113 -0
  178. package/dist/core/modes/roo-modes.js +68 -0
  179. package/dist/core/notes/notes-paths.js +113 -0
  180. package/dist/core/notes/notes-recorder.js +140 -0
  181. package/dist/core/notes/notes-writer.js +53 -0
  182. package/dist/core/notes/renderers.js +0 -0
  183. package/dist/core/notes/slug.js +105 -0
  184. package/dist/core/onboarding/ensure-initialized.js +133 -0
  185. package/dist/core/onboarding/marker.js +111 -0
  186. package/dist/core/onboarding/telemetry-state.js +108 -0
  187. package/dist/core/output-style/presets.js +176 -0
  188. package/dist/core/output-style/state.js +185 -0
  189. package/dist/core/path-security.js +287 -5
  190. package/dist/core/permission.js +82 -22
  191. package/dist/core/permissions/auto-classifier.js +124 -0
  192. package/dist/core/permissions/bash-parser.js +371 -0
  193. package/dist/core/permissions/circuit-breaker.js +83 -0
  194. package/dist/core/permissions/constrained-edit.js +91 -0
  195. package/dist/core/permissions/gate.js +278 -0
  196. package/dist/core/permissions/index.js +20 -0
  197. package/dist/core/permissions/mode.js +174 -0
  198. package/dist/core/permissions/network-egress.js +137 -0
  199. package/dist/core/permissions/state.js +241 -0
  200. package/dist/core/permissions/tool-class.js +107 -0
  201. package/dist/core/plan-mode/ui-state.js +51 -0
  202. package/dist/core/plans/plan-artifact.js +721 -0
  203. package/dist/core/policy-limits/etag-store.js +122 -0
  204. package/dist/core/prd-check/parser.js +215 -0
  205. package/dist/core/prd-check/reporter.js +127 -0
  206. package/dist/core/prd-check/session-review.js +557 -0
  207. package/dist/core/prd-check/verifiers.js +223 -0
  208. package/dist/core/prompt-cache/client-cache.js +99 -0
  209. package/dist/core/prompts/assembly.js +29 -0
  210. package/dist/core/prompts/registry.js +364 -0
  211. package/dist/core/pugi-gitignore.js +52 -0
  212. package/dist/core/pugi-md/cc-compat-rules.js +735 -0
  213. package/dist/core/pugi-md/context-injector.js +76 -0
  214. package/dist/core/pugi-md/walk-up.js +207 -0
  215. package/dist/core/python/uv-installer.js +270 -0
  216. package/dist/core/python/uv-resolver.js +83 -0
  217. package/dist/core/rate-limit/narrator.js +146 -0
  218. package/dist/core/recipes/cli-types.js +20 -0
  219. package/dist/core/recipes/loader.js +103 -0
  220. package/dist/core/recipes/runner.js +345 -0
  221. package/dist/core/recipes/schema.js +587 -0
  222. package/dist/core/release-notes/parser.js +241 -0
  223. package/dist/core/release-notes/state.js +116 -0
  224. package/dist/core/repl/ask.js +37 -37
  225. package/dist/core/repl/cancellation.js +26 -26
  226. package/dist/core/repl/cap-warning.js +4 -4
  227. package/dist/core/repl/clipboard-read.js +11 -11
  228. package/dist/core/repl/dispatch-fsm.js +12 -12
  229. package/dist/core/repl/engine-bridge.js +303 -0
  230. package/dist/core/repl/history-search.js +15 -15
  231. package/dist/core/repl/history.js +28 -18
  232. package/dist/core/repl/kill-ring.js +5 -5
  233. package/dist/core/repl/model-pricing.js +135 -0
  234. package/dist/core/repl/privacy-banner.js +22 -22
  235. package/dist/core/repl/session.js +2714 -228
  236. package/dist/core/repl/slash-commands.js +572 -40
  237. package/dist/core/repl/store/index.js +1 -1
  238. package/dist/core/repl/store/jsonl-log.js +22 -22
  239. package/dist/core/repl/store/lockfile.js +10 -10
  240. package/dist/core/repl/store/session-store.js +136 -107
  241. package/dist/core/repl/store/types.js +15 -15
  242. package/dist/core/repl/store/uuid-v7.js +12 -12
  243. package/dist/core/repl/tool-route.js +382 -0
  244. package/dist/core/repl/workspace-context.js +43 -21
  245. package/dist/core/repo-map/build.js +125 -0
  246. package/dist/core/repo-map/cache.js +185 -0
  247. package/dist/core/repo-map/extractor.js +254 -0
  248. package/dist/core/repo-map/formatter.js +145 -0
  249. package/dist/core/repo-map/page-rank.js +105 -0
  250. package/dist/core/repo-map/scanner.js +211 -0
  251. package/dist/core/retro/git-collector.js +251 -0
  252. package/dist/core/retro/health-card.js +25 -0
  253. package/dist/core/retro/metrics.js +342 -0
  254. package/dist/core/retro/narrative.js +249 -0
  255. package/dist/core/retro/plane-collector.js +274 -0
  256. package/dist/core/retro/pr-issue-link.js +65 -0
  257. package/dist/core/retro/types.js +16 -0
  258. package/dist/core/retry-budget/budget.js +284 -0
  259. package/dist/core/retry-budget/index.js +5 -0
  260. package/dist/core/retry-budget/retry-cap.js +74 -0
  261. package/dist/core/routing/lead-worker.js +43 -0
  262. package/dist/core/routing/pre-flight-estimator.js +108 -0
  263. package/dist/core/runs/run-tree.js +103 -0
  264. package/dist/core/sandboxing/adapter.js +29 -0
  265. package/dist/core/sandboxing/index.js +49 -0
  266. package/dist/core/sandboxing/none.js +19 -0
  267. package/dist/core/sandboxing/seatbelt.js +183 -0
  268. package/dist/core/security/injection-scanner.js +367 -0
  269. package/dist/core/security/output-filter.js +418 -0
  270. package/dist/core/session/env-file.js +105 -0
  271. package/dist/core/session/section-budgets.js +140 -0
  272. package/dist/core/session.js +119 -0
  273. package/dist/core/settings.js +378 -5
  274. package/dist/core/share/formatter.js +271 -0
  275. package/dist/core/share/redactor.js +221 -0
  276. package/dist/core/share/uploader.js +267 -0
  277. package/dist/core/skills/defaults.js +457 -0
  278. package/dist/core/skills/loader.js +22 -22
  279. package/dist/core/skills/sources.js +27 -27
  280. package/dist/core/smoke/headless-driver.js +174 -0
  281. package/dist/core/smoke/orchestrator.js +194 -0
  282. package/dist/core/smoke/runner.js +238 -0
  283. package/dist/core/smoke/scenario-parser.js +316 -0
  284. package/dist/core/statusline.js +99 -0
  285. package/dist/core/subagents/dispatcher-real.js +600 -0
  286. package/dist/core/subagents/dispatcher.js +146 -52
  287. package/dist/core/subagents/index.js +19 -6
  288. package/dist/core/subagents/isolation-matrix.js +213 -0
  289. package/dist/core/subagents/spawn.js +19 -4
  290. package/dist/core/telemetry/emitter.js +229 -0
  291. package/dist/core/telemetry/queue.js +251 -0
  292. package/dist/core/theme/context.js +91 -0
  293. package/dist/core/theme/presets.js +228 -0
  294. package/dist/core/theme/state.js +181 -0
  295. package/dist/core/todos/invariant.js +10 -0
  296. package/dist/core/todos/state.js +177 -0
  297. package/dist/core/tool-schema/compressor.js +89 -0
  298. package/dist/core/transport/version-interceptor.js +166 -0
  299. package/dist/core/trust.js +2 -2
  300. package/dist/core/tui/thinking-block.js +64 -0
  301. package/dist/core/vim/keymap.js +288 -0
  302. package/dist/core/vim/state.js +92 -0
  303. package/dist/core/watch-markers/marker-watcher.js +133 -0
  304. package/dist/core/worktree/include-parser.js +249 -0
  305. package/dist/core/worktree-manager/cleanup.js +123 -0
  306. package/dist/core/worktree-manager/manager.js +303 -0
  307. package/dist/index.js +36 -0
  308. package/dist/runtime/bootstrap.js +190 -0
  309. package/dist/runtime/cli.js +4536 -477
  310. package/dist/runtime/commands/agents.js +31 -31
  311. package/dist/runtime/commands/budget.js +5 -5
  312. package/dist/runtime/commands/cancel.js +231 -0
  313. package/dist/runtime/commands/chain.js +489 -0
  314. package/dist/runtime/commands/codegraph-status.js +227 -0
  315. package/dist/runtime/commands/compact.js +297 -0
  316. package/dist/runtime/commands/config.js +74 -40
  317. package/dist/runtime/commands/cost.js +199 -0
  318. package/dist/runtime/commands/delegate.js +312 -0
  319. package/dist/runtime/commands/dispatch.js +126 -0
  320. package/dist/runtime/commands/doctor.js +579 -0
  321. package/dist/runtime/commands/feedback.js +184 -0
  322. package/dist/runtime/commands/hooks.js +187 -0
  323. package/dist/runtime/commands/index-cmd.js +353 -0
  324. package/dist/runtime/commands/init.js +254 -0
  325. package/dist/runtime/commands/lsp.js +368 -0
  326. package/dist/runtime/commands/mcp.js +935 -0
  327. package/dist/runtime/commands/memory.js +582 -0
  328. package/dist/runtime/commands/model.js +237 -0
  329. package/dist/runtime/commands/onboarding.js +275 -0
  330. package/dist/runtime/commands/patch.js +128 -0
  331. package/dist/runtime/commands/permissions.js +112 -0
  332. package/dist/runtime/commands/plan.js +143 -0
  333. package/dist/runtime/commands/prd-check.js +285 -0
  334. package/dist/runtime/commands/privacy.js +17 -17
  335. package/dist/runtime/commands/recipe.js +325 -0
  336. package/dist/runtime/commands/redo-blob-store.js +92 -0
  337. package/dist/runtime/commands/redo.js +361 -0
  338. package/dist/runtime/commands/release-notes.js +229 -0
  339. package/dist/runtime/commands/repo-map.js +95 -0
  340. package/dist/runtime/commands/report.js +299 -0
  341. package/dist/runtime/commands/resume.js +118 -0
  342. package/dist/runtime/commands/review-consensus.js +68 -53
  343. package/dist/runtime/commands/rewind.js +333 -0
  344. package/dist/runtime/commands/roster.js +117 -0
  345. package/dist/runtime/commands/servers.js +236 -0
  346. package/dist/runtime/commands/sessions.js +163 -0
  347. package/dist/runtime/commands/share.js +316 -0
  348. package/dist/runtime/commands/skills.js +31 -31
  349. package/dist/runtime/commands/status.js +186 -0
  350. package/dist/runtime/commands/stickers.js +82 -0
  351. package/dist/runtime/commands/style.js +194 -0
  352. package/dist/runtime/commands/theme.js +196 -0
  353. package/dist/runtime/commands/undo.js +54 -22
  354. package/dist/runtime/commands/update.js +289 -0
  355. package/dist/runtime/commands/vim.js +140 -0
  356. package/dist/runtime/commands/worktree.js +177 -0
  357. package/dist/runtime/commands/worktrees.js +155 -0
  358. package/dist/runtime/deprecation-warning.js +69 -0
  359. package/dist/runtime/engine-exit-code.js +50 -0
  360. package/dist/runtime/headless-repl.js +195 -0
  361. package/dist/runtime/headless.js +548 -0
  362. package/dist/runtime/load-hooks-or-exit.js +71 -0
  363. package/dist/runtime/plan-decompose.js +531 -0
  364. package/dist/runtime/sigint-guard.js +272 -0
  365. package/dist/runtime/stream-renderer.js +195 -0
  366. package/dist/runtime/update-check.js +28 -28
  367. package/dist/runtime/version.js +65 -0
  368. package/dist/runtime/worktree-bootstrap.js +579 -0
  369. package/dist/skills/bundled/batch.js +617 -0
  370. package/dist/skills/bundled/index.js +45 -0
  371. package/dist/skills/bundled/loop.js +358 -0
  372. package/dist/skills/bundled/remember.js +383 -0
  373. package/dist/skills/bundled/simplify.js +289 -0
  374. package/dist/skills/bundled/skillify.js +373 -0
  375. package/dist/skills/bundled/stuck.js +558 -0
  376. package/dist/skills/bundled/verify.js +439 -0
  377. package/dist/testing/vcr.js +486 -0
  378. package/dist/tools/agent-tool.js +229 -0
  379. package/dist/tools/apply-patch.js +556 -0
  380. package/dist/tools/ask-user-question.js +337 -0
  381. package/dist/tools/ask-user.js +115 -0
  382. package/dist/tools/bash.js +624 -46
  383. package/dist/tools/brief.js +224 -0
  384. package/dist/tools/cron.js +433 -0
  385. package/dist/tools/enter-worktree.js +250 -0
  386. package/dist/tools/exit-worktree.js +147 -0
  387. package/dist/tools/file-tools.js +161 -44
  388. package/dist/tools/http-request.js +336 -0
  389. package/dist/tools/lsp-tools.js +565 -0
  390. package/dist/tools/mcp-tool.js +260 -0
  391. package/dist/tools/multi-edit.js +361 -0
  392. package/dist/tools/powershell.js +268 -0
  393. package/dist/tools/registry.js +142 -1
  394. package/dist/tools/server-tools.js +892 -0
  395. package/dist/tools/skill-tool.js +96 -0
  396. package/dist/tools/sleep.js +99 -0
  397. package/dist/tools/synthetic-output.js +133 -0
  398. package/dist/tools/tasks.js +208 -0
  399. package/dist/tools/todo-write.js +184 -0
  400. package/dist/tools/verify-plan-execution.js +295 -0
  401. package/dist/tools/web-fetch-injection-scanner.js +207 -0
  402. package/dist/tools/web-fetch.js +195 -10
  403. package/dist/tools/web-search.js +458 -0
  404. package/dist/tui/agent-progress-card.js +111 -0
  405. package/dist/tui/agent-tree.js +22 -1
  406. package/dist/tui/ask-modal.js +14 -14
  407. package/dist/tui/ask-user-question-chips.js +315 -0
  408. package/dist/tui/ask-user-question-prompt.js +203 -0
  409. package/dist/tui/compact-banner.js +81 -0
  410. package/dist/tui/conversation-pane.js +85 -11
  411. package/dist/tui/cost-table.js +111 -0
  412. package/dist/tui/device-flow.js +2 -2
  413. package/dist/tui/doctor-table.js +46 -0
  414. package/dist/tui/feedback-prompt.js +156 -0
  415. package/dist/tui/input-box.js +247 -32
  416. package/dist/tui/login-picker.js +3 -3
  417. package/dist/tui/markdown-render.js +6 -6
  418. package/dist/tui/multi-file-diff-approval.js +375 -0
  419. package/dist/tui/onboarding-wizard.js +240 -0
  420. package/dist/tui/permissions-picker.js +86 -0
  421. package/dist/tui/render.js +36 -1
  422. package/dist/tui/repl-render.js +405 -32
  423. package/dist/tui/repl-splash-art.js +16 -16
  424. package/dist/tui/repl-splash-mascot.js +48 -24
  425. package/dist/tui/repl-splash.js +22 -22
  426. package/dist/tui/repl.js +136 -43
  427. package/dist/tui/slash-palette.js +6 -6
  428. package/dist/tui/splash.js +2 -2
  429. package/dist/tui/status-bar.js +109 -31
  430. package/dist/tui/status-table.js +7 -0
  431. package/dist/tui/stickers-art.js +136 -0
  432. package/dist/tui/style-table.js +28 -0
  433. package/dist/tui/theme-table.js +29 -0
  434. package/dist/tui/thinking-spinner.js +123 -0
  435. package/dist/tui/tool-stream-pane.js +53 -4
  436. package/dist/tui/update-banner.js +27 -2
  437. package/dist/tui/vim-input.js +267 -0
  438. package/dist/tui/welcome-banner.js +107 -0
  439. package/dist/tui/welcome-data.js +293 -0
  440. package/dist/tui/workspace-context.js +2 -2
  441. package/docs/examples/codegraph.mcp.json +10 -0
  442. package/package.json +25 -7
  443. package/test/scenarios/codegen-create-file.scenario.txt +13 -0
  444. package/test/scenarios/compact-force.scenario.txt +12 -0
  445. package/test/scenarios/identity.scenario.txt +11 -0
  446. package/test/scenarios/persona-handoff.scenario.txt +12 -0
  447. package/test/scenarios/walkback.scenario.txt +12 -0
  448. package/dist/core/engine/compaction-hook.js +0 -154
@@ -0,0 +1,96 @@
1
+ import { listSkills } from '../core/skills/loader.js';
2
+ import { hashSkillDir, verifyTrust } from '../core/skills/trust.js';
3
+ export const SKILL_BODY_CAP_BYTES = 32 * 1024;
4
+ export const SKILL_LIST_CAP = 100;
5
+ export function skillList(ctx, input) {
6
+ const scope = input.scope ?? 'all';
7
+ const all = [];
8
+ if (scope === 'all' || scope === 'global') {
9
+ all.push(...listSkills('global', ctx.workspaceRoot));
10
+ }
11
+ if (scope === 'all' || scope === 'workspace') {
12
+ all.push(...listSkills('workspace', ctx.workspaceRoot));
13
+ }
14
+ // Dedup by name, prefer workspace scope when both exist (workspace
15
+ // overrides global per skills loader convention).
16
+ const byName = new Map();
17
+ for (const skill of all) {
18
+ const prev = byName.get(skill.name);
19
+ if (!prev || skill.scope === 'workspace') {
20
+ byName.set(skill.name, skill);
21
+ }
22
+ }
23
+ return Array.from(byName.values())
24
+ .slice(0, SKILL_LIST_CAP)
25
+ .map((skill) => ({
26
+ name: skill.name,
27
+ description: skill.frontmatter.description,
28
+ scope: skill.scope,
29
+ }));
30
+ }
31
+ export async function skillInvoke(ctx, input) {
32
+ if (!input.name || typeof input.name !== 'string') {
33
+ throw new Error('skill: name is required');
34
+ }
35
+ // Defense-in-depth: skill loader already validates slugs but the
36
+ // tool surface is operator-controlled.
37
+ if (!/^[a-zA-Z0-9_-]{1,128}$/.test(input.name)) {
38
+ throw new Error(`skill: invalid skill name shape: "${input.name}"`);
39
+ }
40
+ // Workspace scope wins over global (operator override). Mirrors
41
+ // SkillLoader convention.
42
+ const workspace = listSkills('workspace', ctx.workspaceRoot).find((s) => s.name === input.name);
43
+ const global = workspace
44
+ ? null
45
+ : listSkills('global', ctx.workspaceRoot).find((s) => s.name === input.name);
46
+ const skill = workspace ?? global;
47
+ if (!skill) {
48
+ throw new Error(`skill: not found: "${input.name}"`);
49
+ }
50
+ // β1a r1 : re-verify the on-disk skill payload against
51
+ // the trust manifest sha256 on EVERY invoke, not just at install
52
+ // time. Before this fix a post-install swap (malicious npm dep that
53
+ // touches `~/.pugi/skills/<name>/SKILL.md` after the operator
54
+ // approved the install) would bypass the trust gate — `listSkills`
55
+ // reads the body fresh from disk and the loader does no integrity
56
+ // check. The skill body lands directly in the model's tool result,
57
+ // so a mutated body is a prompt-injection vector against the agent
58
+ // loop's tool surface.
59
+ //
60
+ // Posture:
61
+ // - `trusted` → proceed (body is hash-pinned).
62
+ // - `unsigned` → refuse: the operator never approved this skill.
63
+ // This catches the case where a skill directory was dropped in
64
+ // manually (no `pugi skills install`) and the loader picked it
65
+ // up. Refusing is fail-closed.
66
+ // - `mismatch` → refuse + surface the recorded vs actual hashes
67
+ // so the operator can decide between re-trust and revoke.
68
+ //
69
+ // Performance: `hashSkillDir` walks the skill directory on every
70
+ // invoke. Skills are small (median 4-8 files, <50KB total) so the
71
+ // cost is sub-millisecond on warm cache. The β1a r1 spec exercises
72
+ // a mutated-body case; the existing skill-tool.spec.ts cases for
73
+ // happy-path use the `recordTrust` helper to seed the registry.
74
+ const actualHash = hashSkillDir(skill.dir);
75
+ const verdict = await verifyTrust('skill', skill.scope, skill.name, actualHash);
76
+ if (verdict.status === 'unsigned') {
77
+ throw new Error(`skill: refused to invoke "${skill.name}" — no trust entry (run \`pugi skills trust ${skill.name}\` to approve)`);
78
+ }
79
+ if (verdict.status === 'mismatch') {
80
+ throw new Error(`skill: refused to invoke "${skill.name}" — sha256 mismatch (recorded ${verdict.recorded.slice(0, 12)}…, actual ${verdict.actual.slice(0, 12)}…). Re-trust via \`pugi skills trust ${skill.name}\`.`);
81
+ }
82
+ const body = skill.body;
83
+ const truncated = Buffer.byteLength(body, 'utf8') > SKILL_BODY_CAP_BYTES;
84
+ const cappedBody = truncated
85
+ ? body.slice(0, SKILL_BODY_CAP_BYTES) +
86
+ `\n\n(... truncated at ${SKILL_BODY_CAP_BYTES} bytes — see \`pugi skills info ${skill.name}\` for full text)`
87
+ : body;
88
+ return {
89
+ name: skill.name,
90
+ scope: skill.scope,
91
+ description: skill.frontmatter.description,
92
+ body: cappedBody,
93
+ truncated,
94
+ };
95
+ }
96
+ //# sourceMappingURL=skill-tool.js.map
@@ -0,0 +1,99 @@
1
+ /**
2
+ * sleep tool — wall-clock pause primitive (tool gap pack).
3
+ *
4
+ * Closes a parity gap with the upstream tool's tool surface. The model calls
5
+ * this when it needs a fixed delay before its next action (waiting on
6
+ * a process the operator owns, throttling a poll loop). The call
7
+ * counts against `--max-turns` like every other tool dispatch, so the
8
+ * budget gate naturally caps abuse.
9
+ *
10
+ * Operator guidance: prefer a real poll loop (read + grep + retry) over
11
+ * blind sleep. The tool exists for the cases where polling is not an
12
+ * option (a fixed cooldown between API calls, a deterministic settle
13
+ * window for a build) — most agent flows do NOT want it.
14
+ *
15
+ * Wire shape:
16
+ * args: { seconds: number }
17
+ * - integer in [1, 600]; non-integer / out-of-range rejects
18
+ * at parse time with a sentinel string.
19
+ * return: { ok: true, sleptMs: number } serialised JSON.
20
+ *
21
+ * No side effects beyond the wall-clock delay; nothing on disk, no
22
+ * subprocesses, no environment mutation.
23
+ *
24
+ * Brand voice: English only, no emoji, no banned words.
25
+ */
26
+ /** Hard caps. The lower bound rejects zero / negative inputs at parse
27
+ * time so the model can self-correct; the upper bound matches the
28
+ * standard tool timeout budget used elsewhere in the CLI. */
29
+ export const SLEEP_MIN_SECONDS = 1;
30
+ export const SLEEP_MAX_SECONDS = 600;
31
+ /** Sentinel prefix returned when input validation rejects the call. */
32
+ export const SLEEP_INVALID_ARGS = 'SLEEP_INVALID_ARGS';
33
+ /**
34
+ * Validate the raw arguments. Returns the typed value on success or a
35
+ * `SLEEP_INVALID_ARGS: ...` sentinel string. Non-integer values reject
36
+ * because partial seconds invite drift across platforms; the model
37
+ * should round explicitly at the call site.
38
+ */
39
+ export function parseSleepArgs(raw) {
40
+ if (typeof raw !== 'object' || raw === null || Array.isArray(raw)) {
41
+ return `${SLEEP_INVALID_ARGS}: arguments must be a JSON object`;
42
+ }
43
+ const obj = raw;
44
+ const seconds = obj['seconds'];
45
+ if (typeof seconds !== 'number' || !Number.isFinite(seconds)) {
46
+ return `${SLEEP_INVALID_ARGS}: seconds must be a finite number`;
47
+ }
48
+ if (!Number.isInteger(seconds)) {
49
+ return `${SLEEP_INVALID_ARGS}: seconds must be an integer`;
50
+ }
51
+ if (seconds < SLEEP_MIN_SECONDS) {
52
+ return `${SLEEP_INVALID_ARGS}: seconds must be >= ${SLEEP_MIN_SECONDS}`;
53
+ }
54
+ if (seconds > SLEEP_MAX_SECONDS) {
55
+ return `${SLEEP_INVALID_ARGS}: seconds must be <= ${SLEEP_MAX_SECONDS}`;
56
+ }
57
+ return { seconds };
58
+ }
59
+ /**
60
+ * Dispatch entry point. Validates input, awaits the wall-clock delay,
61
+ * and returns the structured result envelope as JSON.
62
+ *
63
+ * On validation failure returns the sentinel string directly (no throw)
64
+ * so the engine adapter surfaces it as a recoverable tool result and
65
+ * the model can self-correct the arguments.
66
+ */
67
+ export async function dispatchSleep(ctx, raw) {
68
+ const parsed = parseSleepArgs(raw);
69
+ if (typeof parsed === 'string') {
70
+ return parsed;
71
+ }
72
+ const ms = parsed.seconds * 1_000;
73
+ const timer = ctx.timer ?? ((cb, delay) => setTimeout(cb, delay));
74
+ await new Promise((resolveDelay) => {
75
+ timer(resolveDelay, ms);
76
+ });
77
+ const result = { ok: true, sleptMs: ms };
78
+ return JSON.stringify(result);
79
+ }
80
+ /**
81
+ * JSON-Schema fragment the schema builder advertises to the model.
82
+ * Hand-written for parity with the rest of the tool surface (see the
83
+ * note on `briefJsonSchema` for why we do not pull in zod-to-json-schema).
84
+ */
85
+ export const sleepJsonSchema = {
86
+ type: 'object',
87
+ additionalProperties: false,
88
+ required: ['seconds'],
89
+ properties: {
90
+ seconds: {
91
+ type: 'integer',
92
+ minimum: SLEEP_MIN_SECONDS,
93
+ maximum: SLEEP_MAX_SECONDS,
94
+ description: `Wall-clock pause in seconds. Integer in [${SLEEP_MIN_SECONDS}, ${SLEEP_MAX_SECONDS}]. ` +
95
+ 'Prefer a real poll loop over blind sleep; this tool counts against --max-turns.',
96
+ },
97
+ },
98
+ };
99
+ //# sourceMappingURL=sleep.js.map
@@ -0,0 +1,133 @@
1
+ /**
2
+ * synthetic_output tool — operator-readable echo helper (tool gap
3
+ * pack). EXPERIMENTAL / engine-only.
4
+ *
5
+ * Test fixture cousin of `brief`. Whereas `brief` persists a structured
6
+ * record to `.pugi/briefs/<session>.jsonl`, `synthetic_output` writes
7
+ * the supplied text VERBATIM к the requested stream (`stdout` or
8
+ * `stderr`). The use case is the engine-side test harness: a spec wants
9
+ * to assert that "the loop ran this tool with this payload" without
10
+ * spinning up the entire dispatch pipeline, AND wants to observe the
11
+ * write the same way an operator would. Production agent flows should
12
+ * prefer `brief` because the structured record survives crashes — the
13
+ * stream write does not.
14
+ *
15
+ * The tool is NOT exposed as a slash command. The schema is advertised
16
+ * to the engine only when the executor is built with an
17
+ * `allowSyntheticOutput: true` opt-in. Customer CLIs leave it off so
18
+ * the model cannot use it as a side-channel to bypass the normal tool
19
+ * result envelope (which is logged, classified, hooked, etc.).
20
+ *
21
+ * Wire shape:
22
+ * args: { stream: 'stdout'|'stderr', text: string }
23
+ * - text is capped at 16 KiB UTF-8; over-cap rejects with
24
+ * the SYNTHETIC_OUTPUT_TOO_LARGE sentinel.
25
+ * side: raw `process.stdout.write(text)` or `process.stderr.write(text)`.
26
+ * return: short JSON envelope { ok, stream, bytes } so the engine
27
+ * loop can audit the call without re-reading the streamed
28
+ * bytes (which it does not buffer).
29
+ *
30
+ * Atomicity: writes go to the live process stream; partial writes are
31
+ * the stream's responsibility, not the tool's. The tool does NOT add a
32
+ * trailing newline — the model controls the exact bytes. This is the
33
+ * design point that makes it a useful test fixture (specs assert on
34
+ * verbatim bytes).
35
+ *
36
+ * Brand voice: English only, no emoji, no banned words.
37
+ */
38
+ /** Per-call byte cap. Mirrors the bash tool's stdout/stderr cap so the
39
+ * model cannot blow either pane with a single synthetic flush. */
40
+ export const SYNTHETIC_OUTPUT_MAX_BYTES = 16 * 1_024;
41
+ /** Canonical stream values. */
42
+ export const SYNTHETIC_OUTPUT_STREAMS = ['stdout', 'stderr'];
43
+ /** Sentinel returned when input validation rejects the call. */
44
+ export const SYNTHETIC_OUTPUT_INVALID_ARGS = 'SYNTHETIC_OUTPUT_INVALID_ARGS';
45
+ /** Sentinel returned when the encoded text exceeds the per-call cap.
46
+ * Distinct from the args-schema failure so the model knows to shorten
47
+ * the payload rather than change the shape. */
48
+ export const SYNTHETIC_OUTPUT_TOO_LARGE = 'SYNTHETIC_OUTPUT_TOO_LARGE';
49
+ /**
50
+ * Validate the raw arguments. Returns the typed value on success or a
51
+ * `SYNTHETIC_OUTPUT_INVALID_ARGS: ...` sentinel string.
52
+ */
53
+ export function parseSyntheticOutputArgs(raw) {
54
+ if (typeof raw !== 'object' || raw === null || Array.isArray(raw)) {
55
+ return `${SYNTHETIC_OUTPUT_INVALID_ARGS}: arguments must be a JSON object`;
56
+ }
57
+ const obj = raw;
58
+ const issues = [];
59
+ const stream = obj['stream'];
60
+ if (typeof stream !== 'string') {
61
+ issues.push('stream: must be a string');
62
+ }
63
+ else if (!SYNTHETIC_OUTPUT_STREAMS.includes(stream)) {
64
+ issues.push(`stream: must be one of ${SYNTHETIC_OUTPUT_STREAMS.join('|')}`);
65
+ }
66
+ const text = obj['text'];
67
+ if (typeof text !== 'string') {
68
+ issues.push('text: must be a string');
69
+ }
70
+ if (issues.length > 0) {
71
+ return `${SYNTHETIC_OUTPUT_INVALID_ARGS}: ${issues.join('; ')}`;
72
+ }
73
+ return {
74
+ stream: stream,
75
+ text: text,
76
+ };
77
+ }
78
+ /**
79
+ * Dispatch entry point. Validates input, writes the text verbatim to
80
+ * the requested stream, and returns the structured envelope as JSON.
81
+ *
82
+ * Returns sentinel strings (no throw) on recoverable failures so the
83
+ * engine adapter surfaces them as tool results.
84
+ */
85
+ export function dispatchSyntheticOutput(ctx, raw) {
86
+ const parsed = parseSyntheticOutputArgs(raw);
87
+ if (typeof parsed === 'string') {
88
+ return parsed;
89
+ }
90
+ const bytes = Buffer.byteLength(parsed.text, 'utf8');
91
+ if (bytes > SYNTHETIC_OUTPUT_MAX_BYTES) {
92
+ return `${SYNTHETIC_OUTPUT_TOO_LARGE}: encoded text exceeds ${SYNTHETIC_OUTPUT_MAX_BYTES} bytes`;
93
+ }
94
+ // Resolve writers once per call so a spec can override stdout while
95
+ // letting stderr fall through to the real process stream.
96
+ const writer = parsed.stream === 'stdout'
97
+ ? (ctx.stdoutWrite ?? defaultStdoutWrite)
98
+ : (ctx.stderrWrite ?? defaultStderrWrite);
99
+ writer(parsed.text);
100
+ const result = {
101
+ ok: true,
102
+ stream: parsed.stream,
103
+ bytes,
104
+ };
105
+ return JSON.stringify(result);
106
+ }
107
+ function defaultStdoutWrite(chunk) {
108
+ process.stdout.write(chunk);
109
+ }
110
+ function defaultStderrWrite(chunk) {
111
+ process.stderr.write(chunk);
112
+ }
113
+ /**
114
+ * JSON-Schema fragment the schema builder advertises to the model.
115
+ * Hand-written for parity with the rest of the tool surface.
116
+ */
117
+ export const syntheticOutputJsonSchema = {
118
+ type: 'object',
119
+ additionalProperties: false,
120
+ required: ['stream', 'text'],
121
+ properties: {
122
+ stream: {
123
+ type: 'string',
124
+ enum: [...SYNTHETIC_OUTPUT_STREAMS],
125
+ description: 'Destination stream: stdout or stderr.',
126
+ },
127
+ text: {
128
+ type: 'string',
129
+ description: `Verbatim bytes to write. Capped at ${SYNTHETIC_OUTPUT_MAX_BYTES} bytes UTF-8.`,
130
+ },
131
+ },
132
+ };
133
+ //# sourceMappingURL=synthetic-output.js.map
@@ -0,0 +1,208 @@
1
+ /**
2
+ * task_* tool family — β1 T1/T6 (TodoWrite + agent task ledger).
3
+ *
4
+ * Mirrors the standard tool's TodoWrite tool surface so a model trained on
5
+ * the upstream tool grammar speaks Pugi's variant verbatim. Four ops:
6
+ *
7
+ * - `task_create` — append a new task to the session's todo ledger.
8
+ * Returns the assigned id.
9
+ * - `task_get` — fetch a single task by id.
10
+ * - `task_list` — list every task in the current session, ordered
11
+ * by createdAt ascending.
12
+ * - `task_update` — mutate status/title/notes of an existing task.
13
+ * Append-only journal — every mutation lands as a
14
+ * fresh JSONL line and the latest line per id wins
15
+ * on `task_list` / `task_get` reads.
16
+ *
17
+ * Persistence: append-only JSONL at
18
+ * `.pugi/sessions/<sessionId>/tasks.jsonl`. Append-only keeps crash
19
+ * recovery trivial — a partial write at the end of the file is the
20
+ * worst case and the parser drops the malformed tail line.
21
+ *
22
+ * Scope: this is the local-side ledger surface. Anvil-side mirror
23
+ * (cabinet `/projects/[id]/tasks` page) ships in β5 once the session-
24
+ * memory hook lands; until then the ledger is purely local.
25
+ */
26
+ import { appendFileSync, chmodSync, existsSync, mkdirSync, readFileSync, } from 'node:fs';
27
+ import { dirname, join } from 'node:path';
28
+ import { randomUUID } from 'node:crypto';
29
+ function ledgerPath(ctx) {
30
+ // Defense-in-depth: the sessionId is supposed to be a UUID minted by
31
+ // openSession() but the tool surface is operator-facing. Validate the
32
+ // shape before composing a path — refuse anything that contains
33
+ // separators or shell wildcards.
34
+ if (!/^[a-zA-Z0-9_-]{1,128}$/.test(ctx.sessionId)) {
35
+ throw new Error(`task_*: invalid sessionId shape: "${ctx.sessionId}"`);
36
+ }
37
+ return join(ctx.workspaceRoot, '.pugi', 'sessions', ctx.sessionId, 'tasks.jsonl');
38
+ }
39
+ function nowIso(ctx) {
40
+ return (ctx.now ? ctx.now() : new Date()).toISOString();
41
+ }
42
+ function ensureDir(path) {
43
+ // β1a r1 : switched from POSIX-only
44
+ // `path.slice(0, path.lastIndexOf('/'))` to `path.dirname()` so
45
+ // Windows path separators (`\`) work. Also chmod the per-session
46
+ // directory to 0o700 — the tasks ledger carries operator-confidential
47
+ // brief text, status notes, and timing metadata that should not be
48
+ // world-readable through an inherited umask.
49
+ const dir = dirname(path);
50
+ if (!existsSync(dir)) {
51
+ mkdirSync(dir, { recursive: true });
52
+ try {
53
+ chmodSync(dir, 0o700);
54
+ }
55
+ catch {
56
+ // Best-effort. POSIX permission setting is a no-op on Windows
57
+ // NTFS, and the dir-creation race with another concurrent task
58
+ // tool call is the only realistic failure case. The 0o600 mode
59
+ // on the JSONL file itself remains the primary guard; the dir
60
+ // chmod is defense in depth for tools that walk `.pugi/`.
61
+ }
62
+ }
63
+ }
64
+ function readJournal(ctx) {
65
+ const path = ledgerPath(ctx);
66
+ if (!existsSync(path))
67
+ return [];
68
+ const raw = readFileSync(path, 'utf8');
69
+ const out = [];
70
+ for (const line of raw.split('\n')) {
71
+ if (!line.trim())
72
+ continue;
73
+ try {
74
+ const parsed = JSON.parse(line);
75
+ if ((parsed.op === 'create' || parsed.op === 'update') &&
76
+ typeof parsed.id === 'string' &&
77
+ typeof parsed.at === 'string') {
78
+ out.push(parsed);
79
+ }
80
+ }
81
+ catch {
82
+ // Drop malformed line (partial-write tail or external corruption).
83
+ // The append-only design guarantees only the LAST line can be bad
84
+ // — everything before it is whole.
85
+ }
86
+ }
87
+ return out;
88
+ }
89
+ function fold(journal) {
90
+ const out = new Map();
91
+ for (const entry of journal) {
92
+ if (entry.op === 'create') {
93
+ if (!entry.title)
94
+ continue;
95
+ out.set(entry.id, {
96
+ id: entry.id,
97
+ title: entry.title,
98
+ status: entry.status ?? 'pending',
99
+ ...(entry.notes !== undefined ? { notes: entry.notes } : {}),
100
+ createdAt: entry.at,
101
+ updatedAt: entry.at,
102
+ });
103
+ }
104
+ else {
105
+ const prev = out.get(entry.id);
106
+ if (!prev)
107
+ continue; // update before create — drop silently
108
+ out.set(entry.id, {
109
+ ...prev,
110
+ ...(entry.title !== undefined ? { title: entry.title } : {}),
111
+ ...(entry.status !== undefined ? { status: entry.status } : {}),
112
+ ...(entry.notes !== undefined ? { notes: entry.notes } : {}),
113
+ updatedAt: entry.at,
114
+ });
115
+ }
116
+ }
117
+ return out;
118
+ }
119
+ function appendEntry(ctx, entry) {
120
+ const path = ledgerPath(ctx);
121
+ ensureDir(path);
122
+ appendFileSync(path, `${JSON.stringify(entry)}\n`, {
123
+ encoding: 'utf8',
124
+ mode: 0o600,
125
+ });
126
+ }
127
+ export function taskCreate(ctx, input) {
128
+ const title = input.title?.trim();
129
+ if (!title) {
130
+ throw new Error('task_create: title is required');
131
+ }
132
+ if (title.length > 2_000) {
133
+ throw new Error('task_create: title exceeds 2000 char cap');
134
+ }
135
+ const status = input.status ?? 'pending';
136
+ if (!isValidStatus(status)) {
137
+ throw new Error(`task_create: invalid status "${status}"`);
138
+ }
139
+ const id = `task-${randomUUID()}`;
140
+ const at = nowIso(ctx);
141
+ const entry = {
142
+ op: 'create',
143
+ id,
144
+ title,
145
+ status,
146
+ at,
147
+ ...(input.notes !== undefined ? { notes: input.notes } : {}),
148
+ };
149
+ appendEntry(ctx, entry);
150
+ return {
151
+ id,
152
+ title,
153
+ status,
154
+ ...(input.notes !== undefined ? { notes: input.notes } : {}),
155
+ createdAt: at,
156
+ updatedAt: at,
157
+ };
158
+ }
159
+ export function taskGet(ctx, id) {
160
+ if (typeof id !== 'string' || id.length === 0) {
161
+ throw new Error('task_get: id is required');
162
+ }
163
+ const folded = fold(readJournal(ctx));
164
+ return folded.get(id) ?? null;
165
+ }
166
+ export function taskList(ctx) {
167
+ const folded = fold(readJournal(ctx));
168
+ return Array.from(folded.values()).sort((a, b) => a.createdAt.localeCompare(b.createdAt));
169
+ }
170
+ export function taskUpdate(ctx, input) {
171
+ if (!input.id)
172
+ throw new Error('task_update: id is required');
173
+ const folded = fold(readJournal(ctx));
174
+ const existing = folded.get(input.id);
175
+ if (!existing) {
176
+ throw new Error(`task_update: unknown id "${input.id}"`);
177
+ }
178
+ if (input.status !== undefined && !isValidStatus(input.status)) {
179
+ throw new Error(`task_update: invalid status "${input.status}"`);
180
+ }
181
+ if (input.title !== undefined && input.title.trim().length === 0) {
182
+ throw new Error('task_update: title cannot be empty');
183
+ }
184
+ const at = nowIso(ctx);
185
+ const entry = {
186
+ op: 'update',
187
+ id: input.id,
188
+ at,
189
+ ...(input.title !== undefined ? { title: input.title } : {}),
190
+ ...(input.status !== undefined ? { status: input.status } : {}),
191
+ ...(input.notes !== undefined ? { notes: input.notes } : {}),
192
+ };
193
+ appendEntry(ctx, entry);
194
+ return {
195
+ ...existing,
196
+ ...(input.title !== undefined ? { title: input.title } : {}),
197
+ ...(input.status !== undefined ? { status: input.status } : {}),
198
+ ...(input.notes !== undefined ? { notes: input.notes } : {}),
199
+ updatedAt: at,
200
+ };
201
+ }
202
+ function isValidStatus(status) {
203
+ return (status === 'pending' ||
204
+ status === 'in_progress' ||
205
+ status === 'completed' ||
206
+ status === 'cancelled');
207
+ }
208
+ //# sourceMappingURL=tasks.js.map