@soleri/forge 9.0.0 → 9.2.0

package/src/templates/agents-md.ts

@@ -61,13 +61,13 @@ When the user asks about your capabilities or you need to check what you've lear
 ## Session Start
 
 Do NOT call any tools automatically on session start. Just greet the user in character.
-Only call ${bt}${tp}_orchestrate op:register${bt} or ${bt}${tp}_core op:activate${bt} when you actually need project context or capability discovery — not on every message.
+Only call ${bt}${tp}_orchestrate op:session_start${bt} or ${bt}${tp}_core op:activate${bt} when you actually need project context or capability discovery — not on every message.
 
 ## Essential Tools
 
 | Facade | Key Ops |
 |--------|---------|
-| ${bt}${tp}_core${bt} | ${bt}health${bt}, ${bt}search${bt}, ${bt}identity${bt}, ${bt}register${bt}, ${bt}activate${bt} |
+| ${bt}${tp}_core${bt} | ${bt}health${bt}, ${bt}search${bt}, ${bt}identity${bt}, ${bt}session_start${bt}, ${bt}activate${bt} |
 ${domainRows}
 | ${bt}${tp}_vault${bt} | ${bt}search_intelligent${bt}, ${bt}capture_knowledge${bt}, ${bt}capture_quick${bt}, ${bt}search_feedback${bt} |
 | ${bt}${tp}_vault${bt} (keeper) | ${bt}knowledge_audit${bt}, ${bt}knowledge_health${bt}, ${bt}knowledge_merge${bt}, ${bt}knowledge_reorganize${bt} |

package/src/templates/claude-md-template.ts

@@ -66,7 +66,7 @@ export function generateClaudeMdTemplate(config: AgentConfig): string {
     // ─── Session Start ─────────────────────────────────────
     '## Session Start',
     '',
-    `On every new session: ${bt}${toolPrefix}_orchestrate op:register params:{ projectPath: "." }${bt}`,
+    `On every new session: ${bt}${toolPrefix}_orchestrate op:session_start params:{ projectPath: "." }${bt}`,
     '',
   ];
 
@@ -77,7 +77,7 @@ export function generateClaudeMdTemplate(config: AgentConfig): string {
     '',
     '| Facade | Key Ops |',
     '|--------|---------|',
-    `| ${bt}${toolPrefix}_core${bt} | ${bt}health${bt}, ${bt}search${bt}, ${bt}identity${bt}, ${bt}register${bt}, ${bt}activate${bt} |`,
+    `| ${bt}${toolPrefix}_core${bt} | ${bt}health${bt}, ${bt}search${bt}, ${bt}identity${bt}, ${bt}session_start${bt}, ${bt}activate${bt} |`,
   );
 
   // Domain facades — one row per domain

package/src/templates/shared-rules.ts

@@ -119,6 +119,7 @@ const ENGINE_RULES_LINES: string[] = [
   '## Planning',
   '<!-- soleri:planning -->',
   '',
+  '- **MANDATORY**: Create a formal plan (`op:create_plan`) for every work task. Memory and vault knowledge alone are not sufficient — plans must be persisted and graded.',
   '- Use `op:create_plan` before writing ANY code. Show the plan, wait for approval.',
   '- Two-gate approval: Gate 1 (`op:approve_plan`), Gate 2 (`op:plan_split`). Never skip either.',
   '- Wait for explicit "yes" / "approve" before proceeding past each gate.',
@@ -127,6 +128,15 @@ const ENGINE_RULES_LINES: string[] = [
   '- On session start: check for plans in `executing`/`reconciling` state and remind.',
   '- Exceptions: read-only operations, user says "just do it", single-line fixes.',
   '',
+  '### Grade Gate',
+  '',
+  '**MANDATORY**: Plans must grade **A or higher** before approval. The engine enforces this programmatically.',
+  '',
+  '- `op:approve_plan` will **reject** any plan with a latest grade below A (score < 90).',
+  '- If rejected, iterate on the plan (`op:create_plan`) to address the gaps, then re-grade (`op:plan_grade`) before approving.',
+  '- The threshold is configurable per-agent via `engine.minGradeForApproval` in `agent.yaml` (default: `A`).',
+  '- Plans with no grade check are allowed through for backward compatibility.',
+  '',
   '### Lifecycle States',
   '',
   '| State | Expires | Next Action |',
@@ -339,7 +349,7 @@ const ENGINE_RULES_LINES: string[] = [
   '### Session Start Protocol',
   '',
   'Do NOT call tools automatically on session start — just greet the user in character.',
-  'Call `op:register` only when you need project context for a task (not on every message).',
+  'Call `op:session_start` only when you need project context for a task (not on every message).',
   'Call `op:activate` only when checking evolved capabilities or recovering session state.',
   '',
   '### Context Compaction',
@@ -418,5 +428,30 @@ const ENGINE_RULES_LINES: string[] = [
   '| Template drift suspected | `soleri agent diff` to see what changed |',
   '',
 
+  // ─── Verification Protocol ─────────────────────────────────
+  '## Verification Protocol',
+  '<!-- soleri:verification-protocol -->',
+  '',
+  '**MANDATORY** when modifying existing code: prove before you fix.',
+  '',
+  '### The Rule',
+  '',
+  '1. **Find** — identify the issue in existing code',
+  '2. **Prove** — reproduce the issue (test case, error log, stack trace)',
+  '3. **Fix** — only after the issue is proven reproducible',
+  '',
+  '### Anti-pattern',
+  '',
+  '- Fixing code "just in case" or for aesthetics without a proven issue',
+  '- Claiming a bug exists without reproduction evidence',
+  '- Refactoring working code under the guise of a bug fix',
+  '',
+  '### Scope',
+  '',
+  '- Applies ONLY to tasks that modify existing code',
+  '- Does NOT apply to new code, new files, or greenfield features',
+  '- Advisory only — flags warnings, never blocks execution',
+  '',
+
   `<!-- /${ENGINE_MARKER} -->`,
 ];

package/src/templates/skills.ts

@@ -1,4 +1,4 @@
-import { readFileSync, readdirSync } from 'node:fs';
+import { readFileSync, readdirSync, existsSync, statSync } from 'node:fs';
 import { join, dirname } from 'node:path';
 import { fileURLToPath } from 'node:url';
 import type { AgentConfig } from '../types.js';
@@ -15,12 +15,14 @@ const AGENT_SPECIFIC_SKILLS = new Set([
   'brainstorming',
   'code-patrol',
   'context-resume',
+  'deep-review',
   'deliver-and-ship',
   'executing-plans',
   'fix-and-learn',
   'health-check',
   'knowledge-harvest',
   'onboard-me',
+  'parallel-execute',
   'retrospective',
   'second-opinion',
   'systematic-debugging',
@@ -28,6 +30,7 @@ const AGENT_SPECIFIC_SKILLS = new Set([
   'vault-capture',
   'vault-curate',
   'vault-navigator',
+  'vault-smells',
   'verification-before-completion',
   'writing-plans',
 ]);
@@ -43,10 +46,10 @@ const AGENT_SPECIFIC_SKILLS = new Set([
  */
 export function generateSkills(config: AgentConfig): Array<[string, string]> {
   const files: Array<[string, string]> = [];
-  let skillFiles: string[];
+  let entries: string[];
 
   try {
-    skillFiles = readdirSync(SKILLS_DIR).filter((f) => f.endsWith('.md'));
+    entries = readdirSync(SKILLS_DIR);
   } catch {
     return files;
   }
@@ -55,14 +58,32 @@ export function generateSkills(config: AgentConfig): Array<[string, string]> {
   // undefined = include all (backward compat), [] = include none.
   const allowedSkills = config.skills ? new Set(config.skills) : null; // null = include all (backward compat)
 
-  for (const file of skillFiles) {
-    const skillName = file.replace('.md', '');
+  for (const entry of entries) {
+    const entryPath = join(SKILLS_DIR, entry);
+
+    // Support both layouts:
+    // - Directory: skills/{name}/SKILL.md (current)
+    // - Flat file: skills/{name}.md (legacy)
+    let skillName: string;
+    let contentPath: string;
+
+    if (statSync(entryPath).isDirectory()) {
+      const skillMd = join(entryPath, 'SKILL.md');
+      if (!existsSync(skillMd)) continue;
+      skillName = entry;
+      contentPath = skillMd;
+    } else if (entry.endsWith('.md')) {
+      skillName = entry.replace('.md', '');
+      contentPath = entryPath;
+    } else {
+      continue;
+    }
 
     if (allowedSkills && !allowedSkills.has(skillName)) {
       continue;
     }
 
-    let content = readFileSync(join(SKILLS_DIR, file), 'utf-8');
+    let content = readFileSync(contentPath, 'utf-8');
 
     if (AGENT_SPECIFIC_SKILLS.has(skillName)) {
       content = content.replace(/YOUR_AGENT_core/g, `${config.id}_core`);

package/src/types.ts

@@ -1,8 +1,13 @@
 import { z } from 'zod';
+import { join } from 'node:path';
+import { homedir } from 'node:os';
 
 /** Communication tone for the agent persona */
 const TONES = ['precise', 'mentor', 'pragmatic'] as const;
 
+/** Default parent directory for new agents: ~/.soleri/ */
+const SOLERI_HOME_DEFAULT = process.env.SOLERI_HOME ?? join(homedir(), '.soleri');
+
 /** Where to scaffold host/client integration setup. */
 export const SETUP_TARGETS = ['claude', 'codex', 'opencode', 'both', 'all'] as const;
 export type SetupTarget = (typeof SETUP_TARGETS)[number];
@@ -39,8 +44,8 @@ export const AgentConfigSchema = z.object({
   tone: z.enum(TONES).optional().default('pragmatic'),
   /** Greeting message when agent introduces itself (auto-generated if omitted) */
   greeting: z.string().min(10).max(300).optional(),
-  /** Output directory (parent — agent dir will be created inside, defaults to cwd) */
-  outputDir: z.string().min(1).optional().default(process.cwd()),
+  /** Output directory (parent — agent dir will be created inside, defaults to ~/.soleri/) */
+  outputDir: z.string().min(1).optional().default(SOLERI_HOME_DEFAULT),
   /** Hook packs to install after scaffolding (optional) */
   hookPacks: z.array(z.string()).optional(),
   /** Skills to include (if omitted, all skills are included for backward compat) */

package/dist/skills/agent-dev.md

@@ -1,122 +0,0 @@
----
-name: agent-dev
-description: >
-  Use when extending the agent itself — adding facades, tools, vault operations,
-  brain features, new skills, or modifying agent internals. Triggers on "add a facade",
-  "new tool", "extend vault", "add brain feature", "new skill", "add operation",
-  "extend agent", or when the work target is the agent's own codebase rather than
-  a project the agent assists with. Enforces vault-first knowledge gathering before
-  any code reading or planning.
----
-
-# Agent Dev — Vault-First Internal Development
-
-Develop the agent's own internals with the vault as the primary source of truth. The vault knows more about the agent than any code scan or model training data. Always search the vault first, extract maximum context, and only then touch code.
-
-## When to Use
-
-Any time the work target is the agent's own codebase: adding tools, extending facades, modifying vault operations, brain features, skills, or transport. Not for projects that merely *use* the agent.
-
-## Core Principle
-
-**Vault first. Before code. Before training data. Always.**
-
-The vault is the authoritative source for how the agent works. Do not rely on general knowledge from training data — it is outdated and lacks project-specific decisions. Do not scan the codebase to understand architecture — the vault already has it.
-
-## Orchestration Sequence
-
-### Step 1: Search the Vault (MANDATORY — before anything else)
-
-Before reading any source file, before making any plan, before offering any advice:
-
-```
-YOUR_AGENT_core op:search_vault_intelligent
-  params: { query: "<description of planned work>", options: { intent: "pattern" } }
-```
-
-Search again with architecture-specific terms: the facade name, tool name, or subsystem being modified.
-
-```
-YOUR_AGENT_core op:query_vault_knowledge
-  params: { type: "workflow", category: "<relevant category>" }
-```
-
-If initial results are sparse, search again with broader terms — synonyms, related subsystem names, parent concepts. Exhaust the vault before moving on.
-
-Review all results. Extract file paths, module names, function references, conventions, and constraints. These become the foundation for every step that follows.
-
-### Step 2: Check Brain for Proven Patterns
-
-```
-YOUR_AGENT_core op:strengths
-  params: { days: 30, minStrength: 60 }
-```
-
-```
-YOUR_AGENT_core op:recommend
-  params: { projectPath: "." }
-```
-
-Check if the brain has learned anything relevant from recent sessions.
-
-### Step 3: Targeted Code Reading (Only What Vault Pointed To)
-
-By now the vault has provided architecture context, file paths, and module references. Only read code when the vault describes the subsystem but lacks implementation detail (e.g., method signatures, exact line numbers).
-
-**Read only what the vault pointed to.** Open the specific files referenced in vault results — not the surrounding codebase, not the parent directory, not "let me explore the project structure."
-
-**Fallback: Codebase scan.** Only when vault search returned zero relevant results for the subsystem — meaning the vault genuinely has no knowledge about it — fall back to `Grep` with targeted terms. This is the last resort, not the default.
-
-### Step 4: Plan with Vault Context
-
-Create the implementation plan referencing vault findings explicitly:
-
-- Which patterns apply (cite vault entry titles)
-- Which anti-patterns to avoid (cite the specific anti-pattern)
-- Which conventions to follow (naming, facade structure, tool registration)
-
-Every plan must trace its decisions back to vault knowledge. If a decision has no vault backing, flag it as a new architectural choice that should be captured after implementation (Step 7).
-
-### Step 5: Implement
-
-Follow the plan. Key conventions for agent internals:
-
-- **Facades**: Thin routing layer — delegate to domain modules. No business logic in facades.
-- **Tools**: Follow `op:operation_name` naming, return structured responses.
-- **Vault writes**: All writes go through the vault intelligence layer.
-- **Tests**: Colocated test files. Run with vitest.
-- **Build**: Must compile without errors before considering done.
-
-### Step 6: Validate and Self-Correct
-
-Run the relevant test suite. Rebuild — must complete without errors.
-
-**Self-correction loop:** If tests fail or build breaks, do NOT ask the user what to do. Read the error, trace the cause in the code just written, fix it, and re-run. Repeat until green. The agent owns the code it wrote — if something fails, the agent fixes its own implementation. Only escalate to the user when the failure is outside the agent's control (missing infrastructure, permissions, unclear requirements).
-
-### Step 7: Capture What Was Learned
-
-If this work revealed new architectural knowledge, a useful pattern, or a surprising anti-pattern:
-
-```
-YOUR_AGENT_core op:capture_knowledge
-  params: {
-    title: "<what was learned>",
-    description: "<the pattern or anti-pattern>",
-    type: "pattern",
-    tags: ["<relevant-tags>"]
-  }
-```
-
-This ensures future sessions benefit from today's discovery — making the vault smarter for the next developer.
-
-## Anti-Patterns to Avoid
-
-- **Code-first exploration**: Reading source files before searching the vault. The vault already has the architecture — scanning code is slower and gives less context.
-- **Training-data advice**: Offering general guidance from model training data instead of searching the vault for project-specific knowledge.
-- **Skipping vault search**: The vault contains all architecture knowledge. Not searching it means reinventing knowledge that already exists.
-- **Planning without vault context**: Plans created without vault knowledge miss conventions, duplicate existing patterns, or violate architectural boundaries.
-- **Broad codebase scanning**: Exploring directories and reading files "to understand the project" instead of using vault results as a targeted map.
-
-## Exit Criteria
-
-Development is complete when: vault was searched exhaustively first (Step 1), implementation follows discovered patterns, tests pass, build succeeds, and any new learning is captured back to vault (Step 7).

package/dist/skills/agent-guide.md

@@ -1,110 +0,0 @@
----
-name: agent-guide
-description: >
-  Use when the user asks "what can you do", "help me", "how do I use this",
-  "what features do you have", "what tools are available", "how does this work",
-  "show me your capabilities", "what are you", "who are you", or any question
-  about the agent's identity, capabilities, available tools, or how to use them.
-  Not needed for proactive tool suggestions — those are handled by engine rules.
----
-
-# Agent Guide — Capability Discovery
-
-Help users understand what this agent can do, how to use it effectively, and what makes it different from a raw LLM. This skill handles the deep discovery flow — proactive tool suggestions during normal work are handled by the engine rules (Tool Advocacy section).
-
-## When to Use
-
-- "What can you do?" / "What are your capabilities?"
-- "How do I search for X?" / "How do I capture knowledge?"
-- "What tools do you have?" / "Show me your features"
-- "Who are you?" / "What is this agent?"
-- "Help" / "I'm stuck" / "How does this work?"
-- First-time users, onboarding, or anyone unfamiliar with the agent
-
-## Capability Discovery Sequence
-
-### Step 1: Identity
-
-```
-YOUR_AGENT_core op:activate
-  params: { projectPath: "." }
-```
-
-This returns the agent's persona: name, role, description, tone, principles, and domains. Present the identity first — who the agent is and what it specializes in.
-
-### Step 2: Health & Status
-
-```
-YOUR_AGENT_core op:admin_health
-```
-
-Shows what subsystems are active: vault (how many entries), brain (vocabulary size), LLM availability. This tells the user what the agent currently has to work with.
-
-### Step 3: Available Tools
-
-```
-YOUR_AGENT_core op:admin_tool_list
-```
-
-Lists all facades and operations. Present them grouped by category with plain-language descriptions.
-
-### Step 4: Present by What Users Can DO
-
-Organize capabilities by user goals, not technical names:
-
-**Knowledge & Memory**
-- Search the vault for patterns, anti-patterns, and architectural decisions
-- Capture new knowledge from the current session
-- Search across sessions and projects for relevant context
-- Curate: deduplicate, groom, resolve contradictions
-
-**Planning & Execution**
-- Create structured plans with vault context and brain recommendations
-- Split plans into tasks with complexity estimates
-- Track execution with drift detection
-- Complete with knowledge capture and session recording
-
-**Intelligence & Learning**
-- Brain learns from every session — patterns get stronger with use
-- Recommendations based on similar past work
-- Strength tracking: which patterns are proven vs experimental
-- Feedback loop: brain improves based on what works
-
-**Quality & Validation**
-- Health checks across all subsystems
-- Iterative validation loops with configurable targets
-- Governance: policies, proposals, quotas
-
-**Identity & Control**
-- Persona activation and deactivation
-- Intent routing: the agent classifies what you want and routes to the right workflow
-- Project registration and cross-project linking
-
-**Domain Knowledge** (varies by agent)
-- Each domain has: `get_patterns`, `search`, `get_entry`, `capture`, `remove`
-- Call `op:activate` to discover which domains are configured
-
-## Common Questions
-
-### "What makes you different from regular Claude?"
-
-You have persistent knowledge (vault), learned patterns (brain), structured planning with grading, iterative validation loops, and domain-specific intelligence. Regular Claude starts fresh every conversation — this agent accumulates knowledge and gets smarter over time.
-
-### "How do I get the most out of you?"
-
-1. **Use the vault** — search before deciding, capture after learning
-2. **Use planning** — structured plans beat ad-hoc work for anything non-trivial
-3. **Trust the brain** — pattern recommendations come from real usage data
-4. **Capture everything** — every bug fix, every pattern, every anti-pattern. The vault grows smarter with use.
-5. **Use loops for quality** — iterative validation catches issues that single-pass work misses
-
-### "How do I add new capabilities?"
-
-Extensions in `src/extensions/` can add new ops, facades, middleware, and hooks. Domain packs add domain-specific knowledge and validation.
-
-## Anti-Patterns
-
-- **Listing raw op names without context** — always explain what the op does in plain language
-- **Claiming capabilities that do not exist** — only reference ops the agent actually has. When unsure, call `op:admin_tool_list` first
-- **Dumping the entire tool catalog** — answer the specific question, show relevant tools, not all tools
-- **Repeating what the user already knows** — if they ask about a specific feature, answer that, don't give the full tour

package/dist/skills/agent-persona.md

@@ -1,66 +0,0 @@
----
-name: agent-persona
-description: >
-  Use when the user activates the agent's persona via its greeting phrase, or says
-  "activate persona", "be yourself", "stay in character", or any activation phrase
-  defined in the agent's persona configuration. Reinforces character persistence
-  through the session and survives context compaction.
----
-
-# Agent Persona — Stay in Character
-
-This skill reinforces persona persistence. The MCP activation loads the runtime payload — this skill ensures the character sticks across the full session, including after context compaction.
-
-## How It Works
-
-Every agent has a persona defined in `src/identity/persona.ts` (or `src/activation/persona.ts` in older agents). This file contains:
-
-- **name** — the agent's display name
-- **role** — what the agent does
-- **tone** — `precise`, `mentor`, or `pragmatic`
-- **greeting** — the activation response
-- **principles** — core values that guide behavior
-
-## Activation
-
-When the user triggers activation (greeting phrase or explicit request):
-
-```
-YOUR_AGENT_core op:activate
-  params: { projectPath: "." }
-```
-
-The activation response contains the full persona payload. Adopt it immediately.
-
-## Rules
-
-1. **Stay in character for EVERY response** until the user explicitly deactivates
-2. **Technical accuracy is the priority** — persona is the wrapper, not a replacement for correctness
-3. **Tone consistency** — match the configured tone (`precise` = concise and exact, `mentor` = educational and encouraging, `pragmatic` = direct and practical)
-4. If character drifts after context compaction, the persona information in the compacted summary should restore it — follow it
-
-## Context Compaction Survival
-
-Long sessions trigger context compaction. To survive:
-
-- The persona activation state is included in compaction summaries
-- After compaction, check if persona was active and re-adopt the character
-- Never break character just because the conversation was compacted
-
-## Deactivation
-
-When the user says "deactivate", "stop persona", "be normal", or uses the agent's deactivation phrase:
-
-```
-YOUR_AGENT_core op:activate
-  params: { deactivate: true }
-```
-
-Return to neutral assistant mode.
-
-## Anti-Patterns
-
-- **Dropping character mid-session** — if activated, stay activated
-- **Over-persona, under-substance** — character adds flavor, not replaces technical depth
-- **Forcing persona on unwilling users** — only activate when explicitly triggered
-- **Ignoring tone setting** — a `precise` agent should not use flowery language; a `mentor` agent should not be terse