@tt-a1i/hive 1.4.4 → 1.6.0

package/dist/src/server/dispatch-ledger-store.js

@@ -18,13 +18,17 @@ const toRecord = (row) => ({
     deliveredAt: row.delivered_at,
     fromAgentId: row.from_agent_id,
     id: row.id,
+    label: row.label ?? null,
+    phase: row.phase ?? null,
     reportedAt: row.reported_at,
     reportText: row.report_text,
     sequence: row.sequence,
     status: row.status,
+    stepIndex: row.step_index,
     submittedAt: row.submitted_at,
     text: row.text,
     toAgentId: row.to_agent_id,
+    workflowRunId: row.workflow_run_id,
     workspaceId: row.workspace_id,
 });
 export const createDispatchLedgerStore = (db) => {
@@ -35,13 +39,17 @@ export const createDispatchLedgerStore = (db) => {
             deliveredAt: null,
             fromAgentId: input.fromAgentId ?? null,
             id: randomUUID(),
+            label: input.label ?? null,
+            phase: input.phase ?? null,
             reportedAt: null,
             reportText: null,
             sequence: null,
             status: 'queued',
+            stepIndex: input.stepIndex ?? null,
             submittedAt: null,
             text: input.text,
             toAgentId: input.toAgentId,
+            workflowRunId: input.workflowRunId ?? null,
             workspaceId: input.workspaceId,
         };
         db.prepare(`INSERT INTO dispatches (
@@ -56,8 +64,12 @@ export const createDispatchLedgerStore = (db) => {
         submitted_at,
         reported_at,
         report_text,
-        artifacts
-      ) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`).run(record.id, record.workspaceId, record.fromAgentId, record.toAgentId, record.text, record.status, record.createdAt, record.deliveredAt, record.submittedAt, record.reportedAt, record.reportText, JSON.stringify(record.artifacts));
+        artifacts,
+        workflow_run_id,
+        step_index,
+        phase,
+        label
+      ) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)`).run(record.id, record.workspaceId, record.fromAgentId, record.toAgentId, record.text, record.status, record.createdAt, record.deliveredAt, record.submittedAt, record.reportedAt, record.reportText, JSON.stringify(record.artifacts), record.workflowRunId, record.stepIndex, record.phase, record.label);
         return record;
     };
     const deleteDispatch = (dispatchId) => {
@@ -175,8 +187,41 @@ export const createDispatchLedgerStore = (db) => {
         db.prepare('DELETE FROM dispatches WHERE workspace_id = ?').run(workspaceId);
     };
     const deleteWorkerDispatches = (workspaceId, workerId) => {
-        db.prepare('DELETE FROM dispatches WHERE workspace_id = ? AND to_agent_id = ?').run(workspaceId, workerId);
+        // Preserve workflow-run dispatch history (`workflow_run_id IS NOT NULL`)
+        // so the UI's run-detail timeline can still show what each ephemeral
+        // worker did after the worker itself is dismissed. Orchestrator-issued
+        // dispatches are tied to the worker identity and are dropped with it.
+        db.prepare(`DELETE FROM dispatches
+       WHERE workspace_id = ? AND to_agent_id = ? AND workflow_run_id IS NULL`).run(workspaceId, workerId);
     };
+    // Every dispatch fired by a workflow run carries the run id (M1-B added the
+    // column; M2-C plumbs it through). This is the timeline query the UI uses to
+    // explode a run row into per-worker activity.
+    const listWorkflowRunDispatches = (runId) => {
+        const rows = db
+            .prepare('SELECT * FROM dispatches WHERE workflow_run_id = ? ORDER BY sequence, created_at')
+            .all(runId);
+        return rows.map(toRecord);
+    };
+    // Open dispatch ids tied to a workflow run — drives the runner's stop path
+    // (each id gets a notifyCancel so the runner's await rejects).
+    const listOpenDispatchIdsForRun = (runId) => db
+        .prepare(`SELECT id FROM dispatches
+           WHERE workflow_run_id = ? AND status IN ('queued', 'submitted')`)
+        .all(runId).map((row) => row.id);
+    // Open workflow-tagged dispatches addressed to a specific worker. Drives the
+    // PTY-exit cancel path (TIER 1 #1): when a workflow-spawned worker dies
+    // without calling `team report`, the runner's `awaitReport` would otherwise
+    // hang for DEFAULT_TIMEOUT_MS (10 min). The exit handler enumerates these
+    // and `notifyCancel`s each so the surrounding `agent()`/`parallel`/`pipeline`
+    // sees an immediate reject.
+    const listOpenWorkflowDispatchesForWorker = (workspaceId, workerId) => db
+        .prepare(`SELECT id, workflow_run_id FROM dispatches
+           WHERE workspace_id = ?
+             AND to_agent_id = ?
+             AND workflow_run_id IS NOT NULL
+             AND status IN ('queued', 'submitted')`)
+        .all(workspaceId, workerId).map((row) => ({ dispatchId: row.id, runId: row.workflow_run_id }));
     return {
         createDispatch,
         deleteDispatch,
@@ -185,6 +230,9 @@ export const createDispatchLedgerStore = (db) => {
         findOpenDispatch,
         findOpenDispatchById,
         listOpenDispatchKinds,
+        listOpenDispatchIdsForRun,
+        listOpenWorkflowDispatchesForWorker,
+        listWorkflowRunDispatches,
         listWorkspaceDispatches,
         markCancelled,
         markReportedByWorker,

package/dist/src/server/env-sync-message.js

@@ -4,7 +4,7 @@ import { TASKS_RELATIVE_PATH } from './tasks-file.js';
 const TASKS_HEAD_LIMIT = 1024;
 const formatWorkers = (workers) => {
     if (workers.length === 0)
-        return ['- 当前没有其他 worker'];
+        return ['- (no other workers)'];
     return workers.map((worker) => `- ${worker.name} (${worker.role}, ${worker.status}, pending_task_count: ${worker.pendingTaskCount})`);
 };
 const formatRestartWindow = (messages) => {
@@ -12,18 +12,18 @@ const formatRestartWindow = (messages) => {
         return message.type === 'send';
     });
     if (sends.length === 0)
-        return ['- 重启期间未派新单'];
+        return ['- no new dispatches during the restart'];
     return sends.slice(-5).map((message) => `- send -> ${message.to}: ${message.text}`);
 };
 export const buildEnvSyncMessage = ({ agent, tasksContent, workers, workspace, restartWindowMessages, }) => wrapSystemMessage([
-    '你刚被 Hive 重启了。期间环境变化：',
-    `- 当前 workspace: ${workspace.name}`,
-    '- 现有 worker:',
+    'Hive just restarted you. Environment changes during the restart:',
+    `- Current workspace: ${workspace.name}`,
+    '- Existing workers:',
     ...formatWorkers(workers),
-    `- ${TASKS_RELATIVE_PATH} 当前内容:`,
-    tasksContent.slice(0, TASKS_HEAD_LIMIT) || '(空)',
+    `- Current ${TASKS_RELATIVE_PATH} contents:`,
+    tasksContent.slice(0, TASKS_HEAD_LIMIT) || '(empty)',
     ...formatRestartWindow(restartWindowMessages),
-    agent.role === 'orchestrator' ? '- Hive worker 派单规则:' : '- Hive worker 边界:',
+    agent.role === 'orchestrator' ? '- Hive worker dispatch rules:' : '- Hive worker boundaries:',
     ...getHiveTeamRules(agent).map((rule) => `  - ${rule}`),
-    `请继续。如果不确定，用 team list / Read ${TASKS_RELATIVE_PATH} 自查或问 user。`,
+    `Continue. If unsure, run team list / Read ${TASKS_RELATIVE_PATH} to self-check, or ask the user.`,
 ].join('\n'));

package/dist/src/server/feature-flags.d.ts

@@ -0,0 +1,42 @@
+/**
+ * Every experimental feature flag resolved into one snapshot.
+ *
+ * Threading this bag through the prompt-build call graph — instead of one
+ * `getX` accessor per flag — is the whole point of this module: a new flag adds
+ * a field here and is read at the one site that needs it, without touching any
+ * of the carriers in between (agent-runtime → run-starter / restart-policy /
+ * tasks-watcher → the pure builders in hive-team-guidance).
+ *
+ * Each flag keeps its own storage semantics and doc in its own file
+ * ([[workflow-feature]], [[team-autostaff]]); this module only composes them.
+ */
+export interface FeatureFlags {
+    /** Workflow runtime — `team workflow`, the scheduler, the Drawer, and the
+     *  orchestrator guidance that teaches them. Default OFF. */
+    workflowsEnabled: boolean;
+    /** Auto-staff orchestrator guidance — size the team to the task up front
+     *  rather than one worker at a time. Default ON. */
+    autostaffEnabled: boolean;
+}
+/**
+ * Conservative all-off snapshot. Use as the parameter default wherever a
+ * builder is called without flags — it preserves the per-flag `= false`
+ * defaults the builders carried before this registry existed.
+ *
+ * This is NOT the storage default: an ABSENT `team.autostaff` key reads back
+ * ON via {@link readFeatureFlags}. Only an OMITTED argument falls back to off,
+ * which is the safe choice (never inject guidance for a flag nobody resolved).
+ */
+export declare const FEATURE_FLAGS_ALL_OFF: FeatureFlags;
+interface AppStateReader {
+    getAppState: (key: string) => {
+        value: string | null;
+    } | undefined;
+}
+/**
+ * Read every flag from app_state into one snapshot, each with its own storage
+ * default (workflows off-when-absent, auto-staff on-when-absent). Called fresh
+ * each time so a Settings toggle takes effect without restarting the runtime.
+ */
+export declare const readFeatureFlags: (settings: AppStateReader) => FeatureFlags;
+export {};

package/dist/src/server/feature-flags.js

@@ -0,0 +1,24 @@
+import { AUTOSTAFF_ENABLED_KEY, readAutostaffEnabled } from './team-autostaff.js';
+import { readWorkflowEnabled, WORKFLOW_ENABLED_KEY } from './workflow-feature.js';
+/**
+ * Conservative all-off snapshot. Use as the parameter default wherever a
+ * builder is called without flags — it preserves the per-flag `= false`
+ * defaults the builders carried before this registry existed.
+ *
+ * This is NOT the storage default: an ABSENT `team.autostaff` key reads back
+ * ON via {@link readFeatureFlags}. Only an OMITTED argument falls back to off,
+ * which is the safe choice (never inject guidance for a flag nobody resolved).
+ */
+export const FEATURE_FLAGS_ALL_OFF = {
+    workflowsEnabled: false,
+    autostaffEnabled: false,
+};
+/**
+ * Read every flag from app_state into one snapshot, each with its own storage
+ * default (workflows off-when-absent, auto-staff on-when-absent). Called fresh
+ * each time so a Settings toggle takes effect without restarting the runtime.
+ */
+export const readFeatureFlags = (settings) => ({
+    workflowsEnabled: readWorkflowEnabled(settings.getAppState(WORKFLOW_ENABLED_KEY)?.value ?? null),
+    autostaffEnabled: readAutostaffEnabled(settings.getAppState(AUTOSTAFF_ENABLED_KEY)?.value ?? null),
+});

package/dist/src/server/fs-pick-folder.js

@@ -112,7 +112,11 @@ const windowsPick = async (run) => {
   
        `Add-Type -AssemblyName System.Drawing` is required because Point /
        Size live in System.Drawing.dll, not System.Windows.Forms.dll. */
+    // PS 5.1 on zh-CN Windows defaults [Console]::OutputEncoding to cp936/GBK;
+    // Node decodes stdout as UTF-8 and CJK paths arrive mojibake'd. Force UTF-8
+    // before any output. No-op on PS 7+ which already defaults to UTF-8.
     const script = [
+        '[Console]::OutputEncoding = [System.Text.Encoding]::UTF8',
         'Add-Type -AssemblyName System.Windows.Forms',
         'Add-Type -AssemblyName System.Drawing',
         '$owner = New-Object System.Windows.Forms.Form',

package/dist/src/server/fs-sandbox.js

@@ -1,5 +1,6 @@
 import { homedir } from 'node:os';
 import { isAbsolute, relative, resolve, sep } from 'node:path';
+import { realpathNative } from './path-canonicalization.js';
 /**
  * Root directory the FS-browse API is allowed to reveal. We sandbox to
  * `$HOME` (override via `HIVE_FS_BROWSE_ROOT` for tests). Anything outside
@@ -7,7 +8,19 @@ import { isAbsolute, relative, resolve, sep } from 'node:path';
  */
 export const getFsBrowseRoot = () => {
     const override = process.env.HIVE_FS_BROWSE_ROOT;
-    return override && override.length > 0 ? resolve(override) : resolve(homedir());
+    const root = override && override.length > 0 ? resolve(override) : resolve(homedir());
+    try {
+        return realpathNative(root);
+    }
+    catch {
+        return root;
+    }
+};
+const isResolvedPathWithinRoot = (rootPath, candidatePath) => {
+    if (candidatePath === rootPath)
+        return true;
+    const rel = relative(rootPath, candidatePath);
+    return rel !== '..' && !rel.startsWith(`..${sep}`) && !isAbsolute(rel);
 };
 /**
  * True when `candidatePath` is `rootPath` itself or a descendant of it.
@@ -16,10 +29,26 @@ export const getFsBrowseRoot = () => {
  * isPathWithinRoot so the semantics match a project we already trust.
  */
 export const isPathWithinRoot = (rootPath, candidatePath) => {
-    const resolvedRoot = resolve(rootPath);
-    const resolvedCandidate = resolve(candidatePath);
-    if (resolvedCandidate === resolvedRoot)
-        return true;
-    const rel = relative(resolvedRoot, resolvedCandidate);
-    return rel !== '..' && !rel.startsWith(`..${sep}`) && !isAbsolute(rel);
+    const lexicalRoot = resolve(rootPath);
+    const lexicalCandidate = resolve(candidatePath);
+    let resolvedRoot = lexicalRoot;
+    let resolvedCandidate = lexicalCandidate;
+    try {
+        resolvedRoot = realpathNative(resolvedRoot);
+    }
+    catch {
+        // Missing / inaccessible roots are handled by the caller's readdir/stat path.
+    }
+    try {
+        resolvedCandidate = realpathNative(resolvedCandidate);
+    }
+    catch {
+        // Non-existent children still need lexical sandboxing for "create later"
+        // probes; existing symlinks/junctions use the realpath branch above.
+        if (isResolvedPathWithinRoot(lexicalRoot, lexicalCandidate)) {
+            resolvedRoot = lexicalRoot;
+            resolvedCandidate = lexicalCandidate;
+        }
+    }
+    return isResolvedPathWithinRoot(resolvedRoot, resolvedCandidate);
 };

package/dist/src/server/hive-team-guidance.d.ts

@@ -1,4 +1,6 @@
 import type { AgentSummary } from '../shared/types.js';
+import { type FeatureFlags } from './feature-flags.js';
+import { type WorkflowCliPolicy } from './workflow-cli-policy.js';
 /**
  * Tail reminder appended to every message that flows INTO the orchestrator
  * (worker reports, worker status updates, user chat input). Re-anchors the
@@ -11,10 +13,12 @@ import type { AgentSummary } from '../shared/types.js';
  * banner noise after a few occurrences, but `<...-system-reminder>` tags
  * mirror the out-of-band envelope LLMs are trained to attend to; placement
  * at the tail (right before the agent's reply turn) maximizes recency
- * weighting; phrasing as a two-option action menu is more actionable than
- * abstract identity restatement.
+ * weighting; phrasing as a short action menu is more actionable than abstract
+ * identity restatement. Kept deliberately SHORT — the full command syntax and
+ * the workflow DSL live in `.hive/PROTOCOL.md`, which agents re-read on demand.
+ * A long banner on every turn is itself the noise this envelope exists to beat.
  */
-export declare const ORCHESTRATOR_REMINDER_TAIL: string;
+export declare const buildOrchestratorReminderTail: ({ workflowsEnabled }: FeatureFlags) => string;
 /**
  * Tail reminder appended to dispatches sent TO a worker. Reinforces the
  * worker identity (so the agent does not regress into its normal CLI
@@ -22,12 +26,14 @@ export declare const ORCHESTRATOR_REMINDER_TAIL: string;
  * with dispatch_id pre-bound.
  */
 export declare const buildWorkerReminderTail: (dispatchId: string) => string;
-export declare const getHiveTeamRules: (agent: Pick<AgentSummary, "role">) => string[];
+export declare const getHiveTeamRules: (agent: Pick<AgentSummary, "role">, flags?: FeatureFlags) => readonly string[];
 /**
  * Workspace-local protocol cheat sheet written to `.hive/PROTOCOL.md`. Agents
  * are explicitly trained to look at project root markdown when confused, so
  * keeping a single canonical doc next to `.hive/tasks.md` doubles as a
  * "cat-recover" path when both the startup prompt and the in-message
- * reminders fail to anchor.
+ * reminders fail to anchor. This is also the single home of the full command
+ * syntax and the workflow DSL reference — the always-on injections only carry
+ * the lean core rules and point here.
  */
-export declare const buildProtocolDoc: () => string;
+export declare const buildProtocolDoc: (cliPolicy?: WorkflowCliPolicy, flags?: FeatureFlags) => string;