npm - @vellumai/assistant - Versions diffs - 0.5.4 → 0.5.6 - Mend

@vellumai/assistant 0.5.4 → 0.5.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (151) hide show

package/Dockerfile +17 -27
package/node_modules/@vellumai/ces-contracts/src/index.ts +1 -0
package/node_modules/@vellumai/ces-contracts/src/trust-rules.ts +42 -0
package/package.json +1 -1
package/src/__tests__/actor-token-service.test.ts +113 -0
package/src/__tests__/config-schema.test.ts +2 -2
package/src/__tests__/context-window-manager.test.ts +78 -0
package/src/__tests__/conversation-title-service.test.ts +30 -1
package/src/__tests__/credential-security-invariants.test.ts +2 -0
package/src/__tests__/docker-signing-key-bootstrap.test.ts +207 -0
package/src/__tests__/memory-regressions.test.ts +8 -30
package/src/__tests__/openai-whisper.test.ts +93 -0
package/src/__tests__/require-fresh-approval.test.ts +4 -0
package/src/__tests__/slack-messaging-token-resolution.test.ts +319 -0
package/src/__tests__/tool-executor-lifecycle-events.test.ts +4 -0
package/src/__tests__/tool-executor.test.ts +4 -0
package/src/__tests__/volume-security-guard.test.ts +155 -0
package/src/cli/commands/conversations.ts +0 -18
package/src/config/bundled-skills/messaging/tools/shared.ts +1 -0
package/src/config/bundled-skills/transcribe/tools/transcribe-media.ts +16 -37
package/src/config/env-registry.ts +9 -0
package/src/config/env.ts +8 -2
package/src/config/feature-flag-registry.json +8 -8
package/src/config/schema.ts +0 -12
package/src/config/schemas/memory.ts +0 -4
package/src/config/schemas/platform.ts +1 -1
package/src/config/schemas/security.ts +4 -0
package/src/context/window-manager.ts +53 -2
package/src/credential-execution/managed-catalog.ts +5 -15
package/src/daemon/conversation-agent-loop.ts +0 -60
package/src/daemon/conversation-memory.ts +0 -117
package/src/daemon/conversation-runtime-assembly.ts +0 -2
package/src/daemon/daemon-control.ts +7 -0
package/src/daemon/handlers/conversations.ts +0 -11
package/src/daemon/lifecycle.ts +10 -47
package/src/daemon/providers-setup.ts +2 -1
package/src/followups/followup-store.ts +5 -2
package/src/hooks/manager.ts +7 -0
package/src/instrument.ts +33 -1
package/src/memory/conversation-crud.ts +0 -236
package/src/memory/conversation-title-service.ts +26 -10
package/src/memory/db-init.ts +5 -13
package/src/memory/embedding-local.ts +11 -5
package/src/memory/indexer.ts +15 -106
package/src/memory/job-handlers/conversation-starters.ts +24 -36
package/src/memory/job-handlers/embedding.ts +0 -79
package/src/memory/job-utils.ts +1 -1
package/src/memory/jobs-store.ts +0 -8
package/src/memory/jobs-worker.ts +0 -20
package/src/memory/migrations/189-drop-simplified-memory.ts +42 -0
package/src/memory/migrations/index.ts +1 -3
package/src/memory/qdrant-client.ts +4 -6
package/src/memory/schema/conversations.ts +0 -3
package/src/memory/schema/index.ts +0 -2
package/src/messaging/draft-store.ts +2 -2
package/src/messaging/provider.ts +9 -0
package/src/messaging/providers/slack/adapter.ts +29 -2
package/src/oauth/connection-resolver.test.ts +22 -18
package/src/oauth/connection-resolver.ts +92 -7
package/src/oauth/platform-connection.test.ts +78 -69
package/src/oauth/platform-connection.ts +12 -19
package/src/permissions/defaults.ts +3 -3
package/src/permissions/trust-client.ts +332 -0
package/src/permissions/trust-store-interface.ts +105 -0
package/src/permissions/trust-store.ts +531 -39
package/src/platform/client.test.ts +148 -0
package/src/platform/client.ts +71 -0
package/src/providers/speech-to-text/openai-whisper.test.ts +190 -0
package/src/providers/speech-to-text/openai-whisper.ts +68 -0
package/src/providers/speech-to-text/resolve.ts +9 -0
package/src/providers/speech-to-text/types.ts +17 -0
package/src/runtime/auth/route-policy.ts +14 -0
package/src/runtime/auth/token-service.ts +133 -0
package/src/runtime/http-server.ts +4 -2
package/src/runtime/routes/conversation-management-routes.ts +0 -36
package/src/runtime/routes/conversation-query-routes.ts +44 -2
package/src/runtime/routes/conversation-routes.ts +2 -1
package/src/runtime/routes/inbound-message-handler.ts +27 -3
package/src/runtime/routes/inbound-stages/acl-enforcement.ts +16 -1
package/src/runtime/routes/inbound-stages/transcribe-audio.test.ts +287 -0
package/src/runtime/routes/inbound-stages/transcribe-audio.ts +122 -0
package/src/runtime/routes/log-export-routes.ts +1 -0
package/src/runtime/routes/memory-item-routes.test.ts +221 -3
package/src/runtime/routes/memory-item-routes.ts +124 -2
package/src/runtime/routes/secret-routes.ts +4 -1
package/src/runtime/routes/upgrade-broadcast-routes.ts +151 -0
package/src/schedule/schedule-store.ts +0 -21
package/src/security/ces-credential-client.ts +173 -0
package/src/security/secure-keys.ts +65 -22
package/src/signals/bash.ts +3 -0
package/src/signals/cancel.ts +3 -0
package/src/signals/confirm.ts +3 -0
package/src/signals/conversation-undo.ts +3 -0
package/src/signals/event-stream.ts +7 -0
package/src/signals/shotgun.ts +3 -0
package/src/signals/trust-rule.ts +3 -0
package/src/skills/inline-command-render.ts +5 -1
package/src/skills/inline-command-runner.ts +30 -2
package/src/telemetry/usage-telemetry-reporter.test.ts +23 -36
package/src/telemetry/usage-telemetry-reporter.ts +21 -19
package/src/tools/memory/handlers.ts +1 -129
package/src/tools/permission-checker.ts +18 -0
package/src/tools/skills/load.ts +9 -2
package/src/util/device-id.ts +70 -7
package/src/util/logger.ts +35 -9
package/src/util/platform.ts +29 -5
package/src/util/xml.ts +8 -0
package/src/workspace/heartbeat-service.ts +5 -24
package/src/workspace/migrations/migrate-to-workspace-volume.ts +113 -0
package/src/workspace/migrations/registry.ts +2 -0
package/src/__tests__/archive-recall.test.ts +0 -560
package/src/__tests__/conversation-memory-dirty-tail.test.ts +0 -150
package/src/__tests__/conversation-switch-memory-reduction.test.ts +0 -474
package/src/__tests__/db-memory-archive-migration.test.ts +0 -372
package/src/__tests__/db-memory-brief-state-migration.test.ts +0 -213
package/src/__tests__/db-memory-reducer-checkpoints.test.ts +0 -273
package/src/__tests__/memory-brief-open-loops.test.ts +0 -530
package/src/__tests__/memory-brief-time.test.ts +0 -285
package/src/__tests__/memory-brief-wrapper.test.ts +0 -311
package/src/__tests__/memory-chunk-archive.test.ts +0 -400
package/src/__tests__/memory-chunk-dual-write.test.ts +0 -453
package/src/__tests__/memory-episode-archive.test.ts +0 -370
package/src/__tests__/memory-episode-dual-write.test.ts +0 -626
package/src/__tests__/memory-observation-archive.test.ts +0 -375
package/src/__tests__/memory-observation-dual-write.test.ts +0 -318
package/src/__tests__/memory-reducer-job.test.ts +0 -538
package/src/__tests__/memory-reducer-scheduling.test.ts +0 -473
package/src/__tests__/memory-reducer-store.test.ts +0 -728
package/src/__tests__/memory-reducer-types.test.ts +0 -707
package/src/__tests__/memory-reducer.test.ts +0 -704
package/src/__tests__/memory-simplified-config.test.ts +0 -281
package/src/__tests__/simplified-memory-e2e.test.ts +0 -666
package/src/__tests__/simplified-memory-runtime.test.ts +0 -616
package/src/config/schemas/memory-simplified.ts +0 -101
package/src/memory/archive-recall.ts +0 -516
package/src/memory/archive-store.ts +0 -400
package/src/memory/brief-formatting.ts +0 -33
package/src/memory/brief-open-loops.ts +0 -266
package/src/memory/brief-time.ts +0 -162
package/src/memory/brief.ts +0 -75
package/src/memory/job-handlers/backfill-simplified-memory.ts +0 -462
package/src/memory/job-handlers/reduce-conversation-memory.ts +0 -229
package/src/memory/migrations/185-memory-brief-state.ts +0 -52
package/src/memory/migrations/186-memory-archive.ts +0 -109
package/src/memory/migrations/187-memory-reducer-checkpoints.ts +0 -19
package/src/memory/reducer-scheduler.ts +0 -242
package/src/memory/reducer-store.ts +0 -271
package/src/memory/reducer-types.ts +0 -106
package/src/memory/reducer.ts +0 -467
package/src/memory/schema/memory-archive.ts +0 -121
package/src/memory/schema/memory-brief.ts +0 -55

package/src/memory/reducer-store.ts DELETED Viewed

@@ -1,271 +0,0 @@
-/**
- * Reducer store — transactional application of reducer results to brief-state
- * tables (time_contexts, open_loops) and conversation reducer checkpoints.
- *
- * The `applyReducerResult` helper is the single entry point for persisting
- * reducer output. It runs all upserts, resolves, and checkpoint advances
- * inside a single SQLite transaction so the DB is never left in a
- * partially-applied state.
- *
- * Archive writes are intentionally out of scope — they have their own
- * lifecycle and can be tested independently.
- */
-import { and, eq, gt } from "drizzle-orm";
-import { v4 as uuid } from "uuid";
-import { getLogger } from "../util/logger.js";
-import { getDb } from "./db.js";
-import type { ReducerResult } from "./reducer-types.js";
-import { conversations, messages, openLoops, timeContexts } from "./schema.js";
-const log = getLogger("reducer-store");
-// ── Read helpers ─────────────────────────────────────────────────────
-/**
- * Return all active (non-expired) time contexts for a memory scope.
- * "Active" means `activeUntil` is in the future relative to `now`.
- */
-export function getActiveTimeContexts(
-  scopeId: string,
-  now: number = Date.now(),
-): Array<{
-  id: string;
-  summary: string;
-  activeFrom: number;
-  activeUntil: number;
-}> {
-  const db = getDb();
-  return db
-    .select({
-      id: timeContexts.id,
-      summary: timeContexts.summary,
-      activeFrom: timeContexts.activeFrom,
-      activeUntil: timeContexts.activeUntil,
-    })
-    .from(timeContexts)
-    .where(
-      and(eq(timeContexts.scopeId, scopeId), gt(timeContexts.activeUntil, now)),
-    )
-    .all();
-}
-/**
- * Return all open loops for a memory scope.
- */
-export function getActiveOpenLoops(
-  scopeId: string,
-): Array<{ id: string; summary: string; status: string }> {
-  const db = getDb();
-  return db
-    .select({
-      id: openLoops.id,
-      summary: openLoops.summary,
-      status: openLoops.status,
-    })
-    .from(openLoops)
-    .where(and(eq(openLoops.scopeId, scopeId), eq(openLoops.status, "open")))
-    .all();
-}
-// ── Brief-compiler helper ────────────────────────────────────────────
-/**
- * Update the `surfaced_at` timestamp on a single open loop.
- *
- * Called by the brief compiler after resurfacing a low-salience loop
- * so it is not immediately resurfaced again on the next turn.
- */
-export function updateLastSurfacedAt(loopId: string, surfacedAt: number): void {
-  const db = getDb();
-  db.update(openLoops)
-    .set({ surfacedAt, updatedAt: surfacedAt })
-    .where(eq(openLoops.id, loopId))
-    .run();
-}
-// ── Transactional apply ──────────────────────────────────────────────
-export interface ApplyReducerResultParams {
-  /** The validated reducer result to persist. */
-  result: ReducerResult;
-  /** Conversation that was reduced. */
-  conversationId: string;
-  /** Memory scope for new rows (e.g. assistant instance ID). */
-  scopeId: string;
-  /** ID of the last message that was included in this reducer run. */
-  reducedThroughMessageId: string;
-  /** Current timestamp in epoch ms (injectable for testing). */
-  now?: number;
-}
-/**
- * Atomically apply a reducer result to the database.
- *
- * Within a single transaction this function:
- *   1. Upserts time_contexts (create / update / resolve)
- *   2. Upserts open_loops (create / update / resolve)
- *   3. Advances the conversation's reducer checkpoint columns
- *   4. Clears `memoryDirtyTailSinceMessageId` when the conversation is
- *      fully caught up (no messages exist after `reducedThroughMessageId`)
- *
- * Archive candidates in the result are intentionally ignored — they are
- * handled by a separate pipeline.
- *
- * The function is idempotent: applying the same result twice leaves the
- * database in the same state. Create operations use deterministic IDs
- * derived from the reducer output position so re-application produces
- * the same rows.
- */
-export function applyReducerResult(params: ApplyReducerResultParams): void {
-  const {
-    result,
-    conversationId,
-    scopeId,
-    reducedThroughMessageId,
-    now = Date.now(),
-  } = params;
-  const db = getDb();
-  db.transaction((tx) => {
-    // ── 1. Time contexts ───────────────────────────────────────────
-    for (let i = 0; i < result.timeContexts.length; i++) {
-      const op = result.timeContexts[i];
-      if (op.action === "create") {
-        const id = uuid();
-        tx.insert(timeContexts)
-          .values({
-            id,
-            scopeId,
-            summary: op.summary,
-            source: op.source,
-            activeFrom: op.activeFrom,
-            activeUntil: op.activeUntil,
-            createdAt: now,
-            updatedAt: now,
-          })
-          .run();
-      } else if (op.action === "update") {
-        const setFields: Record<string, unknown> = { updatedAt: now };
-        if (op.summary !== undefined) setFields.summary = op.summary;
-        if (op.activeFrom !== undefined) setFields.activeFrom = op.activeFrom;
-        if (op.activeUntil !== undefined)
-          setFields.activeUntil = op.activeUntil;
-        tx.update(timeContexts)
-          .set(setFields)
-          .where(eq(timeContexts.id, op.id))
-          .run();
-      } else {
-        // resolve — delete the row (resolved time contexts are no longer relevant)
-        tx.delete(timeContexts).where(eq(timeContexts.id, op.id)).run();
-      }
-    }
-    // ── 2. Open loops ──────────────────────────────────────────────
-    for (let i = 0; i < result.openLoops.length; i++) {
-      const op = result.openLoops[i];
-      if (op.action === "create") {
-        const id = uuid();
-        tx.insert(openLoops)
-          .values({
-            id,
-            scopeId,
-            summary: op.summary,
-            source: op.source,
-            status: "open",
-            dueAt: op.dueAt ?? null,
-            createdAt: now,
-            updatedAt: now,
-          })
-          .run();
-      } else if (op.action === "update") {
-        const setFields: Record<string, unknown> = { updatedAt: now };
-        if (op.summary !== undefined) setFields.summary = op.summary;
-        if (op.dueAt !== undefined) setFields.dueAt = op.dueAt;
-        tx.update(openLoops)
-          .set(setFields)
-          .where(eq(openLoops.id, op.id))
-          .run();
-      } else {
-        // resolve — mark status (resolved | expired)
-        tx.update(openLoops)
-          .set({ status: op.status, updatedAt: now })
-          .where(eq(openLoops.id, op.id))
-          .run();
-      }
-    }
-    // ── 3. Advance reducer checkpoint ──────────────────────────────
-    //
-    // Check whether the conversation is fully caught up: no messages
-    // exist after the one we just reduced through. If caught up, clear
-    // the dirty tail marker so the reducer knows there's nothing left
-    // to process.
-    const laterMessage = tx
-      .select({ id: messages.id })
-      .from(messages)
-      .where(
-        and(
-          eq(messages.conversationId, conversationId),
-          gt(
-            messages.createdAt,
-            getMessageCreatedAt(tx, reducedThroughMessageId),
-          ),
-        ),
-      )
-      .limit(1)
-      .get();
-    const isCaughtUp = !laterMessage;
-    const checkpointUpdate: Record<string, unknown> = {
-      memoryReducedThroughMessageId: reducedThroughMessageId,
-      memoryLastReducedAt: now,
-    };
-    if (isCaughtUp) {
-      checkpointUpdate.memoryDirtyTailSinceMessageId = null;
-    }
-    tx.update(conversations)
-      .set(checkpointUpdate)
-      .where(eq(conversations.id, conversationId))
-      .run();
-    log.debug(
-      {
-        conversationId,
-        reducedThroughMessageId,
-        timeContextOps: result.timeContexts.length,
-        openLoopOps: result.openLoops.length,
-        isCaughtUp,
-      },
-      "Applied reducer result",
-    );
-  });
-}
-// ── Internal helpers ─────────────────────────────────────────────────
-/**
- * Get the createdAt timestamp for a message by ID.
- * Returns 0 if the message doesn't exist (which means the gt() comparison
- * will match all messages — safe fallback that prevents clearing dirty tail).
- */
-function getMessageCreatedAt(
-  tx: Parameters<Parameters<ReturnType<typeof getDb>["transaction"]>[0]>[0],
-  messageId: string,
-): number {
-  const row = tx
-    .select({ createdAt: messages.createdAt })
-    .from(messages)
-    .where(eq(messages.id, messageId))
-    .get();
-  return row?.createdAt ?? 0;
-}

package/src/memory/reducer-types.ts DELETED Viewed

@@ -1,106 +0,0 @@
-/**
- * Structured result types for the simplified memory reducer.
- *
- * The reducer processes conversation turns and produces CRUD operations for
- * two brief-state tables (time_contexts, open_loops) and optional archive
- * candidates (observations, episodes).
- *
- * These types are consumed by the reducer parser/validator and eventually by
- * the DB-write layer that applies them atomically.
- */
-// ── Time-context CRUD ──────────────────────────────────────────────────
-export interface TimeContextCreate {
-  action: "create";
-  summary: string;
-  source: string;
-  activeFrom: number; // epoch ms
-  activeUntil: number; // epoch ms
-}
-export interface TimeContextUpdate {
-  action: "update";
-  id: string;
-  summary?: string;
-  activeFrom?: number;
-  activeUntil?: number;
-}
-export interface TimeContextResolve {
-  action: "resolve";
-  id: string;
-}
-export type TimeContextOp =
-  | TimeContextCreate
-  | TimeContextUpdate
-  | TimeContextResolve;
-// ── Open-loop CRUD ─────────────────────────────────────────────────────
-export interface OpenLoopCreate {
-  action: "create";
-  summary: string;
-  source: string;
-  dueAt?: number; // epoch ms, optional deadline
-}
-export interface OpenLoopUpdate {
-  action: "update";
-  id: string;
-  summary?: string;
-  dueAt?: number;
-}
-export interface OpenLoopResolve {
-  action: "resolve";
-  id: string;
-  status: "resolved" | "expired";
-}
-export type OpenLoopOp = OpenLoopCreate | OpenLoopUpdate | OpenLoopResolve;
-// ── Archive candidates ─────────────────────────────────────────────────
-export interface ArchiveObservationCandidate {
-  content: string;
-  role: string;
-  modality?: string;
-  source?: string;
-}
-export interface ArchiveEpisodeCandidate {
-  title: string;
-  summary: string;
-  source?: string;
-}
-// ── Top-level reducer result ───────────────────────────────────────────
-export interface ReducerResult {
-  timeContexts: TimeContextOp[];
-  openLoops: OpenLoopOp[];
-  archiveObservations: ArchiveObservationCandidate[];
-  archiveEpisodes: ArchiveEpisodeCandidate[];
-}
-/**
- * Sentinel empty result returned when the reducer output is **unparseable**
- * (not valid JSON, not a JSON object, provider failure, etc.).
- *
- * Callers use identity comparison (`=== EMPTY_REDUCER_RESULT`) to detect
- * true parse failures and skip checkpoint advancement so the job can retry.
- *
- * A valid-but-empty model response (e.g. `{}`) returns a normal
- * `ReducerResult` with all empty arrays — NOT this sentinel — so the
- * checkpoint advances and the dirty tail is cleared.
- */
-export const EMPTY_REDUCER_RESULT: Readonly<ReducerResult> = Object.freeze({
-  timeContexts: Object.freeze([]) as unknown as TimeContextOp[],
-  openLoops: Object.freeze([]) as unknown as OpenLoopOp[],
-  archiveObservations: Object.freeze(
-    [],
-  ) as unknown as ArchiveObservationCandidate[],
-  archiveEpisodes: Object.freeze([]) as unknown as ArchiveEpisodeCandidate[],
-});