npm - @vellumai/assistant - Versions diffs - 0.3.28 → 0.4.1 - Mend

@vellumai/assistant 0.3.28 → 0.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (201) hide show

package/ARCHITECTURE.md +33 -3
package/bun.lock +4 -1
package/docs/trusted-contact-access.md +9 -2
package/package.json +6 -3
package/scripts/ipc/generate-swift.ts +3 -3
package/src/__tests__/__snapshots__/ipc-snapshot.test.ts.snap +80 -0
package/src/__tests__/agent-loop-thinking.test.ts +1 -1
package/src/__tests__/approval-routes-http.test.ts +13 -5
package/src/__tests__/asset-materialize-tool.test.ts +2 -0
package/src/__tests__/asset-search-tool.test.ts +2 -0
package/src/__tests__/assistant-events-sse-hardening.test.ts +4 -2
package/src/__tests__/attachments-store.test.ts +2 -0
package/src/__tests__/browser-skill-endstate.test.ts +3 -3
package/src/__tests__/call-controller.test.ts +30 -29
package/src/__tests__/call-routes-http.test.ts +34 -32
package/src/__tests__/call-start-guardian-guard.test.ts +2 -0
package/src/__tests__/channel-invite-transport.test.ts +6 -6
package/src/__tests__/channel-reply-delivery.test.ts +19 -0
package/src/__tests__/channel-retry-sweep.test.ts +130 -0
package/src/__tests__/clarification-resolver.test.ts +2 -0
package/src/__tests__/claude-code-skill-regression.test.ts +2 -0
package/src/__tests__/claude-code-tool-profiles.test.ts +2 -0
package/src/__tests__/commit-message-enrichment-service.test.ts +9 -1
package/src/__tests__/computer-use-session-lifecycle.test.ts +2 -0
package/src/__tests__/computer-use-session-working-dir.test.ts +1 -0
package/src/__tests__/computer-use-skill-lifecycle-cleanup.test.ts +2 -0
package/src/__tests__/config-schema.test.ts +5 -5
package/src/__tests__/config-watcher.test.ts +3 -1
package/src/__tests__/connection-policy.test.ts +14 -5
package/src/__tests__/contacts-tools.test.ts +3 -1
package/src/__tests__/contradiction-checker.test.ts +2 -0
package/src/__tests__/conversation-pairing.test.ts +10 -0
package/src/__tests__/conversation-routes.test.ts +1 -1
package/src/__tests__/credential-security-invariants.test.ts +16 -6
package/src/__tests__/credential-vault-unit.test.ts +2 -2
package/src/__tests__/credential-vault.test.ts +5 -4
package/src/__tests__/daemon-lifecycle.test.ts +9 -0
package/src/__tests__/daemon-server-session-init.test.ts +27 -0
package/src/__tests__/elevenlabs-config.test.ts +2 -0
package/src/__tests__/encrypted-store.test.ts +10 -5
package/src/__tests__/followup-tools.test.ts +3 -1
package/src/__tests__/gateway-only-enforcement.test.ts +21 -21
package/src/__tests__/gmail-integration.test.ts +0 -1
package/src/__tests__/guardian-control-plane-policy.test.ts +25 -21
package/src/__tests__/guardian-dispatch.test.ts +2 -0
package/src/__tests__/guardian-grant-minting.test.ts +68 -1
package/src/__tests__/guardian-outbound-http.test.ts +12 -9
package/src/__tests__/guardian-routing-invariants.test.ts +138 -0
package/src/__tests__/handle-user-message-secret-resume.test.ts +1 -0
package/src/__tests__/handlers-slack-config.test.ts +3 -1
package/src/__tests__/handlers-telegram-config.test.ts +3 -1
package/src/__tests__/handlers-twilio-config.test.ts +3 -1
package/src/__tests__/handlers-twitter-config.test.ts +3 -1
package/src/__tests__/handlers-user-message-approval-consumption.test.ts +318 -0
package/src/__tests__/heartbeat-service.test.ts +20 -0
package/src/__tests__/inbound-invite-redemption.test.ts +33 -0
package/src/__tests__/ingress-reconcile.test.ts +3 -1
package/src/__tests__/ingress-routes-http.test.ts +231 -4
package/src/__tests__/intent-routing.test.ts +2 -0
package/src/__tests__/ipc-snapshot.test.ts +13 -0
package/src/__tests__/media-generate-image.test.ts +21 -0
package/src/__tests__/media-reuse-story.e2e.test.ts +2 -0
package/src/__tests__/memory-regressions.test.ts +20 -20
package/src/__tests__/non-member-access-request.test.ts +183 -9
package/src/__tests__/notification-decision-fallback.test.ts +2 -0
package/src/__tests__/notification-decision-strategy.test.ts +61 -0
package/src/__tests__/notification-guardian-path.test.ts +2 -0
package/src/__tests__/oauth-connect-handler.test.ts +3 -1
package/src/__tests__/oauth2-gateway-transport.test.ts +2 -0
package/src/__tests__/onboarding-starter-tasks.test.ts +4 -4
package/src/__tests__/pairing-routes.test.ts +171 -0
package/src/__tests__/playbook-execution.test.ts +3 -1
package/src/__tests__/playbook-tools.test.ts +3 -1
package/src/__tests__/provider-error-scenarios.test.ts +59 -8
package/src/__tests__/proxy-approval-callback.test.ts +2 -0
package/src/__tests__/recording-handler.test.ts +11 -0
package/src/__tests__/recording-intent-handler.test.ts +15 -0
package/src/__tests__/recording-state-machine.test.ts +13 -2
package/src/__tests__/registry.test.ts +7 -3
package/src/__tests__/relay-server.test.ts +148 -28
package/src/__tests__/runtime-attachment-metadata.test.ts +4 -2
package/src/__tests__/runtime-events-sse-parity.test.ts +21 -0
package/src/__tests__/runtime-events-sse.test.ts +4 -2
package/src/__tests__/sandbox-diagnostics.test.ts +2 -0
package/src/__tests__/schedule-tools.test.ts +3 -1
package/src/__tests__/send-endpoint-busy.test.ts +288 -0
package/src/__tests__/session-abort-tool-results.test.ts +23 -0
package/src/__tests__/session-agent-loop.test.ts +16 -0
package/src/__tests__/session-conflict-gate.test.ts +21 -0
package/src/__tests__/session-load-history-repair.test.ts +27 -17
package/src/__tests__/session-pre-run-repair.test.ts +23 -0
package/src/__tests__/session-profile-injection.test.ts +21 -0
package/src/__tests__/session-provider-retry-repair.test.ts +20 -0
package/src/__tests__/session-queue.test.ts +23 -0
package/src/__tests__/session-runtime-assembly.test.ts +50 -12
package/src/__tests__/session-skill-tools.test.ts +27 -5
package/src/__tests__/session-slash-known.test.ts +23 -0
package/src/__tests__/session-slash-queue.test.ts +23 -0
package/src/__tests__/session-slash-unknown.test.ts +23 -0
package/src/__tests__/session-workspace-cache-state.test.ts +7 -0
package/src/__tests__/session-workspace-injection.test.ts +21 -0
package/src/__tests__/session-workspace-tool-tracking.test.ts +21 -0
package/src/__tests__/shell-credential-ref.test.ts +2 -0
package/src/__tests__/skill-feature-flags-integration.test.ts +6 -6
package/src/__tests__/skill-load-feature-flag.test.ts +5 -4
package/src/__tests__/skill-projection-feature-flag.test.ts +22 -0
package/src/__tests__/skills.test.ts +8 -4
package/src/__tests__/slack-channel-config.test.ts +3 -1
package/src/__tests__/subagent-tools.test.ts +19 -0
package/src/__tests__/swarm-recursion.test.ts +2 -0
package/src/__tests__/swarm-session-integration.test.ts +2 -0
package/src/__tests__/swarm-tool.test.ts +2 -0
package/src/__tests__/system-prompt.test.ts +3 -1
package/src/__tests__/task-compiler.test.ts +3 -1
package/src/__tests__/task-management-tools.test.ts +3 -1
package/src/__tests__/task-tools.test.ts +3 -1
package/src/__tests__/terminal-sandbox.test.ts +13 -12
package/src/__tests__/terminal-tools.test.ts +2 -0
package/src/__tests__/tool-approval-handler.test.ts +15 -15
package/src/__tests__/tool-execution-abort-cleanup.test.ts +2 -0
package/src/__tests__/tool-execution-pipeline.benchmark.test.ts +2 -0
package/src/__tests__/tool-grant-request-escalation.test.ts +7 -7
package/src/__tests__/trusted-contact-lifecycle-notifications.test.ts +48 -0
package/src/__tests__/trusted-contact-multichannel.test.ts +22 -19
package/src/__tests__/trusted-contact-verification.test.ts +91 -0
package/src/__tests__/twilio-routes-elevenlabs.test.ts +2 -0
package/src/__tests__/twitter-auth-handler.test.ts +3 -1
package/src/__tests__/twitter-cli-routing.test.ts +3 -1
package/src/__tests__/view-image-tool.test.ts +3 -1
package/src/__tests__/voice-invite-redemption.test.ts +329 -0
package/src/__tests__/voice-scoped-grant-consumer.test.ts +7 -5
package/src/__tests__/voice-session-bridge.test.ts +10 -10
package/src/__tests__/work-item-output.test.ts +3 -1
package/src/__tests__/workspace-lifecycle.test.ts +13 -2
package/src/calls/call-controller.ts +26 -23
package/src/calls/guardian-action-sweep.ts +10 -2
package/src/calls/relay-server.ts +216 -27
package/src/calls/types.ts +1 -1
package/src/calls/voice-session-bridge.ts +3 -3
package/src/cli.ts +12 -0
package/src/config/agent-schema.ts +14 -3
package/src/config/calls-schema.ts +6 -6
package/src/config/core-schema.ts +3 -3
package/src/config/feature-flag-registry.json +8 -0
package/src/config/mcp-schema.ts +1 -1
package/src/config/memory-schema.ts +27 -19
package/src/config/schema.ts +21 -21
package/src/config/skills-schema.ts +7 -7
package/src/config/vellum-skills/trusted-contacts/SKILL.md +139 -16
package/src/daemon/handlers/config-inbox.ts +4 -4
package/src/daemon/handlers/sessions.ts +148 -4
package/src/daemon/ipc-contract/messages.ts +16 -0
package/src/daemon/ipc-contract-inventory.json +1 -0
package/src/daemon/lifecycle.ts +19 -0
package/src/daemon/pairing-store.ts +86 -3
package/src/daemon/response-tier.ts +6 -5
package/src/daemon/session-agent-loop.ts +5 -5
package/src/daemon/session-lifecycle.ts +25 -17
package/src/daemon/session-memory.ts +2 -2
package/src/daemon/session-process.ts +1 -20
package/src/daemon/session-runtime-assembly.ts +28 -22
package/src/daemon/session-tool-setup.ts +2 -2
package/src/daemon/session.ts +3 -3
package/src/memory/canonical-guardian-store.ts +63 -1
package/src/memory/channel-guardian-store.ts +1 -0
package/src/memory/conversation-crud.ts +7 -7
package/src/memory/db-init.ts +4 -0
package/src/memory/embedding-local.ts +257 -39
package/src/memory/embedding-runtime-manager.ts +471 -0
package/src/memory/guardian-bindings.ts +25 -1
package/src/memory/indexer.ts +3 -3
package/src/memory/ingress-invite-store.ts +45 -0
package/src/memory/job-handlers/backfill.ts +16 -9
package/src/memory/migrations/037-voice-invite-columns.ts +16 -0
package/src/memory/migrations/index.ts +1 -0
package/src/memory/qdrant-client.ts +31 -22
package/src/memory/schema.ts +4 -0
package/src/notifications/copy-composer.ts +15 -0
package/src/runtime/access-request-helper.ts +43 -7
package/src/runtime/actor-trust-resolver.ts +46 -50
package/src/runtime/channel-invite-transports/voice.ts +58 -0
package/src/runtime/channel-retry-sweep.ts +18 -6
package/src/runtime/guardian-context-resolver.ts +38 -96
package/src/runtime/guardian-reply-router.ts +31 -1
package/src/runtime/ingress-service.ts +80 -3
package/src/runtime/invite-redemption-service.ts +141 -2
package/src/runtime/routes/channel-route-shared.ts +1 -1
package/src/runtime/routes/channel-routes.ts +1 -1
package/src/runtime/routes/conversation-routes.ts +166 -2
package/src/runtime/routes/guardian-approval-interception.ts +17 -6
package/src/runtime/routes/inbound-message-handler.ts +41 -10
package/src/runtime/routes/ingress-routes.ts +52 -4
package/src/runtime/routes/pairing-routes.ts +3 -0
package/src/tools/guardian-control-plane-policy.ts +2 -2
package/src/tools/reminder/reminder-store.ts +10 -14
package/src/tools/tool-approval-handler.ts +11 -11
package/src/tools/types.ts +2 -2
package/src/util/logger.ts +20 -8
package/src/util/platform.ts +10 -0
package/src/util/voice-code.ts +29 -0
package/src/daemon/guardian-invite-intent.ts +0 -124

package/src/__tests__/trusted-contact-verification.test.ts CHANGED Viewed

@@ -52,6 +52,7 @@ import {
   revokeMember,
   upsertMember,
 } from '../memory/ingress-member-store.js';
+import { resolveActorTrust } from '../runtime/actor-trust-resolver.js';
 import {
   createOutboundSession,
   validateAndConsumeChallenge,
@@ -143,6 +144,96 @@ describe('trusted contact verification → member activation', () => {
     expect(member!.sourceChannel).toBe('telegram');
   });
+  test('resolveActorTrust surfaces member displayName when sender displayName is missing', () => {
+    upsertMember({
+      assistantId: 'self',
+      sourceChannel: 'telegram',
+      externalUserId: 'requester-user-jeff',
+      externalChatId: 'requester-chat-jeff',
+      status: 'active',
+      policy: 'allow',
+      displayName: 'Jeff',
+      username: 'jeff_handle',
+    });
+    const trust = resolveActorTrust({
+      assistantId: 'self',
+      sourceChannel: 'telegram',
+      externalChatId: 'requester-chat-jeff',
+      senderExternalUserId: 'requester-user-jeff',
+    });
+    expect(trust.trustClass).toBe('trusted_contact');
+    expect(trust.actorMetadata.displayName).toBe('Jeff');
+    expect(trust.actorMetadata.senderDisplayName).toBeUndefined();
+    expect(trust.actorMetadata.memberDisplayName).toBe('Jeff');
+    expect(trust.actorMetadata.identifier).toBe('@jeff_handle');
+  });
+  test('resolveActorTrust prioritizes member displayName over sender displayName', () => {
+    upsertMember({
+      assistantId: 'self',
+      sourceChannel: 'telegram',
+      externalUserId: 'requester-user-jeff-priority',
+      externalChatId: 'requester-chat-jeff-priority',
+      status: 'active',
+      policy: 'allow',
+      displayName: 'Jeff',
+      username: 'jeff_handle',
+    });
+    const trust = resolveActorTrust({
+      assistantId: 'self',
+      sourceChannel: 'telegram',
+      externalChatId: 'requester-chat-jeff-priority',
+      senderExternalUserId: 'requester-user-jeff-priority',
+      senderUsername: 'jeffrey_telegram',
+      senderDisplayName: 'Jeffrey',
+    });
+    expect(trust.trustClass).toBe('trusted_contact');
+    expect(trust.actorMetadata.displayName).toBe('Jeff');
+    expect(trust.actorMetadata.senderDisplayName).toBe('Jeffrey');
+    expect(trust.actorMetadata.memberDisplayName).toBe('Jeff');
+    expect(trust.actorMetadata.username).toBe('jeff_handle');
+    expect(trust.actorMetadata.identifier).toBe('@jeff_handle');
+  });
+  test('resolveActorTrust falls back to sender metadata when member record matches chat but not sender (group chat)', () => {
+    // Simulate a group chat: member record exists for a different user who
+    // shares the same externalChatId (e.g., Telegram group).
+    upsertMember({
+      assistantId: 'self',
+      sourceChannel: 'telegram',
+      externalUserId: 'other-user-in-group',
+      externalChatId: 'shared-group-chat',
+      status: 'active',
+      policy: 'allow',
+      displayName: 'Other User',
+      username: 'other_handle',
+    });
+    // A different sender sends a message in the same group chat
+    const trust = resolveActorTrust({
+      assistantId: 'self',
+      sourceChannel: 'telegram',
+      externalChatId: 'shared-group-chat',
+      senderExternalUserId: 'actual-sender-in-group',
+      senderUsername: 'actual_sender_handle',
+      senderDisplayName: 'Actual Sender',
+    });
+    // The member record returned by findMember matched on chatId but belongs
+    // to a different user, so member metadata should NOT be used and trust
+    // should NOT be elevated to trusted_contact.
+    expect(trust.trustClass).toBe('unknown');
+    expect(trust.actorMetadata.displayName).toBe('Actual Sender');
+    expect(trust.actorMetadata.senderDisplayName).toBe('Actual Sender');
+    expect(trust.actorMetadata.memberDisplayName).toBeUndefined();
+    expect(trust.actorMetadata.username).toBe('actual_sender_handle');
+    expect(trust.actorMetadata.identifier).toBe('@actual_sender_handle');
+  });
   test('post-verify message is accepted (ACL check passes)', () => {
     // Create and verify a trusted contact
     const session = createOutboundSession({

package/src/__tests__/twilio-routes-elevenlabs.test.ts CHANGED Viewed

@@ -34,6 +34,8 @@ mock.module('../util/logger.js', () => ({
 mock.module('../config/loader.js', () => ({
   getConfig: () => ({
+    ui: {},
     model: 'test',
     provider: 'test',
     apiKeys: {},

package/src/__tests__/twitter-auth-handler.test.ts CHANGED Viewed

@@ -12,7 +12,9 @@ let rawConfigStore: Record<string, unknown> = {};
 let mockIngressPublicBaseUrl: string | undefined = 'https://test.example.com';
 mock.module('../config/loader.js', () => ({
-  getConfig: () => ({}),
+  getConfig: () => ({
+    ui: {},
+    }),
   loadConfig: () => ({ ingress: { publicBaseUrl: mockIngressPublicBaseUrl } }),
   loadRawConfig: () => ({ ...rawConfigStore }),
   saveRawConfig: (cfg: Record<string, unknown>) => {

package/src/__tests__/twitter-cli-routing.test.ts CHANGED Viewed

@@ -20,7 +20,9 @@ mock.module('../config/loader.js', () => ({
   loadConfig: () => ({}),
   saveConfig: () => {},
   saveRawConfig: () => {},
-  getConfig: () => ({}),
+  getConfig: () => ({
+    ui: {},
+    }),
   invalidateConfigCache: () => {},
   getNestedValue: () => undefined,
   setNestedValue: () => {},

package/src/__tests__/view-image-tool.test.ts CHANGED Viewed

@@ -29,7 +29,9 @@ mock.module('../util/logger.js', () => ({
 }));
 mock.module('../config/loader.js', () => ({
-  getConfig: () => ({ memory: {} }),
+  getConfig: () => ({
+    ui: {},
+     memory: {} }),
 }));
 await import('../tools/filesystem/view-image.js');

package/src/__tests__/voice-invite-redemption.test.ts ADDED Viewed

@@ -0,0 +1,329 @@
+import { mkdtempSync, rmSync } from 'node:fs';
+import { tmpdir } from 'node:os';
+import { join } from 'node:path';
+import { afterAll, beforeEach, describe, expect, mock, test } from 'bun:test';
+const testDir = mkdtempSync(join(tmpdir(), 'voice-invite-redemption-test-'));
+mock.module('../util/platform.js', () => ({
+  getDataDir: () => testDir,
+  isMacOS: () => process.platform === 'darwin',
+  isLinux: () => process.platform === 'linux',
+  isWindows: () => process.platform === 'win32',
+  getSocketPath: () => join(testDir, 'test.sock'),
+  getPidPath: () => join(testDir, 'test.pid'),
+  getDbPath: () => join(testDir, 'test.db'),
+  getLogPath: () => join(testDir, 'test.log'),
+  ensureDataDir: () => {},
+}));
+mock.module('../util/logger.js', () => ({
+  getLogger: () => new Proxy({} as Record<string, unknown>, {
+    get: () => () => {},
+  }),
+}));
+import { getSqlite, initializeDb, resetDb } from '../memory/db.js';
+import { createInvite, revokeInvite } from '../memory/ingress-invite-store.js';
+import { upsertMember } from '../memory/ingress-member-store.js';
+import { redeemVoiceInviteCode } from '../runtime/invite-redemption-service.js';
+import { generateVoiceCode, hashVoiceCode } from '../util/voice-code.js';
+initializeDb();
+afterAll(() => {
+  resetDb();
+  try { rmSync(testDir, { recursive: true }); } catch { /* best effort */ }
+});
+function resetTables() {
+  getSqlite().run('DELETE FROM assistant_ingress_members');
+  getSqlite().run('DELETE FROM assistant_ingress_invites');
+}
+// ---------------------------------------------------------------------------
+// generateVoiceCode
+// ---------------------------------------------------------------------------
+describe('generateVoiceCode', () => {
+  test('generates a code with the default 6 digits', () => {
+    const code = generateVoiceCode();
+    expect(code.length).toBe(6);
+    expect(/^\d{6}$/.test(code)).toBe(true);
+  });
+  test('generates a code with the requested digit count', () => {
+    for (const digits of [4, 5, 6, 7, 8, 9, 10]) {
+      const code = generateVoiceCode(digits);
+      expect(code.length).toBe(digits);
+      expect(new RegExp(`^\\d{${digits}}$`).test(code)).toBe(true);
+    }
+  });
+  test('throws for digit count below 4', () => {
+    expect(() => generateVoiceCode(3)).toThrow(/between 4 and 10/);
+  });
+  test('throws for digit count above 10', () => {
+    expect(() => generateVoiceCode(11)).toThrow(/between 4 and 10/);
+  });
+  test('produces different codes across multiple calls (randomness)', () => {
+    // Generate many codes and check that we don't get the same one every time.
+    // With 6 digits there are 900,000 possibilities, so getting 10 identical
+    // codes would be astronomically unlikely.
+    const codes = new Set<string>();
+    for (let i = 0; i < 10; i++) {
+      codes.add(generateVoiceCode());
+    }
+    // At least 2 distinct values in 10 tries
+    expect(codes.size).toBeGreaterThanOrEqual(2);
+  });
+  test('generated code is within the valid numeric range', () => {
+    for (let i = 0; i < 20; i++) {
+      const code = generateVoiceCode(6);
+      const num = parseInt(code, 10);
+      // 6 digits: range [100000, 999999]
+      expect(num).toBeGreaterThanOrEqual(100000);
+      expect(num).toBeLessThanOrEqual(999999);
+    }
+  });
+});
+// ---------------------------------------------------------------------------
+// hashVoiceCode
+// ---------------------------------------------------------------------------
+describe('hashVoiceCode', () => {
+  test('produces a deterministic hash', () => {
+    const code = '123456';
+    const hash1 = hashVoiceCode(code);
+    const hash2 = hashVoiceCode(code);
+    expect(hash1).toBe(hash2);
+  });
+  test('produces a hex-encoded SHA-256 hash (64 chars)', () => {
+    const hash = hashVoiceCode('654321');
+    expect(hash.length).toBe(64);
+    expect(/^[0-9a-f]{64}$/.test(hash)).toBe(true);
+  });
+  test('different codes produce different hashes', () => {
+    const hash1 = hashVoiceCode('111111');
+    const hash2 = hashVoiceCode('222222');
+    expect(hash1).not.toBe(hash2);
+  });
+});
+// ---------------------------------------------------------------------------
+// redeemVoiceInviteCode
+// ---------------------------------------------------------------------------
+describe('redeemVoiceInviteCode', () => {
+  beforeEach(resetTables);
+  /**
+   * Helper: create a voice invite with a known code and return the
+   * invite record plus the plaintext code.
+   */
+  function createVoiceInvite(opts: {
+    callerPhone?: string;
+    maxUses?: number;
+    expiresInMs?: number;
+    voiceCodeDigits?: number;
+    assistantId?: string;
+  } = {}) {
+    const digits = opts.voiceCodeDigits ?? 6;
+    const code = generateVoiceCode(digits);
+    const codeHash = hashVoiceCode(code);
+    const { invite } = createInvite({
+      assistantId: opts.assistantId ?? 'self',
+      sourceChannel: 'voice',
+      maxUses: opts.maxUses ?? 1,
+      expiresInMs: opts.expiresInMs,
+      expectedExternalUserId: opts.callerPhone ?? '+15551234567',
+      voiceCodeHash: codeHash,
+      voiceCodeDigits: digits,
+    });
+    return { invite, code };
+  }
+  test('happy path: correct caller + correct code redeems successfully', () => {
+    const phone = '+15551234567';
+    const { code } = createVoiceInvite({ callerPhone: phone });
+    const result = redeemVoiceInviteCode({
+      callerExternalUserId: phone,
+      sourceChannel: 'voice',
+      code,
+    });
+    expect(result.ok).toBe(true);
+    expect(result).toMatchObject({
+      ok: true,
+      type: 'redeemed',
+      memberId: expect.any(String),
+      inviteId: expect.any(String),
+    });
+  });
+  test('wrong caller identity fails with generic error', () => {
+    const { code } = createVoiceInvite({ callerPhone: '+15551234567' });
+    const result = redeemVoiceInviteCode({
+      callerExternalUserId: '+19999999999',
+      sourceChannel: 'voice',
+      code,
+    });
+    expect(result).toEqual({ ok: false, reason: 'invalid_or_expired' });
+  });
+  test('wrong code fails with generic error', () => {
+    createVoiceInvite({ callerPhone: '+15551234567' });
+    const result = redeemVoiceInviteCode({
+      callerExternalUserId: '+15551234567',
+      sourceChannel: 'voice',
+      code: '000000',
+    });
+    expect(result).toEqual({ ok: false, reason: 'invalid_or_expired' });
+  });
+  test('expired invite fails', () => {
+    const phone = '+15551234567';
+    const { code } = createVoiceInvite({ callerPhone: phone, expiresInMs: -1 });
+    const result = redeemVoiceInviteCode({
+      callerExternalUserId: phone,
+      sourceChannel: 'voice',
+      code,
+    });
+    expect(result).toEqual({ ok: false, reason: 'invalid_or_expired' });
+  });
+  test('max uses exhausted fails', () => {
+    const phone = '+15551234567';
+    const { code } = createVoiceInvite({ callerPhone: phone, maxUses: 1 });
+    // First redemption succeeds
+    const first = redeemVoiceInviteCode({
+      callerExternalUserId: phone,
+      sourceChannel: 'voice',
+      code,
+    });
+    expect(first.ok).toBe(true);
+    // Second redemption fails — max uses exhausted
+    const second = redeemVoiceInviteCode({
+      callerExternalUserId: phone,
+      sourceChannel: 'voice',
+      code,
+    });
+    expect(second).toEqual({ ok: false, reason: 'invalid_or_expired' });
+  });
+  test('revoked invite fails', () => {
+    const phone = '+15551234567';
+    const { invite, code } = createVoiceInvite({ callerPhone: phone });
+    revokeInvite(invite.id);
+    const result = redeemVoiceInviteCode({
+      callerExternalUserId: phone,
+      sourceChannel: 'voice',
+      code,
+    });
+    expect(result).toEqual({ ok: false, reason: 'invalid_or_expired' });
+  });
+  test('voice-only invite cannot be redeemed if sourceChannel on invite is not voice', () => {
+    // Create a non-voice invite with voice code metadata to simulate a
+    // hypothetical misconfiguration. The redemption service filters by
+    // sourceChannel='voice', so non-voice invites are invisible.
+    const code = generateVoiceCode(6);
+    const codeHash = hashVoiceCode(code);
+    createInvite({
+      sourceChannel: 'telegram',
+      maxUses: 1,
+      expectedExternalUserId: '+15551234567',
+      voiceCodeHash: codeHash,
+      voiceCodeDigits: 6,
+    });
+    const result = redeemVoiceInviteCode({
+      callerExternalUserId: '+15551234567',
+      sourceChannel: 'voice',
+      code,
+    });
+    // findActiveVoiceInvites filters by sourceChannel='voice', so the
+    // telegram invite won't be found.
+    expect(result).toEqual({ ok: false, reason: 'invalid_or_expired' });
+  });
+  test('already-member caller gets already_member outcome', () => {
+    const phone = '+15551234567';
+    const { code } = createVoiceInvite({ callerPhone: phone });
+    // Pre-create an active member for this phone on voice channel
+    upsertMember({
+      sourceChannel: 'voice',
+      externalUserId: phone,
+      status: 'active',
+      policy: 'allow',
+    });
+    const result = redeemVoiceInviteCode({
+      callerExternalUserId: phone,
+      sourceChannel: 'voice',
+      code,
+    });
+    expect(result.ok).toBe(true);
+    expect(result).toMatchObject({
+      ok: true,
+      type: 'already_member',
+      memberId: expect.any(String),
+    });
+  });
+  test('blocked member gets generic failure to avoid leaking membership status', () => {
+    const phone = '+15551234567';
+    const { code } = createVoiceInvite({ callerPhone: phone });
+    upsertMember({
+      sourceChannel: 'voice',
+      externalUserId: phone,
+      status: 'blocked',
+      policy: 'deny',
+    });
+    const result = redeemVoiceInviteCode({
+      callerExternalUserId: phone,
+      sourceChannel: 'voice',
+      code,
+    });
+    expect(result).toEqual({ ok: false, reason: 'invalid_or_expired' });
+  });
+  test('empty callerExternalUserId fails', () => {
+    const result = redeemVoiceInviteCode({
+      callerExternalUserId: '',
+      sourceChannel: 'voice',
+      code: '123456',
+    });
+    expect(result).toEqual({ ok: false, reason: 'invalid_or_expired' });
+  });
+});

package/src/__tests__/voice-scoped-grant-consumer.test.ts CHANGED Viewed

@@ -53,6 +53,8 @@ mock.module('../util/logger.js', () => ({
 mock.module('../config/loader.js', () => ({
   getConfig: () => ({
+    ui: {},
     provider: 'anthropic',
     providerOrder: ['anthropic'],
     apiKeys: { anthropic: 'test-key' },
@@ -266,7 +268,7 @@ describe('voice bridge confirmation handling (grant consumption via primitive)',
     const guardianContext: GuardianRuntimeContext = {
       sourceChannel: 'voice',
-      actorRole: 'non-guardian',
+      trustClass: 'trusted_contact',
       requesterExternalUserId: 'caller-123',
     };
@@ -307,7 +309,7 @@ describe('voice bridge confirmation handling (grant consumption via primitive)',
     const guardianContext: GuardianRuntimeContext = {
       sourceChannel: 'voice',
-      actorRole: 'non-guardian',
+      trustClass: 'trusted_contact',
       requesterExternalUserId: 'caller-123',
     };
@@ -343,7 +345,7 @@ describe('voice bridge confirmation handling (grant consumption via primitive)',
     const guardianContext: GuardianRuntimeContext = {
       sourceChannel: 'voice',
-      actorRole: 'non-guardian',
+      trustClass: 'trusted_contact',
     };
     await startVoiceTurn({
@@ -373,7 +375,7 @@ describe('voice bridge confirmation handling (grant consumption via primitive)',
     const guardianContext: GuardianRuntimeContext = {
       sourceChannel: 'voice',
-      actorRole: 'guardian',
+      trustClass: 'guardian',
     };
     await startVoiceTurn({
@@ -407,7 +409,7 @@ describe('voice bridge confirmation handling (grant consumption via primitive)',
     const guardianContext: GuardianRuntimeContext = {
       sourceChannel: 'voice',
-      actorRole: 'non-guardian',
+      trustClass: 'trusted_contact',
       requesterExternalUserId: 'caller-123',
     };

package/src/__tests__/voice-session-bridge.test.ts CHANGED Viewed

@@ -304,7 +304,7 @@ describe('voice-session-bridge', () => {
       isInbound: true,
       guardianContext: {
         sourceChannel: 'voice',
-        actorRole: 'non-guardian',
+        trustClass: 'trusted_contact',
         guardianExternalUserId: '+15550009999',
         guardianChatId: '+15550009999',
         requesterExternalUserId: '+15550002222',
@@ -340,7 +340,7 @@ describe('voice-session-bridge', () => {
       isInbound: true,
       guardianContext: {
         sourceChannel: 'voice',
-        actorRole: 'unverified_channel',
+        trustClass: 'unknown',
         denialReason: 'no_binding',
       },
       onTextDelta: () => {},
@@ -374,7 +374,7 @@ describe('voice-session-bridge', () => {
       isInbound: true,
       guardianContext: {
         sourceChannel: 'voice',
-        actorRole: 'guardian',
+        trustClass: 'guardian',
         guardianExternalUserId: '+15550001111',
         guardianChatId: '+15550001111',
       },
@@ -407,7 +407,7 @@ describe('voice-session-bridge', () => {
     const guardianCtx = {
       sourceChannel: 'voice' as const,
-      actorRole: 'guardian' as const,
+      trustClass: 'guardian' as const,
       guardianExternalUserId: '+15550001111',
       guardianChatId: '+15550001111',
     };
@@ -450,7 +450,7 @@ describe('voice-session-bridge', () => {
       isInbound: true,
       guardianContext: {
         sourceChannel: 'voice',
-        actorRole: 'non-guardian',
+        trustClass: 'trusted_contact',
       },
       onTextDelta: () => {},
       onComplete: () => {},
@@ -499,7 +499,7 @@ describe('voice-session-bridge', () => {
       isInbound: true,
       guardianContext: {
         sourceChannel: 'voice',
-        actorRole: 'non-guardian',
+        trustClass: 'trusted_contact',
       },
       onTextDelta: () => {},
       onComplete: () => {},
@@ -574,7 +574,7 @@ describe('voice-session-bridge', () => {
       isInbound: true,
       guardianContext: {
         sourceChannel: 'voice',
-        actorRole: 'non-guardian',
+        trustClass: 'trusted_contact',
         guardianExternalUserId: '+15550009999',
         guardianChatId: '+15550009999',
         requesterExternalUserId: '+15550002222',
@@ -644,7 +644,7 @@ describe('voice-session-bridge', () => {
       isInbound: true,
       guardianContext: {
         sourceChannel: 'voice',
-        actorRole: 'unverified_channel',
+        trustClass: 'unknown',
         denialReason: 'no_binding',
       },
       onTextDelta: () => {},
@@ -768,7 +768,7 @@ describe('voice-session-bridge', () => {
       isInbound: true,
       guardianContext: {
         sourceChannel: 'voice',
-        actorRole: 'guardian',
+        trustClass: 'guardian',
         guardianExternalUserId: '+15550001111',
         guardianChatId: '+15550001111',
       },
@@ -835,7 +835,7 @@ describe('voice-session-bridge', () => {
       isInbound: true,
       guardianContext: {
         sourceChannel: 'voice',
-        actorRole: 'guardian',
+        trustClass: 'guardian',
         guardianExternalUserId: '+15550001111',
         guardianChatId: '+15550001111',
       },

package/src/__tests__/work-item-output.test.ts CHANGED Viewed

@@ -29,7 +29,9 @@ mock.module('../util/logger.js', () => ({
 }));
 mock.module('../config/loader.js', () => ({
-  getConfig: () => ({ memory: {} }),
+  getConfig: () => ({
+    ui: {},
+     memory: {} }),
 }));
 mock.module('./indexer.js', () => ({

package/src/__tests__/workspace-lifecycle.test.ts CHANGED Viewed

@@ -10,8 +10,12 @@ import { existsSync,mkdirSync, rmSync, writeFileSync } from 'node:fs';
 import { tmpdir } from 'node:os';
 import { join } from 'node:path';
-import { afterEach,beforeEach, describe, expect, test } from 'bun:test';
+import { afterAll, afterEach, beforeEach, describe, expect, test } from 'bun:test';
+import {
+  _resetEnrichmentService,
+  getEnrichmentService,
+} from '../workspace/commit-message-enrichment-service.js';
 import {
   _resetGitServiceRegistry,
   getWorkspaceGitService,
@@ -36,12 +40,19 @@ describe('Workspace git lifecycle (integration)', () => {
     _resetHeartbeatState();
   });
-  afterEach(() => {
+  afterEach(async () => {
+    try { await getEnrichmentService().shutdown(); } catch { /* ignore */ }
+    _resetEnrichmentService();
     if (existsSync(testDir)) {
       rmSync(testDir, { recursive: true, force: true });
     }
   });
+  afterAll(async () => {
+    try { await getEnrichmentService().shutdown(); } catch { /* ignore */ }
+    _resetEnrichmentService();
+  });
   // Build a clean git env: strip all GIT_* env vars that CI runners
   // inject, then set GIT_CEILING_DIRECTORIES to isolate test repos.
   function gitEnv(cwd: string): Record<string, string> {