@push.rocks/smartagent 1.2.3 → 1.2.4

package/readme.md

@@ -1,21 +1,31 @@
 # @push.rocks/smartagent
-A dual-agent agentic framework with Driver and Guardian agents for safe, policy-controlled AI task execution.
+
+A dual-agent agentic framework with **Driver** and **Guardian** agents for safe, policy-controlled AI task execution. 🤖🛡️
 
 ## Install
+
 ```bash
 npm install @push.rocks/smartagent
 # or
 pnpm install @push.rocks/smartagent
 ```
 
+## Issue Reporting and Security
+
+For reporting bugs, issues, or security vulnerabilities, please visit [community.foss.global/](https://community.foss.global/). This is the central community hub for all issue reporting. Developers who sign and comply with our contribution agreement and go through identification can also get a [code.foss.global/](https://code.foss.global/) account to submit Pull Requests directly.
+
 ## Overview
 
-SmartAgent implements a dual-agent architecture:
+SmartAgent implements a **dual-agent architecture** where AI safety isn't just an afterthought—it's baked into the core design:
 
-- **Driver Agent**: Executes tasks, reasons about goals, and proposes tool calls
-- **Guardian Agent**: Evaluates tool call proposals against a policy prompt, approving or rejecting with feedback
+- **🎯 Driver Agent**: The executor. Reasons about goals, plans steps, and proposes tool calls
+- **🛡️ Guardian Agent**: The gatekeeper. Evaluates every tool call against your policy, approving or rejecting with feedback
 
-This design ensures safe tool use through AI-based policy evaluation rather than rigid programmatic rules.
+This design ensures safe tool use through **AI-based policy evaluation** rather than rigid programmatic rules. The Guardian can understand context, nuance, and intent—catching dangerous operations that simple regex or allowlists would miss.
+
+### Why Dual-Agent?
+
+Traditional AI agents have a fundamental problem: they're given tools and expected to use them responsibly. SmartAgent adds a second AI specifically trained to evaluate whether each action is safe and appropriate. Think of it as separation of concerns, but for AI safety.
 
 ## Architecture
 
@@ -89,8 +99,11 @@ await orchestrator.stop();
 
 ## Standard Tools
 
-### FilesystemTool
-File and directory operations using `@push.rocks/smartfs`.
+SmartAgent comes with five battle-tested tools out of the box:
+
+### 🗂️ FilesystemTool
+
+File and directory operations powered by `@push.rocks/smartfs`.
 
 **Actions**: `read`, `write`, `append`, `list`, `delete`, `exists`, `stat`, `copy`, `move`, `mkdir`
 
@@ -104,7 +117,15 @@ File and directory operations using `@push.rocks/smartfs`.
 </tool_call>
 ```
 
-### HttpTool
+**Scoped Filesystem**: Lock file operations to a specific directory:
+
+```typescript
+// Only allow access within a specific directory
+orchestrator.registerScopedFilesystemTool('/home/user/workspace');
+```
+
+### 🌐 HttpTool
+
 HTTP requests using `@push.rocks/smartrequest`.
 
 **Actions**: `get`, `post`, `put`, `patch`, `delete`
@@ -113,13 +134,14 @@ HTTP requests using `@push.rocks/smartrequest`.
 <tool_call>
   <tool>http</tool>
   <action>get</action>
-  <params>{"url": "https://api.example.com/data"}</params>
+  <params>{"url": "https://api.example.com/data", "headers": {"Authorization": "Bearer token"}}</params>
   <reasoning>Fetching data from the API endpoint</reasoning>
 </tool_call>
 ```
 
-### ShellTool
-Secure shell command execution using `@push.rocks/smartshell` with `execSpawn` (no shell injection).
+### 💻 ShellTool
+
+Secure shell command execution using `@push.rocks/smartshell` with `execSpawn` (no shell injection possible).
 
 **Actions**: `execute`, `which`
 
@@ -132,7 +154,10 @@ Secure shell command execution using `@push.rocks/smartshell` with `execSpawn` (
 </tool_call>
 ```
 
-### BrowserTool
+> 🔒 **Security Note**: The shell tool uses `execSpawn` with `shell: false`, meaning command and arguments are passed separately. This makes shell injection attacks impossible.
+
+### 🌍 BrowserTool
+
 Web page interaction using `@push.rocks/smartbrowser` (Puppeteer-based).
 
 **Actions**: `screenshot`, `pdf`, `evaluate`, `getPageContent`
@@ -146,17 +171,18 @@ Web page interaction using `@push.rocks/smartbrowser` (Puppeteer-based).
 </tool_call>
 ```
 
-### DenoTool
-Execute TypeScript/JavaScript code in a sandboxed Deno environment using `@push.rocks/smartdeno`.
+### 🦕 DenoTool
+
+Execute TypeScript/JavaScript code in a **sandboxed Deno environment** with fine-grained permission control.
 
 **Actions**: `execute`, `executeWithResult`
 
 **Permissions**: `all`, `env`, `ffi`, `hrtime`, `net`, `read`, `run`, `sys`, `write`
 
-By default, code runs fully sandboxed with no permissions. Permissions must be explicitly requested.
+By default, code runs **fully sandboxed with no permissions**. Permissions must be explicitly requested and are subject to Guardian approval.
 
 ```typescript
-// Simple code execution
+// Simple code execution (sandboxed, no permissions)
 <tool_call>
   <tool>deno</tool>
   <action>execute</action>
@@ -188,7 +214,10 @@ By default, code runs fully sandboxed with no permissions. Permissions must be e
 
 ## Guardian Policy Examples
 
-### Strict Security Policy
+The Guardian's power comes from your policy. Here are battle-tested examples:
+
+### 🔐 Strict Security Policy
+
 ```typescript
 const securityPolicy = `
 SECURITY POLICY:
@@ -204,7 +233,8 @@ When rejecting, always explain:
 `;
 ```
 
-### Development Environment Policy
+### 🛠️ Development Environment Policy
+
 ```typescript
 const devPolicy = `
 DEVELOPMENT POLICY:
@@ -221,7 +251,8 @@ Always verify:
 `;
 ```
 
-### Deno Code Execution Policy
+### 🦕 Deno Code Execution Policy
+
 ```typescript
 const denoPolicy = `
 DENO CODE EXECUTION POLICY:
@@ -253,6 +284,9 @@ interface IDualAgentOptions {
   groqToken?: string;
   xaiToken?: string;
 
+  // Use existing SmartAi instance (optional - avoids duplicate providers)
+  smartAiInstance?: SmartAi;
+
   // Provider selection
   defaultProvider?: TProvider;      // For both Driver and Guardian
   guardianProvider?: TProvider;     // Optional: separate provider for Guardian
@@ -278,6 +312,14 @@ interface IDualAgentRunResult {
   history: IAgentMessage[];   // Full conversation history
   status: TDualAgentRunStatus; // 'completed' | 'max_iterations_reached' | etc.
 }
+
+type TDualAgentRunStatus =
+  | 'completed'
+  | 'in_progress'
+  | 'max_iterations_reached'
+  | 'max_rejections_reached'
+  | 'clarification_needed'
+  | 'error';
 ```
 
 ## Custom Tools
@@ -306,10 +348,12 @@ class MyCustomTool extends BaseToolWrapper {
   ];
 
   public async initialize(): Promise<void> {
+    // Setup your tool (called when orchestrator.start() runs)
     this.isInitialized = true;
   }
 
   public async cleanup(): Promise<void> {
+    // Cleanup resources (called when orchestrator.stop() runs)
     this.isInitialized = false;
   }
 
@@ -327,6 +371,7 @@ class MyCustomTool extends BaseToolWrapper {
     return { success: false, error: 'Unknown action' };
   }
 
+  // Human-readable summary for Guardian evaluation
   public getCallSummary(action: string, params: Record<string, unknown>): string {
     return `Custom action "${action}" with input "${params.input}"`;
   }
@@ -336,32 +381,111 @@ class MyCustomTool extends BaseToolWrapper {
 orchestrator.registerTool(new MyCustomTool());
 ```
 
+## Reusing SmartAi Instances
+
+If you already have a `@push.rocks/smartai` instance, you can share it:
+
+```typescript
+import { SmartAi } from '@push.rocks/smartai';
+import { DualAgentOrchestrator } from '@push.rocks/smartagent';
+
+const smartai = new SmartAi({ openaiToken: 'sk-...' });
+await smartai.start();
+
+const orchestrator = new DualAgentOrchestrator({
+  smartAiInstance: smartai,  // Reuse existing instance
+  guardianPolicyPrompt: '...',
+});
+
+await orchestrator.start();
+// ... use orchestrator ...
+await orchestrator.stop();
+
+// SmartAi instance lifecycle is managed separately
+await smartai.stop();
+```
+
 ## Supported Providers
 
+SmartAgent supports all providers from `@push.rocks/smartai`:
+
 | Provider | Driver | Guardian |
 |----------|:------:|:--------:|
-| OpenAI | Yes | Yes |
-| Anthropic | Yes | Yes |
-| Perplexity | Yes | Yes |
-| Groq | Yes | Yes |
-| Ollama | Yes | Yes |
-| XAI | Yes | Yes |
+| OpenAI | ✅ | ✅ |
+| Anthropic | ✅ | ✅ |
+| Perplexity | ✅ | ✅ |
+| Groq | ✅ | ✅ |
+| Ollama | ✅ | ✅ |
+| XAI | ✅ | ✅ |
+| Exo | ✅ | ✅ |
+
+**💡 Pro tip**: Use a faster/cheaper model for Guardian (like Groq) and a more capable model for Driver:
+
+```typescript
+const orchestrator = new DualAgentOrchestrator({
+  openaiToken: 'sk-...',
+  groqToken: 'gsk-...',
+  defaultProvider: 'openai',    // Driver uses OpenAI
+  guardianProvider: 'groq',     // Guardian uses Groq (faster, cheaper)
+  guardianPolicyPrompt: '...',
+});
+```
+
+## API Reference
+
+### DualAgentOrchestrator
+
+| Method | Description |
+|--------|-------------|
+| `start()` | Initialize all tools and AI providers |
+| `stop()` | Cleanup all tools and resources |
+| `run(task: string)` | Execute a task and return result |
+| `continueTask(input: string)` | Continue a task with user input |
+| `registerTool(tool)` | Register a custom tool |
+| `registerStandardTools()` | Register all built-in tools |
+| `registerScopedFilesystemTool(basePath)` | Register filesystem tool with path restriction |
+| `setGuardianPolicy(policy)` | Update Guardian policy at runtime |
+| `getHistory()` | Get conversation history |
+| `getToolNames()` | Get list of registered tool names |
+| `isActive()` | Check if orchestrator is running |
+
+### Exports
+
+```typescript
+// Main classes
+export { DualAgentOrchestrator } from '@push.rocks/smartagent';
+export { DriverAgent } from '@push.rocks/smartagent';
+export { GuardianAgent } from '@push.rocks/smartagent';
+
+// Tools
+export { BaseToolWrapper } from '@push.rocks/smartagent';
+export { FilesystemTool } from '@push.rocks/smartagent';
+export { HttpTool } from '@push.rocks/smartagent';
+export { ShellTool } from '@push.rocks/smartagent';
+export { BrowserTool } from '@push.rocks/smartagent';
+export { DenoTool } from '@push.rocks/smartagent';
+
+// Types and interfaces
+export * from '@push.rocks/smartagent'; // All interfaces
+```
 
 ## License and Legal Information
 
-This repository contains open-source code that is licensed under the MIT License. A copy of the MIT License can be found in the [license](license) file within this repository.
+This repository contains open-source code licensed under the MIT License. A copy of the license can be found in the [LICENSE](./LICENSE) file.
 
 **Please note:** The MIT License does not grant permission to use the trade names, trademarks, service marks, or product names of the project, except as required for reasonable and customary use in describing the origin of the work and reproducing the content of the NOTICE file.
 
 ### Trademarks
 
-This project is owned and maintained by Task Venture Capital GmbH. The names and logos associated with Task Venture Capital GmbH and any related products or services are trademarks of Task Venture Capital GmbH and are not included within the scope of the MIT license granted herein. Use of these trademarks must comply with Task Venture Capital GmbH's Trademark Guidelines, and any usage must be approved in writing by Task Venture Capital GmbH.
+This project is owned and maintained by Task Venture Capital GmbH. The names and logos associated with Task Venture Capital GmbH and any related products or services are trademarks of Task Venture Capital GmbH or third parties, and are not included within the scope of the MIT license granted herein.
+
+Use of these trademarks must comply with Task Venture Capital GmbH's Trademark Guidelines or the guidelines of the respective third-party owners, and any usage must be approved in writing. Third-party trademarks used herein are the property of their respective owners and used only in a descriptive manner, e.g. for an implementation of an API or similar.
 
 ### Company Information
 
 Task Venture Capital GmbH
-Registered at District court Bremen HRB 35230 HB, Germany
+Registered at District Court Bremen HRB 35230 HB, Germany
 
-For any legal inquiries or if you require further information, please contact us via email at hello@task.vc.
+For any legal inquiries or further information, please contact us via email at hello@task.vc.
 
 By using this repository, you acknowledge that you have read this section, agree to comply with its terms, and understand that the licensing of the code does not imply endorsement by Task Venture Capital GmbH of any derivative works.

package/ts/smartagent.classes.driveragent.ts

@@ -2,6 +2,16 @@ import * as plugins from './plugins.js';
 import * as interfaces from './smartagent.interfaces.js';
 import type { BaseToolWrapper } from './smartagent.tools.base.js';
 
+/**
+ * Options for configuring the DriverAgent
+ */
+export interface IDriverAgentOptions {
+  /** Custom system message for the driver */
+  systemMessage?: string;
+  /** Maximum history messages to pass to API (default: 20). Set to 0 for unlimited. */
+  maxHistoryMessages?: number;
+}
+
 /**
  * DriverAgent - Executes tasks by reasoning and proposing tool calls
  * Works in conjunction with GuardianAgent for approval
@@ -9,15 +19,24 @@ import type { BaseToolWrapper } from './smartagent.tools.base.js';
 export class DriverAgent {
   private provider: plugins.smartai.MultiModalModel;
   private systemMessage: string;
+  private maxHistoryMessages: number;
   private messageHistory: plugins.smartai.ChatMessage[] = [];
   private tools: Map<string, BaseToolWrapper> = new Map();
 
   constructor(
     provider: plugins.smartai.MultiModalModel,
-    systemMessage?: string
+    options?: IDriverAgentOptions | string
   ) {
     this.provider = provider;
-    this.systemMessage = systemMessage || this.getDefaultSystemMessage();
+
+    // Support both legacy string systemMessage and new options object
+    if (typeof options === 'string') {
+      this.systemMessage = options || this.getDefaultSystemMessage();
+      this.maxHistoryMessages = 20;
+    } else {
+      this.systemMessage = options?.systemMessage || this.getDefaultSystemMessage();
+      this.maxHistoryMessages = options?.maxHistoryMessages ?? 20;
+    }
   }
 
   /**
@@ -105,8 +124,20 @@ export class DriverAgent {
       fullSystemMessage = this.getNoToolsSystemMessage();
     }
 
-    // Get response from provider (pass all but last user message as history)
-    const historyForChat = this.messageHistory.slice(0, -1);
+    // Get response from provider with history windowing
+    // Keep original task and most recent messages to avoid token explosion
+    let historyForChat: plugins.smartai.ChatMessage[];
+    const fullHistory = this.messageHistory.slice(0, -1); // Exclude the just-added message
+
+    if (this.maxHistoryMessages > 0 && fullHistory.length > this.maxHistoryMessages) {
+      // Keep the original task (first message) and most recent messages
+      historyForChat = [
+        fullHistory[0], // Original task
+        ...fullHistory.slice(-(this.maxHistoryMessages - 1)), // Recent messages
+      ];
+    } else {
+      historyForChat = fullHistory;
+    }
 
     const response = await this.provider.chat({
       systemMessage: fullSystemMessage,

package/ts/smartagent.classes.dualagent.ts

@@ -30,6 +30,8 @@ export class DualAgentOrchestrator {
       maxIterations: 20,
       maxConsecutiveRejections: 3,
       defaultProvider: 'openai',
+      maxResultChars: 15000,
+      maxHistoryMessages: 20,
       ...options,
     };
 
@@ -68,6 +70,60 @@ export class DualAgentOrchestrator {
     }
   }
 
+  /**
+   * Emit a progress event if callback is configured
+   */
+  private emitProgress(event: Omit<interfaces.IProgressEvent, 'timestamp' | 'logLevel' | 'logMessage'>): void {
+    if (this.options.onProgress) {
+      const prefix = this.options.logPrefix ? `${this.options.logPrefix} ` : '';
+      const { logLevel, logMessage } = this.formatProgressEvent(event, prefix);
+
+      this.options.onProgress({
+        ...event,
+        timestamp: new Date(),
+        logLevel,
+        logMessage,
+      });
+    }
+  }
+
+  /**
+   * Format a progress event into a log level and message
+   */
+  private formatProgressEvent(
+    event: Omit<interfaces.IProgressEvent, 'timestamp' | 'logLevel' | 'logMessage'>,
+    prefix: string
+  ): { logLevel: interfaces.TLogLevel; logMessage: string } {
+    switch (event.type) {
+      case 'task_started':
+        return { logLevel: 'info', logMessage: `${prefix}Task started` };
+      case 'iteration_started':
+        return { logLevel: 'info', logMessage: `${prefix}Iteration ${event.iteration}/${event.maxIterations}` };
+      case 'tool_proposed':
+        return { logLevel: 'info', logMessage: `${prefix}  → Proposing: ${event.toolName}.${event.action}` };
+      case 'guardian_evaluating':
+        return { logLevel: 'info', logMessage: `${prefix}  ⏳ Guardian evaluating...` };
+      case 'tool_approved':
+        return { logLevel: 'info', logMessage: `${prefix}  ✓ Approved: ${event.toolName}.${event.action}` };
+      case 'tool_rejected':
+        return { logLevel: 'warn', logMessage: `${prefix}  ✗ Rejected: ${event.toolName}.${event.action} - ${event.reason}` };
+      case 'tool_executing':
+        return { logLevel: 'info', logMessage: `${prefix}  ⚡ Executing: ${event.toolName}.${event.action}...` };
+      case 'tool_completed':
+        return { logLevel: 'info', logMessage: `${prefix}  ✓ Completed: ${event.message}` };
+      case 'task_completed':
+        return { logLevel: 'success', logMessage: `${prefix}Task completed in ${event.iteration} iterations` };
+      case 'clarification_needed':
+        return { logLevel: 'warn', logMessage: `${prefix}Clarification needed from user` };
+      case 'max_iterations':
+        return { logLevel: 'error', logMessage: `${prefix}${event.message}` };
+      case 'max_rejections':
+        return { logLevel: 'error', logMessage: `${prefix}${event.message}` };
+      default:
+        return { logLevel: 'info', logMessage: `${prefix}${event.type}` };
+    }
+  }
+
   /**
    * Register a custom tool
    */
@@ -124,7 +180,10 @@ export class DualAgentOrchestrator {
       : this.driverProvider;
 
     // NOW create agents with initialized providers
-    this.driver = new DriverAgent(this.driverProvider, this.options.driverSystemMessage);
+    this.driver = new DriverAgent(this.driverProvider, {
+      systemMessage: this.options.driverSystemMessage,
+      maxHistoryMessages: this.options.maxHistoryMessages,
+    });
     this.guardian = new GuardianAgent(this.guardianProvider, this.options.guardianPolicyPrompt);
 
     // Register any tools that were added before start() with the agents
@@ -190,6 +249,12 @@ export class DualAgentOrchestrator {
     let driverResponse = await this.driver.startTask(task);
     this.conversationHistory.push(driverResponse);
 
+    // Emit task started event
+    this.emitProgress({
+      type: 'task_started',
+      message: task.length > 100 ? task.substring(0, 100) + '...' : task,
+    });
+
     while (
       iterations < this.options.maxIterations! &&
       consecutiveRejections < this.options.maxConsecutiveRejections! &&
@@ -197,15 +262,36 @@ export class DualAgentOrchestrator {
     ) {
       iterations++;
 
+      // Emit iteration started event
+      this.emitProgress({
+        type: 'iteration_started',
+        iteration: iterations,
+        maxIterations: this.options.maxIterations,
+      });
+
       // Check if task is complete
       if (this.driver.isTaskComplete(driverResponse.content)) {
         completed = true;
         finalResult = this.driver.extractTaskResult(driverResponse.content) || driverResponse.content;
+
+        // Emit task completed event
+        this.emitProgress({
+          type: 'task_completed',
+          iteration: iterations,
+          message: 'Task completed successfully',
+        });
         break;
       }
 
       // Check if driver needs clarification
       if (this.driver.needsClarification(driverResponse.content)) {
+        // Emit clarification needed event
+        this.emitProgress({
+          type: 'clarification_needed',
+          iteration: iterations,
+          message: 'Driver needs clarification from user',
+        });
+
         // Return with clarification needed status
         return {
           success: false,
@@ -232,6 +318,15 @@ export class DualAgentOrchestrator {
       // Process the first proposal (one at a time)
       const proposal = proposals[0];
 
+      // Emit tool proposed event
+      this.emitProgress({
+        type: 'tool_proposed',
+        iteration: iterations,
+        toolName: proposal.toolName,
+        action: proposal.action,
+        message: `${proposal.toolName}.${proposal.action}`,
+      });
+
       // Quick validation first
       const quickDecision = this.guardian.quickValidate(proposal);
       let decision: interfaces.IGuardianDecision;
@@ -239,6 +334,14 @@ export class DualAgentOrchestrator {
       if (quickDecision) {
         decision = quickDecision;
       } else {
+        // Emit guardian evaluating event
+        this.emitProgress({
+          type: 'guardian_evaluating',
+          iteration: iterations,
+          toolName: proposal.toolName,
+          action: proposal.action,
+        });
+
         // Full AI evaluation
         decision = await this.guardian.evaluate(proposal, task);
       }
@@ -246,6 +349,14 @@ export class DualAgentOrchestrator {
       if (decision.decision === 'approve') {
         consecutiveRejections = 0;
 
+        // Emit tool approved event
+        this.emitProgress({
+          type: 'tool_approved',
+          iteration: iterations,
+          toolName: proposal.toolName,
+          action: proposal.action,
+        });
+
         // Execute the tool
         const tool = this.tools.get(proposal.toolName);
         if (!tool) {
@@ -258,12 +369,48 @@ export class DualAgentOrchestrator {
         }
 
         try {
+          // Emit tool executing event
+          this.emitProgress({
+            type: 'tool_executing',
+            iteration: iterations,
+            toolName: proposal.toolName,
+            action: proposal.action,
+          });
+
           const result = await tool.execute(proposal.action, proposal.params);
 
-          // Send result to driver
-          const resultMessage = result.success
-            ? `TOOL RESULT (${proposal.toolName}.${proposal.action}):\n${JSON.stringify(result.result, null, 2)}`
-            : `TOOL ERROR (${proposal.toolName}.${proposal.action}):\n${result.error}`;
+          // Emit tool completed event
+          this.emitProgress({
+            type: 'tool_completed',
+            iteration: iterations,
+            toolName: proposal.toolName,
+            action: proposal.action,
+            message: result.success ? 'success' : result.error,
+          });
+
+          // Build result message (prefer summary if provided, otherwise stringify result)
+          let resultMessage: string;
+          if (result.success) {
+            if (result.summary) {
+              // Use tool-provided summary
+              resultMessage = `TOOL RESULT (${proposal.toolName}.${proposal.action}):\n${result.summary}`;
+            } else {
+              // Stringify and potentially truncate
+              const resultStr = JSON.stringify(result.result, null, 2);
+              const maxChars = this.options.maxResultChars ?? 15000;
+
+              if (maxChars > 0 && resultStr.length > maxChars) {
+                // Truncate the result
+                const truncated = resultStr.substring(0, maxChars);
+                const omittedTokens = Math.round((resultStr.length - maxChars) / 4);
+                resultMessage = `TOOL RESULT (${proposal.toolName}.${proposal.action}):\n${truncated}\n\n[... output truncated, ~${omittedTokens} tokens omitted. Use more specific parameters to reduce output size.]`;
+              } else {
+                resultMessage = `TOOL RESULT (${proposal.toolName}.${proposal.action}):\n${resultStr}`;
+              }
+            }
+          } else {
+            resultMessage = `TOOL ERROR (${proposal.toolName}.${proposal.action}):\n${result.error}`;
+          }
 
           this.conversationHistory.push({
             role: 'system',
@@ -285,6 +432,15 @@ export class DualAgentOrchestrator {
         // Rejected
         consecutiveRejections++;
 
+        // Emit tool rejected event
+        this.emitProgress({
+          type: 'tool_rejected',
+          iteration: iterations,
+          toolName: proposal.toolName,
+          action: proposal.action,
+          reason: decision.reason,
+        });
+
         // Build rejection feedback
         let feedback = `TOOL CALL REJECTED by Guardian:\n`;
         feedback += `- Reason: ${decision.reason}\n`;
@@ -316,8 +472,21 @@ export class DualAgentOrchestrator {
     if (!completed) {
       if (iterations >= this.options.maxIterations!) {
         status = 'max_iterations_reached';
+        // Emit max iterations event
+        this.emitProgress({
+          type: 'max_iterations',
+          iteration: iterations,
+          maxIterations: this.options.maxIterations,
+          message: `Maximum iterations (${this.options.maxIterations}) reached`,
+        });
       } else if (consecutiveRejections >= this.options.maxConsecutiveRejections!) {
         status = 'max_rejections_reached';
+        // Emit max rejections event
+        this.emitProgress({
+          type: 'max_rejections',
+          iteration: iterations,
+          message: `Maximum consecutive rejections (${this.options.maxConsecutiveRejections}) reached`,
+        });
       }
     }