@vellumai/assistant 0.4.56 → 0.4.57

package/src/tools/browser/__tests__/auth-detector.test.ts

@@ -185,7 +185,7 @@ describe("isAuthUrl", () => {
 
 // ── DOM detection: login pages ───────────────────────────────────────
 
-describe("detectAuthChallenge — login pages", () => {
+describe("detectAuthChallenge - login pages", () => {
   it("detects a generic login page with password input", async () => {
     const page = mockPage("https://example.com/login", {
       type: "login",
@@ -251,7 +251,7 @@ describe("detectAuthChallenge — login pages", () => {
 
 // ── DOM detection: 2FA pages ─────────────────────────────────────────
 
-describe("detectAuthChallenge — 2FA pages", () => {
+describe("detectAuthChallenge - 2FA pages", () => {
   it("detects a 2FA page with code input", async () => {
     const page = mockPage("https://accounts.google.com/signin/v2/challenge", {
       type: "2fa",
@@ -290,7 +290,7 @@ describe("detectAuthChallenge — 2FA pages", () => {
 
 // ── DOM detection: OAuth consent ─────────────────────────────────────
 
-describe("detectAuthChallenge — OAuth consent", () => {
+describe("detectAuthChallenge - OAuth consent", () => {
   it("detects an OAuth consent page with Allow button", async () => {
     const page = mockPage("https://accounts.google.com/o/oauth2/v2/auth", {
       type: "oauth_consent",
@@ -324,7 +324,7 @@ describe("detectAuthChallenge — OAuth consent", () => {
 
 // ── Non-auth pages ───────────────────────────────────────────────────
 
-describe("detectAuthChallenge — non-auth pages", () => {
+describe("detectAuthChallenge - non-auth pages", () => {
   it("returns null for a regular page", async () => {
     const page = mockPage("https://example.com/dashboard", null);
 

package/src/tools/browser/auth-detector.ts

@@ -25,7 +25,7 @@ interface ServicePattern {
 }
 
 const SERVICE_PATTERNS: ServicePattern[] = [
-  // Auth-subdomain services — hostname match is sufficient
+  // Auth-subdomain services - hostname match is sufficient
   { pattern: /accounts\.google\.com/, service: "Google" },
   { pattern: /login\.microsoftonline\.com/, service: "Microsoft" },
   { pattern: /appleid\.apple\.com/, service: "Apple" },
@@ -33,7 +33,7 @@ const SERVICE_PATTERNS: ServicePattern[] = [
   { pattern: /id\.atlassian\.com/, service: "Atlassian" },
   { pattern: /auth0\.com/, service: "Auth0" },
   { pattern: /okta\.com/, service: "Okta" },
-  // General-domain services — need both hostname AND path match
+  // General-domain services - need both hostname AND path match
   {
     pattern: /github\.com/,
     service: "GitHub",
@@ -89,7 +89,7 @@ export function isAuthUrl(url: string): boolean {
     )
   )
     return true;
-  // Generic path patterns — match against pathname only to avoid false positives
+  // Generic path patterns - match against pathname only to avoid false positives
   // from query parameters or fragments that happen to contain auth-related words.
   return GENERIC_AUTH_PATTERNS.some((p) => p.test(parsedUrl.pathname));
 }
@@ -228,7 +228,7 @@ const CAPTCHA_DETECT_EXPRESSION = `(() => {
     if (document.querySelector(sel)) return true;
   }
 
-  // reCAPTCHA — only flag visible challenges, not invisible v3 scoring widgets.
+  // reCAPTCHA - only flag visible challenges, not invisible v3 scoring widgets.
   // The challenge iframe (api2/bframe) or a visible .g-recaptcha container indicates
   // an interactive CAPTCHA the user must solve.
   if (document.querySelector('iframe[src*="recaptcha/api2/bframe"]')) return true;
@@ -238,14 +238,14 @@ const CAPTCHA_DETECT_EXPRESSION = `(() => {
     if (rect.width > 0 && rect.height > 0) return true;
   }
 
-  // hCaptcha — only flag when a visible challenge container is present
+  // hCaptcha - only flag when a visible challenge container is present
   const hcaptchaContainer = document.querySelector('#hcaptcha-container, .h-captcha');
   if (hcaptchaContainer) {
     const rect = hcaptchaContainer.getBoundingClientRect();
     if (rect.width > 0 && rect.height > 0) return true;
   }
 
-  // hCaptcha fallback — catch custom-rendered hCaptcha in arbitrary host elements
+  // hCaptcha fallback - catch custom-rendered hCaptcha in arbitrary host elements
   // by looking for any visible hCaptcha iframe (check all, not just the first)
   const hcaptchaIframes = document.querySelectorAll('iframe[src*="hcaptcha"]');
   for (const iframe of hcaptchaIframes) {

package/src/tools/browser/browser-execution.ts

@@ -245,7 +245,7 @@ export async function executeBrowserNavigate(
       await page.route("**/*", routeHandler);
     }
 
-    // Use domcontentloaded but with a shorter timeout — if it times out,
+    // Use domcontentloaded but with a shorter timeout - if it times out,
     // the page is likely still usable (heavy SPAs like DoorDash keep loading
     // scripts after DOMContentLoaded). Fall back gracefully instead of failing.
     let response: PageResponse | null = null;
@@ -260,7 +260,7 @@ export async function executeBrowserNavigate(
       const navMsg = navErr instanceof Error ? navErr.message : String(navErr);
       if (navMsg.includes("Timeout") || navMsg.includes("timeout")) {
         // If the page URL never changed from before navigation, the page
-        // never actually loaded — re-throw instead of reporting success.
+        // never actually loaded - re-throw instead of reporting success.
         if (page.url() === urlBeforeNav && urlBeforeNav !== parsedUrl.href) {
           throw navErr;
         }
@@ -300,7 +300,7 @@ export async function executeBrowserNavigate(
     browserManager.clearSnapshotMap(context.conversationId);
 
     // Auto-dismiss common blocker modals (regulatory notices, cookie banners)
-    // that aren't exposed in the accessibility tree. Runs silently — if no
+    // that aren't exposed in the accessibility tree. Runs silently - if no
     // modal is present the evaluate is a no-op.
     try {
       await page.evaluate(`(() => {
@@ -318,7 +318,7 @@ export async function executeBrowserNavigate(
         }
       })()`);
     } catch {
-      // Page may have navigated during evaluate — safe to ignore
+      // Page may have navigated during evaluate - safe to ignore
     }
 
     const finalUrl = page.url();
@@ -335,7 +335,7 @@ export async function executeBrowserNavigate(
 
     if (navigationTimedOut) {
       lines.push(
-        `Note: Page is still loading (domcontentloaded timed out). The page should still be interactive — use browser_snapshot to check.`,
+        `Note: Page is still loading (domcontentloaded timed out). The page should still be interactive - use browser_snapshot to check.`,
       );
     }
 
@@ -347,7 +347,7 @@ export async function executeBrowserNavigate(
     try {
       const authChallenge = await detectAuthChallenge(page);
       const captchaChallenge = await detectCaptchaChallenge(page);
-      // CAPTCHA takes priority — it blocks all interaction including login
+      // CAPTCHA takes priority - it blocks all interaction including login
       let challenge = captchaChallenge ?? authChallenge;
 
       // Many CAPTCHA interstitials (e.g. Cloudflare "Just a moment") auto-resolve
@@ -362,7 +362,7 @@ export async function executeBrowserNavigate(
           const still = await detectCaptchaChallenge(page);
           if (!still) {
             log.info("CAPTCHA auto-resolved");
-            // Re-check for auth challenge now that CAPTCHA is gone —
+            // Re-check for auth challenge now that CAPTCHA is gone -
             // the page may have loaded a login form behind it.
             challenge = await detectAuthChallenge(page);
             break;
@@ -372,7 +372,7 @@ export async function executeBrowserNavigate(
 
       if (challenge) {
         if (challenge.type === "captcha") {
-          // CAPTCHA persisted after auto-resolve wait — hand off to user
+          // CAPTCHA persisted after auto-resolve wait - hand off to user
           if (sender) {
             const { startHandoff } = await import("./browser-handoff.js");
             await startHandoff(context.conversationId, {
@@ -388,7 +388,7 @@ export async function executeBrowserNavigate(
               `CAPTCHA solved by user. Current page: ${newTitle} (${newUrl})`,
             );
 
-            // Re-check for auth challenges — the page behind the CAPTCHA may have a login form
+            // Re-check for auth challenges - the page behind the CAPTCHA may have a login form
             const postCaptchaAuth = await detectAuthChallenge(page);
             if (postCaptchaAuth) {
               lines.push("");
@@ -407,7 +407,7 @@ export async function executeBrowserNavigate(
                 "3. For email verification codes, use ui_show with a form to ask the user for the code mid-turn",
               );
               lines.push(
-                "4. Do NOT give up or tell the user to sign in manually — handle the login flow yourself",
+                "4. Do NOT give up or tell the user to sign in manually - handle the login flow yourself",
               );
             }
           } else {
@@ -420,7 +420,7 @@ export async function executeBrowserNavigate(
             );
           }
         } else {
-          // Login / 2FA / OAuth — the agent should handle these itself
+          // Login / 2FA / OAuth - the agent should handle these itself
           // using browser tools + credential_store. Don't hand off.
           lines.push("");
           lines.push(formatAuthChallenge(challenge));
@@ -438,7 +438,7 @@ export async function executeBrowserNavigate(
             "3. For email verification codes, use ui_show with a form to ask the user for the code mid-turn",
           );
           lines.push(
-            "4. Do NOT give up or tell the user to sign in manually — handle the login flow yourself",
+            "4. Do NOT give up or tell the user to sign in manually - handle the login flow yourself",
           );
         }
       }
@@ -1047,7 +1047,7 @@ export async function executeBrowserFillCredential(
         pageDomain = parsed.hostname;
       }
     } catch {
-      // Invalid URL — pageDomain stays undefined, broker will deny if domain policy exists
+      // Invalid URL - pageDomain stays undefined, broker will deny if domain policy exists
     }
 
     const result = await credentialBroker.browserFill({

package/src/tools/browser/browser-manager.ts

@@ -596,7 +596,7 @@ class BrowserManager {
       log.debug("positionWindowSidebar: placed browser window in top-right");
     } catch (err) {
       log.warn({ err }, "positionWindowSidebar: failed to position window");
-      // CDP session may be stale (e.g. page closed) — clear it so it gets recreated
+      // CDP session may be stale (e.g. page closed) - clear it so it gets recreated
       this.browserCdpSession = null;
       this.browserWindowId = null;
     }
@@ -682,7 +682,7 @@ class BrowserManager {
 
       this.handoffResolvers.set(conversationId, resolver);
 
-      // Poll for URL changes — auto-resolve when the page navigates
+      // Poll for URL changes - auto-resolve when the page navigates
       // (e.g., CAPTCHA solved, login redirect)
       if (initialUrl && page) {
         pollTimer = setInterval(() => {
@@ -702,7 +702,7 @@ class BrowserManager {
               resolver();
             }
           } catch {
-            // Page may have been closed — resolve gracefully
+            // Page may have been closed - resolve gracefully
             this.interactiveModeSessions.delete(conversationId);
             resolver();
           }

package/src/tools/browser/chrome-cdp.ts

@@ -53,7 +53,7 @@ export interface EnsureChromeOptions {
 /**
  * Returns `true` when a CDP endpoint is responding at the given base URL
  * and has at least one open page tab. A CDP endpoint with zero tabs is
- * stale and unusable — callers should treat it as not ready.
+ * stale and unusable - callers should treat it as not ready.
  */
 export async function isCdpReady(
   cdpBase: string = DEFAULT_CDP_BASE,
@@ -62,7 +62,7 @@ export async function isCdpReady(
     const res = await fetch(`${cdpBase}/json/version`);
     if (!res.ok) return false;
 
-    // Verify there's at least one page tab — a CDP endpoint with no tabs
+    // Verify there's at least one page tab - a CDP endpoint with no tabs
     // is a stale Chrome process that should be relaunched.
     const listRes = await fetch(`${cdpBase}/json/list`);
     if (!listRes.ok) return false;
@@ -99,19 +99,19 @@ export async function ensureChromeWithCdp(
   try {
     const versionRes = await fetch(`${baseUrl}/json/version`);
     if (versionRes.ok) {
-      // Stale Chrome — CDP up but no tabs. Kill it so we can relaunch.
+      // Stale Chrome - CDP up but no tabs. Kill it so we can relaunch.
       try {
         execSync(`lsof -ti :${port} | xargs kill -9 2>/dev/null`, {
           stdio: "ignore",
         });
       } catch {
-        // Ignore — process may have already exited.
+        // Ignore - process may have already exited.
       }
       // Brief wait for port to clear.
       await new Promise((r) => setTimeout(r, 500));
     }
   } catch {
-    // CDP not responding at all — port is free, proceed to launch.
+    // CDP not responding at all - port is free, proceed to launch.
   }
 
   const args = [

package/src/tools/browser/jit-auth.ts

@@ -65,6 +65,6 @@ function mapAuthFieldType(authType: AuthField["type"]): FormField["type"] {
 export function buildTimeoutMessage(challenge: AuthChallenge): string {
   const serviceName = challenge.service ?? "the website";
   return challenge.type === "2fa"
-    ? `No rush — just let me know when you've got the verification code from ${serviceName}.`
-    : `Take your time — I'll continue once you sign in to ${serviceName}.`;
+    ? `No rush - just let me know when you've got the verification code from ${serviceName}.`
+    : `Take your time - I'll continue once you sign in to ${serviceName}.`;
 }

package/src/tools/browser/network-recorder.test.ts

@@ -57,7 +57,7 @@ describe("NetworkRecorder", () => {
       try {
         await recorder.startDirect();
       } catch {
-        // Expected — WebSocket connection will fail in test environment
+        // Expected - WebSocket connection will fail in test environment
       }
 
       expect(fetchCalls.length).toBeGreaterThanOrEqual(1);
@@ -73,7 +73,7 @@ describe("NetworkRecorder", () => {
       try {
         await recorder.startDirect(explicitBase);
       } catch {
-        // Expected — WebSocket connection will fail in test environment
+        // Expected - WebSocket connection will fail in test environment
       }
 
       expect(fetchCalls.length).toBeGreaterThanOrEqual(1);

package/src/tools/browser/network-recorder.ts

@@ -18,11 +18,11 @@ const log = getLogger("network-recorder");
 /** Max response body size to capture (64 KB). */
 const MAX_BODY_SIZE = 64 * 1024;
 
-/** Default CDP endpoint — used when no base URL is injected. */
+/** Default CDP endpoint - used when no base URL is injected. */
 const DEFAULT_CDP_BASE = "http://localhost:9222";
 
 /**
- * Minimal CDP client over WebSocket — talks the Chrome DevTools Protocol directly
+ * Minimal CDP client over WebSocket - talks the Chrome DevTools Protocol directly
  * without needing Playwright, so it can attach to the user's real browsing session.
  */
 class DirectCDPClient {
@@ -385,7 +385,7 @@ export class NetworkRecorder {
       this.loginDetectedFired = true;
       log.info(
         { url: truncate(entry.request.url, 120, "") },
-        "Login detected — will auto-stop in 5s",
+        "Login detected - will auto-stop in 5s",
       );
       // Delay to let remaining network requests (cookies, session data) settle
       setTimeout(() => this.onLoginDetected?.(), 5000);

package/src/tools/browser/runtime-check.ts

@@ -26,7 +26,7 @@ function resolveChromium(
 /**
  * Try importing playwright from the bundled binary. Returns the module
  * if chromium is resolvable, otherwise undefined. This never installs
- * anything — safe for diagnostic/read-only use.
+ * anything - safe for diagnostic/read-only use.
  */
 async function tryBundledPlaywright(): Promise<
   typeof import("playwright") | undefined
@@ -95,7 +95,7 @@ export async function importPlaywright(): Promise<typeof import("playwright")> {
     }
   }
 
-  // Dynamic import with a runtime-computed path — bun can't statically
+  // Dynamic import with a runtime-computed path - bun can't statically
   // analyze this, so it resolves from the filesystem at runtime.
   const entryPath = resolvePackageEntry(pwPkg);
   const pw: Record<string, unknown> = await import(entryPath);
@@ -109,7 +109,7 @@ export async function importPlaywright(): Promise<typeof import("playwright")> {
 }
 
 export async function checkBrowserRuntime(): Promise<BrowserRuntimeStatus> {
-  // Diagnostic only — no side effects (no playwright installation)
+  // Diagnostic only - no side effects (no playwright installation)
   let chromium: { executablePath: () => string };
   try {
     const pw = await tryBundledPlaywright();

package/src/tools/claude-code/claude-code.ts

@@ -438,7 +438,7 @@ export const claudeCodeTool: Tool = {
             }
 
             if (!emittedToolUseIds.has(toolUseId)) {
-              // New tool — mark previous as complete and emit tool_start.
+              // New tool - mark previous as complete and emit tool_start.
               if (lastSubToolName && activeToolUseId !== toolUseId) {
                 context.onOutput?.(
                   JSON.stringify({
@@ -523,7 +523,7 @@ export const claudeCodeTool: Tool = {
                 resultText = message.result;
               }
             } else {
-              // Error result — surface the subtype and details
+              // Error result - surface the subtype and details
               hasError = true;
               const errors = message.errors ?? [];
               const denials = message.permission_denials ?? [];

package/src/tools/computer-use/definitions.ts

@@ -3,7 +3,7 @@
  *
  * These tools mirror the macOS client's ToolDefinitions.swift schemas, prefixed
  * with `computer_use_` to avoid collisions with existing daemon tools.  They are all
- * proxy tools — execution is forwarded to a connected macOS client and never
+ * proxy tools - execution is forwarded to a connected macOS client and never
  * handled locally by the daemon.
  */
 
@@ -21,14 +21,14 @@ function proxyExecute(): Promise<ToolExecutionResult> {
   );
 }
 
-const reasonProperty = {
+const activityProperty = {
   type: "string" as const,
   description:
     "Brief non-technical explanation of why this tool is being called",
 };
 
 // ---------------------------------------------------------------------------
-// click (unified — click_type selects single / double / right)
+// click (unified - click_type selects single / double / right)
 // ---------------------------------------------------------------------------
 
 export const computerUseClickTool: Tool = {
@@ -69,7 +69,7 @@ export const computerUseClickTool: Tool = {
             description:
               "Explanation of what you see and why you are clicking here",
           },
-          reason: reasonProperty,
+          activity: activityProperty,
         },
         required: ["reasoning"],
       },
@@ -106,7 +106,7 @@ export const computerUseTypeTextTool: Tool = {
             type: "string",
             description: "Explanation of what you are typing and why",
           },
-          reason: reasonProperty,
+          activity: activityProperty,
         },
         required: ["text", "reasoning"],
       },
@@ -144,7 +144,7 @@ export const computerUseKeyTool: Tool = {
             type: "string",
             description: "Explanation of why you are pressing this key",
           },
-          reason: reasonProperty,
+          activity: activityProperty,
         },
         required: ["key", "reasoning"],
       },
@@ -199,7 +199,7 @@ export const computerUseScrollTool: Tool = {
             type: "string",
             description: "Explanation of why you are scrolling",
           },
-          reason: reasonProperty,
+          activity: activityProperty,
         },
         required: ["direction", "amount", "reasoning"],
       },
@@ -260,7 +260,7 @@ export const computerUseDragTool: Tool = {
             type: "string",
             description: "Explanation of what you are dragging and why",
           },
-          reason: reasonProperty,
+          activity: activityProperty,
         },
         required: ["reasoning"],
       },
@@ -296,7 +296,7 @@ export const computerUseWaitTool: Tool = {
             type: "string",
             description: "Explanation of what you are waiting for",
           },
-          reason: reasonProperty,
+          activity: activityProperty,
         },
         required: ["duration_ms", "reasoning"],
       },
@@ -313,7 +313,7 @@ export const computerUseWaitTool: Tool = {
 export const computerUseOpenAppTool: Tool = {
   name: "computer_use_open_app",
   description:
-    "Open or switch to a macOS application by name. Preferred over cmd+tab for switching apps — more reliable and explicit.",
+    "Open or switch to a macOS application by name. Preferred over cmd+tab for switching apps - more reliable and explicit.",
   category: "computer-use",
   defaultRiskLevel: RiskLevel.Low,
   executionMode: "proxy",
@@ -335,7 +335,7 @@ export const computerUseOpenAppTool: Tool = {
             description:
               "Explanation of why you need to open or switch to this app",
           },
-          reason: reasonProperty,
+          activity: activityProperty,
         },
         required: ["app_name", "reasoning"],
       },
@@ -352,7 +352,7 @@ export const computerUseOpenAppTool: Tool = {
 export const computerUseRunAppleScriptTool: Tool = {
   name: "computer_use_run_applescript",
   description:
-    "Run an AppleScript command. Prefer this over click/type when possible — it doesn't move the cursor or interrupt the user. Never use 'do shell script' inside AppleScript (blocked for security).",
+    "Run an AppleScript command. Prefer this over click/type when possible - it doesn't move the cursor or interrupt the user. Never use 'do shell script' inside AppleScript (blocked for security).",
   category: "computer-use",
   defaultRiskLevel: RiskLevel.Low,
   executionMode: "proxy",
@@ -373,7 +373,7 @@ export const computerUseRunAppleScriptTool: Tool = {
             description:
               "Explanation of what this script does and why AppleScript is better than UI interaction for this step",
           },
-          reason: reasonProperty,
+          activity: activityProperty,
         },
         required: ["script", "reasoning"],
       },
@@ -406,7 +406,7 @@ export const computerUseDoneTool: Tool = {
             type: "string",
             description: "Human-readable summary of what was accomplished",
           },
-          reason: reasonProperty,
+          activity: activityProperty,
         },
         required: ["summary"],
       },
@@ -443,7 +443,7 @@ export const computerUseRespondTool: Tool = {
             type: "string",
             description: "Explanation of how you determined the answer",
           },
-          reason: reasonProperty,
+          activity: activityProperty,
         },
         required: ["answer", "reasoning"],
       },
@@ -460,7 +460,7 @@ export const computerUseRespondTool: Tool = {
 export const computerUseObserveTool: Tool = {
   name: "computer_use_observe",
   description:
-    "Capture the current screen state. Returns the accessibility tree with [ID] element references and optionally a screenshot.\n\nThe accessibility tree shows interactive elements like [3] AXButton 'Save' or [17] AXTextField 'Search'. Use element_id to target these elements in subsequent actions — this is much more reliable than pixel coordinates.\n\nCall this before your first computer use action, or to check screen state without acting.",
+    "Capture the current screen state. Returns the accessibility tree with [ID] element references and optionally a screenshot.\n\nThe accessibility tree shows interactive elements like [3] AXButton 'Save' or [17] AXTextField 'Search'. Use element_id to target these elements in subsequent actions - this is much more reliable than pixel coordinates.\n\nCall this before your first computer use action, or to check screen state without acting.",
   category: "computer-use",
   defaultRiskLevel: RiskLevel.Low,
   executionMode: "proxy",
@@ -472,9 +472,9 @@ export const computerUseObserveTool: Tool = {
       input_schema: {
         type: "object",
         properties: {
-          reason: reasonProperty,
+          activity: activityProperty,
         },
-        required: ["reason"],
+        required: ["activity"],
       },
     };
   },

package/src/tools/credential-execution/make-authenticated-request.ts

@@ -2,7 +2,7 @@
  * CES tool: make_authenticated_request
  *
  * Delegates an authenticated HTTP request to the Credential Execution Service.
- * The assistant never sees raw credentials — CES injects the credential into
+ * The assistant never sees raw credentials - CES injects the credential into
  * the outbound request internally and returns the sanitised response.
  *
  * The input schema matches the `MakeAuthenticatedRequestSchema` from
@@ -22,7 +22,7 @@ const log = getLogger("ces-tool:make-authenticated-request");
 class MakeAuthenticatedRequestTool implements Tool {
   name = "make_authenticated_request";
   description =
-    "Execute an authenticated HTTP request through CES. CES injects the credential and returns the response — the assistant never sees raw secrets.";
+    "Execute an authenticated HTTP request through CES. CES injects the credential and returns the response - the assistant never sees raw secrets.";
   category = "credential-execution";
   defaultRiskLevel = RiskLevel.High;
 
@@ -50,7 +50,7 @@ class MakeAuthenticatedRequestTool implements Tool {
             type: "object",
             additionalProperties: { type: "string" },
             description:
-              "Optional request headers. Credential headers are injected by CES — do not include secrets here.",
+              "Optional request headers. Credential headers are injected by CES - do not include secrets here.",
           },
           body: {
             description:
@@ -188,7 +188,7 @@ class MakeAuthenticatedRequestTool implements Tool {
         "CES make_authenticated_request RPC error",
       );
       return {
-        content: `Error: CES RPC call failed — ${msg}`,
+        content: `Error: CES RPC call failed - ${msg}`,
         isError: true,
       };
     }

package/src/tools/credential-execution/manage-secure-command-tool.ts

@@ -3,7 +3,7 @@
  *
  * The only assistant-facing way to request secure bundle installation or
  * update. This tool deliberately accepts only user-reviewable bundle
- * metadata (bundleId, version, sourceUrl, sha256, declared profiles) —
+ * metadata (bundleId, version, sourceUrl, sha256, declared profiles) -
  * never raw bytes, workspace file paths, or executable content.
  *
  * Every invocation forces a fresh approval prompt without creating
@@ -28,7 +28,7 @@ class ManageSecureCommandToolImpl implements Tool {
   name = "manage_secure_command_tool";
   description =
     "Request installation, update, or removal of a secure command tool bundle. " +
-    "Accepts only bundle metadata for guardian review — never raw bytes or file paths. " +
+    "Accepts only bundle metadata for guardian review - never raw bytes or file paths. " +
     "Each invocation requires fresh approval.";
   category = "credential-execution";
   defaultRiskLevel = RiskLevel.High;
@@ -362,7 +362,7 @@ class ManageSecureCommandToolImpl implements Tool {
         "CES manage_secure_command_tool RPC error",
       );
       return {
-        content: `Error: CES RPC call failed — ${msg}`,
+        content: `Error: CES RPC call failed - ${msg}`,
         isError: true,
       };
     }

package/src/tools/credential-execution/run-authenticated-command.ts

@@ -3,7 +3,7 @@
  *
  * Delegates an authenticated command execution to the Credential Execution
  * Service. CES injects credential values into the command's environment and
- * runs it inside the CES sandbox — the assistant never sees raw secrets.
+ * runs it inside the CES sandbox - the assistant never sees raw secrets.
  *
  * The input schema matches the `RunAuthenticatedCommandSchema` from
  * `@vellumai/ces-contracts` exactly so the LLM-produced parameters pass
@@ -22,7 +22,7 @@ const log = getLogger("ces-tool:run-authenticated-command");
 class RunAuthenticatedCommandTool implements Tool {
   name = "run_authenticated_command";
   description =
-    "Execute a command with credential environment variables injected by CES. The command runs inside the CES sandbox — the assistant never sees raw secrets.";
+    "Execute a command with credential environment variables injected by CES. The command runs inside the CES sandbox - the assistant never sees raw secrets.";
   category = "credential-execution";
   defaultRiskLevel = RiskLevel.High;
 
@@ -192,7 +192,7 @@ class RunAuthenticatedCommandTool implements Tool {
         };
       }
 
-      // Surface copyback errors — CES may report success (command exited
+      // Surface copyback errors - CES may report success (command exited
       // normally) but populate response.error with copyback failures.
       if (response.error) {
         const copybackMsg = response.error.message ?? "Output copyback failed";
@@ -251,7 +251,7 @@ class RunAuthenticatedCommandTool implements Tool {
         "CES run_authenticated_command RPC error",
       );
       return {
-        content: `Error: CES RPC call failed — ${msg}`,
+        content: `Error: CES RPC call failed - ${msg}`,
         isError: true,
       };
     }